CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-05-09 21:02:36 +02:00
Code Issues Packages Projects Releases Wiki Activity
17,968 Commits 53 Branches 125 Tags
feature/strelka-replacement
Commit Graph

39 Commits

Author SHA1 Message Date
Mike Reeves c6c538363d Add fileanalyze module salt configuration 
Adds sensoroni agent configuration for the new fileanalyze module
that replaces the Strelka file analysis containers:
- defaults.yaml: default config values (watchDirs, concurrency, dedup, etc.)
- sensoroni.json: Jinja2 template to render module config when enabled
- soc_sensoroni.yaml: SOC config schema with descriptions for all settings
 2026-04-06 14:12:48 -04:00
Jason Ertel 71839bc87f remove steno 2026-03-06 15:45:36 -05:00
Jason Ertel 8f75bfb0a4 csv delimiter 2025-10-09 13:02:02 -04:00
Jason Ertel c91e9ea4e0 return to normalcy 2025-08-22 13:23:19 -04:00
Jason Ertel 9dafa062f8 annotation/config updates 2025-02-25 17:00:41 -05:00
Jason Ertel 275a678fa1 removed unused property 2024-03-13 13:49:44 -04:00
Jason Ertel a55e04e64a pcap improvements 2024-03-08 15:48:53 -05:00
Jason Ertel 12653eec8c add new pcap annotations 2024-03-06 08:14:33 -05:00
m0duspwnens c0d19e11b9 fix } placement 2024-03-05 10:07:32 -05:00
m0duspwnens 1a58aa61a0 only import pcap and suricata if sensor 2024-03-05 09:54:40 -05:00
m0duspwnens 4be1214bab pcap engine logic for sensoroni 2024-01-30 16:53:57 -05:00
m0duspwnens d118ff4728 add GLOBALS.pcap_engine 2024-01-29 16:54:08 -05:00
Mike Reeves 0c969312e2 Add Globals 2024-01-29 15:22:20 -05:00
m0duspwnens d1f7e5f4a7 fix and rename timeout_ms and parallel_limit 2023-05-12 14:57:55 -04:00
m0duspwnens 00d1ca0b62 configure and enable/disable sensoroni via ui 2023-05-12 14:26:46 -04:00
Mike Reeves aa8ce074f7 Fix sensoroni Agent 2022-09-19 10:43:05 -04:00
Mike Reeves e3e6e7b4e8 Fix sensoroni Agent 2022-09-19 10:41:01 -04:00
Mike Reeves f4508aa534 Fix sensoroni Agent 2022-09-19 10:22:32 -04:00
Mike Reeves 2bd9dd80e2 Move In Day 2022-09-07 09:06:25 -04:00
Jason Ertel 48fbc2290f Add dep support for analyzers 2022-03-31 13:59:35 -04:00
Jason Ertel 45f511caab Remove extra comma 2022-03-30 13:21:35 -04:00
Jason Ertel deb9b0e5ef Add analyze feature 2022-03-28 15:53:24 -04:00
William Wernert 6e34905b42 Escape single quotes and allow for any character in node description 2021-10-25 10:48:09 -04:00
Mike Reeves 76d735ff43 Add ID Fix to nodeID 2021-04-29 11:49:20 -04:00
Jason Ertel f7f95b6c54 Add model to sensoroni agent config 2021-04-08 11:22:54 -04:00
Mike Reeves a824813cdb Add model to sensoroni config 2021-04-05 12:10:29 -04:00
Mike Reeves bad22ab541 Add model to sensoroni config 2021-04-05 12:08:38 -04:00
m0duspwnens 448d0e079e add whitespace removal to the front 2020-12-16 09:39:25 -05:00
m0duspwnens f0999abd8e add missing % 2020-12-16 09:38:21 -05:00
m0duspwnens c68b87db56 set steno running default based on sensor role or not 2020-12-16 09:33:44 -05:00
Jason Ertel 967111decc Add node address to sensoroni pillar 2020-12-03 11:24:45 -05:00
Jason Ertel cf0ec2f78f Default to the node's primary IP for the description field 2020-12-02 16:38:33 -05:00
Jason Ertel 979f171828 Add missing comma to sensoroni.json 2020-11-25 12:29:45 -05:00
Jason Ertel 8f9081618f Add role to sensoroni.json file 2020-11-25 11:11:46 -05:00
m0duspwnens 995a377432 squigly comma if steno enabled https://github.com/Security-Onion-Solutions/securityonion/issues/2040 2020-11-24 11:31:41 -05:00
m0duspwnens 65334d15ea https://github.com/Security-Onion-Solutions/securityonion/issues/2040 2020-11-24 09:33:38 -05:00
Jason Ertel 9d5f4049b5 Avoid filtering NIC when it's an empty string 2020-06-02 05:52:03 -04:00
Mike Reeves 61d681eb65 Sensoroni Module - Add watch statement and recreate docker 2019-06-12 14:29:47 -04:00
Mike Reeves f5343b114e Sensoroni Module - Add log file 2019-06-11 14:52:14 -04:00