MONARC 2.12.2-p1
MONARC - Method for an optimised analysis of risks
| Tags | cases monarc governance method risk-analysis php security |
|---|---|
| License | Affero GPLv3 |
| State | initial |
Homepage
DownloadRecent Releases
2.12.2-p105 Jul 2022 03:15
minor feature:
Updated zm-core to v2.12.1-p1.
The when we try to instantiate a global operational risk.
And it was already linked to the same anr before.
2.11.003 Sep 2021 08:45
minor feature:
Having the possibility to define custom scales for operational risks;.
Introduction of the risk context and the risk owner (#21, #186).
Update-all.sh: Could not read from remote repository;.
Some files in script do not have the correct permissions.
2.10.425 Jun 2021 09:25
minor feature:
Foreign Key Error by when deactivating information security risks.
Dashboard cartography error for risk lists.
FrontOffice Snapshots creation error.
2.10.311 May 2021 06:45
minor feature:
Export an asset.
Snapshot restore.
Multiple login sessions per user.
Enable or disable the statistics sharing per analysis.
MONARC application: admin@admin.localhost:admin.
SSH login (Ubuntu credentials): monarc:password.
Mysql root login: root:4274086f0ea9b0356d295a4597de55cd55fb3d3f718d76626019213b8031fdf6.
Mysql MONARC login: sqlmonarcuser:26706142cf41059ef42eecb344d9b777ec806ceedc7ce1b147132f972f08cc1f.
2.10.225 Feb 2021 17:05
minor feature:
Detaching of recommendations doesn't work.
Record of processing activities creation from an existing.
ANR_DOES_NOT_EXIST Error while creating new users.
Analysis statistics development (Epic).
MONARC application: admin@admin.localhost:admin.
SSH login (Ubuntu credentials): monarc:password.
Mysql root login: root:db7e745c5e958a94826eb810504b891f8c5a5028353baa57896545414b1cc5dc.
Mysql MONARC login: sqlmonarcuser:1997c45a6000146b763683123649eb3d4824302317278d384a9cc0edb38b4af6.
2.10.118 Dec 2020 07:25
minor feature:
Detaching of recommendations doesn't work.
Record of processing activities creation from an existing.
ANR_DOES_NOT_EXIST Error while creating new users.
Analysis statistics development (Epic).
2.9.1615 Aug 2020 13:05
minor feature:
Impossible to export an analysis when a user has deleted a category of a measure.
Matched referentials cannot be unlinked.
Orphan categories of controls on import function.
Improvements and for German translations.
Dashboard Diagrams "No Data" 2.9.14.
MONARC application: admin@admin.localhost:admin.
SSH login: monarc:password.
Mysql root login: root:e5488bba47cf69c74bed0b93ece258d93dacf137c1b82f4c73d21ff6a76d7f2e.
Mysql MONARC login: sqlmonarcuser:92645594f50eae6f3e97ff76bc646bc1f6f5685c839cf96607bea8862eb76a11.
2.9.1503 Jun 2020 12:25
minor feature:
"Edit impacts" in version 2.9.13.
Duplicate assets.
Translation "Vulnerabilities" in the Knowledge Base.
MONARC application: admin@admin.localhost:admin.
SSH login: monarc:password.
Mysql root login: root:029f48380a1421838ac2a543771557a90f3ec4621048002afa3a33abc0c83659.
Mysql MONARC login: sqlmonarcuser:f032789bfae64a393ca571b45805939409a08ab53af5ca6cd55d6e7ff9f1b70d.
2.9.1425 Apr 2020 07:05
minor feature:
"Edit impacts" in version 2.9.13.
Duplicate assets.
Translation "Vulnerabilities" in the Knowledge Base.
MONARC application: admin@admin.localhost:admin.
SSH login: monarc:password.
Mysql MONARC login: sqlmonarcuser:c39a2b457ec2783d10fa66303d2691715d4774ae44856834bf0f5cb056238105.
