 Josh Brower
|
d9713cc14a
|
Playbook & SOCtopus init edits
|
2019-09-25 15:18:18 -04:00 |
|
|
Josh Brower
|
909e35ec3b
|
Playbook and Navigator - initial salt config
|
2019-09-25 13:04:53 -04:00 |
|
|
Josh Brower
|
130705ff99
|
Merge pull request #105 from defensivedepth/viz
Playbook - initial commit
|
2019-09-25 07:59:20 -04:00 |
|
|
Josh Brower
|
bc788a3d35
|
Playbook - initial commit
|
2019-09-24 20:09:20 -04:00 |
|
 weslambert
|
4dd414fb16
|
Merge pull request #104 from weslambert/master
update log path
|
2019-09-24 16:38:52 -04:00 |
|
|
Wes Lambert
|
5bd77a5177
|
update log path
|
2019-09-24 20:37:07 +00:00 |
|
 Mike Reeves
|
331b66f8ed
|
Merge pull request #103 from weslambert/master
update Filebeat log config
|
2019-09-24 16:06:21 -04:00 |
|
|
Wes Lambert
|
497edcbe45
|
update Filebeat log config
|
2019-09-24 19:38:06 +00:00 |
|
 Mike Reeves
|
1fc4cca2ad
|
Hive Module - update version
|
2019-09-24 15:23:12 -04:00 |
|
|
Mike Reeves
|
5ba4c703a4
|
Setup Script - Actually check the passwords
|
2019-09-24 14:25:03 -04:00 |
|
|
Mike Reeves
|
f92d618f82
|
Setup Script - Actually check the passwords
|
2019-09-24 14:22:28 -04:00 |
|
|
Mike Reeves
|
8f2e3e87ff
|
Setup Script - Actually check the passwords
|
2019-09-24 14:18:54 -04:00 |
|
|
Mike Reeves
|
b0b76c1809
|
Filebeat - Roll back version
|
2019-09-24 14:15:00 -04:00 |
|
|
Mike Reeves
|
33c17ec175
|
Setup Script - More hostname stuff
|
2019-09-24 14:14:17 -04:00 |
|
|
Mike Reeves
|
637eb25d23
|
Setup Script - More hostname stuff
|
2019-09-24 14:07:49 -04:00 |
|
|
Mike Reeves
|
5e2cc08039
|
PCAP Module - Update steno image
|
2019-09-24 14:05:20 -04:00 |
|
|
Mike Reeves
|
d01acea307
|
Merge pull request #102 from dougburks/master
incoming bro_tunnel logs should go to bro_tunnels
|
2019-09-24 14:04:01 -04:00 |
|
 doug
|
cb899943aa
|
incoming bro_tunnel logs should go to bro_tunnels
|
2019-09-24 14:00:22 -04:00 |
|
|
Mike Reeves
|
8ccf3c9119
|
Merge pull request #101 from defensivedepth/nids
Update nids2hive.yaml
|
2019-09-24 12:43:09 -04:00 |
|
|
Mike Reeves
|
c869a156c3
|
Setup Script - New Changes for 1.1.1
|
2019-09-24 12:35:32 -04:00 |
|
|
Josh Brower
|
eb10914969
|
Update nids2hive.yaml
|
2019-09-24 12:32:59 -04:00 |
|
|
Mike Reeves
|
d65c900981
|
Setup Script - New Changes for 1.1.1
|
2019-09-24 12:32:08 -04:00 |
|
|
Mike Reeves
|
b1f582d218
|
Logstash Module - 1.1.1
|
2019-09-24 11:22:07 -04:00 |
|
|
Mike Reeves
|
e6ea6b4d73
|
Wazuh Module - Fix gid error
|
2019-09-24 11:07:38 -04:00 |
|
|
Mike Reeves
|
e080dcfe80
|
Filebeat Module - Update to 1.1.1
|
2019-09-24 11:03:48 -04:00 |
|
|
Mike Reeves
|
590827b08c
|
Suricata Module - Suricata 4.1.5
|
2019-09-24 10:26:55 -04:00 |
|
|
Mike Reeves
