securityonion

mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00

Author	SHA1	Message	Date
reyesj2	6f42ff3442	suricata capture_file	2025-11-20 14:16:49 -06:00
reyesj2	433dab7376	format json	2025-11-20 14:16:10 -06:00
Josh Brower	b55cb257b6	Add parsing for Playbook	2025-05-19 13:25:27 -04:00
Wes	486a633dfe	Add pfsense Suricata config	2024-03-21 20:07:59 +00:00
Mike Reeves	efe8cfda95	Update suricata.common	2024-01-19 13:39:28 -05:00
Mike Reeves	08486e279c	Update suricata.common	2024-01-19 13:36:43 -05:00
Wes	8a92b023b2	Add interface name	2024-01-16 18:09:16 +00:00
weslambert	660020cc76	Parse pkt_src for Suricata logs	2023-10-23 15:45:41 -04:00
weslambert	7e37cd0f05	Parse xff	2023-06-21 14:29:54 -04:00
Doug Burks	19ab2a5a46	rename suricata vlan field to network.vlan.id	2023-03-05 05:57:52 -05:00
Wes	f19cf75311	Change how event.dataset is determined for Suricata events	2023-01-24 14:45:00 +00:00
Wes Lambert	dc07adca63	Rename ingest.timestamp to event.ingested	2022-03-01 15:05:08 +00:00
Mike Reeves	b4b449aa14	Pull in Suricata changes	2021-02-19 11:01:15 -05:00
Doug Burks	a1e6a85a68	explicitly set Suricata timestamp timezone to UTC	2020-07-14 15:49:46 -04:00
Wes Lambert	d6afde90b0	Convert message timestamp to @timestamp	2020-07-14 13:37:00 +00:00
Mike Reeves	5c62fedd12	Suricata DNS parser	2020-06-04 15:42:51 -04:00
Mike Reeves	0ea2252b5b	Add Suricata Flow pipeline	2020-06-02 13:40:46 -04:00
Mike Reeves	617f60d472	Fix Syntax	2020-06-02 12:01:26 -04:00
Mike Reeves	e63f39a9c4	Rename dataset	2020-06-02 11:58:14 -04:00
Wes Lambert	e023aeb9be	use agent name for observer name	2020-04-01 21:27:25 +00:00
Wes Lambert	ad50093315	add community_id parsing for ingest	2020-03-30 15:49:36 +00:00
Wes Lambert	b80e7fedcb	remove agent field for non-Wazuh logs	2020-03-17 15:20:31 +00:00
Wes Lambert	c52220330b	modify pipelines	2020-03-14 12:03:32 +00:00

23 Commits