2.9.1315 Apr 2020 12:45
minor feature:
Reset positions of recommendations during assets drag-n-drop.
Change http response code if authentication is failed.
MONARC application: admin@admin.localhost:admin.
SSH login: monarc:password.
Mysql root login: root:abb7667b70d3ab49e9d0c454f818125eaeda05e3a3d19b0239bbee3b22b52dbc.
Mysql MONARC login: sqlmonarcuser:50b49cfd3d8aac9a99cbda69a75bcab52db9563c143f5065ce89b629ec6c8e21.
2.9.1222 Mar 2020 06:05
minor feature:
batch import of information risks from csv/xlsx file.
use a better encryption method for the export of objects and analysis.
Remove comment field of threat in export object of library.
Edition and creation of operational risk linked a tag in use on risk analysis.
MONARC application: admin@admin.localhost:admin.
SSH login: monarc:password.
Mysql root login: root: 978ac8bb032bb1c46ebec2d7aacb15174653ff71bf902eca440430db8f67537d.
Mysql MONARC login: sqlmonarcuser: 508f2bc366c78279e64ee369f61cce0e32d0a7046c27e52d62308c18e2ef0316.
2.9.1122 Feb 2020 11:05
minor feature:
Added users creation command (PR 27);.
Backend has been migrated from Zend Framework to Laminas.
The description area of the shelf life is too fair at the character level;.
In the description of destinations area; info is not kept after registration;.
GDPR module when creating a new recipient with default values;.
Get the list controls in BO;.
improved performance when drag and dropping assets (ff473d9).
2.9.1030 Jan 2020 06:45
minor feature:
Implement tiered indexing in Annex D of final report #241.
BackOffice object export error #239.
Import error #243.
2.9.921 Jan 2020 09:45
minor feature:
Give the possibility to administrators to create new account and directly
assign a temporary password for the new account.
Increase size of the fields related to Record of Processing Activities;.
Duplication of risks in Deliverable - appendix D;.
Error during modification of information risk;.
It is no more possible to change the status of a user.
2.9.814 Jan 2020 18:05
minor feature:
Library categories management ;.
Library - global asset - delete asset;.
Library - asset - Asset used in the risks analysis.
MONARC application: admin@admin.localhost:admin.
SSH login: monarc:password.
Mysql root login: root:664a42bc0a871b04a965448dd859b8fb313a9a60eff7e417184f7f788e9fcda4.
Mysql MONARC login: sqlmonarcuser:8b9199904cebe3f4825243165fe4b45fa8c516f817e10399d8726fb9efb48805.
2.9.708 Jan 2020 10:05
minor feature:
Randomly deletion of recommendations.
Upload a new delivery template.
MONARC application: admin@admin.localhost:admin.
SSH login: monarc:password.
Mysql root login: root:e5398216f1dc334b9564415684cbc41577432b03ebf95fffce9a00fc715fa423.
Mysql MONARC login: sqlmonarcuser:86739ab22606d03d9abccc50d27c580433ae9946f1ee81b032894009ca74ca8e.
2.9.603 Jan 2020 06:45
minor feature:
Global object- changes comment;.
Inconsistent id and global asset;.
Modification on global assets are not propagated properly.
MONARC application: admin@admin.localhost:admin.
SSH login: monarc:password.
Mysql root login: root:b8aaa7fde447d8280df6b7e4be2c8ee21e16549ba6c71ca54dbc80d2d407e696.
Mysql MONARC login: sqlmonarcuser:9d1b9f6d5075f005f8cf08687fc258bb62569ea736534231d7d7696ba0b749df.
2.9.519 Dec 2019 13:05
minor feature:
The creation of the snapshots with empty comment.
The library categories management (creation of the new ones under root and sub categories).#216.
2.9.414 Dec 2019 12:05
minor feature:
Users anrs permissions are not revocable / snapshots are displayed in the list;.
Drag and drop recommendations: recommendations ordering.
MONARC application: admin@admin.localhost:admin.
SSH login: monarc:password.
