6473 Commits

Author	SHA1	Message	Date
Doug Burks	51cc047933	add cip to hunt.eventfields.json	2022-11-22 10:40:22 -05:00
Doug Burks	2a805ac1a6	Add tds entries to hunt.eventfields.json	2022-11-22 10:29:55 -05:00
Doug Burks	595f615ed9	Add ICS dashboard	2022-11-22 10:22:55 -05:00
Doug Burks	aa7c39d312	Add dashboards for stun, tds, and wireguard	2022-11-22 10:08:39 -05:00
Wes	95a6f9aa7d	Add COTP and TDS ingest pipelines	2022-11-22 13:35:19 +00:00
weslambert	4c09c8856b	Fix syntax error for 'ics' tag logic	2022-11-22 07:23:56 -05:00
weslambert	72eccd2649	Fix indentation	2022-11-21 17:01:16 -05:00
weslambert	310ea633b6	Add 'ics' tag to events generated from ICS protocol logs	2022-11-21 16:43:43 -05:00
Doug Burks	0536d174fe	Fix opcua_binary reference in so-zeek-logs	2022-11-21 14:03:22 -05:00
Doug Burks	a54bb2bad4	Remove descriptions from so-zeek-logs	2022-11-21 13:23:53 -05:00
lock-wire	f80c8b89e4	Shorten Log Descriptions	2022-11-21 09:49:31 -07:00
Peter Di Giorgio	33bf0c6902	Merge pull request #9163 from Security-Onion-Solutions/dev ... Update Foxtrot from Dev	2022-11-17 10:44:24 -06:00
Wes	a278194037	Add additional ICS/SCADA ingest node pipelines	2022-11-17 16:16:33 +00:00
lock-wire	1b8e546045	Add s7comm,tds,stun,profinet,wireguard	2022-11-16 21:41:02 -06:00
Wes	35e131b888	Update ingest node pipelines for ICS/SCADA protocols	2022-11-16 21:09:30 +00:00
Mike Reeves	b0e08ed749	Merge pull request #9066 from security-companion/analyzers-patch1 ... fix descriptions in files related to analyzers	2022-11-12 11:32:09 -05:00
Doug Burks	9bf1c1e869	FIX: Avoid deprecation warning in Zeek file extraction script #9123	2022-11-11 16:27:11 -05:00
Peter Di Giorgio	1e96a0b6a6	Merge pull request #9122 from Security-Onion-Solutions/foxtrot ... Merge new protocol analyzers into dev	2022-11-11 12:53:57 -08:00
lock-wire	8dc08f66fd	Merge branch 'foxtrot' of https://github.com/Security-Onion-Solutions/securityonion into foxtrot ... merge remote	2022-11-11 12:18:02 -08:00
lock-wire	73b1e5949b	Add ecat, enip, cip, and opcua	2022-11-11 12:15:54 -08:00
Doug Burks	2d6a4d7c28	Merge pull request #9098 from Security-Onion-Solutions/feature/local-docs ... FEATURE: Improve local copy of docs in SOC #9097	2022-11-11 16:21:54 +00:00
Peter Di Giorgio	ae389ee487	Merge pull request #9121 from Security-Onion-Solutions/dev ... Update foxtrot from dev	2022-11-11 07:25:26 -08:00
lock-wire	85d30520ce	Add BSAP protocol	2022-11-11 07:22:55 -08:00
Jason Ertel	595a95fdf5	merge conflicts	2022-11-10 16:47:52 -05:00
Mike Reeves	4acd9f8816	Update soup	2022-11-09 10:10:52 -05:00
security-companion	7ee4eb6101	fix descriptions in files related to analyzers	2022-11-08 22:32:28 +01:00
doug	84b2fc9c17	FEATURE: Improve local copy of docs in SOC #9097	2022-11-08 16:26:09 -05:00
Mike Reeves	a7417a7242	Update soup	2022-11-08 14:48:48 -05:00
Peter Di Giorgio	5532577fdd	Merge pull request #9071 from Security-Onion-Solutions/dev ... Merge Dev into Foxtrot	2022-11-04 08:01:29 -07:00
Peter Di Giorgio	5ebf470a86	Update zeek.bacnet_discovery	2022-11-03 22:27:04 -07:00
Peter Di Giorgio	4b39ccec6d	Update zeek.bacnet_property	2022-11-03 15:30:20 -07:00
Mike Reeves	c5bfe6ffdb	Update init.sls	2022-11-02 12:59:46 -04:00
Mike Reeves	4ac365e670	Update init.sls	2022-11-02 12:59:17 -04:00
Mike Reeves	ff1a903895	Update init.sls	2022-11-02 12:58:31 -04:00
Mike Reeves	388486ec08	Update init.sls	2022-11-02 10:06:13 -04:00
Mike Reeves	f74aee6a03	Update init.sls	2022-11-01 13:21:12 -04:00
Mike Reeves	16d8e9e5a0	Fix soup and perms updates	2022-11-01 09:05:26 -04:00
Mike Reeves	ee1f55361e	Add soup and perms updates	2022-10-31 16:33:38 -04:00
Mike Reeves	cb33464668	Merge pull request #9033 from Security-Onion-Solutions/strelkafix ... Add Filechecks	2022-10-31 15:49:40 -04:00
Mike Reeves	06ddae13b5	Update filecheck	2022-10-31 15:41:57 -04:00
Mike Reeves	16d3dead04	Update sensor-rotate.conf	2022-10-31 15:33:10 -04:00
Mike Reeves	f7043f3f62	Update init.sls	2022-10-31 15:25:38 -04:00
Mike Reeves	bf41f2984a	Update init.sls	2022-10-31 14:58:55 -04:00
Mike Reeves	86ca3602f3	Update init.sls	2022-10-31 14:44:01 -04:00
Mike Reeves	416c28fded	Update init.sls	2022-10-31 14:42:23 -04:00
Mike Reeves	297373877a	Update init.sls	2022-10-31 14:36:40 -04:00
Mike Reeves	db9b93a96c	Update init.sls	2022-10-31 14:35:02 -04:00
Mike Reeves	5635375d8d	Update init.sls	2022-10-31 14:30:11 -04:00
Mike Reeves	07e72e4013	Update filecheck	2022-10-31 13:47:49 -04:00
Mike Reeves	518d2aaa9c	Update filecheck.yaml	2022-10-31 13:45:00 -04:00