securityonion

mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00

Author	SHA1	Message	Date
weslambert	b9ebe6c40b	Update VERSION	2024-03-05 12:58:34 -05:00
weslambert	bed42208b1	Add journald integration	2024-03-05 09:49:55 -05:00
weslambert	2a7e5b096f	Change version for foxtrot	2024-03-05 09:48:59 -05:00
weslambert	d8e8933ea0	Add AWS Security Hub template	2024-03-05 09:25:41 -05:00
weslambert	d85ac39e28	Add AWS Inspector template	2024-03-05 09:23:17 -05:00
weslambert	1514f1291e	Add AWS GuardDuty template	2024-03-05 09:21:48 -05:00
weslambert	b64d61065a	Add AWS Cloudfront template	2024-03-05 09:19:43 -05:00
Mike Reeves	58d222284e	Merge pull request #12271 from Security-Onion-Solutions/suripcap Suricata PCAP	2024-03-04 17:27:38 -05:00
Mike Reeves	fe238755e9	Fix df	2024-03-04 16:52:51 -05:00
Mike Reeves	018e099111	Modify setup	2024-03-04 14:53:15 -05:00
Josh Brower	9fd1653914	Merge pull request #12487 from Security-Onion-Solutions/2.4/elastic-agent-fim Fix FIM	2024-03-04 07:41:36 -05:00
Josh Brower	f28f269bb1	Fix FIM	2024-03-04 07:38:32 -05:00
Josh Brower	f3dce66f03	Merge pull request #12482 from Security-Onion-Solutions/2.4/sigma-pipeline 2.4/sigma pipeline	2024-03-01 15:29:13 -05:00
Josh Brower	d832158cc5	Drop Hashes field	2024-03-01 15:26:02 -05:00
Josh Brower	b017157d21	Add antivirus mapping	2024-03-01 14:04:56 -05:00
Jorge Reyes	d911b7bfc4	Merge pull request #12469 from Security-Onion-Solutions/reyesj2-patch-4 FIX: EA installers not downloadable from SOC & fix logging	2024-02-29 16:21:44 -05:00
reyesj2	53761d4dba	FIX: EA installers not downloadable from SOC + fix stg logging Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>	2024-02-29 16:15:26 -05:00
Mike Reeves	1fe8f3d9e4	Merge pull request #12405 from Security-Onion-Solutions/repochange Manage the repo files	2024-02-29 14:01:48 -05:00
Josh Brower	aa3b917368	Merge pull request #12456 from Security-Onion-Solutions/feature/detections-airgap Feature/detections airgap	2024-02-28 09:41:13 -05:00
Josh Brower	e2dd0f8cf1	Only update rule files if AG	2024-02-28 09:39:23 -05:00
weslambert	d1e55d5ab7	Merge pull request #12450 from Security-Onion-Solutions/fix/suricata_max_age Roll Suricata logs daily to prevent alerts from being deleted when not meeting size threshold	2024-02-27 17:28:07 -05:00
weslambert	df3943b465	Daily rollover	2024-02-27 17:24:27 -05:00
Josh Patterson	d5fc6ddd2c	Merge pull request #12449 from Security-Onion-Solutions/issue/12391 Issue/12391	2024-02-27 15:38:33 -05:00
m0duspwnens	fcc0f9d14f	redo classifications	2024-02-27 13:20:58 -05:00
Josh Brower	59af547838	Fix download location	2024-02-27 09:49:54 -05:00
Josh Brower	a817bae1e5	Merge pull request #12437 from Security-Onion-Solutions/feature/detections-airgap Airgap Support - Detections module	2024-02-26 16:47:26 -05:00
Josh Brower	c6baa4be1b	Airgap Support - Detections module	2024-02-26 16:19:32 -05:00
m0duspwnens	8b7f7933bd	suricata container watch classification.config	2024-02-26 15:29:13 -05:00
m0duspwnens	466dac30bb	soup for classifications	2024-02-26 12:15:17 -05:00
Doug Burks	52580fb8c4	Merge pull request #12434 from Security-Onion-Solutions/feature/improve-endpoint-columns Add multiple endpoint features	2024-02-26 12:05:30 -05:00
weslambert	acf7dbdabe	Merge pull request #12432 from Security-Onion-Solutions/fix/endpoint_diag_template Update pattern for endpoint diagnostic template	2024-02-26 12:01:29 -05:00
weslambert	1d099f97d2	Update pattern for endpoint diagnostic template	2024-02-26 11:27:56 -05:00
Doug Burks	f8424f3dad	Update defaults.yaml	2024-02-26 11:22:09 -05:00
m0duspwnens	9a7e2153ee	add classification.config	2024-02-26 11:01:53 -05:00
Doug Burks	c8a95a8706	FEATURE: Add new endpoint dashboards #12428	2024-02-26 09:59:07 -05:00
Doug Burks	4df21148fc	FEATURE: Add default columns for endpoint.events datasets #12425	2024-02-26 09:40:51 -05:00
Doug Burks	ca249312ba	FEATURE: Add new SOC action for Process Info #12421	2024-02-26 09:38:14 -05:00
Josh Brower	66b815d4b2	Merge pull request #12431 from Security-Onion-Solutions/feature/brower-detections Add Detection AutoUpdate config	2024-02-26 08:43:33 -05:00
Josh Brower	a6bb7216f9	Add Detection AutoUpdate config	2024-02-26 08:18:42 -05:00
Josh Brower	77cb5748f6	Merge pull request #12430 from Security-Onion-Solutions/feature/sigma-pipeline Feature/sigma pipeline	2024-02-26 08:00:00 -05:00
Doug Burks	d6cb8ab928	update events_x_process in defaults.yaml	2024-02-23 17:09:40 -05:00
Doug Burks	daf96d7934	fix new eventFields in merged.map.jinja	2024-02-23 17:07:48 -05:00
Doug Burks	58f4fb87d0	fix new eventFields in soc_soc.yaml	2024-02-23 17:06:29 -05:00
Doug Burks	b7ef1e8af1	add more endpoint.events.x fields to soc_soc.yaml	2024-02-23 15:38:53 -05:00
Doug Burks	7da0ccf5a6	add more endpoint.events.x entries to merged.map.jinja	2024-02-23 15:35:53 -05:00
Doug Burks	65cdc1dc86	Merge pull request #12423 from Security-Onion-Solutions/jppfiec convert _x_ to . for soc ui to config	2024-02-23 15:22:16 -05:00
m0duspwnens	573d565976	convert _x_ to . for soc ui to config	2024-02-23 15:03:44 -05:00
Doug Burks	b8baca417b	add endpoint_x_events_x_process to defaults.yaml	2024-02-23 14:03:04 -05:00
Josh Brower	d04aa06455	Fix source.ip	2024-02-22 14:01:02 -05:00
Mike Reeves	1824d7b36d	Merge pull request #12416 from Security-Onion-Solutions/TOoSmOotH-patch-2 Fix Loss Calculation for Stenographer	2024-02-22 12:52:36 -05:00

1 2 3 4 5 ...

14457 Commits