CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 17:22:49 +01:00
Code Issues Packages Projects Releases Wiki Activity
13,443 Commits 24 Branches 119 Tags
47e611682a5849c08ad93e2170567c658fd64b7c
Commit Graph

910 Commits

Author SHA1 Message Date
Wes
cf19c8f8c2 Remove templates 2023-09-05 13:43:41 +00:00
Wes
0fed757b11 Add entropy mapping 2023-08-31 15:10:27 +00:00
Wes
1a3b3b21fb Change entropy value syntax 2023-08-31 15:09:19 +00:00
weslambert
d090852895 Correct fortigate template name 2023-08-30 15:40:40 -04:00
weslambert
706a6e2d56 Make sure a data stream is created for syslog 2023-08-30 08:34:04 -04:00
weslambert
d2063c7e11 Add auditd reference back 2023-08-29 11:14:49 -04:00
weslambert
f118e25e8c Add Apache references 2023-08-29 11:00:31 -04:00
weslambert
d40bbf6b09 Add Apache templates 2023-08-29 10:59:40 -04:00
Jason Ertel
bdb88cc87b Merge pull request #11161 from Security-Onion-Solutions/jertel/alts 
use consistent cert dir and reduce jinja complexity
 2023-08-24 11:18:34 -04:00
Wes
d2d0d53eef Change order 2023-08-23 20:20:44 +00:00
Wes
31a49268cb Add o365 and okta 2023-08-23 20:20:06 +00:00
Wes
2f51349ff8 Add SOC configuration 2023-08-23 20:07:42 +00:00
Wes
3f2793088a Add templates 2023-08-23 19:02:50 +00:00
Jason Ertel
8a751e097d cert path refactor 2023-08-23 14:32:05 -04:00
Mike Reeves
ce32a0081e Merge pull request #11128 from Security-Onion-Solutions/2.4/main 
Merge in hotfix
 2023-08-21 16:29:40 -04:00
Jason Ertel
222352b4b3 fix typo 2023-08-17 17:26:35 -04:00
m0duspwnens
4ac95447eb pop sort settings if index_sorting is false 2023-08-17 16:15:27 -04:00
m0duspwnens
9cba9d9ae0 allow to override number_of_replicas from one place in soc ui 2023-08-17 15:00:01 -04:00
Wes
7971d9749a Assign pipeline to import 2023-08-17 14:08:48 +00:00
m0duspwnens
4d497022db replace . with _x_ for soc ui compat 2023-08-10 09:52:18 -04:00
m0duspwnens
f9e272dd8f add additional annotations for elasticsearch index settings 2023-08-09 16:09:23 -04:00
m0duspwnens
dfe916d7c8 add annotation for so-logs index 2023-08-09 15:19:17 -04:00
Josh Brower
dd1fa51eb5 Generate community_id for defend endpoint logs 2023-08-04 09:03:17 -04:00
weslambert
f102351052 Add event 2023-08-02 13:25:44 -04:00
weslambert
ac28f90af3 Remove override 2023-08-02 13:15:11 -04:00
Josh Brower
9437a47946 Fix formatting 2023-07-26 10:54:24 -04:00
Josh Brower
4f94d953c9 Merge remote-tracking branch 'origin/2.4/dev' into fix/elasticsearch_endpoint 2023-07-25 07:42:59 -04:00
Wes
5553be02ac Change how tags are added 2023-07-24 21:31:28 +00:00
Wes
4efc951eaf Add tags 2023-07-24 20:57:39 +00:00
Wes
d84dbf9535 Add fleet 2023-07-24 18:53:52 +00:00
Wes
de7b7ff989 Add endpoint 2023-07-24 18:35:02 +00:00
Josh Brower
eead0c42d4 Merge remote-tracking branch 'origin/2.4/dev' into 2.4/SigmaMappings 2023-07-24 09:27:14 -04:00
Josh Brower
741e6039c1 Cleanup for Sigma Rules 2023-07-24 09:25:58 -04:00
weslambert
83e1e3efdc Merge pull request #10788 from Security-Onion-Solutions/fix/elastic_mappings 
Fix user name mapping and remove security subfield
 2023-07-20 15:51:42 -04:00
Wes
4b7e7978ef Add final pipeline 2023-07-19 19:56:54 +00:00
Wes
6a8737e9a2 Set delete for interactive 2023-07-19 12:21:47 +00:00
Wes
a59eda319e Remove security subfield 2023-07-18 19:00:50 +00:00
Wes
8a76975d8c Use new agent scripts 2023-07-18 18:43:57 +00:00
Wes
1d3e39b6bd Map user name to keyword and remove security subfield generation 2023-07-18 14:46:47 +00:00
Wes
e3249c8e4c Wrap values in quotes for proper conversion 2023-07-13 14:18:57 +00:00
weslambert
85bb5a327c Fix long vs float for pe version 2023-07-13 09:38:09 -04:00
Wes
577bfac886 Update logic for YARA matches 2023-07-11 17:00:13 +00:00
Josh Brower
ce1f363424 Allow base_url 2023-07-08 13:30:19 -04:00
Wes
0b5ee49873 Fix inverted logic for component template 2023-07-06 20:46:35 +00:00
Wes
910125f13a Restructure logic 2023-07-06 17:49:06 +00:00
Wes
d551faeb16 Heavy node template considerations 2023-07-06 17:19:28 +00:00
weslambert
c2efd7ef64 Merge pull request #10655 from Security-Onion-Solutions/feature/supported_integrations 
Restructure Elasticsearch templates for supported integrations
 2023-06-26 09:43:10 -04:00
weslambert
e02bdffe34 Fix typos 2023-06-23 16:10:22 -04:00
weslambert
e2ff48164b Only load if so-elastic-fleet-common exists 2023-06-23 16:03:58 -04:00
Wes
b96d3473f2 Fix indentation 2023-06-23 18:38:04 +00:00