CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity
4,938 Commits 24 Branches 119 Tags
993aabedf225bd48bc6c943d691e3989f2e9e032
Commit Graph

4938 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
weslambert
993aabedf2 Merge pull request #1491 from Security-Onion-Solutions/fix/so-elasticsearch-pipeline-stats-dots 
Ensure pipelines with dots in names can be referenced
 2020-10-08 15:41:44 -04:00
weslambert
06706d29f2 Ensure pipelines with dots in names can be referenced 2020-10-08 15:41:17 -04:00
weslambert
f41987024f Merge pull request #1490 from Security-Onion-Solutions/feature/so-elastic-pipeline-stats 
Add pipeline stats script
 2020-10-08 15:12:55 -04:00
Wes Lambert
1efb39a71b Add pipeline stats script 2020-10-08 19:11:41 +00:00
m0duspwnens
52e8265511 update is_airgap for soup 2020-10-08 14:16:19 -04:00
Mike Reeves
26317efe79 Update Soup 2020-10-08 14:05:52 -04:00
William Wernert
0795aa39ba Merge pull request #1487 from Security-Onion-Solutions/feature/rotate-logs 
Feature/rotate logs
 2020-10-08 12:48:01 -04:00
William Wernert
2ad3f9da11 [fix] Wazuh not saving .log files anymore, only check .json files 2020-10-08 12:41:51 -04:00
William Wernert
034750fe5b Merge branch 'dev' into feature/rotate-logs 
# Conflicts:
#	setup/so-functions
 2020-10-08 12:36:30 -04:00
William Wernert
e1d8f578c2 [feat] Add log dirs for playbook + influxdb 2020-10-08 12:35:14 -04:00
Josh Patterson
2156adcf70 Merge pull request #1486 from Security-Onion-Solutions/fix/estemplates 
fix templates not applying to searchnode.
 2020-10-08 11:19:14 -04:00
m0duspwnens
e7abbf19af fix templates not applying to searchnode. so-searchnode role doesnt exists searchnodes are so-node role 2020-10-08 11:17:26 -04:00
weslambert
0f5f781024 Merge pull request #1484 from Security-Onion-Solutions/fix/strelka_rule_null_safe_2 
More fixes for rule field
 2020-10-08 09:37:44 -04:00
Wes Lambert
a6d3dcf398 More fixes for rule field 2020-10-08 13:36:47 +00:00
weslambert
5e4bbcd4ca Merge pull request #1483 from Security-Onion-Solutions/fix/strelka_rule_null_safe 
Add null safe check for rule
 2020-10-08 09:15:29 -04:00
Wes Lambert
a2e2f23a8d Add null safe check for rule 2020-10-08 13:14:39 +00:00
weslambert
3ec9206b17 Merge pull request #1482 from Security-Onion-Solutions/fix/network_transport_kibana_viz 
Fix network transport Kibana viz
 2020-10-08 08:18:12 -04:00
Wes Lambert
adf0ef87c9 Fix network transport Kibana viz 2020-10-08 12:17:15 +00:00
weslambert
7767d3897b Merge pull request #1481 from Security-Onion-Solutions/fix/network_transport_lower 
Lowercase network.transport
 2020-10-08 08:00:22 -04:00
weslambert
5ada85942b Lowercase network.transport 2020-10-08 07:59:57 -04:00
Doug Burks
2489ca608a Improve Hunt FTP queries #1479 2020-10-08 05:30:17 -04:00
Josh Patterson
0a982dec95 Merge pull request #1477 from Security-Onion-Solutions/issue/1403 
Issue/1403
 2020-10-07 17:47:21 -04:00
m0duspwnens
be7167d99b Merge remote-tracking branch 'remotes/origin/dev' into issue/1403 2020-10-07 17:45:22 -04:00
m0duspwnens
821ce19aad new dashboard for sensors 2020-10-07 17:38:16 -04:00
m0duspwnens
1bdc45ef0e new dashboard for sensors 2020-10-07 17:37:11 -04:00
m0duspwnens
4f8bb9c2f1 updates to standalone and eval dashboards 2020-10-07 16:48:29 -04:00
m0duspwnens
7dd839cfa2 add zeek capture loss graph and resize redis queue for standalone 2020-10-07 15:53:31 -04:00
weslambert
7befff3baa Merge pull request #1474 from Security-Onion-Solutions/fix/common_nids 
Don't use regex for determining rule type
 2020-10-07 12:16:55 -04:00
Wes Lambert
7543144afe Don't use regex for determining rule type 2020-10-07 16:15:43 +00:00
weslambert
7787f81bdd Merge pull request #1473 from Security-Onion-Solutions/fix/logstash_output_wazuh 
Remove dataset name since pipeline no longer in use
 2020-10-07 11:49:40 -04:00
weslambert
8e829b47ae Remove dataset name since pipeline no longer in use 2020-10-07 11:48:56 -04:00
m0duspwnens
8540a691dc only send loss if timestamp on data has changed 2020-10-07 11:23:06 -04:00
weslambert
8015676e01 Merge pull request #1472 from Security-Onion-Solutions/fix/rename-signature_info 
Change rule.signature_info to rule.reference and ensure common.nids e…
 2020-10-07 11:21:18 -04:00
Wes Lambert
015a441e79 Change rule.signature_info to rule.reference and ensure common.nids exists 2020-10-07 15:20:26 +00:00
weslambert
a1866e5229 Merge pull request #1471 from Security-Onion-Solutions/fix/ingest-updates 
Fix/ingest updates
 2020-10-07 11:15:55 -04:00
m0duspwnens
1106b2bf96 only send loss if timestamp on data has changed 2020-10-07 11:15:10 -04:00
Wes Lambert
f0a1457ffd Update common.nids 2020-10-07 15:14:08 +00:00
m0duspwnens
d09f0f841e only send loss if timestamp on data has changed 2020-10-07 11:13:03 -04:00
m0duspwnens
6f2d47cc40 only send loss if timestamp on data has changed 2020-10-07 11:11:06 -04:00
m0duspwnens
2317e8b348 only send loss if timestamp on data has changed 2020-10-07 11:08:41 -04:00
m0duspwnens
f96d6ae4f4 only send loss if timestamp on data has changed 2020-10-07 11:06:54 -04:00
m0duspwnens
5e534571ff set timestamp with capture loss 2020-10-07 10:20:51 -04:00
m0duspwnens
14dd80b410 handle whitespace 2020-10-06 18:46:32 -04:00
m0duspwnens
af2df2c7d1 just print the loss 2020-10-06 18:44:22 -04:00
m0duspwnens
f95712c502 update log file 2020-10-06 18:38:51 -04:00
m0duspwnens
48ca2cdff1 fix pillars we check 2020-10-06 18:10:41 -04:00
m0duspwnens
4a236b3f75 Merge branch 'dev' of https://github.com/Security-Onion-Solutions/securityonion-saltstack into issue/1403 2020-10-06 18:05:47 -04:00
m0duspwnens
73ce948d42 add zeekcaptureloss to data to influxdb. rename broloss to zeekloss - https://github.com/Security-Onion-Solutions/securityonion/issues/1403 2020-10-06 18:05:41 -04:00
Mike Reeves
fd4bb81f29 Fix ZEEKLOGS pillar 2020-10-06 17:38:05 -04:00
William Wernert
d84f85335e [fix] Add jinja option, missing log dirs, compress option 2020-10-06 17:18:39 -04:00