CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-22 17:03:07 +01:00
Code Issues Packages Projects Releases Wiki Activity
11,183 Commits 18 Branches 120 Tags
a27fc5c768b9eedf6e76b807ec7c7b0759f8c4fb
Commit Graph

11183 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
weslambert
900d12b556 Add logger stanza to suppress deprecation warning messages for now due to current system index access warning messages flooding the ES log 2022-01-06 10:35:50 -05:00
Jason Ertel
8cf7ea8b87 Merge pull request #6772 from Security-Onion-Solutions/kilo 
Prevent PCAP action from showing up outside of hunt/alerts
 2022-01-05 19:15:02 -05:00
Josh Patterson
eaa6597cd7 Merge pull request #6773 from Security-Onion-Solutions/issue/6765 
Issue/6765
 2022-01-05 18:11:06 -05:00
m0duspwnens
6338ba2e45 remove /var/cache/salt/ for reinstall 2022-01-05 16:54:56 -05:00
m0duspwnens
8af74e8bb3 remove more salt configs for reinstall 2022-01-05 16:53:54 -05:00
m0duspwnens
9357995bfa remove root cron and restore yeselastic.txt 2022-01-05 16:04:32 -05:00
weslambert
2fb488f768 Merge pull request #6769 from Security-Onion-Solutions/fix/id_fielddata_deprecation 
Fix issue with _id field fielddata/deprecation
 2022-01-05 15:40:25 -05:00
Wes Lambert
1cafacfa51 Update saved objects to reflect removal of TheHive scripted field and replacement of PCAP pivot with Hunt pivot 2022-01-05 20:36:23 +00:00
weslambert
c1a88977cf Disable fielddata for _id field by default (since it is deprecated and can be memory-intensive) 2022-01-05 15:23:52 -05:00
m0duspwnens
0ff5e3cf6f require so-elasticsearch container to be running to run the scripts 2022-01-05 14:48:41 -05:00
m0duspwnens
8950f94fb0 restore state files so python3-influxdb state doesnt try to patch during a restinstall 2022-01-05 12:02:53 -05:00
Wes Lambert
b60837e71a Initial commit for data type compliance 2022-01-05 16:38:56 +00:00
Jason Ertel
4f8524e0ac Prevent PCAP action from showing up outside of hunt/alerts 2022-01-05 11:13:12 -05:00
weslambert
2f9672d3ea Merge pull request #6764 from Security-Onion-Solutions/feature/soup_branch 
Denote which branch is being used in SOUP if BRANCH is specified
 2022-01-05 10:54:29 -05:00
weslambert
db43e21378 Fix indentation 2022-01-05 10:46:41 -05:00
weslambert
4d8b417fc9 Denote which branch is being used in SOUP if BRANCH is specified 2022-01-05 10:41:27 -05:00
Jason Ertel
89415b12ce Merge pull request #6762 from Security-Onion-Solutions/kilo 
Switch soc.json to use lowercase labels in default queries; Also enab…
 2022-01-05 09:59:39 -05:00
Jason Ertel
4bfdfffe21 Switch soc.json to use lowercase labels in default queries; Also enable the 'Add Case' feature 2022-01-05 09:54:13 -05:00
Mike Reeves
1adc4c5346 Merge pull request #6752 from Security-Onion-Solutions/ubufix 
Fix docker holds so re-install will work properly
 2022-01-04 18:56:06 -05:00
Mike Reeves
3ca0ce9eea Update so-functions 2022-01-04 18:47:35 -05:00
Mike Reeves
e869013057 Remove docker the reinstall it 2022-01-04 15:24:10 -05:00
Mike Reeves
dd104c9490 Add holds for ubuntu 2022-01-04 13:07:09 -05:00
m0duspwnens
7bb9b6efa9 populate mine with network.ip_addrs pillar.host.mainint for each host prior to highstate 2022-01-04 10:27:45 -05:00
Mike Reeves
288389c93e Soup changes for 2.3.100 2022-01-04 08:38:14 -05:00
Josh Patterson
