CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-01-13 19:51:23 +01:00
Code Issues Packages Projects Releases Wiki Activity
5,631 Commits 22 Branches 120 Tags
e2ee0db727e68b86113694dafd40c83b398aa56c
Commit Graph

3225 Commits

Author SHA1 Message Date
OmerTirosh
e2ee0db727 Ignore failure for rename processor 
Ignore failure for winlog.event_data.SubjectUserName rename processor.
For some event ids (for example 4688), this field already been added in winlogbeat JS processor.
Therefor, elastic throw [user.name] already exists error.
 2020-11-24 17:21:47 +02:00
m0duspwnens
0d3754200f fix issue with proper salt.minion state execution for ubuntu 2020-11-20 14:27:07 -05:00
Mike Reeves
316a1c02f1 Update soup to display what its doing 2020-11-19 15:19:50 -05:00
m0duspwnens
cdc7a5cc7c kill salt process with soup and dont restart salt-minion service when salt upgrade 2020-11-19 15:17:11 -05:00
m0duspwnens
2a3951ab36 change typo on minon to minion 2020-11-19 15:08:08 -05:00
Mike Reeves
3be1c9ae32 Clean up 2.3.1 dockers 2020-11-19 09:58:08 -05:00
Josh Brower
d3065005ca playbook mysqluser 2020-11-18 20:48:02 -05:00
m0duspwnens
d68726f6ef upgrade from salt 3002.1 to salt 3002.2 2020-11-18 18:25:02 -05:00
Josh Patterson
f81da406da Merge pull request #1983 from Security-Onion-Solutions/soup-verify-salt 
dont highstate, just restart salt-minion
 2020-11-18 17:40:36 -05:00
m0duspwnens
afd466cd2b dont highstate, just restart salt-minion 2020-11-18 17:27:25 -05:00
Josh Patterson
6d228a836f Merge pull request #1982 from Security-Onion-Solutions/soup-verify-salt 
add -X so bootstrap doesnt try to start salt-minion during soup
 2020-11-18 16:45:05 -05:00
m0duspwnens
1805effdc0 add -X so bootstrap doesnt try to start salt-minion during soup 2020-11-18 16:32:53 -05:00
Jason Ertel
1170b04a87 Update changes for 2.3.10 2020-11-18 16:18:00 -05:00
m0duspwnens
6cc9d1c076 add back -s 2020-11-18 15:49:30 -05:00
Josh Brower
3d0003555a Merge pull request #1980 from Security-Onion-Solutions/bugfix/soup-regen-osquery 
SOUP - Regen Osquery Packages
 2020-11-18 14:56:23 -05:00
Josh Brower
0830f63c4e SOUP - Regen Osquery Packages 2020-11-18 14:55:14 -05:00
m0duspwnens
af6e14dc6f highstate , merge with dev fix conflict 2020-11-18 14:47:40 -05:00
m0duspwnens
ceef07b74b remove pkill 2020-11-18 14:00:01 -05:00
weslambert
6b4af30fc1 Change clean_removed to true cleanup tracking of Zeek logs removed from current 2020-11-18 13:47:32 -05:00
m0duspwnens
1e2b404836 remove -s 2020-11-18 13:29:42 -05:00
m0duspwnens
276c011a4f queue state and change upgrade command https://github.com/Security-Onion-Solutions/securityonion/issues/1961 2020-11-18 13:22:11 -05:00
Jason Ertel
57e9f69c97 Add new so-ip-update script (Work in progress) 2020-11-18 12:35:38 -05:00
m0duspwnens
d0e7b5b55a only ensure salt-minion service is running if salt is on right verison https://github.com/Security-Onion-Solutions/securityonion/issues/1961 2020-11-18 12:32:21 -05:00
m0duspwnens
ce70e0a61f changes to upgradecommand https://github.com/Security-Onion-Solutions/securityonion/issues/1961 2020-11-18 11:51:28 -05:00
m0duspwnens
bddc3d6df9 kill all salt-minion again since they hang and redirect highstate to a logfile 2020-11-18 10:40:23 -05:00
