CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-04-25 05:57:49 +02:00
Code Issues Packages Projects Releases Wiki Activity
6,350 Commits 40 Branches 125 Tags
cda36f178b60e8ad5dcf759624cbe047773cc4cc
Commit Graph

3585 Commits

Author SHA1 Message Date
doug fabe3c87f2 Hunt: improve Wazuh queries #2383 2021-02-16 11:56:14 -05:00
doug 397d8d0964 Kibana 7.10.2 config changes #2954 2021-02-14 07:04:51 -05:00
doug 3248edea8b Update Kibana dashboard hyperlinks to new url format #2361 2021-02-12 17:25:42 -05:00
doug 31a0c2bc82 Update Kibana dashboard hyperlinks to new url format #2361 2021-02-12 15:37:25 -05:00
doug 797d2c4dba Kibana 7.10.2 config changes #2954 2021-02-12 15:35:06 -05:00
Doug Burks fd4cb0b7a8 Kibana 7.10.2 config changes #2954 2021-02-12 14:05:29 -05:00
Doug Burks c717773fc3 Kibana 7.10.2 config changes #2954 2021-02-12 14:04:00 -05:00
Josh Patterson a8598a50e4 Merge pull request #2953 from Security-Onion-Solutions/issue/2756 
remove /etc/yum.repos.d/salt-2019-2-5.repo if present
 2021-02-12 12:05:21 -05:00
m0duspwnens 3b0c2b3e91 remove /etc/yum.repos.d/salt-2019-2-5.repo if present https://github.com/Security-Onion-Solutions/securityonion/issues/2756 2021-02-12 12:04:08 -05:00
m0duspwnens 7e4d7a6985 drop icmp timestamp replies https://github.com/Security-Onion-Solutions/securityonion/issues/1704 2021-02-11 11:09:21 -05:00
m0duspwnens 3cfbc61f4e only save at the end 2021-02-10 11:15:39 -05:00
Mike Reeves 125f7d6262 add warm node action for hot/warm 2021-02-08 11:49:49 -05:00
Mike Reeves 5043b970ef Fix tar syntax 2021-02-06 19:14:44 -05:00
Mike Reeves a3ca84db66 Fix backupdir name state 2021-02-06 15:32:42 -05:00
Mike Reeves bf79c92456 Lock down Backups folder permissions 2021-02-05 22:31:08 -05:00
Mike Reeves 8f97973fac Lock down Backups folder permissions 2021-02-05 22:17:31 -05:00
Jason Ertel e427f8178d Implement locking to so-firewall script 2021-02-04 16:06:11 -05:00
Jason Ertel a13b31fbcc Merge branch 'dev' into automation/ami 2021-02-04 16:05:39 -05:00
Jason Ertel 58e4205602 Revert "Make filebeat retry forever" 2021-02-03 21:46:29 -05:00
Jason Ertel 6b54a29ac7 Remove 'new user' references from so-user 2021-02-03 15:23:58 -05:00
Jason Ertel 3ebedcd4e8 Merge pull request #2830 from Security-Onion-Solutions/filebeatlimits 
Make filebeat retry forever
 2021-02-03 11:32:05 -05:00
Mike Reeves 55a8f6aa7a Make filebeat retry forever 2021-02-02 16:41:52 -05:00
William Wernert 8f0b0ac936 Merge pull request #2825 from Security-Onion-Solutions/foxtrot 
Setup: dpkg retry, whiptail changes, fix zeek state condition
 2021-02-02 14:41:48 -05:00
m0duspwnens b3c08229db Merge remote-tracking branch 'remotes/origin/sslstate/timeouts_retry' into delta 2021-02-01 15:33:31 -05:00
m0duspwnens 8cf0a3da98 remove seconds 2021-02-01 15:19:47 -05:00
William Wernert 8d01b87ab5 Merge branch 'dev' into foxtrot 2021-02-01 13:56:33 -05:00
m0duspwnens 8ff6d1639a Merge remote-tracking branch 'remotes/origin/dev' into issue/1191 2021-02-01 12:51:00 -05:00
William Wernert daebe90b6e [fix] fix retry command handling 
* use eval "$cmd" to handle strings correctly
* add-apt-repo doesn't need dpkg lock so don't use retry for those lines
 2021-02-01 12:06:19 -05:00
William Wernert 44617fdddf [fix] Run command being retried within quotes 2021-02-01 11:28:28 -05:00
William Wernert 36ce389202 Remove wait_for_apt, use common retry function to run apt commands 2021-02-01 10:55:14 -05:00
Mike Reeves 160d307f4a Disable ML for features #2788 2021-01-30 20:00:41 -05:00
Mike Reeves 4212afe0c9 Add features option back 2021-01-30 19:57:18 -05:00
m0duspwnens 0ea504c16a remove space 2021-01-29 17:32:48 -05:00
m0duspwnens 8ca15a6679 Merge remote-tracking branch 'remotes/origin/dev' into issue/1191 2021-01-29 16:54:26 -05:00
Mike Reeves 22e6e45667 Remove other changes 2021-01-29 16:14:14 -05:00
Mike Reeves 18f2c7b482 Raid Setup for Appliances 2021-01-29 16:03:18 -05:00
m0duspwnens 618b94b9b6 add newline 2021-01-29 15:31:05 -05:00
m0duspwnens f50a89a0cf watch elastalert config and restart docker if chagnes 2021-01-29 15:28:59 -05:00
m0duspwnens e6ecd609cc change timeouts to 30s 2021-01-29 13:44:11 -05:00
Jason Ertel 2926527ad0 Place sig keys in same dir as other sig files 2021-01-29 13:21:58 -05:00
Jason Ertel 73909c4dea Place sig keys in same dir as other sig files 2021-01-29 13:00:56 -05:00
Jason Ertel c055427e40 Add support for image key/sig retries 2021-01-29 11:18:06 -05:00
m0duspwnens 0936dbdb1c add timeouts and retries to ca/ssl states 2021-01-28 11:40:31 -05:00
m0duspwnens b7aef32eeb fix missing } 2021-01-27 15:50:23 -05:00
m0duspwnens 8df9e020ac pillarize elastalert https://github.com/Security-Onion-Solutions/securityonion/issues/1191 2021-01-27 15:35:29 -05:00
Josh Brower 13ab4c66eb Update Osquery Windows Eventlog Parsing 2021-01-27 09:15:54 -05:00
William Wernert f5c044e3e3 [fix] Log directory fixes 
* The playbook log dir is owned by the socore group, so we can use `su root socore`
* Addresses https://github.com/Security-Onion-Solutions/securityonion/pull/2681#issuecomment-767761670
---
* influxdb runs as root, so we can set the log directory permissions to 755 for this service
 2021-01-26 16:07:34 -05:00
William Wernert 1939fe85d7 [fix] Revert directory permission changes 2021-01-26 13:41:10 -05:00
Mike Reeves 3b1cea94d1 Merge branch 'dev' into telegraf3 2021-01-25 19:36:49 -05:00
Mike Reeves 4ef38f8d04 Add EPS and RAID status collection for telegraf 2021-01-25 19:14:46 -05:00