CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-14 05:02:52 +01:00
Code Issues Packages Projects Releases Wiki Activity
6,569 Commits 26 Branches 119 Tags
d39b3280c8b3aaa9834f36f9b46a72f3a48451d3
Commit Graph

3711 Commits

Author SHA1 Message Date
doug
d39b3280c8 FIX: Custom Kibana settings are not being applied properly on upgrades #3254 2021-03-03 14:04:32 -05:00
m0duspwnens
3983e08fe5 exclude zeekcaptureloss when suricata metadata selected https://github.com/Security-Onion-Solutions/securityonion/issues/3206 2021-03-01 13:31:05 -05:00
William Wernert
be7dcdb442 Merge branch 'master' into release-merge-fix 
# Conflicts:
#	README.md
#	VERIFY_ISO.md
#	VERSION
#	salt/docker_clean/init.sls
#	salt/soc/files/soc/changes.json
 2021-03-01 10:45:51 -05:00
Jason Ertel
1ae46b82ec Update changes for 2.3.30 2021-03-01 09:58:39 -05:00
William Wernert
6113bcc261 [fix] Increase max integer value 2021-03-01 09:16:51 -05:00
Jason Ertel
7451aa990b Improve formatting of changes list 2021-02-27 08:14:44 -05:00
Jason Ertel
9631327c71 Add changes.json for 2.3.30 2021-02-26 18:11:13 -05:00
m0duspwnens
b4c1c56e72 Merge remote-tracking branch 'remotes/origin/dev' into salt-3002.5 2021-02-26 08:38:02 -05:00
Josh Brower
5678e66b39 Fix so-playbook-sigma-refresh 2021-02-26 08:33:24 -05:00
m0duspwnens
9fa625189f upgrade to salt 3002.5 https://github.com/Security-Onion-Solutions/securityonion/issues/3147 2021-02-25 20:07:29 -05:00
Mike Reeves
e06ca75677 Merge pull request #3144 from Security-Onion-Solutions/interfaces 
Don't disable NICs
 2021-02-25 17:28:47 -05:00
Mike Reeves
a47a3d51c9 Merge pull request #3139 from Security-Onion-Solutions/feature/soup-log_size_limit 
Show log_size_limit message at end of soup instead of during
 2021-02-25 17:10:38 -05:00
Josh Patterson
8a0e0e88e0 Merge pull request #3142 from Security-Onion-Solutions/issue/3130 
stop zeek state.db from getting owned by root
 2021-02-25 15:01:20 -05:00
Mike Reeves
51e8839daf Inverse NIC offload 2021-02-25 11:46:00 -05:00
m0duspwnens
fcd3f81400 fix quotes 2021-02-25 11:16:53 -05:00
m0duspwnens
c8213fa3d4 change docker exec 2021-02-25 11:07:54 -05:00
m0duspwnens
add66e750e forgot to add -c 2021-02-25 10:49:09 -05:00
William Wernert
6a097beaff Show log_size_limit message at end of soup instead of during 2021-02-25 10:47:29 -05:00
m0duspwnens
d52abcbcbd ensure zeekctl is run as user zeek https://github.com/Security-Onion-Solutions/securityonion/issues/3130 2021-02-25 09:58:07 -05:00
Doug Burks
c18c865764 Improve Hunt queries for ssh and tunnel #3128 2021-02-25 09:23:19 -05:00
Doug Burks
ef1e296415 Improve Hunt queries for ssh and tunnel #3128 2021-02-25 08:52:34 -05:00
Jason Ertel
34dab9009c Ensure Zeek spool dir is owned by Zeek to allow Zeek to start correctly 2021-02-25 08:10:13 -05:00
Mike Reeves
c39b516f38 Merge pull request #3121 from Security-Onion-Solutions/strelkainstall 
Fix Strelka Rule updates, repo fix
 2021-02-24 17:13:41 -05:00
Mike Reeves
701cfe7e9a Merge branch 'dev' into strelkainstall 2021-02-24 17:07:26 -05:00
