skipped 3 lines 4 4 <head> 5 5 <meta charset="utf-8"> 6 6 <title>LogonTracer</title> 7 - <link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3 .3.7 /css/bootstrap.min.css" integrity="sha384-BVYiiSIFeK1dGmJRAkycuHAHRg32OmUcww7on3RYdg4Va +PmSTsz /K68vbdEjh4u " crossorigin="anonymous"> 7 + <link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/4 .3.1 /css/bootstrap.min.css" integrity="sha384-ggOyR0iXCbMQv3Xipma34MD +dH /1fQ784 / j6cY / iJTQUOhcWr7x9JvoRxT2MZw1T " crossorigin="anonymous"> 8 8 <link rel="stylesheet" href="http://cdnjs.cloudflare.com/ajax/libs/qtip2/2.2.1/jquery.qtip.css" integrity="sha384-EG4MkHYaMXjB6f2q1t0Jfs+W6DpGsGZls4D6PYHr9yhXwZf27Z10ReappeV2ZXcU" crossorigin="anonymous"> 9 - <link rel="stylesheet" href="https://gitcdn .github .io /bootstrap -toggle/ 2 .2 .2 /css/bootstrap -toggle.min.css" integrity="sha384-yBEPaZw444dClEfen526Q6x4nwuzGO6PreKpbRVSLFCci3oYGE5DnD1pNsubCxYW " crossorigin="anonymous"> 9 + <link rel="stylesheet" href="https://cdn .jsdelivr .net /gh / gitbrent / bootstrap4 -toggle@ 3 .6 .1 /css/bootstrap4 -toggle.min.css" integrity="sha384-yakM86Cz9KJ6CeFVbopALOEQGGvyBFdmA4oHMiYuHcd9L59pLkCEFSlr6M9m434E " crossorigin="anonymous"> 10 10 <link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/font-awesome/4.2.0/css/font-awesome.min.css" integrity="sha384-CmLV3WR+cw/TcN50vJSYAs2EAzhDD77tQvGcmoZ1KEzxtpl2K5xkrpFz9N2H9ClN" crossorigin="anonymous"> 11 - <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/bootstrap-datetimepicker /4 .17 .47 /css/bootstrap-datetimepicker .css" integrity="sha384-BxjoNa5Gy6HWpewxZeRKXOU9soDrevzGlc0x2UrFD5yPVuBIz /3YUxvzchy7Q1 +k " crossorigin="anonymous"> 11 + <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/tempusdominus - bootstrap-4 /5 .0 .1 /css/tempusdominus - bootstrap-4 . min .css" integrity="sha384-8wYGNo4TwC9xzqNRdt7OUN789eBPzNQlO /sxIKaJR1gkX0 +Ok1kXxhHR4pZU + gP2 " crossorigin="anonymous"> 12 + <link rel="stylesheet" href="https://use.fontawesome.com/releases/v5.11.2/css/all.css" integrity="sha384-KA6wR/X5RY4zFAHpv/CnoG2UW1uogYfdnP67Uv7eULvTveboZJg0qUpmJZb5VqzN" crossorigin="anonymous"> 12 13 <link rel="stylesheet" href="static/css/style.css"> 14 + <link rel="stylesheet" href="static/css/dark-mode.css"> 13 15 <script src="https://ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js" integrity="sha256-hwg4gsxgFZhOsEEamdOYGBf13FyQuiTwlAQgxVSNgt4=" crossorigin="anonymous"></script> 14 16 <script src="https://cdnjs.cloudflare.com/ajax/libs/qtip2/2.2.1/jquery.qtip.js" integrity="sha384-6pAYkjo39N26cI9QEzy7zTD9xr9XzSnaWywG02LeFyoJnBEyYvWvqomLU+uGAlaw" crossorigin="anonymous"></script> 15 - <script src="https://gitcdn.github.io/bootstrap-toggle/2.2.2/js/bootstrap-toggle.min.js" integrity="sha384-cd07Jx5KAMCf7qM+DveFKIzHXeCSYUrai+VWCPIXbYL7JraHMFL/IXaCKbLtsxyB" crossorigin="anonymous"></script> 16 - <script src="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js" integrity="sha384-Tc5IQib027qvyjSMfHjOMaLkfuWVxZxUPnCJA7l2mCWNIpG9mGCD8wGNIcPD7Txa" crossorigin="anonymous"></script> 17 + <script src="https://cdn.jsdelivr.net/gh/gitbrent/[email protected] /js/bootstrap4-toggle.min.js" integrity="sha384-Q9RsZ4GMzjlu4FFkJw4No9Hvvm958HqHmXI9nqo5Np2dA/uOVBvKVxAvlBQrDhk4" crossorigin="anonymous"></script> 18 + <script src="https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.15.0/umd/popper.min.js" integrity="sha384-L2pyEeut/H3mtgCBaUNw7KWzp5n9+4pDQiExs933/5QfaTh8YStYFFkOzSoXjlTb" crossorigin="anonymous"></script> 19 + <script src="https://maxcdn.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js" integrity="sha384-JjSmVgyd0p3pXB1rRibZUAYoIIy6OrQ6VrjIEaFf/nJGzIxFDsf4x0xIM+B07jRM" crossorigin="anonymous"></script> 17 20 <script src="https://cdn.jsdelivr.net/npm/[email protected] /dist/cytoscape.min.js" integrity="sha384-vTbGUxFr0qyAqYeS+nIqQ6Row8uIp1PgvAWiA4GuEtdkD8scsArkL9QgZHWaHuv5" crossorigin="anonymous"></script> 18 21 <script src="https://cdn.jsdelivr.net/npm/[email protected] /cytoscape-qtip.min.js" integrity="sha384-0S5MX36ySZW8tkZEooDZdxYdGvtwdVxA/1bl0U0zoqsrHBJbv4LxKxc8Hp8LpxlE" crossorigin="anonymous"></script> 19 22 <script src="https://cdnjs.cloudflare.com/ajax/libs/moment.js/2.22.2/moment.min.js" integrity="sha384-sIzeKWIAHvT0Vm8QbfLCqZwBG0WMCkWVAOYd/330YSNeeQ1Y57N3T9lQz5Ry/EHH" crossorigin="anonymous"></script> 20 - <script src="https://cdnjs.cloudflare.com/ajax/libs/bootstrap-datetimepicker /4 .17 .47 /js/bootstrap-datetimepicker .min.js" integrity="sha384-eRwUWQDbnWMRrNpCKFsqmkfL7PMM8a4uUw5AvjTuLRoYFfozRz7g9BS696LvdNrE " crossorigin="anonymous"></script> 23 + <script src="https://cdnjs.cloudflare.com/ajax/libs/tempusdominus - bootstrap-4 /5 .0 .1 /js/tempusdominus - bootstrap-4 .min.js" integrity="sha384-hzexvprs0k2Q / IHSJOfegsjdg6kTcTTVxQdgHiB4 + I / 915hcvse9v42LLVVM5K4e " crossorigin="anonymous"></script> 24 + <script src="https://cdn.jsdelivr.net/npm/[email protected] /desvg.min.js" integrity="sha384-J1rV4940pYhBtFhx6SqDEMJP35rgSVSVx+44+TPf67jyXL8dsBtYMZeBCNLf/2zk" crossorigin="anonymous"></script> 21 25 <!