CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-21 16:33:08 +01:00
Code Issues Packages Projects Releases Wiki Activity
6,020 Commits 18 Branches 120 Tags
fa06a38a3b9589cd8919fb7ae9f37ffeabe589e2
Commit Graph

6020 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
William Wernert
fa06a38a3b [refactor] Remove duplicate function 2021-01-07 10:36:01 -05:00
Wes Lambert
7f64d57111 Reserve port for Wazuh API and check if port is already in use 2021-01-06 14:37:28 -05:00
Wes Lambert
e7db1a99bd Set @timestamp to winlog.systemTime 2021-01-06 14:37:28 -05:00
Mike Reeves
7d25e8a08b Remove ERSPAN so log doesn't show a warning 2021-01-06 14:37:28 -05:00
Masaya-A
d37023e0f5 Make yum removing unneeded packages 
Reference: https://www.stigviewer.com/stig/red_hat_enterprise_linux_7/2020-09-03/finding/V-204452
 2021-01-06 14:37:28 -05:00
William Wernert
9d8fb79d9f [feat] Reorder network-only prompt 2021-01-06 14:37:27 -05:00
weslambert
c864cc607f Remove multiple old so-yara-update cron jobs, if needed 2021-01-06 14:37:27 -05:00
William Wernert
80a3d8dcf8 [fix] Fix automation compatibility 2021-01-06 14:37:27 -05:00
William Wernert
ac35a345ff [fix] Don't prompt to only set up network and then skip if network was previously configured 2021-01-06 14:37:27 -05:00
weslambert
958635b012 Remove old Strelka cron job 2021-01-06 14:37:27 -05:00
William Wernert
6ba11f835d [fix] Remove condition for stopping SOC, since the parent condition covers what's tested 2021-01-06 14:37:27 -05:00
Jason Ertel
1cc8a78aa5 Only stop SOC if is_manager or is_import 2021-01-06 14:37:27 -05:00
Jason Ertel
7dcd934269 so-fleet-setup doesn't need an interactive terminal to run, remove 'it' 2021-01-06 14:37:27 -05:00
Jason Ertel
bedbd39b82 tcpreplay doesn't need an interactive terminal to run, remove 'it' 2021-01-06 14:37:27 -05:00
Jason Ertel
7d97e3590c Redirect tcpreplay init output to file 2021-01-06 14:37:27 -05:00
Jason Ertel
bdbc637852 Stop SOC prior to opening the firewall for analysts, this ensures no outside requests can be processed prior to the server rebooting 2021-01-06 14:37:27 -05:00
Jason Ertel
10d04f760d Use manager internal IP for intra-service comms 2021-01-06 14:37:26 -05:00
Jason Ertel
ebb0e615b9 Fix script typo to correctly run the so-test 2021-01-06 14:37:26 -05:00
Jason Ertel
f20feabda2 Reboot to ensure thehive falls in line before kicking off the test 2021-01-06 14:37:26 -05:00
Jason Ertel
9b40318bfe Ensure so-test is logged 2021-01-06 14:37:26 -05:00
Jason Ertel
fc44474519 Add eval automation 2021-01-06 14:37:26 -05:00
Jason Ertel
229657f7d2 Use AMI's public IP for external access 2021-01-06 14:37:26 -05:00
Jason Ertel
fb28faa4e3 Monitor interface will not always be bond0 - pull correct value from pillar; Replay test data after automated test installations complete. 2021-01-06 14:37:26 -05:00
William Wernert
9d674d6d3a [feat] Add so-monitor-add script 2021-01-04 13:35:14 -05:00
William Wernert
f8c7413b15 [fix] Move is_iso variable assignment up 2021-01-04 10:37:07 -05:00
William Wernert
0fa001ed92 [fix] Add more logic to network-only process 2021-01-04 09:27:22 -05:00
William Wernert
3f3fe78322 [fix] Correct reversed logic 2020-12-30 14:01:20 -05:00
William Wernert
0a57b78900 [feat] Add option to set up only network on an iso 2020-12-29 12:52:21 -05:00
William Wernert
afe40fe87b Merge pull request #2478 from Security-Onion-Solutions/feature/wait-for-apt 
Feature/wait for apt
 2020-12-28 18:29:20 -05:00
William Wernert
e9a6155e44 Merge branch 'dev' into feature/wait-for-apt 2020-12-28 18:26:38 -05:00
Jason Ertel
deb38844ba Correct hive init urls 2020-12-28 16:20:33 -05:00
William Wernert
97466957a7 [fix] Fix text printed to whiptail progress bar 2020-12-28 15:06:03 -05:00
William Wernert
cdb6dfcea0 [fix][wip] Fix whiptail output 2020-12-28 14:55:15 -05:00
William Wernert
5059373485 [fix] Change text printed to whiptail progress bar 2020-12-28 14:43:33 -05:00
William Wernert
af62e64852 [fix] Message changes 2020-12-28 14:40:17 -05:00
William Wernert
b03408df6b [fix] Add missing function 2020-12-28 14:30:34 -05:00
William Wernert
5836d22525 [fix] Change text printed to whiptail progress bar 2020-12-28 14:29:03 -05:00
William Wernert
a4239d7fe4 [fix] Clarify why dpkg lock is needed 2020-12-28 14:20:37 -05:00
William Wernert
5bd15b91ea [fix] Message formatting changes 2020-12-28 14:18:43 -05:00
William Wernert
a0533dd6b5 [feat] Increase retry_count, decrease wait time, change wording 2020-12-28 14:17:27 -05:00
William Wernert
f7a60a011b [fix] Message formatting 2020-12-28 14:06:33 -05:00
William Wernert
17160dcdbe [fix] Don't repeat fail message on last attempt 2020-12-28 14:02:46 -05:00
William Wernert
0dd80a664f [fix] Only call progress callback if arg passed 2020-12-28 14:00:09 -05:00
William Wernert
1e0525b1ad [fix] Only call progress callback if arg passed 2020-12-28 13:57:44 -05:00
William Wernert
7050b1fce5 [fix] Don't use same variable for increment and limit 2020-12-28 13:55:03 -05:00
Jason Ertel
7fe0182ede Refactor so-test and so-tcpreplay to be compatible with SO 2.3.20+; Change hive_init and cortex_init to initialize the cortex and fleet services directly on the manager IP instead of attempting to use the public URL 2020-12-28 11:26:56 -05:00
William Wernert
4d1cb37468 [feat] Add function to wait for dpkg lock 2020-12-28 09:35:51 -05:00
Jason Ertel
8f15d794bc Silence curl progress output during hive/cortex init 2020-12-24 08:44:28 -05:00
Jason Ertel
baf5be1a3a Return adequate exit code when init fails; Logs output of init scripts for troubleshooting failed installations 2020-12-23 20:14:46 -05:00
Jason Ertel
9cf150f988 Switch from Jinja syntax to bash 2020-12-23 15:11:43 -05:00