securityonion

mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00

Author	SHA1	Message	Date
weslambert	fe7fb7f54d	Merge pull request #10748 from Security-Onion-Solutions/fix/elasticsearch_strelka Update logic for YARA matches	2023-07-11 13:02:24 -04:00
Wes	577bfac886	Update logic for YARA matches	2023-07-11 17:00:13 +00:00
Josh Patterson	468b6e4831	Merge pull request #10741 from Security-Onion-Solutions/m0duspwnens-patch-1 import ELASTICFLEETMERGED	2023-07-11 11:04:26 -04:00
Josh Patterson	c75d209d7f	import ELASTICFLEETMERGED	2023-07-11 11:01:27 -04:00
Josh Brower	b29b264d5c	Merge pull request #10740 from Security-Onion-Solutions/2.4/removecomments Remove Comments	2023-07-11 10:28:41 -04:00
Josh Brower	c99e7da5a7	Remove Comments	2023-07-11 10:26:18 -04:00
Josh Patterson	60d66b973c	Merge pull request #10739 from Security-Onion-Solutions/yararules include *.yara	2023-07-11 10:21:35 -04:00
m0duspwnens	304830d2ee	remove old rules prior to copy	2023-07-11 10:20:04 -04:00
m0duspwnens	d7285d69a7	include *.yara	2023-07-11 09:59:13 -04:00
weslambert	7cdd1f89d7	Merge pull request #10736 from Security-Onion-Solutions/fix/strelka_path Change path to old one	2023-07-11 09:13:36 -04:00
weslambert	b7cab1d118	Change path to old one	2023-07-11 09:10:20 -04:00
weslambert	f03a472ee5	Merge pull request #10731 from Security-Onion-Solutions/fix/kibana_file_search Kibana dashboard changes	2023-07-11 08:50:03 -04:00
Mike Reeves	c7a0801eed	Merge pull request #10725 from Security-Onion-Solutions/yararules Yararules	2023-07-11 08:49:20 -04:00
Josh Brower	5e0015e9ac	Merge pull request #10735 from Security-Onion-Solutions/2.4/TagPlaybookAlerts 2.4/tag playbook alerts	2023-07-11 08:37:37 -04:00
Josh Brower	5a72c558cb	Tag at top level	2023-07-11 08:35:47 -04:00
Josh Brower	a6e907f76c	Tag Playbook Alerts	2023-07-11 08:03:15 -04:00
Josh Brower	2d3eb22057	Merge pull request #10732 from Security-Onion-Solutions/2.4/autogenfix Exclude Import and Eval from autoupdate	2023-07-10 17:18:10 -04:00
Josh Brower	8437fcd94c	Exclude Import and Eval from autoupdate	2023-07-10 17:10:08 -04:00
Josh Brower	1b25db4573	Merge pull request #10680 from Security-Onion-Solutions/2.4/fleetautogen Automatically manage Fleet Logstash Config	2023-07-10 16:26:20 -04:00
m0duspwnens	f8ed2e6e8e	make parent dirs	2023-07-10 16:11:45 -04:00
m0duspwnens	f22c61a0a2	use su instead of runuser since logCmd has issues with runuser	2023-07-10 15:19:41 -04:00
m0duspwnens	5069d1163c	only *.yar files	2023-07-10 14:36:34 -04:00
Josh Brower	31edf2e8ea	Tighten & Document Pipelines	2023-07-10 14:17:42 -04:00
Wes	6b8893ded5	Update saved objects	2023-07-10 18:13:34 +00:00
m0duspwnens	1f8b7bda89	fix output_dir var	2023-07-10 13:39:31 -04:00
m0duspwnens	59233d6550	use full path	2023-07-10 11:43:56 -04:00
m0duspwnens	1ac72e5b24	ensure /nsm/rules/yara directory exists	2023-07-10 11:10:37 -04:00
Josh Brower	7805ca8beb	Add Failover Support	2023-07-10 10:38:14 -04:00
m0duspwnens	47b2481cdd	nothing in strelka/tools/sbin_jinja to file.recurse	2023-07-10 10:29:19 -04:00
m0duspwnens	fa933d3f53	use file_mode	2023-07-10 10:26:30 -04:00
m0duspwnens	f4dc73a206	yara download and update	2023-07-10 09:42:37 -04:00
Doug Burks	437c9cab68	Merge pull request #10726 from Security-Onion-Solutions/dougburks-patch-1 Update README.md	2023-07-10 09:07:11 -04:00
Wes	6da96a733f	Use tags instead of dataset	2023-07-10 13:06:38 +00:00
Doug Burks	82796370ce	Update README.md	2023-07-10 09:04:55 -04:00
Josh Brower	8c16feb772	Rename Fleet pipelines	2023-07-09 12:22:55 -04:00
Josh Brower	ce1f363424	Allow base_url	2023-07-08 13:30:19 -04:00
Josh Brower	e8860a7d2c	Fix perms	2023-07-08 09:04:55 -04:00
Josh Brower	beb26596fd	Merge remote-tracking branch 'origin/2.4/dev' into 2.4/fleetautogen	2023-07-07 19:12:47 -04:00
m0duspwnens	6a5ff04804	remove unneeded function	2023-07-07 16:45:51 -04:00
Josh Brower	ff3bb11fbb	Elastic Fleet Certs Refactor	2023-07-07 16:44:16 -04:00
m0duspwnens	8be5082b60	yara scripts	2023-07-07 16:43:26 -04:00
coreyogburn	5faa4f0a30	Merge pull request #10720 from Security-Onion-Solutions/cogburn/8908 Allow an additional kratos endpoint through	2023-07-07 13:17:32 -06:00
Corey Ogburn	da7770a900	Allow an additional kratos endpoint through The /auth/self-service/errors route is used to lookup auth issues so the route must also be proxied to kratos.	2023-07-07 12:47:55 -06:00
weslambert	8178338971	Merge pull request #10717 from Security-Onion-Solutions/fix/strelka_rules Change path	2023-07-07 13:45:02 -04:00
weslambert	79ed17b506	Change path	2023-07-07 13:31:43 -04:00
Josh Patterson	2785587840	Merge pull request #10714 from Security-Onion-Solutions/remove_so-logstash-get-unparsed remove so-logstash-get-unparsed, use so-redis-count instead	2023-07-07 09:53:54 -04:00
weslambert	9f95306458	Merge pull request #10708 from Security-Onion-Solutions/fix/elasticsearch_templates_hn Fix heavy node Elasticsearch template load	2023-07-07 09:52:54 -04:00
m0duspwnens	55bed0771b	remove so-logstash-get-unparsed, use so-redis-count instead	2023-07-07 09:52:21 -04:00
Wes	0b5ee49873	Fix inverted logic for component template	2023-07-06 20:46:35 +00:00
Jason Ertel	1646459052	Merge pull request #10707 from Security-Onion-Solutions/kilo add default pillar file	2023-07-06 14:49:40 -04:00

1 2 3 4 5 ...

12720 Commits