CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity
12,296 Commits 24 Branches 119 Tags
e5117a343d9b10b28cb7c4aec4f7b1b068d2ad00
Commit Graph

12296 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Wes
e5117a343d Change description 2023-05-30 17:10:17 +00:00
Wes
b9d692eb0e Remove default value 2023-05-30 17:08:52 +00:00
Wes
36a7f54160 Add extension 2023-05-30 16:46:38 +00:00
Wes
9035fa3037 Don't load Elasticsearch integration 2023-05-30 15:46:00 +00:00
Wes
b4b87e5620 Only provide JSON output 2023-05-30 15:43:31 +00:00
Wes
97c53d70a4 Remove integrations 2023-05-30 14:05:40 +00:00
Wes
53b4f7bd5c Add spacing 2023-05-30 14:05:11 +00:00
Wes
79014a53ec Remove extra lines 2023-05-30 12:35:32 +00:00
Wes
e910f04beb Add default description and Zeek log exclusions for Elastic Fleet 2023-05-30 03:10:52 +00:00
Wes
ef5b63337b Add check for integration existence and integration update functionality 2023-05-30 02:58:00 +00:00
Wes
799e92e595 Add files 2023-05-30 02:56:23 +00:00
Wes
c835c523a9 Elastic Fleet integration update improvements 2023-05-30 02:54:39 +00:00
Josh Patterson
a01704a1d7 Merge pull request #10427 from Security-Onion-Solutions/issue/10229 
Issue/10229
 2023-05-24 13:23:29 -04:00
m0duspwnens
5c00655ad0 Merge remote-tracking branch 'origin/2.4/dev' into issue/10229 2023-05-24 12:22:52 -04:00
m0duspwnens
67a608ea56 adjust suricata defaults 2023-05-24 12:22:42 -04:00
Josh Brower
01d983fc00 Merge pull request #10426 from Security-Onion-Solutions/2.4/fleet-punchlist 
2.4/fleet punchlist
 2023-05-24 12:15:50 -04:00
Josh Brower
f156573f8d Merge remote-tracking branch 'remotes/origin/2.4/dev' into 2.4/fleet-punchlist 2023-05-24 11:28:38 -04:00
Josh Brower
b3e0e68896 Change Fleet Host URL API 2023-05-24 11:27:41 -04:00
Jason Ertel
aad08a830b Merge pull request #10425 from Security-Onion-Solutions/kilo 
fix malformed alert templates
 2023-05-24 10:21:21 -04:00
Jason Ertel
d9a9c8738c fix malformed alert templates 2023-05-24 10:17:59 -04:00
Josh Brower
4f72fca2d7 Merge remote-tracking branch 'remotes/origin/2.4/dev' into 2.4/fleet-punchlist 2023-05-24 09:55:29 -04:00
Josh Patterson
1dc426b8ce Merge pull request #10422 from Security-Onion-Solutions/issue/10229 
fix suricata sostatus
 2023-05-24 09:54:14 -04:00
m0duspwnens
8995012c80 fix suricata sostatus 2023-05-24 09:52:07 -04:00
Josh Brower
9c6365aa2f Merge remote-tracking branch 'remotes/origin/2.4/dev' into 2.4/fleet-punchlist 2023-05-24 09:03:57 -04:00
Josh Patterson
6e4c4febfb Merge pull request #10421 from Security-Onion-Solutions/issue/10229 
rename state to resolve conflicting / duplicate state ids
 2023-05-24 09:02:47 -04:00
m0duspwnens
732d2aadf8 rename state to resolve conflicting / duplicate state ids 2023-05-24 08:58:43 -04:00
Josh Brower
e1c361e555 Fix variable 2023-05-23 16:50:40 -04:00
Josh Brower
502277b1b7 Hash check, use url base 2023-05-23 16:38:37 -04:00
bryant-treacle
57f5a22f0f Merge pull request #10396 from Security-Onion-Solutions/2.4/Influxdb_alerts 
2.4/influxdb alerts
 2023-05-23 14:14:48 -04:00
Josh Patterson
4b18a0e758 Merge pull request #10417 from Security-Onion-Solutions/issue/10229 
Issue/10229
 2023-05-23 13:47:48 -04:00
Josh Brower
f6a9a764de Merge pull request #10416 from Security-Onion-Solutions/2.4/smallfixes 
2.4/EQL
 2023-05-23 13:28:11 -04:00
m0duspwnens
e65214b097 Merge remote-tracking branch 'origin/2.4/dev' into issue/10229 2023-05-23 12:10:29 -04:00
m0duspwnens
cc47f9a595 fix suricata thresholding 2023-05-23 11:16:32 -04:00
m0duspwnens
eb633be437 enable/disable suricata in ui. assign threads properly 2023-05-22 17:48:22 -04:00
Josh Brower
df0dc2e4d1 Merge remote-tracking branch 'remotes/origin/2.4/dev' into 2.4/smallfixes 2023-05-22 16:02:30 -04:00
Josh Brower
766f4dd661 Add Elastic Defend Integration 2023-05-22 16:02:08 -04:00
Jason Ertel
f53fb69ffb Merge pull request #10407 from Security-Onion-Solutions/kilo 
Ignore Synchronize button clicks when an active salt job is running and another is already in queue
 2023-05-22 14:59:42 -04:00
Jason Ertel
ba0ec18a33 Ignore Synchronize button clicks when an active salt job is running and another is already in queue 2023-05-22 14:52:07 -04:00
weslambert
79182cecfd Merge pull request #10397 from Security-Onion-Solutions/fix/elastic_exclude_zeek_reporter_log 
Exclude Zeek's reporter.log from being picked up by Elastic Agent
 2023-05-22 07:56:54 -04:00
weslambert
8cf82c4b6a Merge pull request #10398 from Security-Onion-Solutions/fix/elasticsearch_ingest_dns_query 
Check if 'dns.query' is null
 2023-05-22 07:56:44 -04:00
weslambert
78d4586033 Merge pull request #10399 from Security-Onion-Solutions/fix/elastalert_playbook_alerter 
Update 'url' to use 'es_hosts'
 2023-05-22 07:56:31 -04:00
Jason Ertel
02cf1074f2 Merge pull request #10400 from Security-Onion-Solutions/kilo 
use the same requests version that's already packaged with the analyzer
 2023-05-20 08:45:21 -04:00
Jason Ertel
a881cab469 use the same requests version that's already packaged with the analyzer 2023-05-19 23:54:30 -04:00
weslambert
00bd93c026 Update 'url' to use 'es_hosts' 2023-05-19 17:14:13 -04:00
weslambert
2c10ad7eec Check if 'dns.query' is null 2023-05-19 15:50:33 -04:00
weslambert
167051af28 Exclude Zeek's reporter.log from being picked up by Elastic Agent 2023-05-19 15:44:09 -04:00
weslambert
eb9c5e9af0 Merge pull request #10307 from Security-Onion-Solutions/fix/elastic_fleet_ignore_zeek_logs 
Don't read from 'known_hosts.log', 'known_services.log', or 'ntp.log'
 2023-05-19 15:09:15 -04:00
Jason Ertel
2f942a3e37 Merge pull request #10393 from Security-Onion-Solutions/kilo 
fix lib dependency issue with whoisit
 2023-05-19 14:34:42 -04:00
Jason Ertel
03f97b309a fix lib dependency issue with whoisit 2023-05-19 14:18:19 -04:00
weslambert
c6a962a46b Merge pull request #10392 from Security-Onion-Solutions/fix/elastalert_index 
Change Elastalert writeback index name from 'elastalert_status' to 'elastalert'
 2023-05-19 13:31:29 -04:00