Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Feature Request] Show case status in the default view (open / closed as FP / closed as TP, etc.) #1781

Closed
H2Cyber opened this issue Feb 5, 2021 · 1 comment
Closed

[Feature Request] Show case status in the default view (open / closed as FP / closed as TP, etc.) #1781

H2Cyber opened this issue Feb 5, 2021 · 1 comment
Assignees
@nadouani
Labels
feature request TheHive4 TheHive4 related issues
Milestone
4.1.0

Comments

@H2Cyber
Copy link

H2Cyber commented Feb 5, 2021
edited
Loading

Show case status in the default view

Request Type

Feature Request

Request Description

When browsing the list of cases (default TheHive page), it would be useful to have a default column that indicates the case closure status :

  • Open
  • Closed (FP)
  • Closed (TP)
  • Closed (Other)
  • Closed (Indeterminate)

Why ?

Security managers often have to periodically review cases (open and closed), and drill in a few of them to check if they were handled correctly and adequatly. Factors that would influence a manager's decision to drill in a particular case (or skip it) include a mix of :

  • Case Title
  • Case Severity
  • Case Assignee
  • Case Closure Status (Open, FP, TP, Indeterminate, etc.)

For example, a case with a severity of High and which has been closed as Indeterminate may require special attention. A case with a severity of Low and that was handled by a newbe, may require attention, etc.

All of the information above is exposed in the default view, except the Case Closure Status, which would be great to have readily available in the default view.

Work Environment

Question Answer
TheHive version / git hash 4.0.4
@H2Cyber H2Cyber added TheHive4 TheHive4 related issues bug labels Feb 5, 2021
@H2Cyber H2Cyber changed the title [Feature Request] Show case closure status in the default view (open / closed as FP / closed as TP, etc.) [Feature Request] Show case status in the default view (open / closed as FP / closed as TP, etc.) Feb 5, 2021
@nadouani
Copy link
Contributor

nadouani commented Mar 1, 2021

Hello @aim4r the case list already show the close status for closed cases:

Screenshot 2021-03-01 at 15 51 54

We can make it clickable for filtering, and display a status column

@nadouani nadouani added this to the 4.1.0 milestone Mar 1, 2021
@nadouani nadouani self-assigned this Mar 1, 2021
nadouani added a commit that referenced this issue Mar 1, 2021
@nadouani
#1807 #1781 Update case list to include more details, sort and filters
4907f74
@nadouani nadouani closed this as completed Mar 1, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@nadouani nadouani

Labels
feature request TheHive4 TheHive4 related issues
Projects
None yet
Milestone
4.1.0
Development

No branches or pull requests
2 participants
@nadouani @H2Cyber