4247a3a816 Merge pull request #6730 from Security-Onion-Solutions/fix/ub1804ssl 
more detailed logging for the retry command
 2021-12-30 13:19:58 -05:00
m0duspwnens
cc2f6e23ca more detailed logging for the retry command 2021-12-30 13:09:29 -05:00
Josh Patterson
064355dfb5 Merge pull request #6729 from Security-Onion-Solutions/fix/ub1804ssl 
change exitCode to exitcode. set exitcode to 1 if failed output found
 2021-12-30 11:38:32 -05:00
m0duspwnens
d274615376 change exitCode to exitcode. set exitcode to 1 if failed output found 2021-12-30 10:45:30 -05:00
Josh Patterson
78eda75c0f Merge pull request #6725 from Security-Onion-Solutions/fix/ub1804ssl 
add option to look for failed outout in retry function in so-common. …
 2021-12-29 18:18:12 -05:00
m0duspwnens
200736a118 add option to look for failed outout in retry function in so-common. look for Err: when running soapt-get update in setup 2021-12-29 18:15:16 -05:00
Jason Ertel
1d136b611a Merge pull request #6723 from Security-Onion-Solutions/kilo 
Uniform presets
 2021-12-29 16:49:41 -05:00
Jason Ertel
e6051cb653 Switch all presets to lowercase for uniformity 2021-12-29 16:42:34 -05:00
Jason Ertel
74dbc4bf67 Merge pull request #6720 from Security-Onion-Solutions/kilo 
Add case template to eval install types; also improve clarity of case queries
 2021-12-29 11:41:06 -05:00
Josh Patterson
a2f1f52450 Merge pull request #6719 from Security-Onion-Solutions/fix/ub1804ssl 
Fix/ub1804ssl
 2021-12-29 11:39:10 -05:00
Jason Ertel
1d885a5419 Add case template to eval installs 2021-12-29 11:38:38 -05:00
m0duspwnens
b414e22e95 remove spaces in function 2021-12-29 11:37:22 -05:00
m0duspwnens
4c54d45681 some echos for logging 2021-12-29 11:36:12 -05:00
m0duspwnens
c6e9b00488 Merge remote-tracking branch 'remotes/origin/dev' into fix/ub1804ssl 2021-12-29 11:22:25 -05:00
m0duspwnens
b027da6378 wait for the salt-minion service to be ready for requests prior to running ssl state 2021-12-29 11:18:38 -05:00
Jason Ertel
fb02d0d35c clarify case filters 2021-12-29 11:07:36 -05:00
Jason Ertel
d4f3615cae Merge pull request #6717 from Security-Onion-Solutions/kilo 
Support CCS in CM
 2021-12-29 09:12:13 -05:00
Jason Ertel
e5110ac4e8 Use CCS compatible index 2021-12-29 09:08:10 -05:00
Jason Ertel
e87cbc37a4 Add case template 2021-12-28 19:17:15 -05:00
Josh Patterson
3b130ab202 Merge pull request #6712 from Security-Onion-Solutions/fix/ub1804ssl 
all run ssl state during setup
 2021-12-28 16:34:58 -05:00
m0duspwnens
22afe99719 all run ssl state during setup 2021-12-28 16:24:17 -05:00
Doug Burks
e56a9a5f22 Merge pull request #6711 from Security-Onion-Solutions/dougburks-patch-1 
fix typo in so-analyst-install
 2021-12-28 15:24:19 -05:00
Josh Patterson
7655920068 Merge pull request #6710 from Security-Onion-Solutions/fix/ub1804ssl 
add mine function to signing_policies.conf
 2021-12-28 15:23:36 -05:00
Doug Burks
463925686d fix typo in so-analyst-install 2021-12-28 15:23:17 -05:00
m0duspwnens
2a5b4ef276 add mine function to signing_policies.conf. no longer need to check if mine in ca during manager install 2021-12-28 15:19:06 -05:00
Josh Patterson
7029c3a94a Merge pull request #6707 from Security-Onion-Solutions/fix/ub1804ssl 
put x509 signing policies in place when minion is configured
 2021-12-28 12:05:20 -05:00