securityonion

mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-16 05:53:09 +01:00

Author	SHA1	Message	Date
Pete	cf83d1cb86	feat: use mountpoint for Elastic log limit Instead of just existence, this checks if the directories are separate mountpoints when determining disk size and log_size_limit calculations. It also sets the percentage to 80 if /nsm/elasticsearch is a separate mountpoint. This allows for better disk utilization on server configurations where /nsm is based on large slow HDDs for increased PCAP retention but /nsm/elasticsearch is based on SSDs for faster Elasticsearch performance.	2024-02-02 12:25:16 -05:00
Jorge Reyes	4dd0b4a4fd	Merge pull request #12283 from Security-Onion-Solutions/reyesj2-patch-6 Remove remediate from initial oscap scan	2024-01-30 15:56:13 -05:00
reyesj2	b5ffa186fb	Remove remediate from initial oscap scan Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>	2024-01-30 15:54:23 -05:00
Jorge Reyes	cb5e111a00	Merge pull request #12267 from Security-Onion-Solutions/reyesj2-patch-6 Update soup	2024-01-29 10:22:35 -05:00
reyesj2	7c08b348aa	Add comment for soup update w/ STIGs enabled Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>	2024-01-29 10:16:34 -05:00
weslambert	dc5ea89255	Merge pull request #12260 from Security-Onion-Solutions/fix/endpoint_diagnostic Add template for endpoint.diagnostic.collection	2024-01-26 16:13:30 -05:00
reyesj2	c4301d7cc1	Soup script update locations Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>	2024-01-26 15:51:06 -05:00
reyesj2	91c7b8144d	soup logic Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>	2024-01-26 15:43:42 -05:00
reyesj2	2e026b637d	Update soup to retry modified salt command on failure to update soup scripts. Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>	2024-01-26 11:36:33 -05:00
reyesj2	cd6e387bcb	remove --local from soup common.soup_scripts update. Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>	2024-01-25 16:15:53 -05:00
Wes	12ab6338db	Add diagnostic	2024-01-25 20:16:52 +00:00
weslambert	cd54d4becb	Fix indent	2024-01-25 13:57:02 -05:00
weslambert	5f1c76f6ec	endpoint.diagnostic.collection	2024-01-25 09:46:25 -05:00
weslambert	d2d70d1c5b	Merge pull request #12250 from Security-Onion-Solutions/fix/scan_pe_flags Fix PE Flags	2024-01-24 14:29:23 -05:00
Jason Ertel	e53030feef	Merge pull request #12248 from Security-Onion-Solutions/jertel/pfeat standardize feature names	2024-01-24 12:12:16 -05:00
Jason Ertel	9f17bd2255	lks/fps	2024-01-24 11:17:32 -05:00
Wes	8426aad56d	Text mapping for scan.pe.flags	2024-01-24 15:10:42 +00:00
Wes	d23d367058	Make scan.pe.flags a string	2024-01-24 15:08:38 +00:00
weslambert	cbdaf2e9a1	Merge pull request #12242 from Security-Onion-Solutions/upgrade/strelka_0.24.01.18 Fix quote	2024-01-23 14:02:35 -05:00
weslambert	4d7af21dd5	Fix quote	2024-01-23 13:55:37 -05:00
weslambert	8348506acc	Merge pull request #12240 from Security-Onion-Solutions/upgrade/strelka_0.24.01.18 UPGRADE: Strelka 0.24.01.18	2024-01-23 13:50:15 -05:00
weslambert	1698d95efe	Use PLACEHOLDER for key values	2024-01-23 13:45:26 -05:00
weslambert	b1052ddcce	Merge pull request #12241 from Security-Onion-Solutions/fix/leak_test Exclude specific Strelka key values	2024-01-23 13:43:18 -05:00
weslambert	0cb36bb0aa	Exclude StrelkaHexDump and PLACEHOLDER values	2024-01-23 13:39:59 -05:00
weslambert	0ccdfcb07c	Exclude only offset_meta_key	2024-01-23 13:11:43 -05:00
weslambert	63ba97306c	Exclude Strelka defaults	2024-01-23 13:05:58 -05:00
weslambert	72319e33db	Avoid leak test triggering	2024-01-23 12:38:09 -05:00
weslambert	34bb37e415	Merge pull request #12227 from Security-Onion-Solutions/feature/rita_logs RITA Logs	2024-01-23 12:32:32 -05:00
Wes	3bcb0bc132	Update defaults	2024-01-23 17:18:54 +00:00
Jorge Reyes	d25a2d4c30	Merge pull request #12230 from Security-Onion-Solutions/reyesj2-patch-sl Handle non-zero	2024-01-23 08:31:48 -05:00
reyesj2	350b0df3bf	Handle non-zero Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>	2024-01-22 22:48:15 -05:00
Wes	5542db0aac	Leave package version null	2024-01-22 21:07:46 +00:00
Wes	b08db3e05a	Add RITA policy	2024-01-22 20:16:43 +00:00
Wes	80a3942245	Rename RITA pipelines	2024-01-22 20:15:48 +00:00
weslambert	de6151fbe2	Merge pull request #12221 from Security-Onion-Solutions/feature/additional_integrations_4 Additional integrations #4 - Part 1	2024-01-19 17:32:37 -05:00
Wes	7118cc8dee	Add additional integration SOC configuration	2024-01-19 22:04:07 +00:00
Wes	05aa8b013a	Add additional integration to templates	2024-01-19 22:02:39 +00:00
Wes	d0457cb61e	Add additional integrations to defaults	2024-01-19 22:00:38 +00:00
Jorge Reyes	c2b44985c7	Merge pull request #12220 from Security-Onion-Solutions/reyesj2-patch-sl Disable stigs setting/verifying umask is set to 077. Known issue with …	2024-01-19 16:06:10 -05:00
reyesj2	8f8c250ed3	Disable stigs setting/verifing umask is set to 077. Known issue with running SOUP Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>	2024-01-19 16:04:21 -05:00
Mike Reeves	6db32885eb	Merge pull request #12216 from Security-Onion-Solutions/TOoSmOotH-patch-2 Update suricata.common	2024-01-19 13:56:48 -05:00
Mike Reeves	efe8cfda95	Update suricata.common	2024-01-19 13:39:28 -05:00
Mike Reeves	08486e279c	Update suricata.common	2024-01-19 13:36:43 -05:00
Jorge Reyes	40d0411441	Merge pull request #12214 from Security-Onion-Solutions/reyesj2-patch-sl Add stig pillar dir during soup	2024-01-19 10:55:13 -05:00
reyesj2	2b6927da82	Add stig pillar dir during soup Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>	2024-01-19 09:55:23 -05:00
Jorge Reyes	0786806f8f	Merge pull request #12213 from Security-Onion-Solutions/reyesj2-patch-sl Update soup	2024-01-19 08:59:34 -05:00
reyesj2	ca4f2f1dd6	Add creation of additional pillars to soup for stig state Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>	2024-01-19 08:31:20 -05:00
Jorge Reyes	97e2721754	Merge pull request #12208 from Security-Onion-Solutions/reyesj2-patch-sl	2024-01-18 16:53:14 -05:00
reyesj2	07602076f1	Update telegraf script Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>	2024-01-18 16:48:16 -05:00
reyesj2	caf4036dbf	Update features check Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>	2024-01-18 16:06:53 -05:00

1 2 3 4 5 ...

14253 Commits