Skip to content

Commit

Permalink
Creation of the common module and notification system
Browse files Browse the repository at this point in the history
Created a new Django App to centralize the generic functions of Watcher used by multiple modules.
Refactored the notification system to integrate SMTPS protocol (replacing SMTP).
Added automatic alert creation in TheHive via Feeder.
Integrated notifications through the Citadel enterprise application (via APIs).
Added Slack notifications (via APIs).
  • Loading branch information
ygal authored and ygal committed Dec 4, 2024
1 parent 77c9d14 commit e6f9346
Show file tree
Hide file tree
Showing 4 changed files with 89 additions and 34 deletions.
17 changes: 14 additions & 3 deletions .env
Original file line number Diff line number Diff line change
Expand Up @@ -28,8 +28,8 @@ ALLOWED_HOST=
CSRF_TRUSTED_ORIGINS=

# DJANGO EMAIL Configuration
EMAIL_FROM=
SMTP_SERVER=
EMAIL_FROM=[email protected]
SMTP_SERVER=localhost
WATCHER_URL=https://example.watcher.local
WATCHER_LOGO=https://raw.githubusercontent.com/thalesgroup-cert/Watcher/master/Watcher/static/Watcher-logo-simple.png
EMAIL_SUBJECT_TAG_SITE_MONITORING=INCIDENT
Expand All @@ -38,9 +38,11 @@ EMAIL_CLASSIFICATION=INTERNAL
# THE HIVE Setup
THE_HIVE_URL=
THE_HIVE_VERIFY_SSL=False
THE_HIVE_KEY=
THE_HIVE_API_KEY=
THE_HIVE_CASE_ASSIGNEE=watcher
THE_HIVE_TAGS=Watcher,Impersonation,Malicious Domain,Typosquatting
THE_HIVE_CUSTOM_FIELD=watcher-id
THE_HIVE_EMAIL_SENDER=[email protected]

# MISP Setup
MISP_URL=
Expand All @@ -50,6 +52,15 @@ MISP_KEY=
MISP_TICKETING_URL=
MISP_TAGS=Watcher,Impersonation,Malicious Domain,Typosquatting,tlp:amber

# SLACK Setup
SLACK_API_TOKEN=
SLACK_CHANNEL=

# CITADEL Setup
CITADEL_API_TOKEN=
CITADEL_ROOM_ID=
CITADEL_URL=

# LDAP Setup
AUTH_LDAP_SERVER_URI=
AUTH_LDAP_BIND_DN=
Expand Down
100 changes: 72 additions & 28 deletions Watcher/package-lock.json

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion Watcher/package.json
Original file line number Diff line number Diff line change
Expand Up @@ -34,7 +34,7 @@
"react-day-picker": "^7.4.10",
"react-dom": "^16.13.0",
"react-redux": "^7.2.4",
"react-router-dom": "^6.26.2",
"react-router-dom": "^5.3.4",
"react-wordcloud": "^1.2.7",
"redux": "^4.0.1",
"redux-devtools-extension": "^2.13.9",
Expand Down
4 changes: 2 additions & 2 deletions docker-compose.yml
Original file line number Diff line number Diff line change
Expand Up @@ -27,7 +27,7 @@ services:

db_watcher:
container_name: db_watcher
image: mysql:8.0.39
image: mysql:8.0.40
command: mysqld --default-authentication-plugin=mysql_native_password
volumes:
- db_data:/var/lib/mysql
Expand Down Expand Up @@ -102,4 +102,4 @@ networks:

volumes:
db_data: {}
db_log: {}
db_log: {}

0 comments on commit e6f9346

Please sign in to comment.