CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity
8,629 Commits 24 Branches 119 Tags
a5cba5ecf8526426fd2cc882b39558a372422b5a
Commit Graph

75 Commits

Author SHA1 Message Date
William Wernert
a5cba5ecf8 Merge branch 'dev' into foxtrot 2021-10-29 10:01:46 -04:00
m0duspwnens
7eb42fa6bd change boolean 2021-10-28 08:43:03 -04:00
m0duspwnens
18ce9c7819 disable zeekpacketlosscron and telegraf checks if zeek is diabled via pillar 2021-10-28 07:46:02 -04:00
William Wernert
eee612e73d Make folder/file states explicit 
Rather than using /nsm/zeek (max_depth: 1) create explicit states for /nsm/zeek/spool and /nsm/zeek/spool/state.db that set correct ownership
 2021-10-27 11:43:09 -04:00
m0duspwnens
d7e5377a44 more requires 2021-10-22 16:46:45 -04:00
Josh Brower
4d307c53e8 Add support for disabling Zeek and Suricata 2021-09-17 13:01:50 -04:00
m0duspwnens
8ffeae38bc https://github.com/Security-Onion-Solutions/securityonion/issues/4024 2021-07-27 16:16:48 -04:00
Mike Reeves
a2e1b1de3a Merge pull request #4484 from Security-Onion-Solutions/pipeline 
Pipeline
 2021-06-10 13:41:14 -04:00
Mike Reeves
eac5c604bd Update packetloss.sh 2021-05-28 12:57:35 -04:00
Mike Reeves
34d4eedf67 Remove old modules 2021-05-26 10:11:47 -04:00
Mike Reeves
cd3e355f84 Fix zeek depth 2021-05-25 16:54:20 -04:00
Mike Reeves
90b3462ead No recurse for you 2021-05-06 13:29:15 -04:00
m0duspwnens
fcd3f81400 fix quotes 2021-02-25 11:16:53 -05:00
m0duspwnens
c8213fa3d4 change docker exec 2021-02-25 11:07:54 -05:00
m0duspwnens
add66e750e forgot to add -c 2021-02-25 10:49:09 -05:00
m0duspwnens
d52abcbcbd ensure zeekctl is run as user zeek https://github.com/Security-Onion-Solutions/securityonion/issues/3130 2021-02-25 09:58:07 -05:00
Jason Ertel
34dab9009c Ensure Zeek spool dir is owned by Zeek to allow Zeek to start correctly 2021-02-25 08:10:13 -05:00
m0duspwnens
b693373d8d change how we allow or disallow states to be run https://github.com/Security-Onion-Solutions/securityonion/issues/2679 2021-01-20 15:09:53 -05:00
m0duspwnens
96b72d46be show steno,zeek,suricata as disabled in so-status on import node 2020-12-16 12:01:48 -05:00
m0duspwnens
09b3a4a0dd merge pillar with the defaults https://github.com/Security-Onion-Solutions/securityonion/issues/2319 2020-12-11 14:35:06 -05:00
m0duspwnens
b8e8510dd2 merge pillar with the defaults https://github.com/Security-Onion-Solutions/securityonion/issues/2319 2020-12-11 14:26:32 -05:00
m0duspwnens
1fca5e65df redo how containers get added to so-status https://github.com/Security-Onion-Solutions/securityonion/issues/1681 2020-11-10 15:31:47 -05:00
Wes Lambert
05549a2362 Add Zeek intel.dat 2020-11-02 21:36:44 +00:00
m0duspwnens
09cc8ae1fb fail the state if it isnt in top 2020-09-09 16:48:50 -04:00
m0duspwnens
a229ae82ce only allow state to run if it is in top for the node 2020-09-02 16:15:52 -04:00
m0duspwnens
ff84640aad add pcap to import node, test not starting zeek docker by default 2020-08-14 13:59:23 -04:00
Mike Reeves
24ed92c9dc minio and change to global 2020-08-04 15:54:03 -04:00
Mike Reeves
3de2afe618 Fix final bugs 2020-07-18 17:29:11 -04:00
Mike Reeves
1d24d7bc7f Misc pillars 2020-07-17 17:38:10 -04:00
m0duspwnens
e3efaee864 change reference from bro to zeek 2020-07-17 14:41:44 -04:00
Jason Ertel
8f66a27f07 Refactor image repository to a single variable 2020-07-13 18:26:43 -04:00
m0duspwnens
13af4cacb0 merge with dev and resolve conflicts 2020-07-10 16:27:10 -04:00
Wes Lambert
6e99ca600f Move zeek_clean to so-sensor-clean 2020-07-10 17:56:40 +00:00
m0duspwnens
5ca3ecf4bd fix reference to master grain 2020-07-09 15:42:39 -04:00
m0duspwnens
3cf31e2460 https://github.com/Security-Onion-Solutions/securityonion/issues/404 2020-07-09 11:27:06 -04:00
m0duspwnens
fd939a06b9 whitespace cleanup 2020-07-01 13:40:40 -04:00
m0duspwnens
38db512eda fix spacing 2020-07-01 13:29:19 -04:00
m0duspwnens
4e7e19af54 pillarize zeek node.cfg. change reference from bro to zeek. 2020-07-01 13:26:27 -04:00
Wes Lambert
90c278096c Add custom Zeek script dir 2020-06-17 17:11:27 +00:00
Jason Ertel
970368c74e Avoid logs leaking to stdout/stderr during cron jobs 2020-06-03 09:42:44 -04:00
m0duspwnens
8d2ca003fb change how we populate local.zeek - https://github.com/Security-Onion-Solutions/securityonion-saltstack/issues/585 2020-04-28 14:10:57 -04:00
m0duspwnens
c46a45f00f LOAD to LOCAL in local.zeek and sort local.zeek and zeekctl.cfg output 2020-04-28 12:08:32 -04:00
m0duspwnens
ca42850a0c add missing ) 2020-04-28 11:31:19 -04:00
m0duspwnens
b6741daca6 pillarize local.zeek and move zeekctl from defaults.yml to zeek pillar - https://github.com/Security-Onion-Solutions/securityonion-saltstack/issues/585 2020-04-28 09:44:37 -04:00
m0duspwnens
766b56a944 update dockers to 1.2.2 2020-04-23 10:11:26 -04:00
Mike Reeves
d9e27a5444 Update Versions 2020-04-15 15:37:59 -04:00
Wes Lambert
8d8bde36e8 migrate Zeek clean script from Bro 2020-04-10 12:46:28 +00:00
Josh Brower
31ae8a2c26 Zeek - enable Community ID policy 2020-03-26 16:33:47 -04:00
m0duspwnens
20a6a79551 add tojson to dict passed into zeekctl 2020-03-16 10:28:12 -04:00
m0duspwnens
2bda1f4beb remove whitespace 2020-03-13 16:12:16 -04:00