Skip to content

Changelog

For upgrades instructions, please see the Upgrades page.

v2.4.12 August 28, 2024

What's changed

  • Added module to support Seika.io
  • Improved IRIS Webhook module
  • Fixed spelling in editors

Full Changelog

v2.4.10 July 29, 2024

What's changed

Fixed
* Issue with errornous outcome setting in cases

Full Changelog

v2.4.9 July 17, 2024

What's changed

Fixed
* Issue with notes revisions assigning wrong user to the revision

Full Changelog

v2.4.8 July 16, 2024

What's changed

Added * Publication of the docker images on Github Container Registry (GHCR) * New GraphQL API endpoints for IOCs and cases * Automatic load of alerts relations * Notes revisions history

Fixed
* Mutliple issues

Full Changelog

v2.4.7 March 18, 2024

What's changed

Fixed
* Issues in the datastore preventing to upload multiple files

Full Changelog

v2.4.6 March 18, 2024

What's changed

⚠️ Important changes are done in the Access Control. If you are upgrading, please carefully read the upgrades instructions. The layout of the reports has been changed. Reports template need to be upgraded as well.

Improved

  • New notes layout
  • New timeline layout with tree view
  • New timeline feature allowing to create child events
  • New access control feature allowing to associate users with customers
  • CI/CD init by @c8y3 in #401, #400, #402

Fixed

  • Fix CSS issue by @whikernel in #377
  • Fixes addition of case templates in #379
  • Fix issues with case templates usage in #381
  • Fix issue with IOC lookups in the timeline in #382
  • Fix major collaboration issue in notes in #385
  • Fix PG Extension not being setup properly in #390
  • Fix multiple security issues impacting case reports and editors

New Contributors

  • @MikaelFangel made their first contribution in #414

Full Changelog

v2.3.7 December 14, 2023

What's Changed

Fixed

  • Fixes an issue with download of files from the datastore #347
  • Fixes an issue with the addition of protagonist in cases
  • Fixes an issue with case edition modal

Improved

  • Improved timeline rendering
  • Improved security in Datatables

Full Changelog

v2.3.6 December 7, 2023

What's Changed

Fixed

  • Fixes an error preventing the proper generation of reports
  • Fixes an issue with filtering in the overview tab
  • Adds more filtering options in the overview tab

Full Changelog

v2.3.5 November 30, 2023

What's Changed

Fixed

  • Fixes an issue introduced in v2.3.4 where the cases metadata are not properly saved.

Full Changelog

v2.3.4 November 29, 2023

A severe bug has been introduced in this version. Please upgarde to v2.3.5.

What's Changed

Added

  • Added support for evidences types
  • Added support for cases severity
  • Improved search in context switcher

Fixed

  • Fixed overview page
  • Fixed dashboard filtering

❗ The layout of the reporting has slightly changed. Custom report templates might not work anymore. You can use https://<server>/case/export?cid=<case_id> to get all the possible fields.

Full Changelog

v2.3.3 October 5, 2023

What's Changed

Fixed

  • Fixed breaking of manage case list if percentage in title
  • Fixed broken title search in overview
  • Fixed sorting of owners in overview
  • Fixed quick look in overview
  • Fixed alert page breaking if username contains trailing space
  • Fixed IrisVTModule links
  • Fixed IrisWebhookModule
  • Fixed refresh after closing of notes

@Scriptception made their first contribution in 313

Full Changelog

v2.3.2 August 2, 2023

What's Changed

Fixed

Patches a critical issue corrupting files uploaded to the DataStore via the IOC option or when a password is set

Full Changelog

v2.3.1 July 23, 2023

What's Changed

Improved

  • Overview page and quick view layout
  • Auto assignment of alerts when not assigned
  • Possibility to filter tags by clicking on them in alerts

Fixed

  • Call of modules when done from the modals
  • UI

Full Changelog

v2.3.0 July 09, 2023

What's Changed

Added

  • Collaborative editor in notes
  • Possibility to add case peer-reviews
  • Alerts resolution status
  • Auto closing of alerts with resolution for linked alerts
  • New webhook module
  • Enhanced overview page
  • Attributed open cases in dashboard
  • Assets and IOCs multi-additions from the UI
  • New UI design

Fixed

  • Password change for users
  • Description breaking in alerts and events
  • Missing icons in MD rendering for know links
  • Alerts rendering

