Comments (3)
berggren
commented on May 2, 2024
Hi, thanks for your report. This indeed looks like a ES issue. I have not run 1.4 myself but will test as soon as possible. Stay tuned.
from timesketch.
berggren
commented on May 2, 2024
Hi, after looking closer at this there seems to be a couple of issues, both of them due to newer versions of elasticsearch.
- We need to add the _timestamp mapping every time we update.
- We now need to add the timesketch specific mapping before we populate the index with data.
Since the last big update, all interaction with the system from the command line is via the "tsctl" command installed by timesketch. add_timeline.py is therefor depricated.
I'm working on a new output plugin for plaso psort as a temporary fix for all this. After thet I will start creating a proper Plaso frontend for timesketch and add the ability to add timelines from the UI.
I will open issues for each of these steps.
Closing this issue in the meantime.
from timesketch.
berggren
commented on May 2, 2024
See issue #50 for progress of fixing this.
from timesketch.
Related Issues (20)
- API returns 200 for non existing endpoints HOT 1
- Error after indexing a timeline HOT 3
- Finding the version of a plaso file that is supported with timesketch HOT 2
- 500 server error while crerating new blank HOT 5
- The results of uploading CSV files between timesketch_importer CLI and GUI are different HOT 1
- Timeout with API Client for retrieving sketch information after upgrading both Timesketch server and API Client HOT 1
- Timesketch LLM connectors
- Surface user management via API client
- Timesketch form validation bug
- Error when importing sigma rule with single quote
- Timesketch API client: Search object indices list bug
- Is there a way to return to sketch list from inside a sketch? HOT 2
- [UI] Analyzer results Error Message HOT 4
- Feature Extraction analyzer cannot create views
- Timesketch auto-renames timeline uploads with the same timeline name HOT 7
- Timesketch has no use cases
- sigma_rule_status.csv removed but still present in installation helper script
- for every search getting "sorry, there was a problem" HOT 2
- Update Container Versions for the Release Docker config.env HOT 3
- DFIQ UI Bug HOT 6
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from timesketch.