CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-22 08:53:06 +01:00
Code Issues Packages Projects Releases Wiki Activity
8,397 Commits 18 Branches 120 Tags
2ffb723bbd77c3669687b13a42d8029e8b2d98a7
Commit Graph

4922 Commits

Author SHA1 Message Date
Doug Burks
aa7f927ffd Hunt - improve x509 queries #1400 2020-09-27 07:17:46 -04:00
Jason Ertel
68f18da832 Add alert query toggle filters for ack'd and escalated alerts 2020-09-25 17:03:42 -04:00
William Wernert
dc330a774e Exit so-zeek-logs if user cancels 2020-09-25 16:30:16 -04:00
Doug Burks
11b200e9c0 Hunt - remove SMTP fields #1397 2020-09-25 14:17:14 -04:00
Doug Burks
20a56d0831 Hunt - add network.community_id column to Events table for more data types #1396 2020-09-25 13:18:28 -04:00
weslambert
b3f9ee3b34 dev nullify so-config-backup cron job 2020-09-24 20:59:42 -04:00
Jason Ertel
c0be252f9f SOC config adjustments for alerting 2020-09-24 16:37:27 -04:00
Mike Reeves
e30958b9ec Airgap SOUP changes 2020-09-24 11:41:02 -04:00
m0duspwnens
d9005c157d fix common salt package name for salt.master state for ubuntu - https://github.com/Security-Onion-Solutions/securityonion/issues/1388 2020-09-24 11:26:58 -04:00
Doug Burks
62dbe425a6 Hunt - fix x509 eventFields #1387 2020-09-24 07:52:46 -04:00
Doug Burks
2b8b8e2f40 Hunt - fix file eventFields #1386 2020-09-24 07:44:28 -04:00
Doug Burks
60daacd6dc Hunt - fix DHCP eventFields #1385 2020-09-24 07:34:29 -04:00
weslambert
5b93c40ce4 Add back missing # sign 2020-09-23 21:34:10 -04:00
Jason Ertel
2f7c0c34e6 Support backslashes in SOC passwords 2020-09-23 10:09:21 -04:00
Wes Lambert
71734ddc0a Add cron job to common state for daily config backup 2020-09-23 13:55:32 +00:00
Wes Lambert
57732b360e Add config backup script 2020-09-23 13:47:14 +00:00
Josh Brower
8bb527b4f1 fix docker_clean syntax 2020-09-21 19:41:39 -04:00
Jason Ertel
694635a38f Add pivot to hunt as a new alerts quick action 2020-09-21 17:10:03 -04:00
Mike Reeves
0f1b92cea9 Update so-rule-update 2020-09-21 15:40:38 -04:00
Mike Reeves
d56a9e1f86 Upgrade to GA including Docker Cleanup 2020-09-21 13:14:06 -04:00
Josh Brower
3cd11807cd Add so-user-list 2020-09-21 10:02:10 -04:00
Jason Ertel
8f4a6df53a Add event.module to default alert query 2020-09-21 09:06:56 -04:00
Jason Ertel
fc51c2aef4 Group by community ID on second alert quick query 2020-09-19 08:39:01 -04:00
Jason Ertel
5b38acb64b Add alerting configuration for soc container 2020-09-18 13:51:23 -04:00
m0duspwnens
40f6fed2a5 add so-fleet so standalone fleet gets the redis pki 2020-09-18 13:40:27 -04:00
Jason Ertel
1610445b4e Validate password before creating user 2020-09-18 08:29:30 -04:00
Doug Burks
57e45308af Fix pivot from TheHive to Kibana #1362 2020-09-17 08:05:55 -04:00
Mike Reeves
7415c7fe81 Fix dashboard script 2020-09-16 14:55:32 -04:00
Mike Reeves
eac58f8f34 Merge pull request #1346 from Security-Onion-Solutions/rc3upgrade 
Rc3upgrade
 2020-09-16 14:29:53 -04:00
Mike Reeves
52072e0484 Update soup 2020-09-16 14:08:48 -04:00
Mike Reeves
5910fe642c Fix Update XML 2020-09-16 13:08:21 -04:00
Mike Reeves
a0f64440e0 Update changes.json 2020-09-16 13:06:26 -04:00
Wes Lambert
44ef935d65 Add All Logs for Connections dashboard 2020-09-16 15:55:28 +00:00
Mike Reeves
3e0e41be32 Update changes.json 2020-09-16 11:41:21 -04:00
Mike Reeves
1801361cf8 Update changes.json 2020-09-16 11:40:05 -04:00
Wes Lambert
bd8d2fc271 Kibana dashboard updates 2020-09-16 15:17:26 +00:00
m0duspwnens
4ee3e1ed01 fix sensor mainip logic for strelka yaml files 2020-09-16 10:29:23 -04:00
Josh Patterson
b7e41b53cb Merge pull request #1352 from Security-Onion-Solutions/fix/es_templates 
fix MYIP
 2020-09-16 10:12:27 -04:00
m0duspwnens
3fe276dbb5 fix MYIP 2020-09-16 10:11:39 -04:00
Josh Patterson
66f21c4568 Merge pull request #1350 from Security-Onion-Solutions/fix/es_templates 
change how we determine the ip. run script on search and import nodes as well
 2020-09-16 09:54:16 -04:00
Josh Brower
d5fd15962c Merge pull request #1351 from Security-Onion-Solutions/bugfix/tcpreplay 
Fix so-test
 2020-09-16 09:52:08 -04:00
Josh Brower
dd2d736bc1 Fix so-test 2020-09-16 09:51:38 -04:00
m0duspwnens
dd56d7d2d1 change how we determine the ip. run script on search and import nodes as well 2020-09-16 09:48:38 -04:00
weslambert
fbf037f460 Ensure templates are loaded for heavy nodes 2020-09-15 17:14:06 -04:00
Josh Brower
46a1369e81 Merge pull request #1347 from Security-Onion-Solutions/bugfix/tcpreplay 
Add so-test
 2020-09-15 13:20:56 -04:00
Josh Brower
2516429834 Add so-test 2020-09-15 13:14:00 -04:00
Mike Reeves
fc8ffd2080 Made the version update more reliable 2020-09-15 11:09:01 -04:00
Mike Reeves
ee4b35f2e4 Rename zeekversion.map.jinja to mdengine.map.jinja 2020-09-14 22:30:10 -04:00
Mike Reeves
c31d998061 Disk Space Check Final Final Final 2020-09-14 20:17:28 -04:00
Mike Reeves
62a8e676d9 Disk Space Check Final Final 2020-09-14 20:11:04 -04:00