CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-05-22 11:05:13 +02:00
Code Issues Packages Projects Releases Wiki Activity
7,922 Commits 29 Branches 126 Tags
64945cec16b6610db863e55c031bf686ef4466d5
Commit Graph

4556 Commits

Author SHA1 Message Date
William Wernert 64945cec16 [wip] Initial work to enable/disable "learn" modules 2021-07-26 14:24:10 -04:00
William Wernert 2f118781ea Merge branch 'dev' into foxtrot 2021-07-23 08:54:08 -04:00
William Wernert b8e3a45a7e [wip] Add logscan state 
Do not add state to top file or setup yet, script will be written to enable the feature shortly
 2021-07-23 08:53:45 -04:00
Jason Ertel 08e75567d4 merge master to kilo 2021-07-22 14:34:24 -04:00
doug 3d3593a1a9 FIX: Suricata dns.response.code needs to be renamed to dns.response.code_name #4770 2021-07-22 09:50:21 -04:00
Jason Ertel 257062e20c Update release notes link to match top right menu for airgap 2021-07-22 09:48:34 -04:00
doug fa9d7afb46 FIX: Airgap link to Release Notes #4685 2021-07-22 09:42:37 -04:00
Jason Ertel ad8c12afa5 Upgrade ES to 7.13.4 2021-07-21 15:07:02 -04:00
Jason Ertel 74874dfff2 Allow web pages to load blob data 2021-07-21 14:59:33 -04:00
Jason Ertel dbf19e134f Merge branch 'master' into kilo 2021-07-20 11:44:10 -04:00
William Wernert df6d1d72e2 Merge branch 'dev' into feature/logscan 2021-07-19 15:19:59 -04:00
weslambert fea4f3f973 Check if Filebeat modules are being used for incoming Beats 2021-07-19 12:57:42 -04:00
weslambert bde86e0383 Use http_auth instead of username/password until Curator is upgraded to next version 2021-07-19 12:42:46 -04:00
doug 7e86681509 FIX: Airgap link to Release Notes #4685 2021-07-16 16:50:49 -04:00
William Wernert 0deb77468f Change uppercase regex 
Check for any uppercase characters rather than revalidating input sans uppercase
 2021-07-16 15:39:09 -04:00
William Wernert 9bf1d3e0c6 Misc fixes 2021-07-16 14:59:44 -04:00
William Wernert 3a12d28d20 Merge branch 'dev' into feature/logscan 2021-07-16 14:13:19 -04:00
William Wernert e8ba4bdc6c Add quotes to string 2021-07-16 14:07:23 -04:00
William Wernert b552973e00 Add logic to show uppercase warning message when appropriate 2021-07-15 16:36:46 -04:00
Jason Ertel 76c285158a Merge branch 'master' into kilo 2021-07-14 15:24:35 -04:00
Jason Ertel 08517e3732 Merge branch 'dev' into kilo 2021-07-14 15:24:29 -04:00
Wes Lambert 05aad07bfc Replace staging path with processed path for analyzed files 2021-07-14 15:04:46 +00:00
William Wernert 818f912a90 [fix] Remove indent 2021-07-14 10:13:14 -04:00
Wes Lambert 723172bc1f Add path_unmatch for data.port so it is not mapped as integer 2021-07-14 13:45:09 +00:00
Wes Lambert 323b5d6694 Add dynamic mapping for wazuh 2021-07-14 13:43:34 +00:00
Wes Lambert 441cd3fc59 Move Wazuh-specific data to wazuh.data 2021-07-14 13:42:51 +00:00
Mike Reeves 741e825ab9 Remove old airgap scripts 2021-07-13 15:44:26 -04:00
William Wernert e7a6172d7e [fix] Add single quotes to strings 2021-07-13 14:07:27 -04:00
William Wernert 115e0a6fee [fix] Add missing comma 2021-07-13 12:04:10 -04:00
weslambert 7cdb967810 Only route to FB module pipeline if filebeat in metadata 2021-07-13 11:36:18 -04:00
William Wernert e059c25ebc [fix][wip] Fix pipeline parsing errors 2021-07-13 11:05:05 -04:00
William Wernert 9ff95f66dd Merge branch 'dev' into feature/logscan 2021-07-13 10:02:58 -04:00
William Wernert c1523c4936 Merge pull request #4782 from Security-Onion-Solutions/feature/check-local-mods 
Add jinja raw tag
 2021-07-13 08:58:25 -04:00
William Wernert ca2b24f735 Add jinja raw tag 2021-07-13 08:46:57 -04:00
William Wernert 2b0bca8e55 Merge branch 'dev' into feature/logscan 2021-07-12 14:58:30 -04:00
doug e6f9592cde FIX: Suricata dns.response.code needs to be renamed to dns.response.code_name #4770 2021-07-12 13:24:21 -04:00
William Wernert 222d79bf53 Merge pull request #4774 from Security-Onion-Solutions/feature/check-local-mods 
Compare local files to their defaults to check for potentially breaking changes
 2021-07-12 12:00:18 -04:00
weslambert a895270bc8 Allow setting Filebeat logging level in pillar 2021-07-12 10:27:43 -04:00
Jason Ertel 78c58e61ea Resolves #4765 2021-07-12 09:38:01 -04:00
William Wernert f3ecdf21bf Revert "Add newline to local modifications warning" 
This reverts commit ff656365d2.
 2021-07-12 09:28:24 -04:00
William Wernert ff656365d2 Add newline to local modifications warning 2021-07-12 09:22:22 -04:00
William Wernert ea7c09bb00 Merge branch 'dev' into feature/check-local-mods 2021-07-12 09:20:10 -04:00
William Wernert 90970f97e8 Add function to check if files copied to local have been changed in default 2021-07-09 15:44:27 -04:00
William Wernert bac7ef71d8 Add logscan.source.ips field 2021-07-09 10:55:11 -04:00
Jason Ertel 08ba4fdbee Update Kibana saved objects to 7.13.3 2021-07-08 16:34:16 -04:00
Jason Ertel 0c079edc1a Reverse proxy requests to playbook, soctopus, and nodered 2021-07-08 14:27:16 -04:00
William Wernert 80525ee736 [wip] Add logscan pipeline 2021-07-08 12:29:50 -04:00
Josh Patterson 12b7fd3ab4 whitespace 2021-07-07 14:48:07 -04:00
Josh Patterson c32b5b5429 whitespace 2021-07-07 14:47:16 -04:00
Josh Patterson ea2a748dba whitespace 2021-07-07 14:44:44 -04:00