From a6e06e4a57c1f05d9026b44bb7075a38cae6b775 Mon Sep 17 00:00:00 2001 From: Jay Date: Fri, 5 Apr 2024 14:31:37 +0200 Subject: [PATCH 1/3] Remove the Sigma status CSV from Deploy Script --- contrib/deploy_timesketch.sh | 2 -- 1 file changed, 2 deletions(-) diff --git a/contrib/deploy_timesketch.sh b/contrib/deploy_timesketch.sh index 1b55dee775..4b722a208b 100755 --- a/contrib/deploy_timesketch.sh +++ b/contrib/deploy_timesketch.sh @@ -92,11 +92,9 @@ curl -s $GITHUB_BASE_URL/data/generic.mappings > timesketch/etc/timesketch/gener curl -s $GITHUB_BASE_URL/data/regex_features.yaml > timesketch/etc/timesketch/regex_features.yaml curl -s $GITHUB_BASE_URL/data/winevt_features.yaml > timesketch/etc/timesketch/winevt_features.yaml curl -s $GITHUB_BASE_URL/data/ontology.yaml > timesketch/etc/timesketch/ontology.yaml -curl -s $GITHUB_BASE_URL/data/sigma_rule_status.csv > timesketch/etc/timesketch/sigma_rule_status.csv curl -s $GITHUB_BASE_URL/data/tags.yaml > timesketch/etc/timesketch/tags.yaml curl -s $GITHUB_BASE_URL/data/intelligence_tag_metadata.yaml > timesketch/etc/timesketch/intelligence_tag_metadata.yaml curl -s $GITHUB_BASE_URL/data/sigma_config.yaml > timesketch/etc/timesketch/sigma_config.yaml -curl -s $GITHUB_BASE_URL/data/sigma_rule_status.csv > timesketch/etc/timesketch/sigma_rule_status.csv curl -s $GITHUB_BASE_URL/data/sigma/rules/lnx_susp_zmap.yml > timesketch/etc/timesketch/sigma/rules/lnx_susp_zmap.yml curl -s $GITHUB_BASE_URL/data/plaso_formatters.yaml > timesketch/etc/timesketch/plaso_formatters.yaml curl -s $GITHUB_BASE_URL/data/context_links.yaml > timesketch/etc/timesketch/context_links.yaml From 65a4f4ba197b78520e9e0669c7c4bdbd96f21189 Mon Sep 17 00:00:00 2001 From: Jay Date: Fri, 5 Apr 2024 14:33:21 +0200 Subject: [PATCH 2/3] Remove sigma_rule_status.csv from Windows Powershell Script --- contrib/deploy_timesketch.ps1 | 1 - 1 file changed, 1 deletion(-) diff --git a/contrib/deploy_timesketch.ps1 b/contrib/deploy_timesketch.ps1 index 52af975074..1e69e2f79f 100644 --- a/contrib/deploy_timesketch.ps1 +++ b/contrib/deploy_timesketch.ps1 @@ -86,7 +86,6 @@ Write-Host "* Fetching configuration files.." (Invoke-webrequest -URI $GITHUB_BASE_URL/data/ontology.yaml).Content | out-file timesketch\etc\timesketch\ontology.yaml -encoding UTF8NoBOM (Invoke-webrequest -URI $GITHUB_BASE_URL/data/intelligence_tag_metadata.yaml).Content | out-file timesketch\etc\timesketch\intelligence_tag_metadata.yaml -encoding UTF8NoBOM (Invoke-webrequest -URI $GITHUB_BASE_URL/data/sigma_config.yaml).Content | out-file timesketch\etc\timesketch\sigma_config.yaml -encoding UTF8NoBOM -(Invoke-webrequest -URI $GITHUB_BASE_URL/data/sigma_rule_status.csv).Content | out-file timesketch\etc\timesketch\sigma_rule_status.csv -encoding UTF8NoBOM (Invoke-webrequest -URI $GITHUB_BASE_URL/data/sigma/rules/lnx_susp_zmap.yml).Content | out-file timesketch\etc\timesketch\sigma\rules\lnx_susp_zmap.yml -encoding UTF8NoBOM (Invoke-webrequest -URI $GITHUB_BASE_URL/contrib/nginx.conf).Content | out-file timesketch\etc\nginx.conf -encoding UTF8NoBOM Write-Host "OK" From 998e4cf9a3b66353810ed50c9b47334e42c7ed4b Mon Sep 17 00:00:00 2001 From: Jay Date: Fri, 5 Apr 2024 14:34:46 +0200 Subject: [PATCH 3/3] Remove Duplicate Curl for Tags.yml --- contrib/deploy_timesketch.sh | 1 - 1 file changed, 1 deletion(-) diff --git a/contrib/deploy_timesketch.sh b/contrib/deploy_timesketch.sh index 4b722a208b..cb2f6245fb 100755 --- a/contrib/deploy_timesketch.sh +++ b/contrib/deploy_timesketch.sh @@ -92,7 +92,6 @@ curl -s $GITHUB_BASE_URL/data/generic.mappings > timesketch/etc/timesketch/gener curl -s $GITHUB_BASE_URL/data/regex_features.yaml > timesketch/etc/timesketch/regex_features.yaml curl -s $GITHUB_BASE_URL/data/winevt_features.yaml > timesketch/etc/timesketch/winevt_features.yaml curl -s $GITHUB_BASE_URL/data/ontology.yaml > timesketch/etc/timesketch/ontology.yaml -curl -s $GITHUB_BASE_URL/data/tags.yaml > timesketch/etc/timesketch/tags.yaml curl -s $GITHUB_BASE_URL/data/intelligence_tag_metadata.yaml > timesketch/etc/timesketch/intelligence_tag_metadata.yaml curl -s $GITHUB_BASE_URL/data/sigma_config.yaml > timesketch/etc/timesketch/sigma_config.yaml curl -s $GITHUB_BASE_URL/data/sigma/rules/lnx_susp_zmap.yml > timesketch/etc/timesketch/sigma/rules/lnx_susp_zmap.yml