 weslambert
|
d96d696c35
|
Merge pull request #12735 from Security-Onion-Solutions/feature/cef
Add cef
|
2024-04-03 10:49:44 -04:00 |
|
|
Wes
|
105eadf111
|
Add cef
|
2024-04-03 14:40:41 +00:00 |
|
 Jason Ertel
|
ca57c20691
|
suppress soup update output for cleaner console
|
2024-04-03 10:31:24 -04:00 |
|
|
Jason Ertel
|
c4767bfdc8
|
suppress soup update output for cleaner console
|
2024-04-03 10:28:43 -04:00 |
|
 Mike Reeves
|
0de1f76139
|
add agent count to reposync
|
2024-04-03 10:26:59 -04:00 |
|
|
Jason Ertel
|
5f4a0fdfad
|
suppress soup update output for cleaner console
|
2024-04-03 10:26:48 -04:00 |
|
|
Jason Ertel
|
c712529cf6
|
suppress soup update output for cleaner console
|
2024-04-03 10:21:35 -04:00 |
|
|
Mike Reeves
|
976ddd3982
|
add agentstatus to telegraf
|
2024-04-03 10:06:08 -04:00 |
|
|
Mike Reeves
|
64748b98ad
|
add agentstatus to telegraf
|
2024-04-03 09:56:12 -04:00 |
|
|
Mike Reeves
|
3335612365
|
add agentstatus to telegraf
|
2024-04-03 09:54:16 -04:00 |
|
|
Mike Reeves
|
513273c8c3
|
add agentstatus to telegraf
|
2024-04-03 09:43:55 -04:00 |
|
|
Mike Reeves
|
0dfde3c9f2
|
add agentstatus to telegraf
|
2024-04-03 09:40:14 -04:00 |
|
|
Mike Reeves
|
0efdcfcb52
|
add agentstatus to telegraf
|
2024-04-03 09:36:02 -04:00 |
|
 Josh Brower
|
fbdcc53fe0
|
Merge pull request #12732 from Security-Onion-Solutions/2.4/detections-defaults
Feature - auto-enabled Sigma rules
|
2024-04-03 09:01:09 -04:00 |
|
|
Jason Ertel
|
c1b5ef0891
|
ensure so-yaml.py is updated during soup
|
2024-04-03 08:44:40 -04:00 |
|
|
DefensiveDepth
|
a8f25150f6
|
Feature - auto-enabled Sigma rules
|
2024-04-03 08:21:50 -04:00 |
|
|
Jason Ertel
|
1ee2a6d37b
|
Improve wording for Airgap annotation
|
2024-04-03 08:21:30 -04:00 |
|
|
Mike Reeves
|
f64d9224fb
|
Merge branch '2.4/dev' of github.com:Security-Onion-Solutions/securityonion into metrics
|
2024-04-02 17:22:20 -04:00 |
|
|
Jason Ertel
|
b6187ab769
|
Improve wording for Airgap annotation
|
2024-04-02 15:54:39 -04:00 |
|
|
Mike Reeves
|
283939b18a
|
Gather metrics from elastic agent to influx
|
2024-04-02 15:36:01 -04:00 |
|
|
Jason Ertel
|
3b112e20e3
|
fix syntax error
|
2024-04-02 12:32:33 -04:00 |
|
 Doug Burks
|
23a6c4adb6
|
Merge pull request #12725 from Security-Onion-Solutions/dougburks-patch-1
FEATURE: Add Events table columns for event.module strelka #12716
|
2024-04-02 10:54:15 -04:00 |
|
|
Doug Burks
|
2f03cbf115
|
FEATURE: Add Events table columns for event.module strelka #12716
|
2024-04-02 10:42:20 -04:00 |
|
|
Doug Burks
|
a678a5a416
|
Merge pull request #12724 from Security-Onion-Solutions/dougburks-patch-1
FEATURE: Add Events table columns for event.module strelka #12716
|
2024-04-02 10:15:20 -04:00 |
|
|
Doug Burks
|
b2b54ccf60
|
FEATURE: Add Events table columns for event.module strelka #12716
|
2024-04-02 10:11:16 -04:00 |
|
|
Doug Burks
|
55e71c867c
|
Merge pull request #12723 from Security-Onion-Solutions/dougburks-patch-1
FEATURE: Add Events table columns for event.module playbook #12703
|
2024-04-02 10:04:21 -04:00 |
