CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-07 17:52:46 +01:00
Code Issues Packages Projects Releases Wiki Activity
13,422 Commits 24 Branches 119 Tags
3780ed1b4fe2d6187828f43192afeeacda36bccc
Commit Graph

75 Commits

Author SHA1 Message Date
m0duspwnens
9049f9cf03 enabled/disable elastalert via web ui 2023-05-08 15:56:26 -04:00
m0duspwnens
5405bc4e20 handle import node and merge with 2.4/dev 2023-05-05 14:41:26 -04:00
m0duspwnens
47a580d110 fix enabled and disable steno in ui 2023-05-05 13:59:52 -04:00
Mike Reeves
cbd1c05929 Sbin Changes 2023-05-04 10:36:03 -04:00
m0duspwnens
252afa8499 bpf for pcap 2023-03-20 17:10:34 -04:00
m0duspwnens
b526532ab6 use global vars in states 2022-10-11 11:57:15 -04:00
Mike Reeves
9a6fe3e8de Add BPF 2022-09-16 08:36:44 -04:00
m0duspwnens
62f5ee04a4 fix source for steno config 2022-09-15 15:13:40 -04:00
m0duspwnens
52b58ad6ae jinja for steno/pcap 2022-09-15 15:12:40 -04:00
Mike Reeves
2bd9dd80e2 Move In Day 2022-09-07 09:06:25 -04:00
Jason Ertel
eefcc929c2 Update copyright pattern to match other repos 2022-01-24 10:09:23 -05:00
Jason Ertel
7c22f46a55 Update copyright year for 2022 2022-01-24 09:35:29 -05:00
Josh Patterson
19056b9177 Merge pull request #6027 from Security-Onion-Solutions/issue/5955 
Issue/5955
 2021-10-27 15:07:22 -04:00
Mike Reeves
d77328608e Remove port bindings for steno 
Steno runs in host mode so port bindings are not required
 2021-10-26 10:23:33 -04:00
m0duspwnens
d7e5377a44 more requires 2021-10-22 16:46:45 -04:00
Josh Brower
4d307c53e8 Add support for disabling Zeek and Suricata 2021-09-17 13:01:50 -04:00
m0duspwnens
2e277bf487 change container to abesent of pcap is disabled 2021-07-26 10:08:59 -04:00
Mike Reeves
4ef38f8d04 Add EPS and RAID status collection for telegraf 2021-01-25 19:14:46 -05:00
m0duspwnens
b693373d8d change how we allow or disallow states to be run https://github.com/Security-Onion-Solutions/securityonion/issues/2679 2021-01-20 15:09:53 -05:00
m0duspwnens
2e278586f2 disable steno in so-status for import node 2020-12-16 13:03:24 -05:00
m0duspwnens
96b72d46be show steno,zeek,suricata as disabled in so-status on import node 2020-12-16 12:01:48 -05:00
m0duspwnens
65334d15ea https://github.com/Security-Onion-Solutions/securityonion/issues/2040 2020-11-24 09:33:38 -05:00
m0duspwnens
5a95159ec3 just use so-status.conf for containers to fix salt warning https://github.com/Security-Onion-Solutions/securityonion/issues/1681 2020-11-11 11:38:48 -05:00
m0duspwnens
1fca5e65df redo how containers get added to so-status https://github.com/Security-Onion-Solutions/securityonion/issues/1681 2020-11-10 15:31:47 -05:00
m0duspwnens
172ca9aa8d add option to enable or disable to steno docker container - https://github.com/Security-Onion-Solutions/securityonion/issues/1601 2020-10-22 10:52:34 -04:00
m0duspwnens
09cc8ae1fb fail the state if it isnt in top 2020-09-09 16:48:50 -04:00
m0duspwnens
a229ae82ce only allow state to run if it is in top for the node 2020-09-02 16:15:52 -04:00
m0duspwnens
35027e32b3 dont constantly run steno or suricata containers for import node 2020-08-14 14:43:37 -04:00
Mike Reeves
24ed92c9dc minio and change to global 2020-08-04 15:54:03 -04:00
Jason Ertel
d75d64c8ed Mount imported pcap dirs into sensoroni container for imported PCAP pivots 2020-07-13 21:03:47 -04:00
Jason Ertel
8f66a27f07 Refactor image repository to a single variable 2020-07-13 18:26:43 -04:00
m0duspwnens
5ca3ecf4bd fix reference to master grain 2020-07-09 15:42:39 -04:00
m0duspwnens
3cf31e2460 https://github.com/Security-Onion-Solutions/securityonion/issues/404 2020-07-09 11:27:06 -04:00
Jason Ertel
d7693f9b55 Expose pcap dir to sensoroni for epoch discovery 2020-06-22 08:27:43 -04:00
Jason Ertel
1ee3625f61 Ensure certs dir is group readable by socore since Sensoroni process will need to read the client key 2020-06-21 15:46:36 -04:00
Jason Ertel
81ed656ba0 Bind both steno and sensoroni processes to host network 2020-06-21 10:50:10 -04:00
Jason Ertel
76e3118bd3 Split Sensoroni and Stenographer executables into separate images 2020-06-21 08:33:09 -04:00
m0duspwnens
766b56a944 update dockers to 1.2.2 2020-04-23 10:11:26 -04:00
Mike Reeves
d9e27a5444 Update Versions 2020-04-15 15:37:59 -04:00
Jason Ertel
7529144635 secure config files 2020-04-10 17:27:50 -04:00
Josh Brower
f9e07709f2 bpf fix 2020-02-18 16:36:20 -05:00
Josh Brower
86689edf24 Merge branch 'dev' into feature/bpf-steno 2020-01-28 18:18:17 -05:00
Josh Brower
ae087c5552 Steno BPF tweaks 2020-01-28 16:53:19 -05:00
Mike Reeves
de369494ed Merge pull request #252 from Security-Onion-Solutions/feature/bpf-steno 
Steno BPF - cleanup & simplify
 2020-01-28 10:18:23 -05:00
Wes Lambert
b995b09d52 Update version in all state files 2020-01-28 14:59:53 +00:00
Josh Brower
7875436efd Steno BPF - cleanup & simplify 2020-01-25 11:27:10 -05:00
Josh Brower
3262854f4e Steno - fix error name 2020-01-24 04:30:06 -05:00
Josh Brower
78527ab87c Steno - BPF Config 2020-01-24 04:20:49 -05:00
Mike Reeves
ae55b59048 Switch to using images in registry 2020-01-14 10:11:26 -05:00
Mike Reeves
f3c204c790 Disable Beats input - Update sensoroni version 2019-11-06 13:37:42 -05:00