CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 17:22:49 +01:00
Code Issues Packages Projects Releases Wiki Activity
7,511 Commits 24 Branches 119 Tags
ba29b5e0362c471ac5e00a89f89083bc9d72f09b
Commit Graph

397 Commits

Author SHA1 Message Date
Jason Ertel
e22421ec99 Refactor users/roles management via salt due to Salt's clobbering of the inode which breaks Docker mounts 2021-06-04 20:01:30 -04:00
Jason Ertel
fc6b3726a4 Fix missing colon for mode 2021-06-02 15:23:16 -04:00
Jason Ertel
588da4d7dc Resolve salt pillar/state/jinja race condition 2021-06-02 14:34:21 -04:00
Jason Ertel
7aede4d058 Persist chown/chmod settings on users/roles files 2021-06-02 09:01:16 -04:00
m0duspwnens
7e48740ea7 fix merge conflict 2021-06-01 10:56:02 -04:00
m0duspwnens
d25a439bd4 more changes 2021-06-01 10:53:58 -04:00
Josh Patterson
c4ae8c3418 Merge pull request #4359 from Security-Onion-Solutions/pipeline_userpass 
generate pillar file if auth enabled or not
 2021-06-01 09:38:34 -04:00
m0duspwnens
f87dce8ec1 generate pillar file if auth enabled or not 2021-06-01 09:38:07 -04:00
Josh Patterson
5d2f1c8e11 Merge pull request #4357 from Security-Onion-Solutions/pipeline_userpass 
fix logic
 2021-06-01 08:36:48 -04:00
m0duspwnens
1aa2852ed6 fix logic 2021-06-01 08:35:43 -04:00
Jason Ertel
a42a406f53 Remove extra users file mounts; disable elastic anon access when auth enabled 2021-05-29 07:52:08 -04:00
m0duspwnens
3aad5a30e9 fix logic on password created in pillar and fix how me manage 2021-05-28 18:28:53 -04:00
m0duspwnens
68abaa5e3c update auth.map and curl.config to use new elasticsearch:auth pillar format 2021-05-28 14:03:21 -04:00
m0duspwnens
63b31de2b8 add additional users - manage file if user name isnt returned from grepping the file 2021-05-28 13:58:03 -04:00
m0duspwnens
18926009d3 remove unneeded curl.config template 2021-05-28 10:38:06 -04:00
m0duspwnens
0134ceef16 merge and resolve conflict in elasticsearch state 2021-05-27 11:33:44 -04:00
m0duspwnens
dc8520df42 user curl.config for curl and elasticscripts 2021-05-26 18:04:30 -04:00
m0duspwnens
7263e35a89 happy little comment 2021-05-26 14:52:59 -04:00
m0duspwnens
4d991d3773 propogate users and users_roles 2021-05-26 14:52:10 -04:00
Jason Ertel
c531ef0773 Move user sync'd files to saltstack for grid propagation 2021-05-26 13:44:30 -04:00
Jason Ertel
a6a4c03029 Improve error scenarios for user sync; Ensure user sync runs before Elastic container starts 2021-05-26 12:08:10 -04:00
m0duspwnens
c3b2e1e8b2 dont show changes 2021-05-25 16:16:57 -04:00
m0duspwnens
e261c197f3 add elasticsearch.auth state to statnalone node 2021-05-25 13:46:18 -04:00
m0duspwnens
8d9d5a267a generate elasticsearch.auth pillar if it doesnt exist 2021-05-25 11:52:58 -04:00
m0duspwnens
bd301880ad define the default 2021-05-24 16:32:30 -04:00
m0duspwnens
2deb703272 map users_roles and users conf into docker container 2021-05-24 16:30:55 -04:00
Jason Ertel
8c6489a49a Initial pass at synchronizing users file 2021-05-24 15:48:05 -04:00
m0duspwnens
87609ba5d1 fix elasticcurl if auth is enabled 2021-05-24 15:44:01 -04:00
m0duspwnens
ba3a51387c set default to False 2021-05-24 15:31:46 -04:00
m0duspwnens
a4226cc39a use elastic map file 2021-05-24 15:14:05 -04:00
Wes Lambert
a1a79719fc Add ignore above for message keyword field 2021-05-05 12:07:30 +00:00
Wes Lambert
619402cc67 Add event_data to common template so elastalert/playbook event_data fields can be indexed and searchable 2021-05-03 17:03:30 +00:00
Jason Ertel
44ad8ce888 Switch to the ES-included community_id plugin 2021-04-29 12:08:07 -04:00
Josh Brower
7cbeed985a Differentiate between event & ingest timestamp 2021-04-13 12:55:40 -04:00
Josh Brower
cf4de255ec Fix Wazuh WEL Shipping 2021-04-12 15:18:18 -04:00
Wes Lambert
942de130ca Enforce date type for ingest.timestamp 2021-03-31 12:24:51 +00:00
Josh Brower
71ae5b60ea Update Sigmac mappings and config for IPs and ports 2021-03-16 09:32:40 -04:00
Josh Brower
44c75122ed Update Sigmac mappings and config for IPs and ports 2021-03-16 09:05:35 -04:00
Josh Brower
5fe025318b Update Sigmac mappings and config for IPs and ports 2021-03-15 15:53:00 -04:00
doug
adbc7436b6 FIX: Populate http.status_message field #3408 2021-03-11 16:42:20 -05:00
doug
b4ad7e7359 FIX: Improve Suricata DHCP logging and parsing #3397 2021-03-11 11:01:51 -05:00
Josh Brower
00da549430 Merge pull request #3358 from Security-Onion-Solutions/delta 
FEATURE: Initial support for viewing Osquery Live Query results in Hunt
 2021-03-09 09:18:57 -05:00
Mike Reeves
1ecb079066 Fix Kibana Script for loading dashboards 2021-03-08 17:36:07 -05:00
Josh Brower
fe8788c09a Merge remote-tracking branch 'remotes/origin/dev' into delta 2021-03-08 12:56:47 -05:00
Josh Brower
548f67ca6f Initial support for Live Queries in Hunt 2021-03-04 18:21:13 -05:00
Mike Reeves
c2b347e4bb Security Enable for only nodes and heavy 2021-03-04 10:52:01 -05:00
Mike Reeves
a0a8d12526 Enable SSL and Features 2021-03-04 10:08:28 -05:00
Mike Reeves
4de62c878c turn on elastic security 2021-03-03 12:51:29 -05:00
Mike Reeves
4f867e5375 Fix all scripts for ssl elastic 2021-03-03 10:02:23 -05:00
Mike Reeves
e0d9212e55 Make https default for all things 2021-03-02 14:01:05 -05:00