CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity

Enable Detections

Browse Source
This commit is contained in:
DefensiveDepth
2024-03-22 10:12:26 -04:00
parent 4a33234c34
commit 5ca9ec4b17
1 changed files with 3 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
salt/soc/defaults.yaml
View File

@@ -1157,7 +1157,7 @@ soc:
tipTimeoutMs: 6000 tipTimeoutMs: 6000
cacheExpirationMs: 300000 cacheExpirationMs: 300000
casesEnabled: true casesEnabled: true
detectionsEnabled: false detectionsEnabled: true
inactiveTools: ['toolUnused'] inactiveTools: ['toolUnused']
tools: tools:
- name: toolKibana - name: toolKibana
@@ -1881,8 +1881,9 @@ soc:
default: default:
- so_detection.title - so_detection.title
- so_detection.isEnabled - so_detection.isEnabled
- so_detection.language
- so_detection.severity - so_detection.severity
- so_detection.language
- so_detection.ruleset
queries: queries:
- name: "All Detections" - name: "All Detections"
query: "_id:*" query: "_id:*"