Skip to content

Issues: stratosphereips/StratosphereLinuxIPS

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

113 Open 151 Closed
113 Open 151 Closed
Author
Filter by author
Label
Filter by label
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Milestones
Filter by milestone
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

Rename set_evidence_malicious_ip() in ti module to set_evidence_blacklisted_ip()
#539 opened Apr 9, 2024 by AlyaGomaa
In alert.json, the field Attach.Content for the alerts is very different than the ones for evidences.
#536 opened Apr 9, 2024 by AlyaGomaa
Try CI for MacOS m1
#535 opened Apr 9, 2024 by AlyaGomaa
print the current amount of flows per second we're reading in the progress bar stats
#534 opened Apr 9, 2024 by AlyaGomaa
check if we are calculating the jarm hash correctly
#533 opened Apr 9, 2024 by AlyaGomaa
Check why in this pcap we have 2 alerts happening exactly after each other
#530 opened Apr 9, 2024 by AlyaGomaa
Try to make alerts.json compliant with IDEA again
#529 opened Apr 9, 2024 by AlyaGomaa
Use the “Description” field from idea format in alerts.json to inform the user whether it’s an "alert" or an "evidence"
#528 opened Apr 9, 2024 by AlyaGomaa
split this method getDataFromProfileTW() into smaller methods for easier debugging
#527 opened Apr 9, 2024 by AlyaGomaa
use iterators in slips when retrieving flows from the sqlite db
#526 opened Apr 9, 2024 by AlyaGomaa
Add more tests to test_slips_utils.py
#523 opened Apr 9, 2024 by Sekhar-Kumar-Dash
Add more tests to test_profiler.py
#521 opened Apr 9, 2024 by Sekhar-Kumar-Dash
Improve the documentation to better explain the fields in alert.json enhancement For Beginners Stuff that you can do with skills for starters help wanted
#520 opened Apr 9, 2024 by eldraco
Alerts.json show incorrect timestamp upon file analyzation Advanced Advanced python required bug
#519 opened Apr 9, 2024 by maldwg
@AlyaGomaa
1
Improvement Suggestion for HTTP Analyzer Testing
#515 opened Apr 4, 2024 by zeyadtmi
1
@zeyadtmi
1
Improvements to Existing Threat Intel Module
#513 opened Apr 4, 2024 by zeyadtmi
1 task done
@zeyadtmi
1
Depreciated Node.js and commands versions in GitHub workflows.
#512 opened Apr 3, 2024 by Adity20
Implement Code Coverage Reporting with coverage.py
#506 opened Apr 2, 2024 by Sekhar-Kumar-Dash
@Sekhar-Kumar-Dash
The parse_local_ti_file function's current implementation always returns True For Beginners Stuff that you can do with skills for starters help wanted
#503 opened Mar 27, 2024 by AlyaGomaa
1
Detect the current DNS server of the traffic automatically help wanted Intermediate Level
#502 opened Mar 27, 2024 by eldraco
@zeyadtmi
7
Add documentation for how Slips uses CIRCL, Urlhaus and Spamhaus API's For Beginners Stuff that you can do with skills for starters help wanted
#499 opened Mar 26, 2024 by eldraco
@eldraco
1
Flag/Hide slips own traffic
#497 opened Mar 26, 2024 by coelner
@AlyaGomaa
3
WHOIS connection limit exceeded > detects as C&C channel
#495 opened Mar 25, 2024 by HeissesFeuer
2
Have a whitelist column for whitelisting an ip and port togethr, and add support for the ip being a “*”
#490 opened Mar 19, 2024 by AlyaGomaa
Bug in whiteisting not being respected for some domains
#486 opened Mar 17, 2024 by AlyaGomaa
1
ProTip! Adding no:label will show everything without a label.