securityonion

Author	SHA1	Message	Date
reyesj2	ad8b339a3b	fix error due to null reference Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>	2024-12-06 09:07:16 -06:00
reyesj2	754d28e95d	add openvpn & ipsec support to Zeek	2024-12-05 09:52:55 -06:00
Doug Burks	9940a36722	update Elasticsearch ingest for Zeek conn vlan field	2023-03-03 15:22:43 -05:00
Wes	40c6b380df	Update Import and Zeek integration policies; also update Zeek ingest node pipelines to set event.dataset.	2023-01-23 21:44:46 +00:00
Wes	14af1d36cb	Ensure ICS/SCADA pipelines are present	2022-12-06 15:58:47 +00:00
Wes	638a3568b0	Update ingest node pipelines for ICS/SCADA protocols	2022-11-16 21:11:21 +00:00
Wes Lambert	51f5d64ef6	Rename tunnel_parents	2020-06-01 13:51:32 +00:00
Doug Burks	fc883745e5	add fields to conn log https://github.com/Security-Onion-Solutions/securityonion-saltstack/issues/599	2020-05-15 15:02:02 -04:00
Wes Lambert	c52220330b	modify pipelines	2020-03-14 12:03:32 +00:00
Wes Lambert	9ad16e8c71	upadte ingest config	2020-03-11 12:13:53 +00:00