securityonion

mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-10 03:02:58 +01:00

Author	SHA1	Message	Date
Jason Ertel	e912b2fd96	Move idstools to run after nginx runs	2021-02-18 12:50:00 -05:00
Josh Patterson	0ab9577863	Merge pull request #3018 from Security-Onion-Solutions/all_rules_dont_show_changes dont show changes since file can be large	2021-02-18 12:23:54 -05:00
m0duspwnens	bf100a2310	dont show changes since file can be large	2021-02-18 12:23:22 -05:00
Josh Patterson	2092044335	Merge pull request #3017 from Security-Onion-Solutions/issue/1237 load templates all the time	2021-02-18 12:13:49 -05:00
m0duspwnens	e730efb4ec	load templates all the time	2021-02-18 12:12:18 -05:00
Josh Patterson	76cdc45fad	Merge pull request #3016 from Security-Onion-Solutions/all_rules_dont_show_changes Don't show changes because all.rules can be large	2021-02-18 12:00:08 -05:00
m0duspwnens	069997a65c	Don't show changes because all.rules can be large	2021-02-18 11:56:25 -05:00
Jason Ertel	6f7bc650a0	Apply reserved ports if the existing file is 0 bytes	2021-02-18 11:20:13 -05:00
Josh Patterson	a9da761fab	Merge pull request #3012 from Security-Onion-Solutions/issue/2989 Issue/2989	2021-02-18 10:52:23 -05:00
m0duspwnens	95df18c545	limit eve logs and gz files based on days	2021-02-18 10:45:20 -05:00
m0duspwnens	a4d5f58256	fix surilogcompress	2021-02-18 10:33:47 -05:00
Josh Patterson	3f7cdb933f	Merge pull request #3010 from Security-Onion-Solutions/issue/2989 Issue/2989	2021-02-18 09:58:35 -05:00
m0duspwnens	74ca4487de	ensure at least 2 eve files are kept https://github.com/Security-Onion-Solutions/securityonion/issues/2989	2021-02-18 09:51:40 -05:00
m0duspwnens	4b07d5e457	add identifier to eve clean cron	2021-02-18 09:39:54 -05:00
m0duspwnens	041d193f2d	fix brackets	2021-02-18 09:37:37 -05:00
m0duspwnens	0bef8b6662	limit number of eve.json files for suricata https://github.com/Security-Onion-Solutions/securityonion/issues/2989	2021-02-18 09:26:59 -05:00
Josh Brower	b5087b815a	Merge pull request #3002 from Security-Onion-Solutions/feature/sigma-tweaks Update .security analyzer	2021-02-17 16:38:22 -05:00
Josh Brower	d2a74c80e2	Update .security analyzer	2021-02-17 16:37:31 -05:00
Josh Brower	741f674a4c	Merge pull request #3001 from Security-Onion-Solutions/dev Dev	2021-02-17 16:36:49 -05:00
Pete	29c5f3212f	make log_size_limit calculation more specific Extend the directory traversal into /nsm/elasticsearch in case that's a separate mountpoint from /nsm/.	2021-02-17 16:53:31 +00:00
Josh Patterson	174ed84750	Merge pull request #2993 from Security-Onion-Solutions/issue/2736 logrotate strelka	2021-02-17 11:47:52 -05:00
m0duspwnens	7a595df5b6	strelka logrotate - https://github.com/Security-Onion-Solutions/securityonion/issues/2736	2021-02-17 11:17:41 -05:00
m0duspwnens	2b07d89b5a	error: /opt/so/conf/sensor-rotate.conf:8 unknown option 'endscript' -- ignoring line	2021-02-17 11:01:18 -05:00
m0duspwnens	e6ae1af85f	test rotating strelka log at 100k	2021-02-17 10:47:06 -05:00
Josh Patterson	ce313d8dc4	Merge pull request #2992 from Security-Onion-Solutions/issue/2737 fix logic for log_size_limit	2021-02-17 10:09:54 -05:00
Josh Patterson	fddef1a6f4	Merge pull request #2985 from Security-Onion-Solutions/issue/2915 remove old backup files	2021-02-17 09:43:58 -05:00
William Wernert	cda36f178b	Merge pull request #2979 from Security-Onion-Solutions/foxtrot Setup fixes/improvements	2021-02-16 17:14:59 -05:00
Josh Patterson	bec437c2cf	Merge pull request #2984 from Security-Onion-Solutions/issue/2737 Issue/2737	2021-02-16 15:41:46 -05:00
m0duspwnens	996bf0768b	fix logic for log_size_limit https://github.com/Security-Onion-Solutions/securityonion/issues/2737	2021-02-16 15:40:01 -05:00
William Wernert	0bd5ddf6a6	Grammar + misc fixes per PR review * Remove unnecessary `apt-get update` commands * Change `if ! (command); then exit 1; fi` to `command \|\| exit 1` to avoid subshell	2021-02-16 14:17:41 -05:00
Doug Burks	8016511414	Merge pull request #2981 from Security-Onion-Solutions/kilo Hunt: improve Wazuh queries #2383	2021-02-16 10:38:53 -08:00
Josh Patterson	eb18ec552c	Merge pull request #2980 from Security-Onion-Solutions/issue/2915 Issue/2915	2021-02-16 12:01:37 -05:00
doug	fabe3c87f2	Hunt: improve Wazuh queries #2383	2021-02-16 11:56:14 -05:00
m0duspwnens	7099ed4bf5	delete many backup files	2021-02-16 11:55:49 -05:00
m0duspwnens	1ccc5480e1	remove oldest backup	2021-02-16 11:40:45 -05:00
Doug Burks	d6fa54b606	Merge pull request #2975 from Security-Onion-Solutions/kilo Issues 2954 and 2361 - Kibana config	2021-02-16 08:30:46 -08:00
William Wernert	3323e900ef	[fix] Fix indent (pt 2)	2021-02-16 11:17:36 -05:00
William Wernert	7a9f801eb1	[fix] Add more `apt-get update` commands Fixes #2962	2021-02-16 10:24:58 -05:00
William Wernert	38a5b86813	Make apt-get syntax consistent	2021-02-16 10:24:07 -05:00
William Wernert	23221065eb	Preset MANAGERUPDATES var for airgap since we don't prompt now	2021-02-16 09:43:54 -05:00
William Wernert	5e8d09be51	[fix] Fix indent	2021-02-16 09:42:35 -05:00
doug	397d8d0964	Kibana 7.10.2 config changes #2954	2021-02-14 07:04:51 -05:00
doug	3248edea8b	Update Kibana dashboard hyperlinks to new url format #2361	2021-02-12 17:25:42 -05:00
Josh Patterson	bf3b609a44	Merge pull request #2955 from Security-Onion-Solutions/issue/1237 Issue/1237	2021-02-12 16:04:58 -05:00
m0duspwnens	100601c452	only laod templates if they change https://github.com/Security-Onion-Solutions/securityonion/issues/1237	2021-02-12 16:03:45 -05:00
doug	31a0c2bc82	Update Kibana dashboard hyperlinks to new url format #2361	2021-02-12 15:37:25 -05:00
doug	797d2c4dba	Kibana 7.10.2 config changes #2954	2021-02-12 15:35:06 -05:00
Doug Burks	fd4cb0b7a8	Kibana 7.10.2 config changes #2954	2021-02-12 14:05:29 -05:00
Doug Burks	c717773fc3	Kibana 7.10.2 config changes #2954	2021-02-12 14:04:00 -05:00
Josh Patterson	ce04b109fe	Merge pull request #2950 from Security-Onion-Solutions/delta Disable ICMP timestamps by default	2021-02-12 13:54:59 -05:00

... 14 15 16 17 18 ...

7144 Commits