All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog.
Background:
The Presenter Docker maps the /app/templates directory to the presenters_templates container.
This overrides the original /app/templates files with user modifications. When new or updated templates arrive with a new version, they stay hidden due to this mapping.
Solution:
Remap user-changed reports to the /app/templates/user_templates directory.
Simply update the old template path in Configuration / Product Types: e.g., /app/templates/file.html -> /app/templates/user_templates/file.html
- Added variable
TARANIS_NG_AUTHENTICATORtodocker.ymland.env(default value "password"). - Improved regex bots (logs, multiple regex, disable bot, don't try to create duplicity values...).
- Migrated COLLECTORS, PUBLISHERS, BOTS, and PRESENTERS to the latest Python 3.12, Alpine 3.18, and latest Python modules.
- Migrated to the new PDF presenter (WeasyPrint, before deprecated PDFKit).
- Migrated Collectors to the latest Selenium version.
- New SFTP publisher (Paramiko).
- If more users work on the same report item -> update locked field with a new value.
- Fixed the issue when the message title or body is missing in the publisher.
- Fixed LDAP crash (moved cert path to env variable
LDAP_CA_CERT_PATH). - Disabled keyboard shortcuts in News Items comments editor.
- Fixed saving comments in News Items (was not working).
- Fixed the display of report item details on the product (was empty before).
- Fixed some small GUI crashes (null .link, fast report item open).
- Fixed a bad condition in bots (not processing records that were issued in 00 seconds).
- Fixed blinking/jumping in Assess (data reload).
- Replaced PNG picture in the template with a new fixed SVG image that finally works everywhere.
- Updated PDF template.
- Don't show/send the user password field to the backend (report items).
- Fixed deleting/updating items on the report item.
- Bot container was missing a restart policy.
- Fixed bad mapping of user report templates.
- Disabled log duplicities on the screen if SYSLOG is disabled.
- Fixed dialog centering based on scrollbar range and not on screen size.
- Improved temp file names in the PDF presenter.
- Scheduled actions in Collectors are more exception-resistant.
- A lot of various fixes.
Thanks for the contributions: @multiflexi
v23.09.1 - 2023-09-27
- New reports (OSINT, Disinfo, Offensive, Weekly)
- Keycloak authentication support
- JSON presenter
- Email presenter
- LDAP authentication
- Support for password authentication (database), removed test_authenticator
- More product information inside the presenter to be able to use it in reports
- Password data were logged in plain text, now replaced by string CENSORED
- In Products, display "Report type" instead of the string "Title" in row detail
- Fixed GUI shortcuts
- Collectors: better logs, fixed "Popup close" crash
- Fixed Access denied by ACL in News items (deleting Osint sources)
- Fixed MISP template
- Confidentiality not showing TOP SECRET on PDF, HTML, HTML WEEKLY templates
- TLC updated: WHITE to CLEAR, added AMBER+STRICT
- CASE INSENSITIVE search for attributes
- Fixed time zone displacement out of range error when time > 16:00 + wrong datetime evaluated in SQL queries
- Fixed error: Signature has expired
- Properly display attributes in an aggregate
- Fixed bad authentication required for the product (PUBLISH_ACCESS, PRODUCT_TYPE_ACCESS)
- Fixed bots crash, better Regex
- Added missing TOR binary to the collectors
- Improved templates
- Fixed bug when new templates stay hiden due wrong docker mapping
- A lot of various fixes
Thanks for the contributions: @sebix, @multiflexi
v21.11.1 - 2021-11-19
- Added collector management to manage.py - SK-CERT#18
- Docker readme: Fix URLs/Ports with switch to HTTPS by @sebix in SK-CERT#21
- Tidied up word lists
- Re-worked proxy handling for the RSS collector
- Fixed issues with collector node and OSINT source status models and schemas - SK-CERT#23
v21.10.6 - 2021-11-10
- added sample word block list for tag cloud
- more verbose logging in the RSS collector
- usability fixes in collectors
- fixed asset group updates
- improved default templates for products
v21.10.5 - 2021-11-09
- authors of Product templates may now use the new
Configuration -> Product typeshelp screen, which lists all the fields defined in a chosen Report item type. This simplifies the development of new product templates.
- GUI and RSS collector fixes
v21.10.4 - 2021-11-08
- keycloak container (not enabled yet)
- gui: fix news item group operations
- gui: bundle fonts
- gui: upgrade for security (breaks minor stuff, will be fixed in a later release)
- web collector: minor improvements
v21.10.3 - 2021-11-08
- minor fixes and improvements across the entire project
- security patches for third party libraries
- docker:
- deployment now includes Traefik as a reverse proxy for more convenient deployment (supports self generated, pre-uploaded, and letsencrypt certificates)
- collectors container minimised
- complete rewrite of web collector: more robust, better support for various selectors, upgrade to selenium 4.0.0
- @sebix made their first contribution in SK-CERT#5
v21.10.2 - 2021-09-25
- sample templates for products (PDF, HTML, TXT, MISP)
- multiple usability fixes across the product
v21.10.1 - 2021-09-25
- Initial release of Taranis NG
- Merged multiple Taranis NG repositories into one for easier understanding and management of the project