CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity
9,310 Commits 24 Branches 119 Tags
281e5d9b2582ae3f616d2f8fe73ef2fd49df46ac
Commit Graph

9310 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
m0duspwnens
281e5d9b25 remove salt.enable_higstate state 2022-01-21 08:09:04 -05:00
m0duspwnens
baa93301b5 enable cron at the end of soup 2022-01-20 16:53:33 -05:00
m0duspwnens
00d0eb1ce5 fix setting var 2022-01-20 16:37:33 -05:00
m0duspwnens
01cb505338 start cron and enable highstate if soup exits on error 2022-01-20 16:31:01 -05:00
m0duspwnens
e1757926cf start cron and reenable highstate on soup exit 2022-01-20 15:26:03 -05:00
weslambert
1b860e11e7 Merge pull request #6936 from Security-Onion-Solutions/fix/field_conflicts 
Remove dynamic keyword template to prevent field conflicts with mappi…
 2022-01-20 12:48:15 -05:00
weslambert
d1efa71c57 Remove dynamic keyword template to prevent field conflicts with mappings defined in common template 2022-01-20 12:34:32 -05:00
Josh Patterson
c57b2d005e Merge pull request #6933 from Security-Onion-Solutions/issue/6810 
quote ES_PASS in SOCtopus.conf and remove % from random pw
 2022-01-20 10:57:56 -05:00
m0duspwnens
9b2459d8ba quote ES_PASS in SOCtopus.conf and remove % from random pw 2022-01-20 10:52:48 -05:00
weslambert
d0c8dd0626 Merge pull request #6931 from Security-Onion-Solutions/fix/cases_dynamic_disable 
Disable dynamic mapping and increase order to reduce potential field …
 2022-01-20 09:48:01 -05:00
weslambert
e137ad60c5 Disable dynamic mapping and increase order to reduce potential field conflicts 2022-01-20 09:44:41 -05:00
Josh Patterson
93236738de Merge pull request #6930 from Security-Onion-Solutions/issue/6810 
upgrade salt to 3004
 2022-01-20 08:28:20 -05:00
m0duspwnens
fc65f7bb84 Merge remote-tracking branch 'remotes/origin/dev' into issue/6810 2022-01-19 15:35:28 -05:00
m0duspwnens
67e34b2402 reorder yum operations in securityonion_repo function 2022-01-19 15:35:04 -05:00
Jason Ertel
e984b0b9c4 Merge pull request #6921 from Security-Onion-Solutions/kilo 
remove unused fields object from related case schema
 2022-01-19 14:42:05 -05:00
Jason Ertel
dc44a91398 Prefix all SO fields to avoid potential conflicts with future ECS changes 2022-01-19 14:26:22 -05:00
m0duspwnens
a861801a24 more logCmd 2022-01-19 13:38:10 -05:00
m0duspwnens
fbe54b9ee8 yum clean all needs to happen before repo files are moved or the clean doesnt clean anything 2022-01-19 12:33:58 -05:00
m0duspwnens
7ebba1f325 use show_changes: False to prevent es pw from being shown when running the state 2022-01-19 12:11:38 -05:00
m0duspwnens
f8ac37c101 Merge remote-tracking branch 'remotes/origin/dev' into issue/6810 2022-01-19 11:57:37 -05:00
m0duspwnens
4d078046d6 quote ES_PASS due to new characters in random string for elasticsearch:auth pw generation 2022-01-19 11:55:25 -05:00
William Wernert
13dbd0034f Merge pull request #6924 from Security-Onion-Solutions/fix/whiptail-height 
Fix height of node whiptail menu
 2022-01-19 11:18:44 -05:00
William Wernert
c10ab712d5 Fix height of node whiptail menu 2022-01-19 11:05:34 -05:00
Jason Ertel
