Jared Fagel
Jared Fagel
[BUG] Alerts of type watchlist.hit.query.* from My Watchlists Feed Missing description Data Member
**I am seeing this behaviour on: (please complete the following information):** - OS: Windows - Carbon Black Product: CB EDR (Response) - Python Version: 2.7 **Describe the bug** Alert objects...
**I am seeing this behaviour on: (please complete the following information):** - OS: Windows - Carbon Black Product: CB EDR (Response) - Python Version: 2.7 **Describe the bug** Some alerts...
## Description Revisions would improve how the qradar_search function works. Current implementation issues: Implementation is clunky in the use of generic "qradar_query_param" parameters as opposed to managing them in the...
RotatingFileHandler is necessary to prevent the duologsync.log file from increasing in size indefinitely until the disk fills. This allows for 3 rotations of the log file (4 total), each capping...
### Is your feature request related to a problem? Please describe. Currently, the cb-event-forwarder does not use RFC compliant syslog format (RFC 3164 or RFC 5424). As a result, syslog...
I'm documenting this as an issue here to help track resolution. I compared 3.7.5 and 3.8.1 and would guess this is an issue within the protobuf_message_processor ... I wasn't able...
The CB Event Forwarder service permissions are incorrectly set to 755 (```-rwxr-xr-x```) by default. The system daemon reports this misconfiguration like: `systemd[1]: Configuration file /etc/systemd/system/cb-event-forwarder.service is marked executable. Please remove...
This is related to Issue #224
network.target is not sufficient for ensuring the network is actually up. Switch to network-online.target instead.
Fixed Base64 header decoding errors within the get_decoded_email_header() method: - Added missing unicodedata import to top of script. - Removed extra header encoding prefix and suffix characters (=? / ?=)...