CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-07 17:52:46 +01:00
Code Issues Packages Projects Releases Wiki Activity
16,075 Commits 24 Branches 119 Tags
cdf8943f24eab9b10fc842a14f7c301bc4702f6f
Commit Graph

16075 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Jason Ertel
370b117938 rename role 2024-10-31 16:39:45 -04:00
Josh Brower
6ab05e7c05 Merge pull request #13890 from Security-Onion-Solutions/2.4/templatefix 
timestamp fix
 2024-10-31 10:59:45 -04:00
defensivedepth
7896f951f3 timestamp fix 2024-10-31 10:24:58 -04:00
Josh Brower
01932d873f Merge pull request #13883 from Security-Onion-Solutions/2.4/lookuprev2 
2.4/lookuprev2
 2024-10-31 08:46:01 -04:00
Josh Brower
84a8477c5d Merge pull request #13887 from Security-Onion-Solutions/2.4/soupedite 
rm eaintegration state file
 2024-10-30 17:15:07 -04:00
defensivedepth
6b468eaed3 rm eaintegration state file 2024-10-30 16:52:44 -04:00
Jason Ertel
a146153ee9 switch to json 2024-10-30 12:44:01 -04:00
defensivedepth
c509dab5f1 Use socore user 2024-10-30 11:03:14 -04:00
Josh Brower
1940901386 Merge pull request #13882 from Security-Onion-Solutions/ipmappingses 
add so-ip-mappings index
 2024-10-30 10:28:40 -04:00
reyesj2
36fc3bbd6d add so-ip-mappings index 
Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>
 2024-10-30 10:24:11 -04:00
defensivedepth
5406a263d5 Add local custom template 2024-10-29 19:42:06 -04:00
Jason Ertel
3f3ac21f50 connect 2024-10-29 12:28:24 -04:00
Jason Ertel
11820a16f0 connect 2024-10-29 12:04:38 -04:00
Josh Brower
ac359839e2 Merge pull request #13877 from Security-Onion-Solutions/2.4/lookuprev2 
Initial support for local lookup
 2024-10-29 11:22:39 -04:00
defensivedepth
4c5099d429 Initial support for local lookup 2024-10-29 10:27:54 -04:00
Jason Ertel
1243c7588b connect 2024-10-28 19:42:01 -04:00
Jason Ertel
624c4855c8 connect 2024-10-28 19:25:20 -04:00
Jason Ertel
12a76a9d35 connect 2024-10-28 19:11:26 -04:00
Josh Brower
6a3e5415cf Merge pull request #13832 from Security-Onion-Solutions/2.4/sigmapipelines 
Add process and file creation mappings
 2024-10-28 18:30:21 -04:00
coreyogburn
2c4f65009c Merge pull request #13873 from Security-Onion-Solutions/cogburn/tuning-notes 
Tuning Notes
 2024-10-28 15:37:06 -06:00
defensivedepth
f3ca5b1c42 Remove OS-specific mappings 2024-10-28 09:19:51 -04:00
Corey Ogburn
640f53d085 Cleanup 
Fix indentation and trailing comma.
 2024-10-24 17:05:36 -06:00
Corey Ogburn
1aa9d87c5d Corrected 
Put the note on the right model this time.
 2024-10-24 17:05:36 -06:00
Corey Ogburn
e11c562022 Added Note to ES Mappings 2024-10-24 17:05:35 -06:00
coreyogburn
a76a2d8e9f Merge pull request #13800 from Security-Onion-Solutions/cogburn/detection-status-hunt 
Cogburn/detection status hunt
 2024-10-24 16:31:59 -06:00
Jason Ertel
d503c09ef2 connect 2024-10-24 15:45:18 -04:00
Corey Ogburn
6ce52bf9ab Specify Defaults for detectionEngineStatusQueries 
Specify the defaults as an example to the user.
 2024-10-24 13:11:49 -06:00
Corey Ogburn
f67fcecc6e Clean up StatusQueries String 2024-10-24 11:18:48 -06:00
Corey Ogburn
b7c392a244 Corrected a misspelling 2024-10-24 11:18:48 -06:00
Corey Ogburn
ad0b0a5e95 Refactor to String 
To accomodate the config screen, the annotation now specifies it as a multiline string with a yaml syntax. The user can edit the yaml to add or remove queries. The UI will parse the YAML before use.

Also updated the IntegrityFailure queries to specify table columns more relevant to a sync failure than the default ones.
 2024-10-24 11:18:47 -06:00
Corey Ogburn
c77b0afd8e Move to Client/Detections 
Added a basic annotation.
 2024-10-24 11:18:47 -06:00
Corey Ogburn
04ebe4efea Array to Dictionary 2024-10-24 11:18:46 -06:00
Corey Ogburn
cbb4d6846f Detection Engine Status Queries 
A few for testing
 2024-10-24 11:18:45 -06:00
Josh Patterson
ba699b8d06 Merge pull request #13863 from Security-Onion-Solutions/issue/13851 
Issue/13851
 2024-10-24 11:00:28 -04:00
m0duspwnens
a0558ace16 replace: False to remove state warning 2024-10-24 10:33:16 -04:00
m0duspwnens
ca793966a8 set retry and interval to remove state warning 2024-10-24 10:32:42 -04:00
Jason Ertel
d9273ec369 exec bit 2024-10-24 09:40:47 -04:00
Jason Ertel
cacd5b0643 connect 2024-10-24 09:36:09 -04:00
Jason Ertel
7c405ff9d7 connect 2024-10-24 08:47:52 -04:00
Jason Ertel
5e6dd2e8b3 connect 2024-10-23 16:49:02 -04:00
Josh Patterson
dbc533e976 Merge pull request #13859 from Security-Onion-Solutions/stpndfls 
call airgap_rules if airgap. log rsync and git commands
 2024-10-23 16:44:41 -04:00
m0duspwnens
4d902da931 call airgap_rules if airgap. log rsync and git commands 2024-10-23 15:58:11 -04:00
Josh Patterson
578a18acbe Merge pull request #13853 from Security-Onion-Solutions/agcr 
install createrepo for airgap
 2024-10-23 14:21:26 -04:00
m0duspwnens
17ba048b50 use manager state to install createrepo_c for airgap 2024-10-23 10:40:26 -04:00
Josh Patterson
36a2bffdc7 Merge pull request #13855 from Security-Onion-Solutions/issue/204 
fix HELD for debian families
 2024-10-23 09:40:25 -04:00
m0duspwnens
8cc530dd4c fix HELD for debian families 2024-10-23 09:36:17 -04:00
m0duspwnens
1df104967e fix pkg name 2024-10-22 16:50:23 -04:00
m0duspwnens
7a0f6d5e93 fix pkg name 2024-10-22 16:42:01 -04:00
m0duspwnens
8d2ae23ae6 install createrepo on airgap and non airgap 2024-10-22 13:56:38 -04:00
m0duspwnens
21f359456c install createrepo for airgap 2024-10-22 11:35:08 -04:00