Mysql root login: root:71ff9e3acc45b8983652283e4bfe74e37c51e85bff82875acbb0980fd2c2b270.
Mysql MONARC login: sqlmonarcuser:f6fe3a0433c7c5875ebf722cc03f8e1a2094ce96ee5688b84fb2da598ac858d3.
2.9.310 Dec 2019 07:05
minor feature:
Configuration menu should not be scrollable;.
The type hint of parameter "theme" in method "setTheme" is invalid;.
Training VM does not show version number;.
library object duplicated;.
Drag and drop recommendations;.
Edit an asset in the library.
MONARC application: admin@admin.localhost:admin.
SSH login: monarc:password.
Mysql root login: root:d61b7bcb7f74d75c6288e781610500c9edc69785dea079fcfc89a760a1d78e2c.
Mysql MONARC login: sqlmonarcuser:70ad0142e19cfb0bc2990fcb5a742739deb924d66d5f1f50384db923b1d36cb6.
2.9.121 Nov 2019 06:05
minor feature:
each analysis can now integrate a record of processing activities in order
to help you in your GDPR compliance efforts;.
it is now possible to create and manage set of recommendations via the
knowledge base of a risk analysis. Like for the security referentials
(introduced in version 2.8.0), MOSP can now be used in order toshare recommendations.
Monarc 2.8.3 - invalid datetime format: 1292 #179.
various minor and improvements.
MONARC application: admin@admin.test:admin.
SSH login: monarc:password.
Mysql root login: root:42daa9c48c59f68cf4e5374bcbec30b0baf44f0f29f10556380acdaa1a0b68bc.
Mysql MONARC login: sqlmonarcuser:c2add5f10755f2b4fe7db9435d6726f90f6ddb7703c5407569c3320d4192f84f.
2.9.024 Aug 2019 14:45
minor feature:
each analysis can now integrate a record of processing activities in order
to help you in your GDPR compliance efforts;.
it is now possible to create and manage set of recommendations via the
knowledge base of a risk analysis. Like for the security referentials
(introduced in version 2.8.0), MOSP can now be used in order toshare recommendations.
Monarc 2.8.3 - invalid datetime format: 1292 #179.
various minor and improvements.
MONARC application: admin@admin.test:admin.
SSH login: monarc:password.
Mysql root login: root:fb839b36260022779d9de5e3aa266556550829959bbec8773d67c8f6b5455305.
Mysql MONARC login: sqlmonarcuser:9502f6b02fc7d346e7daef5e3b2e3116b3096e06a10680160e08c95ff32e1556.
2.8.326 Jul 2019 03:16
minor feature:
Some improvements in MOSP import.
Some improvements in 3rd deliverable.
SOA is not imported #166.
Drag drop in risk treatment plan fails after 1 change #167.
Underscore "_" is not considered as a special character in password reset #169.
Error when duplicating object #171.
Add objects in model/anr from common DB #172.
Composed objects in the library- position #174.
Import analysis - conflict on uuid on objects #175.
FO Knowledge base OP risks #177.
2.8.230 May 2019 08:05
minor feature:
the MONARC core objects (assets, threats, vulnerabilities and risks) are now
identified with UUIDs. We published the objects on theMONARC objects sharing platform. Risks from
the CASES models are also available;.
Assets, threats, vulnerabilities, risks and referentials can be imported
in the knowledge base of your analysis from MOSP without leaving the MONARC
user interface.
Adding referential afterwards does not update the knowledge base#156.
Import analysis in 2.81, exported from 2.72, gives errors #152;.
Edit label of added Referentials does not work #153;.
Problem generating deliverable #157;.
Categories are duplicated in import #158;.
Getting prob impacts on operational risks #161.
MONARC application: admin@admin.test:admin.
SSH login: monarc:password.
Mysql root login: root:0d93269dbd329d9e593d23f22f71e9d3adb6bf738f8508fcd595f0c2b279ca06.
