CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-05-29 22:45:33 +02:00
Code Issues Packages Projects Releases Wiki Activity
17,968 Commits 31 Branches 127 Tags
feature/strelka-replacement
Commit Graph

26 Commits

Author SHA1 Message Date
Mike Reeves acc9b8062e Remove Strelka container infrastructure 
Removes all Strelka container salt states and infrastructure references,
replaced by the native fileanalyze module in sensoroni.

Removed:
- salt/strelka/ directory (all container states, configs, tools)
- Docker container definitions for 6 Strelka containers
- Firewall rules for strelka_frontend
- Container references in containers.map.jinja
- top.sls and allowed_states references to strelka/strelka.manager
- so-minion add_strelka_to_minion() function and call sites
- so-deny strelka_frontend entry
- Logstash strelka bind mount
- Logrotate strelka config
- Telegraf strelka file monitoring
- so-sensor-clean strelka cleanup
- so-image-common strelka container images

Kept (still needed):
- Elasticsearch index/ingest pipeline (ingests fileanalyze output)
- Elastic agent/fleet log collection config
- SOC strelkaengine (YARA rule management)
- Kibana saved objects (dashboards)
 2026-04-06 14:57:22 -04:00
Josh Patterson 64f71143dc fix docker fw rules managerhype 2025-03-31 15:51:32 -04:00
Jason Ertel 523ff66389 connect work 2024-10-16 13:44:01 -04:00
reyesj2 af53dcda1b Remove references to kafkanode 
Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>
 2024-04-11 15:32:00 -04:00
m0duspwnens 7a6b72ebac add so-kafka to manager for firewall 2024-04-04 15:46:11 -04:00
m0duspwnens e25bc8efe4 Merge remote-tracking branch 'origin/reyesj2/kafka' into kaffytaffy 2024-04-02 13:36:47 -04:00
DefensiveDepth d7ecad4333 Initial cut to remove Playbook and deps 2024-03-25 19:42:31 -04:00
reyesj2 446f1ffdf5 merge 2.4/dev 
Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>
 2024-03-25 13:55:48 -04:00
m0duspwnens 2f03248612 use different nginx defaults for so-fleet node hosting artifacts 2024-01-31 16:25:09 -05:00
Josh Brower afa98fa147 update artifacts URL automatically 2024-01-28 14:20:52 -05:00
Wes d203aec44a Remove Curator 2023-12-08 19:37:06 +00:00
reyesj2 8cf29682bb Update to merge in 2.4/dev 
Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>
 2023-11-29 13:41:23 -05:00
reyesj2 86dc7cc804 Kafka init 
Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>
 2023-11-29 13:34:25 -05:00
weslambert 765a22e6f0 Add so-elastic-agent 2023-09-01 11:31:23 -04:00
Josh Brower cda67b2894 Ded Fleet Node - checkpoint 2023-04-04 16:11:22 -04:00
m0duspwnens b4015ac73e add sensor to node_containers 2023-02-27 10:05:08 -05:00
m0duspwnens 0d0a61bd4a remove so-grafana from node containers 2023-02-22 15:29:30 -05:00
m0duspwnens 6dd09fb2c5 remove filebeat 2023-02-22 10:42:45 -05:00
Josh Brower b62cc32b1a Initial support for IDH 2023-02-21 11:52:37 -05:00
Jason Ertel ea0c3db8e1 upgrade influxdb 2023-02-08 13:23:45 -05:00
m0duspwnens a69b0951d3 add strelka containers 2023-01-12 16:47:34 -05:00
m0duspwnens 0d45c1583e add so-filebeat docker container ports and add to standalone 2023-01-11 14:48:20 -05:00
m0duspwnens 81e07997f0 add so-elastic-fleet docker container ports and add to standalone 2023-01-11 14:28:35 -05:00
m0duspwnens 76fff1b1e0 add logstash ports 2023-01-10 17:02:54 -05:00
m0duspwnens f10238da42 fw changes 2023-01-04 16:06:14 -05:00
m0duspwnens accc293c8a 2.4 firewall changes 2022-12-21 15:03:45 -05:00