CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-04-25 05:57:49 +02:00
Code Issues Packages Projects Releases Wiki Activity
7,095 Commits 40 Branches 125 Tags
e8553162a53fa61b55673aaa306ef28cfa09167c
Commit Graph

467 Commits

Author SHA1 Message Date
William Wernert 83c23dd5de [fix] Remove old got_root call 2020-10-27 11:20:39 -04:00
Mike Reeves 42e00514f5 Adding docker net setting 2020-10-27 11:09:14 -04:00
William Wernert e75f8ba257 [fix] Move root check to top of so-setup 2020-10-27 09:39:29 -04:00
Mike Reeves c538e5f85b Change whiptail logic 2020-10-19 16:40:56 -04:00
Mike Reeves c22e8c08a6 Change whiptail logic 2020-10-19 16:40:22 -04:00
Mike Reeves f893cf203f Change whiptail logic 2020-10-19 16:38:17 -04:00
Mike Reeves bbb825a207 Add cluster whiptail questions 2020-10-19 16:33:40 -04:00
Mike Reeves bab6b151ff Add cluster whiptail questions 2020-10-19 16:07:22 -04:00
m0duspwnens 1283708186 disable strelka by default for sensor nodes during setup 2020-10-14 09:36:59 -04:00
William Wernert 0cd80de2b3 [fix] Hard code NIDS to Suricata since Snort is not yet supported 2020-10-13 10:31:44 -04:00
Mike Reeves fd4bb81f29 Fix ZEEKLOGS pillar 2020-10-06 17:38:05 -04:00
m0duspwnens 748dc5ba91 logstash changes per https://github.com/Security-Onion-Solutions/securityonion/issues/1444 2020-10-05 14:10:05 -04:00
William Wernert 2a100c0dcc Add OLD_ prefix + only update rules if playbook enabled 2020-10-02 14:34:30 -04:00
William Wernert 20fd757847 Run playbook-ruleupdate after soctopus is running 2020-10-02 10:05:10 -04:00
William Wernert e98012ae2c Fix jinja and change state orrder in setup 2020-10-01 17:16:26 -04:00
William Wernert 6361c790e9 Move automation user create to separate script to run after playbook state 2020-09-30 17:02:02 -04:00
William Wernert 1ff20f7e27 Add warning about IP address changing for network/DHCP iso installs 2020-09-30 13:11:33 -04:00
William Wernert f77305e22f Generate zeeklogs sls earlier to avoid error 2020-09-28 16:45:06 -04:00
William Wernert f782299281 Remove preconfigured zeeklog + create it during setup 2020-09-28 15:12:36 -04:00
William Wernert 3b9de2b7ca Disable ipv6 earlier in setup 2020-09-28 09:14:45 -04:00
William Wernert 9acf610262 Also disable ipv6 for install 2020-09-25 16:10:26 -04:00
William Wernert d76a4b1359 Show welcome screen on both iso and network installs 2020-09-25 14:59:27 -04:00
Mike Reeves aca98e01f3 Set the path 2020-09-23 12:00:25 -04:00
Mike Reeves 112a0b426e Merge branch 'dev' into experimental 2020-09-13 14:54:00 -04:00
Mike Reeves 48d1d0c168 Strelkas Rules Update 2020-09-11 18:24:56 -04:00
Josh Patterson 2d508d9e57 Merge pull request #1328 from Security-Onion-Solutions/issue/1281 
Issue/1281
 2020-09-11 15:02:30 -04:00
m0duspwnens 5f7c270984 only allow strelka to run on nodes that are sensors 2020-09-11 10:22:12 -04:00
Mike Reeves 7ebf93fcb5 IDSTools Overhaul 2020-09-09 15:53:32 -04:00
Mike Reeves 951fe2ac69 Create repo 2020-09-01 11:26:33 -04:00
Mike Reeves 9cff7c1427 Enable airgap functions 2020-09-01 11:24:22 -04:00
Mike Reeves 643dab12d0 Enable airgap 2020-09-01 11:09:33 -04:00
Doug Burks 45c0a7ac77 Kernel messages can overwrite whiptail screen #812 
Kernel messages can overwrite whiptail screen #812
 2020-09-01 08:55:34 -04:00
Wes Lambert 6d14f2af96 Remove minio for now 2020-08-31 14:07:47 +00:00
Jason Ertel 3877706f20 Remove auto-start regardless of how setup was started 2020-08-28 09:10:35 -04:00
Mike Reeves e1a52a4921 Update core counts if heavy node or SA 2020-08-26 11:00:23 -04:00
m0duspwnens a7a0520cfe remove bonding for import node 2020-08-20 14:20:09 -04:00
Mike Reeves 4c246dc30d remove airgap install option until rc3 2020-08-19 14:40:31 -04:00
Jason Ertel 47ad3f65ef Only fail setup when the root mailbox is not empty for ISO installations, since network installations can't be sure if the error came from setup or something unrelated 2020-08-18 15:26:30 -04:00
weslambert eaad0487b5 Enable YARA rules by default 2020-08-18 14:54:11 -04:00
Jason Ertel 45d957566d Only show 'Waiting for TheHive to start up' status if setup is actually installing thehive 2020-08-18 11:36:29 -04:00
Mike Reeves eb6b2f6ca0 Merge pull request #1186 from Security-Onion-Solutions/feature/airgap 
Airgap round 1
 2020-08-14 15:41:36 -04:00
Mike Reeves bac58abf3e Airgap round 1 2020-08-14 15:32:33 -04:00
Josh Patterson 0ba0c16c38 Merge pull request #1185 from Security-Onion-Solutions/issue/1049 
Issue/1049
 2020-08-14 14:55:14 -04:00
weslambert c9d6293f8f Don't copy SSH key if automated install 2020-08-14 14:41:35 -04:00
m0duspwnens ff84640aad add pcap to import node, test not starting zeek docker by default 2020-08-14 13:59:23 -04:00
Mike Reeves 2a8e4e4eb2 Merge pull request #1182 from Security-Onion-Solutions/feature/airgap 
Feature/airgap
 2020-08-14 12:32:26 -04:00
Mike Reeves c64faacdbc Install registry if the image is local 2020-08-14 12:15:56 -04:00
Wes Lambert 7686a05f42 Set Strelka rules enabled by default for Eval Mode 2020-08-14 15:33:38 +00:00
Jason Ertel e6830e9cba Avoid reusing header function from so-common 2020-08-14 01:09:47 -04:00
Jason Ertel 3c113a7a89 Add system information at beginning of installation; provide logging functions to be used instead of echo commands 2020-08-13 17:29:50 -04:00