-- Neo4j JavaScript Driver --> 22 - <script src="https://cdn.jsdelivr.net/npm/[email protected] .3 /lib/browser/neo4j-web.min.js" integrity="sha384-XVrDQNh79isRQKoUzX8pCHmnP2HmtLQJTDMfzI5 /4gxbjqz7mHlGjTKyQxVGKR7k " crossorigin="anonymous"></script> 26 + <script src="https://cdn.jsdelivr.net/npm/[email protected] .6 /lib/browser/neo4j-web.min.js" integrity="sha384-VaW5fiy /7vrN4S7dr0pOBxTer8CLIPL86Br0V7QmvA0AhwjWAL + emVM8Hp1WUFP4 " crossorigin="anonymous"></script> 23 27 <script src="static/js/script.js"></script> 24 28 </head> 25 29 26 30 <body> 27 - <nav class="navbar navbar-default "> 28 - <div class="container-fluid"> 29 - <a class="navbar-brand" href="#"><img src="static/images/logo_top.svg" alt="top" width="190" style="margin-top: -5px"></a> 31 + <nav class="navbar navbar-expand - lg navbar - light bg - light p - 1 shadow "> 32 + <a class="navbar-brand" href="#"><img class="my_svg" src="static/images/logo_top.svg" alt="top" width="190"></a> 30 33 <div class="collapse navbar-collapse"> 31 - <form class="navbar-form navbar - left " role="search"> 32 - <div class="form-group"> 33 - <label class="sr-only" for="InputSelect">select</label> 34 - <select class="form -control " id ="InputSelect"> 35 - <option>Username</option> 36 - <option>Hostname </option> 37 - <option>IPAddress </option> 38 - </select> 39 - <input class="form-control" type="text" value="administrator" id="query-input" size="10"> 40 - <div id="itemForm"></div> 34 + <form class="navbar-nav " role="search"> 35 + <div class="form-group mt - 3 " id = " itemForm "> 36 + <div class="form-inline"> 37 + <label class="sr -only " for ="InputSelect">select < / label > 38 + <select class="custom-select" id="InputSelect"> 39 + <option>Username </option> 40 + <option>Hostname </option> 41 + <option>IPAddress</option> 42 + </select> 43 + <input class="form-control my-2 my-lg-0 ml-1" type="text" value="administrator" id="query-input"> 44 + </div> 41 45 </div> 42 - <input type="button" class="btn btn-default " value="+" onclick="ItemField.add();" /> 43 - <input type="button" class="btn btn-default " value="-" onclick="ItemField.del();" /> 44 - <input type="button" class="btn btn-default " data-toggle="modal" value="Filter" data-target="#Filters"> 45 - <button type="button" class="btn btn-default " data-toggle="tooltip" data-placement="bottom" data-original-title="Username/IPAddress/Hostname search" onclick="createQuery()">search</button> 46 - <button type="button" class="btn btn-default " data-toggle="tooltip" data-placement="bottom" data-original-title="Search for how exploit the administrator account from the account. (only one Username)" onclick="searchPath()">search path</button> 47 - <div class="btn-group"> 48 - <a href="#" class="btn btn-default dropdown-toggle" type="button" data-toggle="dropdown" aria-expanded="false"> 49 - Export <span class="caret"></span> 50 - </a> 51 - <ul class="dropdown-menu" role="menu"> 52 - <li role="presentation"><a onclick="exportCSV()">CSV</a></li> 53 - <li role="presentation"><a download="image.json" id="export-json" onclick="exportJSON()">JSON</a></li> 54 - <li role ="presentation "> < a download="image.png " id="export-png " onclick="exportPNG ()">PNG </a>< / li > 55 - <li role ="presentation "> < a download="image.jpeg " id="export-jpeg " onclick="exportJPEG ()">JPEG </a>< / li > 56 - </ul> 46 + <input type="button" class="btn btn-primary ml - 1 mt - 3 h - 25 " value="+" onclick="ItemField.add();" /> 47 + <input type="button" class="btn btn-primary ml - 1 mt - 3 h - 25 " value="-" onclick="ItemField.del();" /> 48 + <input type="button" class="btn btn-secondary ml - 1 mt - 3 h - 25 " data-toggle="modal" value="Filter" data-target="#Filters"> 49 + <button type="button" class="btn btn-outline - primary ml - 1 mt - 3 h - 25 " data-toggle="tooltip" data-placement="bottom" data-original-title="Username/IPAddress/Hostname