CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-28 03:43:31 +01:00
Code Issues Packages Projects Releases Wiki Activity
9,090 Commits 19 Branches 120 Tags
ae342ab673d0a706b94627ebec64c2bb0f162238
Commit Graph

5382 Commits

Author SHA1 Message Date
m0duspwnens
ae342ab673 Merge remote-tracking branch 'remotes/origin/dev' into issue/6469 2021-12-16 11:33:09 -05:00
m0duspwnens
b4b8b91ccd simplify ip logic wazuh-register-agent, mine_interval to 35 minutes 2021-12-16 11:24:35 -05:00
m0duspwnens
2e4ed8062e simplify wazuh agent ip logic 2021-12-16 11:11:01 -05:00
m0duspwnens
bd7ef1cc59 fix whitespace control 2021-12-16 09:19:20 -05:00
Jason Ertel
1268f8f92b Upgrade ES to 7.16.1 2021-12-16 07:57:42 -05:00
m0duspwnens
a7600f7f43 update scripts to use their own ip 2021-12-15 17:31:39 -05:00
Mike Reeves
0f76227631 Merge pull request #6585 from Security-Onion-Solutions/unhotfix 
Unhotfix
 2021-12-15 17:23:02 -05:00
m0duspwnens
d0b0970353 Merge remote-tracking branch 'remotes/origin/dev' into issue/6469 2021-12-15 17:08:56 -05:00
Mike Reeves
465ba1b7d3 Change CA certs location 2021-12-15 17:08:36 -05:00
m0duspwnens
f9b04ab96a add node's own ip to FILEBEAT_EXTRA_HOSTS 2021-12-15 16:53:22 -05:00
m0duspwnens
522bc1d2b8 fix loadbalance logic and whitespace for filebeat.yml 2021-12-15 16:21:08 -05:00
m0duspwnens
cf2f4bad09 have standalone and managersearch pull from redis nodes 2021-12-15 15:27:23 -05:00
Mike Reeves
61955b7928 Change CA certs location 2021-12-15 13:50:19 -05:00
Jason Ertel
ffa8ca57a7 Merge pull request #6579 from Security-Onion-Solutions/unhotfix 
Remove some previous hotfix code
 2021-12-15 12:34:00 -05:00
Mike Reeves
7cd1b1c482 Remove some previous hotfix code 2021-12-15 12:26:53 -05:00
m0duspwnens
6ab2bdef0c add sensoroni state to receiver node 2021-12-15 10:45:54 -05:00
m0duspwnens
ce0a39db4b remove old EXTRAHOSTNAME EXTRAHOSTIP from being set for logstash 2021-12-15 09:43:46 -05:00
m0duspwnens
ea89d2074b remove ca from allowed_hosts on so-receiver 2021-12-15 09:32:12 -05:00
m0duspwnens
176ef852c8 clean up assinged hostgroups for receiver 2021-12-15 08:28:40 -05:00
Doug Burks
7d1f9c51e8 fix typo in so-image-common 2021-12-15 07:24:30 -05:00
m0duspwnens
024860d0ae rename EXTRA_NODES to LOGSTASH_NODES AND REDIS_NODES 2021-12-14 23:43:06 -05:00
m0duspwnens
0c6aba16ec fix redis input 2021-12-14 23:42:37 -05:00
m0duspwnens
15b8d80b71 fix host for input_redis 2021-12-14 18:51:43 -05:00
m0duspwnens
55b74abcc5 extra_hosts and redis_input for logstash 2021-12-14 18:49:30 -05:00
m0duspwnens
4da017d61c change extra_hosts for docker container 2021-12-14 17:05:30 -05:00
m0duspwnens
a31d61e151 handle ca for redis 2021-12-14 16:43:04 -05:00
m0duspwnens
841b91e052 exclude elasticsearch and managerssl keys and certs from receiver 2021-12-14 16:05:47 -05:00
m0duspwnens
d0b6d5bba6 remove so-eval from lists since it doesnt run logstash 2021-12-14 15:33:06 -05:00
m0duspwnens
a31f034f2e remove receiver add node for cacerts and tls-ca-bundle for logstash bind 2021-12-14 15:02:59 -05:00
m0duspwnens
6962e3f9b3 fix logstash certs mapped into container 2021-12-14 14:52:15 -05:00
m0duspwnens
c490a3be36 move node_data pillar to logstash:nodes, set extra hosts for filebeat docker 2021-12-14 13:32:42 -05:00
Mike Reeves
30344ba0ef Fix conflicts 2021-12-14 10:55:19 -05:00
m0duspwnens
6518691c55 sort the items 2021-12-13 18:16:25 -05:00
m0duspwnens
067e79894f fix loop for node_data 2021-12-13 16:26:38 -05:00
m0duspwnens
6de2f5bd03 fix node_data 2021-12-13 15:55:09 -05:00
m0duspwnens
8d0872bce5 create node_data pillar from mine data, use node_data pillar for filebeat config 2021-12-13 15:48:30 -05:00
Jason Ertel
c94d5fa9dc Strip JndiLookup.class from log4j-core jars, to match Elastic's mitigation approach 2021-12-13 09:27:13 -05:00
Jason Ertel
8365b5f140 Strip JndiLookup.class from log4j-core jars, to match Elastic's mitigation approach 2021-12-13 09:02:41 -05:00
m0duspwnens
86f67198bf loadbalance filebeat if across managers and receivers 2021-12-10 17:43:06 -05:00
m0duspwnens
fe7247f876 update fw for receiver and add mine_functions for ip_addr 2021-12-10 15:28:40 -05:00
Mike Reeves
dcd56de890 Update log4j2.properties 2021-12-10 14:23:38 -05:00
Mike Reeves
3d7b963912 Update log4j2.properties 2021-12-10 14:16:16 -05:00
Mike Reeves
09253b637e Create jvm.options 2021-12-10 14:12:43 -05:00
Mike Reeves
c81ce48bff Update log4j2.properties 2021-12-10 14:10:35 -05:00
Mike Reeves
73ec595baa Update init.sls 2021-12-10 14:10:05 -05:00
Mike Reeves
45346b6318 Update log4j2.properties 2021-12-10 12:01:39 -05:00
Mike Reeves
e48de18480 Update init.sls 2021-12-10 12:00:12 -05:00
Mike Reeves
66c8cc6e86 Update init.sls 2021-12-10 11:59:12 -05:00
Mike Reeves
8dcb64d87c Update init.sls 2021-12-10 11:56:33 -05:00
Mike Reeves
4561e13871 Update log4j2.properties 2021-12-10 10:19:58 -05:00