CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-08 10:12:53 +01:00
Code Issues Packages Projects Releases Wiki Activity
3,497 Commits 24 Branches 119 Tags
c0428ce79ddb9099334e18f5472f3d5a79b5cbf6
Commit Graph

41 Commits

Author SHA1 Message Date
Wes Lambert
c0428ce79d Update file dataset name for hunt queries 2020-06-23 17:48:12 +00:00
Mike Reeves
6410087994 1.4.0 2020-06-16 13:52:37 -04:00
Doug Burks
befc793a96 Improve files query #804 2020-06-12 14:25:38 -04:00
Doug Burks
d157c0da00 Improve DNS queries #804 2020-06-12 14:21:36 -04:00
Doug Burks
0b2dd5d0a4 add event.dataset to default hunt output view #841 2020-06-12 11:37:55 -04:00
Doug Burks
3cc936a0a8 add event.dataset to default hunt output view #841 2020-06-12 11:13:56 -04:00
Jason Ertel
e6fcf75181 Re-ordered wazuh setup to avoid agent-service failures due to missing client.keys file; Prepare for user profile settings screen support in reverse proxy 2020-06-02 17:31:51 -04:00
Doug Burks
80d1814f10 remove event.module:zeek to make queries more generic 2020-06-01 12:00:33 -04:00
Doug Burks
f559621f00 add x509 issuer and subject groupby queries 2020-06-01 07:48:50 -04:00
Doug Burks
46dc5f42e9 combine two http queries into one with multiple groupby 2020-06-01 07:30:08 -04:00
Doug Burks
f3efafc9ca combine two notice queries into one query with multiple groupby 2020-05-28 08:01:33 -04:00
Doug Burks
60cc3e9675 remove address from DHCP leases query 2020-05-28 07:50:52 -04:00
Doug Burks
7a657d1229 add Community ID to default fields in bottom data table in Hunt 2020-05-26 12:58:01 -04:00
Doug Burks
064768d07d Fix dce_rpc hunt query #736 
https://github.com/Security-Onion-Solutions/securityonion-saltstack/issues/736
 2020-05-19 11:27:01 -04:00
Mike Reeves
1d677bb529 Update known issues list 2020-05-19 09:36:36 -04:00
Doug Burks
def928804f Fix Hunt DHCP message_types query #728 
https://github.com/Security-Onion-Solutions/securityonion-saltstack/issues/728
 2020-05-18 17:12:20 -04:00
Doug Burks
b291b242ee temporarily hardcode radius user.name to user.name.keyword 2020-05-18 13:47:21 -04:00
Doug Burks
00f6e8d61b update geoip country descriptions 2020-05-18 10:27:03 -04:00
Doug Burks
028d84b805 remove commas from groupby segments 2020-05-18 10:25:05 -04:00
Doug Burks
a3323c24ac fix ftp.argument 2020-05-18 09:52:56 -04:00
Doug Burks
2f15c30d9a fix dhcp query 2020-05-18 09:44:49 -04:00
Doug Burks
bd4dfcb351 fix dns domain queries 2020-05-18 08:35:43 -04:00
William Wernert
f319257f8d [feat] Change kratos:redirect to master:url_base 2020-05-17 13:14:28 -04:00
Mike Reeves
10896c1add Update Release Notes 2020-05-15 13:41:51 -04:00
Doug Burks
e41c1b6755 fix typo 2020-05-14 16:57:34 -04:00
Doug Burks
34d9882987 fix Wazuh and Sysmon queries 2020-05-14 13:47:01 -04:00
Mike Reeves
dbef2e2832 Update soc.json 2020-05-14 11:56:18 -04:00
Mike Reeves
6991900ceb Update Query for geo 2020-05-14 11:34:10 -04:00
Doug Burks
5c3e7acc6d change resp_mime_types to file.resp_mime_types 2020-05-14 11:21:32 -04:00
Doug Burks
6112322bce change file.path to smb.path 2020-05-14 11:20:11 -04:00
Doug Burks
c7b4ab116f fix rfb typo 2020-05-14 10:57:44 -04:00
Mike Reeves
0b0c8d8471 Remove Keyword 2020-05-12 17:54:25 -04:00
Mike Reeves
0b7568e08f Update soc.json with default search info 2020-05-12 13:57:40 -04:00
Jason Ertel
47295d42f5 Initial iteration of new SOC Event search module 2020-05-08 17:00:06 -04:00
Jason Ertel
e4afc20366 Update Kratos config to match latest version of Kratos 2020-04-24 16:27:36 -04:00
Mike Reeves
f1f681794c Update Notes 2020-04-16 16:00:08 -04:00
Mike Reeves
616baaf4be Update JOSN for release 2020-04-16 10:53:35 -04:00
Josh Brower
c47abf7c56 rename kratos config field 2020-04-15 14:37:59 -04:00
Jason Ertel
7a7fcce1e1 Added config changes needed for new admin pages in SOC 2020-04-08 12:39:37 -04:00
Jason Ertel
d906a89ad1 Continued auth improvements 2020-04-08 10:35:29 -04:00
Jason Ertel
f7e9e99eae Added new soc-related saltstack files. 2020-03-30 22:15:49 -04:00