CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-06-12 21:29:16 +02:00
Code Issues Packages Projects Releases Wiki Activity
17,165 Commits 33 Branches 127 Tags
c8a360357781b7eeab87e4071c210792004f2cc0
Commit Graph

17165 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
reyesj2 82830c8173 Fix typos and fix error related to elasticsearch saltstate being called from logstash state. Logstash will be removed from kafkanodes in future 
Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>
 2024-04-02 16:37:39 -04:00
reyesj2 7f5741c43b Fix kafka storage setup 
Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>
 2024-04-02 16:36:22 -04:00
reyesj2 643d4831c1 CRLF -> LF 
Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>
 2024-04-02 16:35:14 -04:00
reyesj2 b032eed22a Update kafka to use manager docker registry 
Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>
 2024-04-02 16:34:06 -04:00
reyesj2 1b49c8540e Fix kafka keystore script 
Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>
 2024-04-02 16:32:15 -04:00
m0duspwnens f7534a0ae3 make manager download so-kafka container 2024-04-02 16:01:12 -04:00
Jason Ertel b6187ab769 Improve wording for Airgap annotation 2024-04-02 15:54:39 -04:00
m0duspwnens 780ad9eb10 add kafka to manager nodes 2024-04-02 15:50:25 -04:00
Mike Reeves 283939b18a Gather metrics from elastic agent to influx 2024-04-02 15:36:01 -04:00
m0duspwnens e25bc8efe4 Merge remote-tracking branch 'origin/reyesj2/kafka' into kaffytaffy 2024-04-02 13:36:47 -04:00
Jason Ertel 3b112e20e3 fix syntax error 2024-04-02 12:32:33 -04:00
reyesj2 26abe90671 Removed duplicate kafka setup 
Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>
 2024-04-02 12:19:46 -04:00
Doug Burks 23a6c4adb6 Merge pull request #12725 from Security-Onion-Solutions/dougburks-patch-1 
FEATURE: Add Events table columns for event.module strelka #12716
 2024-04-02 10:54:15 -04:00
Doug Burks 2f03cbf115 FEATURE: Add Events table columns for event.module strelka #12716 2024-04-02 10:42:20 -04:00
Doug Burks a678a5a416 Merge pull request #12724 from Security-Onion-Solutions/dougburks-patch-1 
FEATURE: Add Events table columns for event.module strelka #12716
 2024-04-02 10:15:20 -04:00
Doug Burks b2b54ccf60 FEATURE: Add Events table columns for event.module strelka #12716 2024-04-02 10:11:16 -04:00
Doug Burks 55e71c867c Merge pull request #12723 from Security-Onion-Solutions/dougburks-patch-1 
FEATURE: Add Events table columns for event.module playbook #12703
 2024-04-02 10:04:21 -04:00
Doug Burks 6c2437f8ef FEATURE: Add Events table columns for event.module playbook #12703 2024-04-02 09:55:56 -04:00
Doug Burks 261f2cbaf7 Merge pull request #12722 from Security-Onion-Solutions/dougburks-patch-1 
FEATURE: Add Events table columns for event.module strelka #12716
 2024-04-02 09:43:15 -04:00
Jason Ertel f083558666 break out into sep func 2024-04-02 09:42:43 -04:00
Doug Burks 505eeea66a Update defaults.yaml 2024-04-02 09:39:54 -04:00
Josh Brower 1001aa665d Merge pull request #12720 from Security-Onion-Solutions/2.4/detections-defaults 
Add default columns
 2024-04-02 09:21:06 -04:00
DefensiveDepth 7f488422b0 Add default columns 2024-04-02 09:13:27 -04:00
Mike Reeves 21f78a039a Merge branch '2.4/main' of github.com:Security-Onion-Solutions/securityonion into 2.4/main 2024-04-02 08:47:08 -04:00
Jason Ertel f17d8d3369 analytics 2024-04-01 10:59:44 -04:00
Jason Ertel ff777560ac limit col size 2024-04-01 10:35:15 -04:00
Jason Ertel 2c68fd6311 limit col size 2024-04-01 10:32:54 -04:00
Jason Ertel c1bf710e46 limit col size 2024-04-01 10:32:25 -04:00
Jason Ertel 9d2b40f366 Merge branch '2.4/dev' into jertel/ana 2024-04-01 09:50:38 -04:00
Jason Ertel 3aea2dec85 analytics 2024-04-01 09:50:18 -04:00
coreyogburn 65f6b7022c Merge pull request #12702 from Security-Onion-Solutions/cogburn/yaml-fix 
Correct YAML
 2024-03-29 15:59:34 -06:00
Corey Ogburn e5a3a54aea Proper YAML 2024-03-29 14:31:43 -06:00
Doug Burks be88dbe181 Merge pull request #12700 from Security-Onion-Solutions/dougburks-patch-1 
FEATURE: Add individual dashboards for Zeek SSL and Suricata SSL logs…
 2024-03-29 15:41:14 -04:00
Doug Burks b64ed5535e FEATURE: Add individual dashboards for Zeek SSL and Suricata SSL logs #12699 2024-03-29 15:29:38 -04:00
Doug Burks 5be56703e9 Merge pull request #12698 from Security-Onion-Solutions/dougburks-patch-1 
FEATURE: Add Events table columns for zeek ssl and suricata ssl #12697
 2024-03-29 14:46:39 -04:00
Doug Burks 0c7ba62867 FEATURE: Add Events table columns for zeek ssl and suricata ssl #12697 2024-03-29 14:44:29 -04:00
coreyogburn d9d851040c Merge pull request #12696 from Security-Onion-Solutions/cogburn/manual-sync 
New Settings for Manual Sync in Detections
 2024-03-29 12:43:08 -06:00
Corey Ogburn e747a4e3fe New Settings for Manual Sync in Detections 2024-03-29 12:25:03 -06:00
reyesj2 000d15a53c Kismet integration: TODO Elasticsearch mappings 
Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>
 2024-03-29 13:56:01 -04:00
Doug Burks cc2164221c Merge pull request #12695 from Security-Onion-Solutions/dougburks-patch-1 
FEATURE: Add process.command_line to Process Info and Process Ancestry dashboards #12694
 2024-03-29 13:04:09 -04:00
Doug Burks 102c3271d1 FEATURE: Add process.command_line to Process Info and Process Ancestry dashboards #12694 2024-03-29 12:04:47 -04:00
DefensiveDepth 32b8649c77 Add more error checking 2024-03-28 14:31:02 -04:00
DefensiveDepth 9c5ba92589 Check if container is running first 2024-03-28 13:23:40 -04:00
DefensiveDepth d2c9e0ea4a Cleanup 2024-03-28 13:04:48 -04:00
Jason Ertel 2928b71616 Merge pull request #12683 from Security-Onion-Solutions/jertel/lc 
disregard errors in removed applications that occurred before th…
 2024-03-28 09:48:26 -04:00
Jason Ertel 216b8c01bf disregard errors that in removed applications that occurred before the upgrade 2024-03-28 09:31:39 -04:00
DefensiveDepth ce0c9f846d Remove containers from so-status 2024-03-27 16:13:52 -04:00
DefensiveDepth ba262ee01a Check to see if Playbook is enabled 2024-03-27 15:43:25 -04:00
DefensiveDepth b571eeb8e6 Initial cut of .70 soup changes 2024-03-27 14:58:16 -04:00
Mike Reeves 7fe377f899 Merge pull request #12674 from Security-Onion-Solutions/ipv6fix 
Fix Input Validation to allow for IPv6
 2024-03-27 09:48:01 -04:00