CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-24 09:53:12 +01:00
Code Issues Packages Projects Releases Wiki Activity
6,031 Commits 19 Branches 120 Tags
dd20002fd5999bd354bbefbc7c0486caee9cd2e8
Commit Graph

3447 Commits

Author SHA1 Message Date
William Wernert
332c6877b8 [fix] Add extra arg to printf instead of using echo 2021-01-12 11:01:25 -05:00
William Wernert
ef7a934b9d [feat] Add functions for input validation 2021-01-12 11:01:04 -05:00
Wes Lambert
7f64d57111 Reserve port for Wazuh API and check if port is already in use 2021-01-06 14:37:28 -05:00
Wes Lambert
e7db1a99bd Set @timestamp to winlog.systemTime 2021-01-06 14:37:28 -05:00
Mike Reeves
7d25e8a08b Remove ERSPAN so log doesn't show a warning 2021-01-06 14:37:28 -05:00
Masaya-A
d37023e0f5 Make yum removing unneeded packages 
Reference: https://www.stigviewer.com/stig/red_hat_enterprise_linux_7/2020-09-03/finding/V-204452
 2021-01-06 14:37:28 -05:00
weslambert
c864cc607f Remove multiple old so-yara-update cron jobs, if needed 2021-01-06 14:37:27 -05:00
weslambert
958635b012 Remove old Strelka cron job 2021-01-06 14:37:27 -05:00
Jason Ertel
7dcd934269 so-fleet-setup doesn't need an interactive terminal to run, remove 'it' 2021-01-06 14:37:27 -05:00
Jason Ertel
bedbd39b82 tcpreplay doesn't need an interactive terminal to run, remove 'it' 2021-01-06 14:37:27 -05:00
Jason Ertel
7d97e3590c Redirect tcpreplay init output to file 2021-01-06 14:37:27 -05:00
Jason Ertel
10d04f760d Use manager internal IP for intra-service comms 2021-01-06 14:37:26 -05:00
Jason Ertel
fb28faa4e3 Monitor interface will not always be bond0 - pull correct value from pillar; Replay test data after automated test installations complete. 2021-01-06 14:37:26 -05:00
William Wernert
9d674d6d3a [feat] Add so-monitor-add script 2021-01-04 13:35:14 -05:00
William Wernert
e9a6155e44 Merge branch 'dev' into feature/wait-for-apt 2020-12-28 18:26:38 -05:00
Jason Ertel
deb38844ba Correct hive init urls 2020-12-28 16:20:33 -05:00
William Wernert
97466957a7 [fix] Fix text printed to whiptail progress bar 2020-12-28 15:06:03 -05:00
William Wernert
cdb6dfcea0 [fix][wip] Fix whiptail output 2020-12-28 14:55:15 -05:00
William Wernert
5059373485 [fix] Change text printed to whiptail progress bar 2020-12-28 14:43:33 -05:00
William Wernert
af62e64852 [fix] Message changes 2020-12-28 14:40:17 -05:00
William Wernert
5836d22525 [fix] Change text printed to whiptail progress bar 2020-12-28 14:29:03 -05:00
William Wernert
a4239d7fe4 [fix] Clarify why dpkg lock is needed 2020-12-28 14:20:37 -05:00
William Wernert
5bd15b91ea [fix] Message formatting changes 2020-12-28 14:18:43 -05:00
William Wernert
a0533dd6b5 [feat] Increase retry_count, decrease wait time, change wording 2020-12-28 14:17:27 -05:00
William Wernert
f7a60a011b [fix] Message formatting 2020-12-28 14:06:33 -05:00
William Wernert
17160dcdbe [fix] Don't repeat fail message on last attempt 2020-12-28 14:02:46 -05:00
William Wernert
0dd80a664f [fix] Only call progress callback if arg passed 2020-12-28 14:00:09 -05:00
William Wernert
1e0525b1ad [fix] Only call progress callback if arg passed 2020-12-28 13:57:44 -05:00
William Wernert
7050b1fce5 [fix] Don't use same variable for increment and limit 2020-12-28 13:55:03 -05:00
Jason Ertel
7fe0182ede Refactor so-test and so-tcpreplay to be compatible with SO 2.3.20+; Change hive_init and cortex_init to initialize the cortex and fleet services directly on the manager IP instead of attempting to use the public URL 2020-12-28 11:26:56 -05:00
William Wernert
4d1cb37468 [feat] Add function to wait for dpkg lock 2020-12-28 09:35:51 -05:00
Jason Ertel
8f15d794bc Silence curl progress output during hive/cortex init 2020-12-24 08:44:28 -05:00
Jason Ertel
baf5be1a3a Return adequate exit code when init fails; Logs output of init scripts for troubleshooting failed installations 2020-12-23 20:14:46 -05:00
Jason Ertel
9cf150f988 Switch from Jinja syntax to bash 2020-12-23 15:11:43 -05:00
Jason Ertel
2d44b69e8d Refactor hive and cortex init to use wait loops instead of hardcoded sleeps 2020-12-23 12:12:38 -05:00
Jason Ertel
aa5c0a7351 Clarify prompt instructions for so-elastalert-test 2020-12-23 09:37:44 -05:00
Jason Ertel
eef1f49d09 Corrected cortex_init process which was incorrectly attempting to access ES via the external URL; Removing 1-2 minute sleeps during init to see if those are no longer needed 2020-12-22 22:56:01 -05:00
Jason Ertel
cfe5019f51 Add firewall listhogroups and listportgroups commands; Change AMI test defaults to use a custom hostname for cypress access 2020-12-22 17:59:59 -05:00
Wes Lambert
ac96ded2dc Support setting rule repos via pillar 2020-12-22 15:36:15 +00:00
weslambert
def08895d5 Merge pull request #2393 from Security-Onion-Solutions/fix/strelka_filestream 
Fix/strelka filestream
 2020-12-18 15:48:54 -05:00
weslambert
2fee2ca143 Change identifier name to be more descriptive 2020-12-18 15:40:54 -05:00
weslambert
7453626b06 Add identifier 2020-12-18 15:39:52 -05:00
m0duspwnens
ad45779978 fix duplicate state name for fw 2020-12-18 15:01:55 -05:00
m0duspwnens
66f62b912e Merge remote-tracking branch 'remotes/origin/dev' into fix/sensoroni_fw 2020-12-18 14:14:55 -05:00
m0duspwnens
4bbedfa027 put portgroup name in statename 2020-12-18 14:14:45 -05:00
m0duspwnens
e756bbc430 limit sensor uptime in grafana dash to 2 decimal 2020-12-18 13:40:55 -05:00
Mike Reeves
dea88e4c68 Update soup 2020-12-18 13:27:08 -05:00
m0duspwnens
dbf82a891f add sensoroni port to minions for manager nodes 2020-12-18 13:06:14 -05:00
Mike Reeves
96bd1e72a7 Update soup 2020-12-18 11:55:24 -05:00
weslambert
1a463bccaf Add cron.absent to remove old cron job if present 2020-12-18 11:25:14 -05:00