CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-07 01:32:47 +01:00
Code Issues Packages Projects Releases Wiki Activity
8,142 Commits 24 Branches 119 Tags
727a3742f53231c94ebdf63ebf45a0a052f79a95
Commit Graph

85 Commits

Author SHA1 Message Date
weslambert
fea4f3f973 Check if Filebeat modules are being used for incoming Beats 2021-07-19 12:57:42 -04:00
weslambert
7cdb967810 Only route to FB module pipeline if filebeat in metadata 2021-07-13 11:36:18 -04:00
m0duspwnens
0627ca2fc2 use heavynode hostname for certs if heavynode. changes to logstash pipeline for redis if heavynode 2021-07-06 15:32:39 -04:00
weslambert
2e91f27336 Add conditional for heavynode 2021-07-06 14:17:49 -04:00
weslambert
10b1829830 Add conditional for heavynode 2021-07-06 14:16:34 -04:00
Jason Ertel
2d34208269 Elastic auth: Fun with Salt 2021-06-16 17:52:22 -04:00
Jason Ertel
09fbb045a1 If ES auth disabled ensure user/pass are blank 2021-06-16 09:59:57 -04:00
Jason Ertel
dd8eb29a18 Continue merge of ECS into Elastic Auth 2021-06-15 09:11:58 -04:00
Jason Ertel
fca1c6e957 Merge branch 'dev' into kilo 2021-06-14 10:40:04 -04:00
Mike Reeves
12d4d4a4f7 Dynamix Pipelines take 2 2021-06-10 09:19:15 -04:00
Mike Reeves
7fba904f75 Dynamix Pipelines take 1 2021-06-09 15:32:39 -04:00
Mike Reeves
4c90a0ed7e Add templates for SO logs 2021-06-09 12:04:32 -04:00
Mike Reeves
a959ec1eb1 Revert to SO taxonomy for zeek and suricata 2021-06-08 13:23:31 -04:00
Mike Reeves
3e138cbc6d Revert to SO taxonomy for zeek and suricata 2021-06-08 13:14:46 -04:00
Jason Ertel
e22421ec99 Refactor users/roles management via salt due to Salt's clobbering of the inode which breaks Docker mounts 2021-06-04 20:01:30 -04:00
Jason Ertel
5c527b2c48 Rename username param to user since logstash is 'unique' 2021-06-03 07:51:43 -04:00
Jason Ertel
901242f7e9 remove extra parenthesis 2021-06-02 16:23:45 -04:00
weslambert
a1b34e7a88 Fix Suricata index name 2021-06-02 15:30:14 -04:00
Jason Ertel
20e896cacf Update all configs to pass user/pass to ES 2021-06-02 12:17:15 -04:00
Mike Reeves
bfcde15a24 elastic pipeline test 2021-05-26 14:22:14 -04:00
Mike Reeves
1e564c2140 Fix zeek jinja 2021-05-25 10:22:36 -04:00
Wes Lambert
37929dbd7d Add additional config for Filebeat modules 2021-05-06 13:54:28 +00:00
Mike Reeves
2e01330e1b Update 9101_output_osquery_livequery.conf.jinja 2021-03-09 13:15:04 -05:00
Josh Brower
00da549430 Merge pull request #3358 from Security-Onion-Solutions/delta 
FEATURE: Initial support for viewing Osquery Live Query results in Hunt
 2021-03-09 09:18:57 -05:00
Josh Brower
548f67ca6f Initial support for Live Queries in Hunt 2021-03-04 18:21:13 -05:00
Mike Reeves
49371a1d6a fix elastic output for ssl 2021-03-03 14:30:45 -05:00
Mike Reeves
bfd05a8cfc Change to https for elastic connections 2021-03-02 11:32:29 -05:00
Josh Brower
b8137214e4 Initial Support - Live Query to Hunt 2021-02-26 08:08:09 -05:00
Wes Lambert
884cc2d054 Don't predefine index date for Logstash outputs 2020-10-12 15:41:47 +00:00
Mike Reeves
96083e1458 update logstash outputs 2020-10-11 17:06:56 -04:00
Mike Reeves
e4ce17d4de Turn on SSL output 2020-10-11 16:10:55 -04:00
Mike Reeves
a7bd1c2ce5 Turn on SSL output 2020-10-11 15:58:12 -04:00
Wes Lambert
69a04dedd3 Filterlog config changes 2020-10-09 23:56:52 +00:00
weslambert
8e829b47ae Remove dataset name since pipeline no longer in use 2020-10-07 11:48:56 -04:00
m0duspwnens
748dc5ba91 logstash changes per https://github.com/Security-Onion-Solutions/securityonion/issues/1444 2020-10-05 14:10:05 -04:00
Mike Reeves
8daf11f085 Fix logstash outputs 2020-08-11 13:58:28 -04:00
Mike Reeves
28806513d9 Logstash logic fix 2020-08-10 20:53:56 -04:00
Mike Reeves
e659af3466 ES basic SSL 2020-08-10 14:26:56 -04:00
Mike Reeves
bc09a89a01 output plugin to normal port 2020-08-08 20:36:28 -04:00
Mike Reeves
9248896a20 fix redis ports 2020-08-08 20:24:30 -04:00
Mike Reeves
f154d2fa78 Upodate SSL 2020-08-08 20:04:19 -04:00
Mike Reeves
5525e235d1 jruby ssl fun 2020-08-07 23:28:58 -04:00
Mike Reeves
62a6f29c96 bucket stuff 2020-08-07 22:51:52 -04:00
Mike Reeves
bbdaee28ed Add upload queue thread 2020-08-06 15:41:10 -04:00
Mike Reeves
4e40615e51 Add tuneable to the global pillar 2020-08-05 22:47:12 -04:00
Mike Reeves
d9b1127308 Switch to gzip encoding 2020-08-05 22:36:23 -04:00
Mike Reeves
633c100ace final logstash tweaks 2020-08-05 16:40:21 -04:00
Mike Reeves
970ee195a1 use hostname so TLS will work 2020-08-04 23:08:33 -04:00
Mike Reeves
58872c9b48 enable ssl logstash 2020-08-04 22:40:59 -04:00
Mike Reeves
61ff944087 add tmp to survive restarts 2020-08-04 18:18:06 -04:00