CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-23 17:33:10 +01:00
Code Issues Packages Projects Releases Wiki Activity
1,118 Commits 18 Branches 120 Tags
a508ce80ceed2a4cd21845c00181f40ad92cf9c4
Commit Graph

683 Commits

Author SHA1 Message Date
Mike Reeves
a508ce80ce Merge branch 'master' of https://github.com/TOoSmOotH/securityonion-saltstack 2019-01-08 10:37:06 -05:00
Mike Reeves
ccd541a8d9 Update Bro and Suricata Versions 2019-01-08 10:15:08 -05:00
Josh Brower
ce43fd7cd4 Moved to dynamic 2019-01-01 11:20:09 -05:00
Josh Brower
b9f6269925 Moved to dynamic 2019-01-01 11:20:01 -05:00
Josh Brower
bc7bf5774a Enable osquery parsers for EVAL role 2019-01-01 11:14:38 -05:00
Josh Brower
15bfce07e8 Move osquery parsers from custom to dynamic 2019-01-01 11:13:05 -05:00
Josh Brower
f21e52b431 Add missing character 2019-01-01 11:11:29 -05:00
Josh Brower
fff13d5861 Tag & initial JSON decode for osquery logs 2018-12-28 13:56:06 -05:00
Josh Brower
1917b469ec osquery-tagged logs output to ES 2018-12-28 13:55:02 -05:00
Josh Brower
389b57f226 parser for windows event logs shipped by osquery 2018-12-28 13:54:11 -05:00
Josh Brower
679a6841f8 Osquery Overview dashboard - initial version 2018-12-28 13:51:44 -05:00
Josh Brower
9c3f476f6d add bind for fleet logs 2018-12-28 13:50:43 -05:00
Josh Brower
44eed120cb add osquery logs if fleet is enabled 2018-12-28 13:49:53 -05:00
Wes Lambert
04cdd2d976 Redis - Re-enable for Fleet live queries 2018-12-18 15:45:25 +00:00
Wes Lambert
9930aac556 Wazuh - Add conditional for config profile 2018-12-14 21:28:46 +00:00
Wes Lambert
172c9e0593 Logstash - Wazuh parsing updates 2018-12-14 18:00:19 +00:00
Wes Lambert
09f5c24251 SSL - Ensure storage node gets FB cert 2018-12-14 14:05:35 +00:00
Mike Reeves
26418cfb26 Merge pull request #62 from dlee35/master 
remove nginx.conf.so-SENSOR
 2018-12-14 08:18:26 -05:00
dlee35
e7c34cb1b8 remove nginx.conf.so-SENSOR 2018-12-14 08:04:46 -05:00
Wes Lambert
55a426c347 Cleanup - Lowercase SENSOR 2018-12-14 03:27:13 +00:00
Mike Reeves
f8b1bd0ffc Merge pull request #59 from weslambert/master 
Various updates
 2018-12-13 20:35:43 -05:00
dlee35
bd9f8ee2c7 fix filename and grep checks 2018-12-13 19:31:13 -05:00
Wes Lambert
c7dcbb8dcb Merge remote-tracking branch 'upstream/master' 2018-12-13 23:57:24 +00:00
Wes Lambert
a662badc5b Firewall - Fix stuff for sensor 2018-12-13 23:52:15 +00:00
Mike Reeves
2e78fc2e1e Master Module - I dont' want to talk about it 2018-12-13 17:19:35 -05:00
Mike Reeves
5a8ab7830e Master Module - Update acng version 2018-12-13 17:04:14 -05:00
dlee35
06037d8222 generate self-signed cert for osquery clients 2018-12-13 16:28:52 -05:00
Mike Reeves
52998d7340 Merge branch 'master' of https://github.com/TOoSmOotH/securityonion-saltstack 2018-12-13 14:24:47 -05:00
Mike Reeves
7ff47faa3d Common Module - Update core docker version 2018-12-13 14:24:40 -05:00
Mike Reeves
fdd6bcdd6b Merge pull request #56 from dlee35/master 
add firewall rule option for osquery
 2018-12-13 13:42:13 -05:00
Wes Lambert
bd04dc45a3 Wazuh - Fix Jinja 2018-12-13 18:30:04 +00:00
dlee35
fe56e171d4 add firewall rule option for osquery 2018-12-13 13:28:37 -05:00
Wes Lambert
75ed258d19 Firewall - Fix Wazuh IP logic for sensors 2018-12-13 17:57:22 +00:00
Wes Lambert
4db52ec865 Wazuh - Add logic for sensors 2018-12-13 17:56:51 +00:00
Wes Lambert
5e23859557 Salt - Add Wazuh to other roles 2018-12-13 17:34:19 +00:00
Wes Lambert
62067f37cf Wazuh - Fix agent ip for storage nodes 2018-12-13 17:33:12 +00:00
Wes Lambert
d13e7559fe Filebeat - Enabled for master and only enable Bro/Suri inputs when needed 2018-12-13 17:32:03 +00:00
Mike Reeves
8163beadb0 Merge pull request #54 from dlee35/master 
Updated Fleet init.sls and nginx confs for fleet
 2018-12-12 16:34:35 -05:00
dlee35
5c737e9fda Updated Fleet init.sls and nginx confs for fleet 2018-12-12 16:19:35 -05:00
Wes Lambert
41e9c4c7e0 Logstash - Alter input for Wazuh logs 2018-12-12 20:52:18 +00:00
Wes Lambert
54c35cdc0d Filebeat - Add Wazuh archive logs 2018-12-12 20:51:41 +00:00
Wes Lambert
8496834f8b Wazuh - Re-order top.sls so Filebeat does not overrite Wazuh logs 2018-12-12 15:48:59 +00:00
Wes Lambert
9d86744e07 Filebeat - Fix Wazuh alerts path 2018-12-12 15:19:51 +00:00
Wes Lambert
e20ab3b407 Filebeat - Config for Wazuh alerts 2018-12-12 14:48:17 +00:00
Wes Lambert
5822842d2e Wazuh - Add sleep to wait for API 2018-12-12 13:36:13 +00:00
Wes Lambert
8404897fe3 Wazuh - Move agent config to init.sls 2018-12-12 06:05:13 +00:00
Wes Lambert
823a589fae Wazuh - Set mode for agent registration script 2018-12-12 04:01:13 +00:00
Wes Lambert
1a4a7382e2 Wazuh - Fix Wazuh agent registration script name 2018-12-12 03:18:55 +00:00
Wes Lambert
113f030873 Wazuh - Add agent register script to init.sls 2018-12-12 02:26:38 +00:00
Wes Lambert
9a021164ac Wazuh - Fix port, add agent conf, and agent registration script 2018-12-12 01:42:05 +00:00