⚠️ Note⚠️
Upgrading to this Timesketch version requires a database upgrade!
See https://timesketch.org/guides/admin/upgrade/ for more details.
What's Changed
- Add query string filtering to Visualizations by @sydp in #3182
- DFIQ Analyzer Implementation by @jkppr in #3178
- Add --skip-create-user option to enable non-interactive deployments by @raihalea in #3194
- Enable passing on auto-run analyzers parameter when using importer library by @YiChiCanCode in #3143
- Prevent opensearch from aggregating across all indices. by @jkppr in #3192
- [CLI] export archive and unarchive a sketch by @jaegeral in #3174
- Adding unittests for several csv import related timestamp / datetime edge cases by @jaegeral in #3177
- [tests] attempt to add more unit tests and e2e tests for import of vari… by @jaegeral in #3179
- Smaller refactoring, adding readmes to folders by @jaegeral in #3183
- move the tests_events folder to tests by @jaegeral in #3185
- [Tech dept] update contrib readme, update utils readme and move tsdev from contri… by @jaegeral in #3186
- Remove analyzer_run.py by @jaegeral in #3187
- 2024 09 spelling by @jaegeral in #3181
- Update the
sigma_events.csv
reference by @emmanuel-ferdman in #3196 - Fix analyzer parsing auth events by @dfjxs in #3190
New Contributors
- @YiChiCanCode made their first contribution in #3143
- @raihalea made their first contribution in #3194
- @emmanuel-ferdman made their first contribution in #3196
- @dfjxs made their first contribution in #3190
Full Changelog: 2024082...2024100