securityonion

mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-10 03:02:58 +01:00

Author	SHA1	Message	Date
m0duspwnens	cc0697cefa	Merge branch 'dev' of https://github.com/Security-Onion-Solutions/securityonion into dev	2021-01-12 10:29:49 -05:00
Josh Patterson	4f384991ba	Merge pull request #2601 from Security-Onion-Solutions/automation/ssh_prompts remote quotes	2021-01-12 09:54:10 -05:00
m0duspwnens	9405990a2e	remote quotes	2021-01-12 09:50:08 -05:00
m0duspwnens	6ea1a83afe	resolve some issues with the zeekloss script https://github.com/Security-Onion-Solutions/securityonion/issues/2590	2021-01-11 14:10:08 -05:00
m0duspwnens	4d84b64056	Merge branch 'dev' of https://github.com/Security-Onion-Solutions/securityonion into dev	2021-01-11 12:43:37 -05:00
Jason Ertel	8b49876e26	First pass at distribute ISO automation files	2021-01-11 12:04:57 -05:00
Jason Ertel	bc8e200919	Continued retry implementation for salt-key acceptance; improve timestamp coverage in setup	2021-01-10 02:34:46 -05:00
Jason Ertel	63047b4b85	Add retry logic around salt key acceptance during setup	2021-01-10 00:57:43 -05:00
Josh Patterson	95a9d14832	Merge pull request #2578 from Security-Onion-Solutions/salt/info_logging increase salt logging to info	2021-01-08 16:34:26 -05:00
m0duspwnens	f07e583013	increase salt logging to info	2021-01-08 16:33:38 -05:00
m0duspwnens	ae63b52e7a	Merge branch 'dev' of https://github.com/Security-Onion-Solutions/securityonion into dev	2021-01-08 15:30:15 -05:00
Jason Ertel	9eedb874fb	Add eval and standalone airgap automations	2021-01-08 12:37:54 -05:00
Jason Ertel	a6f88b2843	Correct eval AMI automation vars	2021-01-07 15:22:34 -05:00
m0duspwnens	86cb1abad4	Merge branch 'dev' of https://github.com/Security-Onion-Solutions/securityonion into dev	2021-01-07 15:12:36 -05:00
Jason Ertel	567d80bb01	Update sed to disable sudo password prompt for automated testing	2021-01-07 11:33:59 -05:00
Josh Patterson	d2848b9985	Merge pull request #2561 from Security-Onion-Solutions/automation/so-status add description for exit code 99	2021-01-07 11:24:14 -05:00
m0duspwnens	83e7493691	add description for exit code 99	2021-01-07 11:23:39 -05:00
William Wernert	1ec45fb4ae	[fix] Only show Zeek prompts if Zeek was selected as the MD tool Resolves #900	2021-01-07 10:37:25 -05:00
William Wernert	c1e32ed680	[refactor] Rename MD tool function to be more clear	2021-01-07 10:36:32 -05:00
William Wernert	fa06a38a3b	[refactor] Remove duplicate function	2021-01-07 10:36:01 -05:00
Josh Patterson	d287dd2412	Merge pull request #2557 from Security-Onion-Solutions/automation/so-status Automation/so status	2021-01-07 09:07:12 -05:00
Josh Patterson	8fa2b14c98	Merge pull request #2539 from Security-Onion-Solutions/automation/ssh_prompts Automation/ssh prompts	2021-01-07 09:06:10 -05:00
Jason Ertel	948f900673	Drop password requirement for sudo access during automated tests	2021-01-06 20:39:44 -05:00
m0duspwnens	a5735e6654	return 99 if setup is running	2021-01-06 20:14:42 -05:00
m0duspwnens	ae7c0a26be	add a quiet mode to so-status for automation testing	2021-01-06 18:46:21 -05:00
Jason Ertel	bbdb47703d	Rename automation files to match environment names for consistency	2021-01-06 17:21:46 -05:00
Wes Lambert	7f64d57111	Reserve port for Wazuh API and check if port is already in use	2021-01-06 14:37:28 -05:00
Wes Lambert	e7db1a99bd	Set @timestamp to winlog.systemTime	2021-01-06 14:37:28 -05:00
Mike Reeves	7d25e8a08b	Remove ERSPAN so log doesn't show a warning	2021-01-06 14:37:28 -05:00
Masaya-A	d37023e0f5	Make yum removing unneeded packages Reference: https://www.stigviewer.com/stig/red_hat_enterprise_linux_7/2020-09-03/finding/V-204452	2021-01-06 14:37:28 -05:00
William Wernert	9d8fb79d9f	[feat] Reorder network-only prompt	2021-01-06 14:37:27 -05:00
weslambert	c864cc607f	Remove multiple old so-yara-update cron jobs, if needed	2021-01-06 14:37:27 -05:00
William Wernert	80a3d8dcf8	[fix] Fix automation compatibility	2021-01-06 14:37:27 -05:00
William Wernert	ac35a345ff	[fix] Don't prompt to only set up network and then skip if network was previously configured	2021-01-06 14:37:27 -05:00
weslambert	958635b012	Remove old Strelka cron job	2021-01-06 14:37:27 -05:00
William Wernert	6ba11f835d	[fix] Remove condition for stopping SOC, since the parent condition covers what's tested	2021-01-06 14:37:27 -05:00
Jason Ertel	1cc8a78aa5	Only stop SOC if is_manager or is_import	2021-01-06 14:37:27 -05:00
Jason Ertel	7dcd934269	so-fleet-setup doesn't need an interactive terminal to run, remove 'it'	2021-01-06 14:37:27 -05:00
Jason Ertel	bedbd39b82	tcpreplay doesn't need an interactive terminal to run, remove 'it'	2021-01-06 14:37:27 -05:00
Jason Ertel	7d97e3590c	Redirect tcpreplay init output to file	2021-01-06 14:37:27 -05:00
Jason Ertel	bdbc637852	Stop SOC prior to opening the firewall for analysts, this ensures no outside requests can be processed prior to the server rebooting	2021-01-06 14:37:27 -05:00
Jason Ertel	10d04f760d	Use manager internal IP for intra-service comms	2021-01-06 14:37:26 -05:00
Jason Ertel	ebb0e615b9	Fix script typo to correctly run the so-test	2021-01-06 14:37:26 -05:00
Jason Ertel	f20feabda2	Reboot to ensure thehive falls in line before kicking off the test	2021-01-06 14:37:26 -05:00
Jason Ertel	9b40318bfe	Ensure so-test is logged	2021-01-06 14:37:26 -05:00
Jason Ertel	fc44474519	Add eval automation	2021-01-06 14:37:26 -05:00
Jason Ertel	229657f7d2	Use AMI's public IP for external access	2021-01-06 14:37:26 -05:00
Jason Ertel	fb28faa4e3	Monitor interface will not always be bond0 - pull correct value from pillar; Replay test data after automated test installations complete.	2021-01-06 14:37:26 -05:00
weslambert	36ae09ac4a	Merge pull request #2545 from Security-Onion-Solutions/fix/wazuh_port_reservation Reserve port for Wazuh API and check if port is already in use	2021-01-06 11:49:23 -05:00
weslambert	55344725e7	Merge pull request #2544 from Security-Onion-Solutions/fix/winlog_timestamp Set @timestamp to winlog.systemTime	2021-01-06 11:49:01 -05:00

... 8 9 10 11 12 ...

6570 Commits