CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #12640 from Security-Onion-Solutions/cogburn/sigma-repo-support

Browse Source 
Update ElastAlert Config with Default Repos
This commit is contained in:
coreyogburn
2024-03-22 14:24:18 -06:00
committed by GitHub
parent d6ce3851ec 237946e916
commit 8ae30d0a77
1 changed files with 4 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
salt/soc/defaults.yaml
View File

@@ -1186,6 +1186,10 @@ soc:
denyRegex: ''
elastAlertRulesFolder: /opt/sensoroni/elastalert
rulesFingerprintFile: /opt/sensoroni/fingerprints/sigma.fingerprint
rulesRepos:
- repo: https://github.com/Security-Onion-Solutions/securityonion-resources
license: DRL
folder: sigma/stable
sigmaRulePackages:
- core
- emerging_threats_addon