CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-04-25 14:07:49 +02:00
Code Issues Packages Projects Releases Wiki Activity
1,790 Commits 40 Branches 125 Tags
c597dd2fb4dad5a64f7bab4cd165fc450f760716
Commit Graph

93 Commits

Author SHA1 Message Date
Mike Reeves e49de63460 Helix - Final Parser Fixes 2019-12-13 13:59:29 -05:00
Mike Reeves e263d72813 Setup - Add sensor pillar to Helix 2019-12-13 11:46:30 -05:00
Mike Reeves 79d48f9e77 Logstash - Fix helix output typeo 2019-12-12 15:17:19 -05:00
Mike Reeves bd9b1957ba Logstash - Fix helix output 2019-12-12 14:12:51 -05:00
Mike Reeves 989641eb5a Setup - Fix prompts and disable onion user if iso 2019-12-11 13:44:40 -05:00
Mike Reeves e134071295 Helix - Change Parsers for Helix 2019-12-10 13:50:27 -05:00
Mike Reeves 3904c19333 Change Variables to UperCase 2019-12-09 10:04:14 -05:00
m0duspwnens 599341483e adding api key for Helix 2019-12-09 09:59:28 -05:00
Mike Reeves 362cd0487f Additional Helix Support 2019-12-09 09:52:52 -05:00
Josh Brower 7373473b3f Fix dup events 2019-11-19 15:02:35 -05:00
Josh Brower 504dd6559d Default ssl to false 2019-10-24 16:44:33 -04:00
doug 8472b24a67 parse Bro logs using Elasticsearch ingest node 2019-09-23 16:04:23 -04:00
Mike Reeves 9c1e128ca0 Logstash Module - Add new input conf 2019-06-10 18:44:10 -04:00
Mike Reeves 0876566317 Filebeat Module - Change port for internal filebeat traffic 2019-06-10 18:27:03 -04:00
Wes Lambert cdfc3a15ad osquery: fix host field conflict 2019-01-16 19:25:06 +00:00
Josh Brower ce43fd7cd4 Moved to dynamic 2019-01-01 11:20:09 -05:00
Josh Brower b9f6269925 Moved to dynamic 2019-01-01 11:20:01 -05:00
Josh Brower 15bfce07e8 Move osquery parsers from custom to dynamic 2019-01-01 11:13:05 -05:00
Josh Brower f21e52b431 Add missing character 2019-01-01 11:11:29 -05:00
Josh Brower fff13d5861 Tag & initial JSON decode for osquery logs 2018-12-28 13:56:06 -05:00
Josh Brower 1917b469ec osquery-tagged logs output to ES 2018-12-28 13:55:02 -05:00
Josh Brower 389b57f226 parser for windows event logs shipped by osquery 2018-12-28 13:54:11 -05:00
Wes Lambert 172c9e0593 Logstash - Wazuh parsing updates 2018-12-14 18:00:19 +00:00
Wes Lambert 41e9c4c7e0 Logstash - Alter input for Wazuh logs 2018-12-12 20:52:18 +00:00
dlee35 7fc1f576d9 changed tag eval to type 2018-12-05 15:05:11 -05:00
Wes Lambert 05accf3017 Logstash - Output config update for IDS type 2018-11-30 13:17:53 +00:00
Mike Reeves 4203898427 Logstash Module - Rework it 2018-11-28 20:44:56 -05:00
Mike Reeves 119c94ea17 Logstash Module - Fix so logstash workers gets picked up 2018-11-27 13:42:40 -05:00
Mike Reeves b88a9b5769 Logstash Module - Wes Mods 2018-11-13 14:41:07 -05:00
Wes Lambert a531dd6e52 update template for eve.json output 2018-11-03 15:11:49 +00:00
Mike Reeves f2bfef58c8 Logstash Module - Fix ES output logic 2018-11-01 18:03:05 -04:00
Mike Reeves 2bf1591208 Logstash Module - Fix Output 2018-10-31 14:22:58 -04:00
Mike Reeves 0161a41941 Redis and Filebeat fixes to point to IP 2018-10-18 21:18:15 -04:00
Mike Reeves 41e3b04b25 Logstash Module - Sensors now show up correclty 2018-10-16 21:00:04 -04:00
Mike Reeves a5979fcb88 Logstash Module - Change it to arrays 2018-10-16 17:47:10 -04:00
Mike Reeves ea7ddfc2da Logstash Module - Change it to arrays 2018-10-16 17:41:04 -04:00
Mike Reeves 335ac02720 Logstash Module - Change it to arrays 2018-10-16 17:25:21 -04:00
Mike Reeves 2f517a6c8d Logstash Module - Change it to arrays 2018-10-16 16:46:04 -04:00
Mike Reeves 57039d83c8 Logstash Module - Change some fields so dashboards load 2018-10-16 16:21:50 -04:00
Mike Reeves b0293c24b5 Logstash Module - Disable freq and modify some configs 2018-10-16 14:53:48 -04:00
Mike Reeves cd823a26f3 Logstash Module - Change some parsing order 2018-10-15 19:24:01 -04:00
Mike Reeves 95edae40ea Utility Module - Rework cluster settings 2018-10-11 22:56:33 -04:00
Mike Reeves 9ee87a92e9 Getting Close 2018-10-11 19:38:25 -04:00
Mike Reeves 1996787b6e Filebeat Module - Change key to normal key 2018-10-09 13:05:11 -04:00
Mike Reeves 0be926715d PKCS8 Fix Attempt #1 2018-10-09 10:32:08 -04:00
Mike Reeves 2a7c61cbf6 Logstash Module - Fix the templates 2018-10-05 18:21:28 -04:00
Mike Reeves 9d62bbeed2 Logstash Module - Add missing quotes 2018-10-05 13:09:02 -04:00
Mike Reeves 9a79a89155 Logstash Module - Fix beats and ossec outputs 2018-10-05 12:51:39 -04:00
Mike Reeves 1f2f7d567d Logstash Module - Fix beats and ossec outputs 2018-10-05 12:49:02 -04:00
Mike Reeves 55b2f2211f Logstash Module - Update logstash output scripts 2018-10-04 14:23:30 -04:00