CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-04-25 14:07:49 +02:00
Code Issues Packages Projects Releases Wiki Activity
11,537 Commits 40 Branches 125 Tags
ed8a23cedc535dd3f8b4dbf7ea57b0332cd24ac6
Commit Graph

439 Commits

Author SHA1 Message Date
Josh Brower 0e76447d11 osquery ingest - initial support 2020-04-01 10:17:36 -04:00
Wes Lambert 33512eca2a template and kibana config updates 2020-04-01 13:14:13 +00:00
weslambert ece7e139f2 Add message 2020-03-23 23:39:15 -04:00
Wes Lambert 7a71a2c459 removing mapping types 2020-03-18 20:17:57 +00:00
Wes Lambert 5072095eeb removing mapping types 2020-03-18 20:15:10 +00:00
Wes Lambert fcc5c306ea fix index names 2020-03-18 16:42:06 +00:00
m0duspwnens 504d22de83 fix issue lsetcsync if node doesnt have templates defined 2020-03-18 10:49:51 -04:00
Wes Lambert 29a4932785 fix strelka pattern 2020-03-18 13:47:22 +00:00
Wes Lambert 70f109af86 elastic changes 2020-03-17 21:29:28 +00:00
Wes Lambert 5ed3dbff39 Fix template name 2020-03-17 15:15:01 +00:00
Wes Lambert d48c2723ba modify default templates 2020-03-14 12:02:52 +00:00
Wes Lambert 9fb3a47358 modify default templates 2020-03-14 12:02:42 +00:00
Wes Lambert f9e4d218ec update config 2020-03-11 12:13:11 +00:00
Wes Lambert 70e78a0642 add renamed templates 2020-03-11 12:12:32 +00:00
weslambert 14dfec5365 Change to bro template 2020-03-09 09:18:57 -04:00
Josh Patterson 79210a07da Merge pull request #396 from Security-Onion-Solutions/issue/326 
fix issue with salt not removing pipeline configs or templates if removed from pillar
 2020-03-04 10:14:57 -05:00
m0duspwnens 28c4bb4b22 fix issue with salt not removing pipeline configs or templates if removed from pillar 2020-03-04 10:12:28 -05:00
Wes Lambert bbebc4fc9b Add src/dst objects and Bro template 2020-03-02 20:02:39 +00:00
Wes Lambert 9eb5a9be3a Begin switch to ECS for Suricata 2020-03-02 19:07:40 +00:00
m0duspwnens 847e6d2d13 create pipelines directory 2020-02-26 16:38:47 -05:00
m0duspwnens a3e48f0315 logstash cleanup and conflict resolution - https://github.com/Security-Onion-Solutions/securityonion-saltstack/issues/326 2020-02-26 10:58:39 -05:00
m0duspwnens 54e4c40c2a logstash cleanup and conflict resolution - https://github.com/Security-Onion-Solutions/securityonion-saltstack/issues/326 2020-02-26 10:26:50 -05:00
m0duspwnens 0c4973ad77 pillarize logstash config,parsers,templates and docker port bindings 2020-02-25 17:44:32 -05:00
Wes Lambert 5d81bf3204 remove source 2020-02-25 12:36:35 +00:00
m0duspwnens e2ccebd2fa resolve conflicts 2020-02-20 17:00:15 -05:00
m0duspwnens 2b34bdece9 logstash cleanup - https://github.com/Security-Onion-Solutions/securityonion-saltstack/issues/326 2020-02-20 16:47:40 -05:00
weslambert fc9786e541 Change template name 2020-02-20 11:46:15 -05:00
weslambert 6945cbb843 Change template name 2020-02-20 11:45:50 -05:00
weslambert 30a1197b44 Rename template to avoid duplication under different name 2020-02-20 11:20:06 -05:00
m0duspwnens 7604853c59 fix logic for logstash pipelines 2020-02-19 16:02:24 -05:00
m0duspwnens 54e94676fe fix pipelines variable 2020-02-19 14:59:39 -05:00
m0duspwnens 408b3695e0 add back deleted states to logstash state 2020-02-19 14:12:18 -05:00
m0duspwnens c396342aea fix syntax error with new ls pipeline config 2020-02-19 13:46:52 -05:00
m0duspwnens 6a7580404d directory cleanup - logstash pipeline rework 2020-02-19 13:08:14 -05:00
Wes Lambert 50fcf8307f Add initia/basic Strelka config 2020-02-18 02:46:31 +00:00
Wes Lambert 64166f96a1 Ensure correct template is used 2020-02-17 21:15:11 +00:00
Wes Lambert 8d9ff4428b Update Strelka LS config 2020-02-17 21:12:25 +00:00
Wes Lambert 11319362c4 Fix Wazuh archives path 2020-02-13 18:47:45 +00:00
Wes Lambert 41db668af6 update Wazuh data paths 2020-02-11 22:16:25 +00:00
Wes Lambert 0994f598c7 update Wazuh paths 2020-02-11 13:45:28 +00:00
Mike Reeves 521de8f154 Update 9997_output_helix.conf 2020-02-10 22:47:11 -05:00
Mike Reeves 6ceb127c46 Fix Wazuh paths for logstash/fb 2020-02-07 08:52:09 -05:00
Wes Lambert ec11b9ea25 Remove Redis config from eval PL 2020-02-05 20:34:32 +00:00
m0duspwnens 799cf32265 fix logstash for so-helix role 2020-02-05 14:45:07 -05:00
Josh Brower c1dd26d97e Logstash EVAL pipeline fix - osquery 2020-02-05 08:12:08 -05:00
m0duspwnens 6b580eaba9 evalmode fix 2020-01-30 17:54:24 -05:00
m0duspwnens 68e7dcfba0 evalfix 2020-01-30 17:38:48 -05:00
m0duspwnens 88967c2512 evalfix 2020-01-30 17:36:38 -05:00
m0duspwnens d94065fa00 evalfix 2020-01-30 17:09:06 -05:00
Mike Reeves 1e0d0d74e1 Fix Eval Event Pickup x2 2020-01-30 16:16:21 -05:00