CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-05-05 19:08:10 +02:00
Code Issues Packages Projects Releases Wiki Activity

fix soc dashboards and things

Browse Source
This commit is contained in:
m0duspwnens
2022-09-09 14:31:04 -04:00
parent 5bb001281b
commit 5ccc103083
2 changed files with 728 additions and 210 deletions
Download Patch File Download Diff File Expand all files Collapse all files
salt/soc/merged.map.jinja
+15 -9
View File
@@ -27,7 +27,7 @@
'docsUrl': '/docs/',
'cheatsheetUrl': '/docs/cheatsheet.pdf',
'releaseNotesUrl': '/docs/#release-notes'
})
})
%}
{% endif %}
@@ -41,16 +41,22 @@
{% do SOCMERGED.server.client.inactiveTools.append('toolGrafana') %}
{% endif %}
{% set standard_actions = SOCMERGED.pop('actions') %}
{% if pillar.global.endgamehost is defined %}
{% set endgame_dict = {
"name": "Endgame",
"description": "Endgame Endpoint Investigation and Response",
"icon": "fa-external-link-alt",
{% set endgame_dict = {
"name": "Endgame",
"description": "Endgame Endpoint Investigation and Response",
"icon": "fa-external-link-alt",
"target": "_blank",
"links": ["https://{{ pillar.global.endgamehost }}/endpoints/{:agent.id}"]
"links": ["https://" ~ pillar.global.endgamehost ~ "/endpoints/{:agent.id}"]
}
%}
{% for action in SOCMERGED.server.client.job.actions %}
{% do SOCMERGED.server.client.job.actions.update(action, endgame_dict)%}
{% endfor %}
{% do standard_actions.append(endgame_dict) %}
{% endif %}
{% do SOCMERGED.server.client.hunt.update({'actions': standard_actions}) %}
{% do SOCMERGED.server.client.dashboards.update({'actions': standard_actions}) %}
{% do SOCMERGED.server.client.update({'job': {'actions': standard_actions}}) %}
{% do SOCMERGED.server.client.alerts.update({'actions': standard_actions}) %}
{% do SOCMERGED.server.client.cases.update({'actions': standard_actions}) %}