[prev in list] [next in list] [prev in thread] [next in thread]
List: prelude-announce
Subject: [prelude-announce] [ANNOUNCE]: Prewikka 0.9.15
From: Yoann Vandoorselaere <yoann.v () prelude-ids ! com>
Date: 2009-06-10 11:19:53
Message-ID: 1244632793.8278.71.camel () arwen
[Download RAW message or body]
We are pleased to announce the availability of Prewikka 0.9.14.
Prewikka is a graphical front-end analysis console for the Prelude
Hybrid IDS Framework. Providing numerous features, Prewikka facilitate
the work of users and analysts. It provide alert aggregation, sensors
and hearbeat views, and has user management and configurable filters. It
has access to external tools such as whois and traceroute.
------[ CHANGES ]------
- Make it obvious when a column is filtered by replacing the old sober
star with a big "[filtered]" red marker. If the column filter is
saved, then the marker color will go from red to black.
- Once the user filtered a given field by clicking on it, deny further
click so that it is clear that the filter is currently active.
- Re-write the inline filter implementation using Cheetah + Jquery, in
place of generating an enormous amount of javascript code. This
drastically reduce the size of the events listing HTML page, and will
allow for much easier modification of the inline-filters.
- Only propose filter operator relevant to the selected path.
- Inline filter now present a single input field (with no path and
operator selection). Using this field, the user can filter on what is
seen in the associated column. For example, in the classification
column, the filter will trigger a search on classification.text,
classification.reference.name and classification.reference.origin.
There is also an [advanced] button allowing the user to specify both
the path and the operator.
- Implement a reset button in each inline filter column, that allow to
switch between different version of the filter: last saved filters,
default filters, or current filters.
- The user can now click an alert completion to set an inline filter on
the completion value.
- Clicking on a port / protocol now trigger a CSS menu allowing to
filter on the port and protocol information, or to get information
concerning this port / protocol.
- Clicking on a classification reference now trigger a CSS menu which
allow to filter on the reference, or to get more information
concerning it.
- Clicking on classification now add a filter on the selected
classification (previously, it would have unfolded aggregated alerts
for the selected entry, which is now done clicking the alert count).
- Until now, the default user that was automatically created by Prewikka
if there was no administrative user was "admin". As of now you can
define the initial administrative username and password from the
configuration file. (fix #289).
- Fix escaping for reference details URI parameters.
- Fix ModPython content-type handling.
- Invalid variable name, fix #339.
- Update to JQuery 1.3.2, and fit small JQuery API change.
- If the installed libprelude or libpreludedb version is too old,
Prewikka will require the user to upgrade. Currently, Prewikka depend
on libpreludedb 0.9.12, and libprelude 0.9.23.
- Fix IDMEFDatabase exception on empty criteria string (fixes #346).
- Analyzer retrieval fixes and speedup (fixes #350).
------[ SUPPORT ] ------
Improving Prelude is costly, but you can help! We are looking for
organizations that find Prelude useful and wish to contribute back.
Commercial support contracts for Prelude are available, and they help
finance continued maintenance. PreludeIDS Technologies, a privately held
company, is currently funding Prelude maintenance.
------[ DOWNLOAD ]------
http://www.prelude-ids.com/development/download/
------[ CHECKSUM ]------
MD5 : 61139649e7960958b3c7b976e8959319
SHA1 : 9f92f3c874c65dffb914375189c75ca41b52c8a5
SHA256 :
4593a0a4f255fb4180e611e4a5f5203b9963bdd45e05169228b509831f7a0744
------[ OpenPGP key ]------
gpg --keyserver wwwkeys.pgp.net --recv-keys 0x23D2FAC3
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)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=FD7M
-----END PGP SIGNATURE-----
--
Yoann Vandoorselaere <yoann.v@prelude-ids.com>
PreludeIDS Technologies
_______________________________________________
Prelude-announce mailing list
Prelude-announce@prelude-ids.org
http://lists.prelude-ids.org/mailman/listinfo/prelude-announce
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic