CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-04-25 22:17:49 +02:00
Code Issues Packages Projects Releases Wiki Activity
3,842 Commits 40 Branches 125 Tags
21f09a9cd5f91bb23d2d8d9162dadfe9078d1ec0
Commit Graph

2190 Commits

Author SHA1 Message Date
Mike Reeves 6dbe83a77f Update so-docker-refresh 2020-06-18 12:38:07 -04:00
Jason Ertel 2f3a99cfb0 fix: indentation is incorrect 2020-06-17 17:46:49 -04:00
Wes Lambert 6d25151ab8 Basic index read-only attr removal script 2020-06-17 18:59:13 +00:00
Josh Brower 6794cabf9c Merge pull request #868 from Security-Onion-Solutions/bugfix/fleet-custom-hostname 
Fleet custom hostname regex fix
 2020-06-17 14:46:07 -04:00
weslambert 569fc4ac4d Merge pull request #867 from Security-Onion-Solutions/feature/zeek_custom_policy 
Feature/zeek custom policy
 2020-06-17 13:12:38 -04:00
Wes Lambert 90c278096c Add custom Zeek script dir 2020-06-17 17:11:27 +00:00
Josh Brower 3418f5748c Fleet custom hostname regex fix 2020-06-17 13:08:47 -04:00
Wes Lambert 1beff65cc9 fix typo 2020-06-17 13:20:32 +00:00
Wes Lambert cbfe375407 Custom analyzer and responder dirs 2020-06-17 13:16:52 +00:00
Mike Reeves 6410087994 1.4.0 2020-06-16 13:52:37 -04:00
Josh Brower a9df5d75b0 Beta3 Kibana dashboard updates 2020-06-16 10:16:31 -04:00
Mike Reeves 4573b346f8 Merge remote-tracking branch 'remotes/origin/dev' into feature/metasuri 2020-06-15 21:46:07 -04:00
Mike Reeves 3681f91c37 Suricata Conn 2020-06-15 21:46:04 -04:00
Jason Ertel 97d127218a fix: stop updating salt mine - this is an attempt to sort out why the CA intermittently disappears from the mine 2020-06-15 17:40:58 -04:00
m0duspwnens fe39179ba1 fix so-status for searchnode 2020-06-15 17:01:23 -04:00
m0duspwnens 91a50c0915 place searchnode role with node where referenced 2020-06-15 16:58:30 -04:00
m0duspwnens b396c39352 fix for master not having a node:mainip pillar - playbook 2020-06-15 15:13:29 -04:00
Josh Patterson 1a6fc3ef6c Merge pull request #852 from Security-Onion-Solutions/quickfix/fleetfwsetup 
add firewall rules for fleet standalone
 2020-06-15 13:51:39 -04:00
m0duspwnens 51e500f521 add firewall rules for fleet standalone 2020-06-15 13:50:37 -04:00
Wes Lambert f3c9f2e5ea update templates 2020-06-15 16:57:46 +00:00
Wes Lambert 206261fbe6 rename id to log.id.fuid for X509 2020-06-15 16:55:14 +00:00
Wes Lambert 18547e8ea8 enforce field types 2020-06-15 16:54:33 +00:00
m0duspwnens dc56c449b7 add another pillar default to self hostgroup 2020-06-15 10:38:58 -04:00
Jason Ertel 87514e7da3 revert: Use consistent casing for package names 2020-06-14 09:47:59 -04:00
Jason Ertel 8b64f5b499 Use consistent casing for package names 2020-06-13 10:19:24 -04:00
m0duspwnens ce5d678ed9 change portgroup assignment for dockernet on searchnode 2020-06-12 17:09:08 -04:00
m0duspwnens a125a94808 fix issue with ssl state that prevented other node types being adding to a standalone node 2020-06-12 16:24:46 -04:00
Josh Patterson 1f305352a0 Merge pull request #844 from Security-Onion-Solutions/quickfix/addfwrules 
Quickfix/addfwrules
 2020-06-12 15:04:04 -04:00
Doug Burks befc793a96 Improve files query #804 2020-06-12 14:25:38 -04:00
Doug Burks d157c0da00 Improve DNS queries #804 2020-06-12 14:21:36 -04:00
Jason Ertel b3d2ce0e18 support applying the firewall state directly from so-firewall 2020-06-12 13:52:24 -04:00
Mike Reeves 03e410df68 Merge remote-tracking branch 'remotes/origin/dev' into feature/metasuri 2020-06-12 12:30:52 -04:00
Mike Reeves 6058d438bf Fix Protocol 2020-06-12 12:28:29 -04:00
Mike Reeves 42938a4e67 Add the makor Suricata parsers 2020-06-12 12:14:48 -04:00
m0duspwnens 3c0caa4112 Merge remote-tracking branch 'remotes/origin/dev' into quickfix/addfwrules 2020-06-12 11:40:34 -04:00
Doug Burks 0b2dd5d0a4 add event.dataset to default hunt output view #841 2020-06-12 11:37:55 -04:00
m0duspwnens 1f0509cfd6 update so-allow for wazuh and syslog 2020-06-12 11:35:18 -04:00
m0duspwnens d02bff22ac adding fw rules to master nodes for wazuh and syslog 2020-06-12 11:27:28 -04:00
Doug Burks 3cc936a0a8 add event.dataset to default hunt output view #841 2020-06-12 11:13:56 -04:00
Mike Reeves 0559e2d16b Merge remote-tracking branch 'remotes/origin/dev' into feature/metasuri 2020-06-12 08:54:17 -04:00
Jason Ertel d146e65412 Remove pre-creation of dirs in favor of having docker image use correct permissions 2020-06-12 01:24:13 -04:00
Jason Ertel 322bb665a1 fix: chgrp all wazuh subdirs accept for api due to Salt symlink issues 2020-06-11 22:34:08 -04:00
m0duspwnens 729a6998a2 Merge remote-tracking branch 'remotes/origin/dev' into issue/739 2020-06-11 16:26:23 -04:00
m0duspwnens 56a821a9be update standalone grafana dashboard 2020-06-11 16:24:52 -04:00
m0duspwnens b6fa01aafe fix monint for standalone grafana dashboard - https://github.com/Security-Onion-Solutions/securityonion-saltstack/issues/739 2020-06-11 16:21:33 -04:00
Mike Reeves 6f3fd407dd Merge remote-tracking branch 'remotes/origin/dev' into feature/metasuri 2020-06-11 16:00:38 -04:00
m0duspwnens f8b6a80d99 adding standalone grafana dashboard 2020-06-11 15:57:35 -04:00
m0duspwnens 101673dc98 fix telegraf for standalone - https://github.com/Security-Onion-Solutions/securityonion-saltstack/issues/739 2020-06-11 15:35:06 -04:00
m0duspwnens bf8278dccf add telegraf elasticsearch input for standalone - https://github.com/Security-Onion-Solutions/securityonion-saltstack/issues/739 2020-06-11 15:08:42 -04:00
m0duspwnens 73bb375662 have telegraf get data for standalone - https://github.com/Security-Onion-Solutions/securityonion-saltstack/issues/739 2020-06-11 14:48:03 -04:00