CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-15 21:52:47 +01:00
Code Issues Packages Projects Releases Wiki Activity
11,651 Commits 28 Branches 119 Tags
03393a95d93db2c10b1d0c4b33e73f0bb2be0f7d
Commit Graph

93 Commits

Author SHA1 Message Date
m0duspwnens
924d598a8a add filecheck_runas 2023-03-17 08:38:56 -04:00
m0duspwnens
dd4461daf4 remove other filecheck map import 2023-03-16 17:50:19 -04:00
m0duspwnens
a9b8877268 remove filecheckdefaults from strelka init 2023-03-16 17:15:52 -04:00
m0duspwnens
7950f692a8 Merge remote-tracking branch 'remotes/origin/2.4/dev' into 2.4/strelka 2023-03-16 16:41:24 -04:00
m0duspwnens
0dfbbfcf8e fix spacing on filecheck config 2023-03-16 16:37:38 -04:00
m0duspwnens
2056ce37c6 strelka ui things 2023-03-16 16:32:41 -04:00
Jason Ertel
49df376bcc Remove non-existant Ruby scanner 2023-03-15 19:24:03 -04:00
Mike Reeves
a36a6d5659 Strelka UI components 2023-03-15 10:40:16 -04:00
m0duspwnens
f9b8c78d74 move repos to rules dir 2023-03-14 14:43:13 -04:00
m0duspwnens
b38d5df684 set default mime_db 2023-03-14 13:25:51 -04:00
m0duspwnens
9d4e1cc149 jinja for strelka 2023-03-13 16:48:21 -04:00
m0duspwnens
58343e39fa 2.4 strelka 2023-03-10 17:32:14 -05:00
Mike Reeves
39361c2ab0 unfix playbook fix 2023-02-24 10:01:27 -05:00
Mike Reeves
1289500e03 unfix playbook fix 2023-02-24 09:55:49 -05:00
Mike Reeves
c20a7e6cf9 fix yaml 2023-02-22 13:48:40 -05:00
m0duspwnens
a37f0fd0c0 rename sosbridge to sobridge 2023-02-03 10:07:07 -05:00
weslambert
2101ca60e9 Add 'configured_vulns_ext_vars.yar' to exclusion list 2023-02-01 14:25:46 -05:00
m0duspwnens
3653df4d5f spell it right 2023-01-13 10:18:13 -05:00
m0duspwnens
6033e9a0de use port_bindings from docker defaults in docker states 2023-01-13 10:15:10 -05:00
m0duspwnens
24876eecd9 change refs from sosnet to sosbridge 2022-12-22 14:02:40 -05:00
m0duspwnens
accc293c8a 2.4 firewall changes 2022-12-21 15:03:45 -05:00
Jason Ertel
0bbc68edae Switch back to older style redirect due to incompatibility with Ub 18 2022-12-07 14:08:11 -05:00
Jason Ertel
fde33de030 Use original style due to pgrep conflict with cron 2022-12-07 11:51:49 -05:00
Jason Ertel
e849783a86 Reduce cron noise; ensure filecheck is restarted if modified 2022-12-07 08:36:56 -05:00
weslambert
7ce0924382 Ignore additional rules causing compilation errors 2022-12-06 13:59:21 -05:00
Jason Ertel
88410bc8f8 Merge branch '2.4/dev' into config 2022-12-06 12:38:43 -05:00
Jason Ertel
168cd00e1b Handle suricata extracted with filecheck 2022-12-06 12:34:02 -05:00
Mike Reeves
f083b3867b Update init.sls 2022-12-02 09:40:35 -05:00
Mike Reeves
f83545c556 Update filecheck 2022-11-30 11:02:56 -05:00
m0duspwnens
b95a83b016 Merge remote-tracking branch 'remotes/origin/2.4/dev' into dockerips 2022-11-22 14:17:19 -05:00
Jason Ertel
ed9aa5b73f Ensure filecheck is up by checking every minute 2022-11-17 10:48:53 -05:00
Jason Ertel
7f7e5474ed Add more logging for filecheck monitoring, and ensure scripts are accessible to salt-relay 2022-11-17 10:43:05 -05:00
Jason Ertel
0ffef75d7b Move background jobs to cron 2022-11-17 09:50:41 -05:00
Jason Ertel
c572848ece temporarily remove filecheck for debug purposes 2022-11-17 08:06:24 -05:00
Mike Reeves
591616fe5b Add statics to all containers 2022-11-15 11:05:17 -05:00
Mike Reeves
225c33e5c9 Add Strelka Filecheck 2022-11-02 09:46:23 -04:00
Mike Reeves
4187363451 Add Strelka Filecheck 2022-11-02 09:44:08 -04:00
m0duspwnens
b526532ab6 use global vars in states 2022-10-11 11:57:15 -04:00
Jason Ertel
21c7f940d7 Update copyrights 2022-09-13 11:48:25 -04:00
Mike Reeves
2bd9dd80e2 Move In Day 2022-09-07 09:06:25 -04:00
Jason Ertel
eefcc929c2 Update copyright pattern to match other repos 2022-01-24 10:09:23 -05:00
Jason Ertel
7c22f46a55 Update copyright year for 2022 2022-01-24 09:35:29 -05:00
weslambert
39e5ded58d Refactor ignore list and only ignore for signature-base for now 2021-09-15 11:32:29 -04:00
weslambert
4d41d3aee1 Ignore these rules by default because they are causing issues with YARA compilation with Strelka 2021-09-15 10:29:11 -04:00
Wes Lambert
038c58f3d5 Ignore TIME_WAIT when checking for Strelka frontend port reservation 2021-03-16 14:51:16 +00:00
Wes Lambert
f142b754dc Add Strelka files.processed directory so files will be moved from staging to processed 2021-03-15 15:43:31 +00:00
Wes Lambert
b6a785395d Add Strelka staging directory for state 2021-03-15 15:42:13 +00:00
Mike Reeves
b4b449aa14 Pull in Suricata changes 2021-02-19 11:01:15 -05:00
Wes Lambert
0039877779 Check for port availability for Wazuh and Strelka 2021-01-21 13:29:09 +00:00
m0duspwnens
b693373d8d change how we allow or disallow states to be run https://github.com/Security-Onion-Solutions/securityonion/issues/2679 2021-01-20 15:09:53 -05:00