securityonion

mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-02-05 23:03:30 +01:00

Author	SHA1	Message	Date
reyesj2	2038227308	remove reference to .fleet_final_pipeline-1 - configure global@custom ingest pipeline to run .fleet_final_pipeline-1 when available (heavynodes do not have this pipeline). - Update global@custom pipeline to remove error message related to sending EA logs through logstash (https://github.com/elastic/kibana/issues/183959)	2026-01-26 14:01:58 -06:00
reyesj2	5d0c187497	format json	2026-01-23 14:45:31 -06:00
reyesj2	378d37d74e	add event.module to elasticsearch server logs	2025-10-14 12:44:51 -05:00
DefensiveDepth	f0c1922600	Support endpoint logs with no host.ip field	2025-09-12 13:31:34 -04:00
DefensiveDepth	ab2cdd18ed	Support endpoint logs with no host.ip field	2025-09-12 13:29:43 -04:00
reyesj2	fcdacc3b0d	fix system integration time overwrite and delete unused ingest pipeline	2025-05-29 12:21:28 -05:00
Josh Brower	b753d40861	Tighten parsing	2025-05-20 17:06:11 -04:00
Josh Brower	b55cb257b6	Add parsing for Playbook	2025-05-19 13:25:27 -04:00
Josh Brower	df103b3dca	Spacing	2025-05-14 16:36:59 -04:00
Josh Brower	0542c77137	Remove wip config	2025-05-14 16:35:09 -04:00
Josh Brower	9022dc24fb	Add Parsing for Playbooks	2025-05-14 13:19:50 -06:00
reyesj2	e1d31c895e	add null check	2025-05-07 21:25:30 -05:00
reyesj2	1be8de7acb	must use null check	2025-02-18 11:16:57 -06:00
reyesj2	c1c72ddd9b	update global@custom pipeline ignore null/empty string values	2025-02-18 10:39:54 -06:00
reyesj2	33f145a40b	ensure network packet capture integration data has event.module:network_traffic	2025-02-10 13:16:39 -06:00
reyesj2	b3b7fb8f29	add null check and move tag lookup to .contains() in global@custom Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>	2025-01-15 12:16:11 -06:00
reyesj2	754d28e95d	add openvpn & ipsec support to Zeek	2024-12-05 09:52:55 -06:00
Wes	e789c17bc3	Add global@custom pipeline file	2024-07-23 16:37:37 +00:00

18 Commits