securityonion

mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-27 19:33:14 +01:00

Author	SHA1	Message	Date
Jorge Reyes	e6eecc93c8	Merge pull request #15012 from Security-Onion-Solutions/reyesj2/ea-alerter add configurable realert threshold per agent	2025-09-10 13:19:21 -05:00
reyesj2	fbdc0c4705	add configurable realert threshold per agent	2025-09-10 10:56:09 -05:00
Jorge Reyes	0aa556e375	Merge pull request #15009 from Security-Onion-Solutions/reyesj2/ea-alerter so-elastic-agent-monitor	2025-09-09 17:00:39 -05:00
reyesj2	29980ea958	offline threshold check	2025-09-09 15:39:55 -05:00
Josh Brower	f318a84c18	Update so-elastic-fleet-reset	2025-09-08 09:03:33 -04:00
reyesj2	915b9e7bd7	use logrotate	2025-09-05 09:22:44 -05:00
reyesj2	dfec29d18e	custom kquery	2025-09-04 15:37:28 -05:00
reyesj2	e26310d172	elastic agent offline alerter Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>	2025-09-02 17:00:03 -05:00
Josh Patterson	453c32df0d	handle - in hypervisor hostname	2025-08-04 15:25:26 -04:00
Josh Patterson	b2acf2f807	change logic for determining if vm was destroyed	2025-06-25 15:05:49 -04:00
Josh Patterson	19fb081fa0	additional log info	2025-06-13 15:21:38 -04:00
Josh Patterson	0b65021f75	exit 1 if vm is not destroyed	2025-06-12 16:49:56 -04:00
Josh Patterson	e5c0f8a46c	allow for dhcp4	2025-04-30 16:09:57 -04:00
Josh Patterson	445afca6ee	use vrt	2025-04-03 13:44:13 -04:00
Josh Patterson	3246176c0a	comments	2025-02-21 14:34:08 -05:00
Wes	ea4cf42913	Remove old YARA update script	2024-05-09 17:26:54 +00:00
Wes	8a34f5621c	Remove old YARA download script	2024-05-09 17:26:45 +00:00
Wes	fc66a54902	Add Strelka download and update scripts back	2024-03-08 16:26:14 +00:00
Corey Ogburn	858166bcae	WIP: Detections Changes Removed some strelka/yara rules from salt. Removed yara scripts for downloading and updating rules. This will be managed by SOC. Added a new compile_yara.py script. Added the strelka repos folder.	2024-01-30 15:43:51 -07:00
Josh Brower	6ff764e6a1	refactor for reinstall stability	2024-01-10 10:22:50 -05:00
Josh Brower	b058bc8c05	Move to non-destructive	2024-01-09 10:22:43 -05:00
Doug Burks	2c4d0a0d71	Update so-elastic-fleet-reset	2023-12-12 16:37:50 -05:00
Josh Brower	551f7831de	Add more clarity to message	2023-11-09 15:01:56 -05:00
Josh Brower	193c9d202e	Remove unneeded datastreams	2023-11-09 14:30:00 -05:00
Josh Brower	d1b6ef411b	remove state file	2023-11-09 09:01:57 -05:00
Jason Ertel	9231c8d2f2	replace reset sed with new script	2023-11-08 19:17:32 -05:00
Josh Brower	5388b92865	Refactor & cleanup	2023-11-02 10:20:32 -04:00
Josh Brower	c230cf4eb7	Formatting	2023-11-01 17:00:32 -04:00
Josh Brower	344dd7d61f	Add Elastic Fleet reset script	2023-11-01 16:50:20 -04:00
Mike Reeves	2caca92082	Raid refactor + yara and rule proxy	2023-08-03 17:11:43 -04:00
Mike Reeves	4939447764	Update so-yara-download	2023-07-31 10:16:37 -04:00
weslambert	5f1b467e64	Fix syntax for conditional	2023-07-11 13:37:50 -04:00
m0duspwnens	304830d2ee	remove old rules prior to copy	2023-07-11 10:20:04 -04:00
m0duspwnens	d7285d69a7	include *.yara	2023-07-11 09:59:13 -04:00
m0duspwnens	5069d1163c	only *.yar files	2023-07-10 14:36:34 -04:00
m0duspwnens	1f8b7bda89	fix output_dir var	2023-07-10 13:39:31 -04:00
m0duspwnens	1ac72e5b24	ensure /nsm/rules/yara directory exists	2023-07-10 11:10:37 -04:00
m0duspwnens	f4dc73a206	yara download and update	2023-07-10 09:42:37 -04:00
m0duspwnens	8be5082b60	yara scripts	2023-07-07 16:43:26 -04:00

39 Commits