securityonion

mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-07 17:52:46 +01:00

Author	SHA1	Message	Date
William Wernert	9bf1d3e0c6	Misc fixes	2021-07-16 14:59:44 -04:00
William Wernert	3a12d28d20	Merge branch 'dev' into feature/logscan	2021-07-16 14:13:19 -04:00
Wes Lambert	05aad07bfc	Replace staging path with processed path for analyzed files	2021-07-14 15:04:46 +00:00
Wes Lambert	441cd3fc59	Move Wazuh-specific data to wazuh.data	2021-07-14 13:42:51 +00:00
William Wernert	e7a6172d7e	[fix] Add single quotes to strings	2021-07-13 14:07:27 -04:00
William Wernert	115e0a6fee	[fix] Add missing comma	2021-07-13 12:04:10 -04:00
William Wernert	e059c25ebc	[fix][wip] Fix pipeline parsing errors	2021-07-13 11:05:05 -04:00
William Wernert	2b0bca8e55	Merge branch 'dev' into feature/logscan	2021-07-12 14:58:30 -04:00
doug	e6f9592cde	FIX: Suricata dns.response.code needs to be renamed to dns.response.code_name #4770	2021-07-12 13:24:21 -04:00
William Wernert	bac7ef71d8	Add logscan.source.ips field	2021-07-09 10:55:11 -04:00
William Wernert	80525ee736	[wip] Add logscan pipeline	2021-07-08 12:29:50 -04:00
Mike Reeves	693f455862	ECS hotfix	2021-07-02 08:55:49 -04:00
Jason Ertel	5298cb8cfb	Update copyrights	2021-06-21 07:06:49 -04:00
Jason Ertel	fca1c6e957	Merge branch 'dev' into kilo	2021-06-14 10:40:04 -04:00
weslambert	4c74e7f308	Add event.kind and set name to module[dot]dataset	2021-06-02 15:35:26 -04:00
weslambert	db48c15f1d	Create event.kind field and rename dataset to be module[dot]dataset	2021-06-02 15:33:18 -04:00
Jason Ertel	588da4d7dc	Resolve salt pillar/state/jinja race condition	2021-06-02 14:34:21 -04:00
Mike Reeves	7b7111e12c	Fix some hunt queries	2021-06-02 13:53:39 -04:00
Mike Reeves	e00fe0a732	Enable for all modes	2021-06-02 10:02:11 -04:00
Jason Ertel	a42a406f53	Remove extra users file mounts; disable elastic anon access when auth enabled	2021-05-29 07:52:08 -04:00
m0duspwnens	18926009d3	remove unneeded curl.config template	2021-05-28 10:38:06 -04:00
m0duspwnens	8d9d5a267a	generate elasticsearch.auth pillar if it doesnt exist	2021-05-25 11:52:58 -04:00
m0duspwnens	a4226cc39a	use elastic map file	2021-05-24 15:14:05 -04:00
Jason Ertel	44ad8ce888	Switch to the ES-included community_id plugin	2021-04-29 12:08:07 -04:00
Josh Brower	7cbeed985a	Differentiate between event & ingest timestamp	2021-04-13 12:55:40 -04:00
Josh Brower	cf4de255ec	Fix Wazuh WEL Shipping	2021-04-12 15:18:18 -04:00
Josh Brower	44c75122ed	Update Sigmac mappings and config for IPs and ports	2021-03-16 09:05:35 -04:00
doug	adbc7436b6	FIX: Populate http.status_message field #3408	2021-03-11 16:42:20 -05:00
doug	b4ad7e7359	FIX: Improve Suricata DHCP logging and parsing #3397	2021-03-11 11:01:51 -05:00
Josh Brower	00da549430	Merge pull request #3358 from Security-Onion-Solutions/delta FEATURE: Initial support for viewing Osquery Live Query results in Hunt	2021-03-09 09:18:57 -05:00
Mike Reeves	1ecb079066	Fix Kibana Script for loading dashboards	2021-03-08 17:36:07 -05:00
Josh Brower	fe8788c09a	Merge remote-tracking branch 'remotes/origin/dev' into delta	2021-03-08 12:56:47 -05:00
Josh Brower	548f67ca6f	Initial support for Live Queries in Hunt	2021-03-04 18:21:13 -05:00
Mike Reeves	c2b347e4bb	Security Enable for only nodes and heavy	2021-03-04 10:52:01 -05:00
Mike Reeves	a0a8d12526	Enable SSL and Features	2021-03-04 10:08:28 -05:00
Mike Reeves	4de62c878c	turn on elastic security	2021-03-03 12:51:29 -05:00
Mike Reeves	4f867e5375	Fix all scripts for ssl elastic	2021-03-03 10:02:23 -05:00
Mike Reeves	80574d3c20	Make https default for all things	2021-03-02 13:59:43 -05:00
Mike Reeves	3219f4cd12	Remove Features Option	2021-03-02 11:04:50 -05:00
doug	71c7ffae3e	Improve support for Suricata metadata #2200	2021-02-22 13:49:29 -05:00
doug	bcce205430	Improve support for Suricata metadata #2200	2021-02-22 13:00:14 -05:00
doug	3467f30603	Improve support for Suricata metadata #2200	2021-02-22 10:27:24 -05:00
Mike Reeves	0ea29144a8	Merge pull request #3047 from Security-Onion-Solutions/surifile2 Suricata as Meta Data, File Extraction, And Parsing changes	2021-02-19 14:09:38 -05:00
Mike Reeves	b4b449aa14	Pull in Suricata changes	2021-02-19 11:01:15 -05:00
doug	88eb5b1d61	Update syslog ingest parser to accomodate pfSense filterlog changes #3033	2021-02-19 08:02:32 -05:00
Mike Reeves	160d307f4a	Disable ML for features #2788	2021-01-30 20:00:41 -05:00
Mike Reeves	4212afe0c9	Add features option back	2021-01-30 19:57:18 -05:00
Josh Brower	13ab4c66eb	Update Osquery Windows Eventlog Parsing	2021-01-27 09:15:54 -05:00
Mike Reeves	9f984036c5	Use the internmediate cert	2021-01-21 13:00:46 -05:00
Mike Reeves	b0914fa604	try .p12	2021-01-21 12:46:00 -05:00

1 2 3 4 5 ...

260 Commits