CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-07 17:52:46 +01:00
Code Issues Packages Projects Releases Wiki Activity
6,446 Commits 24 Branches 119 Tags
fa6fd20ff9cb7f8c443dcaf6f497c0ee48a95268
Commit Graph

6446 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Mike Reeves
fa6fd20ff9 Merge pull request #3088 from Security-Onion-Solutions/soupairgap 
Syn the latest rules on an airgap install
 2021-02-23 17:31:29 -05:00
Mike Reeves
d195efa8e5 Merge pull request #3098 from Security-Onion-Solutions/feature/update-soup 
Update SOUP with so-playbook-sigma-refresh
 2021-02-23 15:46:48 -05:00
Josh Brower
a7eb3cd38d Add so-playbook-sigma-refresh 2021-02-23 15:43:09 -05:00
Mike Reeves
186710964b Fix Airgap Rule Path 2021-02-23 13:07:23 -05:00
Mike Reeves
3b32eb539f Copy latest rules when using airgaps 2021-02-23 11:21:23 -05:00
Mike Reeves
40721d7dec Merge pull request #3084 from Security-Onion-Solutions/feature/log-rotate 
Configure fleet result.log to rotate
 2021-02-23 10:20:53 -05:00
Josh Brower
122e34b69c Configure fleet result.log to rotate 2021-02-23 10:06:24 -05:00
William Wernert
fa9fe82046 Merge pull request #3082 from Security-Onion-Solutions/kilo 
Add so-rule script + soup pillar changes
 2021-02-23 08:56:49 -05:00
William Wernert
fad87a8789 Fix function name (.20 -> .2X) 2021-02-23 08:51:44 -05:00
William Wernert
9287209750 Merge branch 'soup2.3.30' into feature/so-rules 
# Conflicts:
#	salt/common/tools/sbin/soup
 2021-02-22 16:07:15 -05:00
William Wernert
982967fdde Merge branch 'dev' into feature/so-rules 2021-02-22 16:01:48 -05:00
William Wernert
fb3af255d9 Add more info to apply messaging 2021-02-22 15:50:07 -05:00
William Wernert
3e3c923ab9 Arrange missing pillar error message better 2021-02-22 15:44:29 -05:00
William Wernert
b00cc88801 [fix] Unreverse apply prompt actions 2021-02-22 15:43:56 -05:00
William Wernert
e9b85337ff [fix] Only prompt if entry doesn't exist, deep compare arrays 2021-02-22 15:41:09 -05:00
William Wernert
fd33a6cebe Rename script, prompt user to apply if they didn't pass --apply 2021-02-22 15:32:18 -05:00
William Wernert
cdf766eeae explicitely -> explicitly 2021-02-22 14:30:26 -05:00
William Wernert
8fc82fa3ef Fix minion pillar directory 2021-02-22 14:27:22 -05:00
Mike Reeves
6ed1cc3875 Add Soup Functions 2021-02-22 14:02:37 -05:00
Doug Burks
84f138772f Merge pull request #3072 from Security-Onion-Solutions/kilo 
Additional fine tuning of Suricata metadata support
 2021-02-22 10:57:02 -08:00
doug
71c7ffae3e Improve support for Suricata metadata #2200 2021-02-22 13:49:29 -05:00
doug
bcce205430 Improve support for Suricata metadata #2200 2021-02-22 13:00:14 -05:00
Jason Ertel
943cbdbf1f Merge pull request #3073 from Security-Onion-Solutions/delta 
Apply action on PR only now that PRs are mandatory
 2021-02-22 12:50:38 -05:00
Jason Ertel
43e0c3a60b Apply action on PR only now that PRs are mandatory 2021-02-22 12:35:17 -05:00
Mike Reeves
d5069d12cf Merge pull request #3071 from Security-Onion-Solutions/delta 
Add acng to import installs for consistency
 2021-02-22 11:34:23 -05:00
William Wernert
e65c9e5c7c Don't expect apply arg at beginning of command 2021-02-22 11:29:30 -05:00
William Wernert
4bcb7403a9 Add apply option to end of command 2021-02-22 11:27:03 -05:00
William Wernert
bef3a6921c [fix] SID wildcards are not parsed by idstools, remove 2021-02-22 11:12:02 -05:00
William Wernert
f7bef9200b [fix] Only look for manager-type pillars 
* SID disabling is only managed globally for now, so don't give the option to edit a different pillar
 2021-02-22 10:38:53 -05:00
William Wernert
bb6f3107bc [fix] idstools can run on an import node as well 2021-02-22 10:29:40 -05:00
doug
3467f30603 Improve support for Suricata metadata #2200 2021-02-22 10:27:24 -05:00
Doug Burks
d4ee2b86e6 Merge pull request #3070 from Security-Onion-Solutions/dev 
Dev to Kilo
 2021-02-22 07:22:49 -08:00
William Wernert
f2a1e89633 Merge branch 'dev' into feature/so-rules 2021-02-22 10:03:14 -05:00
William Wernert
abae673568 Update help text to reflect arg requirement changes 2021-02-22 10:00:29 -05:00
Jason Ertel
747d62dae5 Add acng to import installs for consistency 2021-02-22 09:44:24 -05:00
Josh Brower
5ca3dc492c Merge pull request #3061 from Security-Onion-Solutions/foxtrot 
Fix Playbook Fields & Mappings
 2021-02-21 09:40:59 -05:00
Doug Burks
85b9cac110 Merge pull request #3063 from Security-Onion-Solutions/dev 
Dev to kilo
 2021-02-21 03:40:05 -08:00
Mike Reeves
40780f192e Merge pull request #3062 from Security-Onion-Solutions/delta 
fix merge issue
 2021-02-20 19:15:16 -05:00
Jason Ertel
7222f1faa5 fix merge issue 2021-02-20 16:41:12 -05:00
Mike Reeves
e07e0b201d Merge pull request #3058 from Security-Onion-Solutions/delta 
Fix intermittent Suricata rules load issue
 2021-02-20 10:27:13 -05:00
Jason Ertel
9d3c82a589 Disable unused features for import installations 2021-02-19 20:14:55 -05:00
Jason Ertel
04b3a20e22 Merge branch 'dev' into delta 2021-02-19 20:12:07 -05:00
Mike Reeves
cb6fe75ddb Merge pull request #3055 from Security-Onion-Solutions/TOoSmOotH-patch-1 
Rename filter.rules to filters.rules
 2021-02-19 15:36:01 -05:00
Mike Reeves
8ab12c71a1 Rename filter.rules to filters.rules 2021-02-19 15:34:45 -05:00
Josh Brower
046cc0fbb0 Merge pull request #3052 from Security-Onion-Solutions/feature/sigma-tweaks 
Feature/sigma tweaks
 2021-02-19 15:16:34 -05:00
Josh Brower
8c69e19419 Add sigma refresh script 2021-02-19 15:14:37 -05:00
Josh Brower
2a324eac32 Add sigma refresh script 2021-02-19 15:12:55 -05:00
Mike Reeves
8db3602679 Merge pull request #3049 from Security-Onion-Solutions/TOoSmOotH-patch-1 
Fix name and update examples
 2021-02-19 15:01:04 -05:00
Mike Reeves
08abad747d Fix name and update examples 2021-02-19 14:59:27 -05:00
William Wernert
c73970620d [fix] Correct indent 2021-02-19 14:38:43 -05:00