CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-01-04 07:13:12 +01:00
Code Issues Packages Projects Releases Wiki Activity
14,015 Commits 20 Branches 120 Tags
be8ed1e1d8f99f1e33fd734c54a4fb928801d11d
Commit Graph

85 Commits

Author SHA1 Message Date
Wes
5bfef3f527 Add checkpoint and vsphere templates 2023-11-02 21:10:01 +00:00
weslambert
c354924b68 Add import roles 2023-10-31 10:05:29 -04:00
weslambert
ed6473a34b Add roles for eval mode 2023-10-30 20:41:49 -04:00
weslambert
76dd6f07ab Remove policy for OSQuery manager indices 2023-10-27 17:26:33 -04:00
weslambert
c955f9210a Remove policy for Cases indices 2023-10-27 17:24:27 -04:00
Mike Reeves
b37e38e3c3 Update defaults.yaml 2023-10-26 16:03:58 -04:00
Mike Reeves
2e0100fd35 Update defaults.yaml 2023-10-26 12:37:55 -04:00
Wes
891ea997e7 Add lifecycle policies and warm settings 2023-10-26 12:25:37 +00:00
Josh Patterson
5f168a33ed Update defaults.yaml 2023-10-25 16:16:01 -04:00
Josh Patterson
af4b34801f Update defaults.yaml 2023-10-25 15:48:27 -04:00
Wes
28b7a24cc1 Add templates for integrations 2023-10-18 20:36:04 +00:00
Wes
2e0ea3f374 Set final pipeline 2023-09-19 13:33:12 +00:00
weslambert
d090852895 Correct fortigate template name 2023-08-30 15:40:40 -04:00
weslambert
706a6e2d56 Make sure a data stream is created for syslog 2023-08-30 08:34:04 -04:00
weslambert
d40bbf6b09 Add Apache templates 2023-08-29 10:59:40 -04:00
Wes
31a49268cb Add o365 and okta 2023-08-23 20:20:06 +00:00
Wes
3f2793088a Add templates 2023-08-23 19:02:50 +00:00
m0duspwnens
9cba9d9ae0 allow to override number_of_replicas from one place in soc ui 2023-08-17 15:00:01 -04:00
m0duspwnens
4d497022db replace . with _x_ for soc ui compat 2023-08-10 09:52:18 -04:00
Wes
d84dbf9535 Add fleet 2023-07-24 18:53:52 +00:00
Wes
de7b7ff989 Add endpoint 2023-07-24 18:35:02 +00:00
weslambert
e02bdffe34 Fix typos 2023-06-23 16:10:22 -04:00
Wes
b96d3473f2 Fix indentation 2023-06-23 18:38:04 +00:00
Wes
62fa15c63e Add more templates 2023-06-23 14:43:15 +00:00
weslambert
e995576b1d Remove extra templates 2023-06-23 09:41:49 -04:00
Wes
c2ac60b82e Add system.system template and add event-mappings 2023-06-14 13:28:00 +00:00
Wes
af003cc2a1 Add osquery templates 2023-06-13 20:43:39 +00:00
Wes
5547a1b7ab Add event mappings 2023-06-13 18:23:50 +00:00
Wes
d0a6881c2c Add event mappings and remove meta information for now 2023-06-13 13:35:46 +00:00
Wes
57268ba934 Change priority of templates 2023-06-12 14:29:45 +00:00
Wes
42f5ad9939 Add templates for system.auth and systen.syslog 2023-06-12 14:23:24 +00:00
Wes
ad5a424c03 Update templates for integrations 2023-06-09 18:32:50 +00:00
m0duspwnens
2a979197a0 enabled/disable elasticsearch in ui 2023-05-09 09:33:37 -04:00
Mike Reeves
2cb6f0f1e6 Add curator settings 2023-03-27 12:30:39 -04:00
weslambert
0a9a064648 Remove node attrs configuration since node roles will be used 2023-03-23 13:45:51 -04:00
Wes
84360aa9bf Set replicas for Osquery manager indices to 0 2023-03-22 21:47:49 +00:00
Wes
eaaa028999 Update Elastic Agent template settings 2023-03-22 19:52:13 +00:00
Mike Reeves
5fc297b8c1 Change Elastic Logic 2023-03-21 16:52:08 -04:00
Wes
e105e56fac Move data stream configuration outside of ILM policy definition 2023-03-13 13:27:02 +00:00
weslambert
16d9478196 Add index lifecycle management policy definitions for default Elastic Agent data streams 2023-03-10 16:54:47 -05:00
Wes
c9118699a9 Add index management lifecycle policy defintion and reference in index template 2023-02-10 15:10:30 +00:00
Wes
f1db1bc273 Ensure Kratos events are sent to a data stream instead of an index 2023-01-26 16:12:06 +00:00
Wes
51692ac66c Update index pattern in various template definitions to match new data stream naming convention 2023-01-23 21:52:44 +00:00
weslambert
7d3f6121eb Remove default "logs-*" template settings for now 2023-01-19 10:29:10 -05:00
weslambert
7a499c9051 Modify default 'logs-*' template priority 2023-01-18 17:24:07 -05:00
weslambert
73a4dae28e Make sure Elastic Agent data streams do not use replicas 2023-01-13 16:10:44 -05:00
weslambert
7cba5626b7 Merge pull request #9570 from Security-Onion-Solutions/fix/elasticsearch_templates_elastic_agent 
Change priority for Elastic Agent Elasticsearch index templates
 2023-01-12 16:48:12 -05:00
weslambert
654d869e3e Change priority from 500 to 200 for Elastic Agent index templates to avoid collisions with other templates 2023-01-12 16:46:08 -05:00
weslambert
fb8d8ea972 Update Elasticsearch index template for Kratos 2023-01-12 15:31:41 -05:00
Wes
c3b83f1fc8 Update template settings to use data streams 2023-01-11 14:03:11 +00:00