search" onclick="createQuery()">search</button> 50 + <button type="button" class="btn btn-outline - primary ml - 1 mt - 3 h - 25 " data-toggle="tooltip" data-placement="bottom" data-original-title="Search for how exploit the administrator account from the account. (only one Username)" onclick="searchPath()">search path</button> 51 + <div class="btn-group ml - 1 mt - 3 h - 25 "> 52 + <button class="btn btn-outline-secondary" type="button">Export</button> 53 + <button class="btn btn-outline-secondary dropdown-toggle dropdown-toggle-split" type="button" id="navbarDropdown" role="button" data-toggle="dropdown" aria-haspopup="true" aria-expanded="false"> 54 + <span class="sr-only"></span> 55 + </button> 56 + <div class="dropdown-menu" aria-labelledby="navbarDropdown"> 57 + <a class="dropdown-item" onclick="exportCSV()" href="#">CSV</a> 58 + <a class ="dropdown - item " download="image.json " id="export-json " onclick="exportJSON ()" href = " # " >JSON </a> 59 + <a class ="dropdown - item " download="image.png " id="export-png " onclick="exportPNG ()" href = " # " >PNG </a> 60 + <a class="dropdown-item" download="image.jpeg" id="export-jpeg" onclick="exportJPEG()" href="#">JPEG</a> 61 + </div> 62 + </div> 63 + <div class="custom-control custom-switch ml-4 mt-4"> 64 + <input type="checkbox" class="custom-control-input" id="darkSwitch"> 65 + <label class="custom-control-label" for="darkSwitch">Dark Mode</label> 57 66 </div> 67 + 68 + <script src="static/js/dark-mode-switch.min.js"></script> 58 69 </form> 59 70 </div> 60 - </div> 61 71 </nav> 62 72 63 73 <div class="container-fluid"> 64 74 <div class="row"> 65 75 <div class="col-sm-2 col-md-2 sidebar"> 66 - <div class="list-group"> 67 - <button type="button" class="list-group-item" data-toggle="tooltip" data-placement="bottom" data-original-title="Visualizing all users and hosts." onclick="createAllQuery()">All Users</button> 68 - <button type="button" class="list-group-item" data-toggle="tooltip" data-placement="bottom" data-original-title="Visualizing users with system privileges." onclick="createSystemQuery()">SYSTEM Privileges</button> 69 - <button type="button" class="list-group-item" data-toggle="tooltip" data-placement="bottom" data-original-title="Visualizing remote logon users and hosts using NTLM authentication. If not using NTLM authentication, it may be pass-the-hash." onclick="createNTLMQuery()">NTLM Remote Logon</button> 70 - <button type="button" class="list-group-item" data-toggle="tooltip" data-placement="bottom" data-original-title="Visualizing RDP logon users and hosts (Logon type: 10)." onclick="createRDPQuery()">RDP Logon</button> 71 - <button type="button" class="list-group-item" data-toggle="tooltip" data-placement="bottom" data-original-title="Visualizing logon users and hosts from remote network (Logon type: 3)." onclick="createNetQuery()">Network Logon</button> 72 - <button type="button" class="list-group-item" data-toggle="tooltip" data-placement="bottom" data-original-title="Visualizing batch server logon (Logon type: 4)." onclick="createBatchQuery()">Batch Logon</button> 73 - <button type="button" class="list-group-item" data-toggle="tooltip" data-placement="bottom" data-original-title="Visualizing Services Control Manager logon (Logon type: 5)." onclick="createServiceQuery()">Service Logon</button> 74 - <button type="button" class="list-group-item" data-toggle="tooltip" data-placement="bottom" data-original-title="Visualizing the error log that the ms14-068 exploit failed." onclick="create14068Query()">MS14-068 Exploit Failure</button> 75 - <button type="button" class="list-group-item" data-toggle="tooltip" data-placement="bottom" data-original-title="Visualizing failed logon." onclick="createFailQuery()">Logon Failure</button> 76 - <button type="button" class="list-group-item" data-toggle="tooltip" data-placement="bottom" data-original-title="Visualizing DCSync and DCShadow log." onclick="dcsQuery()">Detect DCSync/DCShadow</button> 77 - <button type="button" class="list-group-item" data-toggle="tooltip" data-placement="bottom" data-original-title="Visualizing deleted or added users." onclick="adddelUsersQuery()">Add/Delete Users</button> 78 - <button type="button" class="list-group-item" data-toggle="tooltip" data-placement="bottom" data-original-title="Visualizing all domain names. If an attacker is intrude into a network, there may be a malicious domain name." onclick="createDomainQuery()">Domain