CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-09 18:52:52 +01:00
Code Issues Packages Projects Releases Wiki Activity
6,470 Commits 26 Branches 119 Tags
262bf03595d7a4aecb8a3d520041f9c74cd16001
Commit Graph

1012 Commits

Author SHA1 Message Date
Jason Ertel
050058a959 Add retry support for 'docker pull' command 2021-02-24 09:34:14 -05:00
Mike Reeves
00deab9305 Merge pull request #3100 from Security-Onion-Solutions/kilo 
Add so-preflight + usage to so-monitor-add, fix managersearch missing from so-rule
 2021-02-23 17:32:41 -05:00
Mike Reeves
fa6fd20ff9 Merge pull request #3088 from Security-Onion-Solutions/soupairgap 
Syn the latest rules on an airgap install
 2021-02-23 17:31:29 -05:00
Josh Brower
a7eb3cd38d Add so-playbook-sigma-refresh 2021-02-23 15:43:09 -05:00
William Wernert
a361ca0e19 [fix] Add managersearch node type to so-rule pillar search 2021-02-23 14:15:17 -05:00
William Wernert
9cf15cdae5 [fix] Reword so-monitor-add help message 2021-02-23 13:55:18 -05:00
William Wernert
d5477b4721 Add usage/help message to so-monitor-add 2021-02-23 13:48:54 -05:00
Mike Reeves
186710964b Fix Airgap Rule Path 2021-02-23 13:07:23 -05:00
Mike Reeves
3b32eb539f Copy latest rules when using airgaps 2021-02-23 11:21:23 -05:00
William Wernert
fad87a8789 Fix function name (.20 -> .2X) 2021-02-23 08:51:44 -05:00
William Wernert
9287209750 Merge branch 'soup2.3.30' into feature/so-rules 
# Conflicts:
#	salt/common/tools/sbin/soup
 2021-02-22 16:07:15 -05:00
William Wernert
982967fdde Merge branch 'dev' into feature/so-rules 2021-02-22 16:01:48 -05:00
William Wernert
fb3af255d9 Add more info to apply messaging 2021-02-22 15:50:07 -05:00
William Wernert
3e3c923ab9 Arrange missing pillar error message better 2021-02-22 15:44:29 -05:00
William Wernert
b00cc88801 [fix] Unreverse apply prompt actions 2021-02-22 15:43:56 -05:00
William Wernert
e9b85337ff [fix] Only prompt if entry doesn't exist, deep compare arrays 2021-02-22 15:41:09 -05:00
William Wernert
fd33a6cebe Rename script, prompt user to apply if they didn't pass --apply 2021-02-22 15:32:18 -05:00
William Wernert
cdf766eeae explicitely -> explicitly 2021-02-22 14:30:26 -05:00
William Wernert
8fc82fa3ef Fix minion pillar directory 2021-02-22 14:27:22 -05:00
Mike Reeves
6ed1cc3875 Add Soup Functions 2021-02-22 14:02:37 -05:00
Mike Reeves
d5069d12cf Merge pull request #3071 from Security-Onion-Solutions/delta 
Add acng to import installs for consistency
 2021-02-22 11:34:23 -05:00
William Wernert
e65c9e5c7c Don't expect apply arg at beginning of command 2021-02-22 11:29:30 -05:00
William Wernert
4bcb7403a9 Add apply option to end of command 2021-02-22 11:27:03 -05:00
William Wernert
bef3a6921c [fix] SID wildcards are not parsed by idstools, remove 2021-02-22 11:12:02 -05:00
William Wernert
f7bef9200b [fix] Only look for manager-type pillars 
* SID disabling is only managed globally for now, so don't give the option to edit a different pillar
 2021-02-22 10:38:53 -05:00
William Wernert
bb6f3107bc [fix] idstools can run on an import node as well 2021-02-22 10:29:40 -05:00
William Wernert
f2a1e89633 Merge branch 'dev' into feature/so-rules 2021-02-22 10:03:14 -05:00
William Wernert
abae673568 Update help text to reflect arg requirement changes 2021-02-22 10:00:29 -05:00
Jason Ertel
747d62dae5 Add acng to import installs for consistency 2021-02-22 09:44:24 -05:00
Josh Brower
5ca3dc492c Merge pull request #3061 from Security-Onion-Solutions/foxtrot 
Fix Playbook Fields & Mappings
 2021-02-21 09:40:59 -05:00
Josh Brower
046cc0fbb0 Merge pull request #3052 from Security-Onion-Solutions/feature/sigma-tweaks 
Feature/sigma tweaks
 2021-02-19 15:16:34 -05:00
Josh Brower
8c69e19419 Add sigma refresh script 2021-02-19 15:14:37 -05:00
Josh Brower
2a324eac32 Add sigma refresh script 2021-02-19 15:12:55 -05:00
William Wernert
c73970620d [fix] Correct indent 2021-02-19 14:38:43 -05:00
William Wernert
34174a3290 Print relevant help if no/partial command passed 2021-02-19 14:34:32 -05:00
William Wernert
4689e32ce4 Add sed for curly braces in minion pillars to soup 2021-02-19 10:18:06 -05:00
William Wernert
2184c6d59f [fix] Create dict value if it doesn't exist 2021-02-19 09:31:22 -05:00
William Wernert
9183c0a92c [feat] Initial so-rules script 
* Quote curly braces in minion pillar, need to add sed function in soup
 2021-02-19 09:24:12 -05:00
Jason Ertel
faa78c0e26 Salt doesn't like a name starting with a non alpha-numeric char. Switch back to long if/then format 2021-02-18 14:51:09 -05:00
Jason Ertel
6f7bc650a0 Apply reserved ports if the existing file is 0 bytes 2021-02-18 11:20:13 -05:00
m0duspwnens
7a595df5b6 strelka logrotate - https://github.com/Security-Onion-Solutions/securityonion/issues/2736 2021-02-17 11:17:41 -05:00
m0duspwnens
2b07d89b5a error: /opt/so/conf/sensor-rotate.conf:8 unknown option 'endscript' -- ignoring line 2021-02-17 11:01:18 -05:00
m0duspwnens
e6ae1af85f test rotating strelka log at 100k 2021-02-17 10:47:06 -05:00
m0duspwnens
7099ed4bf5 delete many backup files 2021-02-16 11:55:49 -05:00
m0duspwnens
1ccc5480e1 remove oldest backup 2021-02-16 11:40:45 -05:00
Mike Reeves
5043b970ef Fix tar syntax 2021-02-06 19:14:44 -05:00
Mike Reeves
a3ca84db66 Fix backupdir name state 2021-02-06 15:32:42 -05:00
Mike Reeves
bf79c92456 Lock down Backups folder permissions 2021-02-05 22:31:08 -05:00
Mike Reeves
8f97973fac Lock down Backups folder permissions 2021-02-05 22:17:31 -05:00
Jason Ertel
e427f8178d Implement locking to so-firewall script 2021-02-04 16:06:11 -05:00