All notable changes to this project should be documented in this file.
- Add metric for custom threats
- Add live event dashboard
- Add incoming webhook for alerts
- Improve custom threat validation
- Add Mattermost alert provider
- Improve directory bruteforce threats detection
- Add supporting RAW requests from CVEs templates
- Add Zinc logs engine
- Refactoring configuration structures
- Remove
-o/--output
&--json
flags - Add custom threat rules
- Add utility for get datasets
- Remove debug print
- Fix exclude threats logic to set datasets
- Fix linter
- Add interrupt handler
- Set default logger to debug
- Add notifies if no logs are analyzed
- Refactoring analyzer threads
- Upgrade dependencies
- Remove unused package
- Refactor versioning package
- Inject build version (#95)
- Update
Makefile
script - Update documentations
- Improves whitelist for Common Web Attack & CVE threats
- Matching status code & request method to reduce false-positives CVE (#72)
- Fix mismatch breaking logic for detecting CVE (#71)
- Add CVE resource
- Add metrics for CVEs
- Fix Bad Referrer
- Justifying informations
- Fix the Slack token validation not accepting some tokens (#57)
- Add spinner while getting resources
- Fix the wrong catch for
3xx
status codes to be ignored in Directory Bruteforce (#56)
- Fix threat metrics
- Add Discord notification alert
- Add prints JSON format options
- Update Dockerfile
- Fix SIGSEGV of
syscall
within Docker container
- Add remove cached resources flag
- Add purge caches function
- Fix fails to get cached resources
- Add cache option in configuration file
- Remove unused files
- Add caching supports for resources (#45)
- Refactor teler configurations
- Update Prometheus package & runner
- Add Exporters to Prometheus (#42)
- Add errors.Abort for supporting cross-platform
- Update Dockerfile
- Refactoring configurations
- Add Telegram notification alert (#38)
- Add partially unit test (#34)
- Delete element in Slack alert
- Move Slack alert parts
- Add remote IP addr part on Slack alert
- Update documentations
- Removes default attachments alert
- Fix ignored whitelists on query parameters (#28)
- Remove trailing newlines
- Convert output threats to JSON
- Merging
out
mapping intolog
- Fix invalid URL escape by adding error handle
- Fix justifies common web attack category
- Fix mismatch pattern of referrer
- Add whitelist for logs (#16)
- Fix redeclared & unused functions and variables
- Remove
active
part in example config file - Add
whitelists
documentations for configuration - Add
whitelists
in example config file - Replace configs to resource
- Refactor
teler.Analyze
- Add trailing newlines in analyzer
- Fix Common Web Attack threat
- Initial beta release