Skip to content

Release 2.4.0

Latest
Latest
Compare
Choose a tag to compare
@cedricbonhomme cedricbonhomme released this 10 Jan 09:14
· 3 commits to main since this release
v2.4.0
This tag was signed with the committer’s verified signature.
cedricbonhomme Cédric Bonhomme
GPG key ID: A1CB94DE57B7A70D
Learn about vigilant mode.
d407534
This commit was signed with the committer’s verified signature.
cedricbonhomme Cédric Bonhomme
GPG key ID: A1CB94DE57B7A70D
Learn about vigilant mode.

What's New

  • New Dashboard: The home page now includes a table displaying the top sighted vulnerabilities for the past month. The entire dashboard can be filtered and updated in real-time using a date picker. (2574f33, 88d9b26, b8fec62, dffc041, f93033e)
  • New Correlations Graph: A graph displaying correlations using sightings data. (fdfa67f, fbcba54, 2dc811b)
  • New CSAF Microsoft Importer: Adds support for importing CSAF data from Microsoft. (#84)
  • New FKIE NVD Importer: Introduces an importer for FKIE NVD data. (6f0541e)
  • New RSS/Atom Feeds for Sightings: Provides feeds for CPE sightings over the last month, sorted for easier access. (2f96b0d, f8e45cd)
  • New Sighting Tool for GitHub Gists: GistSight now offers a tool for tracking GitHub Gist sightings.

Changes

  • New vulnerability-lookup CVE Container: Adds metadata enrichment such as sightings, comments, bundles, meta. (6b77b52)
  • Admin Feature for Sightings: Admin users can now update existing sightings. (7153aa1)
  • [API] CPESearch Update: The API now returns a dict[str, list[dict[str, Any]]] for easier parsing, replacing the previous dict[str, list[tuple[str, dict[str, Any]]]]. (3651e4b)
  • Various improvements to HTML templates for better usability.
  • General cleanup and improvements to the API and its documentation.

Fixes

  • CSAF Report IDs: Fixed the issue with incorrect IDs for CSAF reports. (4879ceb)
  • Improved JVND Timeout Handling: Requests to JVND now timeout more efficiently. (c669123, 476c6b7)
  • Various minor graphical fixes for enhanced user experience.

2025-01-10-home-page
2025-01-10-sightings-correlations1
2025-01-10-sightings-correlations2
2025-01-10-CSAF_Microsoft

Funding

ngsoti-small
eu_funded_en

The NGSOTI project is dedicated to training the next generation of Security Operation Center (SOC) operators, focusing on the human aspect of cybersecurity. It underscores the significance of providing SOC operators with the necessary skills and open-source tools to address challenges such as detection engineering, incident response, and threat intelligence analysis. Involving key partners such as CIRCL, Restena, Tenzir, and the University of Luxembourg, the project aims to establish a real operational infrastructure for practical training. This initiative integrates academic curricula with industry insights, offering hands-on experience in cyber ranges.

vulnerability-lookup is co-funded by CIRCL and by the European Union. Views and opinions expressed are however those of the author(s) only and do not necessarily reflect those of the European Union or ECCC. Neither the European Union nor the granting authority can be held responsible for them.

Assets 2
Loading