CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-07 09:42:46 +01:00
Code Issues Packages Projects Releases Wiki Activity
11,149 Commits 24 Branches 119 Tags
c73cd78f0819b7e3b2001c110fb6be1ff379b616
Commit Graph

105 Commits

Author SHA1 Message Date
Doug Burks
322efa304a Avoid unnecessary processes in Import Mode 2023-01-10 16:47:18 -05:00
m0duspwnens
b526532ab6 use global vars in states 2022-10-11 11:57:15 -04:00
doug
fee5a7bea9 initial quick OCD pass 2022-09-23 16:29:55 -04:00
Mike Reeves
85339d7cb1 Add helpLinks to everything 2022-09-20 15:43:34 -04:00
Mike Reeves
9a6fe3e8de Add BPF 2022-09-16 08:36:44 -04:00
Mike Reeves
e6c0c2ce19 Modify Steno Config 2022-09-15 15:46:28 -04:00
m0duspwnens
5a9b3f6821 fix diskfreepercantage 2022-09-15 15:39:31 -04:00
m0duspwnens
62f5ee04a4 fix source for steno config 2022-09-15 15:13:40 -04:00
m0duspwnens
52b58ad6ae jinja for steno/pcap 2022-09-15 15:12:40 -04:00
Mike Reeves
9a75d939b4 Modify Steno Config 2022-09-15 13:55:39 -04:00
Mike Reeves
3286d55ef2 Modify Steno Config 2022-09-15 13:46:14 -04:00
Mike Reeves
73d45bd9fc Update defaults for Steno 2022-09-15 12:56:02 -04:00
Mike Reeves
383714ec06 Fix pcap error 2022-09-15 12:38:55 -04:00
Mike Reeves
be4c15877a Improve pcap defaults 2022-09-14 11:11:21 -04:00
Mike Reeves
0a40bfcb88 Change how pcap is written to the minion file 2022-09-14 11:00:22 -04:00
Mike Reeves
2bd9dd80e2 Move In Day 2022-09-07 09:06:25 -04:00
Jason Ertel
eefcc929c2 Update copyright pattern to match other repos 2022-01-24 10:09:23 -05:00
Jason Ertel
7c22f46a55 Update copyright year for 2022 2022-01-24 09:35:29 -05:00
Josh Patterson
19056b9177 Merge pull request #6027 from Security-Onion-Solutions/issue/5955 
Issue/5955
 2021-10-27 15:07:22 -04:00
Mike Reeves
d77328608e Remove port bindings for steno 
Steno runs in host mode so port bindings are not required
 2021-10-26 10:23:33 -04:00
m0duspwnens
d7e5377a44 more requires 2021-10-22 16:46:45 -04:00
Mike Reeves
a9f6c84d7c Add Steno Tuning Options 2021-10-15 14:17:54 -04:00
Josh Brower
4d307c53e8 Add support for disabling Zeek and Suricata 2021-09-17 13:01:50 -04:00
Mike Reeves
9fb28709d5 Add maxfiles to the steno config 2021-09-03 10:47:00 -04:00
m0duspwnens
2e277bf487 change container to abesent of pcap is disabled 2021-07-26 10:08:59 -04:00
Mike Reeves
4ef38f8d04 Add EPS and RAID status collection for telegraf 2021-01-25 19:14:46 -05:00
m0duspwnens
b693373d8d change how we allow or disallow states to be run https://github.com/Security-Onion-Solutions/securityonion/issues/2679 2021-01-20 15:09:53 -05:00
m0duspwnens
df590bfd23 pillarize disk freespace for steno https://github.com/Security-Onion-Solutions/securityonion/issues/2095 2021-01-13 11:09:38 -05:00
m0duspwnens
2e278586f2 disable steno in so-status for import node 2020-12-16 13:03:24 -05:00
m0duspwnens
96b72d46be show steno,zeek,suricata as disabled in so-status on import node 2020-12-16 12:01:48 -05:00
m0duspwnens
65334d15ea https://github.com/Security-Onion-Solutions/securityonion/issues/2040 2020-11-24 09:33:38 -05:00
m0duspwnens
5a95159ec3 just use so-status.conf for containers to fix salt warning https://github.com/Security-Onion-Solutions/securityonion/issues/1681 2020-11-11 11:38:48 -05:00
m0duspwnens
1fca5e65df redo how containers get added to so-status https://github.com/Security-Onion-Solutions/securityonion/issues/1681 2020-11-10 15:31:47 -05:00
William Wernert
3ee9f23d26 [fix] Use url_base in sensoroni.json instead of manager hostname 2020-10-28 12:28:34 -04:00
m0duspwnens
0b6b6e38fc fix map for steno 2020-10-22 11:24:18 -04:00
m0duspwnens
aa59eff1ac fix if statement 2020-10-22 10:59:03 -04:00
m0duspwnens
172ca9aa8d add option to enable or disable to steno docker container - https://github.com/Security-Onion-Solutions/securityonion/issues/1601 2020-10-22 10:52:34 -04:00
m0duspwnens
09cc8ae1fb fail the state if it isnt in top 2020-09-09 16:48:50 -04:00
m0duspwnens
a229ae82ce only allow state to run if it is in top for the node 2020-09-02 16:15:52 -04:00
Jason Ertel
ff5d1cd815 Expand nginx body size limit to 2.5GB to handle 2G PCAPs from sensors 2020-09-01 10:07:28 -04:00
m0duspwnens
35027e32b3 dont constantly run steno or suricata containers for import node 2020-08-14 14:43:37 -04:00
Mike Reeves
24ed92c9dc minio and change to global 2020-08-04 15:54:03 -04:00
Jason Ertel
ec09c064d0 If SENSOR_CHECKIN_INTERVAL_MS is still not set when using in a template, fallback to 10s 2020-07-23 21:19:45 -04:00
Jason Ertel
cb46ca4832 Ensure distributed installations have the check-in interval correctly set 2020-07-22 14:26:55 -04:00
Jason Ertel
0a976861f3 Dynamically set sensor checkin interval; allow overrides if var is preset 2020-07-15 13:22:14 -04:00
Jason Ertel
d75d64c8ed Mount imported pcap dirs into sensoroni container for imported PCAP pivots 2020-07-13 21:03:47 -04:00
Jason Ertel
8f66a27f07 Refactor image repository to a single variable 2020-07-13 18:26:43 -04:00
m0duspwnens
1f48dc765e merge with dev and resolv conflicts 2020-07-10 10:36:48 -04:00
m0duspwnens
9c2dcd2318 fix reference to master grain 2020-07-09 17:06:44 -04:00
Jason Ertel
33179141a1 Enable PCAP pivots from imports 2020-07-09 16:11:38 -04:00