CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity
10,364 Commits 24 Branches 119 Tags
e2eaefab6eb30e4ca69050a3a8c33ea12b9800c8
Commit Graph

6180 Commits

Author SHA1 Message Date
Mike Reeves
e2eaefab6e Fix yaml for idh,es,kib,esalert 2022-09-09 15:45:13 -04:00
Mike Reeves
1f3b170213 Fix yaml for idh,es,kib,esalert 2022-09-09 15:36:57 -04:00
Mike Reeves
74ef6c0ed0 Fix yaml for idh,es,kib,esalert 2022-09-09 15:30:28 -04:00
Josh Patterson
54f7cefa28 Merge pull request #8702 from Security-Onion-Solutions/fix/soc2.4 
add salt bind for soc
 2022-09-09 14:45:31 -04:00
m0duspwnens
b5fb7596b0 add salt bind for soc 2022-09-09 14:44:41 -04:00
Josh Patterson
7dd65909f2 Merge pull request #8701 from Security-Onion-Solutions/fix/soc2.4 
add saltPipe
 2022-09-09 14:40:08 -04:00
m0duspwnens
0f2e9764ab add saltPipe 2022-09-09 14:39:20 -04:00
Josh Patterson
deaecad8fd Merge pull request #8700 from Security-Onion-Solutions/fix/soc2.4 
Fix/soc2.4
 2022-09-09 14:32:41 -04:00
m0duspwnens
5ccc103083 fix soc dashboards and things 2022-09-09 14:31:04 -04:00
m0duspwnens
5bb001281b soc defaults changes - client child of server 2022-09-08 15:57:18 -04:00
Mike Reeves
ce59a8a225 Merge pull request #8697 from Security-Onion-Solutions/funstuff 
move endgamehost
 2022-09-08 14:12:43 -04:00
Mike Reeves
9c9509594a move endgamehost 2022-09-08 13:55:35 -04:00
Jason Ertel
cfb3893c2b Merge pull request #8694 from Security-Onion-Solutions/salt-relay 
Salt relay
 2022-09-08 10:31:28 -04:00
Jason Ertel
b7bbe7d69f Add copyright notice 2022-09-08 10:27:56 -04:00
Jason Ertel
193c3fc4cd Add salt relay 2022-09-08 10:26:39 -04:00
Mike Reeves
3785b97d95 so-status 2022-09-08 08:48:49 -04:00
weslambert
c25b981c50 Merge pull request #8688 from Security-Onion-Solutions/elastic_agent_security_subfield_additions 
Elastic Agent .security subfield additions
 2022-09-08 08:05:16 -04:00
Wes
86d60e444d Add Elastic Agent index/template configuration to defaults file 2022-09-08 00:20:22 +00:00
Wes
b39a5061ca Load Elastic Agent component templates (managed by Security Onion) 2022-09-07 21:26:43 +00:00
Wes
eeffded248 Remove duplicate security subfield configuration from component templates 2022-09-07 21:23:04 +00:00
Josh Brower
f00aafdfb2 Elastic Agent - move gen installers 2022-09-07 16:57:11 -04:00
Josh Brower
e8af315e40 Merge remote-tracking branch 'remotes/origin/2.4/dev' into 2.4/elastic-fleet 2022-09-07 16:32:31 -04:00
Jason Ertel
df6ba5cbe9 initial salt relay script for comms with soc 2022-09-07 16:19:16 -04:00
Josh Brower
39ed582a72 Update so-playbook-reset 2022-09-07 15:59:54 -04:00
Mike Reeves
5b65fdcc1c Remove crossthestreams 2022-09-07 15:42:22 -04:00
Mike Reeves
6d1bc78f7b Remove crossthestreams 2022-09-07 15:41:21 -04:00
Mike Reeves
6adcb4c968 Remove crossthestreams 2022-09-07 15:38:55 -04:00
Wes
3c50072690 Add Elastic Agent component templates 2022-09-07 18:51:57 +00:00
Josh Brower
ce688cfb91 Elastic Agent setup changes 2022-09-07 10:23:26 -04:00
Mike Reeves
c9dd2beaaa Move In Day 2022-09-07 09:15:58 -04:00
Mike Reeves
2bd9dd80e2 Move In Day 2022-09-07 09:06:25 -04:00
m0duspwnens
a965301b2e manage salt-minion start delay with systemd drop-in file - https://github.com/Security-Onion-Solutions/securityonion/issues/8441 2022-08-02 16:37:27 -04:00
weslambert
2914007393 Add forward slash to fix issue with missing query path 2022-07-18 09:07:34 -04:00
weslambert
f5e10430ed Add forward slash to fix issue with missing query path 2022-07-18 09:07:13 -04:00
Mike Reeves
cf8c6a6e94 Update defaults.yaml 2022-07-14 15:17:27 -04:00
weslambert
2443e8b97e Change web_response to evaluate the response from the Spaces API and the default space query 2022-07-14 12:04:56 -04:00
weslambert
0fd4f34b5b Add shebang so that so-kibana-space-defaults will work correctly on Ubuntu 2022-07-13 16:48:39 -04:00
Josh Patterson
37df49d4f3 Merge pull request #8296 from Security-Onion-Solutions/elastalert_esversion_check 
use onlyif requisite instead
 2022-07-13 15:22:40 -04:00
m0duspwnens
7d7cf42d9a use onlyif requisite instead 2022-07-13 15:21:34 -04:00
Doug Burks
c67a58a5b1 change hyperlink for Elastic 8 issues 2022-07-13 12:40:03 -04:00
m0duspwnens
086cf3996d do not start elastalert if elasticsearch is not v8 2022-07-13 11:21:27 -04:00
weslambert
513c7ae56c Add missing 'fi' to if/then for unsupported indices check 2022-07-13 09:13:28 -04:00
weslambert
8e92060c29 Ensure Elastalert indices are deleted before continuing with SOUP -- if they are not, generate a failure condition 2022-07-13 08:38:55 -04:00
weslambert
d7eb8b9bcb Merge pull request #8281 from Security-Onion-Solutions/fix/soup_elasticsearch8_index_compatibility 
SOUP - Check for indices created by Elasticsearch 6
 2022-07-12 16:20:47 -04:00
weslambert
d0a0ca8458 Update exit code for ES checks 2022-07-12 16:15:44 -04:00
weslambert
4502182b53 Typo - Ensure Elasticsearch version 6 indices are checked 2022-07-12 15:35:46 -04:00
weslambert
0fc6f7b022 Add check for Elasticsearch 6 indices 2022-07-12 15:34:24 -04:00
m0duspwnens
ec451c19f8 move port bindings back under port bindings 2022-07-12 15:17:25 -04:00
weslambert
11d3ed36b7 Specify outputs for Elasticsearch and Kibana for Eval and Import Mode 
Add outputs for Elasticsearch and Kibana for Eval/Import Mode, since Logstash is not used in Eval Mode or Import Mode. Otherwise, logs from these inputs end up in a filebeat-prefixed index.
 2022-07-11 17:22:09 -04:00
weslambert
bd32394560 Add securitySolutionCases feature to ensure Cases are disabled by default 2022-07-11 16:38:05 -04:00