Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Export Case Audit Log #482

Open
doksu opened this issue Feb 14, 2018 · 6 comments
Open

Export Case Audit Log #482

doksu opened this issue Feb 14, 2018 · 6 comments
Assignees
@nadouani
Labels
feature request priority:low Low Priority

Comments

@doksu
Copy link

doksu commented Feb 14, 2018
edited
Loading

Request Type

Feature Request

Work Environment

Question Answer
OS version (server) Red Hat Enterprise Linux 7
OS version (client) N/A
TheHive version / git hash 3.0.3
Package Type N/A
Browser type & version N/A

Problem Description

The ability to readily export a comprehensive audit log of all changes to cases.
@doksu doksu changed the title Case Audit Log Export Case Audit Log Feb 14, 2018
@doksu
Copy link
Author

doksu commented Feb 14, 2018

I've just updated this issue as it was partially covered by this existing issue: #84

@saadkadhi
Copy link
Contributor

We are planning to implement the ability of exploring the audit trail in a graphical way by the end of the year or so. Adding an export capability of select parts of the audit trail should not be a big issue. In the meantime, please leverage the webhooks functionality to collect the audit trail in one location or extract fields of interest directly from the underlying ES DB.

@saadkadhi saadkadhi added this to the 4.2.0 (Carnica 2) milestone Feb 14, 2018
@doksu
Copy link
Author

doksu commented Feb 15, 2018

Excellent, thanks @saadkadhi

@saadkadhi saadkadhi removed this from the 4.2.0 (Carnica 2) milestone Jun 13, 2018
@JamesCullum
Copy link

Any update on this? Would still be useful

@doksu
Copy link
Author

doksu commented Nov 14, 2019

Any update on this? Would still be useful

Very much so.

@JamesCullum
Copy link

I did a workaround by using Burp Proxy and changing the parameters used by the live view in a way to limit the data to a case and removed the filter to 10 events. Would be great to have simply that as a "see full activity log" button, which we can screenshot or export as report.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@nadouani nadouani

Labels
feature request priority:low Low Priority
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@nadouani @saadkadhi @JamesCullum @doksu