Mysql MONARC login: sqlmonarcuser:a1bf126400415576c1fc1c92695df9e2cc4bcc23483122eceac6635dd17c8d7b.
2.8.125 Apr 2019 13:45
minor feature:
the dashboard can now be exported to a CSV file or to a presentation file (.pptx).
Improve the treatment of a risk;.
Improve risk sheet screen;.
the cartography in the dashboard has been improved.
Loss of recommendation link.
MONARC application: admin@admin.test:admin.
SSH login: monarc:password.
Mysql root login: root:d39bdf1c3eb4cbaf58247ef790bc47cb332b40787458f4f29a7d8291097db011.
Mysql MONARC login: sqlmonarcuser:553645f77778c7924a7a4fca6f232e525c502a86338e7699a737be6e007930e3.
2.8.001 Mar 2019 14:05
minor feature:
Management of multiple security referentials;.
Mapping between security referentials;.
Improvements to the statement of applicability;.
Batch import of objects;.
New chart for the dashboard;.
MONARC Objects Sharing Platform;.
it is now possible to set a page for your terms of service when MONARC is used to provide a service.
an when deleting threat theme #143.
Improved the go back on risk sheet #95.
2.7.428 Nov 2018 10:45
minor feature:
risk target calculation 199db6c;.
a typo in SoaCategorySuperClass ea72881;.
an when operational raw risks are hidden before an import f382c91;.
some minor in the views cbbd94e;.
several in the reports generation (in the PHPWord library) caused
by special characters.
MONARC application: admin@admin.test:admin.
SSH login: monarc:password.
Mysql root login: root:cae29e7bcb34bd7c2f7306580ea3ed65e1b8a9bc6b1e59279b7fd9cc909531cd.
Mysql MONARC login: sqlmonarcuser:e52bd3b34c3733b67031842a8b0490fcfecccd86f8567fb2ece84feaea8fbeda.
2.7.326 Oct 2018 03:16
minor feature:
added backend capability for the bulk creation of objects;.
various improvements and harmonization of the backend code;.
Sort order for operational risks in final deliverable annex D;.
Upload of template deliverable fails in Dutch;.
SOA is now included in snapshots.
MONARC application: admin@admin.test:admin.
SSH login: monarc:password.
Mysql root login: root:c58bdd1a57042736a22697772658c63d030e62d3ce1e15f4db6e8346f9ad2191.
Mysql MONARC login: sqlmonarcuser:f11ab8d12ca1cc75f37749f9d4443c5d2d5ed3400ba3671b68b14c52c38d667e.
2.7.209 Oct 2018 10:45
minor feature:
MONARC is now compatible with PHP 7.2. Future MONARC virtual machines
will be based on Ubuntu Bionic LTS;.
Reports not generated in user's language or selected templates;.
All your rights have been revoked. Please contact the manager for your organization;.
various improvements and minor in the back end.
MONARC application: admin@admin.test:admin.
SSH login: monarc:password.
Mysql root login: root:e704ff96b594ce8a0febee5d80911a7cdfa87f9e945c61f105674b868aa28a88.
Mysql MONARC login: sqlmonarcuser:df51ab4f1e64bb7f26a6a669467a98cbbef4ecd024c0670fb61cad8cf20326e5.
2.7.108 Sep 2018 03:17
minor feature:
Inform user which rights he has on each risk analysis;.
Display read/write access of the currently connected user on the home page (list of analysis);.
Improvements to the statement of applicability (SOA) module (speed improvements);.
Minor improvements to the home page.
Impossible to download a report when user has no wright access;.
Name of columns of the evaluation scales are not displayed when a user has not write access;.
Problem with UTF-8 characters in CSV export files.
MONARC application: admin@admin.test:admin.
SSH login: monarc:password.
Mysql root login: root:dcb4fbeabd9c856ac8cfdb90075866bd9b58b65f50b1580c6ecf6ae633c33cfb.
Mysql MONARC login: sqlmonarcuser:3f2e1e05c55f5878e17d0d03bf22bfeccf59388d51ee2aa3f65f1dd7bcbabd56.
