CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-08 02:02:50 +01:00
Code Issues Packages Projects Releases Wiki Activity
15,376 Commits 24 Branches 119 Tags
34c3a58efe651b6b04f5890f6d2d0b48494cb15e
Commit Graph

15376 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
m0duspwnens
2643da978b those functions in so-functions 2024-05-13 11:51:10 -04:00
m0duspwnens
649f52dac7 create_local_directories in soup too 2024-05-13 10:37:56 -04:00
Mike Reeves
927fe91f25 Merge pull request #13000 from Security-Onion-Solutions/soupz 
Backup Suricata for migration
 2024-05-13 10:12:34 -04:00
Mike Reeves
9d6f6c7893 Update soup 2024-05-13 10:09:35 -04:00
Mike Reeves
28e40e42b3 Update soc_soc.yaml 2024-05-13 09:58:32 -04:00
Mike Reeves
6c71c45ef6 Update soup 2024-05-13 09:55:57 -04:00
Mike Reeves
641899ad56 Backup Suricata for migration and remove advanced from reverselookups 2024-05-13 09:50:14 -04:00
Doug Burks
d120326cb9 Merge pull request #12999 from Security-Onion-Solutions/dougburks-patch-1 
FEATURE: Add more fields to the SOC Dashboards URL for so-import-pcap #12972
 2024-05-13 09:20:01 -04:00
Doug Burks
a4f2d8f327 Merge pull request #12998 from Security-Onion-Solutions/dougburks-patch-2 
Update README.md to reference new screenshots for 2.4.70
 2024-05-13 08:42:33 -04:00
Doug Burks
ae323cf385 Update README.md to include new Detections screenshot 2024-05-13 08:34:44 -04:00
Doug Burks
788c31014d Update README.md to reference new screenshots for 2.4.70 2024-05-13 08:30:48 -04:00
Jason Ertel
154dc605ef Merge pull request #12994 from Security-Onion-Solutions/jertel/testcy 
support upgrade tests
 2024-05-10 16:57:19 -04:00
Jason Ertel
2a0e33401d support upgrade tests 2024-05-10 16:54:50 -04:00
Josh Patterson
79b4d7b6b6 Merge pull request #12992 from Security-Onion-Solutions/issue/12991 
Fix IDH node
 2024-05-10 12:43:09 -04:00
m0duspwnens
986cbb129a pkg not file 2024-05-10 12:33:56 -04:00
m0duspwnens
950c68783c add pkg policycoreutils-python-utils to idh node 2024-05-10 11:46:00 -04:00
Doug Burks
cec75ba475 Merge pull request #12989 from Security-Onion-Solutions/dougburks-patch-2 
FIX: so-index-list typo #12988
 2024-05-10 08:06:29 -04:00
Doug Burks
26cb8d43e1 FIX: so-index-list typo #12988 2024-05-10 08:01:56 -04:00
Doug Burks
a1291e43c3 FIX: so-index-list typo #12988 2024-05-10 07:58:13 -04:00
Jason Ertel
45fd07cdf8 Merge pull request #12987 from Security-Onion-Solutions/jertel/testcy 
Add quick action to find related alerts for a detection
 2024-05-09 18:08:08 -04:00
Jason Ertel
fecd674fdb Add quick action to find related alerts for a detection 2024-05-09 17:55:41 -04:00
Jason Ertel
dff2de4527 Merge pull request #12984 from Security-Onion-Solutions/jertel/testcy 
tests will retry on any rule import failure
 2024-05-09 15:50:37 -04:00
Jason Ertel
19e1aaa1a6 exclude detection rule errors 2024-05-09 15:45:33 -04:00
Jason Ertel
074d063fee tests will retry on any rule import failure 2024-05-09 14:52:58 -04:00
Wes
6ed82d7b29 Remove YARA download in setup 2024-05-09 17:27:46 +00:00
Wes
ea4cf42913 Remove old YARA update script 2024-05-09 17:26:54 +00:00
Wes
8a34f5621c Remove old YARA download script 2024-05-09 17:26:45 +00:00
Wes
823ff7ce11 Remove exclusions and repos 2024-05-09 17:03:13 +00:00
Josh Patterson
fb8456b4a6 Merge pull request #12983 from Security-Onion-Solutions/fix/strelka 
fix strelka errors
 2024-05-09 12:04:40 -04:00
m0duspwnens
c864fec70c allow strelka.manager to run on standalone 2024-05-09 11:53:50 -04:00
m0duspwnens
a74fee4cd0 strelka compiled rules 2024-05-09 11:26:02 -04:00
m0duspwnens
3a99624eb8 seperate manager states for strelka 2024-05-09 10:03:02 -04:00
Mike Reeves
656bf60fda Merge pull request #12973 from Security-Onion-Solutions/TOoSmOotH-patch-5 
Update config.sls
 2024-05-08 16:42:19 -04:00
weslambert
cdc47cb1cd Merge pull request #12975 from Security-Onion-Solutions/fix/strelka_watch 
Use state
 2024-05-08 16:39:49 -04:00
weslambert
01a68568a6 Use state 2024-05-08 16:37:13 -04:00
reyesj2
2ad87bf1fe merge 2.4/dev 
Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>
 2024-05-08 16:30:45 -04:00
reyesj2
eca2a4a9c8 Logstash consumer threads should match topic partition count 
- Default is set to 3. If there are too many consumer threads it may lead to idle logstash worker threads and could require decreasing this value to saturate workers

Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>
 2024-05-08 16:17:09 -04:00
reyesj2
dff609d829 Add basic read-only metric collection from Kafka 
Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>
 2024-05-08 16:13:09 -04:00
weslambert
b916465b06 Merge pull request #12974 from Security-Onion-Solutions/fix/strelka_yara 
Account for 0 active rules and change watch
 2024-05-08 15:59:20 -04:00
weslambert
0567b93534 Remove mode 2024-05-08 15:39:59 -04:00
Mike Reeves
ad9fdf064b Update config.sls 2024-05-08 15:24:29 -04:00
Wes
77e2117051 Account for 0 active rules and change watch 2024-05-08 18:47:52 +00:00
Doug Burks
5b7b6e5fb8 FEATURE: Add more fields to the SOC Dashboards URL for so-import-pcap #12972 2024-05-08 14:00:23 -04:00
Doug Burks
c7845bdf56 Merge pull request #12970 from Security-Onion-Solutions/dougburks-patch-1 
FIX: Adjust so-import-pcap so that suricata works when it is pcapengine #12969
 2024-05-08 13:28:05 -04:00
Doug Burks
5a5a1e86ac FIX: Adjust so-import-pcap so that suricata works when it is pcapengine #12969 2024-05-08 13:26:36 -04:00
Josh Patterson
796eefc2f0 Merge pull request #12965 from Security-Onion-Solutions/orchit 
searchnode installation improvements
 2024-05-08 10:24:33 -04:00
m0duspwnens
1862deaf5e add copyright 2024-05-08 10:14:08 -04:00
m0duspwnens
0d2e5e0065 need repo and docker first 2024-05-08 09:50:01 -04:00
m0duspwnens
5dc098f0fc remove test file 2024-05-08 08:54:24 -04:00
Mike Reeves
af681881e6 Merge pull request #12963 from Security-Onion-Solutions/TOoSmOotH-patch-4 
Make the url list read only
 2024-05-08 08:45:34 -04:00