Skip to content

Strelka UI App, Improving Node Edge Readability, Encryption, and More

Latest
Latest
Compare
Choose a tag to compare
@phutelmyer phutelmyer released this 30 May 19:53
· 36 commits to main since this release
v2.3
a832a88

Overview

This pull request introduces several improvements to the Strelka UI App, focusing on enhancing the readability of node edges, ensuring accurate mimetype/YARA flavor representation, and providing better feedback for encryption handling. These changes aim to improve the visual clarity, usability, and overall functionality of the graph visualization and related components.

Key Changes

Running Strelka UI Backend as a Package

  • Improved Project Structure: The backend now runs as a package, providing a more elegant structure and execution method for the project.
  • Enhanced Metadata: Introduced more structured client metadata into Strelka events to improve the trackability of requests.

image

Encryption Status Indicators

  • Decryption Success/Failure Check: Added checks for signs of decryption success or failure in the seven_zip, rar, and encrypted_zip scanners.
  • Visual Indicators: Applied icons and tooltips to indicate the decryption status, providing immediate feedback to users.

image

Mimetype/YARA Accuracy

  • Comprehensive Representation: Refactored handling to ensure accurate representation of all mimetypes and YARA hits associated with a file, rather than just the first entry.

1be5807c-422d-48d9-8306-ef1c819aacfe

Edge Styling Enhancements

  • Conditional Styling: Introduced conditional styling for edges based on node relationships and highlighting states.
  • Interactive Highlights: Highlights the parent and child line, as well as the node currently being hovered over, improving visual clarity.

Scan Source Edge Addition

  • Source Scan Information: Added information about the source scan for a given parent-child relationship, allowing users to see which scanner resulted in the creation of the child node.

3d79fda7-6722-4ffa-88a3-bf66783f17c6

Tooltips for Checkboxes

  • Descriptive Tooltips: Wrapped each checkbox with a Tooltip component to provide descriptions when hovering over the checkbox, enhancing user understanding.

Human Readable Text Option

  • Toggle View: Provided users with the ability to toggle between a human-readable form and the array form for string_text, assuming string_text is collected.

5acb6979-a9c8-482a-9203-a586e63bb3a1

Encryption Cards

  • Added cards for ScanSevenZip, ScanRar, ScanZip, and ScanEncryptedZip

image

These enhancements collectively improve the usability and clarity of the Strelka UI App, providing users with better visual feedback and more accurate information about file submissions and their processing.

Assets 2
Loading