CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity
12,684 Commits 24 Branches 119 Tags
304830d2ee479c32899909b590d52fd50b6597e9
Commit Graph

12684 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
m0duspwnens
304830d2ee remove old rules prior to copy 2023-07-11 10:20:04 -04:00
m0duspwnens
d7285d69a7 include *.yara 2023-07-11 09:59:13 -04:00
m0duspwnens
f8ed2e6e8e make parent dirs 2023-07-10 16:11:45 -04:00
m0duspwnens
f22c61a0a2 use su instead of runuser since logCmd has issues with runuser 2023-07-10 15:19:41 -04:00
m0duspwnens
5069d1163c only *.yar files 2023-07-10 14:36:34 -04:00
m0duspwnens
1f8b7bda89 fix output_dir var 2023-07-10 13:39:31 -04:00
m0duspwnens
59233d6550 use full path 2023-07-10 11:43:56 -04:00
m0duspwnens
1ac72e5b24 ensure /nsm/rules/yara directory exists 2023-07-10 11:10:37 -04:00
m0duspwnens
47b2481cdd nothing in strelka/tools/sbin_jinja to file.recurse 2023-07-10 10:29:19 -04:00
m0duspwnens
fa933d3f53 use file_mode 2023-07-10 10:26:30 -04:00
m0duspwnens
f4dc73a206 yara download and update 2023-07-10 09:42:37 -04:00
m0duspwnens
6a5ff04804 remove unneeded function 2023-07-07 16:45:51 -04:00
m0duspwnens
8be5082b60 yara scripts 2023-07-07 16:43:26 -04:00
Josh Patterson
2785587840 Merge pull request #10714 from Security-Onion-Solutions/remove_so-logstash-get-unparsed 
remove so-logstash-get-unparsed, use so-redis-count instead
 2023-07-07 09:53:54 -04:00
weslambert
9f95306458 Merge pull request #10708 from Security-Onion-Solutions/fix/elasticsearch_templates_hn 
Fix heavy node Elasticsearch template load
 2023-07-07 09:52:54 -04:00
m0duspwnens
55bed0771b remove so-logstash-get-unparsed, use so-redis-count instead 2023-07-07 09:52:21 -04:00
Wes
0b5ee49873 Fix inverted logic for component template 2023-07-06 20:46:35 +00:00
Jason Ertel
1646459052 Merge pull request #10707 from Security-Onion-Solutions/kilo 
add default pillar file
 2023-07-06 14:49:40 -04:00
Jason Ertel
8ec003d89f add default pillar file 2023-07-06 14:47:21 -04:00
Jason Ertel
224f0606c2 Merge pull request #10706 from Security-Onion-Solutions/kilo 
incorporate features pillar
 2023-07-06 14:04:12 -04:00
Wes
910125f13a Restructure logic 2023-07-06 17:49:06 +00:00
Jason Ertel
5eca1acbeb incorporate features pillar 2023-07-06 13:24:45 -04:00
Wes
d551faeb16 Heavy node template considerations 2023-07-06 17:19:28 +00:00
Josh Patterson
6a6afeef75 Merge pull request #10704 from Security-Onion-Solutions/patch/x509_v2 
Patch/x509 v2
 2023-07-06 11:43:33 -04:00
m0duspwnens
869f60ccaa cipher deprecated for x509_+v2 2023-07-06 10:51:44 -04:00
m0duspwnens
12c82d2812 bits deprecation to keysize 2023-07-06 10:49:32 -04:00
m0duspwnens
a2b50c6d40 remove quote 2023-07-06 10:25:19 -04:00
m0duspwnens
ab7ae6cddd fix cp for x509_v2.py 2023-07-06 10:17:14 -04:00
m0duspwnens
7a9a12ae3d fix cp for x509_v2.py 2023-07-06 10:03:12 -04:00
m0duspwnens
b49a296276 we can remove the unless in ssl state since x509_v2 is patched 2023-07-06 09:44:58 -04:00
Josh Patterson
9b9321d23a Merge pull request #10698 from Security-Onion-Solutions/issue/10468 
disable salt schedule after highstate then enable later in setup
 2023-07-05 14:56:31 -04:00
m0duspwnens
1922ad95d5 disable salt schedule after highstate then enable later in setup 2023-07-05 13:43:54 -04:00
Josh Patterson
9de8814412 Merge pull request #10692 from Security-Onion-Solutions/issue/10545 
Issue/10545
 2023-07-03 11:05:55 -04:00
weslambert
d31ea4097d Merge pull request #10683 from Security-Onion-Solutions/fix/kibana_http_search 
Kibana dashboard changes
 2023-06-30 17:17:37 -04:00
Wes
c277b7acfa Change Zeek file from evet dataset to tags 2023-06-30 20:24:10 +00:00
m0duspwnens
97a9e0989d Merge remote-tracking branch 'origin/2.4/dev' into issue/10545 2023-06-30 15:46:41 -04:00
Wes
6bdccec6b1 Add asterisk back to Modbus search 2023-06-30 19:01:53 +00:00
m0duspwnens
35945ed224 create local logrotate pillar dir 2023-06-30 14:43:00 -04:00
m0duspwnens
7319d7ae9b replace . with _x_ 2023-06-30 14:18:20 -04:00
Wes
8b38cbe8cf Fix Modbus since the previous fix was reverted 2023-06-30 17:38:05 +00:00
Wes
35ea084466 Update from exported saved objects again 2023-06-30 16:55:00 +00:00
Jason Ertel
c89582ffb6 Merge pull request #10685 from Security-Onion-Solutions/kilo 
remove use of pipe
 2023-06-30 12:23:48 -04:00
Jason Ertel
d6db94a4d4 reset ver 2023-06-30 12:11:32 -04:00
Wes
e2acf027a9 Update from exported saved objects 2023-06-30 16:01:50 +00:00
m0duspwnens
d6d8ba7479 Merge remote-tracking branch 'origin/2.4/dev' into issue/10545 2023-06-30 11:29:25 -04:00
m0duspwnens
41a4321b03 configure logrotate through soc 2023-06-30 11:26:55 -04:00
Jason Ertel
2ae049071d Merge branch '2.4t/dev' into kilo 2023-06-30 11:10:01 -04:00
Jason Ertel
e82df53997 switch version to kilo 2023-06-30 11:08:42 -04:00
Wes
273e78da94 Modbus dashboard - use asterisk 2023-06-30 15:03:20 +00:00
Wes
446376395e Modbus dashboard - use tags 2023-06-30 13:56:08 +00:00