Check</button> 79 - <button type="button" class="list-group-item" data-toggle="tooltip" data-placement="bottom" data-original-title="Visualizing changed audit policy." onclick="policyQuery()">Audit Policy Change</button> 80 - <button type="button" class="list-group-item" data-toggle="modal" data-target="#Diff">Diff Graph</button> 81 - <button type="button" class="list-group-item" data-toggle="tooltip" data-placement="bottom" data-original-title="Displays hourly event log counts in time series." onclick="window.open('timeline')">Create Timeline</button> 76 + <div class="list-group mt - 3 "> 77 + <button type="button" class="list-group-item list - group - item - action list - group - item - light " data-toggle="tooltip" data-placement="bottom" data-original-title="Visualizing all users and hosts." onclick="createAllQuery()">All Users</button> 78 + <button type="button" class="list-group-item list - group - item - action list - group - item - light " data-toggle="tooltip" data-placement="bottom" data-original-title="Visualizing users with system privileges." onclick="createSystemQuery()">SYSTEM Privileges</button> 79 + <button type="button" class="list-group-item list - group - item - action list - group - item - light " data-toggle="tooltip" data-placement="bottom" data-original-title="Visualizing remote logon users and hosts using NTLM authentication. If not using NTLM authentication, it may be pass-the-hash." onclick="createNTLMQuery()">NTLM Remote Logon</button> 80 + <button type="button" class="list-group-item list - group - item - action list - group - item - light " data-toggle="tooltip" data-placement="bottom" data-original-title="Visualizing RDP logon users and hosts (Logon type: 10)." onclick="createRDPQuery()">RDP Logon</button> 81 + <button type="button" class="list-group-item list - group - item - action list - group - item - light " data-toggle="tooltip" data-placement="bottom" data-original-title="Visualizing logon users and hosts from remote network (Logon type: 3)." onclick="createNetQuery()">Network Logon</button> 82 + <button type="button" class="list-group-item list - group - item - action list - group - item - light " data-toggle="tooltip" data-placement="bottom" data-original-title="Visualizing batch server logon (Logon type: 4)." onclick="createBatchQuery()">Batch Logon</button> 83 + <button type="button" class="list-group-item list - group - item - action list - group - item - light " data-toggle="tooltip" data-placement="bottom" data-original-title="Visualizing Services Control Manager logon (Logon type: 5)." onclick="createServiceQuery()">Service Logon</button> 84 + <button type="button" class="list-group-item list - group - item - action list - group - item - light " data-toggle="tooltip" data-placement="bottom" data-original-title="Visualizing the error log that the ms14-068 exploit failed." onclick="create14068Query()">MS14-068 Exploit Failure</button> 85 + <button type="button" class="list-group-item list - group - item - action list - group - item - light " data-toggle="tooltip" data-placement="bottom" data-original-title="Visualizing failed logon." onclick="createFailQuery()">Logon Failure</button> 86 + <button type="button" class="list-group-item list - group - item - action list - group - item - light " data-toggle="tooltip" data-placement="bottom" data-original-title="Visualizing DCSync and DCShadow log." onclick="dcsQuery()">Detect DCSync/DCShadow</button> 87 + <button type="button" class="list-group-item list - group - item - action list - group - item - light " data-toggle="tooltip" data-placement="bottom" data-original-title="Visualizing deleted or added users." onclick="adddelUsersQuery()">Add/Delete Users</button> 88 + <button type="button" class="list-group-item list - group - item - action list - group - item - light " data-toggle="tooltip" data-placement="bottom" data-original-title="Visualizing all domain names. If an attacker is intrude into a network, there may be a malicious domain name." onclick="createDomainQuery()">Domain Check</button> 89 + <button type="button" class="list-group-item list - group - item - action list - group - item - light " data-toggle="tooltip" data-placement="bottom" data-original-title="Visualizing changed audit policy." onclick="policyQuery()">Audit Policy Change</button> 90 + <button type="button" class="list-group-item list - group - item - action list - group - item - light " data-toggle="modal" data-target="#Diff">Diff Graph</button> 91 + <button type="button" class="list-group-item list - group - item - action list - group - item - light " data-toggle="tooltip" data-placement="bottom" data-original-title="Displays hourly event log counts in time series." onclick="window.open('timeline')">Create Timeline</button> 82 92 </div> 83 93 <hr> 84 94 <a data-toggle="tooltip" data-placement="bottom" data-original-title="Add value to edges of visualization graph.">Add event value</a><br> 85 - <div class="btn-group" data-toggle="buttons"> 86 - <label class="btn btn-default "> 95 + <div class="btn-group btn - group - toggle " data-toggle="buttons"> 96 + <label class="btn btn-outline - secondary "> 87 97 <input type="checkbox" name="options" id="label-count" autocomplete="off">Count</label> 88 - <label class="btn btn-default "> 98 + <label class="btn btn-outline - secondary "> 89 99 <input type="checkbox" name="options" id="label-type" autocomplete="off">Type</label> 90 - <label class="btn btn-default "> 100 + <label class="btn btn-outline - secondary "> 91 101 <input type="checkbox" name="options" id="label-authname" autocomplete="off">Auth</label> 92 102 </div> 93 103 <hr> 94 104 <a data-toggle="tooltip" data-placement="bottom" data-original-title="Select visualization graph mode.">Graph mode</a><br> 95 - <div class="btn-group" data-toggle="buttons"> 96 - <label class="btn btn-default active"> 105 + <div class="btn-group btn - group - toggle " data-toggle="buttons"> 106 + <label class="btn btn-outline - secondary active"> 97 107 <input type="radio" id="modeGrid" name="graphmode" checked="checked">grid</label> 98 - <label class="btn btn-default "> 108 + <label class="btn btn-outline - secondary "> 99 109 <input type="radio" id="modeCose" name="graphmode">cose</label> 100 - <label class="btn btn-default "> 110 + <label class="btn btn-outline - secondary "> 101 111 <input type="radio" id="modeCircle" name="graphmode">circle</label> 102 - <label class="btn btn-default "> 112 + <label class="btn btn-outline - secondary "> 103 113 <input type="radio" id="modeTree" name="graphmode">tree</label> 104 114 </div> 105 115 <hr> 106 116 <a data-toggle="tooltip" data-placement="bottom" data-original-title="Enable visualization of malicious account ranking.">Rank visualize mode</a><br> 107 - <input type="checkbox" data-toggle="toggle" data-on="Enabled" data-height="35" data-off="Disabled" id="rankMode"> 117 + <input type="checkbox" data-toggle="toggle" data-on="Enabled" data-onstyle = " secondary " data - height="35" data-off="Disabled" data - offstyle = " outline - secondary " id="rankMode"> 108 118 <hr> 109 119 <a data-toggle="tooltip" data-placement="bottom" data-original-title="Import event logs in EVTX or XML format.">Upload</a><br> 110 - <button class="btn btn-default " data-toggle="modal" data-target="#UploadEVTX">Upload Event Log</button> 120 + <button class="btn btn-secondary " data-toggle="modal" data-target="#UploadEVTX">Upload Event Log</button> 111 121 </div> 112 122 <div class="col-sm-8 col-md-8 main"> 113 123 <div id="error"></div> skipped 2 lines 116 126 <span class="fa fa-refresh fa-spin"></span> 117 127 </div> 118 128 </div> 119 - <div class="col-sm-2 col-md-2"> 129 + <div class="col-sm-2 col-md-2 mt - 3 "> 120 130 <div class="container" id="rankUser"></div> 121 - <ul class="pager"> 122 - <li><a onclick="pruserBack()">Back</a></li> 123 - <li><a onclick="pruserNext()">Next</a></li> 131 + <ul class="pagination justify-content-center"> 132 + <li><a class = " btn page - link rounded - pill " onclick="pruserBack()">Back</a></li> 133 + <li><a class = " btn page - link rounded - pill ml - 2 " onclick="pruserNext()">Next</a></li> 124 134 </ul> 125 - <hr> 126 135 <div class="container" id="rankHost"></div> 127 - <ul class="pager"> 128 - <li><a onclick="prhostBack()">Back</a></li> 129 - <li><a onclick="prhostNext()">Next</a></li> 136 + <ul class="pagination justify-content-center"> 137 + <li><a class = " btn page - link rounded - pill " onclick="prhostBack()">Back</a></li> 138 + <li><a class = " btn page - link rounded - pill ml - 2 " onclick="prhostNext()">Next</a></li> 130 139 </ul> 131 140 </div> 132 141 </div> 133 142 </div> 134 143 <!