CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-04-24 21:47:48 +02:00
Code Issues Packages Projects Releases Wiki Activity
1,951 Commits 41 Branches 125 Tags
101c2a93d116e8126e7dd79dc2da3cd1049029cb
Commit Graph

1176 Commits

Author SHA1 Message Date
Mike Reeves ae3c428941 Helix Logstash Changes 2019-12-10 10:02:41 -05:00
Mike Reeves 54fd5254c0 Merge pull request #158 from m0duspwnens/master 
changes for FireEye Helix integration
 2019-12-09 17:22:34 -05:00
m0duspwnens 4874e540da changes for FireEye Helix integration 2019-12-09 17:18:12 -05:00
Mike Reeves 4c4cdb7189 Helix changes and Wazuh 2019-12-09 16:27:03 -05:00
Mike Reeves 3904c19333 Change Variables to UperCase 2019-12-09 10:04:14 -05:00
m0duspwnens 599341483e adding api key for Helix 2019-12-09 09:59:28 -05:00
Mike Reeves 362cd0487f Additional Helix Support 2019-12-09 09:52:52 -05:00
Mike Reeves 897e009231 Salt Top file for helix sensor 2019-12-08 19:21:16 -05:00
Mike Reeves d454216a4b Merge pull request #151 from m0duspwnens/master 
update OS patch restart needed MOTD
 2019-12-06 15:03:07 -05:00
Mike Reeves 100bcdd81d Merge pull request #152 from weslambert/master 
Initial support for pre-loading custom fields in TheHive
 2019-12-06 15:02:31 -05:00
Mike Reeves 880f57c424 Merge pull request #153 from defensivedepth/master 
Playbook - scripts
 2019-12-06 15:02:17 -05:00
Josh Brower d27de7c8be Update init.sls 2019-12-05 16:54:33 -05:00
Josh Brower 65ddac4535 Playbook - add cron job for so-playbook-sync 2019-12-05 16:50:58 -05:00
Josh Brower 7721e913ec Create so-playbook-ruleupdate 2019-12-05 16:36:29 -05:00
Josh Brower 84485b7f79 Create so-playbook-sync 2019-12-05 16:34:30 -05:00
Mike Reeves 91f67cb62f Misc Script - Redis Count 2019-12-05 15:09:45 -05:00
Wes Lambert 65a5a2e64a pre-load custom reputation field 2019-12-05 17:41:19 +00:00
m0duspwnens 6040633a8c update OS patch restart needed MOTD 2019-12-05 12:38:46 -05:00
Mike Reeves a4ff015c04 Merge pull request #150 from m0duspwnens/master 
revert Ubuntu to Salt py2.7
 2019-12-05 10:47:32 -05:00
m0duspwnens fb0fc1120b revert Ubuntu to Salt py2.7 2019-12-05 10:41:21 -05:00
Wes Lambert b58b3afa35 add auto_analyze_alerts option 2019-12-05 03:22:10 +00:00
Wes Lambert 79e1ac5336 add webhook 2019-12-04 18:39:58 +00:00
Wes Lambert 5eb0a4f19c update SOCtopus conf 2019-12-04 03:12:02 +00:00
Mike Reeves ffaadcf1ca Merge pull request #145 from defensivedepth/fleetfixes 
Fleet - Fix path issues
 2019-11-26 11:43:45 -05:00
Josh Brower f36d7b6926 Update so-fleet-setup.sh 2019-11-26 10:28:48 -05:00
Mike Reeves aafa99ec4e Merge pull request #143 from defensivedepth/playbook-alert-tweaks 
Playbook - thehive alert name change
 2019-11-26 09:58:39 -05:00
Mike Reeves d9f21ebcb8 Merge pull request #144 from m0duspwnens/master 
patch motd changes and py3 salt ubuntu
 2019-11-26 09:58:23 -05:00
Josh Brower 185dd7983c Update so-fleet-setup.sh 2019-11-26 08:28:06 -05:00
Josh Brower 3ac4aa255e Merge remote-tracking branch 'upstream/master' into fleet-fixes 2019-11-26 07:01:08 -05:00
Josh Brower ed9c52925a Playbook - thehive alert tweak 2019-11-23 14:09:41 -05:00
Josh Brower d16f5c5398 redmine db updated for new custom field - Case Analyzers 2019-11-21 16:10:22 -05:00
Mike Reeves c0aa48ad89 Merge branch 'master' of https://github.com/TOoSmOotH/securityonion-saltstack 2019-11-20 10:36:44 -05:00
Mike Reeves 21a29d7274 Initial Setup overhaul testing 2019-11-20 10:36:32 -05:00
m0duspwnens 312946bf58 Merge branch 'master' of https://github.com/TOoSmOotH/securityonion-saltstack 2019-11-19 15:35:00 -05:00
m0duspwnens 6153c25c37 update mine via mine_interval now vs applying a state 2019-11-19 15:34:27 -05:00
Mike Reeves 5140a17fe3 Merge pull request #140 from defensivedepth/logstash-fix 
Fix dup events
 2019-11-19 15:25:46 -05:00
Josh Brower 7373473b3f Fix dup events 2019-11-19 15:02:35 -05:00
Mike Reeves 0151955bdd Merge pull request #139 from weslambert/master 
Cortex org changes
 2019-11-19 14:55:36 -05:00
Josh Brower 118f4e34f2 Update nginx.conf.so-eval 2019-11-19 14:33:51 -05:00
Josh Brower e895d8509b append /fleet to osquery client config 2019-11-19 14:06:12 -05:00
Wes Lambert 76cdc02305 user Cortex org user instead 2019-11-19 16:28:42 +00:00
Wes Lambert b7ad65a837 add Cortex org user 2019-11-19 16:28:05 +00:00
m0duspwnens 09bf22c97a fix issues with updating motd if nodes needs restarted due to OS patch updates 2019-11-19 10:06:52 -05:00
m0duspwnens 767115c218 fix typo in salt top file 2019-11-18 16:27:14 -05:00
m0duspwnens bec95f3aef apply patch.needs_restarting state to all nodes 2019-11-18 16:25:06 -05:00
m0duspwnens 726251cd94 changes to patch motd so nodes can be removed after they restarted - https://github.com/Security-Onion-Solutions/securityonion-saltstack/issues/112 2019-11-18 16:02:48 -05:00
m0duspwnens d7a1b035bd Merge branch 'master' of https://github.com/TOoSmOotH/securityonion-saltstack 2019-11-18 15:34:13 -05:00
m0duspwnens cc5565d5bc fix needs_restarting module 2019-11-18 15:33:21 -05:00
Mike Reeves cbc635da76 Merge pull request #135 from m0duspwnens/master 
os patch motd changes, install pip3 for Centos install
 2019-11-18 09:30:16 -05:00
m0duspwnens 95a3919df4 make socore own /opt/so/saltstack recursively - https://github.com/Security-Onion-Solutions/securityonion-saltstack/issues/113 2019-11-15 16:08:50 -05:00