Release v4.0.0

What's Changed

• Dalton v4.0.0 by @whartond in #253
• Bumped to version 4.0.0
• Upgraded jQuery from 2.0.3 to 3.7.1
• Fixed annoying UI issue where custom rules text area would be incorrectly hidden when browsing back to the submission page
• Added dynamic polling to queue and sensors pages for real-time updates
• Added status coloring and animation to queue page for better visual feedback
• Added /clear_queue API endpoint to expire all jobs and delete job files
• Flipped the chronological order of the CHANGELOG entries so you don't have to scroll to the bottom to see the latest changes

Full Changelog: v3.6.0...v4.0.0

Release v3.6.0

What's Changed

• Bump werkzeug from 3.1.3 to 3.1.4 by @dependabot[bot] in #249
• Bump werkzeug from 3.1.4 to 3.1.5 by @dependabot[bot] in #250
• Suri socket mode fix; poor-man's auth by @whartond in #251

Full Changelog: v3.5.0...v3.6.0

v3.5.0

What's Changed

• Update flask dependencies by @rkoumis in #222
• Merge release 3.4.2 from pilot branch to master branch by @rkoumis in #230
• Ubuntu 24.04 containers for Suricata (4.x and newer) and Snort (2.9.16.x and newer) by @da667 in #234
• Bump jinja2 from 3.1.4 to 3.1.5 by @dependabot[bot] in #237
• Add cyberchef container, nginx location, and link in layout.html by @da667 in #235
• Ruff wants to add a space here by @rkoumis in #238
• Minor tweaks and fixes by @whartond in #240
• Bump flask from 3.1.0 to 3.1.1 by @dependabot[bot] in #239
• a few bug fixes and tweaks for the new(er) Redis version and Suricata 8. … by @whartond in #243
• Bump jinja2 from 3.1.5 to 3.1.6 by @dependabot[bot] in #241
• input validation to prevent RCE; github isssue #245 by @whartond in #246
• Added a test for jobid validation by @rkoumis in #247

New Contributors

• @da667 made their first contribution in #234
• @dependabot[bot] made their first contribution in #237

Full Changelog: v3.4.2...v3.5.0

Dalton 3.4.2

• Updated flask dependencies (#180) (#222)
  • Configure flask maximum content length

Dalton 3.4.1

• Fixed bug with zeek processing. (#213) (#214) (#216)
• Added some unit tests. (#203) (#215)

Dalton 3.4.0

Use pyproject.toml ; unit tests in CI pipeline ; update dependencies.

• Use pyproject.toml (#184) (#189)
• Use ruff format to format the code (#183) (#190)
• Use ruff check --fix to make style changes (#183) (#192)
• Add github actions CI (#191) (#193)
• Be able to run unit tests on dalton and flowsynth (#182) (#194)
• Update nginx from 1.19 to 1.27 (#200) (#202)
• Update redis from 3.2 to 7.4 (#201)
• Add unit tests for flowsynth (#204)
• Use ruff to sort and format imports (#207)
• Use ruff to detect flake8 bugbears (B) (#209)
• Use pre-built zeek images (#181)
• Use bump-my-version to update the version and tag (#197)
  • Also, use bump-my-version to update the dalton-agent version
  • Also, show the dalton controller version on the About page

Dalton 3.3.6

Zeek Enhancements (#177)

• Dalton UI now will have an option to provide custom zeek script in zeek sensor job creation page. You can either upload custom script file or write the script (or both) in the Dalton UI, and can run pcaps using those custom scripts.
• Add zeek version 7 and version 6 ; remove zeek version 4.

Author: Nikhileswar Reddy nreddy@octolabs.io

Dalton 3.3.5

• Be able to pre-fill the flowsynth compile page via GET or POST
• also ran isort

Author: Robin Koumis (SecureWorks) rkoumis@secureworks.com

Dalton 3.3.4

Bring sensor configs up to date with current versions

• Download ET Suricata 5.0 ruleset since the 4.0 ruleset will not work on latest supported Suricata versions.
• set default enabled sensors to be up to date versions
• add Suricata 7 YAML config file
• add conf file for snort-2.9.20 even though it is functionally unchanged from snort-2.9.11
• move suricata-7.0.0.yaml to proper location

Author: whartond github@davidwharton.net

Dalton 3.3.3

• Fixes issue where unable to build suricata container

Author: Spencer Owen owenspencer@gmail.com