d7ba1cedff remove unused fields object from related case schema 2022-01-19 08:39:21 -05:00
m0duspwnens
55a262646c use logCmd 2022-01-19 08:34:54 -05:00
William Wernert
a3925d231c Merge pull request #6909 from Security-Onion-Solutions/fix/preflight-curl 
Install curl in preflight script to avoid error on Ubuntu
 2022-01-18 13:39:44 -05:00
William Wernert
c0c42c3574 Install curl in preflight script to avoid error on Ubuntu 
Also add check for already installed curl later in setup
 2022-01-18 13:17:56 -05:00
m0duspwnens
f006d1a22c logCmd commands in securityonion_repo function 2022-01-18 12:34:23 -05:00
m0duspwnens
a2ed9a86ff remove influixdb salt state files and update patch files for influxdb salt modules/state 2022-01-18 11:33:36 -05:00
Josh Brower
19ccd5f8e9 Merge pull request #6904 from Security-Onion-Solutions/fix/fleetdm-disable-vuln-feature 
FleetDM - Disable Vuln Proc Feature
 2022-01-18 10:48:06 -05:00
Josh Brower
c4babf22d6 FleetDM - Disable Vuln Proc Feature 2022-01-18 10:38:55 -05:00
Mike Reeves
7eb564db14 Merge pull request #6901 from Security-Onion-Solutions/elasticupdate 
Elastic 7.16.3
 2022-01-18 09:47:36 -05:00
Mike Reeves
2e4e59bbe8 Elastic 7.16.3 2022-01-18 09:42:06 -05:00
m0duspwnens
87999453f2 Merge remote-tracking branch 'remotes/origin/dev' into issue/6810 2022-01-18 09:13:10 -05:00
m0duspwnens
3bd26f05d4 account for salt 3004 adding new chars to random.get_str 2022-01-14 18:02:18 -05:00
m0duspwnens
a46a740170 account for salt 3004 adding new chars to random.get_str 2022-01-14 17:23:29 -05:00
Mike Reeves
71da74fd00 Merge pull request #6878 from Security-Onion-Solutions/fix/scan_pe_sections_entropy 
Fix/scan pe sections entropy
 2022-01-14 17:02:32 -05:00
weslambert
c512351dd6 Add mapping for scan.exiftool and scan.pe.sections.entropy 2022-01-14 17:01:13 -05:00
weslambert
a90bc9dba9 Add mapping for scan.pe.sections.entropy 2022-01-14 16:58:53 -05:00
m0duspwnens
02ce5c3236 update install salt to 3004 2022-01-14 13:47:16 -05:00
m0duspwnens
b6b2e06fbc change module to cmd for onchanges_in 2022-01-14 12:44:58 -05:00
m0duspwnens
f5fe466410 repo update 2022-01-14 12:02:35 -05:00
Jason Ertel
a63787daba Merge pull request #6864 from Security-Onion-Solutions/kilo 
Add default queries for cases to show user's assigned cases
 2022-01-13 17:15:02 -05:00
Jason Ertel
6b0b7245f0 Add default queries for cases to show user's assigned cases 2022-01-13 17:10:08 -05:00
m0duspwnens
bda9221d6f upgrade salt to 3004 and update bootstrap-salt.sh 2022-01-13 13:26:11 -05:00
Josh Patterson
b2434faf10 Merge pull request #6862 from Security-Onion-Solutions/issue/6811 
restart wazuh with docker restart vs so-wazuh-restart
 2022-01-13 13:06:43 -05:00
m0duspwnens
82db3fa3c0 restart wazuh with docker restart vs so-wazuh-restart 2022-01-13 13:02:01 -05:00
Josh Patterson
78bb6e4176 Merge pull request #6856 from Security-Onion-Solutions/issue/6811 
Issue/6811
 2022-01-13 11:03:51 -05:00
m0duspwnens
06c0cebb26 merge with dev 2022-01-13 09:44:26 -05:00
m0duspwnens
389ff1a46d create enable_highstate state to reenable highstate following minion restart if it was previously disabled. same with cron 2022-01-13 09:39:46 -05:00