CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-07 17:52:46 +01:00
Code Issues Packages Projects Releases Wiki Activity
12,616 Commits 24 Branches 119 Tags
be028aa23e96f61854a3d02b51cc15f8c0aa4097
Commit Graph

109 Commits

Author SHA1 Message Date
Mike Reeves
5922fc0e45 Rule Updates 2023-05-26 16:29:13 -04:00
Mike Reeves
b48e259fee Rule Updates 2023-05-26 16:27:29 -04:00
Mike Reeves
b2d2a9f0ed Rule Updates 2023-05-26 15:16:14 -04:00
Mike Reeves
5315c51197 Allow additional docker parameters 2023-05-18 16:52:38 -04:00
Mike Reeves
2aa801d906 Allow additional docker parameters 2023-05-18 16:31:29 -04:00
m0duspwnens
7a4fea7a12 fix nginx merge conflicts 2023-05-15 11:40:12 -04:00
m0duspwnens
20f706f165 enable/disable telegraf in ui 2023-05-11 12:12:25 -04:00
m0duspwnens
06a0492226 import DOCKER and GLOBALS for filestream enabled 2023-05-10 16:04:53 -04:00
m0duspwnens
c91fb438bb update map file with new strelka format 2023-05-10 15:53:28 -04:00
m0duspwnens
54c9a3ec71 enable/disable each strelka container in ui 2023-05-10 15:50:07 -04:00
weslambert
a1e0041b14 Merge pull request #10287 from Security-Onion-Solutions/fix/strelka_ignore_yara_rules_2.4 
Ignore "expl_outlook_cve_2023_23397.yar" and "gen_mal_3cx_compromise_mar23.yar" since they are causing problems with YARA compilation
 2023-05-08 11:58:17 -04:00
weslambert
c7ed29dfa8 Ignore "expl_outlook_cve_2023_23397.yar" and "gen_mal_3cx_compromise_mar23.yar" since they are causing problems with YARA compilation 2023-05-04 16:16:06 -04:00
Mike Reeves
cbd1c05929 Sbin Changes 2023-05-04 10:36:03 -04:00
Mike Reeves
2d4f4791e0 Move files out of common 2023-05-01 15:21:31 -04:00
m0duspwnens
1047462898 add identifiers for all cron.present 2023-04-13 16:25:47 -04:00
Mike Reeves
22c3a4d398 Adjust elasticsearch annotations 2023-03-20 16:08:26 -04:00
m0duspwnens
924d598a8a add filecheck_runas 2023-03-17 08:38:56 -04:00
m0duspwnens
dd4461daf4 remove other filecheck map import 2023-03-16 17:50:19 -04:00
m0duspwnens
a9b8877268 remove filecheckdefaults from strelka init 2023-03-16 17:15:52 -04:00
m0duspwnens
7950f692a8 Merge remote-tracking branch 'remotes/origin/2.4/dev' into 2.4/strelka 2023-03-16 16:41:24 -04:00
m0duspwnens
0dfbbfcf8e fix spacing on filecheck config 2023-03-16 16:37:38 -04:00
m0duspwnens
2056ce37c6 strelka ui things 2023-03-16 16:32:41 -04:00
Jason Ertel
49df376bcc Remove non-existant Ruby scanner 2023-03-15 19:24:03 -04:00
Mike Reeves
a36a6d5659 Strelka UI components 2023-03-15 10:40:16 -04:00
m0duspwnens
f9b8c78d74 move repos to rules dir 2023-03-14 14:43:13 -04:00
m0duspwnens
b38d5df684 set default mime_db 2023-03-14 13:25:51 -04:00
m0duspwnens
9d4e1cc149 jinja for strelka 2023-03-13 16:48:21 -04:00
m0duspwnens
58343e39fa 2.4 strelka 2023-03-10 17:32:14 -05:00
Mike Reeves
39361c2ab0 unfix playbook fix 2023-02-24 10:01:27 -05:00
Mike Reeves
1289500e03 unfix playbook fix 2023-02-24 09:55:49 -05:00
Mike Reeves
c20a7e6cf9 fix yaml 2023-02-22 13:48:40 -05:00
m0duspwnens
a37f0fd0c0 rename sosbridge to sobridge 2023-02-03 10:07:07 -05:00
weslambert
2101ca60e9 Add 'configured_vulns_ext_vars.yar' to exclusion list 2023-02-01 14:25:46 -05:00
m0duspwnens
3653df4d5f spell it right 2023-01-13 10:18:13 -05:00
m0duspwnens
6033e9a0de use port_bindings from docker defaults in docker states 2023-01-13 10:15:10 -05:00
m0duspwnens
24876eecd9 change refs from sosnet to sosbridge 2022-12-22 14:02:40 -05:00
m0duspwnens
accc293c8a 2.4 firewall changes 2022-12-21 15:03:45 -05:00
Jason Ertel
0bbc68edae Switch back to older style redirect due to incompatibility with Ub 18 2022-12-07 14:08:11 -05:00
Jason Ertel
fde33de030 Use original style due to pgrep conflict with cron 2022-12-07 11:51:49 -05:00
Jason Ertel
e849783a86 Reduce cron noise; ensure filecheck is restarted if modified 2022-12-07 08:36:56 -05:00
weslambert
7ce0924382 Ignore additional rules causing compilation errors 2022-12-06 13:59:21 -05:00
Jason Ertel
88410bc8f8 Merge branch '2.4/dev' into config 2022-12-06 12:38:43 -05:00
Jason Ertel
168cd00e1b Handle suricata extracted with filecheck 2022-12-06 12:34:02 -05:00
Mike Reeves
f083b3867b Update init.sls 2022-12-02 09:40:35 -05:00
Mike Reeves
f83545c556 Update filecheck 2022-11-30 11:02:56 -05:00
m0duspwnens
b95a83b016 Merge remote-tracking branch 'remotes/origin/2.4/dev' into dockerips 2022-11-22 14:17:19 -05:00
Jason Ertel
ed9aa5b73f Ensure filecheck is up by checking every minute 2022-11-17 10:48:53 -05:00
Jason Ertel
7f7e5474ed Add more logging for filecheck monitoring, and ensure scripts are accessible to salt-relay 2022-11-17 10:43:05 -05:00
Jason Ertel
0ffef75d7b Move background jobs to cron 2022-11-17 09:50:41 -05:00
Jason Ertel
c572848ece temporarily remove filecheck for debug purposes 2022-11-17 08:06:24 -05:00