CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 17:22:49 +01:00
Code Issues Packages Projects Releases Wiki Activity
2,658 Commits 24 Branches 119 Tags
81ce7b915ae99d75befdf18c52af944f02fed51c
Commit Graph

76 Commits

Author SHA1 Message Date
m0duspwnens
766b56a944 update dockers to 1.2.2 2020-04-23 10:11:26 -04:00
Josh Brower
6332509a33 osquery pipeline fix 2020-04-15 20:22:54 -04:00
Mike Reeves
d9e27a5444 Update Versions 2020-04-15 15:37:59 -04:00
Wes Lambert
59787a6532 update parsing for Zeek files 2020-04-14 13:08:31 +00:00
Josh Brower
634100318e osquery ingest ecs 2020-04-13 10:58:13 -04:00
Josh Brower
edae63097c fleet osquery fixes 2020-04-10 16:56:37 -04:00
Mike Reeves
6625e17bf2 Have templates applied on the master only 2020-04-09 12:22:27 -04:00
Mike Reeves
ac52c014d1 Remove ES watch 2020-04-09 11:30:24 -04:00
Mike Reeves
0b07d0f25f Fix ES Watch 2020-04-09 11:25:46 -04:00
Mike Reeves
5692f2a672 Make Kibana run faster on checkins 2020-04-09 11:16:36 -04:00
Wes Lambert
9e50387eec update ingest files 2020-04-05 20:40:00 +00:00
Wes Lambert
e023aeb9be use agent name for observer name 2020-04-01 21:27:25 +00:00
weslambert
f13093dc51 Add message rename 2020-04-01 11:31:57 -04:00
Josh Brower
0e76447d11 osquery ingest - initial support 2020-04-01 10:17:36 -04:00
Wes Lambert
eacd3c9bfd update zeek.common 2020-03-31 00:36:42 +00:00
Wes Lambert
ad50093315 add community_id parsing for ingest 2020-03-30 15:49:36 +00:00
Wes Lambert
93c3c86e2f update wazuh fields and category 2020-03-30 14:24:01 +00:00
Wes Lambert
ef808875f4 fix ossec fields 2020-03-24 15:42:31 +00:00
Wes Lambert
083c588a87 add some more fields 2020-03-24 03:43:31 +00:00
Wes Lambert
a5ff21c528 remove agent field for non-Wazuh logs 2020-03-17 15:20:46 +00:00
Wes Lambert
b80e7fedcb remove agent field for non-Wazuh logs 2020-03-17 15:20:31 +00:00
Wes Lambert
488858f8bc remove beat field removal 2020-03-17 15:19:08 +00:00
Wes Lambert
faea67c9cf update env vars 2020-03-17 15:17:13 +00:00
Wes Lambert
b6ba8e483d update ES init 2020-03-14 12:06:32 +00:00
Wes Lambert
c52220330b modify pipelines 2020-03-14 12:03:32 +00:00
Wes Lambert
648b0ba790 remove old config 2020-03-11 12:14:22 +00:00
Wes Lambert
9ad16e8c71 upadte ingest config 2020-03-11 12:13:53 +00:00
Wes Lambert
b1203cfb9f add initial Strelka ingest config 2020-03-03 21:20:45 +00:00
Wes Lambert
ec6638a276 src/dst ip/port fields to ECS 2020-03-02 19:10:18 +00:00
Wes Lambert
e4fee51ed6 Change Bro Files source to file_source 2020-03-02 19:09:24 +00:00
m0duspwnens
306cc1127b heavynode 2020-01-29 12:56:25 -05:00
Wes Lambert
fbb9f099f9 Update Elastic state files 2020-01-28 14:49:58 +00:00
Mike Reeves
e038a8b731 Merge branch 'dev' into feature/issue124 2020-01-21 16:48:26 -05:00
m0duspwnens
a39edad3f6 changes for multipipelines / mastersearch node - https://github.com/Security-Onion-Solutions/securityonion-saltstack/issues/124 2020-01-21 16:39:42 -05:00
William Wernert
54fb2ad244 Merge branch 'dev' of github.com:Security-Onion-Solutions/securityonion-saltstack into feature/registry 
# Conflicts:
#	salt/common/init.sls
#	salt/elasticsearch/init.sls
#	salt/filebeat/init.sls
#	salt/hive/init.sls
#	salt/kibana/init.sls
#	salt/logstash/init.sls
#	salt/suricata/init.sls
#	salt/tcpreplay/init.sls
#	salt/wazuh/init.sls
 2020-01-14 15:48:56 -05:00
Mike Reeves
e141443238 Fix some contianer links 2020-01-14 11:05:36 -05:00
Mike Reeves
ae55b59048 Switch to using images in registry 2020-01-14 10:11:26 -05:00
Wes Lambert
7e1870e9d0 update image versions 2020-01-13 13:52:30 +00:00
Josh Brower
5a772e4f1c Break out FS & DS into their own states 2020-01-02 11:43:28 -05:00
Mike Reeves
783a9cd102 Elastic Search State - Fix ingest to work with storage nodes 2019-10-25 09:51:04 -04:00
Mike Reeves
20c4f15bbb Elastic Search State - Fix ingest to work with storage nodes 2019-10-24 18:51:32 -04:00
Mike Reeves
c064121f49 Elastic Search State - Fix ingest to work with storage nodes 2019-10-24 18:47:21 -04:00
Mike Reeves
f6a8b192df Elastic Search State - Fix ingest to work with storage nodes 2019-10-24 18:45:33 -04:00
Mike Reeves
ca4cd782a1 Docker URL Fix - Issue #68 2019-10-16 10:39:18 -04:00
doug
cb899943aa incoming bro_tunnel logs should go to bro_tunnels 2019-09-24 14:00:22 -04:00
doug
8472b24a67 parse Bro logs using Elasticsearch ingest node 2019-09-23 16:04:23 -04:00
Mike Reeves
feefc07235 HH Alpha Initial Push 2019-06-17 18:09:46 -04:00
Mike Reeves
f1e015edcf Add content trust to all modules 2019-05-02 16:53:19 -04:00
Mike Reeves
341297bbaa Update For 1.0.6 2019-01-08 13:29:24 -05:00
Wes Lambert
e335be7476 Elastalert - Remove config from ES Module 2018-12-06 05:44:09 +00:00