CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 17:22:49 +01:00
Code Issues Packages Projects Releases Wiki Activity
2,473 Commits 24 Branches 119 Tags
73f52d69d44947836fbbd844856e96eabed60cab
Commit Graph

66 Commits

Author SHA1 Message Date
Wes Lambert
9e50387eec update ingest files 2020-04-05 20:40:00 +00:00
Wes Lambert
e023aeb9be use agent name for observer name 2020-04-01 21:27:25 +00:00
weslambert
f13093dc51 Add message rename 2020-04-01 11:31:57 -04:00
Josh Brower
0e76447d11 osquery ingest - initial support 2020-04-01 10:17:36 -04:00
Wes Lambert
eacd3c9bfd update zeek.common 2020-03-31 00:36:42 +00:00
Wes Lambert
ad50093315 add community_id parsing for ingest 2020-03-30 15:49:36 +00:00
Wes Lambert
93c3c86e2f update wazuh fields and category 2020-03-30 14:24:01 +00:00
Wes Lambert
ef808875f4 fix ossec fields 2020-03-24 15:42:31 +00:00
Wes Lambert
083c588a87 add some more fields 2020-03-24 03:43:31 +00:00
Wes Lambert
a5ff21c528 remove agent field for non-Wazuh logs 2020-03-17 15:20:46 +00:00
Wes Lambert
b80e7fedcb remove agent field for non-Wazuh logs 2020-03-17 15:20:31 +00:00
Wes Lambert
488858f8bc remove beat field removal 2020-03-17 15:19:08 +00:00
Wes Lambert
faea67c9cf update env vars 2020-03-17 15:17:13 +00:00
Wes Lambert
b6ba8e483d update ES init 2020-03-14 12:06:32 +00:00
Wes Lambert
c52220330b modify pipelines 2020-03-14 12:03:32 +00:00
Wes Lambert
648b0ba790 remove old config 2020-03-11 12:14:22 +00:00
Wes Lambert
9ad16e8c71 upadte ingest config 2020-03-11 12:13:53 +00:00
Wes Lambert
b1203cfb9f add initial Strelka ingest config 2020-03-03 21:20:45 +00:00
Wes Lambert
ec6638a276 src/dst ip/port fields to ECS 2020-03-02 19:10:18 +00:00
Wes Lambert
e4fee51ed6 Change Bro Files source to file_source 2020-03-02 19:09:24 +00:00
m0duspwnens
306cc1127b heavynode 2020-01-29 12:56:25 -05:00
Wes Lambert
fbb9f099f9 Update Elastic state files 2020-01-28 14:49:58 +00:00
Mike Reeves
e038a8b731 Merge branch 'dev' into feature/issue124 2020-01-21 16:48:26 -05:00
m0duspwnens
a39edad3f6 changes for multipipelines / mastersearch node - https://github.com/Security-Onion-Solutions/securityonion-saltstack/issues/124 2020-01-21 16:39:42 -05:00
William Wernert
54fb2ad244 Merge branch 'dev' of github.com:Security-Onion-Solutions/securityonion-saltstack into feature/registry 
# Conflicts:
#	salt/common/init.sls
#	salt/elasticsearch/init.sls
#	salt/filebeat/init.sls
#	salt/hive/init.sls
#	salt/kibana/init.sls
#	salt/logstash/init.sls
#	salt/suricata/init.sls
#	salt/tcpreplay/init.sls
#	salt/wazuh/init.sls
 2020-01-14 15:48:56 -05:00
Mike Reeves
e141443238 Fix some contianer links 2020-01-14 11:05:36 -05:00
Mike Reeves
ae55b59048 Switch to using images in registry 2020-01-14 10:11:26 -05:00
Wes Lambert
7e1870e9d0 update image versions 2020-01-13 13:52:30 +00:00
Josh Brower
5a772e4f1c Break out FS & DS into their own states 2020-01-02 11:43:28 -05:00
Mike Reeves
783a9cd102 Elastic Search State - Fix ingest to work with storage nodes 2019-10-25 09:51:04 -04:00
Mike Reeves
20c4f15bbb Elastic Search State - Fix ingest to work with storage nodes 2019-10-24 18:51:32 -04:00
Mike Reeves
c064121f49 Elastic Search State - Fix ingest to work with storage nodes 2019-10-24 18:47:21 -04:00
Mike Reeves
f6a8b192df Elastic Search State - Fix ingest to work with storage nodes 2019-10-24 18:45:33 -04:00
Mike Reeves
ca4cd782a1 Docker URL Fix - Issue #68 2019-10-16 10:39:18 -04:00
doug
cb899943aa incoming bro_tunnel logs should go to bro_tunnels 2019-09-24 14:00:22 -04:00
doug
8472b24a67 parse Bro logs using Elasticsearch ingest node 2019-09-23 16:04:23 -04:00
Mike Reeves
feefc07235 HH Alpha Initial Push 2019-06-17 18:09:46 -04:00
Mike Reeves
f1e015edcf Add content trust to all modules 2019-05-02 16:53:19 -04:00
Mike Reeves
341297bbaa Update For 1.0.6 2019-01-08 13:29:24 -05:00
Wes Lambert
e335be7476 Elastalert - Remove config from ES Module 2018-12-06 05:44:09 +00:00
Wes Lambert
90e3b6912c Curator - Remove Curator files from ES module 2018-12-05 13:14:19 +00:00
Wes Lambert
1ccece70ef Curator - Remove config from ES 2018-12-05 13:10:29 +00:00
Mike Reeves
39602f3ef8 InfluxDB Module - Add Support for influxdb 2018-11-17 16:24:23 -05:00
Mike Reeves
799c08900b ElasticSearch Module - enable HH docker repo 2018-11-14 10:11:28 -05:00
Mike Reeves
62d28942f8 Move docker location 2018-11-13 08:59:16 -05:00
Mike Reeves
8cd7278ad1 ElasticSearch Module - Fix logic for master 2018-11-02 14:16:11 -04:00
Mike Reeves
0268f98f8e Fix connectivity 2018-10-31 16:53:23 -04:00
Mike Reeves
7b9440dd70 Elastic Search Module - Add eval support 2018-10-31 10:51:56 -04:00
Mike Reeves
9ee87a92e9 Getting Close 2018-10-11 19:38:25 -04:00
Mike Reeves
7982f8ffff Elastic Cross Cluster Prep 2018-10-11 15:45:25 -04:00