Releases · rkoumis/dalton

Use pyproject.toml (secureworks#184) (secureworks#189)
Use ruff format to format the code (secureworks#183) (secureworks#190)
Use ruff check --fix to make style changes (secureworks#183) (secureworks#192)
Add github actions CI (secureworks#191) (secureworks#193)
Be able to run unit tests on dalton and flowsynth (secureworks#182) (secureworks#194)
Update nginx from 1.19 to 1.27 (secureworks#200) (secureworks#202)
Update redis from 3.2 to 7.4 (secureworks#201)
Add unit tests for flowsynth (secureworks#204)
Use ruff to sort and format imports (secureworks#207)
Use ruff to detect flake8 bugbears (B) (secureworks#209)
Use pre-built zeek images (secureworks#181)
Use bump-my-version to update the version and tag (secureworks#197)
- Also, use bump-my-version to update the dalton-agent version
- Also, show the dalton controller version on the About page

Assets 2

21 Nov 15:43

rkoumis

Dalton 3.3.6

Zeek Enhancements (secureworks#177)

Dalton UI now will have an option to provide custom zeek script in zeek sensor job creation page. You can either upload custom script file or write the script (or both) in the Dalton UI, and can run pcaps using those custom scripts.
Add zeek version 7 and version 6 ; remove zeek version 4.

Author: Nikhileswar Reddy nreddy@octolabs.io

Assets 2

21 Nov 15:42

rkoumis

Dalton 3.3.5

Author: Robin Koumis (SecureWorks) rkoumis@secureworks.com

Assets 2

21 Nov 15:42

rkoumis

Dalton 3.3.4

Bring sensor configs up to date with current versions

Download ET Suricata 5.0 ruleset since the 4.0 ruleset will not work on latest supported Suricata versions.
set default enabled sensors to be up to date versions
add Suricata 7 YAML config file
add conf file for snort-2.9.20 even though it is functionally unchanged from snort-2.9.11
move suricata-7.0.0.yaml to proper location

Assets 2