CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-04-24 13:42:05 +02:00
Code Issues Packages Projects Releases Wiki Activity
10,578 Commits 40 Branches 125 Tags
92170941f0294a429be4a07e632fe9ddfb7c03cb
Commit Graph

10578 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Wes 58b4a8fbab Change PyYAML .whl file name to comply with Joliet's 240-character limit 2022-10-25 18:47:02 +00:00
Mike Reeves bd7e12f682 Merge pull request #8952 from Njinx/dev 
FEATURE: so-pcap-export can run without needing to be attached to a TTY
 2022-10-25 14:38:48 -04:00
Mike Reeves 64e43f07b9 Merge pull request #8993 from Security-Onion-Solutions/TOoSmOotH-patch-3 
Update VERSION
 2022-10-25 14:36:45 -04:00
Mike Reeves 2d84e2e977 Update VERSION 2022-10-25 14:35:52 -04:00
Mike Reeves 465a1a82d7 Merge pull request #8981 from Security-Onion-Solutions/dev 
2.3.181
2.3.181-20221021 		2022-10-25 14:30:50 -04:00
Peter Di Giorgio 61d36d584f Add Modbus, DNP3, BZAR, and oui-logging 2022-10-25 07:10:52 -07:00
Peter Di Giorgio 2d343110cc Add DNP3 and Modbus extensions to zeeklogs.sls 2022-10-25 07:09:11 -07:00
Peter Di Giorgio 4502e2c260 Remove logs for OT parsers 2022-10-24 23:16:18 -07:00
Peter Di Giorgio beb67847f9 Remove modbus,bzar,dnp3,oui-logging 2022-10-24 23:14:32 -07:00
Peter Di Giorgio 9cdc29c482 Fix Syntax for zeeklogs pillar 2022-10-24 14:30:15 -07:00
weslambert 292f66138b Merge pull request #8983 from Security-Onion-Solutions/revert-8982-fix/sensoroni_analyzers_pyyaml_wheel_name 
Revert "Change PyYAML .whl file name to comply with Joliet's 240-character limit/threshold"
 2022-10-24 16:49:19 -04:00
weslambert 0087768946 Revert "Change PyYAML .whl file name to comply with Joliet's 240-character limit/threshold" 2022-10-24 16:47:30 -04:00
Peter Di Giorgio 01d177366d Fix Zeek Pillar 2022-10-24 12:00:43 -07:00
weslambert 712340a027 Merge pull request #8982 from Security-Onion-Solutions/fix/sensoroni_analyzers_pyyaml_wheel_name 
Change PyYAML .whl file name to comply with Joliet's 240-character limit/threshold
 2022-10-24 14:14:45 -04:00
Wes 1caac3f0b0 Add PyYAML .whl files back since they were 'deleted' in the previous commit. 2022-10-24 18:06:19 +00:00
Wes 54a5dd6cbd Change name of PyYAML .whl file to remain under Joliet's 240-character limit/threshold 2022-10-24 18:05:15 +00:00
Mike Reeves 6570177b0c Merge pull request #8979 from Security-Onion-Solutions/2.3.181 
2.3.181
 2022-10-24 11:39:08 -04:00
Mike Reeves f7ed992f24 2.3.181 2022-10-24 11:33:31 -04:00
Mike Reeves 4a18f8d18a 2.3.181 2022-10-24 11:32:19 -04:00
Peter Di Giorgio 24cf481f4a Merge pull request #8973 from lock-wire/patch-3 
Add Modbus, DNP3, BZAR, and oui-logging
 2022-10-21 18:06:13 -07:00
Peter Di Giorgio cd4e0c1f8e Add DNP3 and Modbus extensions to zeeklogs.sls 
Add DNP3 and Modbus extenstions to zeeklogs to ensure filebeat.yml is configured properly to ship lots.  Need to move these behind the OT flag.
 2022-10-21 14:19:21 -07:00
Peter Di Giorgio 4a60310dc8 Add Modbus, DNP3, BZAR, and oui-logging 
This is an initial proof of concept.  Need to migrate these entries behind a flag.