-- Upload --> 135 144 <div class="modal fade" id="UploadEVTX" tabindex="-1"> 136 - <div class="modal-dialog modal-lg "> 145 + <div class="modal-dialog modal-xl "> 137 146 <div class="modal-content"> 138 147 <div class="modal-header"> 139 - <button type="button" class="close" data-dismiss="modal"><span class="glyphicon glyphicon-remove"></span></button> 140 148 <h4 class="modal-title">Upload Event Log File</h4> 141 - <p>Import the event log. Supported file format is EVTX or XML (exported Event Viewer or PowerShell).</p> 149 + <button type="button" class="close" data-dismiss="modal"><i class="fas fa-times"></i></button> 142 150 </div> 143 151 <div class="modal-body"> 144 - <div id="zoneTime"></div> 145 - <div class="col - xs -2 "> 146 - <select class="form-control" id="logType"> 152 + <p>Import the event log. Supported file format is EVTX or XML (exported Event Viewer or PowerShell).</p> 153 + <div class="form -inline "> 154 + <div class="w-auto" id="zoneTime"></div> 155 + <div class="w-auto ml-2"> 156 + <select class="custom-select" id="logType"> 147 157 <option>EVTX</option> 148 158 <option>XML</option> 149 159 </select> 150 160 </div> 151 - <div class="input-group"> 161 + <div class="input-group w - 75 ml - 2 "> 152 162 <input multiple id="lefile" type="file" style="display:none"> 153 163 <input type="text" id="evtx_name" class="form-control" placeholder="select file (multi files) ..."> 154 164 <span class="input-group-btn"><button type="button" class="btn btn-info" onclick="$('input[id=lefile]').click();">Browse</button></span> 155 165 </div> 166 + </div> 167 + <div class="custom-control custom-checkbox mt-3"> 168 + <label data-toggle="tooltip" data-placement="bottom" data-original-title="If you want to add more logs, please enable the checkbox."> 169 + <input type="checkbox" class="custom-control-input" id="add_log"> 170 + <label class="custom-control-label" for="add_log">Add additional EVTX or XML files</label> 171 + </label> 172 + </div> 156 173 <div id="uploadBar"></div> 157 174 <div id="status"></div> 158 175 </div> 159 176 <div class="modal-footer"> 160 177 <button type="submit" class="btn btn-primary" onclick="file_upload()">Upload</button> 161 - <button type="button" class="btn btn-default " data-dismiss="modal">Close</button> 162 - <a href="log" target="_blank"><button type="button" class="btn btn-default ">Log</button></a> 178 + <button type="button" class="btn btn-secondary " data-dismiss="modal">Close</button> 179 + <a href="log" target="_blank"><button type="button" class="btn btn-secondary ">Log</button></a> 163 180 </div> 164 181 </div> 165 182 </div> 166 183 </div> 167 184 <!-- Filter --> 168 185 <div class="modal fade" id="Filters" tabindex="-1"> 169 - <div class="modal-dialog"> 186 + <div class="modal-dialog modal - lg "> 170 187 <div class="modal-content"> 171 188 <div class="modal-header"> 172 - <button type="button" class="close" data-dismiss="modal"><span class="glyphicon glyphicon-remove"></span></button> 173 189 <h4 class="modal-title">Event Log Filter</h4> 174 - <p>Filter event log by date, count and id.</p> 190 + <button type="button" class="close" data-dismiss="modal"><i class="fas fa-times"></i></button> 175 191 </div> 176 192 <div class="modal-body"> 193 + <p>Filter event log by date, count and event id.</p> 177 194 <div class="container-fluid"> 178 195 <div class="row"> 179 - <h4 class="col-md-2 ">Date<h4> 180 - <div class="col - md - 10 ml -auto "> 181 - <div class="form-group"> 182 - <div class="input-group fromdate"> 183 - <input type="text" placeholder="From" id="from-date" class="form-control" /> 184 - <span class="input-group-addon"> 185 - <span class="glyphicon glyphicon-calendar"></span> 186 - </span> 196 + <h4 class="col-md-3 ">Date<h4> 197 + <div class="form -group "> 198 + <div class="input-group fromdate" id="datetimepicker1" data-target-input="nearest"> 199 + <input type="text" placeholder="From" id="from-date" class="form-control datetimepicker-input" data-target="#datetimepicker1"/> 200 + <div class="input-group-append" data-target="#datetimepicker1" data-toggle="datetimepicker"> 201 + <div class="input-group-text"><i class="far fa-calendar-alt"></i></div> 187 202 </div> 188 203 </div> 189 - <div class="form-group"> 190 - <div class="input -group todate "> 191 - <input type="text" placeholder="To" id="to-date" class="form-control" /> 192 - <span class="input-group-addon"> 193 - <span class="glyphicon glyphicon-calendar"></span> 194 - </span> 204 + </div> 205 + <div class="form -group"> 206 + <div class="input-group todate" id="datetimepicker2" data-target-input="nearest"> 207 + <input type="text" placeholder="To" id="to-date" class="form-control