m0duspwnens
4bb1ad9799 dont restart or kill salt-minon in upgrade command https://github.com/Security-Onion-Solutions/securityonion/issues/1961 2020-11-18 09:29:09 -05:00
William Wernert
bc0c395b7f Merge pull request #1963 from Security-Onion-Solutions/feature/rem-so-setup-perm-entry 
Feature/rem so-setup perm entry
 2020-11-18 09:12:25 -05:00
m0duspwnens
67dc71ab49 Merge remote-tracking branch 'remotes/origin/dev' into soup-verify-salt 2020-11-18 08:36:23 -05:00
m0duspwnens
c95619d335 change upgradecommand order https://github.com/Security-Onion-Solutions/securityonion/issues/1961 2020-11-18 08:35:56 -05:00
Jason Ertel
bfbc0f354c Only default to logging out to tty if tty exists as a character device 2020-11-17 22:48:40 -05:00
m0duspwnens
5c6e9e0e3a run a highstate and let that start the salt-minion back up https://github.com/Security-Onion-Solutions/securityonion/issues/1961 2020-11-17 19:40:42 -05:00
m0duspwnens
7291d64e82 pkill salt-minion before restartiong salt-minion service https://github.com/Security-Onion-Solutions/securityonion/issues/1961 2020-11-17 18:38:01 -05:00
m0duspwnens
695cce0b50 upgrad command changes https://github.com/Security-Onion-Solutions/securityonion/issues/1961 2020-11-17 17:54:56 -05:00
m0duspwnens
42126f125b change verison check to != 2020-11-17 17:00:59 -05:00
m0duspwnens
2bfc48be35 change check of salt was upgraded during soup for ubuntu and centos 2020-11-17 16:31:11 -05:00
m0duspwnens
7d1cf56160 change check of salt was upgraded during soup for ubuntu and centos 2020-11-17 16:29:35 -05:00
m0duspwnens
1fd2196dd5 fix check of salt was upgraded during soup for ubuntu and centos 2020-11-17 16:18:50 -05:00
m0duspwnens
65b84f1bd7 Merge remote-tracking branch 'remotes/origin/dev' into soup-verify-salt 2020-11-17 16:09:47 -05:00
m0duspwnens
fcfd3e3758 change location yum/apt verison locks https://github.com/Security-Onion-Solutions/securityonion/issues/1961 2020-11-17 16:09:30 -05:00
William Wernert
ee3708a428 [fix] Move sudoers check in soup to correct place + fix styling issue 2020-11-17 15:44:20 -05:00
William Wernert
b146700303 [feat] Remove so-setup permission from sudoers file after iso setup 
Closes #1701
 2020-11-17 15:36:25 -05:00
Jason Ertel
1ec8b52353 Replace scan.exiftool.* fields due to reduction in strelka field counts 2020-11-17 15:12:06 -05:00
m0duspwnens
e162be2e1d change salt upgrade command https://github.com/Security-Onion-Solutions/securityonion/issues/1961 2020-11-17 14:29:39 -05:00
m0duspwnens
4f4f64a47d Merge remote-tracking branch 'remotes/origin/dev' into soup-verify-salt 2020-11-17 13:16:18 -05:00
m0duspwnens
4cd1086efa new way for soup to install and resart salt for upgrade 2020-11-17 13:15:55 -05:00
Mike Reeves
2184c3b8ee Revert "The Hive ES update" 
This reverts commit 88c2ee0d36.
 2020-11-17 12:51:42 -05:00
Mike Reeves
65d28f98b5 Revert "The Hive ES Update" 
This reverts commit f31d459a24.
 2020-11-17 12:51:13 -05:00
Mike Reeves
f31d459a24 The Hive ES Update 2020-11-17 11:59:03 -05:00
Mike Reeves
88c2ee0d36 The Hive ES update 2020-11-17 11:58:22 -05:00
Jason Ertel
d13733e716 Queue the registry state in case a highstate is already active 2020-11-17 09:59:09 -05:00