-
Notifications
You must be signed in to change notification settings - Fork 72
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Threat Intel Feed Job Scheduler with unit and integ test #664
Threat Intel Feed Job Scheduler with unit and integ test #664
Commits on Oct 7, 2023
-
Configuration menu - View commit details
-
Copy full SHA for 00da38d - Browse repository at this point
Copy the full SHA 00da38dView commit details -
Configuration menu - View commit details
-
Copy full SHA for 49a2981 - Browse repository at this point
Copy the full SHA 49a2981View commit details -
add threat intel feed data dao
Signed-off-by: Surya Sashank Nistala <snistala@amazon.com>
Configuration menu - View commit details
-
Copy full SHA for 9487746 - Browse repository at this point
Copy the full SHA 9487746View commit details -
add threatIntelEnabled field in detector.
Signed-off-by: Surya Sashank Nistala <snistala@amazon.com>
Configuration menu - View commit details
-
Copy full SHA for 5378532 - Browse repository at this point
Copy the full SHA 5378532View commit details -
add threat intel feed service and searching feeds
Signed-off-by: Surya Sashank Nistala <snistala@amazon.com>
Configuration menu - View commit details
-
Copy full SHA for 805ca58 - Browse repository at this point
Copy the full SHA 805ca58View commit details -
Configuration menu - View commit details
-
Copy full SHA for add8987 - Browse repository at this point
Copy the full SHA add8987View commit details -
plug threat intel feed into detector creation
Signed-off-by: Surya Sashank Nistala <snistala@amazon.com>
Configuration menu - View commit details
-
Copy full SHA for 540837b - Browse repository at this point
Copy the full SHA 540837bView commit details -
Preliminary framework for jobscheduler and datasource (opensearch-pro…
…ject#626) Signed-off-by: Joanne Wang <jowg@amazon.com>
Configuration menu - View commit details
-
Copy full SHA for 1980f26 - Browse repository at this point
Copy the full SHA 1980f26View commit details
Commits on Oct 9, 2023
-
create doc level query from threat intel feed data index docs"
Signed-off-by: Surya Sashank Nistala <snistala@amazon.com>
Configuration menu - View commit details
-
Copy full SHA for 8415d9f - Browse repository at this point
Copy the full SHA 8415d9fView commit details -
Configuration menu - View commit details
-
Copy full SHA for adbfdd5 - Browse repository at this point
Copy the full SHA adbfdd5View commit details
Commits on Oct 10, 2023
-
add tests for testing threat intel feed integration with detectors
Signed-off-by: Surya Sashank Nistala <snistala@amazon.com>
Configuration menu - View commit details
-
Copy full SHA for cfd1bf0 - Browse repository at this point
Copy the full SHA cfd1bf0View commit details -
Threat intel feeds job runner and unit tests (opensearch-project#654)
* fix doc level query constructor (opensearch-project#651) Signed-off-by: Surya Sashank Nistala <snistala@amazon.com> * add mapping for indices storing threat intel feed data * fix feed indices mapping * add threat intel feed data dao Signed-off-by: Surya Sashank Nistala <snistala@amazon.com> * add threatIntelEnabled field in detector. Signed-off-by: Surya Sashank Nistala <snistala@amazon.com> * add threat intel feed service and searching feeds Signed-off-by: Surya Sashank Nistala <snistala@amazon.com> * ti feed data to doc level query convertor logic added * plug threat intel feed into detector creation Signed-off-by: Surya Sashank Nistala <snistala@amazon.com> * Preliminary framework for jobscheduler and datasource (opensearch-project#626) Signed-off-by: Joanne Wang <jowg@amazon.com> * with listener and processor Signed-off-by: Joanne Wang <jowg@amazon.com> * removed actions Signed-off-by: Joanne Wang <jowg@amazon.com> * clean up Signed-off-by: Joanne Wang <jowg@amazon.com> * added parser Signed-off-by: Joanne Wang <jowg@amazon.com> * add unit tests Signed-off-by: Joanne Wang <jowg@amazon.com> * refactored class names Signed-off-by: Joanne Wang <jowg@amazon.com> * before moving db Signed-off-by: Joanne Wang <jowg@amazon.com> * after moving db Signed-off-by: Joanne Wang <jowg@amazon.com> * added actions to plugin and removed user schedule Signed-off-by: Joanne Wang <jowg@amazon.com> * unit tests Signed-off-by: Joanne Wang <jowg@amazon.com> * fix build error Signed-off-by: Joanne Wang <jowg@amazon.com> * changed transport naming Signed-off-by: Joanne Wang <jowg@amazon.com> --------- Signed-off-by: Surya Sashank Nistala <snistala@amazon.com> Signed-off-by: Joanne Wang <jowg@amazon.com> Co-authored-by: Surya Sashank Nistala <snistala@amazon.com>
Configuration menu - View commit details
-
