CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-08 18:22:47 +01:00
Code Issues Packages Projects Releases Wiki Activity
9,467 Commits 24 Branches 119 Tags
b41c5439c61d5439c54adb166a67a4fea75f425c
Commit Graph

1686 Commits

Author SHA1 Message Date
Jason Ertel
7f2d7eb038 Continue migration of user emails to IDs 2021-09-18 07:20:34 -04:00
Jason Ertel
30e781d076 Use user ID instead of email as role master 2021-09-17 17:54:38 -04:00
weslambert
18d81352c6 Merge pull request #5537 from Security-Onion-Solutions/delta 
Add improved ignore functionality for YARA rules used by Strelka and add default ignored rules that break compilation
 2021-09-16 10:38:49 -04:00
Jason Ertel
b81d38e392 Merge branch 'dev' into kilo 2021-09-16 07:44:35 -04:00
Josh Brower
c06668c68e Merge pull request #5527 from Security-Onion-Solutions/feature/so-import-evtx 
Feature/so import evtx
 2021-09-15 14:17:15 -04:00
Josh Brower
ac417867ed so-import-evtx - final fixes 2021-09-15 14:06:08 -04:00
Mike Reeves
aff571faf2 soup changes 2.3.80 2021-09-15 13:32:52 -04:00
weslambert
5c8067728e Remove unnecessary logic 2021-09-15 10:22:17 -04:00
Jason Ertel
ff989b1c73 Include wording in so-user relating to optional role parameter 2021-09-14 14:03:00 -04:00
Josh Brower
0b0d508585 so-import-evtx - tweaks 2021-09-14 12:01:14 -04:00
William Wernert
679faddd52 Update so-rule-update to pass all args to docker exec 
Instead of passing $1, build a string from all args and add that to the command string for the docker exec statement
 2021-09-10 13:44:37 -04:00
William Wernert
0b42b19763 Update so-rule-update to source so-common 2021-09-10 13:41:58 -04:00
William Wernert
9c310de459 Add --force flag to idstools-rulecat under so-rule-update 
This forces idstools to pull from the url each time, which prevents it from clearing all.rules if idstools-rulecat is run twice within 15 minutes by any method (either restarting the container or running so-rule-update)
 2021-09-10 13:15:09 -04:00
Mike Reeves
c83f119cc0 Update so-raid-status 2021-09-09 10:59:35 -04:00
Mike Reeves
5d235e932c Fix Raid Status for cloud 2021-09-09 10:46:28 -04:00
Jason Ertel
72cff7ec7a Merge branch 'dev' into kilo 2021-09-07 10:49:08 -04:00
Jason Ertel
fbbb7f4e85 Add auditor role; update analyst role with correct syntax 2021-09-03 15:54:05 -04:00
Jason Ertel
649f339934 Correct typo 2021-09-02 20:30:48 -04:00
Jason Ertel
f659079542 Consolidate password validation messaging 2021-09-02 19:12:32 -04:00
Jason Ertel
ce70380f0f resolve so-user errors from recent auth changes 2021-09-02 17:59:33 -04:00
Jason Ertel
c4d402d8b4 Ensure role file exists before ES state is run 2021-09-02 15:45:47 -04:00
William Wernert
a14854d56d Merge pull request #5383 from Security-Onion-Solutions/feature/soup-y 
Add logic to check unattended flag when checking OS updates
 2021-09-02 11:50:45 -04:00
William Wernert
56894b9581 Add logic to check unattended flag when checking if updates are available 2021-09-02 11:15:32 -04:00
Jason Ertel
10126bb7ef Auth enhancements 2021-09-02 09:44:57 -04:00
Jason Ertel
84ecc3cba7 Merge branch 'dev' into kilo 2021-09-02 07:09:36 -04:00
Jason Ertel
0ad3d826eb Invalid password message should also mention that dollar signs are not allowed 2021-09-02 07:07:36 -04:00
William Wernert
446821e9fd Use exit code 0 when printing error message before exiting soup 2021-09-01 15:11:18 -04:00
William Wernert
576c893eb3 Exit on missing file argument 2021-09-01 15:08:53 -04:00
William Wernert
72859adb13 Fix typo in so-checkin 2021-08-27 15:23:01 -04:00
William Wernert
ca5339341f Fix batch size regex to disallow 0 2021-08-27 11:34:28 -04:00
William Wernert
c5d120293d Initial work to add unattended option to soup 2021-08-27 11:33:51 -04:00
Josh Brower
7b93f355e2 so-import-evtx - timestamp extraction 2021-08-25 15:17:19 -04:00
Josh Brower
aa420b914b Initial version so-playbook-import 2021-08-20 16:27:09 -04:00
Jason Ertel
e39de8c7bc Merge pull request #5089 from Ron89/feature/thehive-userupdate 
add user password update command
 2021-08-15 09:36:35 -04:00
Mike Reeves
d0e312ec42 Merge pull request #5149 from Security-Onion-Solutions/gridraid 
Grid Fixes
 2021-08-13 18:42:34 -04:00
Mike Reeves
e492833453 Grid Fixes 2021-08-13 18:32:55 -04:00
Mike Reeves
9beacacd44 Grid Fixes 2021-08-13 18:26:17 -04:00
Mike Reeves
aad14b2461 Grid Fixes 2021-08-13 18:22:02 -04:00
Mike Reeves
7504b1cb2e Merge pull request #5146 from Security-Onion-Solutions/gridraid 
Grid Fixes
 2021-08-13 16:25:31 -04:00
William Wernert
fb4c2c35e3 Remove so-logscan from so-image-common arrays 2021-08-13 13:58:08 -04:00
HE Chong
81ccce8659 negative case where username doesn't exist now report exception as expected 2021-08-13 23:00:11 +08:00
HE Chong
0d5e3771f5 modify user password update script for theHive, keep it in consistency with Fleet counterpart. 2021-08-13 21:52:19 +08:00
HE Chong
2030ef65f1 add user password update script for Fleet 2021-08-13 21:50:24 +08:00
HE Chong
b6c361f83d add user password update script for The Hive 2021-08-13 20:54:35 +08:00
Mike Reeves
9404cb635d Grid Fixes 2021-08-13 08:48:47 -04:00
William Wernert
86569b0599 Make sbin script permissions consistent 2021-08-12 16:05:54 -04:00
William Wernert
45aa2f72cb Merge branch 'dev' into foxtrot 2021-08-12 15:45:12 -04:00
Jason Ertel
258cebda6e Correct identity update payload to not have unsupported fields 2021-08-12 15:01:45 -04:00
William Wernert
3312a66e75 Fix indent 2021-08-11 16:37:22 -04:00
William Wernert
4a31d6b3bc Specify images are also verified 2021-08-11 16:35:33 -04:00