Manuel Sabban
Manuel Sabban
* add a way to test notifications with cscli
**BEWARE: THIS IS A BREAKING CHANGE** The acual situation is the following: * in the `email.yaml` plugin configuration file, ssltls configuration option leads to do a starttls encryption. * it's...
fix logging for email plugin (avoid naming issues, when using twice the plugin) This will fix https://github.com/crowdsecurity/crowdsec/issues/1668
### What happened? The logger name in the email plugin uses a global that is constantly changed when notifying, leading to weird naming in the logs: ``` time="20-07-2022 10:17:37" level=info...
**Describe the bug** It seems that labels from scenario are not passed into RuntimeAlerts. It's not that important right now as it's not used anywhere, but it would be handy...
### What would you like to be added?  It might be interesting to link the relevant paths to the user rather than just dumping the content. As well, the...
### What happened? Default crowdsec configuration comes with the linux collection by default. More and more distributions don't have `auth.log` and `syslog` file anymore, systemd's tool journalctl is used instead....
It seems that the sigma/web_exchange_proxyshell is a bit buggy, I keep getting those ``` time="03-08-2023 15:12:22" level=error msg="failed parsing : invalid operation: int() (1:33)\n | evt.Meta.service == 'http' && ((int(evt.Meta.http_status)...
Some of the whitelist generator ask for a lot of samples before returning a whitelist. This configuration is hardcoded. It seems to be a bit confusing since we have that...