|
6f547f5189
|
Merge pull request #100 from weslambert/elastalert
more updates to Elastalert config
|
2019-09-23 20:42:27 -04:00 |
|
|
Wes Lambert
|
2784542cdb
|
update Elastalert config
|
2019-09-23 22:39:43 +00:00 |
|
|
Mike Reeves
|
b9d6961f3a
|
Merge pull request #99 from dougburks/master
parse Bro logs using Elasticsearch ingest node
|
2019-09-23 16:17:19 -04:00 |
|
|
doug
|
8472b24a67
|
parse Bro logs using Elasticsearch ingest node
|
2019-09-23 16:04:23 -04:00 |
|
|
Mike Reeves
|
c685089b2b
|
Merge pull request #98 from weslambert/elastalert
update config for Elastalert to use custom modules
|
2019-09-23 10:45:53 -04:00 |
|
|
Wes Lambert
|
965ee6f922
|
remove duplicate alerter
|
2019-09-23 14:43:54 +00:00 |
|
|
Wes Lambert
|
5419bd6f08
|
update config for Elastalert
|
2019-09-23 14:43:14 +00:00 |
|
|
Mike Reeves
|
6d14a94765
|
Logstash Module - Fix watch
|
2019-09-20 16:31:23 -04:00 |
|
|
Mike Reeves
|
50c074bb4e
|
Logstash Module - Add more watches
|
2019-09-19 15:46:46 -04:00 |
|
|
Mike Reeves
|
06cc8e7236
|
OSSEC Module - Fix User Creation
|
2019-09-19 13:44:28 -04:00 |
|
|
Mike Reeves
|
b68391acd0
|
cmd.script - Fix location
|
2019-09-19 10:22:10 -04:00 |
|
|
Mike Reeves
|
9421e4d8e2
|
Merge pull request #97 from defensivedepth/nids
Add rule_signature mapping
|
2019-09-19 08:56:05 -04:00 |
|
|
Mike Reeves
|
a9113a99a6
|
cmd.script cleanup
|
2019-09-19 08:52:44 -04:00 |
|
|
Josh Brower
|
9a4eadc967
|
Add rule_signature mapping
|
2019-09-19 08:30:33 -04:00 |
|
|
Mike Reeves
|
d7d3dc9977
|
Merge pull request #96 from weslambert/elastalert
sync default Elastalert rules
|
2019-09-18 16:53:09 -04:00 |
|
|
Wes Lambert
|
9a53cfd5ff
|
update path
|
2019-09-18 19:47:39 +00:00 |
|
|
Wes Lambert
|
1f8fd7ddd1
|
fix typo
|
2019-09-18 19:42:02 +00:00 |
|
|
Wes Lambert
|
30d732e18f
|
sync default Elastalert rules
|
2019-09-18 19:37:47 +00:00 |
|
|
Mike Reeves
|
6cd9ce8040
|
Merge pull request #95 from weslambert/master
update to allow use of custom modules and local config
|
2019-09-10 03:48:38 -04:00 |
|
|
Wes Lambert
|
3f07d7de91
|
add files
|
2019-09-09 20:28:31 +00:00 |
|
|
Wes Lambert
|
a1998a8aa2
|
update to allow use of custom modules and local config
|
2019-09-09 20:23:37 +00:00 |
|
|
Mike Reeves
|
209a46bad6
|
Merge pull request #94 from rwwiv/master
Fix for packet capture loss by disabling checksum offloading for non-management interfaces
|
2019-08-18 09:18:00 -04:00 |
|
 William Wernert
|
75ab90d5e8
|
Further fixes for network offloading
|
2019-08-15 16:14:21 -04:00 |
|
|
William Wernert
|
8dbb5de55d
|
Preliminary fix for packet capture loss
Interface offloading was not being turned off during setup
|
2019-08-15 16:14:14 -04:00 |
|