securityonion

mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-05-11 05:40:32 +02:00

Author	SHA1	Message	Date
weslambert	1bef1d5652	Update to apply to any so-prefixed index	2021-06-10 08:16:00 -04:00
Mike Reeves	7fba904f75	Dynamix Pipelines take 1	2021-06-09 15:32:39 -04:00
Mike Reeves	1c7741fdbe	Add templates for SO logs	2021-06-09 12:38:19 -04:00
Mike Reeves	4c90a0ed7e	Add templates for SO logs	2021-06-09 12:04:32 -04:00
Mike Reeves	579ff8c0b4	Add verbosity to checkin	2021-06-09 11:40:17 -04:00
Mike Reeves	264080546c	Add log path	2021-06-09 11:37:27 -04:00
Mike Reeves	88eea03f97	Revert to SO taxonomy for zeek and suricata	2021-06-08 13:36:50 -04:00
Mike Reeves	a959ec1eb1	Revert to SO taxonomy for zeek and suricata	2021-06-08 13:23:31 -04:00
Mike Reeves	3e138cbc6d	Revert to SO taxonomy for zeek and suricata	2021-06-08 13:14:46 -04:00
Mike Reeves	4972f69dd6	Merge remote-tracking branch 'remotes/origin/dev' into pipeline	2021-06-08 11:03:14 -04:00
Mike Reeves	56eb220ed6	Revert to SO taxonomy for zeek and suricata	2021-06-08 09:52:05 -04:00
William Wernert	bb5b805983	Merge branch 'fix/missing-version-string' into foxtrot	2021-06-03 10:45:02 -04:00
William Wernert	d55e007032	Merge pull request #4386 from Security-Onion-Solutions/foxtrot Update wording for iso location prompt in soup	2021-06-03 09:55:15 -04:00
Jason Ertel	719d841353	Update saved objects	2021-06-02 20:15:03 -04:00
weslambert	cba719b3a0	Remove extra comma	2021-06-02 16:42:09 -04:00
weslambert	4241bb08b8	Add suricata/zeek until we migrate templates	2021-06-02 16:37:43 -04:00
weslambert	4c74e7f308	Add event.kind and set name to module[dot]dataset	2021-06-02 15:35:26 -04:00
weslambert	db48c15f1d	Create event.kind field and rename dataset to be module[dot]dataset	2021-06-02 15:33:18 -04:00
weslambert	a1b34e7a88	Fix Suricata index name	2021-06-02 15:30:14 -04:00
Mike Reeves	9c9bcac61b	Update DNS queries	2021-06-02 15:01:14 -04:00
Mike Reeves	e42db3cd2d	Fix some hunt queries	2021-06-02 14:05:02 -04:00
Mike Reeves	e8cc88174f	Fix some hunt queries	2021-06-02 13:55:05 -04:00
Mike Reeves	7b7111e12c	Fix some hunt queries	2021-06-02 13:53:39 -04:00
William Wernert	b3f2c60065	Whiptail title fixes - Use a variable for the title - Fix cases where the whiptail title wasn't changed previously	2021-06-02 12:38:32 -04:00
William Wernert	afbf7de9e3	Remove empty lines in iso location prompt	2021-06-02 11:05:43 -04:00
Mike Reeves	77f13961ad	Merge remote-tracking branch 'remotes/origin/dev' into pipeline	2021-06-02 10:12:17 -04:00
Mike Reeves	e00fe0a732	Enable for all modes	2021-06-02 10:02:11 -04:00
Jason Ertel	c757d21360	Increase default SOC API and ES timeouts from 2m to 5m	2021-06-02 09:38:59 -04:00
Mike Reeves	5983eae3a8	fix filebeat module syntax	2021-06-01 17:47:13 -04:00
Mike Reeves	fd1de624c8	Disable TTY for filebeat script	2021-06-01 14:50:21 -04:00
Mike Reeves	73a0b31380	elastic pipeline enable	2021-06-01 12:12:20 -04:00
William Wernert	e800d62df4	Merge branch 'dev' into fix/update-iso-soup-wording	2021-06-01 11:12:17 -04:00
doug	ada8255af0	bump version to 7.13.0	2021-05-28 08:59:40 -04:00
m0duspwnens	b23ce7462e	add depenency	2021-05-27 11:26:25 -04:00
doug	aeea5701e4	completely disable both alerts.actions.json and hunt.actions.json	2021-05-26 16:34:05 -04:00
Mike Reeves	bfcde15a24	elastic pipeline test	2021-05-26 14:22:14 -04:00
doug	ee675546ac	add menu.actions.json and update soc.json	2021-05-26 14:09:00 -04:00
m0duspwnens	842aa97f7e	load filebeat modules when es container starts and if fb container is running	2021-05-26 11:00:18 -04:00
Mike Reeves	34d4eedf67	Remove old modules	2021-05-26 10:11:47 -04:00
Josh Brower	ed249600d3	Merge remote-tracking branch 'remotes/origin/dev' into feature/so-pcap-pull	2021-05-26 09:52:58 -04:00
Josh Brower	0187c9d6df	Adds so-pcap-export	2021-05-26 09:51:37 -04:00
William Wernert	6da37966d9	Update wording for iso location prompt in soup	2021-05-26 09:32:25 -04:00
m0duspwnens	525d4325c7	define ZEEKLOGLOOKUP in the yaml	2021-05-25 17:18:58 -04:00
m0duspwnens	ecf7e25a51	fix merge conflict	2021-05-25 17:16:44 -04:00
m0duspwnens	dfaf40f583	add zeekloglookup to translate zeeklogs to filebeat filesets	2021-05-25 17:14:26 -04:00
Mike Reeves	543154f037	Remove old modules	2021-05-25 16:58:18 -04:00
Mike Reeves	cd3e355f84	Fix zeek depth	2021-05-25 16:54:20 -04:00
m0duspwnens	2eee6b45bc	Merge branch 'pipeline' of https://github.com/Security-Onion-Solutions/securityonion into pipeline	2021-05-25 16:52:08 -04:00
m0duspwnens	0de5c6f204	fix sodefault modules	2021-05-25 16:52:02 -04:00
Mike Reeves	9363fc153c	Fix pillar for module	2021-05-25 16:44:13 -04:00

1 2 3 4 5 ...

4280 Commits