CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-04-25 14:07:49 +02:00
Code Issues Packages Projects Releases Wiki Activity
5,895 Commits 40 Branches 125 Tags
af149d04a97602d082a3cc91633335d034c4f400
Commit Graph

3360 Commits

Author SHA1 Message Date
TOoSmOotH 42833b2086 Make non clustered node attributes 2020-12-10 11:14:32 -05:00
TOoSmOotH d9d7f49b96 Adjust elasticsearch.yml 2020-12-10 11:09:38 -05:00
Wes Lambert 45faa7fda4 Add ability to supply an arg, for example overriding 15 min limit 2020-12-10 14:30:29 +00:00
Wes Lambert f689722559 Add initial suricata.ftp_data pipeline 2020-12-10 14:14:50 +00:00
m0duspwnens ea1bd63f60 makedirs and place readme file for grafana https://github.com/Security-Onion-Solutions/securityonion/issues/1175 2020-12-09 16:59:38 -05:00
TOoSmOotH af15f0eb38 remove ml node.role 2020-12-09 16:23:38 -05:00
m0duspwnens 8db79ae852 comment out some defaults file https://github.com/Security-Onion-Solutions/securityonion/issues/1175 2020-12-09 16:01:09 -05:00
m0duspwnens e05da4efc2 remove odl grafana.ini file https://github.com/Security-Onion-Solutions/securityonion/issues/1175 2020-12-09 15:53:01 -05:00
Mike Reeves 30e69bf7b2 Merge branch 'escluster' into newescluster 2020-12-09 15:23:49 -05:00
TOoSmOotH 0a48f7d5dc Simplify logic 2020-12-09 15:22:09 -05:00
m0duspwnens c320efe7e4 fix whitespace https://github.com/Security-Onion-Solutions/securityonion/issues/1175 2020-12-09 14:33:19 -05:00
m0duspwnens 617ed2a7c2 add a place to place files referenced in the config https://github.com/Security-Onion-Solutions/securityonion/issues/1175 2020-12-09 14:06:54 -05:00
m0duspwnens c5c053d24a change to header 2020-12-09 11:59:06 -05:00
m0duspwnens 75ea648cf9 change to file.managed https://github.com/Security-Onion-Solutions/securityonion/issues/1175 2020-12-09 11:57:28 -05:00
TOoSmOotH e983322a18 Fix elastic if statement 2020-12-09 11:31:22 -05:00
m0duspwnens 6b479c5a89 pillarize grafana https://github.com/Security-Onion-Solutions/securityonion/issues/1175 2020-12-09 11:10:00 -05:00
TOoSmOotH 6ceecbd524 Fixing some elasticsearch logic 2020-12-09 09:42:03 -05:00
William Wernert 65d994a2f8 [feat] Generate gzipped tarball of repo during setup and soup 2020-12-08 14:02:45 -05:00
Josh Brower f34a10a986 Merge pull request #2259 from Security-Onion-Solutions/feature/playbook-updates2 
Playbook db updates
 2020-12-08 10:36:42 -05:00
Josh Brower 35be785f7a Playbook db updates 2020-12-08 10:35:50 -05:00
Jason Ertel 5d955bcdb7 Enable new SoStatus module in SOC for managing grid status 2020-12-08 09:22:18 -05:00
Josh Brower 8915e49288 Initial support - Playbook Overrides 2020-12-07 22:28:58 -05:00
Josh Patterson 2d9c6a42bf Merge pull request #2249 from Security-Onion-Solutions/issue/2188 
Issue/2188
 2020-12-07 16:52:34 -05:00
Josh Brower 35ea6c36d2 Merge pull request #2247 from Security-Onion-Solutions/feature/so-suricata-ruletest 
so-suricata-testrule initial commit
 2020-12-07 15:12:20 -05:00
William Wernert 64dc9f8d4e [fix] Only list ipv4 addresses when checking mysql 2020-12-07 14:40:32 -05:00
Mike Reeves 8ea088c3fc Restart Elastic on addition of node. 2020-12-07 14:09:41 -05:00
m0duspwnens 19d27c7d68 remove docker-ce-cli from common state 2020-12-07 11:50:47 -05:00
m0duspwnens 4fe2de2637 upgrade docker https://github.com/Security-Onion-Solutions/securityonion/issues/2188 2020-12-07 10:47:20 -05:00
Josh Brower 134d9bc89a so-suricata-testrule initial commit 2020-12-06 17:08:11 -05:00
Jason Ertel 967111decc Add node address to sensoroni pillar 2020-12-03 11:24:45 -05:00
Mike Reeves 94253e92a6 Adjust the elasticsearch config 2020-12-03 10:38:18 -05:00
weslambert 95570976a8 Add indices.query.bool.max_clause_count to allow for wildcard searches targeting more than 1024 fields 2020-12-03 09:29:44 -05:00
Wes Lambert 4ce3ec7582 Make scripts executable 2020-12-03 14:18:22 +00:00
Wes Lambert f96365baba Add intial grouped Elastic start/stop/restart scripts 2020-12-03 14:17:32 +00:00
Jason Ertel cf0ec2f78f Default to the node's primary IP for the description field 2020-12-02 16:38:33 -05:00
Mike Reeves 3e322c38eb Fix config for single cluster mode 2020-12-02 15:33:35 -05:00
Mike Reeves d004263b71 Add Elastic Clustering 2020-12-02 14:33:22 -05:00
Mike Reeves 69ae4577f5 Merge pull request #2174 from Security-Onion-Solutions/escluster 
Escluster
 2020-12-02 13:23:08 -05:00
weslambert c819729cd6 Don't use max_files or time_to_live for shutdown params 2020-12-02 13:17:19 -05:00
Josh Patterson 54d8dcdbb0 Merge pull request #2173 from Security-Onion-Solutions/issue/2079 
Issue/2079
 2020-12-02 11:46:29 -05:00
Jason Ertel b7bc8db3b2 Modify PCAP quick action to work off of network community ID; Add new Correlate quick action 2020-12-01 17:37:44 -05:00
Jason Ertel 81b86bf7f2 Switch PCAP quick actions to support alternative lookup link when a single event ID is not available 2020-12-01 16:04:50 -05:00
m0duspwnens ff6951cd95 Merge branch 'dev' of https://github.com/Security-Onion-Solutions/securityonion into issue/2079 2020-12-01 15:38:15 -05:00
m0duspwnens 141d7a35c9 if true cluster enabled allow search nodes to talk to each other https://github.com/Security-Onion-Solutions/securityonion/issues/2079 2020-12-01 15:38:09 -05:00
weslambert 9517cb2a58 Remove ScanMmbot 2020-12-01 11:25:51 -05:00
Josh Brower c303cdff09 Merge pull request #2150 from Security-Onion-Solutions/bugfix/fleet-standalone 
Fleet Fixes - mysql race condition
 2020-11-30 18:06:30 -05:00
Josh Brower e7a927188b Fleet Fixes - mysql race condition 2020-11-30 17:28:11 -05:00
Josh Brower 8e9458ca84 Merge pull request #2149 from Security-Onion-Solutions/bugfix/fleet-standalone 
Fix Fleet setup errors
 2020-11-30 12:06:36 -05:00
Josh Brower 5d2acf4011 Fix Fleet setup errors 2020-11-30 12:06:02 -05:00
William Wernert 8964444eeb [fix] Correct count print in mysql_conn 2020-11-30 11:32:43 -05:00