CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-22 17:03:07 +01:00
Code Issues Packages Projects Releases Wiki Activity
9,354 Commits 18 Branches 120 Tags
c80adc04304d8d94e9a6ee349f145a6945c69ddc
Commit Graph

124 Commits

Author SHA1 Message Date
Mike Reeves
46d572fa8c Fix Filebeat spacing 2020-07-10 15:51:12 -04:00
Mike Reeves
5eb33d5ac7 Logstash Import and Template Assignment 2020-07-10 13:53:55 -04:00
m0duspwnens
9c2dcd2318 fix reference to master grain 2020-07-09 17:06:44 -04:00
m0duspwnens
3cf31e2460 https://github.com/Security-Onion-Solutions/securityonion/issues/404 2020-07-09 11:27:06 -04:00
m0duspwnens
fff713db85 changes for https://github.com/Security-Onion-Solutions/securityonion/issues/825 2020-07-07 15:48:47 -04:00
Wes Lambert
2fdd5fd77b Fix pillar reference for Strelka/FB 2020-07-07 13:46:57 +00:00
Jason Ertel
96e93b012d Adjust imports for filebeat configuration to ensure import data is placed into ES 2020-07-01 17:18:01 -04:00
Jason Ertel
d6feafb12a Correct indentation in filebeat.yaml 2020-07-01 15:39:23 -04:00
Jason Ertel
a3deb868ad Improve filebeat config indentation 2020-06-30 14:57:34 -04:00
Jason Ertel
930f15eea5 Introduce so-import-pcap tool - WIP 2020-06-30 14:56:08 -04:00
Mike Reeves
79adf2012a Fix log rotate on Suricata 2020-06-04 10:43:24 -04:00
Mike Reeves
7043bbae9d Merge remote-tracking branch 'remotes/origin/dev' into feature/metasuri 2020-06-04 09:10:54 -04:00
Wes Lambert
91673a5d70 Update FB config 2020-06-02 17:33:42 +00:00
Mike Reeves
d47acd1d80 Change suricata to hit suricata.common 2020-06-02 11:41:13 -04:00
Wes Lambert
b9bdca509e update Filebeat config for syslog 2020-05-28 12:33:41 +00:00
Mike Reeves
fbbacd205c Update filebeat.yml 2020-05-18 08:47:03 -04:00
Wes Lambert
e086db3de6 update key name 2020-04-13 16:09:06 +00:00
Mike Reeves
b70d19781d Fix Filebeat Yaml 2020-04-09 13:58:19 -04:00
Mike Reeves
5a985736e5 Disable Strelka for all things 2020-04-09 11:49:38 -04:00
Mike Reeves
8ffeb0a33d Fix Wazuh and Strelka 2020-04-09 11:45:45 -04:00
Wes Lambert
ad5626f407 update variables 2020-04-06 13:09:52 +00:00
Wes Lambert
eb0c23387b specify ES vs LS in FB config 2020-04-02 20:01:49 +00:00
Josh Brower
5ca9a643a8 Merge branch 'dev' into feature/osquery-ingest 2020-04-01 10:19:35 -04:00
Josh Brower
0e76447d11 osquery ingest - initial support 2020-04-01 10:17:36 -04:00
Wes Lambert
6cc757e1de add strelka index 2020-04-01 13:02:36 +00:00
Wes Lambert
70422809ec add category 2020-04-01 12:59:10 +00:00
Wes Lambert
9bbcc185aa change Strelka log location 2020-04-01 12:57:51 +00:00
Wes Lambert
68138e009a update FB config 2020-03-31 00:37:58 +00:00
Josh Brower
9bcba41882 Feature/Fleet-Standalone 2020-03-24 20:57:24 -04:00
Wes Lambert
150eaf59fd don't load FB template 2020-03-18 20:05:42 +00:00
Wes Lambert
8bea56eccf change prospectors to inputs 2020-03-17 15:17:52 +00:00
Wes Lambert
85c1873f4d switch logging to error 2020-03-14 12:10:06 +00:00
Wes Lambert
d2016d3ff2 modify Filebeat config 2020-03-14 12:05:16 +00:00
Mike Reeves
048c77695d Fix Filebeat 2020-01-30 15:47:51 -05:00
m0duspwnens
306cc1127b heavynode 2020-01-29 12:56:25 -05:00
Mike Reeves
bd395b8356 Update filebeat.yml 2020-01-28 22:20:21 -05:00
Wes Lambert
eea08f3515 add back helix 2019-12-20 01:24:20 +00:00
Wes Lambert
c597dd2fb4 Strelka - Filebeat config 2019-12-18 03:22:30 +00:00
Mike Reeves
7386d800ae Helix - add filebeat config for helix 2019-12-10 14:06:20 -05:00
Mike Reeves
776cc89520 Filebeat Module - Issue 61 2019-10-16 11:22:54 -04:00
Wes Lambert
5bd77a5177 update log path 2019-09-24 20:37:07 +00:00
Mike Reeves
f1ae2617c2 Filebeat Module - Change log dir mapping 2019-08-14 08:44:54 -04:00
Mike Reeves
a9f592a53b Filebeat Module - Move logging to the top 2019-08-13 09:37:41 -04:00
Mike Reeves
e36b178e1c Filebeat Module - Change logging to error 2019-08-13 09:27:38 -04:00
Mike Reeves
0876566317 Filebeat Module - Change port for internal filebeat traffic 2019-06-10 18:27:03 -04:00
Mike Reeves
49357f4947 Filebeat Module - Make it log to a file 2019-01-23 13:38:59 -05:00
Josh Brower
44eed120cb add osquery logs if fleet is enabled 2018-12-28 13:49:53 -05:00
Wes Lambert
d13e7559fe Filebeat - Enabled for master and only enable Bro/Suri inputs when needed 2018-12-13 17:32:03 +00:00
Wes Lambert
54c35cdc0d Filebeat - Add Wazuh archive logs 2018-12-12 20:51:41 +00:00
Wes Lambert
0f5fbadaf5 Filebeat - Switch negation to equals 2018-12-10 20:17:41 +00:00