CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-08 18:22:47 +01:00
Code Issues Packages Projects Releases Wiki Activity
5,630 Commits 24 Branches 119 Tags
d3ef46a5f68e9bc5f52cfa86bdfeeb51ea3fb5a5
Commit Graph

823 Commits

Author SHA1 Message Date
Mike Reeves
1958fef4ad Merge pull request #1338 from Security-Onion-Solutions/experimental 
Fix strelka rules
 2020-09-14 09:58:34 -04:00
Mike Reeves
ee1317adf1 Merge branch 'experimental' of https://github.com/Security-Onion-Solutions/securityonion into experimental 2020-09-14 09:57:14 -04:00
Mike Reeves
d1836fb3a3 Fix Salt issue with script 2020-09-14 09:57:08 -04:00
m0duspwnens
b93d149631 fix so-status 2020-09-14 09:36:26 -04:00
m0duspwnens
46cbcfa330 Merge branch 'dev' of https://github.com/Security-Onion-Solutions/securityonion-saltstack into issue/1066 2020-09-14 08:45:54 -04:00
Mike Reeves
112a0b426e Merge branch 'dev' into experimental 2020-09-13 14:54:00 -04:00
Mike Reeves
d6d22fb0e0 Fix Strelka 2020-09-12 23:07:35 -04:00
Mike Reeves
bb936c5bee Fix Strelka 2020-09-12 23:07:15 -04:00
Mike Reeves
259df2ed6b Fix Strelka 2020-09-12 23:06:06 -04:00
m0duspwnens
77911acfb4 so-status module 2020-09-11 18:28:53 -04:00
Mike Reeves
48d1d0c168 Strelkas Rules Update 2020-09-11 18:24:56 -04:00
Mike Reeves
46866f40b3 Merge pull request #1325 from Security-Onion-Solutions/experimental 
Update Script
 2020-09-11 11:02:57 -04:00
Mike Reeves
6e0cdf7be4 Update Script help 2020-09-11 11:01:56 -04:00
Mike Reeves
af9a19b6e8 Merge pull request #1321 from Security-Onion-Solutions/experimental 
IDS Tools now with Airgap support
 2020-09-10 19:05:16 -04:00
Josh Patterson
ca26548b2c Merge pull request #1310 from Security-Onion-Solutions/issue/1281 
Issue/1281
 2020-09-10 10:08:25 -04:00
Doug Burks
d18c498574 Update so-features-enable 2020-09-09 17:32:42 -04:00
m0duspwnens
09cc8ae1fb fail the state if it isnt in top 2020-09-09 16:48:50 -04:00
m0duspwnens
01c9f7b2ae merge with dev and resolve conflicts 2020-09-09 16:23:36 -04:00
Mike Reeves
7ebf93fcb5 IDSTools Overhaul 2020-09-09 15:53:32 -04:00
Josh Patterson
1e32b32659 Merge pull request #1302 from Security-Onion-Solutions/fix/sostatus 
Fix/sostatus
 2020-09-09 15:07:12 -04:00
m0duspwnens
39f200f565 fix whitespace 2020-09-09 14:59:21 -04:00
m0duspwnens
b0c526364f handle strelka 2020-09-09 14:55:54 -04:00
m0duspwnens
921262b9a5 prevent duplicate containers for so-stauts 2020-09-09 14:07:38 -04:00
Jason Ertel
a5b87850df Remove user sync between SOC and Cortex due to the unnecesary complexities involved with this style of integration 2020-09-09 14:07:36 -04:00
m0duspwnens
05d736d2df handle strelka 2020-09-09 14:00:58 -04:00
m0duspwnens
918d9cf00f handle strelka 2020-09-09 13:57:53 -04:00
m0duspwnens
3433b90029 fix so-status for strelka and wazuh 2020-09-09 13:53:10 -04:00
Jason Ertel
710a2be422 Add new so-user-enable script and change so-user-disable to call 'so-user disable' instead of deleting the SOC user 2020-09-08 16:24:18 -04:00
Wes Lambert
f9884606df Fix typo 2020-09-05 12:15:55 +00:00
Jason Ertel
f27e5164d0 Update to latest kratos; add support for a custom status trait to represent whether a user is locked or not; refactor so-user to use new enable/disable capabilities in SOC; remove 'delete' option from so-user usage to avoid having user lists out of sync across SOC and external apps 2020-09-04 17:01:52 -04:00
m0duspwnens
a229ae82ce only allow state to run if it is in top for the node 2020-09-02 16:15:52 -04:00
Wes Lambert
770aaf415c Require at least on arg for start/stop/restart scripts 2020-09-02 18:55:59 +00:00
Jason Ertel
0142f43493 Add so-user-disable script which deletes the SOC user and disables the users in Fleet, TheHive, and Cortex 2020-09-02 13:54:50 -04:00
Jason Ertel
dc3b065a41 Set exec bit on new user-add scripts 2020-08-31 10:57:23 -04:00
Wes Lambert
46e7e121e3 Add Wazuh mgmt wrappers for manage_agents and upgrade 2020-08-31 14:54:24 +00:00
Jason Ertel
189c02648d Move container status check to so-common 2020-08-31 09:52:06 -04:00
Jason Ertel
8e06f0453e Only add users to aux systems if those systems are currently running 2020-08-31 09:41:06 -04:00
Jason Ertel
4e3e83820f Correct pillar key for thehive 2020-08-28 08:17:42 -04:00
Jason Ertel
a3e34bfaca Add users to Fleet, TheHive, and Cortex when adding a user to SO via so-user-add command 2020-08-27 16:58:02 -04:00
weslambert
509985ed07 Merge pull request #1254 from Security-Onion-Solutions/fix/sensor_clean 
Cron updates
 2020-08-26 11:03:03 -04:00
Mike Reeves
e993397173 Update docker to latest version 2020-08-26 10:35:17 -04:00
Jason Ertel
3122280bd5 Update version to 2.2.0-rc.3 2020-08-25 15:16:09 -04:00
weslambert
ce49e050bc Update timing for sensor clean cron 2020-08-25 12:14:43 -04:00
Wes Lambert
c03812f7ab Add rotation for sensor_clean log 2020-08-25 15:34:30 +00:00
weslambert
a8f727ad40 Don't write to log if not past CRIT_DISK_USAGE 2020-08-25 11:19:36 -04:00
Mike Reeves
8312221c82 Update soup 2020-08-19 18:51:32 -04:00
Mike Reeves
0439cf3205 Update soup 2020-08-19 18:47:36 -04:00
Mike Reeves
3d48c1f99b Add playbook updates 2020-08-19 12:14:11 -04:00
Mike Reeves
9280dbb9d9 Update soup 2020-08-19 12:00:25 -04:00
m0duspwnens
2f0ffffca4 lock and unlock master during soup 2020-08-19 11:46:29 -04:00