CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity
11,017 Commits 24 Branches 119 Tags
cec6cff19d1e5f19e67bdb19b3aa959d4daaae17
Commit Graph

90 Commits

Author SHA1 Message Date
doug
a67a254edc update Copyright year 2023-01-04 12:44:18 -05:00
Jason Ertel
eefcc929c2 Update copyright pattern to match other repos 2022-01-24 10:09:23 -05:00
Jason Ertel
7c22f46a55 Update copyright year for 2022 2022-01-24 09:35:29 -05:00
Josh Patterson
19056b9177 Merge pull request #6027 from Security-Onion-Solutions/issue/5955 
Issue/5955
 2021-10-27 15:07:22 -04:00
Mike Reeves
d77328608e Remove port bindings for steno 
Steno runs in host mode so port bindings are not required
 2021-10-26 10:23:33 -04:00
m0duspwnens
d7e5377a44 more requires 2021-10-22 16:46:45 -04:00
Mike Reeves
a9f6c84d7c Add Steno Tuning Options 2021-10-15 14:17:54 -04:00
Josh Brower
4d307c53e8 Add support for disabling Zeek and Suricata 2021-09-17 13:01:50 -04:00
Mike Reeves
9fb28709d5 Add maxfiles to the steno config 2021-09-03 10:47:00 -04:00
m0duspwnens
2e277bf487 change container to abesent of pcap is disabled 2021-07-26 10:08:59 -04:00
Mike Reeves
4ef38f8d04 Add EPS and RAID status collection for telegraf 2021-01-25 19:14:46 -05:00
m0duspwnens
b693373d8d change how we allow or disallow states to be run https://github.com/Security-Onion-Solutions/securityonion/issues/2679 2021-01-20 15:09:53 -05:00
m0duspwnens
df590bfd23 pillarize disk freespace for steno https://github.com/Security-Onion-Solutions/securityonion/issues/2095 2021-01-13 11:09:38 -05:00
m0duspwnens
2e278586f2 disable steno in so-status for import node 2020-12-16 13:03:24 -05:00
m0duspwnens
96b72d46be show steno,zeek,suricata as disabled in so-status on import node 2020-12-16 12:01:48 -05:00
m0duspwnens
65334d15ea https://github.com/Security-Onion-Solutions/securityonion/issues/2040 2020-11-24 09:33:38 -05:00
m0duspwnens
5a95159ec3 just use so-status.conf for containers to fix salt warning https://github.com/Security-Onion-Solutions/securityonion/issues/1681 2020-11-11 11:38:48 -05:00
m0duspwnens
1fca5e65df redo how containers get added to so-status https://github.com/Security-Onion-Solutions/securityonion/issues/1681 2020-11-10 15:31:47 -05:00
William Wernert
3ee9f23d26 [fix] Use url_base in sensoroni.json instead of manager hostname 2020-10-28 12:28:34 -04:00
m0duspwnens
0b6b6e38fc fix map for steno 2020-10-22 11:24:18 -04:00
m0duspwnens
aa59eff1ac fix if statement 2020-10-22 10:59:03 -04:00
m0duspwnens
172ca9aa8d add option to enable or disable to steno docker container - https://github.com/Security-Onion-Solutions/securityonion/issues/1601 2020-10-22 10:52:34 -04:00
m0duspwnens
09cc8ae1fb fail the state if it isnt in top 2020-09-09 16:48:50 -04:00
m0duspwnens
a229ae82ce only allow state to run if it is in top for the node 2020-09-02 16:15:52 -04:00
Jason Ertel
ff5d1cd815 Expand nginx body size limit to 2.5GB to handle 2G PCAPs from sensors 2020-09-01 10:07:28 -04:00
m0duspwnens
35027e32b3 dont constantly run steno or suricata containers for import node 2020-08-14 14:43:37 -04:00
Mike Reeves
24ed92c9dc minio and change to global 2020-08-04 15:54:03 -04:00
Jason Ertel
ec09c064d0 If SENSOR_CHECKIN_INTERVAL_MS is still not set when using in a template, fallback to 10s 2020-07-23 21:19:45 -04:00
Jason Ertel
cb46ca4832 Ensure distributed installations have the check-in interval correctly set 2020-07-22 14:26:55 -04:00
Jason Ertel
0a976861f3 Dynamically set sensor checkin interval; allow overrides if var is preset 2020-07-15 13:22:14 -04:00
Jason Ertel
d75d64c8ed Mount imported pcap dirs into sensoroni container for imported PCAP pivots 2020-07-13 21:03:47 -04:00
Jason Ertel
8f66a27f07 Refactor image repository to a single variable 2020-07-13 18:26:43 -04:00
m0duspwnens
1f48dc765e merge with dev and resolv conflicts 2020-07-10 10:36:48 -04:00
m0duspwnens
9c2dcd2318 fix reference to master grain 2020-07-09 17:06:44 -04:00
Jason Ertel
33179141a1 Enable PCAP pivots from imports 2020-07-09 16:11:38 -04:00
m0duspwnens
5ca3ecf4bd fix reference to master grain 2020-07-09 15:42:39 -04:00
m0duspwnens
3cf31e2460 https://github.com/Security-Onion-Solutions/securityonion/issues/404 2020-07-09 11:27:06 -04:00
Jason Ertel
d7693f9b55 Expose pcap dir to sensoroni for epoch discovery 2020-06-22 08:27:43 -04:00
Jason Ertel
1ee3625f61 Ensure certs dir is group readable by socore since Sensoroni process will need to read the client key 2020-06-21 15:46:36 -04:00
Jason Ertel
81ed656ba0 Bind both steno and sensoroni processes to host network 2020-06-21 10:50:10 -04:00
Jason Ertel
76e3118bd3 Split Sensoroni and Stenographer executables into separate images 2020-06-21 08:33:09 -04:00
m0duspwnens
766b56a944 update dockers to 1.2.2 2020-04-23 10:11:26 -04:00
Mike Reeves
d9e27a5444 Update Versions 2020-04-15 15:37:59 -04:00
Jason Ertel
7529144635 secure config files 2020-04-10 17:27:50 -04:00
Jason Ertel
ebcae86c0b Correct log directory for sensoroni agent 2020-04-02 09:06:37 -04:00
Josh Brower
f9e07709f2 bpf fix 2020-02-18 16:36:20 -05:00
Josh Brower
86689edf24 Merge branch 'dev' into feature/bpf-steno 2020-01-28 18:18:17 -05:00
Josh Brower
ae087c5552 Steno BPF tweaks 2020-01-28 16:53:19 -05:00
Mike Reeves
de369494ed Merge pull request #252 from Security-Onion-Solutions/feature/bpf-steno 
Steno BPF - cleanup & simplify
 2020-01-28 10:18:23 -05:00
Wes Lambert
b995b09d52 Update version in all state files 2020-01-28 14:59:53 +00:00