datetimepicker-input" data-target="#datetimepicker2"/> 208 + <div class="input-group-append" data-target="#datetimepicker2" data-toggle="datetimepicker"> 209 + <div class="input-group-text"><i class="far fa-calendar-alt"></i></div> 195 210 </div> 196 211 </div> 197 212 </div> skipped 1 lines 199 214 <hr> 200 215 <div class="row"> 201 216 <h4 class="col-md-3">Event ID</h4> 202 - <div class="col-md-9 ml-auto"> 203 - <div class="checkbox"> 204 - <label data-toggle="tooltip" data-placement="bottom" data-original-title="Successful logon"> 205 - <input type="checkbox" id="id4624" checked="checked"> 4624 206 - </label> 207 - <label data-toggle="tooltip" data-placement="bottom" data-original-title="Logon failure"> 208 - <input type="checkbox" id="id4625" checked="checked"> 4625 209 - </label> 210 - <label data-toggle="tooltip" data-placement="bottom" data-original-title="Kerberos Authentication (TGT Request)"> 211 - <input type="checkbox" id="id4768" checked="checked"> 4768 212 - </label> 213 - <label data-toggle="tooltip" data-placement="bottom" data-original-title="Kerberos Service Ticket (ST Request)"> 214 - <input type="checkbox" id="id4769" checked="checked"> 4769 215 - </label> 216 - <label data-toggle="tooltip" data-placement="bottom" data-original-title="NTLM Authentication"> 217 - <input type="checkbox" id="id4776" checked="checked"> 4776 218 - </label> 219 - </div> 217 + <div class="custom-control custom-checkbox custom-control-inline"> 218 + <label data-toggle="tooltip" data-placement="bottom" data-original-title="Successful logon"> 219 + <input type="checkbox" id="id4624" class="custom-control-input" checked="checked"> 220 + <label class="custom-control-label" for="id4624">4624</label> 221 + </label> 222 + </div> 223 + <div class="custom-control custom-checkbox custom-control-inline"> 224 + <label data-toggle="tooltip" data-placement="bottom" data-original-title="Logon failure"> 225 + <input type="checkbox" id="id4625" class="custom-control-input" checked="checked"> 226 + <label class="custom-control-label" for="id4625">4625</label> 227 + </label> 228 + </div> 229 + <div class="custom-control custom-checkbox custom-control-inline"> 230 + <label data-toggle="tooltip" data-placement="bottom" data-original-title="Kerberos Authentication (TGT Request)"> 231 + <input type="checkbox" id="id4768" class="custom-control-input" checked="checked"> 232 + <label class="custom-control-label" for="id4768">4768</label> 233 + </label> 234 + </div> 235 + <div class="custom-control custom-checkbox custom-control-inline"> 236 + <label data-toggle="tooltip" data-placement="bottom" data-original-title="Kerberos Service Ticket (ST Request)"> 237 + <input type="checkbox" id="id4769" class="custom-control-input" checked="checked"> 238 + <label class="custom-control-label" for="id4769">4769</label> 239 + </label> 240 + </div> 241 + <div class="custom-control custom-checkbox custom-control-inline"> 242 + <label data-toggle="tooltip" data-placement="bottom" data-original-title="NTLM Authentication"> 243 + <input type="checkbox" id="id4776" class="custom-control-input" checked="checked"> 244 + <label class="custom-control-label" for="id4776">4776</label> 245 + </label> 220 246 </div> 221 247 </div> 222 248 <hr> 223 249 <div class="row"> 224 - <h4 class="col-md-2 ">Count<h4> 225 - <div class="col - md - 5 ml -auto "> 226 - <div class="form-group"> 227 - <input class="form-control" type="text" value=0 id="count-input" data-toggle="tooltip" data-placement="bottom" data-original-title="Set the lower limit of Event ID to visualize."> 228 - </div> 250 + <h4 class="col-md-3 ">Count<h4> 251 + <div class="form -group "> 252 + <input class="form-control" type="text" value=0 id="count-input" data-toggle="tooltip" data-placement="bottom" data-original-title="Set the lower limit of Event ID to visualize."> 229 253 </div> 230 254 </div> 231 255 </div> 232 256 </div> 233 257 <div class="modal-footer"> 234 - <button type="button" class="btn btn-default " data-dismiss="modal">Close</button> 258 + <button type="button" class="btn btn-secondary " data-dismiss="modal">Close</button> 235 259 </div> 236 260 </div> 237 261 </div> skipped 4 lines 242 266 <div class="modal-dialog"> 243 267 <div class="modal-content"> 244 268 <div class="modal-header"> 245 - <button type="button" class="close" data-dismiss="modal"><span class="glyphicon glyphicon-remove"></span></button> 246 269 <h4 class="modal-title">Diff Graph</h4> 247 - <p>Compare two days and view unique events.