securityonion

mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00

Author	SHA1	Message	Date
m0duspwnens	dbfe176b45	create /opt/so/ for non manager nodes during setup	2023-01-17 14:15:44 -05:00
Josh Patterson	2842178396	Merge pull request #9588 from Security-Onion-Solutions/2.4/firewall fix iptables	2023-01-17 13:50:16 -05:00
m0duspwnens	aa858bab45	fix iptables	2023-01-17 13:48:39 -05:00
weslambert	1723f58c04	Merge pull request #9579 from Security-Onion-Solutions/fix/elasticsearch_templates_so-ids Remove so-ids since the data stream is now 'logs-suricata-*'	2023-01-13 16:17:38 -05:00
weslambert	ca80548bf0	Remove so-ids since the data stream is now 'logs-suricata-*'	2023-01-13 16:15:58 -05:00
weslambert	3e5127810d	Merge pull request #9577 from Security-Onion-Solutions/fix/elasticsearch_elastic_agent_templates Make sure Elastic Agent data streams do not use replicas	2023-01-13 16:12:09 -05:00
weslambert	73a4dae28e	Make sure Elastic Agent data streams do not use replicas	2023-01-13 16:10:44 -05:00
Josh Patterson	3efca0010a	Merge pull request #9573 from Security-Onion-Solutions/2.4/firewall 2.4/firewall	2023-01-13 12:41:58 -05:00
m0duspwnens	3653df4d5f	spell it right	2023-01-13 10:18:13 -05:00
m0duspwnens	6033e9a0de	use port_bindings from docker defaults in docker states	2023-01-13 10:15:10 -05:00
weslambert	7cba5626b7	Merge pull request #9570 from Security-Onion-Solutions/fix/elasticsearch_templates_elastic_agent Change priority for Elastic Agent Elasticsearch index templates	2023-01-12 16:48:12 -05:00
m0duspwnens	a69b0951d3	add strelka containers	2023-01-12 16:47:34 -05:00
weslambert	654d869e3e	Change priority from 500 to 200 for Elastic Agent index templates to avoid collisions with other templates	2023-01-12 16:46:08 -05:00
m0duspwnens	d163d834d4	allow for binding ip and ports to different port number	2023-01-12 16:42:45 -05:00
weslambert	be6b42494c	Merge pull request #9569 from Security-Onion-Solutions/fix/elasticsearch_ingest_pipeline_kratos Kratos Index Changes	2023-01-12 15:33:51 -05:00
weslambert	fb8d8ea972	Update Elasticsearch index template for Kratos	2023-01-12 15:31:41 -05:00
weslambert	9416552338	Don't set the Kratos index explicitly	2023-01-12 15:25:35 -05:00
Mike Reeves	6c8b17d4d1	Merge pull request #9567 from Security-Onion-Solutions/mkr24 Fix nsm	2023-01-12 10:43:42 -05:00
Mike Reeves	8c5a060a80	Fix nsm	2023-01-12 10:41:54 -05:00
weslambert	66f9a06458	Merge pull request #9566 from Security-Onion-Solutions/fix/elastic_fleet_integration_policy_load Fix Zeek import policies and remove unnecessary dash in RITAENABLED statement	2023-01-11 16:17:40 -05:00
Wes	0e437f84e7	Add back echo statement to print the import policy being loaded	2023-01-11 21:13:30 +00:00
Wes	ea01e68846	Fix Zeek import policies and remove unnecessary dash in RITAENABLED statement	2023-01-11 21:01:31 +00:00
Josh Patterson	add71cbdee	Merge pull request #9565 from Security-Onion-Solutions/2.4/firewall 2.4/firewall	2023-01-11 15:04:25 -05:00
Mike Reeves	60d476457a	Merge pull request #9564 from Security-Onion-Solutions/TOoSmOotH-patch-5 Update 0900_input_redis.conf.jinja	2023-01-11 14:54:40 -05:00
m0duspwnens	80f65fcd62	remove 514/tcp from filebeat for now	2023-01-11 14:54:05 -05:00
Mike Reeves	66924b63a7	Update 9999_output_redis.conf.jinja	2023-01-11 14:53:16 -05:00
Mike Reeves	bdaed849ea	Update 0900_input_redis.conf.jinja	2023-01-11 14:52:32 -05:00
m0duspwnens	0d45c1583e	add so-filebeat docker container ports and add to standalone	2023-01-11 14:48:20 -05:00
m0duspwnens	81e07997f0	add so-elastic-fleet docker container ports and add to standalone	2023-01-11 14:28:35 -05:00
Mike Reeves	4923fb1c35	Merge pull request #9563 from Security-Onion-Solutions/mkr24 Optimize reinstall process	2023-01-11 12:44:52 -05:00
Mike Reeves	8fa8b89d9c	Fix reinstall logic	2023-01-11 12:43:22 -05:00
Mike Reeves	bab010a109	Fix reinstall logic	2023-01-11 12:40:18 -05:00
Mike Reeves	c07821a612	Fix reinstall logic	2023-01-11 12:32:43 -05:00
weslambert	acad7acc4a	Merge pull request #9562 from Security-Onion-Solutions/fix/elastic_agent_integration_policy_load_suricata_import Move Suricata import policy definition so that it does not get caught in the for loop for Zeek policies	2023-01-11 12:27:37 -05:00
Mike Reeves	b36f1bc79e	Fix reinstall logic	2023-01-11 12:26:50 -05:00
weslambert	4391c22335	Move Suricata import policy definition so that it does not get caught in the for loop for Zeek policies	2023-01-11 12:23:50 -05:00
weslambert	39d1f07fab	Merge pull request #9561 from Security-Onion-Solutions/fix/filebeat_remove_module_setup Remove pipeline.load from top.sls so that Filebeat module loading is not attempted	2023-01-11 12:21:39 -05:00
Mike Reeves	35e0a78cad	Fix reinstall logic	2023-01-11 12:20:57 -05:00
weslambert	b3e0183e39	Remove pipeline.load from top.sls so that Filebeat module loading is not attempted	2023-01-11 12:19:06 -05:00
Mike Reeves	708ba13721	Fix reinstall logic	2023-01-11 12:18:02 -05:00
Mike Reeves	eee433e8c4	Fix reinstall logic	2023-01-11 12:17:13 -05:00
Mike Reeves	cd57ff9820	Fix reinstall logic	2023-01-11 12:16:18 -05:00
Mike Reeves	6d1e6fc358	Fix reinstall logic	2023-01-11 12:15:21 -05:00
Mike Reeves	0531d369aa	Fix reinstall logic	2023-01-11 11:09:06 -05:00
Mike Reeves	55911ef649	Fix reinstall logic	2023-01-11 11:05:01 -05:00
weslambert	355953427c	Merge pull request #9553 from Security-Onion-Solutions/feature/filebeat_to_elastic_agent_conversion Initial Conversion of Filebeat Inputs to Elastic Agent Inputs	2023-01-11 09:22:40 -05:00
Wes	52b620b137	Add additional conditional logic for Filebeat and disable Filebeat	2023-01-11 14:10:11 +00:00
Wes	33e2affb1d	Remove newlines from end of Syslog processor definitions	2023-01-11 14:08:28 +00:00
Wes	c3b83f1fc8	Update template settings to use data streams	2023-01-11 14:03:11 +00:00
Wes	5062dd2873	Suricata Elasticsearch ingest node pipeline changes - set 'alert' dataset	2023-01-11 14:02:09 +00:00

1 2 3 4 5 ...

11055 Commits