CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 17:22:49 +01:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #12639 from Security-Onion-Solutions/2.4/enable-detections

Browse Source 
Enable Detections
This commit is contained in:
Josh Brower
2024-03-25 09:30:01 -04:00
committed by GitHub
parent e124791d5d 5ca9ec4b17
commit b8d33ab983
1 changed files with 3 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
salt/soc/defaults.yaml
View File

@@ -1263,7 +1263,7 @@ soc:
tipTimeoutMs: 6000 tipTimeoutMs: 6000
cacheExpirationMs: 300000 cacheExpirationMs: 300000
casesEnabled: true casesEnabled: true
detectionsEnabled: false detectionsEnabled: true
inactiveTools: ['toolUnused'] inactiveTools: ['toolUnused']
tools: tools:
- name: toolKibana - name: toolKibana
@@ -1987,8 +1987,9 @@ soc:
default: default:
- so_detection.title - so_detection.title
- so_detection.isEnabled - so_detection.isEnabled
- so_detection.language
- so_detection.severity - so_detection.severity
- so_detection.language
- so_detection.ruleset
queries: queries:
- name: "All Detections" - name: "All Detections"
query: "_id:*" query: "_id:*"