|
|
Doug Burks
|
6c2437f8ef
|
FEATURE: Add Events table columns for event.module playbook #12703
|
2024-04-02 09:55:56 -04:00 |
|
|
Doug Burks
|
261f2cbaf7
|
Merge pull request #12722 from Security-Onion-Solutions/dougburks-patch-1
FEATURE: Add Events table columns for event.module strelka #12716
|
2024-04-02 09:43:15 -04:00 |
|
|
Jason Ertel
|
f083558666
|
break out into sep func
|
2024-04-02 09:42:43 -04:00 |
|
|
Doug Burks
|
505eeea66a
|
Update defaults.yaml
|
2024-04-02 09:39:54 -04:00 |
|
|
Josh Brower
|
1001aa665d
|
Merge pull request #12720 from Security-Onion-Solutions/2.4/detections-defaults
Add default columns
|
2024-04-02 09:21:06 -04:00 |
|
|
DefensiveDepth
|
7f488422b0
|
Add default columns
|
2024-04-02 09:13:27 -04:00 |
|
|
Jason Ertel
|
f17d8d3369
|
analytics
|
2024-04-01 10:59:44 -04:00 |
|
|
Jason Ertel
|
ff777560ac
|
limit col size
|
2024-04-01 10:35:15 -04:00 |
|
|
Jason Ertel
|
2c68fd6311
|
limit col size
|
2024-04-01 10:32:54 -04:00 |
|
|
Jason Ertel
|
c1bf710e46
|
limit col size
|
2024-04-01 10:32:25 -04:00 |
|
|
Jason Ertel
|
9d2b40f366
|
Merge branch '2.4/dev' into jertel/ana
|
2024-04-01 09:50:38 -04:00 |
|
|
Jason Ertel
|
3aea2dec85
|
analytics
|
2024-04-01 09:50:18 -04:00 |
|
 coreyogburn
|
65f6b7022c
|
Merge pull request #12702 from Security-Onion-Solutions/cogburn/yaml-fix
Correct YAML
|
2024-03-29 15:59:34 -06:00 |
|
 Corey Ogburn
|
e5a3a54aea
|
Proper YAML
|
2024-03-29 14:31:43 -06:00 |
|
|
Doug Burks
|
be88dbe181
|
Merge pull request #12700 from Security-Onion-Solutions/dougburks-patch-1
FEATURE: Add individual dashboards for Zeek SSL and Suricata SSL logs…
|
2024-03-29 15:41:14 -04:00 |
|
|
Doug Burks
|
b64ed5535e
|
FEATURE: Add individual dashboards for Zeek SSL and Suricata SSL logs #12699
|
2024-03-29 15:29:38 -04:00 |
|
|
Doug Burks
|
5be56703e9
|
Merge pull request #12698 from Security-Onion-Solutions/dougburks-patch-1
FEATURE: Add Events table columns for zeek ssl and suricata ssl #12697
|
2024-03-29 14:46:39 -04:00 |
|
|
Doug Burks
|
0c7ba62867
|
FEATURE: Add Events table columns for zeek ssl and suricata ssl #12697
|
2024-03-29 14:44:29 -04:00 |
|
|
coreyogburn
|
d9d851040c
|
Merge pull request #12696 from Security-Onion-Solutions/cogburn/manual-sync
New Settings for Manual Sync in Detections
|
2024-03-29 12:43:08 -06:00 |
|
|
Corey Ogburn
|
e747a4e3fe
|
New Settings for Manual Sync in Detections
|
2024-03-29 12:25:03 -06:00 |
|
 reyesj2
|
000d15a53c
|
Kismet integration: TODO Elasticsearch mappings
Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>
|
2024-03-29 13:56:01 -04:00 |
|
|
Doug Burks
|
cc2164221c
|
Merge pull request #12695 from Security-Onion-Solutions/dougburks-patch-1
FEATURE: Add process.command_line to Process Info and Process Ancestry dashboards #12694
|
2024-03-29 13:04:09 -04:00 |
|
|
Doug Burks
|
102c3271d1
|
FEATURE: Add process.command_line to Process Info and Process Ancestry dashboards #12694
|
2024-03-29 12:04:47 -04:00 |
|
|
DefensiveDepth
|
32b8649c77
|
Add more error checking
|
2024-03-28 14:31:02 -04:00 |
|