Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.
Full Changelog: https://github.com/activecm/rita/compare/v4.7.0...v4.8.0
rita clean
command to remove RITA datasets without MetaDB entries (https://github.com/activecm/rita/pull/763, #780)dat
collection before updating or inserting (https://github.com/activecm/rita/pull/764)Changes:
Changes:
Changes:
Bug Fixes:
Changes:
Bug Fixes:
beaconFQDN
and beaconProxy
collections (#689)host
collection (#687)host
collection (#683)host
collection were not being updated when using rolling imports (#683)host
collection for a pair of hosts would never decrease when using rolling imports (#683)host
collection due to a race condition (#683)host
collection were under-counted when using rolling imports (#683)Changes:
Dev changes:
Bug Fixes:
</td>
in report-beacons.go and report-beaconsfqdn.go (#644)Documentation:
Bug Fixes:
Changes:
--config
a global option on rita
command (#631)Bug Fixes: