CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-08 18:22:47 +01:00
Code Issues Packages Projects Releases Wiki Activity
7,751 Commits 24 Branches 119 Tags
ebb45a866bb5e077c4d6cef2078b51badb992b1f
Commit Graph

930 Commits

Author SHA1 Message Date
William Wernert
ac6f1df86f [fix] Only check log_size_limit on .2X -> .30 
* Since we're showing a message in the middle of soup, wait for keypress if it's shown
 2021-02-24 12:35:17 -05:00
William Wernert
4507a89d95 tar arg fix (-x -> -z) 2021-02-24 12:24:54 -05:00
William Wernert
2be7ccac33 Add function to notify user that log_size_limit may be incorrect 2021-02-24 12:24:32 -05:00
Mike Reeves
1d45472b48 Fix Strelka Rule updates, repo fix 2021-02-24 11:30:43 -05:00
Jason Ertel
050058a959 Add retry support for 'docker pull' command 2021-02-24 09:34:14 -05:00
Mike Reeves
00deab9305 Merge pull request #3100 from Security-Onion-Solutions/kilo 
Add so-preflight + usage to so-monitor-add, fix managersearch missing from so-rule
 2021-02-23 17:32:41 -05:00
Mike Reeves
fa6fd20ff9 Merge pull request #3088 from Security-Onion-Solutions/soupairgap 
Syn the latest rules on an airgap install
 2021-02-23 17:31:29 -05:00
Josh Brower
a7eb3cd38d Add so-playbook-sigma-refresh 2021-02-23 15:43:09 -05:00
William Wernert
a361ca0e19 [fix] Add managersearch node type to so-rule pillar search 2021-02-23 14:15:17 -05:00
William Wernert
9cf15cdae5 [fix] Reword so-monitor-add help message 2021-02-23 13:55:18 -05:00
William Wernert
d5477b4721 Add usage/help message to so-monitor-add 2021-02-23 13:48:54 -05:00
Mike Reeves
186710964b Fix Airgap Rule Path 2021-02-23 13:07:23 -05:00
Mike Reeves
3b32eb539f Copy latest rules when using airgaps 2021-02-23 11:21:23 -05:00
William Wernert
fad87a8789 Fix function name (.20 -> .2X) 2021-02-23 08:51:44 -05:00
William Wernert
9287209750 Merge branch 'soup2.3.30' into feature/so-rules 
# Conflicts:
#	salt/common/tools/sbin/soup
 2021-02-22 16:07:15 -05:00
William Wernert
982967fdde Merge branch 'dev' into feature/so-rules 2021-02-22 16:01:48 -05:00
William Wernert
fb3af255d9 Add more info to apply messaging 2021-02-22 15:50:07 -05:00
William Wernert
3e3c923ab9 Arrange missing pillar error message better 2021-02-22 15:44:29 -05:00
William Wernert
b00cc88801 [fix] Unreverse apply prompt actions 2021-02-22 15:43:56 -05:00
William Wernert
e9b85337ff [fix] Only prompt if entry doesn't exist, deep compare arrays 2021-02-22 15:41:09 -05:00
William Wernert
fd33a6cebe Rename script, prompt user to apply if they didn't pass --apply 2021-02-22 15:32:18 -05:00
William Wernert
cdf766eeae explicitely -> explicitly 2021-02-22 14:30:26 -05:00
William Wernert
8fc82fa3ef Fix minion pillar directory 2021-02-22 14:27:22 -05:00
Mike Reeves
6ed1cc3875 Add Soup Functions 2021-02-22 14:02:37 -05:00
Mike Reeves
d5069d12cf Merge pull request #3071 from Security-Onion-Solutions/delta 
Add acng to import installs for consistency
 2021-02-22 11:34:23 -05:00
William Wernert
e65c9e5c7c Don't expect apply arg at beginning of command 2021-02-22 11:29:30 -05:00
William Wernert
4bcb7403a9 Add apply option to end of command 2021-02-22 11:27:03 -05:00
William Wernert
bef3a6921c [fix] SID wildcards are not parsed by idstools, remove 2021-02-22 11:12:02 -05:00
William Wernert
f7bef9200b [fix] Only look for manager-type pillars 
* SID disabling is only managed globally for now, so don't give the option to edit a different pillar
 2021-02-22 10:38:53 -05:00
William Wernert
bb6f3107bc [fix] idstools can run on an import node as well 2021-02-22 10:29:40 -05:00
William Wernert
f2a1e89633 Merge branch 'dev' into feature/so-rules 2021-02-22 10:03:14 -05:00
William Wernert
abae673568 Update help text to reflect arg requirement changes 2021-02-22 10:00:29 -05:00
Jason Ertel
747d62dae5 Add acng to import installs for consistency 2021-02-22 09:44:24 -05:00
Josh Brower
046cc0fbb0 Merge pull request #3052 from Security-Onion-Solutions/feature/sigma-tweaks 
Feature/sigma tweaks
 2021-02-19 15:16:34 -05:00
Josh Brower
8c69e19419 Add sigma refresh script 2021-02-19 15:14:37 -05:00
Josh Brower
2a324eac32 Add sigma refresh script 2021-02-19 15:12:55 -05:00
William Wernert
c73970620d [fix] Correct indent 2021-02-19 14:38:43 -05:00
William Wernert
34174a3290 Print relevant help if no/partial command passed 2021-02-19 14:34:32 -05:00
William Wernert
4689e32ce4 Add sed for curly braces in minion pillars to soup 2021-02-19 10:18:06 -05:00
William Wernert
2184c6d59f [fix] Create dict value if it doesn't exist 2021-02-19 09:31:22 -05:00
William Wernert
9183c0a92c [feat] Initial so-rules script 
* Quote curly braces in minion pillar, need to add sed function in soup
 2021-02-19 09:24:12 -05:00
m0duspwnens
7099ed4bf5 delete many backup files 2021-02-16 11:55:49 -05:00
m0duspwnens
1ccc5480e1 remove oldest backup 2021-02-16 11:40:45 -05:00
Mike Reeves
5043b970ef Fix tar syntax 2021-02-06 19:14:44 -05:00
Mike Reeves
bf79c92456 Lock down Backups folder permissions 2021-02-05 22:31:08 -05:00
Jason Ertel
e427f8178d Implement locking to so-firewall script 2021-02-04 16:06:11 -05:00
Jason Ertel
a13b31fbcc Merge branch 'dev' into automation/ami 2021-02-04 16:05:39 -05:00
Jason Ertel
6b54a29ac7 Remove 'new user' references from so-user 2021-02-03 15:23:58 -05:00
William Wernert
8d01b87ab5 Merge branch 'dev' into foxtrot 2021-02-01 13:56:33 -05:00
William Wernert
daebe90b6e [fix] fix retry command handling 
* use eval "$cmd" to handle strings correctly
* add-apt-repo doesn't need dpkg lock so don't use retry for those lines
 2021-02-01 12:06:19 -05:00