CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 17:22:49 +01:00
Code Issues Packages Projects Releases Wiki Activity
7,429 Commits 24 Branches 119 Tags
c757d21360ce261fc77e18b7249ff7d6076fbd24
Commit Graph

49 Commits

Author SHA1 Message Date
Wes Lambert
f61bf73f97 Remove ESUSER/ESPASS for now to prevent issues with attempting Elastic Auth when connecting to ES. 2021-04-15 11:59:34 +00:00
Mike Reeves
bfd05a8cfc Change to https for elastic connections 2021-03-02 11:32:29 -05:00
Jason Ertel
13f0ddabfc Use manager internal IP for intra-service comms 2020-12-30 12:02:42 -05:00
William Wernert
3abd1c9f16 [fix] Configure soctopus to use url_base 2020-10-28 16:08:19 -04:00
Josh Brower
8a78485906 Config Playbook SOC Alerts 2020-10-04 21:35:42 -04:00
William Wernert
39e14b3910 Merge branch 'dev' into feature/generate-playbook-api-key 2020-10-02 08:39:09 -04:00
Wes Lambert
eced18c3cc Add SOC url for api integration 2020-10-01 20:29:28 +00:00
William Wernert
11ae904100 Quiet script output + fix pillar value 2020-09-30 19:46:18 -04:00
William Wernert
8e80b41ca9 Remove Automation user from sql, gen user + store api key 2020-09-30 16:32:43 -04:00
Jason Ertel
1454201505 Disable thehivealerter 2020-09-30 15:26:29 -04:00
Wes Lambert
c62acf5e4e Add initial implmentation of SOCtopus pillar 2020-09-30 14:24:15 +00:00
Josh Brower
39cc7151a5 Update SOCtopus.conf 2020-09-04 14:14:53 -04:00
m0duspwnens
e6da423dc3 change reference from manager:url_base to global:url_base - https://github.com/Security-Onion-Solutions/securityonion/issues/1039 2020-08-14 17:55:30 -04:00
Josh Brower
b724d40376 Playbook Stability Fixes 2020-08-11 15:07:16 -04:00
Josh Brower
a8b980b6a7 More Playbook Fixes - Issue #1064 2020-08-07 13:35:43 -04:00
Mike Reeves
24ed92c9dc minio and change to global 2020-08-04 15:54:03 -04:00
m0duspwnens
0a1b5f29eb merge with dev and resolv conflicts 2020-07-10 10:48:49 -04:00
m0duspwnens
1f48dc765e merge with dev and resolv conflicts 2020-07-10 10:36:48 -04:00
Josh Brower
52f7111e1d Feature - low level alerts 2020-07-09 13:53:55 -04:00
m0duspwnens
3cf31e2460 https://github.com/Security-Onion-Solutions/securityonion/issues/404 2020-07-09 11:27:06 -04:00
Josh Brower
69ace6fbfa Initial commit - Low Level Alerts 2020-07-02 12:16:56 -04:00
Josh Brower
7f0eacd342 Playbook - Initial Support for Unit Testing 2020-06-26 06:24:09 -04:00
Wes Lambert
330de46249 update SOCtopus config for hostname/ip 2020-05-26 13:19:15 +00:00
Mike Reeves
a56c776695 Update SOCtopus.conf 2020-05-18 13:41:37 -04:00
Mike Reeves
f144fa241f Change to URL base 2020-05-18 13:36:52 -04:00
Josh Brower
8a68e6adb3 Playbook hivealert fixes 2020-05-13 19:27:14 -04:00
Josh Brower
2e3bcf600f Playbook mysql 2020-05-06 08:29:14 -04:00
William Wernert
0048ffde70 [fix] ES is not set up to use ssl by default 2020-04-06 11:46:23 -04:00
William Wernert
d626152e2f [fix] Remove extra blank line 2020-04-02 20:53:22 -04:00
William Wernert
13035a6c32 [fix] Update soctopus default es-index-patter 2020-04-01 13:35:11 -04:00
William Wernert
ecbd78c6a1 [feature] Add options to soctopus.conf 
Resolves #420
 2020-03-25 15:38:42 -04:00
Josh Brower
63c8515d87 SOCtopus.conf quick fix RE: playbook API 2020-02-17 07:48:54 -05:00
Josh Brower
240620caa3 Playbook - create play API 2020-02-14 16:38:02 -05:00
Wes Lambert
b58b3afa35 add auto_analyze_alerts option 2019-12-05 03:22:10 +00:00
Wes Lambert
5eb0a4f19c update SOCtopus conf 2019-12-04 03:12:02 +00:00
Josh Brower
ed9c52925a Playbook - thehive alert tweak 2019-11-23 14:09:41 -05:00
Mike Reeves
8cdcfd0a51 Merge pull request #132 from defensivedepth/playbook-tweaks 
Playbook - Bulk import
 2019-11-13 14:29:14 -05:00
Josh Brower
7259a5346b Update osquery.template 2019-11-13 13:49:34 -05:00
Josh Brower
3fc43fa2da Update osquery.template 2019-11-13 09:52:07 -05:00
Josh Brower
977f39cea7 Update generic.template 2019-11-13 09:47:04 -05:00
Josh Brower
c0cb281d27 Move logging outside container 2019-11-07 15:41:40 -05:00
Josh Brower
94e15ed502 Tweaked for sigmac backend change 2019-10-27 14:36:52 -04:00
Josh Brower
308041fad6 SOCtopus - Edit osquery playbook template 
Fixes bug for when there is no [osquery][columns][address] field
 2019-10-01 17:59:35 -04:00
Josh Brower
bc788a3d35 Playbook - initial commit 2019-09-24 20:09:20 -04:00
Mike Reeves
fce80236de The Hive - Wes Mods 2019-03-28 10:40:29 -04:00
Wes Lambert
8b8556213b SOCtopus: more config updates 2019-03-25 21:26:53 +00:00
Wes Lambert
1d01192b9e SOCtopus: update config 2019-03-25 21:21:21 +00:00
Wes Lambert
03e42a009a SOCtopus: update config 2019-03-25 16:12:24 +00:00
Wes Lambert
28c0cda16b SOCtopus: Initial Commit 2019-03-15 02:40:02 +00:00