2.7.023 Aug 2018 23:45
minor feature:
this release introduces the statement of applicability (SOA) module for your
risk analysis. This is a first step towards the awaited Statement of Applicability
Gap Analysis module.
Error in translation in sector 3 of Final report;.
The management of the position in the library is not working;.
Empty categories in the library;.
Impossible to order the questions in the back oficce;.
Hidden impacts function doesn't works;.
Search and sort filter for import.
MONARC application: admin@admin.test:admin.
SSH login: monarc:password.
Mysql root login: root:5ef15b9c19b673cac668cf0e3ef91fd51e6c38ffe8dbb52d0b1865f3545bd6c5.
Mysql MONARC login: sqlmonarcuser:662fb82de2ab005af76257664bdd2410549aa7398165c6827a3911843aaa2cc2.
2.6.021 Jul 2018 13:25
minor feature:
MONARC users who open the home page in the web interface will see an image
in the bottom left corner with the text "up-to-date" in green, "update
Available" in orange or "security update available" in red.
This will make outdated version more visible for users of MONARC. This
Version checking is performed thanks to adedicated service.
The import and export functions have been improved;.
Creation of recommendation and missing field;.
Make an easy link to implement the recommendation directly from the risk view.
a in the table Risk treatment plan management.
Problem on date parsing with the date-picker with non-US browsers (when using
Date.toLocaleString).
it is not possible to reset the duedate attribute of a recommendation
Since the introduction of the date-picker.
Review and correct the functionality of import by fusion or merge.
Minor translations.
MONARC application: admin@admin.test:admin.
SSH login: monarc:password.
Mysql root login: root:bdd13ca944f684b69333d240b95db1ccf404a42f50e0bc9a371ee8033d676f47.
Mysql MONARC login: sqlmonarcuser:1b1f9eab332cd9ec3e06c9bbf7b927e29087bd10277bb38321bf6a7448b07e16.
2.5.005 Jul 2018 06:45
minor feature:
All dashboard data can now be exported to a CSV file with tabs;.
Fine grained export of risk analysis (choice between method steps,
Interviews, existing controls and recommendations);.
it is now possible to create a new recommendation from an existing one;.
Account deletion / right to erasure.
How to erase the evaluation of all threats of a risk analysis;.
The risk treatment view has been improved;.
MONARC and the back office are now using AngularJS 1.7.0.
Impossible to edit some fields in BO. Only is possible in the default
Language of instance;.
md-datepicker sends the day before the one that was selected;.
The filter by tag is not working on Knowledge base Operational Risk;.
The generation of deliverables has been improved (bullet point lists);.
Various minor improvements and in the back office of MONARC.
MONARC application: admin@admin.test:admin.
SSH login: monarc:password.
Mysql root login: root:a9d19611b64f2601745cd589bea57cb3f683e1710eaed3f1c02359194d607063.
Mysql MONARC login: sqlmonarcuser:0fdca696bd7dcab9f79b3c038922ed05d91164fb6c1eb17e5b2d78e987ff685f.
2.4.209 Jun 2018 16:05
minor feature:
Improvements for the breadcrumb used in the graphs of the dashboard. Moreover
it is now possible to click in the items of the breadcrumb in order to
Navigate between the different graph's levels;.
The deadlines of recommendations are now set with a date picker in the fourth
Step;.
Removed the filter on the checkbox of the step 3 to display the dashboard of
Residual risk;.
The column 'phone' has been removed from the 'users' table and in the models.
The application must store the minimum amount of information required on
Users;.
Validate recommendations for operational risks;.
The translations have been improved.
Operational risks are not updated;.
In the 4th deliverable, an inherited risk is displayed at -1 and in red
Color;.
a problem with some translations in the legends of the report's graphs;.
Removal of a recommendation on same risk of different assets of the same type.
MONARC application: admin@admin.test:admin.
SSH login: monarc:password.
Mysql root login: root:d9f7bdbc867c896fc0cb4f99dd24c53fa773471e2d6769de21454f40202b84cc.