 2022-10-21 14:04:40 -07:00
weslambert 930620fce6 Merge pull request #8971 from lock-wire/patch-2 
Add Ingest pipeline for Modbus and DNP3 extensions
 2022-10-21 16:28:52 -04:00
Peter Di Giorgio 7a60d0987c Update zeek.conn to include client.oui 2022-10-21 13:02:01 -07:00
Peter Di Giorgio 9ac06057c1 Create zeek.read_write_multiple_registers 2022-10-21 13:00:12 -07:00
Peter Di Giorgio e5c69c3236 Create zeek.modbus_mask_write_register 2022-10-21 12:58:36 -07:00
Peter Di Giorgio 39f050c6e4 Rename modbus_detailed to zeek.modbus_detailed 2022-10-21 12:56:59 -07:00
Peter Di Giorgio 4ee083759c Rename dnp3_objects to zeek.dnp3_objects 2022-10-21 12:56:35 -07:00
Peter Di Giorgio 072bfd87b7 Create Ingest for Modbus Detailed 2022-10-21 12:53:30 -07:00
Peter Di Giorgio b7aaaa80bb Create Ingest for DNP3 Objects extension 2022-10-21 12:51:13 -07:00
Jason Ertel b8884b6ac9 Merge pull request #8968 from Security-Onion-Solutions/181soup 
update soup for 2.3.181
 2022-10-21 12:00:58 -04:00
Jason Ertel 05e271af47 update soup for 2.3.181 2022-10-21 11:52:54 -04:00
Mike Reeves 58e80a9db8 Merge pull request #8964 from Security-Onion-Solutions/TOoSmOotH-patch-2 
Update VERSION
 2022-10-21 10:45:44 -04:00
Mike Reeves e16fc3605e Update VERSION 2022-10-21 10:43:34 -04:00
Ben Allen f13f05eb94 Run without needing to be attached to a TTY 2022-10-19 14:11:11 -04:00
weslambert a54fc4cead Merge pull request #8942 from Security-Onion-Solutions/master 
Update Foxtrot to .180
 2022-10-18 16:39:21 -04:00
Mike Reeves 2127ba90ee Merge pull request #8925 from Security-Onion-Solutions/TOoSmOotH-patch-1 
Update VERSION
 2022-10-17 10:51:02 -04:00
Mike Reeves 3373aef87d Update VERSION 2022-10-17 10:50:14 -04:00
Mike Reeves fa45e8ded7 Merge pull request #8924 from Security-Onion-Solutions/dev 
2.3.180
2.3.180-20221014 		2022-10-17 10:41:06 -04:00
Mike Reeves 6d0ead7b5b Merge pull request #8923 from Security-Onion-Solutions/2.3.180 
2.3.180
 2022-10-17 09:47:06 -04:00
Mike Reeves a2a6625f3b 2.3.180 2022-10-17 09:39:07 -04:00
Mike Reeves 3c2510acd7 Merge pull request #8920 from Security-Onion-Solutions/dev 
Merge Dev into Foxtrot
 2022-10-17 09:34:57 -04:00
Doug Burks 0d807d20f4 Merge pull request #8914 from Security-Onion-Solutions/dougburks-patch-1 
Remove destination_geo.organization_name from Sysmon Network sankey diagram
 2022-10-13 13:03:51 +00:00
Doug Burks f4042263a3 Remove destination_geo.organization_name from Sysmon Network sankey diagram 2022-10-13 08:59:10 -04:00
Doug Burks a930f8233d Merge pull request #8899 from Security-Onion-Solutions/dougburks-patch-2 
Update soup for 2.3.180
 2022-10-11 17:14:55 +00:00
Doug Burks 7401008523 Update soup for 2.3.180 2022-10-11 12:58:37 -04:00
Doug Burks 5199ea483e Merge pull request #8878 from Security-Onion-Solutions/feature/improve-sysmon-dashboards 
FEATURE: Add new Sysmon dashboards #8870
 2022-10-07 16:47:02 +00:00
doug 454a7a4799 FEATURE: Add new Sysmon dashboards #8870 2022-10-07 11:52:49 -04:00
Doug Burks 6fb7733d8c Merge pull request #8875 from Security-Onion-Solutions/dougburks-patch-1 
Increment SO to 2.3.180 and Elastic to 8.4.3
 2022-10-07 11:13:13 +00:00
Doug Burks ab17cbee31 Update Elastic to 8.4.3 2022-10-07 07:03:10 -04:00