CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 17:22:49 +01:00
Code Issues Packages Projects Releases Wiki Activity

Update README.md

Browse Source
This commit is contained in:
Doug Burks
2019-10-03 09:05:45 -04:00
committed by GitHub
parent 308041fad6
commit 16ff276bf1
1 changed files with 1 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
README.md
View File

@@ -12,8 +12,7 @@
- Playbook and ATT&CK Navigator features are now included. - Playbook and ATT&CK Navigator features are now included.
- Filebeat now logs to a file, instead of stdout. - Filebeat now logs to a file, instead of stdout.
- Elastalert has been updated to use Python 3 and allow for use of custom alerters. - Elastalert has been updated to use Python 3 and allow for use of custom alerters.
- Elasticsearch Ingest is now used to consume Zeek logs and Suricata alerts (instead of the traditional Logstash pipeline). - Moved Bro/Zeek log parsing from Logstash to Elasticsearch Ingest for higher performance and lower memory usage!
This reduces the memory footprint of Logstash dramatically!
- Several changes to the setup script have been made to improve stability of the setup process: - Several changes to the setup script have been made to improve stability of the setup process:
- Setup now modifies your hosts file so that the install works better in environments without DNS. - Setup now modifies your hosts file so that the install works better in environments without DNS.
- You are now prompted for setting a password for the socore user. - You are now prompted for setting a password for the socore user.