securityonion

mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00

Author	SHA1	Message	Date
Peter Di Giorgio	5ebf470a86	Update zeek.bacnet_discovery	2022-11-03 22:27:04 -07:00
Peter Di Giorgio	4b39ccec6d	Update zeek.bacnet_property	2022-11-03 15:30:20 -07:00
Peter Di Giorgio	b97c822800	Add zeek.bacnet_discovery and zeek.bacnet_property	2022-10-27 15:40:52 -07:00
Peter Di Giorgio	71e3b2d1fb	Create zeek.bacnet	2022-10-27 15:40:07 -07:00
Peter Di Giorgio	326ba710ce	Add logs for bacnet bacnet bacnet_discovery bacnet_property	2022-10-27 15:38:32 -07:00
Peter Di Giorgio	1ea6feca37	Add icsnpp-bacnet	2022-10-27 15:31:38 -07:00
Peter Di Giorgio	c524442172	Merge pull request #9008 from Security-Onion-Solutions/master Synch Foxtrot with 2.3.181 Release	2022-10-26 13:10:01 -07:00
Peter Di Giorgio	2b51d72585	Rename zeek.read_write_multiple_registers to zeek.modbus_read_write_multiple_registers	2022-10-25 17:20:01 -07:00
Mike Reeves	465a1a82d7	Merge pull request #8981 from Security-Onion-Solutions/dev 2.3.181 2.3.181-20221021	2022-10-25 14:30:50 -04:00
Peter Di Giorgio	61d36d584f	Add Modbus, DNP3, BZAR, and oui-logging	2022-10-25 07:10:52 -07:00
Peter Di Giorgio	2d343110cc	Add DNP3 and Modbus extensions to zeeklogs.sls	2022-10-25 07:09:11 -07:00
Peter Di Giorgio	4502e2c260	Remove logs for OT parsers	2022-10-24 23:16:18 -07:00
Peter Di Giorgio	beb67847f9	Remove modbus,bzar,dnp3,oui-logging	2022-10-24 23:14:32 -07:00
Peter Di Giorgio	9cdc29c482	Fix Syntax for zeeklogs pillar	2022-10-24 14:30:15 -07:00
weslambert	292f66138b	Merge pull request #8983 from Security-Onion-Solutions/revert-8982-fix/sensoroni_analyzers_pyyaml_wheel_name Revert "Change PyYAML .whl file name to comply with Joliet's 240-character limit/threshold"	2022-10-24 16:49:19 -04:00
weslambert	0087768946	Revert "Change PyYAML .whl file name to comply with Joliet's 240-character limit/threshold"	2022-10-24 16:47:30 -04:00
Peter Di Giorgio	01d177366d	Fix Zeek Pillar	2022-10-24 12:00:43 -07:00
weslambert	712340a027	Merge pull request #8982 from Security-Onion-Solutions/fix/sensoroni_analyzers_pyyaml_wheel_name Change PyYAML .whl file name to comply with Joliet's 240-character limit/threshold	2022-10-24 14:14:45 -04:00
Wes	1caac3f0b0	Add PyYAML .whl files back since they were 'deleted' in the previous commit.	2022-10-24 18:06:19 +00:00
Wes	54a5dd6cbd	Change name of PyYAML .whl file to remain under Joliet's 240-character limit/threshold	2022-10-24 18:05:15 +00:00
Mike Reeves	6570177b0c	Merge pull request #8979 from Security-Onion-Solutions/2.3.181 2.3.181	2022-10-24 11:39:08 -04:00
Mike Reeves	f7ed992f24	2.3.181	2022-10-24 11:33:31 -04:00
Mike Reeves	4a18f8d18a	2.3.181	2022-10-24 11:32:19 -04:00
Peter Di Giorgio	24cf481f4a	Merge pull request #8973 from lock-wire/patch-3 Add Modbus, DNP3, BZAR, and oui-logging	2022-10-21 18:06:13 -07:00
Peter Di Giorgio	cd4e0c1f8e	Add DNP3 and Modbus extensions to zeeklogs.sls Add DNP3 and Modbus extenstions to zeeklogs to ensure filebeat.yml is configured properly to ship lots. Need to move these behind the OT flag.	2022-10-21 14:19:21 -07:00