Full Changelog

v2.2.3 June 19, 2023

What's Changed

Added

  • Possibility to use LDAP and local auth as fallback
  • Possibility to add multiple IOCs at once from the UI
  • Possibility to add multiple assets at once from the UI
  • Support for hooks and module calls in alerts
  • URL redirection after login

Fixed

  • Similarities in alerts when no assets are provided
  • Assertion of data in marshmallow
  • MD editor new lines handling
  • Unicode in datastore
  • Alerts share links
  • Modules info when registering a module
  • UI fixes

Full Changelog

v2.2.2 May 30, 2023

What's Changed

Added

  • Possibility to pivot on assets and IOCs from the alerts graph

Fixed - Delete character escaping for passwords by @juadde in #253 - Case template of tasks without tags - Shortening of case names during updates - Bad handling of certain requests without CID - Deletion of assets related to alerts once merge into a case

Full Changelog

v2.2.1 May 24, 2023

What's Changed

Note 1: This version contains a security fix for iris-web (see CVE-2023-30615)
Note 2: on_postload_case_info_update hook has been renamed to on_postload_case_update

Added

  • Add newly created users after a LDAP authentication to group Analysts by @c8y3 in #247

Fixed

  • Security fix of CVE-2023-30615 - GHSA-gc6j-6276-2m49 impacting iris-web < v2.2.1
  • Deletion of cases with assigned tasks
  • Merge of multiple alerts
  • Import of IOCs and Assets in case multiple alerts are merged

Full Changelog

v2.2.0 May 22, 2023

What's Changed

Added

  • Basic csv events file import (with default options) by @realsec in #240
  • New endpoints to search for manageable objects such as assets types etc,
  • New search by asset IDs, IOC IDs and events IDs in the timeline

Fixes

  • Some configuration checks when LDAP and automatic user creation are set by @c8y3 in #246
  • Ensure database connectivity before trying to create tables by @weslambert in #248
  • Merge of multiple alerts in one case not merging the IOCs and assets
  • Bug allowing to add an asset to a timeline not belonging to the same case
  • UI bug fixes

New Contributors

  • @realsec made their first contribution in #240
  • @weslambert made their first contribution in #248

Full Changelog

v2.1.0 May 15, 2023

If you are using custom SSL certificates, please read the upgrade instructions when upgrading from previous versions.

What's Changed

Added

  • Full support of alerts
  • Case templates
  • Provisioning of users
  • Service accounts
  • New permissions

Fixed

  • Variable LDAP_AUTHENTICATION_TYPE in .env.model by @c8y3 in #217
  • Automatic creation of users with ldap authentication by @c8y3 in #227
  • Update nginx.conf for Security HTTP headers to work. by @oikuda in #216
  • Columns in manage cases #205
  • Customer contact deletion #239
  • Search permissions #237
  • Customer permissions #235
  • Toast split #226
  • Assets exporting #224
  • Assets IOC filtering #223
  • ADM username not enforced #218
  • JIT provisioning of users in LDAP #203

New Contributors

  • @c8y3 made their first contribution in #217
  • @oikuda made their first contribution in #216

Full Changelog

v2.0.2 April 18, 2023

What's Changed

Fixed
* Update case_notes_db.py for bug fix #200 by @LoneWolf-96 in #208 * Do not escape_filter_chars for NTLM username by @juadde in #212 * docker-compose cleanup by @juadde in #213 * Listening port not being propagated in nginx docker

New Contributors
* @LoneWolf-96 made their first contribution in #208 * @juadde made their first contribution in #212

Full Changelog

v2.0.1 April 05, 2023

What's Changed

Fixed [FIX] Additional table header in case management breaking proper loading of data in #206

Full Changelog

v2.0.0 March 26, 2023

What's Changed

In addition to the features listed below, we are changing the way we are issuing releases. From now on, IRIS follows the Semantic Versioning 2.0 guidelines.
The code ready for production is always tagged with a version number. alpha and beta versions are not production-ready.

Do not use the master branch in production.

A website with the current development version is also provided and freely accessible. It serves as a beta before public releases.

