CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-24 09:53:12 +01:00
Code Issues Packages Projects Releases Wiki Activity
10,697 Commits 19 Branches 120 Tags
5a0fe6050b841098e25030fa2bc0677582fac313
Commit Graph

6440 Commits

Author SHA1 Message Date
Jason Ertel
ed9aa5b73f Ensure filecheck is up by checking every minute 2022-11-17 10:48:53 -05:00
Jason Ertel
7f7e5474ed Add more logging for filecheck monitoring, and ensure scripts are accessible to salt-relay 2022-11-17 10:43:05 -05:00
Jason Ertel
0ffef75d7b Move background jobs to cron 2022-11-17 09:50:41 -05:00
Jason Ertel
c572848ece temporarily remove filecheck for debug purposes 2022-11-17 08:06:24 -05:00
Jason Ertel
7cd5d625d1 temporarily remove salt-pipe for debug purposes 2022-11-16 20:45:50 -05:00
Jason Ertel
4497037442 Use bg:True to send cmd to background 2022-11-16 20:03:54 -05:00
Wes
638a3568b0 Update ingest node pipelines for ICS/SCADA protocols 2022-11-16 21:11:21 +00:00
Josh Brower
8db49feb32 Use our docker image 2022-11-16 08:24:25 -05:00
Josh Brower
48d191b656 Merge remote-tracking branch 'remotes/origin/2.4/dev' into 2.4/elasticfleet-ag 2022-11-15 12:13:05 -05:00
Doug Burks
632464335f fix descriptions in files related to analyzers 2022-11-12 13:14:02 -05:00
Doug Burks
f77db78219 fix descriptions in files related to analyzers 2022-11-12 13:13:30 -05:00
Doug Burks
2f4ce91678 fix descriptions in files related to analyzers 2022-11-12 13:12:58 -05:00
Doug Burks
154dff98de fix descriptions in files related to analyzers 2022-11-12 13:12:23 -05:00
Doug Burks
a15ca3cc49 fix descriptions in files related to analyzers 2022-11-12 13:11:38 -05:00
Doug Burks
40f5bb25ef FIX: Avoid deprecation warning in Zeek file extraction script #9123 2022-11-11 16:28:23 -05:00
Josh Patterson
7420c31411 Merge pull request #9096 from Security-Onion-Solutions/salt3005.1_2.4 
roll back to salt 3004.2
 2022-11-08 15:47:00 -05:00
m0duspwnens
00cb0f5abb roll back to salt 3004.2 2022-11-08 15:45:18 -05:00
Mike Reeves
bf31b593ed Merge pull request #9055 from Security-Onion-Solutions/strelkastuff 
Strelkastuff
 2022-11-08 13:45:42 -05:00
m0duspwnens
1a678064dc upgrade to salt 3005.1 2022-11-08 13:42:24 -05:00
Josh Brower
c389944e5c Initial support for Elastic Package Registry 2022-11-08 09:56:53 -05:00
Mike Reeves
de19a4dc53 Add Strelka Filecheck 2022-11-02 10:04:33 -04:00
Mike Reeves
d97de9fd0d Add Strelka Filecheck 2022-11-02 10:02:21 -04:00
Mike Reeves
bf5df1ac51 Add Strelka Filecheck 2022-11-02 09:57:07 -04:00
Mike Reeves
225c33e5c9 Add Strelka Filecheck 2022-11-02 09:46:23 -04:00
Mike Reeves
4187363451 Add Strelka Filecheck 2022-11-02 09:44:08 -04:00
Doug Burks
2030f08b54 https://github.com/Security-Onion-Solutions/securityonion/pull/8952 2022-11-01 09:35:53 -04:00
Jason Ertel
55f22af758 Merge pull request #9017 from Security-Onion-Solutions/config 
Retry so-user commands if another process is currently using so-user
 2022-10-27 15:41:37 -04:00
Jason Ertel
35fab05bdd Retry so-user commands if another process is currently using so-user 2022-10-27 15:25:08 -04:00
Jason Ertel
d7b370e31b Merge pull request #9010 from Security-Onion-Solutions/config 
regex should match entire input against allowed logLevel values
 2022-10-27 13:17:51 -04:00
m0duspwnens
8af0334c3c Merge remote-tracking branch 'remotes/origin/2.4/dev' into patch2.4 2022-10-27 11:08:32 -04:00
m0duspwnens
6525e0f201 setup no longer add patch pillar to minion 2022-10-27 10:56:29 -04:00
m0duspwnens
a95c2a690a add defaults and map for patch state 2022-10-27 10:54:29 -04:00
Jason Ertel
6347532dd8 regex should match entire input against allowed logLevel values 2022-10-26 18:48:20 -04:00
weslambert
0ede5a7313 Remove JA3er references 2022-10-26 10:24:25 -04:00
Wes
803d2d4d75 Add PyYAML .whl files back since they were 'deleted' in the previous commit 2022-10-25 19:15:54 +00:00
Wes
0267ece4bf Fix PyYAML .whl file name and remove JA3er analyzer 2022-10-25 19:11:52 +00:00
m0duspwnens
8c5197c2ea add line space 2022-10-21 11:49:01 -04:00
m0duspwnens
8b5c79fb39 add so-kratos and so-ossec to curator defaults 2022-10-21 11:21:03 -04:00
m0duspwnens
71eaa715b6 update jinja 2022-10-21 11:09:52 -04:00
m0duspwnens
c880be8d45 use curator defaults.yaml merged with pillar for actions 2022-10-21 10:38:32 -04:00
m0duspwnens
998870ac87 Merge remote-tracking branch 'remotes/origin/2.4/dev' into statesglobals 2022-10-17 15:58:44 -04:00
m0duspwnens
b089a58243 use registry_host instead of manager 2022-10-17 15:53:29 -04:00
m0duspwnens
09b7af2998 fix typo 2022-10-17 15:50:48 -04:00
m0duspwnens
deba743ef0 fix elasticsearch auth globals 2022-10-13 13:54:52 -04:00
m0duspwnens
04b4030eb6 only add elasticsearch.auth to elasticsearch global var if auth exists 2022-10-13 12:31:41 -04:00
Doug Burks
f6151b3895 Remove destination_geo.organization_name from Sysmon Network sankey diagram 2022-10-13 09:03:10 -04:00
m0duspwnens
78b496a689 fix mine_functions.conf 2022-10-12 16:03:44 -04:00
m0duspwnens
95f7cb6bcd change file_mode to mode 2022-10-12 14:21:55 -04:00
m0duspwnens
eed3746ebc fix some globals 2022-10-12 13:39:37 -04:00
m0duspwnens
6a17f201a2 changes for backup state 2022-10-12 11:31:42 -04:00