Comments (7)
This is a feature already available in the system:
from assemblyline.
I'd say longer expiry wins as there is an expectation that the IOC will be there for at least that long.
from assemblyline.
That sounds like what we would need, the ability to be able to set retention time for the external source.
Can we re-open this issue with than goal?
from assemblyline.
Should be patched in the latest version of the service
from assemblyline.
How can I set this on an IOC from an external source/feed?
from assemblyline.
Currently the only way to do this is in /manage/badlist
manually. But if you wanted to automatically set an expiration period based on the source, then we'd need to add a configuration on the service side that can set/extend the expiry period of the item when it's added/updated to the list.
from assemblyline.
How would you want to handle competing sources raising the same item to be added to the badlist and they both can control the expiration?
Should the one with the longer expiry win, should the source with more recent updates win?
from assemblyline.
Related Issues (20)
- Update service stays in a loop trying to install obsoletes or non accessible docker images. HOT 1
- Intezer-Analyze short-circuit download HOT 3
- Feature Request: tolerations and nodeAffinity HOT 12
- Identity: Python obfuscated code identified as text/plain HOT 4
- Suricata 4.5.0.7 seems to be broken HOT 1
- Expose `delete_file_from_filestore` API to Python Client HOT 1
- Allow "private" submissions
- FrankenStrings URL extraction seems to trim URLs on char 0, even when it's not a binary file HOT 2
- AL 4.5.0.27: updater cannot upgrade any service HOT 15
- YARA service cannot parse rules with negative integers in metadata HOT 4
- Signature update services may not expose new signatures for workers immediately
- Unable to setup - Kibana keeps failing HOT 9
- Error: 504 Gateway-Timeout when all containers are up and healthy. HOT 5
- Add the possiblity to specify core-only secrets in the helm chart HOT 1
- Token-based Authentication to Azure Container Registry HOT 2
- Python code identified as text/plain HOT 4
- Identify pickle files
- Tag type text is cut-off when creating new badlist item
- Task pre-empted in Extract service due to TypeError HOT 2
- Allow enabling line wrapping in file preview
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from assemblyline.