</p> 270 + <button type="button" class="close" data-dismiss="modal"><i class="fas fa-times"></i></button> 248 271 </div> 249 272 <div class="modal-body"> 273 + <p>Compare two days and view unique events.</p> 250 274 <div class="container-fluid"> 251 275 <div class="row"> 252 276 <div class="form-group"> 253 - <div class="input-group fromday"> 254 - <input type="text" placeholder="From" id="from-day" class="form-control" /> 255 - <span class="input-group-addon"> 256 - <span class="glyphicon glyphicon-calendar"></span> 257 - </span> 277 + <div class="input-group fromday" id = " datetimepicker3 " data - target - input = " nearest " > 278 + <input type="text" placeholder="From" id="from-day" class="form-control datetimepicker - input " data - target = " # datetimepicker3 " /> 279 + <div class="input-group-append" data-target="#datetimepicker3" data-toggle="datetimepicker"> 280 + <div class="input-group-text"><i class="far fa-calendar-alt"></i></div> 281 + </div> 258 282 </div> 259 283 </div> 260 284 <div class="form-group"> 261 - <div class="input-group today"> 262 - <input type="text" placeholder="To" id="to-day" class="form-control" /> 263 - <span class="input-group-addon"> 264 - <span class="glyphicon glyphicon-calendar"></span> 265 - </span> 285 + <div class="input-group today" id = " datetimepicker4 " data - target - input = " nearest " > 286 + <input type="text" placeholder="To" id="to-day" class="form-control datetimepicker - input " data - target = " # datetimepicker4 " /> 287 + <div class="input-group-append" data-target="#datetimepicker4" data-toggle="datetimepicker"> 288 + <div class="input-group-text"><i class="far fa-calendar-alt"></i></div> 289 + </div> 266 290 </div> 267 291 </div> 268 292 </div> skipped 1 lines 270 294 </div> 271 295 <div class="modal-footer"> 272 296 <button type="submit" class="btn btn-primary" data-dismiss="modal" onclick="diffQuery()">Compare</button> 273 - <button type="button" class="btn btn-default " data-dismiss="modal">Close</button> 297 + <button type="button" class="btn btn-secondary " data-dismiss="modal">Close</button> 274 298 </div> 275 299 </div> 276 300 </div> skipped 9 lines 286 310 <p>Web page loading slow due to large graph. Do you want to continue searching?</p> 287 311 </div> 288 312 <div class="modal-footer"> 289 - <button type="button" class="btn btn-default " onclick="contQuery()" data-dismiss="modal">Yes</button> 313 + <button type="button" class="btn btn-secondary " onclick="contQuery()" data-dismiss="modal">Yes</button> 290 314 <button type="button" class="btn btn-primary" data-dismiss="modal">No</button> 291 315 </div> 292 316 </div> skipped 21 lines 314 338 var currentNumber = 0; 315 339 var ItemField = { 316 340 currentNumber: 0, 317 - itemTemplate: '<label class="sr-only" for="InputSelect">select</label>\ 318 - <select class="form -control " id="InputSelect_count_">\ 341 + itemTemplate: '<div class = " form - inline my - 5 my - lg - 0 " > < label class="sr-only" for="InputSelect">select</label>\ 342 + <select class="custom -select " id="InputSelect_count_">\ 319 343 <option>Username</option><option>Hostname</option><option>IPAddress</option></select>\ 320 - <input class="form-control" type="text" id="query-input_count_" size = " 10 ">\ 344 + <input class="form-control my - 2 my - lg - 0 ml - 1 " type="text" id="query-input_count_">\ 321 345 <label class="sr-only" for="InputSelect">select</label>\ 322 - <select class="form -control " id="InputRule_count_">\ 323 - <option>OR</option><option>AND</option></select>', 346 + <select class="custom -select ml - 1 " id="InputRule_count_">\ 347 + <option>OR</option><option>AND</option></select>< / div > ', 324 348 add: function() { 325 349 currentNumber++; 326 350 if (currentNumber <= 10) { skipped 15 lines 342 366 } 343 367 } 344 368 345 - var downMenu = '<div class="col-xs-2"><select class="form -control " id="utcTime"><option>Time Zone</option>'; 369 + var downMenu = '<div class="col-xs-2"><select class="custom -select " id="utcTime"><option>Time Zone</option>'; 346 370 for (i = +14; i >= -12; i--) { 347 371 downMenu += '<option>' + i + '</option>'; 348 372 } skipped 14 lines 363 387 $(function () { 364 388 $('[data-toggle="tooltip"]').tooltip(); 365 389 }) 390 + 391 + $(function(){ 392 + deSVG('.my_svg', true); 393 + }); 366 394 </script> 367 395 </body> 368 396 skipped 2 lines