Peter Di Giorgio	4a60310dc8	Add Modbus, DNP3, BZAR, and oui-logging This is an initial proof of concept. Need to migrate these entries behind a flag.	2022-10-21 14:04:40 -07:00
weslambert	930620fce6	Merge pull request #8971 from lock-wire/patch-2 Add Ingest pipeline for Modbus and DNP3 extensions	2022-10-21 16:28:52 -04:00
Peter Di Giorgio	7a60d0987c	Update zeek.conn to include client.oui	2022-10-21 13:02:01 -07:00
Peter Di Giorgio	9ac06057c1	Create zeek.read_write_multiple_registers	2022-10-21 13:00:12 -07:00
Peter Di Giorgio	e5c69c3236	Create zeek.modbus_mask_write_register	2022-10-21 12:58:36 -07:00
Peter Di Giorgio	39f050c6e4	Rename modbus_detailed to zeek.modbus_detailed	2022-10-21 12:56:59 -07:00
Peter Di Giorgio	4ee083759c	Rename dnp3_objects to zeek.dnp3_objects	2022-10-21 12:56:35 -07:00
Peter Di Giorgio	072bfd87b7	Create Ingest for Modbus Detailed	2022-10-21 12:53:30 -07:00
Peter Di Giorgio	b7aaaa80bb	Create Ingest for DNP3 Objects extension	2022-10-21 12:51:13 -07:00
Jason Ertel	b8884b6ac9	Merge pull request #8968 from Security-Onion-Solutions/181soup update soup for 2.3.181	2022-10-21 12:00:58 -04:00
Jason Ertel	05e271af47	update soup for 2.3.181	2022-10-21 11:52:54 -04:00
Mike Reeves	58e80a9db8	Merge pull request #8964 from Security-Onion-Solutions/TOoSmOotH-patch-2 Update VERSION	2022-10-21 10:45:44 -04:00
Mike Reeves	e16fc3605e	Update VERSION	2022-10-21 10:43:34 -04:00
weslambert	a54fc4cead	Merge pull request #8942 from Security-Onion-Solutions/master Update Foxtrot to .180	2022-10-18 16:39:21 -04:00
Mike Reeves	2127ba90ee	Merge pull request #8925 from Security-Onion-Solutions/TOoSmOotH-patch-1 Update VERSION	2022-10-17 10:51:02 -04:00
Mike Reeves	3373aef87d	Update VERSION	2022-10-17 10:50:14 -04:00
Mike Reeves	fa45e8ded7	Merge pull request #8924 from Security-Onion-Solutions/dev 2.3.180 2.3.180-20221014	2022-10-17 10:41:06 -04:00
Mike Reeves	6d0ead7b5b	Merge pull request #8923 from Security-Onion-Solutions/2.3.180 2.3.180	2022-10-17 09:47:06 -04:00
Mike Reeves	a2a6625f3b	2.3.180	2022-10-17 09:39:07 -04:00
Mike Reeves	3c2510acd7	Merge pull request #8920 from Security-Onion-Solutions/dev Merge Dev into Foxtrot	2022-10-17 09:34:57 -04:00
Doug Burks	0d807d20f4	Merge pull request #8914 from Security-Onion-Solutions/dougburks-patch-1 Remove destination_geo.organization_name from Sysmon Network sankey diagram	2022-10-13 13:03:51 +00:00
Doug Burks	f4042263a3	Remove destination_geo.organization_name from Sysmon Network sankey diagram	2022-10-13 08:59:10 -04:00
Doug Burks	a930f8233d	Merge pull request #8899 from Security-Onion-Solutions/dougburks-patch-2 Update soup for 2.3.180	2022-10-11 17:14:55 +00:00
Doug Burks	7401008523	Update soup for 2.3.180	2022-10-11 12:58:37 -04:00
Doug Burks	5199ea483e	Merge pull request #8878 from Security-Onion-Solutions/feature/improve-sysmon-dashboards FEATURE: Add new Sysmon dashboards #8870	2022-10-07 16:47:02 +00:00

1 2 3 4 5 ...

10481 Commits