Hashr integration #25

wajihyassine · 2023-07-14T20:33:43Z

Name and Version

charts/osdfir-infrastructure

What is the problem this feature will solve?

Adding Hashr functionality into OSDFIR Infrastructure to build hash sets off processed data

What is the feature you are proposing to solve the problem?

Integrating Hashr into OSDFIR Infrastructure. This can be either directly in the Timesketch chart then would need to update the Timesketch config or within the OSDFIR Infrastructure to use as standalone.

What alternatives have you considered?

No response

jkppr · 2024-04-24T20:48:52Z

PR #140 adds the HashR importers for GCP, targz, rpm, zip, iso9660, deb

The importers for GCR, AWS, Windows and WSUS are still missing. They need a bit different configuration and some testing before they can be added.

Next step:

Add missing importers
Add the OSDFIR / Timesketch integration
Consider using GCP workload identity which is the recommended method. That way no need to export keys and can use the init-gke.sh script to bootstrap the service account.

wajihyassine added the enhancement New feature or request label Jul 14, 2023

wajihyassine added the help wanted Extra attention is needed label Sep 20, 2023

wajihyassine removed the help wanted Extra attention is needed label Oct 26, 2023

wajihyassine assigned jkppr Oct 26, 2023

jkppr mentioned this issue Apr 23, 2024

Adding basic HashR support #140

Merged

3 tasks

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Hashr integration #25

Hashr integration #25

wajihyassine commented Jul 14, 2023

jkppr commented Apr 24, 2024 •

edited

Loading

Hashr integration #25

Hashr integration #25

Comments

wajihyassine commented Jul 14, 2023

Name and Version

What is the problem this feature will solve?

What is the feature you are proposing to solve the problem?

What alternatives have you considered?

jkppr commented Apr 24, 2024 • edited Loading

jkppr commented Apr 24, 2024 •

edited

Loading