CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity
12,734 Commits 24 Branches 119 Tags
78db64a41986ab269bc8ce47e923f573b65b26f5
Commit Graph

12734 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Josh Brower
78db64a419 Auto-managed Fleet Server URLs 2023-07-14 08:40:26 -04:00
Josh Brower
fb8a79e112 Retry install 2023-07-13 13:15:01 -04:00
Josh Brower
6f5bb136ff Merge pull request #10753 from Security-Onion-Solutions/2.4/integrationfixes 
Update Integration JSON
 2023-07-13 07:34:32 -04:00
Jason Ertel
6297a2632b Merge pull request #10756 from Security-Onion-Solutions/kilo 
catch up branch
 2023-07-12 10:38:18 -04:00
Jason Ertel
5cc752f128 Merge branch '2.4/main' into 2.4/dev 2023-07-12 10:19:39 -04:00
Mike Reeves
68d95cd1cb Merge pull request #10754 from Security-Onion-Solutions/2.4.3 
2.4.3
 2023-07-12 10:05:31 -04:00
Mike Reeves
1a68c3cd24 2.4.3 2023-07-12 10:02:19 -04:00
Josh Brower
40294e2762 Update Integration JSON 2023-07-12 08:49:36 -04:00
Josh Patterson
87eec4ae88 Merge pull request #10751 from Security-Onion-Solutions/yararules 
Yararules
 2023-07-11 15:55:00 -04:00
m0duspwnens
676696b24a restart strelka backend if rules change 2023-07-11 15:48:22 -04:00
m0duspwnens
da27fce95f run so-yara-download/update if scripts change 2023-07-11 13:48:26 -04:00
weslambert
8acc37a7d1 Merge pull request #10749 from Security-Onion-Solutions/fix/yara_update 
Fix syntax for conditional
 2023-07-11 13:41:38 -04:00
weslambert
5f1b467e64 Fix syntax for conditional 2023-07-11 13:37:50 -04:00
weslambert
fe7fb7f54d Merge pull request #10748 from Security-Onion-Solutions/fix/elasticsearch_strelka 
Update logic for YARA matches
 2023-07-11 13:02:24 -04:00
Wes
577bfac886 Update logic for YARA matches 2023-07-11 17:00:13 +00:00
Josh Patterson
468b6e4831 Merge pull request #10741 from Security-Onion-Solutions/m0duspwnens-patch-1 
import ELASTICFLEETMERGED
 2023-07-11 11:04:26 -04:00
Josh Patterson
c75d209d7f import ELASTICFLEETMERGED 2023-07-11 11:01:27 -04:00
Josh Brower
b29b264d5c Merge pull request #10740 from Security-Onion-Solutions/2.4/removecomments 
Remove Comments
 2023-07-11 10:28:41 -04:00
Josh Brower
c99e7da5a7 Remove Comments 2023-07-11 10:26:18 -04:00
Josh Patterson
60d66b973c Merge pull request #10739 from Security-Onion-Solutions/yararules 
include *.yara
 2023-07-11 10:21:35 -04:00
m0duspwnens
304830d2ee remove old rules prior to copy 2023-07-11 10:20:04 -04:00
m0duspwnens
d7285d69a7 include *.yara 2023-07-11 09:59:13 -04:00
weslambert
7cdd1f89d7 Merge pull request #10736 from Security-Onion-Solutions/fix/strelka_path 
Change path to old one
 2023-07-11 09:13:36 -04:00
weslambert
b7cab1d118 Change path to old one 2023-07-11 09:10:20 -04:00
weslambert
f03a472ee5 Merge pull request #10731 from Security-Onion-Solutions/fix/kibana_file_search 
Kibana dashboard changes
 2023-07-11 08:50:03 -04:00
Mike Reeves
c7a0801eed Merge pull request #10725 from Security-Onion-Solutions/yararules 
Yararules
 2023-07-11 08:49:20 -04:00
Josh Brower
5e0015e9ac Merge pull request #10735 from Security-Onion-Solutions/2.4/TagPlaybookAlerts 
2.4/tag playbook alerts
 2023-07-11 08:37:37 -04:00
Josh Brower
5a72c558cb Tag at top level 2023-07-11 08:35:47 -04:00
Josh Brower
a6e907f76c Tag Playbook Alerts 2023-07-11 08:03:15 -04:00
Josh Brower
2d3eb22057 Merge pull request #10732 from Security-Onion-Solutions/2.4/autogenfix 
Exclude Import and Eval from autoupdate
 2023-07-10 17:18:10 -04:00
Josh Brower
8437fcd94c Exclude Import and Eval from autoupdate 2023-07-10 17:10:08 -04:00
Josh Brower
1b25db4573 Merge pull request #10680 from Security-Onion-Solutions/2.4/fleetautogen 
Automatically manage Fleet Logstash Config
 2023-07-10 16:26:20 -04:00
m0duspwnens
f8ed2e6e8e make parent dirs 2023-07-10 16:11:45 -04:00
m0duspwnens
f22c61a0a2 use su instead of runuser since logCmd has issues with runuser 2023-07-10 15:19:41 -04:00
m0duspwnens
5069d1163c only *.yar files 2023-07-10 14:36:34 -04:00
Josh Brower
31edf2e8ea Tighten & Document Pipelines 2023-07-10 14:17:42 -04:00
Wes
6b8893ded5 Update saved objects 2023-07-10 18:13:34 +00:00
m0duspwnens
1f8b7bda89 fix output_dir var 2023-07-10 13:39:31 -04:00
m0duspwnens
59233d6550 use full path 2023-07-10 11:43:56 -04:00
m0duspwnens
1ac72e5b24 ensure /nsm/rules/yara directory exists 2023-07-10 11:10:37 -04:00
Josh Brower
7805ca8beb Add Failover Support 2023-07-10 10:38:14 -04:00
m0duspwnens
47b2481cdd nothing in strelka/tools/sbin_jinja to file.recurse 2023-07-10 10:29:19 -04:00
m0duspwnens
fa933d3f53 use file_mode 2023-07-10 10:26:30 -04:00
m0duspwnens
f4dc73a206 yara download and update 2023-07-10 09:42:37 -04:00
Doug Burks
437c9cab68 Merge pull request #10726 from Security-Onion-Solutions/dougburks-patch-1 
Update README.md
 2023-07-10 09:07:11 -04:00
Wes
6da96a733f Use tags instead of dataset 2023-07-10 13:06:38 +00:00
Doug Burks
82796370ce Update README.md 2023-07-10 09:04:55 -04:00
Josh Brower
8c16feb772 Rename Fleet pipelines 2023-07-09 12:22:55 -04:00
Josh Brower
ce1f363424 Allow base_url 2023-07-08 13:30:19 -04:00
Josh Brower
e8860a7d2c Fix perms 2023-07-08 09:04:55 -04:00