CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity
11,985 Commits 24 Branches 119 Tags
c7ed29dfa83ce3f9941f1e92e29fcc12618e2882
Commit Graph

11985 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
weslambert
c7ed29dfa8 Ignore "expl_outlook_cve_2023_23397.yar" and "gen_mal_3cx_compromise_mar23.yar" since they are causing problems with YARA compilation 2023-05-04 16:16:06 -04:00
Josh Brower
c6c3cc82e4 Merge pull request #10281 from Security-Onion-Solutions/2.4/airgapfix 
Reenable Elastic Package Registry - all managers
 2023-05-04 12:25:00 -04:00
Josh Brower
b17b68034e Reenable Elastic Package Registry - all managers 2023-05-04 12:19:45 -04:00
Josh Brower
b4b84038ed Merge pull request #10277 from Security-Onion-Solutions/2.4/package-registry 
Reenable Elastic Package Registry
 2023-05-03 12:57:21 -04:00
Josh Patterson
85ce0bb472 Merge pull request #10274 from Security-Onion-Solutions/ui/firewall 
UI/firewall
 2023-05-03 12:44:18 -04:00
m0duspwnens
b0bd64bc10 define and assign elastic_agent_update port 2023-05-03 12:40:56 -04:00
Josh Brower
17dd21703d Reenable Elastic Package Registry 2023-05-03 12:08:46 -04:00
m0duspwnens
767c922083 add idh to firewall annotation 2023-05-03 11:55:29 -04:00
Josh Brower
a57ba7e35d Merge pull request #10273 from Security-Onion-Solutions/2.4/fleet-airgap 
Fleet Airgap - Phase 1
 2023-05-03 11:24:52 -04:00
Josh Brower
81c1678ec7 Merge branch '2.4/dev' into 2.4/fleet-airgap 2023-05-03 11:19:57 -04:00
m0duspwnens
1593da4597 idh services are no longer selected in setup 2023-05-03 11:05:21 -04:00
m0duspwnens
8359f1983c idh firewall 2023-05-03 10:53:13 -04:00
Josh Brower
87a20ffede Refactor Wrapper gen script 2023-05-03 10:44:46 -04:00
m0duspwnens
c597766390 assign firewall pillars to * in top 2023-05-03 10:17:45 -04:00
Josh Brower
b56486d88e Set Elastic Agent Artifact Registry URL 2023-05-03 08:55:29 -04:00
Josh Brower
c99f19251b More visibility 2023-05-02 17:04:41 -04:00
Josh Brower
544fa824ea Initial cut for Artifact Registry 2023-05-02 14:17:59 -04:00
m0duspwnens
61f9573ace Merge remote-tracking branch 'origin/2.4/dev' into ui/firewall 2023-05-02 12:21:09 -04:00
Jason Ertel
b46a5c4b2a Merge pull request #10267 from Security-Onion-Solutions/kilo 
more detection improvements
 2023-05-02 08:17:09 -04:00
Jason Ertel
40ff2677c4 more detection improvements 2023-05-02 07:57:49 -04:00
m0duspwnens
80b40503fb no more plural roles, update so-firewall-minion 2023-05-01 17:28:16 -04:00
m0duspwnens
6a501efa75 remove unneeded imports 2023-05-01 16:55:16 -04:00
m0duspwnens
1f6463a9bb rework so-firewall to work with pillar files 2023-05-01 16:49:06 -04:00
Jason Ertel
6c151d3ebd Merge pull request #10260 from Security-Onion-Solutions/kilo 
simplify cloud detection
 2023-05-01 11:26:34 -04:00
Jason Ertel
17e6f5b899 simplify cloud detection 2023-05-01 11:06:00 -04:00
m0duspwnens
9a4ae2b832 start with customhostgroup0 2023-04-28 16:44:02 -04:00
m0duspwnens
3fdcb92dfe dont apply firewall.soc state anymore for manager highstate 2023-04-28 15:33:54 -04:00
m0duspwnens
725f5414ba fw rework for ui, still need to add idh to map 2023-04-28 15:30:18 -04:00
Jason Ertel
73aceb9697 Merge pull request #10251 from Security-Onion-Solutions/kilo 
Kilo
 2023-04-28 14:44:25 -04:00
Jason Ertel
03c89a02ad Add privileged session config option to kratos config UI 2023-04-28 14:01:19 -04:00
Jason Ertel
666d4ea260 Add privileged session config option to kratos config UI 2023-04-28 13:56:28 -04:00
Jason Ertel
4c58aa2ccf Add privileged session config option to kratos config UI 2023-04-28 13:14:30 -04:00
Mike Reeves
26619e5f8d Merge pull request #10245 from Security-Onion-Solutions/2.4/Fix_zeek_idstools 
2.4/fix zeek idstools
 2023-04-28 09:38:08 -04:00
bryant-treacle
57d90a62f7 Update soc_zeek.yaml 2023-04-27 16:21:41 -04:00
bryant-treacle
a8b8a1d0b7 Update soc_idstools.yaml 2023-04-27 15:32:37 -04:00
bryant-treacle
12120e94c8 Update soc_idstools.yaml 2023-04-26 09:32:08 -04:00
bryant-treacle
49a60bac76 Update soc_idstools.yaml 2023-04-26 08:49:04 -04:00
bryant-treacle
f07f0775ac Update top.sls 2023-04-26 08:30:28 -04:00
bryant-treacle
e93e58fedb Update node.cfg.jinja 2023-04-26 08:28:40 -04:00
Jason Ertel
8459054ff8 Merge pull request #10220 from Security-Onion-Solutions/kilo 
timeout more quickly on aws imdsv2 detection
 2023-04-26 07:56:22 -04:00
Jason Ertel
43ec897397 timeout more quickly on aws imdsv2 detection 2023-04-26 07:53:07 -04:00
Jason Ertel
969cf25818 Merge pull request #10199 from Security-Onion-Solutions/jertel/imdsv2 
Detect cloud install on forced imdsv2 instances
 2023-04-24 16:33:56 -04:00
Jason Ertel
e25bbd8a0d Detect cloud install on forced imdsv2 instances 2023-04-24 16:19:20 -04:00
Mike Reeves
5b11c41434 Merge pull request #10197 from Security-Onion-Solutions/TOoSmOotH-patch-1 
Update VERSION
 2023-04-24 13:40:36 -04:00
Mike Reeves
99f21ce46f Update VERSION 2023-04-24 13:39:51 -04:00
Mike Reeves
083d96fab2 Merge pull request #10192 from Security-Onion-Solutions/2.4.1 
Update VERIFY_ISO.md
 2023-04-24 11:41:04 -04:00
Mike Reeves
f21e717dcd Update README.md 2023-04-24 11:39:39 -04:00
Mike Reeves
87e9d2997b Update VERIFY_ISO.md 2023-04-24 11:37:35 -04:00
Josh Patterson
288b5ac4d2 Merge pull request #10184 from Security-Onion-Solutions/2.4/hsschedule 
rename highstate schedule
 2023-04-24 09:34:11 -04:00
m0duspwnens
533c3b7569 rename highstate schedule 2023-04-24 09:31:32 -04:00