Copy full SHA for 55d332d - Browse repository at this point
Copy the full SHA 55d332dView commit details
Commits on Oct 11, 2023
-
converge job scheduler code with threat intel feed integration in det…
…ectors Signed-off-by: Surya Sashank Nistala <snistala@amazon.com>
Configuration menu - View commit details
-
Copy full SHA for 13b513b - Browse repository at this point
Copy the full SHA 13b513bView commit details -
Signed-off-by: Joanne Wang <jowg@amazon.com>
Configuration menu - View commit details
-
Copy full SHA for 61a60b4 - Browse repository at this point
Copy the full SHA 61a60b4View commit details -
Signed-off-by: Joanne Wang <jowg@amazon.com>
Configuration menu - View commit details
-
Copy full SHA for 1cd9875 - Browse repository at this point
Copy the full SHA 1cd9875View commit details -
converge job scheduler and detector threat intel code
Signed-off-by: Surya Sashank Nistala <snistala@amazon.com>
Configuration menu - View commit details
-
Copy full SHA for d0e2511 - Browse repository at this point
Copy the full SHA d0e2511View commit details -
Configuration menu - View commit details
-
Copy full SHA for 768cc2c - Browse repository at this point
Copy the full SHA 768cc2cView commit details -
Configuration menu - View commit details
-
Copy full SHA for e01a70b - Browse repository at this point
Copy the full SHA e01a70bView commit details
Commits on Oct 12, 2023
-
fixed the parser and build.gradle
Signed-off-by: Joanne Wang <jowg@amazon.com>
Configuration menu - View commit details
-
Copy full SHA for b8aa66d - Browse repository at this point
Copy the full SHA b8aa66dView commit details -
Configuration menu - View commit details
-
Copy full SHA for 63325ef - Browse repository at this point
Copy the full SHA 63325efView commit details -
Configuration menu - View commit details
-
Copy full SHA for 99cb74e - Browse repository at this point
Copy the full SHA 99cb74eView commit details -
add threat intel feed data dao
Signed-off-by: Surya Sashank Nistala <snistala@amazon.com>
Configuration menu - View commit details
-
Copy full SHA for 5aa9720 - Browse repository at this point
Copy the full SHA 5aa9720View commit details -
add threatIntelEnabled field in detector.
Signed-off-by: Surya Sashank Nistala <snistala@amazon.com>
Configuration menu - View commit details
-
Copy full SHA for 41ae481 - Browse repository at this point
Copy the full SHA 41ae481View commit details -
add threat intel feed service and searching feeds
Signed-off-by: Surya Sashank Nistala <snistala@amazon.com>
Configuration menu - View commit details
-
Copy full SHA for a5306f4 - Browse repository at this point
Copy the full SHA a5306f4View commit details -
Configuration menu - View commit details
-
Copy full SHA for c7d595b - Browse repository at this point
Copy the full SHA c7d595bView commit details -
plug threat intel feed into detector creation
Signed-off-by: Surya Sashank Nistala <snistala@amazon.com>
Configuration menu - View commit details
-
Copy full SHA for d84fa71 - Browse repository at this point
Copy the full SHA d84fa71View commit details -
Preliminary framework for jobscheduler and datasource (opensearch-pro…
…ject#626) Signed-off-by: Joanne Wang <jowg@amazon.com>
Configuration menu - View commit details
-
Copy full SHA for 0887d91 - Browse repository at this point
Copy the full SHA 0887d91View commit details -
create doc level query from threat intel feed data index docs"
Signed-off-by: Surya Sashank Nistala <snistala@amazon.com>
Configuration menu - View commit details
-
Copy full SHA for 6dabe61 - Browse repository at this point
Copy the full SHA 6dabe61View commit details -
Configuration menu - View commit details
-
Copy full SHA for 528b978 - Browse repository at this point
Copy the full SHA 528b978View commit details -
add tests for testing threat intel feed integration with detectors
Signed-off-by: Surya Sashank Nistala <snistala@amazon.com>
Configuration menu - View commit details
-
Copy full SHA for 375b231 - Browse repository at this point
Copy the full SHA 375b231View commit details -
Threat intel feeds job runner and unit tests (opensearch-project#654)