Added

  • Groups management
  • Case access control and basic permissions
  • Comments support on a call objects
  • Markdown editors in all case objects
  • Customers dedicated pages with additional information and cases stats
  • LDAP authentication
  • Markdown reporting
  • Case owners, classifications, outcome and tags
  • Possibility to update case basic infornations
  • Case overview page
  • Unique UUID on all case objects
  • Multiple assignees support in case tasks
  • Deletion confirmation prompt on all case objects as an option
  • IOC in events plus optional synchronization with assets
  • Events flagging in the timeline
  • MD links on every case objects

Improved

  • Dark mode
  • Uniformity of modals
  • Overall UI and UX
  • Compromised status in assets
  • Error reporting in the UI

Fixed

  • Manual call of modules when multiple modules are availables
  • Multiples bugs fixes
  • Security fixes

Full Changelog

v1.4.5 June 9, 2022

What's Changed

  • Added a datastore in #115, fixes #30 :
    • Upload and store any files on IRIS
    • Password protect them as an option
    • Download
    • Add to IOC and/or evidences automatically
    • Reference to files in notes, summary or any textual input
    • Copy/paste of images directly in notes and summary
    • Virtual folders to arrange files
  • Ability to configure password policy in #117, fixes #116
  • Dark mode improved, flickering removed
  • Multiples bugs fixes
  • Security fixes

Full Changelog

Notes: Changes are made to the Nginx docker to allow upload of big files, hence specific upgrades are needed and auto-updates is not yet supported for this version. Please see the upgrades instruction for more details.

v1.4.4 May 18, 2022

What's Changed

  • Implementation of bulk events editing by @sebastiandemmer in #110
  • Fixes context switch button doesn't load cases by @DevJoost in #112
  • Fixes multiple minor bugs

Full Changelog

v1.4.3 May 13, 2022

What's changed

  • Managed IRIS updates from itself
  • Custom icons for assets - fixes #44 by @sebastiandemmer
  • IOCs link in timeline and graph - fixes #50
  • History of modifications in timeline
  • User id in timeline export as an option - fixes #65
  • Backup of database from the interface
  • Minimisation of modals in cases
  • New UI improvements in timeline
  • New minimal notifications for almost all activities
  • Improved overall responsiveness and speed
  • Improved error feedbacks to users
  • Improved load of tasks results by x10
  • Code cleaning
  • Multiple bug fixes

Full Changelog

v1.4.2 April 22, 2022

Improvements :

  • Possibility to duplicates events in timeline - #91
  • Possibility to filter timeline with basic query - #94

Fixes :

  • Integer limit on file size in evidences - #89
  • Gradient in closed cases
  • on-preload hooks list handling - #92
  • tags issue - #88
  • Case info modal from case - #93
  • Multiple UI issues

v1.4.1 April 8, 2022

v1.4.0 April 6, 2022

A bug fixe exists for this version. See v1.4.3

  • Hooks, adding the ability for modules to react on almost anything happening on the plateform in #75
  • New type of modules that can handles hooks
  • VirusTotal beta integration as a processor module
  • MISP beta integration as a processor module
  • Custom attributes on all case objects allowing to extend the default fields
  • A compact timeline view for better visbility
  • Premises of a dark theme
  • Resiliency of docker volume in #80
  • Minor improvements in #69, #79
  • Bug fixes in #70, #73, #77
  • Security fixes

v1.3.1 March 19, 2022

  • Fixes wheel issue preventing proper build of the docker, as described in #83

v1.3.0 January 24, 2022

  • Added the ability to batch upload IOC from a CSV file in #26
  • Added the ability to batch upload assets from a CSV
  • Screenshot - Export contents of any case pages as PNG in #35
  • Export timeline as CSV in #47
  • Improved timeline loading time by x10 - loads thousands of events in a sec
  • New auto parsing of dates in events addition/updates
  • Brand new timeline visualisations
  • Improved assets loading time
  • Shared links - easily share any case objects with your collaborators
  • Right panel now offers last activities for user's current case
  • Added assets tags in #37
  • New API endpoints in #53
  • Auto migration of database for next releases
  • Indication of mandatory fields in forms
  • General bug fixes, stability and UI improvement

v1.2.1 December 31, 2021

  • Added ATT&CK tactics by @ecapuano in #9
  • Added screenshot and video link in readme in #12
  • Fixed duplicated path to add customer in #4
  • Fixed asset description data validation client side in #7
  • Fixed tooltip in #10
  • Add a per-column filtering field in the case view by in #15