CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-25 02:13:08 +01:00
Code Issues Packages Projects Releases Wiki Activity
4,523 Commits 19 Branches 120 Tags
1fc64d3eefb916a840f72ba807848c1937715aa4
Commit Graph

2581 Commits

Author SHA1 Message Date
m0duspwnens
05b8b71af2 add elasticsearch to standalone top 2020-09-03 15:54:24 -04:00
weslambert
8db8dcb71a Change HOME_NET and EXTERNAL_NET defaults 2020-09-03 08:15:14 -04:00
Wes Lambert
770aaf415c Require at least on arg for start/stop/restart scripts 2020-09-02 18:55:59 +00:00
Jason Ertel
0142f43493 Add so-user-disable script which deletes the SOC user and disables the users in Fleet, TheHive, and Cortex 2020-09-02 13:54:50 -04:00
m0duspwnens
9d85b3223f fix note about localrules 2020-09-02 11:46:48 -04:00
Josh Patterson
066c795e71 Merge pull request #1279 from Security-Onion-Solutions/fix/redhat 
move redhat with centos
 2020-09-02 09:12:44 -04:00
m0duspwnens
1f8f197066 move redhat with centos 2020-09-02 09:12:05 -04:00
weslambert
5d920885e0 Add manager to hosts file 2020-09-02 07:43:55 -04:00
Josh Patterson
7fa083069d Merge pull request #1277 from Security-Onion-Solutions/issue/968 
Issue/968
 2020-09-01 15:43:22 -04:00
m0duspwnens
08ca2055dc fix telegraf file input for zeek log 2020-09-01 15:34:06 -04:00
m0duspwnens
93f30a2064 fix telegraf config 2020-09-01 15:29:29 -04:00
m0duspwnens
b13b07eddf add newline to end 2020-09-01 15:10:56 -04:00
m0duspwnens
01777c64d9 fix influxtime 2020-09-01 14:58:48 -04:00
m0duspwnens
b6d66bddfc add redis to proper node types. grafana dahsboard changes. change zeek_restart to not use telegraf socket but read from file instead 2020-09-01 14:38:10 -04:00
Josh Brower
6cd0d16b91 Merge pull request #1276 from Security-Onion-Solutions/feature/import-wel 
Initial support for evtx import
 2020-09-01 13:48:12 -04:00
Josh Brower
a79d0319cd Initial support for evtx import 2020-09-01 13:47:27 -04:00
m0duspwnens
2fee151bff resolve issue with salt state if os is redhat 2020-09-01 10:43:21 -04:00
m0duspwnens
ada1c81ab7 manager and standalone dashboard changes 2020-09-01 10:40:20 -04:00
Jason Ertel
ff5d1cd815 Expand nginx body size limit to 2.5GB to handle 2G PCAPs from sensors 2020-09-01 10:07:28 -04:00
m0duspwnens
a1a7b36319 merge with dev and resolve conflict 2020-08-31 16:05:34 -04:00
m0duspwnens
31f25eca57 fix grafana related issues. add redis to standalone 2020-08-31 15:56:58 -04:00
Jason Ertel
dc3b065a41 Set exec bit on new user-add scripts 2020-08-31 10:57:23 -04:00
Wes Lambert
46e7e121e3 Add Wazuh mgmt wrappers for manage_agents and upgrade 2020-08-31 14:54:24 +00:00
Wes Lambert
6d14f2af96 Remove minio for now 2020-08-31 14:07:47 +00:00
weslambert
42bd75a1cc Merge pull request #1270 from Security-Onion-Solutions/fix/elastalert_startup 
Wait for Elasticsearch indices to be queryable before starting Elasta…
 2020-08-31 09:56:18 -04:00
Wes Lambert
9abbda8e04 Wait for Elasticsearch indices to be queryable before starting Elastalert container 2020-08-31 13:54:49 +00:00
Jason Ertel
189c02648d Move container status check to so-common 2020-08-31 09:52:06 -04:00
Jason Ertel
8e06f0453e Only add users to aux systems if those systems are currently running 2020-08-31 09:41:06 -04:00
Doug Burks
77b3ebdabe Hunt Events table should show ssl.server_name when searching for ssl 
Hunt Events table should show ssl.server_name when searching for ssl #1267
 2020-08-30 06:56:15 -04:00
Josh Brower
b7dd14b8f0 Set event.code to string for WEL 2020-08-28 13:40:04 -04:00
Jason Ertel
4e3e83820f Correct pillar key for thehive 2020-08-28 08:17:42 -04:00
m0duspwnens
b1e7ffc173 fix inbound for monitor traffic on standalone graphana dashboard 2020-08-27 18:24:26 -04:00
Jason Ertel
a3e34bfaca Add users to Fleet, TheHive, and Cortex when adding a user to SO via so-user-add command 2020-08-27 16:58:02 -04:00
Mike Reeves
2b0b695ee4 Fix duplicate docker 2020-08-27 10:15:22 -04:00
weslambert
509985ed07 Merge pull request #1254 from Security-Onion-Solutions/fix/sensor_clean 
Cron updates
 2020-08-26 11:03:03 -04:00
weslambert
000c2abb33 Update timing for so-yara-update 2020-08-26 11:02:33 -04:00
Mike Reeves
e993397173 Update docker to latest version 2020-08-26 10:35:17 -04:00
Josh Brower
67e0a219e6 Upgraded to Fleet 3.1 2020-08-26 06:13:45 -04:00
Josh Brower
b6ebcf6551 Merge pull request #1250 from Security-Onion-Solutions/feature/es-security-field 
Adds new .security analyzed subfield
 2020-08-26 05:12:23 -04:00
Josh Brower
1cf7301db4 Adds new .security analyzed subfield 2020-08-26 05:11:42 -04:00
Jason Ertel
3122280bd5 Update version to 2.2.0-rc.3 2020-08-25 15:16:09 -04:00
weslambert
ce49e050bc Update timing for sensor clean cron 2020-08-25 12:14:43 -04:00
Wes Lambert
c03812f7ab Add rotation for sensor_clean log 2020-08-25 15:34:30 +00:00
weslambert
a8f727ad40 Don't write to log if not past CRIT_DISK_USAGE 2020-08-25 11:19:36 -04:00
Mike Reeves
a97ca94354 Rotate suri stats log hourly 2020-08-23 16:08:17 -04:00
Mike Reeves
ebd8105cb5 Rotate suri stats log hourly 2020-08-23 16:03:37 -04:00
Jason Ertel
9c6cc81f70 Remove improper suricata logging filter - this re-enables logging output for the suricata process itself 2020-08-21 12:44:28 -04:00
Mike Reeves
05d727e599 Final changes.json update 2020-08-20 19:18:39 -04:00
Mike Reeves
2b88f22eb2 Make HUP for rotate more reliable 2020-08-20 17:57:36 -04:00
Mike Reeves
b7da768dc7 add logrotate 2020-08-20 16:46:32 -04:00