We are proud to announce the immediate availability of Cerana 0.9 (TheHive 3.0.9) and Cortex 2.0.4. These hotfix releases address a number of issues and we encourage you to update your current installation at your earliest opportunity. For your comfort and sanity. Seriously.
We also took this opportunity to update Cortex analyzers to fix issues with CIRCL Passive SSL, Hybrid Analysis, and the Joe Sandbox URL Analysis template. Moreover, we have updated the
cortexutils library to set the taxonomy level to info if it is invalid. To upgrade
cortexutils to 1.2.4:
sudo pip install -U cortexutils && sudo pip3 install -U cortexutils
To update your Cortex analyzers:
cd /path/to/Cortex-analyzers && git pull
Note: the Bluecoat analyzer was removed since it does not comply with the updated Terms of Service of Symantec Web Pulse SiteReview. Symantec does no longer permit programmatic querying of the service.
Fixes in Cerana 0.9
- #527: display long reports when the analyst clicks on the corresponding short reports. Meh!
- #541: make the drop-down menu for case templates scroll when there is a truckload of them.
- #452: prevent WSAPI failure.
- #531: fix naming inconsistencies in the Live Stream.
- #530: correct an error when trying to analyze a filename using the Hybrid Analysis analyzer.
- #543: generate an error if unable to contact Cortex.
- #518: merge observable sightings when merging cases.
- #535: fix the tag color of the PhishTank analyzer which was transparent under certain conditions.
Fixes in Cortex 2.0.4
- #89: let a
read,analyzeuser change or display their API key.
- #91: sort analyzers by name.
- #92: redirect users to the index page when they click on the Cortex logo.
- #93: under the
Organization > Configurationspage, the UI displays wrong green checkmarks for empty configurations.
orgadminusers are not able to update their organization’s users after the users are created. The UI doesn’t display any error message.
- #95: avoid ‘lax programming’, Nabil style😜, and strictly filter the list of analyzers in the
- #90: fix Python dependency errors in docker.
Something does not work as expected? You have troubles installing or upgrading? Spotted new bugs? No worries, please open issues on GitHub or comment on existing ones, join our user forum, contact us on Gitter, or send us an email at firstname.lastname@example.org. We are here to help.
Correction: April 14, 2018
An earlier version of this post did not mention that the Bluecoat analyzer was removed in the latest Cortex Analyzers repository release.