CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-02-06 15:24:11 +01:00
Code Issues Packages Projects Releases Wiki Activity

More AI Summaries Config/Annotations

Browse Source 
Added aiRepoBranch to all 3 detection engines.

Added showUnreviewedAiSummaries to client parameters.

Added annotations.
This commit is contained in:
Corey Ogburn
2024-08-08 10:46:41 -06:00
parent fc89604982
commit ccd7d86302
2 changed files with 19 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
salt/soc/defaults.yaml
View File

@@ -1313,6 +1313,7 @@ soc:
hostUrl:
elastalertengine:
aiRepoUrl: https://github.com/Security-Onion-Solutions/securityonion-resources
aiRepoBranch: generated-summaries
aiRepoPath: /opt/sensoroni/repos
showAiSummaries: true
autoUpdateEnabled: true
@@ -1395,6 +1396,7 @@ soc:
- rbac/users_roles
strelkaengine:
aiRepoUrl: https://github.com/Security-Onion-Solutions/securityonion-resources
aiRepoBranch: generated-summaries
aiRepoPath: /opt/sensoroni/repos
showAiSummaries: true
autoEnabledYaraRules:
@@ -1419,6 +1421,7 @@ soc:
integrityCheckFrequencySeconds: 1200
suricataengine:
aiRepoUrl: https://github.com/Security-Onion-Solutions/securityonion-resources
aiRepoBranch: generated-summaries
aiRepoPath: /opt/sensoroni/repos
showAiSummaries: true
autoUpdateEnabled: true
@@ -2261,6 +2264,7 @@ soc:
query: "_exists_:so_detection.overrides | groupby so_detection.language | groupby so_detection.ruleset so_detection.isEnabled"
description: Show Detections that have Overrides
detection:
showUnreviewedAiSummaries: false
presets:
severity:
customEnabled: false