CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity
5,684 Commits 24 Branches 119 Tags
b7bc8db3b2228e4dba288217c990507ea54bb518
Commit Graph

5684 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Jason Ertel
b7bc8db3b2 Modify PCAP quick action to work off of network community ID; Add new Correlate quick action 2020-12-01 17:37:44 -05:00
Jason Ertel
81b86bf7f2 Switch PCAP quick actions to support alternative lookup link when a single event ID is not available 2020-12-01 16:04:50 -05:00
weslambert
0e8f547087 Merge pull request #2160 from Security-Onion-Solutions/fix/strelka_mmbot 
Remove ScanMmbot
 2020-12-01 11:26:14 -05:00
weslambert
9517cb2a58 Remove ScanMmbot 2020-12-01 11:25:51 -05:00
Josh Brower
c303cdff09 Merge pull request #2150 from Security-Onion-Solutions/bugfix/fleet-standalone 
Fleet Fixes - mysql race condition
 2020-11-30 18:06:30 -05:00
Josh Brower
e7a927188b Fleet Fixes - mysql race condition 2020-11-30 17:28:11 -05:00
Josh Brower
8e9458ca84 Merge pull request #2149 from Security-Onion-Solutions/bugfix/fleet-standalone 
Fix Fleet setup errors
 2020-11-30 12:06:36 -05:00
Josh Brower
5d2acf4011 Fix Fleet setup errors 2020-11-30 12:06:02 -05:00
William Wernert
8964444eeb [fix] Correct count print in mysql_conn 2020-11-30 11:32:43 -05:00
William Wernert
ec81e8565f [fix] Add safety logic to retry var in mysql_conn 2020-11-30 11:32:28 -05:00
William Wernert
040b435278 [refactor] Fail mysql_conn if the mainint has > 1 ip address 2020-11-30 11:10:50 -05:00
Josh Brower
704f024441 Merge pull request #2146 from Security-Onion-Solutions/bugfix/fleet-standalone 
Fleet standalone - fix event
 2020-11-30 10:33:05 -05:00
Josh Brower
65d8005629 Fleet standalone - fix event 2020-11-30 10:32:39 -05:00
Josh Brower
7fddf99648 Merge pull request #2128 from Security-Onion-Solutions/bugfix/fleet-standalone 
Fix Fleet setup errors
 2020-11-27 13:59:19 -05:00
Josh Brower
f52c30bff5 Fix Fleet setup errors 2020-11-27 13:58:41 -05:00
Josh Brower
19a33c5c2a Merge pull request #2126 from Security-Onion-Solutions/bugfix/fleet-standalone 
Bugfix/fleet standalone
 2020-11-27 11:45:25 -05:00
Josh Brower
19b36f0468 Fleet standalone redirect fix 2020-11-27 11:43:51 -05:00
Josh Brower
95a664e12a Merge pull request #2103 from Security-Onion-Solutions/bugfix/fleet-standalone 
Fleet standalone fix
 2020-11-25 14:09:27 -05:00
Josh Brower
38afd67108 Fleet standalone fix 2020-11-25 14:08:30 -05:00
Jason Ertel
979f171828 Add missing comma to sensoroni.json 2020-11-25 12:29:45 -05:00
Jason Ertel
8f9081618f Add role to sensoroni.json file 2020-11-25 11:11:46 -05:00
Jason Ertel
7fb264b4fe Use double quotes around agent key to ensure interpolation 2020-11-24 17:17:50 -05:00
Jason Ertel
d20560385f Remove /nsm/wazuh/etc subdir state since confirmed the Wazuh docker container itself 2020-11-24 16:50:46 -05:00
Jason Ertel
e1147398cc Ensure /nsm/wazuh is owned by ossec 2020-11-24 15:48:46 -05:00
Jason Ertel
8864428a00 Ensure setup output is redirected to logfile 2020-11-24 15:45:40 -05:00
Jason Ertel
ea9bbfd1aa Improve wazuh agent registration with retry logic to wait for manager to become ready 2020-11-24 13:53:20 -05:00
weslambert
