Skip to content

Version 1.10.0

Latest
Latest
Compare
Choose a tag to compare
@Filigran-Automation Filigran-Automation released this 18 Dec 17:12
· 24 commits to master since this release
1.10.0
e31e29d
This commit was signed with the committerโ€™s verified signature.
Filigran-Automation Filigran Automation
GPG key ID: C708FDB840E80D34
Learn about vigilant mode.

Hello dear community! The OpenBAS 1.10.0 is out ! Hope you will enjoy it! ๐ŸŽ‰

๐Ÿฆ Collector for CrowdStrike Endpoint Security

CrowdStrike is in da place ! With this new collector, you can leverage your own Crowdstrike Endpoint Security to quickly receive real-time feedback on your tests on endpoints, letting you know if your attack was detected and/or prevented.

๐ŸงฉIntegration openBAS & openCTI

  1. Apply the right platform & architecture when generating a scenario from OCTI

We now have a platform & architecture coherence in the injects generated via OCTI, which makes the scenarios more relevant and usable in openBAS (the full integration will come with next OpenCTI minor release).

  1. Have all payloads mapped with the supported architecture

In order to map correctly the architecture when creating a simulation from OCTI and to ensure the right payload is used with the right endpoint we now have all payloads mapped with an architecture x86_64, arm or both.

๐Ÿ Precheck of the executor at the implant level

The implant now includes a precheck to ensure the specified executor is available, providing a clear message if it is not.

๐Ÿ‘€ Be able to navigate from the MITRE result of a simulation:

Results in the MITRE matrix display the inject responsible for each score, with the option to navigate to inject details by clicking on the inject name.

๐Ÿ” Access payload information from the inject detail page.

You forgot what command lines were in your inject ? No worries, you can now access your payload configuration info directly in the inject detail page !

This work included many bugs bashed, some UI improvements and update in our documentation.

Enhancements:

  • #1911 Ability to see 100 simulations of 50 injects each in the overview of a scenario in 0.5 second
  • #1850 Introduce /health endpoint

Bug Fixes:

  • #2093 Agent and implants missing in .jar for specific arch/os
  • #2091 When I have some disabled inject, simulation still On Going
  • #2076 Try to install OpenBAS agent on Windows Virtual Machine failed
  • #2023 OpenBAs unable to start after adding a Caldera Agent running with an Open BAs agent

Pull Requests:

  • [backend/frontend] Restarting an atomic testing keeps the same Inject UUID by @isselparra in #1901
  • [tool] Update Node.js to v22 by @renovate in #1873
  • [frontend] Update dependency apexcharts to v4 by @renovate in #1878
  • [backend] send encoded command into implant by @MarineLeM in #1935
  • [backend] Upgrading to latest spring boot version by @Dimfacion in #1894
  • [backend] Fixing migration number by @Dimfacion in #1989
  • [backend] Add architecture to payloads (#1752) (#1922) by @savacano28 in #1918
  • [backend] Adding a new "health" endpoint (#1850) by @heditar in #1950
  • [backend] handle cmd variables by @MarineLeM in #2001
  • [frontend] Update dependency react-router-dom to v7 by @renovate in #1914
  • [frontend] Remove EndpointStore, AssetGroupStore & ArticleStore by @RomuDeuxfois in #2019
  • [backend] fix (build): use correct interface to PayloadCreateInput with PayloadUtils by @antoinemzs in #2034
  • [Backend]Test launch/relaunch/pause of a simulation (#1488) by @johanah29 in #2025
  • [backend] Apply the right platform & architecture when generating a scenario from OCTI (#1713) by @savacano28 in #2003
  • [backend/frontend] Ability to see 100 simulations in the overview of a scenario in 0.5 seconds by @isselparra in #1995
  • [frontend|backend]Show prerequisites info in atomic testing (#1787) by @johanah29 in #2026
  • [frontend] add button to navigate back to scenario from simulation (#1611) by @antoinemzs in #2040
  • [frontend] Update dependency globals to v15.13.0 by @renovate in #2046
  • [frontend] Fixing the back to administration button not working by @Dimfacion in #2087
  • [frontend] Fix payload info tab not visible for simulations by @damgouj in #2084
  • Fix for the bug breaking openbas when running multiple agent issue/2023 by @heditar in #2069
  • [frontend] Don't add asset arch filter if payload is all archs by @antoinemzs in #2088
  • [frontend] replace deprecated ListItemSecondaryAction component by @MarineLeM in #2086
  • [tests] Explicitly mock Instant.now to fix test flakiness by @antoinemzs in #2089
  • [backend] fix thatMustBeFinisehd query to exclude disabled injects frโ€ฆ by @guillaumejparis in #2092
  • [backend] Update dependency org.postgresql:postgresql to v42.7.4 by @renovate in #2073
  • [backend] Update dependency com.rabbitmq:amqp-client to v5.24.0 by @renovate in #2071
  • [frontend] Update dependency react-router-dom to v6.28.0 by @renovate in #2060
  • [frontend] Update dependency cronstrue to v2.52.0 by @renovate in #2081
  • [frontend] Update dependency @testing-library/react to v16.1.0 by @renovate in #2080
  • [tool] add missing arch/os agent & implant in circle build (#2093) by @guillaumejparis in #2094
  • [backend] add arm64 windows repository for agent & implant (#2093) by @guillaumejparis in #2096

Full Changelog: 1.9.2...1.10.0

Contributors

renovate, heditar, and 9 other contributors
Assets 4
Loading