CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-07 17:52:46 +01:00
Code Issues Packages Projects Releases Wiki Activity
17,006 Commits 24 Branches 119 Tags
b1753f86f91b8345151f16de7eb9a06d2145fbe9
Commit Graph

1879 Commits

Author SHA1 Message Date
reyesj2
84b38daf62 name destination_geo & source_geo to destination.as and source.as better aligning with ECS and linking other log sources already using .as for ASN geo data. 
Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>
 2025-07-25 16:17:22 -05:00
reyesj2
415f456661 ignore composable templates with error in the name 2025-07-12 08:30:04 -05:00
Jason Ertel
3056410fd1 Merge pull request #14828 from Security-Onion-Solutions/jertel/wip 
exclude component updates indexes with error in the name
 2025-07-10 07:51:34 -04:00
Jason Ertel
bf8da60605 exclude component updates indexes with error in the name 2025-07-10 07:47:53 -04:00
Josh Patterson
1e9f3a65a4 Merge remote-tracking branch 'origin/2.4/dev' into vlb2 2025-06-25 15:35:30 -04:00
Jason Ertel
21d9964827 fix logging 2025-06-24 11:03:08 -04:00
Jason Ertel
b052a75e64 refactor airgap playbook to eliminate dupe code and shrink ISO 2025-06-24 09:34:57 -04:00
Jason Ertel
db08ac9022 Merge pull request #14651 from Security-Onion-Solutions/jertel/mhf 
Backport Hotfix to dev
 2025-05-22 13:44:36 -04:00
Josh Patterson
18d899a7f9 add so-docker-prune from hotfix/2.4.150 2025-05-22 09:29:51 -04:00
Mike Reeves
ddd023c69a Update so-docker-prune 2025-05-21 13:47:45 -04:00
Josh Patterson
b0a8191f59 Merge remote-tracking branch 'origin/2.4/dev' into vlb2 2025-05-19 10:02:26 -04:00
Jason Ertel
82562f89f6 improve consistency 2025-05-14 09:23:35 -04:00
Josh Patterson
5965459423 Merge remote-tracking branch 'origin/2.4/dev' into vlb2 2025-04-30 13:11:12 -04:00
Jason Ertel
5ecb483596 excluded harmless log error; suppress so-user grep output 2025-04-29 09:35:36 -04:00
Josh Patterson
445afca6ee use vrt 2025-04-03 13:44:13 -04:00
Josh Patterson
f9bf4e4130 Merge remote-tracking branch 'origin/2.4/dev' into vlb2 2025-03-27 11:26:32 -04:00
Jason Ertel
a0637fa25d ignore false positives 2025-03-21 14:54:52 -04:00
Josh Patterson
6c472dd383 Merge remote-tracking branch 'origin/2.4/dev' into vlb2 2025-03-05 08:58:03 -05:00
Jason Ertel
85450693a2 Merge branch '2.4/dev' into jertel/wip 2025-03-04 10:55:29 -05:00
Jason Ertel
0047246cf2 reduce stdout verbosity 2025-03-04 10:55:12 -05:00
Jason Ertel
bc969c1ca2 Merge pull request #14302 from Security-Onion-Solutions/jertel/wip 
more false positives
 2025-02-27 08:00:49 -05:00
Jason Ertel
772aa7379f more false positives 2025-02-27 07:55:22 -05:00
reyesj2
80fed1e045 default capinfos to use start/end time arg 2025-02-25 21:47:56 -06:00
Josh Patterson
cc1b030c00 q 
xMerge remote-tracking branch 'origin/2.4/dev' into vlb2
 2025-02-24 15:32:54 -05:00
Josh Patterson
3246176c0a comments 2025-02-21 14:34:08 -05:00
Josh Patterson
b68f561e6f progress and hw tracking for soc hypervisor dynamic annotations 2025-02-21 09:50:01 -05:00
Jason Ertel
66a2ec7e21 ES upgrade errors to ignore 2025-02-21 08:38:40 -05:00
Josh Patterson
160c84ec1a Merge pull request #14200 from Security-Onion-Solutions/2.4/dev 
2.4/dev
 2025-02-06 17:41:22 -05:00
Jason Ertel
bf19c6e730 ca download; ignore shard errors on startup; clarify oidc id 2025-02-05 15:04:04 -05:00
m0duspwnens
213df68d04 merge with 120 dev and fix conflicts 2025-01-23 10:56:48 -05:00
reyesj2
9532f21c7b check zeek reporter.log 2024-12-05 13:49:44 -06:00
Jason Ertel
918f26962a ignore fp from hydra 2024-11-17 12:21:06 -05:00
m0duspwnens
feb700393e merge with 2.4.120, fix merge conflicts 2024-10-25 15:09:38 -04:00
Jason Ertel
523ff66389 connect work 2024-10-16 13:44:01 -04:00
m0duspwnens
9f76371449 add libs 2024-10-01 08:33:37 -04:00
Jason Ertel
f0e4e52364 es sig pulled from es dir 2024-09-11 11:12:20 -04:00
Josh Patterson
e7a7a8609a Merge pull request #13640 from Security-Onion-Solutions/esver 
only elasticsearch image uses es version
 2024-09-09 16:45:14 -04:00
m0duspwnens
8702d95434 only elasticsearch image uses es version 2024-09-09 16:38:38 -04:00
Josh Patterson
ba0779ea1e Merge pull request #13624 from Security-Onion-Solutions/esver 
fix es agent update for soup
 2024-09-06 10:46:18 -04:00
m0duspwnens
fc25bfe0df grab es version from defaults during soup 2024-09-06 09:04:43 -04:00
Jason Ertel
5625771ffb es version shift 2024-09-05 13:16:28 -04:00
Jason Ertel
c85e5643db es version shift 2024-09-05 13:14:45 -04:00
m0duspwnens
7d9b3b1f28 use correct sig 2024-09-04 15:36:17 -04:00
Josh Patterson
71f6b44c0c Merge pull request #13607 from Security-Onion-Solutions/esver 
use Elasticsearch version for some containers
 2024-09-04 13:30:07 -04:00
m0duspwnens
2b807c2409 update comment 2024-09-04 10:33:14 -04:00
m0duspwnens
0af2e85f91 update annotation. 2024-09-04 10:32:11 -04:00
m0duspwnens
cfdc8ede90 fix es version logic 2024-09-03 16:49:39 -04:00
m0duspwnens
83aa4c9a53 fix awk 2024-09-03 15:22:25 -04:00
m0duspwnens
c20ac6c2d8 fix if and awk 2024-09-03 15:20:49 -04:00
m0duspwnens
6d7b76115f use the version that is longest for the loop 2024-09-03 13:00:37 -04:00