21 Commits

Author	SHA1	Message	Date
DefensiveDepth	94ee761207	Remove Playbook ref	2024-03-25 21:11:47 -04:00
Jason Ertel	844cfe55cd	handle airgap when detections not enabled	2024-03-13 20:52:17 -04:00
Jason Ertel	927fe9039d	handle airgap when detections not enabled	2024-03-13 20:50:03 -04:00
m0duspwnens	1a829190ac	remove modules if detections disabled	2024-03-13 09:46:44 -04:00
Josh Brower	c6baa4be1b	Airgap Support - Detections module	2024-02-26 16:19:32 -05:00
Doug Burks	daf96d7934	fix new eventFields in merged.map.jinja	2024-02-23 17:07:48 -05:00
Doug Burks	7da0ccf5a6	add more endpoint.events.x entries to merged.map.jinja	2024-02-23 15:35:53 -05:00
m0duspwnens	573d565976	convert _x_ to . for soc ui to config	2024-02-23 15:03:44 -05:00
m0duspwnens	35157f2e8b	add comment	2023-09-07 15:46:04 -04:00
m0duspwnens	60f1947eb4	prevent endgame_dict from being added to standard_actions if it is already present	2023-09-07 14:01:19 -04:00
m0duspwnens	ffaab4a1b4	only add endgame to action if it is populated	2023-09-06 14:19:53 -04:00
m0duspwnens	8e18986671	enabled/disable soc in ui	2023-05-11 15:33:16 -04:00
Jason Ertel	aed41404fc	Merge pull request #9852 from Security-Onion-Solutions/kilo ... Remove FleetDM tool from SOC instead of deactivating it; generate SRV key during setup	2023-02-24 13:05:58 -05:00
Jason Ertel	d3c5d0569a	Remove FleetDM tool instead of deactivating it	2023-02-24 10:20:02 -05:00
m0duspwnens	8f46e4aa30	set docker extra_hosts for soc	2023-02-23 12:26:58 -05:00
Jason Ertel	ea0c3db8e1	upgrade influxdb	2023-02-08 13:23:45 -05:00
Jason Ertel	f84ceca03e	consolidate eventFields from hunt and dashbaords into a single setting	2022-12-15 14:22:23 -05:00
Jason Ertel	deb19d24b8	Always use local docs	2022-09-13 14:24:35 -04:00
m0duspwnens	5ccc103083	fix soc dashboards and things	2022-09-09 14:31:04 -04:00
m0duspwnens	5bb001281b	soc defaults changes - client child of server	2022-09-08 15:57:18 -04:00
Mike Reeves	2bd9dd80e2	Move In Day	2022-09-07 09:06:25 -04:00