CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-22 08:53:06 +01:00
Code Issues Packages Projects Releases Wiki Activity
7,859 Commits 18 Branches 120 Tags
42ba9888d7e368fbdee084b58d0fd8efa84063ee
Commit Graph

4523 Commits

Author SHA1 Message Date
Wes Lambert
723172bc1f Add path_unmatch for data.port so it is not mapped as integer 2021-07-14 13:45:09 +00:00
Wes Lambert
323b5d6694 Add dynamic mapping for wazuh 2021-07-14 13:43:34 +00:00
Wes Lambert
441cd3fc59 Move Wazuh-specific data to wazuh.data 2021-07-14 13:42:51 +00:00
William Wernert
c1523c4936 Merge pull request #4782 from Security-Onion-Solutions/feature/check-local-mods 
Add jinja raw tag
 2021-07-13 08:58:25 -04:00
William Wernert
ca2b24f735 Add jinja raw tag 2021-07-13 08:46:57 -04:00
doug
e6f9592cde FIX: Suricata dns.response.code needs to be renamed to dns.response.code_name #4770 2021-07-12 13:24:21 -04:00
William Wernert
222d79bf53 Merge pull request #4774 from Security-Onion-Solutions/feature/check-local-mods 
Compare local files to their defaults to check for potentially breaking changes
 2021-07-12 12:00:18 -04:00
weslambert
a895270bc8 Allow setting Filebeat logging level in pillar 2021-07-12 10:27:43 -04:00
William Wernert
f3ecdf21bf Revert "Add newline to local modifications warning" 
This reverts commit ff656365d2.
 2021-07-12 09:28:24 -04:00
William Wernert
ff656365d2 Add newline to local modifications warning 2021-07-12 09:22:22 -04:00
William Wernert
ea7c09bb00 Merge branch 'dev' into feature/check-local-mods 2021-07-12 09:20:10 -04:00
William Wernert
90970f97e8 Add function to check if files copied to local have been changed in default 2021-07-09 15:44:27 -04:00
Jason Ertel
08ba4fdbee Update Kibana saved objects to 7.13.3 2021-07-08 16:34:16 -04:00
Jason Ertel
0c079edc1a Reverse proxy requests to playbook, soctopus, and nodered 2021-07-08 14:27:16 -04:00
Josh Patterson
12b7fd3ab4 whitespace 2021-07-07 14:48:07 -04:00
Josh Patterson
c32b5b5429 whitespace 2021-07-07 14:47:16 -04:00
Josh Patterson
ea2a748dba whitespace 2021-07-07 14:44:44 -04:00
Josh Patterson
c1d7d8c55a add new line 2021-07-07 14:43:20 -04:00
Josh Patterson
a3c58d8445 remove heavy soup 2021-07-07 14:42:38 -04:00
Josh Patterson
cfc5c2aef6 do ; instead of && 2021-07-07 14:32:57 -04:00
Josh Patterson
313260a0c5 add heavy action in soup for ssl redis, es, ls, fb 2021-07-07 14:22:45 -04:00
m0duspwnens
5eab57e500 remove soup control of heavy 2021-07-07 13:58:52 -04:00
m0duspwnens
98fb5109d7 tell heavys to update ssl and restart containers for HEAVYNODE_SSL_LOGSTASH_REDIS_PIPELINES hotfix 2021-07-07 12:05:38 -04:00
m0duspwnens
9c2ead16cc common name changes, allow cert to be managed regardless of expire date for heavy node 2021-07-07 10:22:37 -04:00
m0duspwnens
0627ca2fc2 use heavynode hostname for certs if heavynode. changes to logstash pipeline for redis if heavynode 2021-07-06 15:32:39 -04:00
weslambert
ce0b064972 Add conditional for heavynode for redis and elasticsearch 2021-07-06 14:21:29 -04:00
weslambert
2f3f04e4ca Change from nodename to host 2021-07-06 14:18:39 -04:00
weslambert
2e91f27336 Add conditional for heavynode 2021-07-06 14:17:49 -04:00
weslambert
10b1829830 Add conditional for heavynode 2021-07-06 14:16:34 -04:00
weslambert
4946f32d88 Add extra_hosts entry for local instance when running as heavy node 2021-07-06 14:14:58 -04:00
Mike Reeves
22aa695508 Update telegraf.conf 2021-07-02 09:47:31 -04:00
Mike Reeves
693f455862 ECS hotfix 2021-07-02 08:55:49 -04:00
m0duspwnens
21c9c7b8f4 only render main script if a manager type node 2021-07-01 07:56:45 -04:00
m0duspwnens
108fb12612 s/Migrating/Downsampling 2021-06-30 17:53:09 -04:00
m0duspwnens
eb8a030966 reset vars in jinja loop 2021-06-30 17:41:38 -04:00
m0duspwnens
9235bb35a1 fix jinja whatspace and add defaults 2021-06-30 17:30:33 -04:00
m0duspwnens
7b281abf0c migrate script now goes through each day and measurement 2021-06-30 17:21:18 -04:00
Mike Reeves
26ff50f85c Merge pull request #4659 from Security-Onion-Solutions/kilo 2021-06-30 16:34:16 -04:00
William Wernert
4dbb869952 Fix typo 2021-06-30 16:21:09 -04:00
Jason Ertel
f3041a8d7e Ensure all curl's to Kibana are properly sessioned and/or authenticated depending on elastic auth toggle 2021-06-30 16:09:08 -04:00
William Wernert
4109cdec53 Refactor so-docker-prune to prevent exceptions when removing images 
* Prune containers at beginning of script so stopped containers using old images are removed
* Add force=True arg to remove() call to ensure an image is still deleted on the off chance a container is still using that image
* Add exception handling to continue removing containers instead of exiting if the script fails to remove a container
 2021-06-30 15:35:01 -04:00
weslambert
fcbacd473d Add ELK, redis 2021-06-30 09:34:56 -04:00
weslambert
06d77d9972 Update so-common-template.json 2021-06-30 09:31:32 -04:00
m0duspwnens
ada729087d add script to drop autogen, rename so-influxdb-migrate to so-influxdb-downsample 2021-06-30 08:14:52 -04:00
m0duspwnens
aa47a72656 source common to require root 2021-06-30 07:25:51 -04:00
m0duspwnens
149f837223 Merge remote-tracking branch 'remotes/origin/dev' into issue/4609 2021-06-29 22:20:28 -04:00
m0duspwnens
37d6529ae0 fix load panel for manager graf 2021-06-29 22:18:17 -04:00
m0duspwnens
8d3ae65e04 fix load graf standalone 2021-06-29 22:13:51 -04:00
m0duspwnens
649e539ca6 add trends to sensor dash 2021-06-29 22:08:29 -04:00
m0duspwnens
45e90750a0 add trends for searchnode grafs 2021-06-29 21:37:20 -04:00