CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-07 17:52:46 +01:00
Code Issues Packages Projects Releases Wiki Activity
1,581 Commits 24 Branches 119 Tags
5fc08a39b49b81c20c8f7a1601c5498090cf5115
Commit Graph

163 Commits

Author SHA1 Message Date
Mike Reeves
f3c204c790 Disable Beats input - Update sensoroni version 2019-11-06 13:37:42 -05:00
Mike Reeves
9d9b3c18f3 Merge pull request #115 from defensivedepth/logstash-tweaks 
Logstash tweaks
 2019-10-28 10:38:51 -04:00
Josh Brower
4dbc5f07b2 Enable 0006_input_beats.conf by default on EVAL 2019-10-25 10:19:05 -04:00
Josh Brower
504dd6559d Default ssl to false 2019-10-24 16:44:33 -04:00
Mike Reeves
ca4cd782a1 Docker URL Fix - Issue #68 2019-10-16 10:39:18 -04:00
Dustin Lee
699371a4d7 logstash: add beats template used in latest SO 2019-10-11 08:36:44 -04:00
Mike Reeves
b1f582d218 Logstash Module - 1.1.1 2019-09-24 11:22:07 -04:00
doug
8472b24a67 parse Bro logs using Elasticsearch ingest node 2019-09-23 16:04:23 -04:00
Mike Reeves
6d14a94765 Logstash Module - Fix watch 2019-09-20 16:31:23 -04:00
Mike Reeves
50c074bb4e Logstash Module - Add more watches 2019-09-19 15:46:46 -04:00
Josh Brower
9a4eadc967 Add rule_signature mapping 2019-09-19 08:30:33 -04:00
Mike Reeves
b6fd6fa2cc PCAP module - fix dir 2019-06-19 22:10:09 -04:00
Mike Reeves
f8b6b752b6 Logstash - Fix filebeat 2019-06-18 10:30:00 -04:00
Mike Reeves
feefc07235 HH Alpha Initial Push 2019-06-17 18:09:46 -04:00
Mike Reeves
9c1e128ca0 Logstash Module - Add new input conf 2019-06-10 18:44:10 -04:00
Mike Reeves
d9b1caf044 Logstash Module - Add new input conf 2019-06-10 18:33:09 -04:00
Mike Reeves
0876566317 Filebeat Module - Change port for internal filebeat traffic 2019-06-10 18:27:03 -04:00
Mike Reeves
f1e015edcf Add content trust to all modules 2019-05-02 16:53:19 -04:00
Mike Reeves
8663da0330 Logstash Module - Disable stuff that isn't used in eval 2019-03-18 10:23:43 -04:00
Mike Reeves
c8102fe7b5 Logstash Module - Disable stuff that isn't used in eval 2019-03-18 10:17:33 -04:00
Mike Reeves
70e8db5991 Logstash Module - Add the osquery configs 2019-01-24 20:27:57 -05:00
Wes Lambert
cdfc3a15ad osquery: fix host field conflict 2019-01-16 19:25:06 +00:00
Mike Reeves
05a4c6410f LogStash and Kibana modules - Clean up for new Zeek Version 2019-01-15 10:51:30 -05:00
Mike Reeves
341297bbaa Update For 1.0.6 2019-01-08 13:29:24 -05:00
Josh Brower
ce43fd7cd4 Moved to dynamic 2019-01-01 11:20:09 -05:00
Josh Brower
b9f6269925 Moved to dynamic 2019-01-01 11:20:01 -05:00
Josh Brower
bc7bf5774a Enable osquery parsers for EVAL role 2019-01-01 11:14:38 -05:00
Josh Brower
15bfce07e8 Move osquery parsers from custom to dynamic 2019-01-01 11:13:05 -05:00
Josh Brower
f21e52b431 Add missing character 2019-01-01 11:11:29 -05:00
Josh Brower
fff13d5861 Tag & initial JSON decode for osquery logs 2018-12-28 13:56:06 -05:00
Josh Brower
1917b469ec osquery-tagged logs output to ES 2018-12-28 13:55:02 -05:00
Josh Brower
389b57f226 parser for windows event logs shipped by osquery 2018-12-28 13:54:11 -05:00
Wes Lambert
172c9e0593 Logstash - Wazuh parsing updates 2018-12-14 18:00:19 +00:00
Wes Lambert
41e9c4c7e0 Logstash - Alter input for Wazuh logs 2018-12-12 20:52:18 +00:00
Wes Lambert
5c28576674 Logtash - Update input for Eval Mode 2018-12-06 02:38:59 +00:00
Mike Reeves
c5dfe32c55 Merge pull request #48 from dlee35/master 
changed tag eval to type
 2018-12-05 15:09:59 -05:00
dlee35
7fc1f576d9 changed tag eval to type 2018-12-05 15:05:11 -05:00
Mike Reeves
658bc2cc8e Logstash Module - Update Version 2018-12-05 12:43:13 -05:00
Mike Reeves
02f9995cf5 Merge pull request #44 from weslambert/master 
Parsing Updates for Bro/Suricata
 2018-11-30 10:42:55 -05:00
Mike Reeves
4c1ef81c33 Logstash Module - Update Version 2018-11-30 10:42:24 -05:00
Wes Lambert
056e22dd11 Logstash - Update template for Suricata metadata fields 2018-11-30 13:22:31 +00:00
Wes Lambert
05accf3017 Logstash - Output config update for IDS type 2018-11-30 13:17:53 +00:00
Mike Reeves
be69d3629c Logstash Module - Rework it 2018-11-28 20:51:31 -05:00
Mike Reeves
4203898427 Logstash Module - Rework it 2018-11-28 20:44:56 -05:00
Mike Reeves
1553f36082 Logstash Module - Allow jinja in custom parsers 2018-11-28 16:13:28 -05:00
Mike Reeves
119c94ea17 Logstash Module - Fix so logstash workers gets picked up 2018-11-27 13:42:40 -05:00
Mike Reeves
034a0ed7b2 Logstash Module - Fix formatting 2018-11-13 15:27:38 -05:00
Mike Reeves
b88a9b5769 Logstash Module - Wes Mods 2018-11-13 14:41:07 -05:00
Mike Reeves
62d28942f8 Move docker location 2018-11-13 08:59:16 -05:00
Mike Reeves
c3e703956e Merge pull request #14 from TOoSmOotH/master 
Logstash Module - Enable new Docker Container
 2018-11-03 11:59:24 -04:00