http://open-source-security-software.net/project/dalton/releases.atom 2024-07-27T08:56:37.510947+00:00 python-feedgen dalton v2.0 2017-11-15T20:29:41+00:00 Dalton public release. Special thanks: SuriCon 2017 2017-11-15T20:29:41+00:00 dalton v2.1.0 2019-12-30T18:19:48+00:00 Tagging the code at this point in time. 2019-12-30T18:19:48+00:00 dalton v2.1.1 2020-08-03T14:39:59+00:00 Minor but important fix for 2.1. 2020-08-03T14:39:59+00:00 dalton v3.0.0 2021-03-10T18:17:32+00:00 # Dalton 3.0.0 (2021-03-10) * Move to Python 3 from Python 2. * Better Suricata EVE log support in UI now that unified2 is no longer supported with Suricata v6; can format/highlight, view in "dark mode", and download directly from the UI. * Support for running jobs using Suricata socket control and enabled it by default. Now Suricata doesn't have to restart (load config, rules, etc.) between jobs if the config and rules stay the same. * Ability to easily enable SSL/TLS on the Controller. * Additions, updates, and fixes to the API to reduce complexity and make it work as expected. * Can now submit multiple pcaps (or an archive with multiple pcaps) and have them processed as individual jobs. * Display the number of alerts for finished jobs on the Queue page. * Ubuntu docker containers now use 18.04. * Use more recent versions of libraries, e.g. flask, jquery, etc. * Minor UI reorganization. Variables are no longer bifurcated from the rest of the config. * Dalton agent now has configurable "config" parameter that it can submit to tell controller which config to use. * Address issues # 113, 123, 128, 132 (https://github.com/secureworks/dalton/issues/). * Updated documentation to reflect current reality. * Sundry other bug fixes and enhancements. 2021-03-10T18:17:32+00:00 dalton v3.1.0 2021-06-18T13:56:10+00:00 # 3.1.0 (2021-06-18) Contributors: Donald Campbell, Adam Mosesso * Added ability to select multiple pcaps from the file upload dialog. * Support for dumping (displaying) inspection buffers from alerts. * Minor cleanup. 2021-06-18T13:56:10+00:00 dalton v3.1.1 2021-09-30T03:02:20+00:00 - Fixed UI issue where the "Dump buffers" option was being shown for incompatible engine versions. (issue #139) - Server side enforcement ensuring "Dump buffers" will only be attempted for compatible versions. - Bumped the default agent versions in the ``docker-compose.yml`` file to be the latest. - Added ``INSTALL-AWS.rst`` file with instructions for quickly and easily spinning up Dalton in AWS. 2021-09-30T03:02:20+00:00 dalton v3.2.0 2022-03-09T01:53:36+00:00 - Added Zeek as a sensor 2022-03-09T01:53:36+00:00 dalton v3.2.1 2022-03-11T01:32:42+00:00 - Added Zeek as a sensor (Dalton v3.2.0) - Added explicit requirement for `itsdangerous==2.0.1` 2022-03-11T01:32:42+00:00 dalton v3.2.2 2022-04-28T14:34:15+00:00 - Added explicit requirement for `Jinja2==3.0.3` 2022-04-28T14:34:15+00:00 dalton v3.2.3 2022-05-26T14:51:26+00:00 - Added share link on job results page to recreate job automatically - Added PCAP drag and drop to UI when creating a new job 2022-05-26T14:51:26+00:00 dalton v3.2.4 2022-08-16T18:51:57+00:00 - New URL for downloading Suricata source code 2022-08-16T18:51:57+00:00 dalton v3.2.5 2022-09-27T23:51:25+00:00 - Faster compile time for Zeek - Fixed bug where Zeek wouldn't run if there were not Zeek scripts 2022-09-27T23:51:25+00:00