CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity
10,813 Commits 24 Branches 119 Tags
e3d32c7871253a39dc5ea76c3da9f4f7ec57023e
Commit Graph

10813 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Doug Burks
e3d32c7871 Improve default sysmon fields and add new network_connection fields 2023-01-04 07:38:18 -05:00
weslambert
20d6ce1ce9 Merge pull request #9501 from Security-Onion-Solutions/fix/elasticsearch_ingest_pipeline_rita_beacon 
Update RITA beacon parsing
 2023-01-03 11:13:55 -05:00
Wes
bd114eb1c4 Update RITA beacon parsing 2023-01-03 16:01:35 +00:00
Doug Burks
55c6fc422b Merge pull request #9497 from Security-Onion-Solutions/fix/sysmon-parsing-2.3 
FIX: Sysmon logs are missing event.category and event.dataset #8194
 2023-01-03 08:56:16 -05:00
doug
5d060f9832 update Sysmon File dashboard 2022-12-31 14:10:02 -05:00
doug
edcbfd17f5 update sysmon parser 2022-12-30 16:20:06 -05:00
Doug Burks
ff4850d9ce Merge pull request #9452 from Security-Onion-Solutions/feature/improve-dashboards-2.3 
FEATURE: Improve SOC Dashboards #9450 2.3
 2022-12-21 15:46:21 -05:00
Doug Burks
3e1a5b6329 Improve Strelka dashboard 2022-12-21 15:34:06 -05:00
Doug Burks
b1709f3ea3 Improve Firewall dashboard 2022-12-21 15:28:41 -05:00
Doug Burks
76a73ea35c Improve Software dashboard 2022-12-21 15:25:19 -05:00
Doug Burks
991a6ec43c Improve Intel dashboard 2022-12-21 15:19:54 -05:00
Doug Burks
e2c0607249 Improve FTP dashboard 2022-12-21 14:36:44 -05:00
Doug Burks
82c61e6bc9 improve NIDS Alerts dashboard 2022-12-21 14:32:05 -05:00
Doug Burks
37aa779095 Minor improvements 2022-12-21 13:14:38 -05:00
Doug Burks
9e631ad63d Improve SOC dashboards 2022-12-21 13:04:12 -05:00
Jason Ertel
fe6a55b58e Merge pull request #9393 from Security-Onion-Solutions/jertel/soup23200 
Move Kratos DB to /nsm
 2022-12-14 14:26:19 -05:00
Jason Ertel
87cebedc85 Backup the new Kratos location 2022-12-14 14:12:47 -05:00
Jason Ertel
e66c995b1f remove apparently unused reactor reference 2022-12-14 13:50:20 -05:00
Jason Ertel
e8a8f65ddc fix typo 2022-12-14 12:56:25 -05:00
Jason Ertel
a7a15117f0 Improve soup wording when the script itself needs updated 2022-12-14 12:03:47 -05:00
Jason Ertel
865ba4264b Stop backing up kratos since it now lives in /nsm. Ensure kratos is removed when re-installing. 2022-12-14 10:57:24 -05:00
Jason Ertel
6985b0ab27 Move kratos DB to /nsm 2022-12-14 10:50:24 -05:00
Mike Reeves
6e4912f759 Merge pull request #9385 from Security-Onion-Solutions/TOoSmOotH-patch-1 
Fix Highlander Config for Kibana
 2022-12-13 13:54:30 -05:00
Mike Reeves
b0d934daf7 Update config.map.jinja 2022-12-13 13:52:13 -05:00
Doug Burks
8e50868abd Merge pull request #9383 from Security-Onion-Solutions/fix/import-hyperlink 
FIX: so-import utilities should hyperlink to dashboards #9373
 2022-12-13 13:36:22 -05:00
Doug Burks
aa08803f03 FIX: so-import utilities should hyperlink to dashboards #9373 2022-12-13 13:23:27 -05:00
Doug Burks
bb346d531d FIX: so-import utilities should hyperlink to dashboards #9373 2022-12-13 13:22:53 -05:00
Doug Burks
6c057d0b0a FIX: so-import utilities should hyperlink to dashboards #9373 2022-12-13 12:43:54 -05:00
Doug Burks
47e43e53d9 FIX: so-import utilities should hyperlink to dashboards #9373 2022-12-13 12:43:10 -05:00
weslambert
a8456a4d65 Merge pull request #9369 from Security-Onion-Solutions/fix/sensoroni_analyzers_configuration_check 
Fix localfile analyzer 'file_path' check and add new list value verification function for helpers
 2022-12-13 11:47:10 -05:00
Wes
98a1fb96c2 Add test coverage for empty list value 2022-12-13 16:23:16 +00:00
Wes
874bbd2580 Remove extra whitespace 2022-12-13 16:02:46 +00:00
Wes
90dedbb841 Update tests to account for change in 'file_path' value verification 2022-12-13 15:58:35 +00:00
Wes
df5dd5fe28 Use new list verification function for 'file_path' 2022-12-13 15:57:43 +00:00
Wes
d5ab455485 Add new test for list value verification function 2022-12-13 15:56:58 +00:00
Wes
20b79b7ab0 Add new function to verify list value 2022-12-13 15:56:26 +00:00
Jason Ertel
56019f48ca Merge pull request #9358 from Security-Onion-Solutions/jertel/es853 
Upgrade ES to 8.5.3
 2022-12-12 13:45:56 -05:00
Jason Ertel
d7dd2d2ef8 Upgrade ES to 8.5.3 2022-12-12 13:43:28 -05:00
weslambert
3d431eaba9 Merge pull request #9341 from Security-Onion-Solutions/fix/analyzers_localfile_file_path 
Remove double quotes to fix issue with file path sourcing from 'localfile.py'
 2022-12-08 16:49:29 -05:00
weslambert
f85fb5ecf9 Remove double quotes to fix issue with file path sourcing from 'localfile.py' 2022-12-08 16:35:24 -05:00
Jason Ertel
1716cb0297 Merge pull request #9333 from Security-Onion-Solutions/jertel/mergedev 
Jertel/mergedev
 2022-12-08 09:17:20 -05:00
Jason Ertel
0ec366f075 clear hotfix 2022-12-08 09:15:41 -05:00
Jason Ertel
e9b9e128c6 Merge branch 'master' into jertel/mergedev 2022-12-08 09:14:08 -05:00
Mike Reeves
ef15de130a Merge pull request #9329 from Security-Onion-Solutions/hotfix/2.3.190 
Hotfix/2.3.190
2.3.190-20221207 		2022-12-08 09:08:18 -05:00
Mike Reeves
e975ee0a8e Merge pull request #9328 from Security-Onion-Solutions/mike4 
2.3.190 hotfix
 2022-12-07 16:22:05 -05:00
Mike Reeves
da94ddca13 2.3.190 hotfix 2022-12-07 16:17:57 -05:00
Mike Reeves
6e94751c65 Merge pull request #9327 from Security-Onion-Solutions/jertel/surifilecheck 
Switch back to older style redirect due to incompatibility with Ub 18
 2022-12-07 14:10:30 -05:00
Jason Ertel
d48d473f43 Switch back to older style redirect due to incompatibility with Ub 18 2022-12-07 14:06:24 -05:00
Jason Ertel
cff5a83ad5 Merge pull request #9324 from Security-Onion-Solutions/jertel/surifilecheck 
Use original style due to pgrep conflict with cron
 2022-12-07 12:06:26 -05:00
Jason Ertel
225b7e359c Use original style due to pgrep conflict with cron 2022-12-07 11:53:42 -05:00