CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-01-20 07:01:31 +01:00
Code Issues Packages Projects Releases Wiki Activity
16,981 Commits 25 Branches 121 Tags
348f9dcaec75bcdbbdfa47dd7d2a86f4d73316df
Commit Graph

10863 Commits

Author SHA1 Message Date
Jason Ertel
5625771ffb es version shift 2024-09-05 13:16:28 -04:00
Jason Ertel
c85e5643db es version shift 2024-09-05 13:14:45 -04:00
m0duspwnens
21473aba9e Merge remote-tracking branch 'origin/2.4/dev' into upgrade/docker 2024-09-05 10:23:50 -04:00
m0duspwnens
5a1d61a042 ref es version 2024-09-05 08:45:44 -04:00
m0duspwnens
6581979506 retry suricata rule reload 2024-09-05 07:33:56 -04:00
m0duspwnens
df14cbad44 fix calls to get_elastic_agent_vars 2024-09-04 17:43:49 -04:00
m0duspwnens
72f3eaa8f6 should not have changed this, so changing it back 2024-09-04 16:42:19 -04:00
m0duspwnens
f106191e72 fix image for so-elasticsearch container 2024-09-04 16:01:24 -04:00
m0duspwnens
7d9b3b1f28 use correct sig 2024-09-04 15:36:17 -04:00
Josh Patterson
71f6b44c0c Merge pull request #13607 from Security-Onion-Solutions/esver 
use Elasticsearch version for some containers
 2024-09-04 13:30:07 -04:00
m0duspwnens
2b807c2409 update comment 2024-09-04 10:33:14 -04:00
m0duspwnens
0af2e85f91 update annotation. 2024-09-04 10:32:11 -04:00
m0duspwnens
2394488c92 update docker 27.2.0-1 and containerd.io 1.7.21 2024-09-04 09:38:17 -04:00
m0duspwnens
cfdc8ede90 fix es version logic 2024-09-03 16:49:39 -04:00
m0duspwnens
83aa4c9a53 fix awk 2024-09-03 15:22:25 -04:00
m0duspwnens
c20ac6c2d8 fix if and awk 2024-09-03 15:20:49 -04:00
Josh Brower
7311773c20 Merge pull request #13598 from Security-Onion-Solutions/2.4/main 
Hotfix-2.4.100.20240903
 2024-09-03 13:13:16 -04:00
m0duspwnens
6d7b76115f use the version that is longest for the loop 2024-09-03 13:00:37 -04:00
m0duspwnens
a920adcf7f handle ver1 missing segment 2024-09-03 12:53:53 -04:00
m0duspwnens
529844eb36 update so-image-common to use es version for es containers 2024-09-03 12:38:21 -04:00
Mike Reeves
5811ee5897 Update so-suricata-reload-rules 2024-09-01 10:39:42 -04:00
weslambert
a7de6993f9 Add so-system-mappings 2024-08-30 16:11:41 -04:00
Mike Reeves
afcb30be03 Threhsolds require a restart 2024-08-30 09:43:35 -04:00
Mike Reeves
b9f817201c Add thresholds to the reload list 2024-08-30 09:15:25 -04:00
m0duspwnens
aaa48f6a1a support for fleet, heavynode, receiver, idh 2024-08-29 13:41:58 -04:00
Mike Reeves
edce5186b9 Add support to relaod rules instead of restart 2024-08-29 12:55:06 -04:00
m0duspwnens
0766a5da91 change to LSHEAP. LSHOSTNAME from id grain 2024-08-28 16:59:24 -04:00
DefensiveDepth
89a1e2500e Exclude logstash startup errors 2024-08-28 16:50:11 -04:00
m0duspwnens
267d1a27ac use cron instead of schedule for vm init. ensure vm shutdown 2024-08-28 15:52:14 -04:00
m0duspwnens
f5e6e49075 set initial schedule for vm to deal with possible manager firewall state.apply delay 2024-08-28 14:12:23 -04:00
m0duspwnens
d44ce0a070 add so-salt-cloud as salt-cloud wrapper 2024-08-28 12:41:38 -04:00
m0duspwnens
9ddccba780 LSHEAP and pipeline workers for virt 2024-08-28 10:09:42 -04:00
Jason Ertel
394ce29ea3 Merge pull request #13565 from Security-Onion-Solutions/jertel/an2 
move custom alerters to subgroup; avoid false positives on log check
 2024-08-28 09:39:44 -04:00
Jason Ertel
f19a35ff06 move custom alerters to subgroup; avoid false positives on log check 2024-08-28 09:32:25 -04:00
weslambert
8943e88ca8 Merge pull request #13562 from Security-Onion-Solutions/fix/evtx_pipelines 
Update pipeline version for EVTX
 2024-08-27 13:12:10 -04:00
Jason Ertel
18774aa0a7 Merge pull request #13561 from Security-Onion-Solutions/jertel/an2 
annotation updates
 2024-08-27 13:09:20 -04:00
weslambert
af80a78406 Update pipeline version 2024-08-27 13:08:35 -04:00
Jason Ertel
6043da4424 annotation updates 2024-08-27 13:04:43 -04:00
m0duspwnens
301894f6e8 script to fix libvirt in salt 3006.2+ 2024-08-27 09:42:11 -04:00
m0duspwnens
a425a7fda2 update docker modules for 3006.9 2024-08-27 09:37:23 -04:00
m0duspwnens
21c3835322 salt3006.9, redo reactors, use virt.shutdown 2024-08-27 09:25:40 -04:00
DefensiveDepth
726df310ee Add context 2024-08-26 16:15:56 -04:00
DefensiveDepth
b952728b2c Fix policy load 2024-08-26 15:57:21 -04:00
weslambert
1cac2ff1d4 Merge pull request #13554 from Security-Onion-Solutions/fix/ilm_soc_logs 
FIX: Add so-soc-logs
 2024-08-26 12:54:03 -04:00
weslambert
a93c77a1cc Merge pull request #13548 from Security-Onion-Solutions/fix/global_custom 
Use global@custom from common pipeline
 2024-08-26 10:42:12 -04:00
weslambert
dd09f5b153 Add so-soc-logs 2024-08-26 10:32:27 -04:00
Josh Patterson
4c10282f40 add es version to annotation 2024-08-26 09:37:19 -04:00
DefensiveDepth
c575e02fbb Use correct name 2024-08-23 13:52:20 -04:00
weslambert
e96a0108c3 Add global@custom 2024-08-23 13:05:34 -04:00
DefensiveDepth
e86fce692c Merge remote-tracking branch 'origin/2.4/dev' into 2.4/soupchanges 2024-08-23 11:44:39 -04:00