0c4ee94472 Merge pull request #2077 from Security-Onion-Solutions/fix/thehive_upgrade_conf 
Fix/thehive upgrade conf
 2020-11-24 11:52:51 -05:00
weslambert
39bf60feb7 Add digit 2020-11-24 11:52:20 -05:00
weslambert
35653d2e66 Changes for ES7 2020-11-24 11:51:19 -05:00
weslambert
eb2364b926 Changes for ES7 2020-11-24 11:49:08 -05:00
Josh Patterson
9bb485cdc9 Merge pull request #2074 from Security-Onion-Solutions/issue/2040 
Issue/2040
 2020-11-24 11:45:08 -05:00
m0duspwnens
fe2662cab8 dont enable steno pillar on import node https://github.com/Security-Onion-Solutions/securityonion/issues/2040 2020-11-24 11:42:03 -05:00
m0duspwnens
995a377432 squigly comma if steno enabled https://github.com/Security-Onion-Solutions/securityonion/issues/2040 2020-11-24 11:31:41 -05:00
weslambert
e3a41c2a94 Changes for ES7 elasticsearch.yml 2020-11-24 11:20:09 -05:00
m0duspwnens
4dfd49ef39 add vars https://github.com/Security-Onion-Solutions/securityonion/issues/2040 2020-11-24 10:11:28 -05:00
m0duspwnens
65334d15ea https://github.com/Security-Onion-Solutions/securityonion/issues/2040 2020-11-24 09:33:38 -05:00
Jason Ertel
1e32a01657 Create symlink before registration otherwise registration script can't save it's state (.log) file into the conf subdir; add more logging output to track down registration failures 2020-11-23 18:36:19 -05:00
Jason Ertel
bafefb980b Update so-elastalert-test script for compatibility with SO 2.3 2020-11-23 10:45:56 -05:00
Mike Reeves
426769588a Merge pull request #1739 from jtgreen-cse/patch-2 
fix for Windows events via osquery
 2020-11-21 13:27:05 -05:00
Josh Patterson
a183be489c Merge pull request #2030 from Security-Onion-Solutions/master 
Merge master to dev
 2020-11-20 17:00:31 -05:00
Josh Patterson
b29ffcac92 Merge pull request #2029 from Security-Onion-Solutions/soup-ubuntu-salt 
fix issue with proper salt.minion state execution for ubuntu
 2020-11-20 16:55:45 -05:00
Jason Ertel
78f5727f6f Improve so-ip-update prompts 2020-11-20 15:16:07 -05:00
m0duspwnens
0d3754200f fix issue with proper salt.minion state execution for ubuntu 2020-11-20 14:27:07 -05:00
Jason Ertel
bc40a2bfc5 Correct so-import-pcap wrapping; add so-pcap-import alias for so-import-pcap; prompt to reboot after changing IP address on manager; ensure all tools have exec bit set 2020-11-20 14:14:03 -05:00
Jason Ertel
f074179656 Correct so-import-pcap wrapping; add so-pcap-import alias for so-import-pcap; prompt to reboot after changing IP address on manager; ensure all tools have exec bit set 2020-11-20 14:14:03 -05:00
William Wernert
b6e36d4d06 Merge pull request #2023 from Security-Onion-Solutions/bugfix/bug-hunt 
Bugfix/bug hunt
 2020-11-20 13:04:33 -05:00
William Wernert
2e6be747d9 [fix] Fixes for quiet flag in so-ssh-harden 2020-11-20 11:18:40 -05:00
William Wernert
1a11c24f03 [fix] Add newline escapes to so-ssh-harden 2020-11-20 11:13:40 -05:00
William Wernert
d15064b294 Merge branch 'dev' into bugfix/bug-hunt 2020-11-20 10:15:52 -05:00
William Wernert
d3ef46a5f6 Merge pull request #2020 from Security-Onion-Solutions/bugfix/pre-whiptail-message 
[fix] Remove echo redirect at beginning of install
 2020-11-20 10:15:24 -05:00