securityonion

mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-07 01:32:47 +01:00

Author	SHA1	Message	Date
m0duspwnens	743ed316f8	dont apply suricata.enabled on import nodes	2023-05-30 16:10:41 -04:00
Mike Reeves	38881231ac	Merge branch '2.4/dev' of https://github.com/Security-Onion-Solutions/securityonion into airgaps	2023-05-26 15:16:38 -04:00
m0duspwnens	5b4ec70ca6	fix typo on suricata annotations. add to global annotations	2023-05-26 09:37:57 -04:00
m0duspwnens	5c933910aa	simplify map for updating suricata config if md engine is suricata	2023-05-25 17:25:54 -04:00
m0duspwnens	a3c3f08511	convert list to dict to work better with ui. regex on suricata vars HOME_NET for soc	2023-05-25 17:00:48 -04:00
m0duspwnens	d99d4756c3	set defaults as example in soc ui for suricata cpu affinity	2023-05-25 11:11:53 -04:00
m0duspwnens	6505d3e2ce	update annotations for suricata	2023-05-25 11:03:37 -04:00
m0duspwnens	67a608ea56	adjust suricata defaults	2023-05-24 12:22:42 -04:00
Mike Reeves	c9db6c0f18	Add Suricata	2023-05-24 10:18:58 -04:00
Mike Reeves	cb0ed9ae6d	Merge branch '2.4/dev' of https://github.com/Security-Onion-Solutions/securityonion into airgaps	2023-05-24 10:04:15 -04:00
m0duspwnens	8995012c80	fix suricata sostatus	2023-05-24 09:52:07 -04:00
Mike Reeves	2c4ba2e8b2	Add Suricata	2023-05-24 09:35:50 -04:00
m0duspwnens	732d2aadf8	rename state to resolve conflicting / duplicate state ids	2023-05-24 08:58:43 -04:00
m0duspwnens	cc47f9a595	fix suricata thresholding	2023-05-23 11:16:32 -04:00
m0duspwnens	eb633be437	enable/disable suricata in ui. assign threads properly	2023-05-22 17:48:22 -04:00
Mike Reeves	cbd1c05929	Sbin Changes	2023-05-04 10:36:03 -04:00
Mike Reeves	e60e21d9ff	Move files out of common	2023-05-02 09:40:02 -04:00
m0duspwnens	1047462898	add identifiers for all cron.present	2023-04-13 16:25:47 -04:00
m0duspwnens	0fff3a5a11	suricata bpf	2023-03-20 17:31:56 -04:00
Wes	5fba3c5872	Add Suricata metadata configuration	2023-02-02 14:48:01 +00:00
Doug Burks	554754421c	Avoid unecessary Suricata processes in Import Mode	2023-01-10 16:48:06 -05:00
Jason Ertel	168cd00e1b	Handle suricata extracted with filecheck	2022-12-06 12:34:02 -05:00
Mike Reeves	de19a4dc53	Add Strelka Filecheck	2022-11-02 10:04:33 -04:00
m0duspwnens	b526532ab6	use global vars in states	2022-10-11 11:57:15 -04:00
doug	fee5a7bea9	initial quick OCD pass	2022-09-23 16:29:55 -04:00
Mike Reeves	85339d7cb1	Add helpLinks to everything	2022-09-20 15:43:34 -04:00
Mike Reeves	512c044d80	Thresholding	2022-09-19 16:53:51 -04:00
Mike Reeves	9a6fe3e8de	Add BPF	2022-09-16 08:36:44 -04:00
Mike Reeves	7d6e847f86	Fix Zeek PIllar	2022-09-15 13:11:03 -04:00
Mike Reeves	0351ef4ff5	Fix Suricata analyzers list	2022-09-15 10:48:08 -04:00
m0duspwnens	845d2e33bd	remove dupe afpacket	2022-09-15 10:44:39 -04:00
m0duspwnens	4cb955fe8d	jinja for the suricata outputs	2022-09-15 10:35:59 -04:00
Mike Reeves	8528645c2c	Update suricata_config.map.jinja	2022-09-14 15:02:55 -04:00
Mike Reeves	f8c1571a91	Update suricata_config.map.jinja	2022-09-14 14:43:04 -04:00
Mike Reeves	30a469ea63	Update afpacket.map.jinja	2022-09-14 14:36:13 -04:00
Mike Reeves	90ed4fd4cb	Fix Suricata	2022-09-14 14:18:10 -04:00
Mike Reeves	ee59822097	Fix Suricata	2022-09-14 14:15:50 -04:00
Mike Reeves	74a8bd17ea	Fix Suricata	2022-09-14 13:56:17 -04:00
Mike Reeves	a4dc63f3a4	Change how zeek and suri are populated in the minion file	2022-09-14 09:53:57 -04:00
Mike Reeves	df1a64b5e0	Modify more defaults	2022-09-13 11:45:59 -04:00
Mike Reeves	a32ff6f403	Modify Suricata defaults	2022-09-13 11:29:31 -04:00
Mike Reeves	2bd9dd80e2	Move In Day	2022-09-07 09:06:25 -04:00
Mike Reeves	cf8c6a6e94	Update defaults.yaml	2022-07-14 15:17:27 -04:00
m0duspwnens	53d6e1d30d	simplfy	2022-05-26 11:51:17 -04:00
m0duspwnens	1bfde852f5	manage suricata classifications.config https://github.com/Security-Onion-Solutions/securityonion/issues/7918	2022-05-26 11:43:31 -04:00
m0duspwnens	53883e4ade	manage suricata classifications.config https://github.com/Security-Onion-Solutions/securityonion/issues/7918	2022-05-26 11:40:33 -04:00
Doug Burks	db4f138a78	FIX: surilogcompress cron job not running The suricata user was originally created with `/opt/so/conf/suricata` as its home directory. I think at some point we changed permissions on `/opt/so/conf` and at that point the `surilogcompress` cron job stopped working. Changing the home directory to `/nsm/suricata` works on all of my PROD systems (including Ubuntu and CentOS). For more information, please see: https://github.com/Security-Onion-Solutions/securityonion/issues/7133	2022-03-15 07:10:02 -04:00
Jason Ertel	eefcc929c2	Update copyright pattern to match other repos	2022-01-24 10:09:23 -05:00
Jason Ertel	7c22f46a55	Update copyright year for 2022	2022-01-24 09:35:29 -05:00
m0duspwnens	d7e5377a44	more requires	2021-10-22 16:46:45 -04:00

1 2 3 4

194 Commits