3965 Commits

This Branch

This Branch

All Branches

Author	SHA1	Message	Date
Wes Lambert	52a0ace1b8	Use Strelka rules if enabled	2020-06-24 17:08:58 +00:00
William Wernert	bd36749959	[feat] Remove navigator container references	2020-06-24 12:38:32 -04:00
William Wernert	4404a4f312	Merge branch 'dev' of github.com:Security-Onion-Solutions/securityonion-saltstack into dev	2020-06-23 17:57:19 -04:00
William Wernert	0a0fe5914a	[fix][feat] Move navigator entries to static files + fix indent	2020-06-23 17:57:14 -04:00
weslambert	c3651f1b45	Merge pull request #884 from Security-Onion-Solutions/feature/strelka_client ... Add FW config for Strelka frontend	2020-06-23 14:57:06 -04:00
Wes Lambert	f7eacc2b05	Add FW config for Strelka frontend	2020-06-23 18:47:23 +00:00
weslambert	685e3048ac	Merge pull request #883 from Security-Onion-Solutions/fix/hunt_files_rename ... Update file dataset name for hunt queries	2020-06-23 13:49:52 -04:00
Wes Lambert	c0428ce79d	Update file dataset name for hunt queries	2020-06-23 17:48:12 +00:00
weslambert	13df2e6312	Merge pull request #882 from Security-Onion-Solutions/fix/files_rename ... Move dataset from files to file	2020-06-23 13:44:26 -04:00
Wes Lambert	af451573eb	Move dataset from files to file	2020-06-23 17:43:28 +00:00
m0duspwnens	36a329214a	merge eve-log in outputs for suricata meta data generation or zeek/default - https://github.com/Security-Onion-Solutions/securityonion/issues/584	2020-06-22 16:56:03 -04:00
m0duspwnens	f1bcd35734	Merge remote-tracking branch 'remotes/origin/dev' into feature/suripillar	2020-06-22 09:13:29 -04:00
Jason Ertel	d7693f9b55	Expose pcap dir to sensoroni for epoch discovery	2020-06-22 08:27:43 -04:00
Jason Ertel	1ee3625f61	Ensure certs dir is group readable by socore since Sensoroni process will need to read the client key	2020-06-21 15:46:36 -04:00
Jason Ertel	81ed656ba0	Bind both steno and sensoroni processes to host network	2020-06-21 10:50:10 -04:00
Jason Ertel	76e3118bd3	Split Sensoroni and Stenographer executables into separate images	2020-06-21 08:33:09 -04:00
m0duspwnens	57fa2c5abe	Merge remote-tracking branch 'remotes/origin/dev' into feature/suripillar	2020-06-18 13:49:07 -04:00
Mike Reeves	6dbe83a77f	Update so-docker-refresh	2020-06-18 12:38:07 -04:00
Jason Ertel	2f3a99cfb0	fix: indentation is incorrect	2020-06-17 17:46:49 -04:00
weslambert	fb9ac58ed6	Merge pull request #869 from Security-Onion-Solutions/feature/elastic_indices_rw ... Basic index read-only attr removal script	2020-06-17 15:00:23 -04:00
Wes Lambert	6d25151ab8	Basic index read-only attr removal script	2020-06-17 18:59:13 +00:00
Josh Brower	6794cabf9c	Merge pull request #868 from Security-Onion-Solutions/bugfix/fleet-custom-hostname ... Fleet custom hostname regex fix	2020-06-17 14:46:07 -04:00
weslambert	569fc4ac4d	Merge pull request #867 from Security-Onion-Solutions/feature/zeek_custom_policy ... Feature/zeek custom policy	2020-06-17 13:12:38 -04:00
Wes Lambert	90c278096c	Add custom Zeek script dir	2020-06-17 17:11:27 +00:00
Josh Brower	3418f5748c	Fleet custom hostname regex fix	2020-06-17 13:08:47 -04:00
Jason Ertel	6bf8f0af08	Eliminate multiple version definitions in this repo	2020-06-17 10:46:07 -04:00
Jason Ertel	3451f74b63	Update version to 2.0.0-rc.1	2020-06-17 10:32:39 -04:00
weslambert	b489420002	Merge pull request #865 from Security-Onion-Solutions/feature/cortex_custom ... Feature/cortex custom	2020-06-17 09:22:42 -04:00
Wes Lambert	1beff65cc9	fix typo	2020-06-17 13:20:32 +00:00
Wes Lambert	cbfe375407	Custom analyzer and responder dirs	2020-06-17 13:16:52 +00:00
Mike Reeves	ada0d7b8cd	Merge pull request #862 from Security-Onion-Solutions/dev ... 1.4.0 1.4.0	2020-06-16 14:47:08 -04:00
Mike Reeves	6410087994	1.4.0	2020-06-16 13:52:37 -04:00
Josh Brower	2986926ce9	Merge pull request #861 from Security-Onion-Solutions/bugfix/fleet-kibana ... Beta3 Kibana dashboard updates	2020-06-16 10:17:26 -04:00
Josh Brower	a9df5d75b0	Beta3 Kibana dashboard updates	2020-06-16 10:16:31 -04:00
William Wernert	0c9c7002dc	[fix] Simplify if statements and apply mine.update during setup	2020-06-16 08:38:50 -04:00
Mike Reeves	0961fe7091	Merge pull request #857 from Security-Onion-Solutions/feature/metasuri ... Feature/metasuri	2020-06-15 21:52:41 -04:00
Mike Reeves	4573b346f8	Merge remote-tracking branch 'remotes/origin/dev' into feature/metasuri	2020-06-15 21:46:07 -04:00
Mike Reeves	3681f91c37	Suricata Conn	2020-06-15 21:46:04 -04:00
Jason Ertel	97d127218a	fix: stop updating salt mine - this is an attempt to sort out why the CA intermittently disappears from the mine	2020-06-15 17:40:58 -04:00
Josh Patterson	9340b633e2	Merge pull request #855 from Security-Onion-Solutions/quickfix/searchnode2node ... fix so-status for searchnode	2020-06-15 17:01:50 -04:00
m0duspwnens	fe39179ba1	fix so-status for searchnode	2020-06-15 17:01:23 -04:00
Josh Patterson	3b920b2cd8	Merge pull request #854 from Security-Onion-Solutions/quickfix/searchnode2node ... place searchnode role with node where referenced	2020-06-15 16:59:55 -04:00
m0duspwnens	91a50c0915	place searchnode role with node where referenced	2020-06-15 16:58:30 -04:00
Josh Patterson	578e2b5d1d	Merge pull request #853 from Security-Onion-Solutions/quickfix/playbook ... fix for master not having a node:mainip pillar - playbook	2020-06-15 15:15:23 -04:00
m0duspwnens	b396c39352	fix for master not having a node:mainip pillar - playbook	2020-06-15 15:13:29 -04:00
Mike Reeves	a91dbf0d1d	Fix wording for Suricata meta data in whiptail	2020-06-15 15:10:16 -04:00
Josh Patterson	1a6fc3ef6c	Merge pull request #852 from Security-Onion-Solutions/quickfix/fleetfwsetup ... add firewall rules for fleet standalone	2020-06-15 13:51:39 -04:00
m0duspwnens	51e500f521	add firewall rules for fleet standalone	2020-06-15 13:50:37 -04:00
weslambert	91c32725fb	Merge pull request #851 from Security-Onion-Solutions/fix/es_field_fixes ... Fix/es field fixes	2020-06-15 12:59:01 -04:00
Wes Lambert	f3c9f2e5ea	update templates	2020-06-15 16:57:46 +00:00