CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity
4,573 Commits 24 Branches 119 Tags
09cc8ae1fbd43ef162b96f0b363fdd07eb7cd2ee
Commit Graph

58 Commits

Author SHA1 Message Date
m0duspwnens
09cc8ae1fb fail the state if it isnt in top 2020-09-09 16:48:50 -04:00
m0duspwnens
a229ae82ce only allow state to run if it is in top for the node 2020-09-02 16:15:52 -04:00
weslambert
5d920885e0 Add manager to hosts file 2020-09-02 07:43:55 -04:00
Wes Lambert
9abbda8e04 Wait for Elasticsearch indices to be queryable before starting Elastalert container 2020-08-31 13:54:49 +00:00
m0duspwnens
e6da423dc3 change reference from manager:url_base to global:url_base - https://github.com/Security-Onion-Solutions/securityonion/issues/1039 2020-08-14 17:55:30 -04:00
Josh Brower
7400bbd6c1 Elastalert Stability Fixes 2020-08-13 17:14:53 -04:00
Josh Brower
b724d40376 Playbook Stability Fixes 2020-08-11 15:07:16 -04:00
Josh Brower
a8b980b6a7 More Playbook Fixes - Issue #1064 2020-08-07 13:35:43 -04:00
Josh Brower
ddd099233a Playbook Fixes - Issue #1064 2020-08-06 15:43:45 -04:00
Josh Brower
4f9ef89098 Simplify elastalert rules 2020-08-06 14:30:44 -04:00
Mike Reeves
24ed92c9dc minio and change to global 2020-08-04 15:54:03 -04:00
Wes Lambert
3ac9f1800b Make sure we are searching all clusters when running rules 2020-07-24 22:04:30 +00:00
Jason Ertel
8f66a27f07 Refactor image repository to a single variable 2020-07-13 18:26:43 -04:00
m0duspwnens
1f48dc765e merge with dev and resolv conflicts 2020-07-10 10:36:48 -04:00
Jason Ertel
6bfd777d25 Enabled elastalert log 2020-07-09 21:34:35 -04:00
m0duspwnens
5ca3ecf4bd fix reference to master grain 2020-07-09 15:42:39 -04:00
Josh Brower
206bdc60f3 Merge pull request #967 from Security-Onion-Solutions/feature/low-level-alerts 
Feature - low level alerts
 2020-07-09 13:56:31 -04:00
Josh Brower
52f7111e1d Feature - low level alerts 2020-07-09 13:53:55 -04:00
m0duspwnens
3cf31e2460 https://github.com/Security-Onion-Solutions/securityonion/issues/404 2020-07-09 11:27:06 -04:00
Mike Reeves
c59096d9bd rename node pillar to elasticsearch 2020-07-07 10:42:12 -04:00
Josh Brower
69ace6fbfa Initial commit - Low Level Alerts 2020-07-02 12:16:56 -04:00
Josh Brower
2cb7464086 Add TheHive communityid link 2020-05-26 12:01:58 -04:00
Josh Brower
b951094ea2 Change alert pivot links for MASTER 2020-05-18 14:13:32 -04:00
Mike Reeves
a10617c182 Update nids2hive.yaml 2020-05-18 13:43:25 -04:00
m0duspwnens
74290eca2a change = to in - https://github.com/Security-Onion-Solutions/securityonion-saltstack.git 2020-05-15 11:20:06 -04:00
m0duspwnens
509188092c adding so-standalone state logic, add zeek pillar to so-standalone - https://github.com/Security-Onion-Solutions/securityonion-saltstack/issues/140 2020-05-15 10:02:25 -04:00
Josh Brower
3db67de27a osquery packages fix 2020-05-13 20:39:56 -04:00
Josh Brower
c3627c38e3 Elastalert - NIDS fix 2020-05-13 17:03:14 -04:00
Josh Brower
6e4ee26a58 Elastalert --> TheHive fixes 2020-05-13 16:34:35 -04:00
Jason Ertel
db51ab9d45 Adjust elastalert salt setup to match new so-elastalert image 2020-05-13 12:14:18 -04:00
m0duspwnens
766b56a944 update dockers to 1.2.2 2020-04-23 10:11:26 -04:00
Mike Reeves
d9e27a5444 Update Versions 2020-04-15 15:37:59 -04:00
Josh Brower
995b255017 NIDS2TheHive Update for ECS 2020-04-11 11:47:34 -04:00
Josh Brower
240620caa3 Playbook - create play API 2020-02-14 16:38:02 -05:00
Wes Lambert
8b415b9db4 Update config.yaml for Elastalert shard/replica changes 2020-01-28 23:55:06 +00:00
Wes Lambert
b995b09d52 Update version in all state files 2020-01-28 14:59:53 +00:00
Mike Reeves
e038a8b731 Merge branch 'dev' into feature/issue124 2020-01-21 16:48:26 -05:00
m0duspwnens
a39edad3f6 changes for multipipelines / mastersearch node - https://github.com/Security-Onion-Solutions/securityonion-saltstack/issues/124 2020-01-21 16:39:42 -05:00
William Wernert
54fb2ad244 Merge branch 'dev' of github.com:Security-Onion-Solutions/securityonion-saltstack into feature/registry 
# Conflicts:
#	salt/common/init.sls
#	salt/elasticsearch/init.sls
#	salt/filebeat/init.sls
#	salt/hive/init.sls
#	salt/kibana/init.sls
#	salt/logstash/init.sls
#	salt/suricata/init.sls
#	salt/tcpreplay/init.sls
#	salt/wazuh/init.sls
 2020-01-14 15:48:56 -05:00
Mike Reeves
ae55b59048 Switch to using images in registry 2020-01-14 10:11:26 -05:00
Wes Lambert
bc533bef24 update TheHiveAlerter module 2019-12-30 21:10:56 +00:00
Josh Brower
d99b865527 Do not disable a rule when an uncaught exception is thrown 2019-11-07 13:27:38 -05:00
Josh Brower
7d29787512 Update nids2hive.yaml 2019-11-07 11:44:08 -05:00
Josh Brower
0b0d8e21ed Adds NIDS SID to Hive Alert as a Tag 2019-10-31 11:08:52 -04:00
Mike Reeves
ca4cd782a1 Docker URL Fix - Issue #68 2019-10-16 10:39:18 -04:00
Josh Brower
4352b1ebf6 Updated Kibana NIDS SID Drilldown dashboard 2019-09-26 11:11:18 -04:00
Josh Brower
eb10914969 Update nids2hive.yaml 2019-09-24 12:32:59 -04:00
Wes Lambert
2784542cdb update Elastalert config 2019-09-23 22:39:43 +00:00
Wes Lambert
965ee6f922 remove duplicate alerter 2019-09-23 14:43:54 +00:00
Wes Lambert
5419bd6f08 update config for Elastalert 2019-09-23 14:43:14 +00:00