From 1fe7726affc3032fb57c7ded0d982dd48a993c76 Mon Sep 17 00:00:00 2001 From: Josh Brower Date: Thu, 2 Jul 2026 14:58:48 -0400 Subject: [PATCH] Changes from feedback --- salt/soc/defaults.yaml | 7 +++++-- salt/soc/enabled.sls | 4 ++-- 2 files changed, 7 insertions(+), 4 deletions(-) diff --git a/salt/soc/defaults.yaml b/salt/soc/defaults.yaml index 58c689c72..e9946d633 100644 --- a/salt/soc/defaults.yaml +++ b/salt/soc/defaults.yaml @@ -1499,9 +1499,12 @@ soc: playbookRepoPath: /opt/sensoroni/playbooks/ playbookRepos: default: - - repo: https://github.com/defensivedepth/HCIP-Sigma + - repo: https://github.com/Security-Onion-Solutions/securityonion-resources-playbooks branch: main - folder: playbooks + folder: securityonion-normalized + - repo: https://github.com/Security-Onion-Solutions/securityonion-resources-playbooks + branch: published + folder: sigma airgap: - repo: file:///nsm/airgap-resources/playbooks/securityonion-resources-playbooks branch: main diff --git a/salt/soc/enabled.sls b/salt/soc/enabled.sls index d84e24dd8..b907864a2 100644 --- a/salt/soc/enabled.sls +++ b/salt/soc/enabled.sls @@ -46,9 +46,9 @@ so-soc: - /opt/so/conf/soc/banner.md:/opt/sensoroni/html/login/banner.md:ro - /opt/so/conf/soc/sigma_so_pipeline.yaml:/opt/sensoroni/sigma_so_pipeline.yaml:ro - /opt/so/conf/soc/sigma_playbook_pipeline.yaml:/opt/sensoroni/sigma_playbook_pipeline.yaml:ro - - /opt/so/conf/soc/sigma_final_pipeline.yaml:/opt/sensoroni/sigma_final_pipeline.yaml:rw + - /opt/so/conf/soc/sigma_final_pipeline.yaml:/opt/sensoroni/sigma_final_pipeline.yaml:ro - /opt/so/conf/soc/playbook_placeholder_map.yaml:/opt/sensoroni/playbook_placeholder_map.yaml:ro - - /opt/so/conf/soc/playbook_placeholder_map_custom.yaml:/opt/sensoroni/playbook_placeholder_map_custom.yaml:rw + - /opt/so/conf/soc/playbook_placeholder_map_custom.yaml:/opt/sensoroni/playbook_placeholder_map_custom.yaml:ro - /opt/so/conf/soc/custom.js:/opt/sensoroni/html/js/custom.js:ro - /opt/so/conf/soc/custom_roles:/opt/sensoroni/rbac/custom_roles:ro - /opt/so/conf/soc/soc_users_roles:/opt/sensoroni/rbac/users_roles:rw