CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity

add Cyberchef

Browse Source
This commit is contained in:
Wes Lambert
2019-11-12 22:50:00 +00:00
parent b2113403dc
commit e364638a62
4 changed files with 38 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
salt/common/nginx/nginx.conf.so-eval
View File

@@ -188,6 +188,18 @@ http {
proxy_set_header Proxy ""; proxy_set_header Proxy "";
} }
location /cyberchef/ {
proxy_pass http://{{ masterip }}:9080/;
proxy_read_timeout 90;
proxy_connect_timeout 90;
proxy_http_version 1.1; # this is essential for chunked responses to work
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header Proxy "";
}
location /soctopus/ { location /soctopus/ {
proxy_pass http://{{ masterip }}:7000/; proxy_pass http://{{ masterip }}:7000/;

12
salt/common/nginx/nginx.conf.so-master
View File

@@ -187,6 +187,18 @@ http {
proxy_set_header Proxy ""; proxy_set_header Proxy "";
} }
location /cyberchef/ {
proxy_pass http://{{ masterip }}:9080/;
proxy_read_timeout 90;
proxy_connect_timeout 90;
proxy_http_version 1.1; # this is essential for chunked responses to work
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header Proxy "";
}
location /soctopus/ { location /soctopus/ {
proxy_pass http://{{ masterip }}:7000/; proxy_pass http://{{ masterip }}:7000/;

12
salt/firewall/init.sls
View File

@@ -276,6 +276,18 @@ enable_master_cortex_9001_{{ip}}:
- position: 1 - position: 1
- save: True - save: True
enable_master_cyberchef_9080_{{ip}}:
iptables.insert:
- table: filter
- chain: DOCKER-USER
- jump: ACCEPT
- proto: tcp
- source: {{ ip }}
- dport: 9080
- position: 1
- save: True
{% endfor %} {% endfor %}
# Make it so all the minions can talk to salt and update etc. # Make it so all the minions can talk to salt and update etc.

2
salt/top.sls
View File

@@ -43,6 +43,7 @@ base:
- suricata - suricata
- bro - bro
- curator - curator
- cyberchef
- elastalert - elastalert
{%- if OSQUERY != 0 %} {%- if OSQUERY != 0 %}
- fleet - fleet
@@ -69,6 +70,7 @@ base:
- ca - ca
- ssl - ssl
- common - common
- cyberchef
- sensoroni - sensoroni
- firewall - firewall
- master - master