CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-19 07:23:06 +01:00
Code Issues Packages Projects Releases Wiki Activity
13,784 Commits 18 Branches 120 Tags
a0926b7b872ea091475e71b6476c3732f99256cd
Commit Graph

487 Commits

Author SHA1 Message Date
Josh Brower
bc7bf5774a Enable osquery parsers for EVAL role 2019-01-01 11:14:38 -05:00
Josh Brower
15bfce07e8 Move osquery parsers from custom to dynamic 2019-01-01 11:13:05 -05:00
Josh Brower
f21e52b431 Add missing character 2019-01-01 11:11:29 -05:00
Josh Brower
fff13d5861 Tag & initial JSON decode for osquery logs 2018-12-28 13:56:06 -05:00
Josh Brower
1917b469ec osquery-tagged logs output to ES 2018-12-28 13:55:02 -05:00
Josh Brower
389b57f226 parser for windows event logs shipped by osquery 2018-12-28 13:54:11 -05:00
Wes Lambert
172c9e0593 Logstash - Wazuh parsing updates 2018-12-14 18:00:19 +00:00
Wes Lambert
41e9c4c7e0 Logstash - Alter input for Wazuh logs 2018-12-12 20:52:18 +00:00
Wes Lambert
5c28576674 Logtash - Update input for Eval Mode 2018-12-06 02:38:59 +00:00
Mike Reeves
c5dfe32c55 Merge pull request #48 from dlee35/master 
changed tag eval to type
 2018-12-05 15:09:59 -05:00
dlee35
7fc1f576d9 changed tag eval to type 2018-12-05 15:05:11 -05:00
Mike Reeves
658bc2cc8e Logstash Module - Update Version 2018-12-05 12:43:13 -05:00
Mike Reeves
02f9995cf5 Merge pull request #44 from weslambert/master 
Parsing Updates for Bro/Suricata
 2018-11-30 10:42:55 -05:00
Mike Reeves
4c1ef81c33 Logstash Module - Update Version 2018-11-30 10:42:24 -05:00
Wes Lambert
056e22dd11 Logstash - Update template for Suricata metadata fields 2018-11-30 13:22:31 +00:00
Wes Lambert
05accf3017 Logstash - Output config update for IDS type 2018-11-30 13:17:53 +00:00
Mike Reeves
be69d3629c Logstash Module - Rework it 2018-11-28 20:51:31 -05:00
Mike Reeves
4203898427 Logstash Module - Rework it 2018-11-28 20:44:56 -05:00
Mike Reeves
1553f36082 Logstash Module - Allow jinja in custom parsers 2018-11-28 16:13:28 -05:00
Mike Reeves
119c94ea17 Logstash Module - Fix so logstash workers gets picked up 2018-11-27 13:42:40 -05:00
Mike Reeves
034a0ed7b2 Logstash Module - Fix formatting 2018-11-13 15:27:38 -05:00
Mike Reeves
b88a9b5769 Logstash Module - Wes Mods 2018-11-13 14:41:07 -05:00
Mike Reeves
62d28942f8 Move docker location 2018-11-13 08:59:16 -05:00
Mike Reeves
c3e703956e Merge pull request #14 from TOoSmOotH/master 
Logstash Module - Enable new Docker Container
 2018-11-03 11:59:24 -04:00
Mike Reeves
091d06bb61 Logstash Module - Enable new Docker Container 2018-11-03 11:57:10 -04:00
Wes Lambert
a531dd6e52 update template for eve.json output 2018-11-03 15:11:49 +00:00
Mike Reeves
16172d894e Logstash Module - Remove .eval 2018-11-02 13:24:28 -04:00
Mike Reeves
56a9dee938 Logstash Module - Add path to logs 2018-11-01 19:11:50 -04:00
Mike Reeves
01db0e6d61 Logstash Module - Add path to logs 2018-11-01 18:49:04 -04:00
Mike Reeves
f2bfef58c8 Logstash Module - Fix ES output logic 2018-11-01 18:03:05 -04:00
Mike Reeves
39677afa74 Logstash Module - Add new logstash config for eval 2018-11-01 17:41:11 -04:00
Mike Reeves
2bf1591208 Logstash Module - Fix Output 2018-10-31 14:22:58 -04:00
Mike Reeves
b42e25d250 LogStash Module - Fix Eval Logstash config 2018-10-31 11:25:36 -04:00
Mike Reeves
a90e095687 LogStash Module - Fix Eval Logstash config 2018-10-31 11:24:58 -04:00
Mike Reeves
8dff89d6b4 LogStash Module - Add eval support 2018-10-31 10:58:53 -04:00
Mike Reeves
0161a41941 Redis and Filebeat fixes to point to IP 2018-10-18 21:18:15 -04:00
Mike Reeves
41e3b04b25 Logstash Module - Sensors now show up correclty 2018-10-16 21:00:04 -04:00
Mike Reeves
a5979fcb88 Logstash Module - Change it to arrays 2018-10-16 17:47:10 -04:00
Mike Reeves
ea7ddfc2da Logstash Module - Change it to arrays 2018-10-16 17:41:04 -04:00
Mike Reeves
335ac02720 Logstash Module - Change it to arrays 2018-10-16 17:25:21 -04:00
Mike Reeves
2f517a6c8d Logstash Module - Change it to arrays 2018-10-16 16:46:04 -04:00
Mike Reeves
57039d83c8 Logstash Module - Change some fields so dashboards load 2018-10-16 16:21:50 -04:00
Mike Reeves
61c30243ff Logstash Module - Disable freq and modify some configs 2018-10-16 15:27:01 -04:00
Mike Reeves
f6eff97407 Logstash Module - Disable freq and modify some configs 2018-10-16 15:25:41 -04:00
Mike Reeves
b0293c24b5 Logstash Module - Disable freq and modify some configs 2018-10-16 14:53:48 -04:00
Mike Reeves
cd823a26f3 Logstash Module - Change some parsing order 2018-10-15 19:24:01 -04:00
Mike Reeves
95edae40ea Utility Module - Rework cluster settings 2018-10-11 22:56:33 -04:00
Mike Reeves
9ee87a92e9 Getting Close 2018-10-11 19:38:25 -04:00
Mike Reeves
4a1e2a6d29 Filebeat Module - The Fix is in 2018-10-09 14:01:44 -04:00
Mike Reeves
1996787b6e Filebeat Module - Change key to normal key 2018-10-09 13:05:11 -04:00