* fix doc level query constructor (opensearch-project#651) Signed-off-by: Surya Sashank Nistala <snistala@amazon.com> * add mapping for indices storing threat intel feed data * fix feed indices mapping * add threat intel feed data dao Signed-off-by: Surya Sashank Nistala <snistala@amazon.com> * add threatIntelEnabled field in detector. Signed-off-by: Surya Sashank Nistala <snistala@amazon.com> * add threat intel feed service and searching feeds Signed-off-by: Surya Sashank Nistala <snistala@amazon.com> * ti feed data to doc level query convertor logic added * plug threat intel feed into detector creation Signed-off-by: Surya Sashank Nistala <snistala@amazon.com> * Preliminary framework for jobscheduler and datasource (opensearch-project#626) Signed-off-by: Joanne Wang <jowg@amazon.com> * with listener and processor Signed-off-by: Joanne Wang <jowg@amazon.com> * removed actions Signed-off-by: Joanne Wang <jowg@amazon.com> * clean up Signed-off-by: Joanne Wang <jowg@amazon.com> * added parser Signed-off-by: Joanne Wang <jowg@amazon.com> * add unit tests Signed-off-by: Joanne Wang <jowg@amazon.com> * refactored class names Signed-off-by: Joanne Wang <jowg@amazon.com> * before moving db Signed-off-by: Joanne Wang <jowg@amazon.com> * after moving db Signed-off-by: Joanne Wang <jowg@amazon.com> * added actions to plugin and removed user schedule Signed-off-by: Joanne Wang <jowg@amazon.com> * unit tests Signed-off-by: Joanne Wang <jowg@amazon.com> * fix build error Signed-off-by: Joanne Wang <jowg@amazon.com> * changed transport naming Signed-off-by: Joanne Wang <jowg@amazon.com> --------- Signed-off-by: Surya Sashank Nistala <snistala@amazon.com> Signed-off-by: Joanne Wang <jowg@amazon.com> Co-authored-by: Surya Sashank Nistala <snistala@amazon.com>
Configuration menu - View commit details
-
Copy full SHA for e210ebb - Browse repository at this point
Copy the full SHA e210ebbView commit details -
converge job scheduler code with threat intel feed integration in det…
…ectors Signed-off-by: Surya Sashank Nistala <snistala@amazon.com>
Configuration menu - View commit details
-
Copy full SHA for 59cd533 - Browse repository at this point
Copy the full SHA 59cd533View commit details -
converge job scheduler and detector threat intel code
Signed-off-by: Surya Sashank Nistala <snistala@amazon.com>
Configuration menu - View commit details
-
Copy full SHA for c186b21 - Browse repository at this point
Copy the full SHA c186b21View commit details -
add feed metadata config files in src and test
Signed-off-by: Surya Sashank Nistala <snistala@amazon.com>
Configuration menu - View commit details
-
Copy full SHA for 9c73abf - Browse repository at this point
Copy the full SHA 9c73abfView commit details -
Configuration menu - View commit details
-
Copy full SHA for 0a3a01c - Browse repository at this point
Copy the full SHA 0a3a01cView commit details -
Configuration menu - View commit details
-
Copy full SHA for bc86671 - Browse repository at this point
Copy the full SHA bc86671View commit details -
Signed-off-by: Joanne Wang <jowg@amazon.com>
Configuration menu - View commit details
-
Copy full SHA for 6a687c0 - Browse repository at this point
Copy the full SHA 6a687c0View commit details -
Configuration menu - View commit details
-
Copy full SHA for 6b0dfbf - Browse repository at this point
Copy the full SHA 6b0dfbfView commit details
Commits on Oct 13, 2023
-
update csv parser and new metadata field
Signed-off-by: Joanne Wang <jowg@amazon.com>
Configuration menu - View commit details
-
Copy full SHA for 3afc5b6 - Browse repository at this point
Copy the full SHA 3afc5b6View commit details -
Merge branch 'feature/threat_intel_feeds' of https://github.com/opens…
…earch-project/security-analytics into threatIntelTest
Configuration menu - View commit details
-
Copy full SHA for baaccfb - Browse repository at this point
Copy the full SHA baaccfbView commit details -
fixed job scheduler interval settings
Signed-off-by: Joanne Wang <jowg@amazon.com>
Configuration menu - View commit details
-
Copy full SHA for 0221dc0 - Browse repository at this point
Copy the full SHA 0221dc0View commit details
Commits on Oct 16, 2023
-
add tests for ioc to fields for each log type
Signed-off-by: Surya Sashank Nistala <snistala@amazon.com>
Configuration menu - View commit details
-
Copy full SHA for 590af7e - Browse repository at this point
Copy the full SHA 590af7eView commit details -
Merge branch 'feature/threat_intel_feeds' into threatIntelTest
Signed-off-by: Joanne Wang <109310487+jowg-amazon@users.noreply.github.com>
Configuration menu - View commit details
-
Copy full SHA for e65ac85 - Browse repository at this point
Copy the full SHA e65ac85View commit details -
Configuration menu - View commit details
-
Copy full SHA for 7a2ab27 - Browse repository at this point
Copy the full SHA 7a2ab27View commit details -
Configuration menu - View commit details
-
Copy full SHA for 6a44876 - Browse repository at this point
Copy the full SHA 6a44876View commit details
Commits on Oct 17, 2023
-
Configuration menu - View commit details
-
Copy full SHA for 4ce27b2 - Browse repository at this point
Copy the full SHA 4ce27b2View commit details