14 Commits

Author	SHA1	Message	Date
Mike Reeves	acc9b8062e	Remove Strelka container infrastructure ... Removes all Strelka container salt states and infrastructure references, replaced by the native fileanalyze module in sensoroni. Removed: - salt/strelka/ directory (all container states, configs, tools) - Docker container definitions for 6 Strelka containers - Firewall rules for strelka_frontend - Container references in containers.map.jinja - top.sls and allowed_states references to strelka/strelka.manager - so-minion add_strelka_to_minion() function and call sites - so-deny strelka_frontend entry - Logstash strelka bind mount - Logrotate strelka config - Telegraf strelka file monitoring - so-sensor-clean strelka cleanup - so-image-common strelka container images Kept (still needed): - Elasticsearch index/ingest pipeline (ingests fileanalyze output) - Elastic agent/fleet log collection config - SOC strelkaengine (YARA rule management) - Kibana saved objects (dashboards)	2026-04-06 14:57:22 -04:00
Jason Ertel	71839bc87f	remove steno	2026-03-06 15:45:36 -05:00
DefensiveDepth	ded520c2c1	Merge remote-tracking branch 'origin/2.4/dev' into idstools-refactor	2025-09-17 10:42:43 -04:00
DefensiveDepth	a77157391c	remove idstools	2025-09-17 10:42:05 -04:00
reyesj2	915b9e7bd7	use logrotate	2025-09-05 09:22:44 -05:00
Jason Ertel	523ff66389	connect work	2024-10-16 13:44:01 -04:00
Wes	d203aec44a	Remove Curator	2023-12-08 19:37:06 +00:00
m0duspwnens	a1b1294247	desktop doesnt need docker state	2023-08-29 09:05:01 -04:00
Wes	0e047cffad	Add to logrotate	2023-08-01 20:14:53 +00:00
Wes	c68cd6cf33	Fix typo	2023-07-20 14:39:35 +00:00
Wes	0b19179630	Add logrotate	2023-07-19 15:17:42 +00:00
m0duspwnens	7319d7ae9b	replace . with _x_	2023-06-30 14:18:20 -04:00
m0duspwnens	41a4321b03	configure logrotate through soc	2023-06-30 11:26:55 -04:00
m0duspwnens	5898c9ef31	start of logrotate configurable via ui	2023-06-29 12:54:37 -04:00