Mysql MONARC login: sqlmonarcuser:dfb4f4daf219a8d0427f37f7ed1ea631215f89db8664f024781d78f81e3b836a.
2.4.131 May 2018 16:25
minor feature:
the dashboard has been improved with more interactive graphs;.
the dashboard view is now part of the analysis. The home page of MONARC
simply lists the projects.
Removal of a recommendation on same risk of different asset of the same type;.
Order of operational risks.
MONARC application: admin@admin.test:admin.
SSH login: monarc:password.
Mysql root login: root:b62f94dc62eddedc62e146d809f92d3a70899fa7371552338e9069e6037b2ee2.
Mysql MONARC login: sqlmonarcuser:92b5bddaeebb32d235e3add6ff9622bec23ce8ea2be97451d0021e0fa34aec5d.
2.4.015 May 2018 17:05
minor feature:
an administrator of a MONARC front office instance is now able to set custom
Templates for deliveries per step.
Default deliveries templates were improved;.
The section dedicated to the management of the organization has been moved in
a dedicated view;.
Improved the switching between the different available languages;.
Improved the generation of the deliveries.
a in the generation of the deliveries;.
Inconsistency of Threat and Vulnerability Tables;.
Various minor.
MONARC application: admin@admin.test:admin.
SSH login: monarc:password.
Mysql root login: root:0906383d4a1355519b5ec17b917dddd673d4dd94fe367d1b964723e1775373a2.
Mysql MONARC login: sqlmonarcuser:8a9fa55c698290788a2c141326b778e1dbc358b05719e3e6a603216701ca4d14.
2.3.028 Apr 2018 15:05
minor feature:
an administrator of a MONARC front office instance is now able to set custom
Templates for deliveries per step.
Default deliveries templates were improved;.
The section dedicated to the management of the organization has been moved in
a dedicated view;.
Improved the switching between the different available languages;.
Improved the generation of the deliveries.
a in the generation of the deliveries;.
Inconsistency of Threat and Vulnerability Tables;.
Various minor.
MONARC application: admin@admin.test:admin.
SSH login: monarc:password.
Mysql root login: root:0906383d4a1355519b5ec17b917dddd673d4dd94fe367d1b964723e1775373a2.
Mysql MONARC login: sqlmonarcuser:8a9fa55c698290788a2c141326b778e1dbc358b05719e3e6a603216701ca4d14.
2.2.115 Feb 2018 15:15
minor feature:
Lack of information in the final deliverable.
Update template of third deliveries.
CID/CIA translation in generateImpactsAppreciation for the deliveries
.
Removed useless dependencies to City entity.
MONARC application: admin@admin.test:admin.
SSH login: monarc:password.
Mysql root login: root:30721818387165578a99ac1d5ec1395f114f0d8c7f9bbcdd8d3c3058b1276a88.
Mysql MONARC login: sqlmonarcuser:3b64d5327a384d2e426d8265e68bc4e820f5f38b7a304663ff05da045eabf492.
2.2.002 Feb 2018 06:25
minor feature:
Generate deliverable on 4th step of method.
Export all of risk analysis data.
Option of export tables in a csv file.
Show version MONARC on left panel.
Ensures new users (of the back office) are created with a level of
Permissions.
The back office displays the appropriate view based on the user permissions.
Set the selected attribute for the search filter of models in the back office.
User operational risk - tag.
Operational risk - tag.
Detach a tag from an asset.
Operational risk importation.
Various minor in the back office (management of models).
MONARC application: admin@admin.test:admin.
SSH login: monarc:password.
Mysql root login: root:baa1bf66ec891f9e6dbf6dbe281f530c46da2158fe66091ac6b62eaeebb9054d.
Mysql MONARC login: sqlmonarcuser:5eef25f5440470a202e0dfe46fb1360c9ae71bec3997f06cdeabc21b222a6a1d.
2.1.003 Jan 2018 00:06
minor feature: