CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-19 15:33:06 +01:00
Code Issues Packages Projects Releases Wiki Activity
9,025 Commits 18 Branches 120 Tags
c490a3be36695401421b710ba1dc902a08f4c08d
Commit Graph

5337 Commits

Author SHA1 Message Date
m0duspwnens
c490a3be36 move node_data pillar to logstash:nodes, set extra hosts for filebeat docker 2021-12-14 13:32:42 -05:00
m0duspwnens
6518691c55 sort the items 2021-12-13 18:16:25 -05:00
m0duspwnens
067e79894f fix loop for node_data 2021-12-13 16:26:38 -05:00
m0duspwnens
6de2f5bd03 fix node_data 2021-12-13 15:55:09 -05:00
m0duspwnens
8d0872bce5 create node_data pillar from mine data, use node_data pillar for filebeat config 2021-12-13 15:48:30 -05:00
m0duspwnens
86f67198bf loadbalance filebeat if across managers and receivers 2021-12-10 17:43:06 -05:00
m0duspwnens
fe7247f876 update fw for receiver and add mine_functions for ip_addr 2021-12-10 15:28:40 -05:00
m0duspwnens
d94496bb90 remove minio_key and add missing endif 2021-12-09 13:24:20 -05:00
m0duspwnens
c2a952796c Merge remote-tracking branch 'remotes/origin/sans' into issue/6469 2021-12-09 13:13:18 -05:00
Mike Reeves
b92cbb01b3 SSL modifications 2021-12-09 13:13:01 -05:00
m0duspwnens
5b70d5510f Merge remote-tracking branch 'remotes/origin/sans' into issue/6469 2021-12-09 13:12:00 -05:00
Mike Reeves
a7f0d81555 SSL modifications 2021-12-09 13:07:00 -05:00
m0duspwnens
ecc8594d44 prevent so-receiver from getting extra keys/certs 2021-12-08 13:32:56 -05:00
m0duspwnens
59464af10c filebeat certs for logstash on so-receiver 2021-12-08 09:41:17 -05:00
m0duspwnens
1ef63f3a23 ssl things for so-receiver 2021-12-08 09:08:46 -05:00
m0duspwnens
8c95d0f36b set ip for wazuh-register-agent and dont apply nginx in setup for receiver 2021-12-07 16:50:41 -05:00
m0duspwnens
429b9cab2f set ip for ossec.conf 2021-12-07 16:22:07 -05:00
m0duspwnens
f8da5c7fe9 start of fw rules for receiver 2021-12-07 15:59:11 -05:00
m0duspwnens
06010bd157 add so-receiver to allowed_states 2021-12-07 13:34:06 -05:00
m0duspwnens
7549e34881 Merge remote-tracking branch 'remotes/origin/dev' into issue/6469 2021-12-07 10:57:12 -05:00
Jason Ertel
702d95c63a Merge branch 'master' into merge-202112071527 2021-12-07 10:28:00 -05:00
m0duspwnens
96666ab307 add receiver node 2021-12-07 10:19:32 -05:00
Wes Lambert
0571612ea1 Add initial EG dashes 2021-12-03 22:38:30 +00:00
Mike Reeves
f82d204c0e Update soup 2021-12-03 15:20:33 -05:00
Mike Reeves
780daf8aa7 Apply hotfix to all 2.3.90 installs 2021-12-03 15:15:45 -05:00
m0duspwnens
c6773a0bbc move "Preparing soup" to main so shows in soup.log 2021-12-03 10:26:22 -05:00
m0duspwnens
ff2d2c7c04 export LC_CTYPE="en_US.UTF-8" - https://github.com/Security-Onion-Solutions/securityonion/discussions/6431 2021-12-02 16:39:32 -05:00
Mike Reeves
f5761c73a5 Fix for the clustername used in wrong context 2021-12-02 15:30:35 -05:00
m0duspwnens
8d667795a7 only add soc:es_index_patterns to pillar if not already present 2021-12-02 10:28:17 -05:00
m0duspwnens
7a664ab8f7 more error proof up_to_2.3.90 function 2021-12-02 10:02:26 -05:00
Jason Ertel
e549cfdf82 Reign in the Wazuh port check to only complain if a non-Docker process is listening on 55000. 2021-12-02 09:35:13 -05:00
Josh Brower
97cd679d74 Fix FleetDM nginx errors 2021-12-02 08:17:01 -05:00
William Wernert
6e7188b4d8 Merge branch 'hotfix/2.3.90' into hotfix-merge 
# Conflicts:
#	HOTFIX
 2021-12-01 14:40:34 -05:00
m0duspwnens
5e0ac89841 merge with master 2021-12-01 14:27:58 -05:00
m0duspwnens
c571b2c499 handle redirect if more than 1 match from compgen 2021-12-01 13:17:14 -05:00
Josh Patterson
63cb486698 remove redirect to /dev/null for compgen 2021-12-01 10:16:04 -05:00
Dustin Lee
8a394380cb add subjectAltName to filebeat.crt 
IP SAN is required for Endgame integration w/Logstash when DNS resolution is unavailable
 2021-11-30 16:24:08 -05:00
William Wernert
8d87fae6a8 Remove airgap repo file if it shouldn't exist 2021-11-30 15:46:22 -05:00
Jason Ertel
4f283c2d86 Suppres grep output 2021-11-23 14:52:40 -05:00
Jason Ertel
801d42ed20 Correct if check to inline the command instead of checking for emptiness of a variable 2021-11-23 14:51:06 -05:00
Jason Ertel
59fc122eec Force restart of wazuh since conf file is changing 2021-11-23 13:29:04 -05:00
Jason Ertel
bd59d65f02 Strip trailing newlines from version and hotfix files 2021-11-23 13:12:27 -05:00
Jason Ertel
01ceded223 Handle CRs in hotfix 2021-11-23 13:03:40 -05:00
Jason Ertel
3c37bd61ab Add debug logging 2021-11-23 12:46:59 -05:00
Jason Ertel
7627d37386 Add 2.3.90 WAZUH hotfix corrective function 2021-11-23 12:21:28 -05:00
Josh Patterson
c67b2b6936 Update soup 
only check if salt was upgraded if upgrade_salt function was called
 2021-11-23 11:14:10 -05:00
Jason Ertel
af4c04be59 Fix #6325 - Prevent XML header from outputting to ossec.conf 2021-11-23 10:57:21 -05:00
Jason Ertel
4672b0c15c Fix #6317 - Do not attempt to whitelist when wazuh isn't enabled 2021-11-23 10:06:14 -05:00
m0duspwnens
c0f183fb5e add comment 2021-11-19 16:37:27 -05:00
m0duspwnens
d602339c45 render and md5sum soup and so-common 2021-11-19 16:32:59 -05:00