mirror of
https://github.com/Security-Onion-Solutions/securityonion.git
synced 2025-12-06 17:22:49 +01:00
Merge pull request #12640 from Security-Onion-Solutions/cogburn/sigma-repo-support
Update ElastAlert Config with Default Repos
This commit is contained in:
coreyogburn
GitHub
@@ -1186,6 +1186,10 @@ soc:
|
|||||||
denyRegex: ''
|
denyRegex: ''
|
||||||
elastAlertRulesFolder: /opt/sensoroni/elastalert
|
elastAlertRulesFolder: /opt/sensoroni/elastalert
|
||||||
rulesFingerprintFile: /opt/sensoroni/fingerprints/sigma.fingerprint
|
rulesFingerprintFile: /opt/sensoroni/fingerprints/sigma.fingerprint
|
||||||
|
rulesRepos:
|
||||||
|
- repo: https://github.com/Security-Onion-Solutions/securityonion-resources
|
||||||
|
license: DRL
|
||||||
|
folder: sigma/stable
|
||||||
sigmaRulePackages:
|
sigmaRulePackages:
|
||||||
- core
|
- core
|
||||||
- emerging_threats_addon
|
- emerging_threats_addon
|
||||||
|
|||||||
Reference in New Issue
Block a user