CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-04-26 06:27:50 +02:00
Code Issues Packages Projects Releases Wiki Activity

WIP: Detections Changes

Browse Source 
Removed some strelka/yara rules from salt.

Removed yara scripts for downloading and updating rules. This will be managed by SOC.

Added a new compile_yara.py script.

Added the strelka repos folder.
This commit is contained in:
Corey Ogburn
2024-01-30 15:43:51 -07:00
parent 0fa4d92f8f
commit 858166bcae
6 changed files with 24 additions and 154 deletions
Download Patch File Download Diff File Expand all files Collapse all files
salt/strelka/backend/config.sls
-10
View File
@@ -50,16 +50,6 @@ backend_taste:
- user: 939
- group: 939
{% if STRELKAMERGED.rules.enabled %}
strelkarules:
file.recurse:
- name: /opt/so/conf/strelka/rules
- source: salt://strelka/rules
- user: 939
- group: 939
- clean: True
{% endif %}
{% else %}
{{sls}}_state_not_allowed: