securityonion

mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-21 16:33:08 +01:00

Author	SHA1	Message	Date
Jason Ertel	210bc556db	Add logscan and suricata variants for cloud tests to move from PM into the cloud and help alleviate disk contention	2022-05-28 10:29:04 -04:00
Jason Ertel	e87e672b9e	Add logscan and suricata variants for cloud tests to move from PM into the cloud and help alleviate disk contention	2022-05-28 10:28:20 -04:00
Jason Ertel	8bb02763dc	Exclude pkg upgrade retry error logs from failing setup	2022-05-28 08:28:10 -04:00
Jason Ertel	c20859f8c3	Upgrade to Kratos 0.9.0-alpha.3	2022-05-18 17:05:21 -04:00
weslambert	94ca3ddbda	Merge pull request #7961 from Security-Onion-Solutions/weslambert-patch-1 Add information for MHR and WhoisLookup, and other minor updates	2022-05-17 13:33:24 -04:00
weslambert	d3206a048f	Add information for MHR and WhoisLookup, and other minor updates	2022-05-17 12:49:16 -04:00
weslambert	ff855eb8f7	Merge pull request #7958 from Security-Onion-Solutions/feature/mhr_analyzer Add Team Cymru Malware Hash Registry Analyzer	2022-05-17 12:42:01 -04:00
Wes Lambert	8af1f19ac3	Another no_results change	2022-05-17 16:12:43 +00:00
Wes Lambert	e4a7e3cba6	Change 'No results found.' to 'no_results'	2022-05-17 16:11:58 +00:00
weslambert	2688083ff1	Merge pull request #7959 from Security-Onion-Solutions/feature/whoislookup-analyzer Add Whoislookup RDAP-based analyzer	2022-05-17 12:09:06 -04:00
Wes Lambert	766e9748c5	Add Whoislookup RDAP-based analyzer	2022-05-17 15:52:12 +00:00
weslambert	3761b491c0	Remove whitespace	2022-05-17 10:50:33 -04:00
Wes Lambert	e8fc3ccdf4	Add Team Cymru Malware Hash Registry Analyzer	2022-05-17 14:44:53 +00:00
Doug Burks	eb9597217c	Merge pull request #7949 from Security-Onion-Solutions/fix/dashboards-hunt-queries update dashboards.queries.json and hunt.queries.json	2022-05-16 08:47:06 -04:00
doug	5cbb50a781	update dashboards.queries.json and hunt.queries.json	2022-05-16 08:33:48 -04:00
Jason Ertel	685789de33	Merge pull request #7936 from Security-Onion-Solutions/kilo Improved unit test coverage of new analyzers; Utilize localized summa…	2022-05-12 16:47:18 -04:00
Jason Ertel	b45b6b198b	Improved unit test coverage of new analyzers; Utilize localized summaries; Require 100% code coverage on analyzers	2022-05-12 16:32:47 -04:00
weslambert	6c506bbab0	Merge pull request #7935 from Security-Onion-Solutions/fix/pulsedive Fix Pulsedive analyzer logic	2022-05-12 15:20:15 -04:00
Wes Lambert	3dc266cfa9	Add test for when indicator is not found	2022-05-12 19:02:41 +00:00
Wes Lambert	a233c08830	Update logic to handle indicators that are not present in database.	2022-05-12 19:02:02 +00:00
Doug Burks	58b049257d	Merge pull request #7932 from Security-Onion-Solutions/dougburks-patch-1 remove duplicate showSubtitle from hunt.queries.json	2022-05-12 09:24:18 -04:00
Doug Burks	6ed3f42449	remove duplicate showSubtitle from hunt.queries.json	2022-05-12 09:23:00 -04:00
Jason Ertel	60b55acd6f	Merge pull request #7926 from Security-Onion-Solutions/kilo Add support for analyzers in airgapped environments	2022-05-10 17:12:18 -04:00
Jason Ertel	35e47c8c3e	Add support for analyzers in airgapped environments	2022-05-10 16:51:00 -04:00
weslambert	7f797a11f8	Merge pull request #7924 from Security-Onion-Solutions/analyzer-docs Update analyzer docs with information about analyzers that require au…	2022-05-10 09:40:50 -04:00
Jason Ertel	91a7f25d3a	Corrected brand name capitalization	2022-05-10 09:39:19 -04:00
weslambert	34d57c386b	Update analyzer docs with information about analyzers that require authentication	2022-05-10 09:32:18 -04:00
weslambert	000e813fbb	Merge pull request #7921 from Security-Onion-Solutions/fix/analyzer-packages Update analyzer packages to those downloaded by Alpine and add additional build script option	2022-05-09 16:43:31 -04:00
Wes Lambert	555ca2e277	Update analyzer build/testing script to download necessary Python packages	2022-05-09 20:06:39 +00:00
Wes Lambert	32adba6141	Update analyzer packages with those built from native (Alpine) Docker image	2022-05-09 20:04:41 +00:00
Jason Ertel	e19635e44a	Merge pull request #7920 from Security-Onion-Solutions/kilo Disable MRU queries on dashboards	2022-05-09 15:08:55 -04:00
Jason Ertel	31c04aabdd	Disable MRU queries on dashboards	2022-05-09 15:06:43 -04:00
Jason Ertel	dc209a37cd	Merge pull request #7916 from Security-Onion-Solutions/kilo Disable actions on dashboards group-by tables	2022-05-09 11:52:22 -04:00
Jason Ertel	3f35dc54d2	Disable actions on dashboards group-by tables	2022-05-09 11:44:39 -04:00
Jason Ertel	0e64a9e5c3	Merge pull request #7912 from Security-Onion-Solutions/kilo Add dashboard ref to soc.json	2022-05-06 15:18:05 -04:00
Jason Ertel	0786191fc9	Add dashboard ref to soc.json	2022-05-06 15:16:27 -04:00
Jason Ertel	60763c38db	Merge pull request #7911 from Security-Onion-Solutions/kilo Analyzers + Dashboards	2022-05-06 13:50:54 -04:00
weslambert	9800f59ed7	Add Urlscan to observable support matrix	2022-05-06 13:11:43 -04:00
Wes Lambert	ccac71f649	Fix formatting/whitespace	2022-05-06 17:08:40 +00:00
Wes Lambert	1990ba0cf0	Fix formatting/whitespace	2022-05-06 17:08:33 +00:00
Wes Lambert	8ff5778569	Add Urlscan analyzer and tests	2022-05-06 17:01:06 +00:00
Jason Ertel	bee4cf4c52	Fix typo in analyzer desc	2022-05-06 09:20:03 -04:00
Jason Ertel	105c95909c	Dashboard queries	2022-05-04 19:32:06 -04:00
Jason Ertel	890bcd58f9	Merge branch 'dev' into kilo	2022-05-04 19:25:08 -04:00
weslambert	a96c665d04	Change test name for EmailRep	2022-05-03 14:13:25 -04:00
weslambert	f3a91d9fcd	Add EmailRep analyzer to observable support matrix	2022-05-03 10:10:57 -04:00
Wes Lambert	5a9acb3857	Add EmailRep analyzer and tests	2022-05-03 14:06:32 +00:00
Wes Lambert	8b5666b238	Ensure API key is used	2022-05-03 12:48:06 +00:00
weslambert	efb229cfcb	Update to match configuration in analyzer dir	2022-05-02 16:35:21 -04:00
weslambert	2fcb2b081d	Update allowed complexity to 12	2022-05-02 16:14:43 -04:00

1 2 3 4 5 ...

10111 Commits