William Wernert
f042312aac Merge branch 'dev' into kilo 
# Conflicts:
#	salt/common/tools/sbin/soup
 2021-02-24 15:42:10 -05:00
Wes Lambert
6ea8eab9af Modify soup to add Strelka rule repo in pillar 2021-02-24 20:32:47 +00:00
William Wernert
e500e24802 Only show log_size_limit warning on dist if heavynode pillars exist 2021-02-24 13:56:59 -05:00
Mike Reeves
38d60752b7 Merge pull request #3110 from Security-Onion-Solutions/dockerclean 
Docker Cleanup
 2021-02-24 13:44:06 -05:00
William Wernert
ece79379a5 Add file name/path to log_size_limit message 2021-02-24 12:54:14 -05:00
William Wernert
ac6f1df86f [fix] Only check log_size_limit on .2X -> .30 
* Since we're showing a message in the middle of soup, wait for keypress if it's shown
 2021-02-24 12:35:17 -05:00
William Wernert
4507a89d95 tar arg fix (-x -> -z) 2021-02-24 12:24:54 -05:00
William Wernert
2be7ccac33 Add function to notify user that log_size_limit may be incorrect 2021-02-24 12:24:32 -05:00
m0duspwnens
eba5d271aa logfile is 1 word https://github.com/Security-Onion-Solutions/securityonion/issues/3115 2021-02-24 11:56:43 -05:00
m0duspwnens
3552abfca1 ensure info log level - 2021-02-24 11:50:08 -05:00
Mike Reeves
1d45472b48 Fix Strelka Rule updates, repo fix 2021-02-24 11:30:43 -05:00
Jason Ertel
050058a959 Add retry support for 'docker pull' command 2021-02-24 09:34:14 -05:00
Mike Reeves
09c94ddf95 Docker Cleanup 2021-02-24 08:57:25 -05:00
Mike Reeves
54367db99b Merge pull request #3108 from Security-Onion-Solutions/issue/3056 
add estimated EPS graphs to Grafana for manager, mastersearch and standalone nodes
 2021-02-24 08:49:36 -05:00
Mike Reeves
56daae64be Merge pull request #3097 from Security-Onion-Solutions/sometacleanup 
Clean up on sid numbers
 2021-02-24 08:24:48 -05:00
Mike Reeves
00deab9305 Merge pull request #3100 from Security-Onion-Solutions/kilo 
Add so-preflight + usage to so-monitor-add, fix managersearch missing from so-rule
 2021-02-23 17:32:41 -05:00
Mike Reeves
fa6fd20ff9 Merge pull request #3088 from Security-Onion-Solutions/soupairgap 
Syn the latest rules on an airgap install
 2021-02-23 17:31:29 -05:00
Mike Reeves
d195efa8e5 Merge pull request #3098 from Security-Onion-Solutions/feature/update-soup 
Update SOUP with so-playbook-sigma-refresh
 2021-02-23 15:46:48 -05:00
Josh Brower
a7eb3cd38d Add so-playbook-sigma-refresh 2021-02-23 15:43:09 -05:00
Mike Reeves
5baa4cb6a5 Clean up on sid numbers 2021-02-23 15:42:58 -05:00
William Wernert
a361ca0e19 [fix] Add managersearch node type to so-rule pillar search 2021-02-23 14:15:17 -05:00
William Wernert
9cf15cdae5 [fix] Reword so-monitor-add help message 2021-02-23 13:55:18 -05:00
William Wernert
d5477b4721 Add usage/help message to so-monitor-add 2021-02-23 13:48:54 -05:00
Mike Reeves
186710964b Fix Airgap Rule Path 2021-02-23 13:07:23 -05:00
Mike Reeves
3b32eb539f Copy latest rules when using airgaps 2021-02-23 11:21:23 -05:00
m0duspwnens
6ee69ff21b Merge remote-tracking branch 'remotes/origin/dev' into issue/3056 2021-02-23 11:11:50 -05:00