Skip to content

Releases: newrelic/rusty-hog

v1.0.11

20 Sep 23:22
@cutler-scott-newrelic cutler-scott-newrelic
v1.0.11
4b701b0
Compare
Choose a tag to compare
v1.0.11 Latest
Latest

New release that includes the Slack hog and fixes a major issue with choctaw_hog.

Assets 18

v1.0.9

16 Apr 21:56
@cutler-scott-newrelic cutler-scott-newrelic
v1.0.9
fbb6c88
Compare
Choose a tag to compare
v1.0.9

WARNING: v1.10 is broken, please DO NOT use it.

1.0.9

  • Fixed issue in Essex Hog that resulted in invalid URLs
  • Added some more items to the default allowlist based on New Relic's usage of Rusty Hog
  • Made some more updates to the scripts:
    • ghe_secret_scanner will now differentiate between deleted secrets and added secrets
    • added a script to scan an entire GDrive share, will scan docs with Ankamali hog and binaries with duroc_hog.
  • Fixed deprecated function warning with simple_logger
  • Added some clippy fixes
Assets 5

v1.0.8

11 Aug 22:59
@cutler-scott-newrelic cutler-scott-newrelic
v1.0.8
629d326
Compare
Choose a tag to compare
v1.0.8
  • reworked allow lists in a few ways:
    • now compiles the values into regular expressions rather than using string compare
    • includes a default allowlist when none is specified
    • if the pattern name <GLOBAL> is used it will be checked against all patterns
    • moved the allowlist code into lib.rs so that all hogs will use it by default
    • included a new format for allowlists that include checks for paths as well
Assets 3

v1.0.7

23 Jul 00:32
@cutler-scott-newrelic cutler-scott-newrelic
v1.0.7
de7a955
Compare
Choose a tag to compare
v1.0.7

New features include DockerHub builds, entropy detection and filtering across all hogs, better default rules, and allow-lists.

Assets 4

v1.0.6

17 Jul 23:26
@cutler-scott-newrelic cutler-scott-newrelic
1.0.6
9c92f3a
Compare
Choose a tag to compare
v1.0.6

Added essex_hog and starting work on v1.0.7 which will address a few current issues.

Assets 3

v1.0.5

26 May 23:15
@cutler-scott-newrelic cutler-scott-newrelic
v1.0.5
ba1c522
Compare
Choose a tag to compare
v1.0.5

Multiple changes from @ccojocar , as well as a fix in the old-entropy code.

Biggest changes:

  • Regex JSON can now support a data-structure for each reason, allowing for entropy thresholds per-rule. These act as a filter on findings and are separate from the --entropy flag.
  • Choctaw_hog can now support a -w flag to supply a JSON with a list of whitelisted strings for each reason. This helps with known false-positives such as AKIAIOSFODNN7EXAMPLE
  • A dockerfile is included and can be used to build Rusty Hog within a container.
Assets 4

v1.0.4

20 Apr 20:28
@cutler-scott-newrelic cutler-scott-newrelic
v1.0.4
16419e3
Compare
Choose a tag to compare
v1.0.4

Added Gottingen hog, a JIRA scanner, as well as updated Python scripts. Also fixed a bug where custom regex files were not being used (thanks @kevinfealey !)

Assets 3

v1.0.3

30 Mar 23:24
@cutler-scott-newrelic cutler-scott-newrelic
v1.0.3
89d5c9c
Compare
Choose a tag to compare
v1.0.3

Added duroc_hog , a file system scanner that can also support .zip, .tar, and .tar.gz, and .tgz.

Assets 3

v1.0.2

06 Mar 00:39
@cutler-scott-newrelic cutler-scott-newrelic
v1.0.2
e2c349a
Compare
Choose a tag to compare
v1.0.2

Added --recent_days and made some quality of life improvements to the scripts.

Assets 4

v1.0.1

15 Jan 22:33
@cutler-scott-newrelic cutler-scott-newrelic
v1.0.1
c951a6c
Compare
Choose a tag to compare
v1.0.1

Changelog:

  • Updated http library to 0.1.21 to avoid vulnerabilities in 0.1.19
Assets 4