support apache errors log and http basic bruteforce #53
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
buixor
approved these changes
Nov 18, 2020
buixor
reviewed
Nov 18, 2020
| @@ -0,0 +1,15 @@ | |||
| # 404 scan | |||
There was a problem hiding this comment.
do we want to add this into the generic http collection ?
There was a problem hiding this comment.
not yet since it will not work with nginx currently and the http collection is used by the nginx one
There was a problem hiding this comment.
Are there plans on when that might be? It's nice that crowdsec is detecting those now but since they're not linked to a scenario, it's just detected but not remediated.
added 2 commits
November 18, 2020 14:41
AlteredCoder
changed the title
erenJag
pushed a commit
that referenced
this pull request
Dec 7, 2020
registergoofy
added a commit
that referenced
this pull request
Dec 7, 2020
* fix the RDNS post overflow * up * update postoverflows * up new bouncers for wip_lapi * fix http logs enricher (#55) Co-authored-by: AlteredCoder <AlteredCoder> * fix statics ressources extensions list (#56) * fix index.json * update blockers.json * bump version * update the bouncer desc * update blockers * support apache errors log and http basic bruteforce (#53) * update .index.json * Add a Ci workflow to test all configurations (#60) * ci initial testing * test like this * typo * do the trick ? * fix ? * add id for having output * add the dispatch thingy * add first test * should be better * typo * typo * update to use junit output format * add ci display * fix simulation.yaml * upgrade github actions * trigger ci * simpler stuff ? * always run report * is this there ? * test * fix the .index.json file not found * add patterns * test * test ? * some debug * change the auth log * trigger * trigger * test * test like this * trigger * trigger * typo * trigger * trigger * try this * trigger * tst ? * test * hop * should be fine now * add result file * add a bunch of tests * typo * fix iptables test * add bucket input * update ban-defcon-drop_range.yaml * taxonomy generation (#61) update CI for crowdsec 1.0 * little cleanup on some stuff before 1.0 (#63) * little cleanup on some stuff before 1.0 * change branches on CI workflow * remove debug: true * remove duplicate debug * Update index Co-authored-by: AlteredCoder <AlteredCoder> Co-authored-by: GitHub Action <action@github.com> * fix scenario : ban-report-ssh_df (#66) Co-authored-by: erenJag <erenJag> Co-authored-by: Thibault bui Koechlin <thibault@crowdsec.net> * Update index Co-authored-by: Thibault bui Koechlin <thibault@crowdsec.net> Co-authored-by: AlteredCoder <64792091+AlteredCoder@users.noreply.github.com> Co-authored-by: AlteredCoder <AlteredCoder> Co-authored-by: GitHub Action <action@github.com> Co-authored-by: erenJag <64777133+erenJag@users.noreply.github.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR fix #50 #53 .