CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity
6,366 Commits 24 Branches 119 Tags
03487c2a3145ae110dbfe9ee6ec6b1543e91d474
Commit Graph

6366 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
m0duspwnens
03487c2a31 change suricata clean cron to run once a day 2021-02-18 14:06:45 -05:00
m0duspwnens
95df18c545 limit eve logs and gz files based on days 2021-02-18 10:45:20 -05:00
m0duspwnens
a4d5f58256 fix surilogcompress 2021-02-18 10:33:47 -05:00
m0duspwnens
74ca4487de ensure at least 2 eve files are kept https://github.com/Security-Onion-Solutions/securityonion/issues/2989 2021-02-18 09:51:40 -05:00
m0duspwnens
4b07d5e457 add identifier to eve clean cron 2021-02-18 09:39:54 -05:00
m0duspwnens
041d193f2d fix brackets 2021-02-18 09:37:37 -05:00
m0duspwnens
0bef8b6662 limit number of eve.json files for suricata https://github.com/Security-Onion-Solutions/securityonion/issues/2989 2021-02-18 09:26:59 -05:00
Josh Patterson
174ed84750 Merge pull request #2993 from Security-Onion-Solutions/issue/2736 
logrotate strelka
 2021-02-17 11:47:52 -05:00
m0duspwnens
7a595df5b6 strelka logrotate - https://github.com/Security-Onion-Solutions/securityonion/issues/2736 2021-02-17 11:17:41 -05:00
m0duspwnens
2b07d89b5a error: /opt/so/conf/sensor-rotate.conf:8 unknown option 'endscript' -- ignoring line 2021-02-17 11:01:18 -05:00
m0duspwnens
e6ae1af85f test rotating strelka log at 100k 2021-02-17 10:47:06 -05:00
Josh Patterson
ce313d8dc4 Merge pull request #2992 from Security-Onion-Solutions/issue/2737 
fix logic for log_size_limit
 2021-02-17 10:09:54 -05:00
Josh Patterson
fddef1a6f4 Merge pull request #2985 from Security-Onion-Solutions/issue/2915 
remove old backup files
 2021-02-17 09:43:58 -05:00
William Wernert
cda36f178b Merge pull request #2979 from Security-Onion-Solutions/foxtrot 
Setup fixes/improvements
 2021-02-16 17:14:59 -05:00
m0duspwnens
996bf0768b fix logic for log_size_limit https://github.com/Security-Onion-Solutions/securityonion/issues/2737 2021-02-16 15:40:01 -05:00
William Wernert
0bd5ddf6a6 Grammar + misc fixes per PR review 
* Remove unnecessary `apt-get update` commands
* Change `if ! (command); then exit 1; fi` to `command || exit 1` to avoid subshell
 2021-02-16 14:17:41 -05:00
Doug Burks
8016511414 Merge pull request #2981 from Security-Onion-Solutions/kilo 
Hunt: improve Wazuh queries #2383
 2021-02-16 10:38:53 -08:00
doug
fabe3c87f2 Hunt: improve Wazuh queries #2383 2021-02-16 11:56:14 -05:00
m0duspwnens
7099ed4bf5 delete many backup files 2021-02-16 11:55:49 -05:00
m0duspwnens
1ccc5480e1 remove oldest backup 2021-02-16 11:40:45 -05:00
Doug Burks
d6fa54b606 Merge pull request #2975 from Security-Onion-Solutions/kilo 
Issues 2954 and 2361 - Kibana config
 2021-02-16 08:30:46 -08:00
William Wernert
3323e900ef [fix] Fix indent (pt 2) 2021-02-16 11:17:36 -05:00
William Wernert
7a9f801eb1 [fix] Add more apt-get update commands 
Fixes #2962
 2021-02-16 10:24:58 -05:00
William Wernert
38a5b86813 Make apt-get syntax consistent 2021-02-16 10:24:07 -05:00
William Wernert
23221065eb Preset MANAGERUPDATES var for airgap since we don't prompt now 2021-02-16 09:43:54 -05:00
William Wernert
5e8d09be51 [fix] Fix indent 2021-02-16 09:42:35 -05:00
doug
397d8d0964 Kibana 7.10.2 config changes #2954 2021-02-14 07:04:51 -05:00
doug
3248edea8b Update Kibana dashboard hyperlinks to new url format #2361 2021-02-12 17:25:42 -05:00
doug
31a0c2bc82 Update Kibana dashboard hyperlinks to new url format #2361 2021-02-12 15:37:25 -05:00
doug
797d2c4dba Kibana 7.10.2 config changes #2954 2021-02-12 15:35:06 -05:00
Doug Burks
fd4cb0b7a8 Kibana 7.10.2 config changes #2954 2021-02-12 14:05:29 -05:00
Doug Burks
c717773fc3 Kibana 7.10.2 config changes #2954 2021-02-12 14:04:00 -05:00
Josh Patterson
ce04b109fe Merge pull request #2950 from Security-Onion-Solutions/delta 
Disable ICMP timestamps by default
 2021-02-12 13:54:59 -05:00
William Wernert
4affb20b27 Give context to metadata tool choice 2021-02-12 13:42:14 -05:00
William Wernert
724f5cad78 Warn user if using "securityonion" as hostname 2021-02-12 12:55:55 -05:00
William Wernert
8323f3f57a [fix] Fix logic to correctly hide prompt 2021-02-12 12:23:45 -05:00
Josh Patterson
a8598a50e4 Merge pull request #2953 from Security-Onion-Solutions/issue/2756 
remove /etc/yum.repos.d/salt-2019-2-5.repo if present
 2021-02-12 12:05:21 -05:00
m0duspwnens
3b0c2b3e91 remove /etc/yum.repos.d/salt-2019-2-5.repo if present https://github.com/Security-Onion-Solutions/securityonion/issues/2756 2021-02-12 12:04:08 -05:00
William Wernert
1ffa7afefa eval-net answerfile corrections 
* HOSTNAME: standalone -> eval
* install_type: STANDALONE -> EVAL
 2021-02-11 16:20:29 -05:00
William Wernert
188d844d27 Redirect stderr of minion grep to /dev/null 2021-02-11 13:49:39 -05:00
m0duspwnens
b4e9a44572 Merge remote-tracking branch 'remotes/origin/dev' into issue/1704 2021-02-11 11:10:06 -05:00
m0duspwnens
7e4d7a6985 drop icmp timestamp replies https://github.com/Security-Onion-Solutions/securityonion/issues/1704 2021-02-11 11:09:21 -05:00
William Wernert
d9b4c09cf0 [fix] Don't show irrelevant prompts during airgap setup 2021-02-11 10:52:18 -05:00
William Wernert
ce8db8abdb [fix] Only run salt commands during reinstall if master is configured 2021-02-11 10:51:04 -05:00
Josh Patterson
bf8ca590d0 Merge pull request #2932 from Security-Onion-Solutions/delta 
only save at the end
 2021-02-11 09:25:31 -05:00
Mike Reeves
97594f84cb Merge pull request #2930 from Security-Onion-Solutions/vpn 
VPN Configuration
 2021-02-11 09:21:17 -05:00
Mike Reeves
f8903c2554 Fix extra character 2021-02-10 12:58:02 -05:00
Mike Reeves
9eb1e6a448 Prevent the tun interface from being disabled 2021-02-10 12:51:26 -05:00
m0duspwnens
3cfbc61f4e only save at the end 2021-02-10 11:15:39 -05:00
Mike Reeves
10553938b5 Merge pull request #2901 from Security-Onion-Solutions/curatorwarm 
add warm node action for hot/warm
 2021-02-08 12:08:23 -05:00