CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-04-25 14:07:49 +02:00
Code Issues Packages Projects Releases Wiki Activity
14,480 Commits 40 Branches 125 Tags
17a75d5bd251e758706e53380f29d89930eed997
Commit Graph

219 Commits

Author SHA1 Message Date
Mike Reeves 58d222284e Merge pull request #12271 from Security-Onion-Solutions/suripcap 
Suricata PCAP
 2024-03-04 17:27:38 -05:00
m0duspwnens fcc0f9d14f redo classifications 2024-02-27 13:20:58 -05:00
m0duspwnens 8b7f7933bd suricata container watch classification.config 2024-02-26 15:29:13 -05:00
m0duspwnens 466dac30bb soup for classifications 2024-02-26 12:15:17 -05:00
m0duspwnens 9a7e2153ee add classification.config 2024-02-26 11:01:53 -05:00
m0duspwnens 304ae49251 fix source 2024-02-09 12:41:23 -05:00
m0duspwnens 5903ae596c move suricata rules to /opt/so/rules/nids/suri 2024-02-09 09:47:23 -05:00
m0duspwnens f97d0f2f36 add /opt/so/rules/ to files_roots 2024-02-07 09:25:56 -05:00
Mike Reeves 00289c201e fix pcap paths 2024-01-31 08:58:57 -05:00
m0duspwnens 0522dc180a map pcap dir to container. enable pcap-log in map 2024-01-30 13:39:35 -05:00
m0duspwnens d118ff4728 add GLOBALS.pcap_engine 2024-01-29 16:54:08 -05:00
Mike Reeves ab551a747d Threads placeholder logic 2024-01-29 15:44:57 -05:00
Mike Reeves 88c01a22d6 Add annotation logic 2024-01-29 15:27:28 -05:00
Mike Reeves 0c969312e2 Add Globals 2024-01-29 15:22:20 -05:00
Mike Reeves 1a2245a1ed Add so-minion modifications 2024-01-29 13:44:53 -05:00
Mike Reeves 762a3bea17 Defaults and Annotations 2024-01-25 09:59:26 -05:00
m0duspwnens dfe707ab64 fix issue/11610 2023-10-24 17:26:39 -04:00
Mike Reeves 4a3fc06a4d Enable http2 for Suricata 2023-10-24 09:18:10 -04:00
Mike Reeves 710b800bc2 Update config.sls 2023-08-21 09:00:11 -04:00
m0duspwnens 30e3fbb41c remove extra ) 2023-08-09 11:21:16 -04:00
m0duspwnens 8844e305ab use sensor.interface for suricata. make af-packet.interface ro in soc ui 2023-08-09 11:18:47 -04:00
m0duspwnens 20dedab4b2 remove previously add rules files 2023-08-08 15:03:06 -04:00
m0duspwnens 9118ac2b56 filter.rules to filters.rules 2023-08-08 13:59:43 -04:00
m0duspwnens aab89d2483 rule-files does not go under profiling 2023-08-08 13:54:58 -04:00
m0duspwnens b2e75e77e8 add local.rules and filter.rules to suricata defaults. add extraction.rules, local.rules and filter.rules for suricata metadata 2023-08-08 13:50:19 -04:00
m0duspwnens 743ed316f8 dont apply suricata.enabled on import nodes 2023-05-30 16:10:41 -04:00
Mike Reeves 38881231ac Merge branch '2.4/dev' of https://github.com/Security-Onion-Solutions/securityonion into airgaps 2023-05-26 15:16:38 -04:00
m0duspwnens 5b4ec70ca6 fix typo on suricata annotations. add to global annotations 2023-05-26 09:37:57 -04:00
m0duspwnens 5c933910aa simplify map for updating suricata config if md engine is suricata 2023-05-25 17:25:54 -04:00
m0duspwnens a3c3f08511 convert list to dict to work better with ui. regex on suricata vars HOME_NET for soc 2023-05-25 17:00:48 -04:00
m0duspwnens d99d4756c3 set defaults as example in soc ui for suricata cpu affinity 2023-05-25 11:11:53 -04:00
m0duspwnens 6505d3e2ce update annotations for suricata 2023-05-25 11:03:37 -04:00
m0duspwnens 67a608ea56 adjust suricata defaults 2023-05-24 12:22:42 -04:00
Mike Reeves c9db6c0f18 Add Suricata 2023-05-24 10:18:58 -04:00
Mike Reeves cb0ed9ae6d Merge branch '2.4/dev' of https://github.com/Security-Onion-Solutions/securityonion into airgaps 2023-05-24 10:04:15 -04:00
m0duspwnens 8995012c80 fix suricata sostatus 2023-05-24 09:52:07 -04:00
Mike Reeves 2c4ba2e8b2 Add Suricata 2023-05-24 09:35:50 -04:00
m0duspwnens 732d2aadf8 rename state to resolve conflicting / duplicate state ids 2023-05-24 08:58:43 -04:00
m0duspwnens cc47f9a595 fix suricata thresholding 2023-05-23 11:16:32 -04:00
m0duspwnens eb633be437 enable/disable suricata in ui. assign threads properly 2023-05-22 17:48:22 -04:00
Mike Reeves cbd1c05929 Sbin Changes 2023-05-04 10:36:03 -04:00
Mike Reeves e60e21d9ff Move files out of common 2023-05-02 09:40:02 -04:00
m0duspwnens 1047462898 add identifiers for all cron.present 2023-04-13 16:25:47 -04:00
m0duspwnens 0fff3a5a11 suricata bpf 2023-03-20 17:31:56 -04:00
Wes 5fba3c5872 Add Suricata metadata configuration 2023-02-02 14:48:01 +00:00
Doug Burks 554754421c Avoid unecessary Suricata processes in Import Mode 2023-01-10 16:48:06 -05:00
Jason Ertel 168cd00e1b Handle suricata extracted with filecheck 2022-12-06 12:34:02 -05:00
Mike Reeves de19a4dc53 Add Strelka Filecheck 2022-11-02 10:04:33 -04:00
m0duspwnens b526532ab6 use global vars in states 2022-10-11 11:57:15 -04:00
doug fee5a7bea9 initial quick OCD pass 2022-09-23 16:29:55 -04:00