CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity
10,711 Commits 24 Branches 119 Tags
571ac4edece16489254577a6107d9f245083635c
Commit Graph

10711 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Doug Burks
45892400cb add new zeek opcua logs to so-whiptail 2022-11-26 18:42:51 -05:00
Doug Burks
1f0c984b98 add new zeek opcua logs to so-functions 2022-11-26 18:41:12 -05:00
doug
6d814d3909 add more zeek opcua parsers 2022-11-26 17:43:58 -05:00
Doug Burks
9ea59355d5 fix opcua_binary_opensecure_channel in so-functions 2022-11-26 17:03:57 -05:00
Doug Burks
c1287a61af add opcua_binary_opensecure_channel to so-functions 2022-11-26 17:02:04 -05:00
Doug Burks
e44c94c56b add opcua_binary_opensecure_channel to so-whiptail 2022-11-26 17:01:11 -05:00
Doug Burks
ec0cf71c3f add opcua_binary_opensecure_channel to so-zeek-logs 2022-11-26 17:00:32 -05:00
doug
73adc571de add more zeek ics parsers 2022-11-26 10:36:49 -05:00
doug
62c1bb2c0c disable ecat_arp_info since it records all arp traffic 2022-11-25 18:01:53 -05:00
Doug Burks
692ec05b2d fix opcua_binary_activate_session in hunt.eventfields.json 2022-11-25 17:51:25 -05:00
Doug Burks
00078fd9e5 add opcua_binary_activate_session_diagnostic_info to hunt.eventfields.json 2022-11-25 17:47:41 -05:00
Doug Burks
13c8fb0004 add ecat_coe_info to hunt.eventfields.json 2022-11-25 17:45:28 -05:00
Doug Burks
920b16e494 add ecat_dev_info to hunt.eventfields.json 2022-11-25 17:42:59 -05:00
Doug Burks
d98c57510a add opcua_binary_activate_session_locale_id to hunt.eventfields.json 2022-11-25 17:39:17 -05:00
Doug Burks
58aa730437 add opcua_binary_create_session_endpoints to hunt.eventfields.json 2022-11-25 17:37:10 -05:00
Doug Burks
f36da68009 add opcua_binary_create_subscription to hunt.eventfields.json 2022-11-25 17:35:02 -05:00
Doug Burks
0091675ab6 fix opcua_binary_get_endpoints_description in hunt.eventfields.json 2022-11-25 17:32:30 -05:00
Doug Burks
83d25a97d3 add opcua_binary_get_endpoints_description to hunt.eventfields.json 2022-11-25 16:01:40 -05:00
Doug Burks
e536568c8a add opcua_binary_activate_session to hunt.eventfields.json 2022-11-25 15:59:17 -05:00
Doug Burks
a00eb9071f add opcua_binary_get_endpoints to hunt.eventfields.json 2022-11-25 15:57:35 -05:00
Doug Burks
c39cd9a290 add opcua_binary_browse_result to hunt.eventfields.json 2022-11-25 15:55:59 -05:00
Doug Burks
cb5483d401 add opcua_binary_create_session to hunt.eventfields.json 2022-11-25 15:53:09 -05:00
Doug Burks
fab0d17314 add opcua_binary_browse_description to hunt.eventfields.json 2022-11-25 15:51:49 -05:00
Doug Burks
465e6c4605 add opcua_binary_create_session_user_token to hunt.eventfields.json 2022-11-25 15:48:11 -05:00
Doug Burks
a119d6a842 add opcua_binary_get_endpoints_user_token to hunt.eventfields.json 2022-11-25 15:46:35 -05:00
Doug Burks
be8ce43b74 add opcua_binary_browse to hunt.eventfields.json 2022-11-25 15:44:22 -05:00
Doug Burks
b2a33d4800 add opcua_binary_browse_response_references to hunt.eventfields.json 2022-11-25 15:41:48 -05:00
Doug Burks
78fac49e66 add opcua_binary_read to hunt.eventfields.json 2022-11-25 15:39:58 -05:00
Doug Burks
ca08989404 add cip_io to hunt.eventfields.json 2022-11-25 15:37:21 -05:00
Doug Burks
4ed757916e add opcua_binary_status_code_detail to hunt.eventfields.json 2022-11-25 15:35:17 -05:00
Doug Burks
676c543178 add opcua_binary to hunt.eventfields.json 2022-11-25 15:33:13 -05:00
Doug Burks
aa2eab5738 fix zeek ics logs in so-functions 2022-11-25 09:53:11 -05:00
Doug Burks
fe21b8bc17 fix zeek ics logs in so-functions 2022-11-25 09:45:18 -05:00
Doug Burks
33a478ff59 fix zeek ics logs in so-zeek-logs 2022-11-25 09:40:48 -05:00
Doug Burks
62fee1f420 fix zeek ics logs in so-whiptail 2022-11-25 09:39:58 -05:00
Doug Burks
2ada4712bc fix zeek ics logs in so-zeek-logs 2022-11-25 09:37:52 -05:00
Doug Burks
fad6c46e7c fix zeek ics logs in so-zeek-logs 2022-11-25 09:35:00 -05:00
Doug Burks
6f27c1b21e fix zeek logs in so-whiptail 2022-11-25 09:26:54 -05:00
Doug Burks
0afb20ffa8 fix ics entries in so-functions 2022-11-25 09:19:11 -05:00
Doug Burks
40688a6076 add Zeek software to so-functions 2022-11-25 07:36:41 -05:00
Doug Burks
9431bf1c2a add Zeek software log to so-whiptail 2022-11-25 07:28:48 -05:00
Doug Burks
9f5e75b302 add software to so-zeek-logs 2022-11-25 07:27:50 -05:00
Doug Burks
3f62cddc3b change . to _ 2022-11-23 12:21:12 -05:00
Doug Burks
085420997c move status_code before status_code.link_id 2022-11-23 12:11:04 -05:00
Doug Burks
723e145eeb Merge pull request #9221 from Security-Onion-Solutions/dougburks-patch-1 
fix descriptions
 2022-11-23 11:43:12 -05:00
Doug Burks
0a1d0d35c8 fix description 2022-11-23 11:33:31 -05:00
Doug Burks
9ee96f2280 fix description 2022-11-23 11:32:09 -05:00
Doug Burks
3871268c19 Merge pull request #9220 from Security-Onion-Solutions/fix/zeek-opcua-parsing 
fix zeek opcua pipelines
 2022-11-23 11:17:47 -05:00
doug
bc620b7def fix zeek opcua pipelines 2022-11-23 10:56:32 -05:00
Doug Burks
08d5f494ab Merge pull request #9208 from Security-Onion-Solutions/dougburks-patch-1 
Initial dashboards for stun, tds, wireguard, and ics
 2022-11-22 16:04:12 -05:00