CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 17:22:49 +01:00
Code Issues Packages Projects Releases Wiki Activity

Update defaults

Browse Source
This commit is contained in:
Joshua Brower
2025-01-07 13:14:50 -05:00
parent e3f75215b6
commit 6fa11a38ef
3 changed files with 10 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
salt/nginx/enabled.sls
View File

@@ -164,7 +164,6 @@ so-nginx:
- x509: managerssl_crt - x509: managerssl_crt
{% endif%} {% endif%}
- file: navigatorconfig - file: navigatorconfig
- file: navigatordefaultlayer
{% endif %} {% endif %}
delete_so-nginx_so-status.disabled: delete_so-nginx_so-status.disabled:

9
salt/nginx/files/navigator_config.json
View File

@@ -17,11 +17,14 @@
} }
], ],
"custom_context_menu_items": [ {"label": "view related Detections","url": " https://{{URL_BASE}}/#/detections?q=*{{ "{{technique_attackID}}" }}*+|+groupby+so_detection.language+|+groupby+so_detection.ruleset+so_detection.isEnabled+|+groupby+%22so_detection.category%22&z=America/New_York&el=500&gl=50&rt=0&rtu=hours"}], "custom_context_menu_items": [
{"label": "View related Detections","url": " https://{{URL_BASE}}/#/detections?q=*{{ "{{technique_attackID}}" }}*+|+groupby+so_detection.language+|+groupby+so_detection.ruleset+so_detection.isEnabled+|+groupby+%22so_detection.category%22&z=America/New_York&el=500&gl=50&rt=0&rtu=hours"},
{"label": "View related Alerts","url": " https://{{URL_BASE}}/#/alerts?q=*{{ "{{technique_attackID}}" }}*+|+groupby+rule.name+event.module*+event.severity_label+rule.uuid&z=America/New_York&el=500&gl=500&rt=15&rtu=days"}
],
"default_layers": { "default_layers": {
"enabled": true, "enabled": true,
"urls": ["assets/so/navigator_layer_sigma.json","assets/so/navigator_layer_suricata.json"] "urls": ["assets/so/navigator_layer_all_detections.json","assets/so/navigator_layer_sigma.json","assets/so/navigator_layer_suricata.json","assets/so/navigator_layer_alerts.json"]
}, },
"comment_color": "yellow", "comment_color": "yellow",
@@ -40,7 +43,7 @@
{"name": "link_underline", "enabled": true, "description": "Disable to remove the hyperlink underline effect on techniques."} {"name": "link_underline", "enabled": true, "description": "Disable to remove the hyperlink underline effect on techniques."}
], ],
"features": [ "features": [
{"name": "leave_site_dialog", "enabled": true, "description": "Disable to remove the dialog prompt when leaving site."}, {"name": "leave_site_dialog", "enabled": false, "description": "Disable to remove the dialog prompt when leaving site."},
{"name": "tabs", "disabled": true, "description": "Disable to remove the ability to open new tabs."}, {"name": "tabs", "disabled": true, "description": "Disable to remove the ability to open new tabs."},
{"name": "selecting_techniques", "enabled": true, "description": "Disable to remove the ability to select techniques."}, {"name": "selecting_techniques", "enabled": true, "description": "Disable to remove the ability to select techniques."},
{"name": "header", "enabled": true, "description": "Disable to remove the header containing banner."}, {"name": "header", "enabled": true, "description": "Disable to remove the header containing banner."},

4
salt/soc/defaults.yaml
View File

@@ -1502,6 +1502,10 @@ soc:
integrityCheckFrequencySeconds: 1200 integrityCheckFrequencySeconds: 1200
ignoredSidRanges: ignoredSidRanges:
- '1100000-1101000' - '1100000-1101000'
navigator:
intervalMinutes: 30
outputPath: /opt/sensoroni/navigator
lookbackDays: 3
client: client:
enableReverseLookup: false enableReverseLookup: false
docsUrl: /docs/ docsUrl: /docs/