CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-01-13 03:31:21 +01:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 85450693a2 Merge branch '2.4/dev' into jertel/wip #14329 Jason Ertel 2025-03-04 10:55:29 -05:00
  • 0047246cf2 reduce stdout verbosity Jason Ertel 2025-03-04 10:55:12 -05:00
  • 95d3a2d834 Merge pull request #14328 from Security-Onion-Solutions/reyesj2-patch-2 Jorge Reyes 2025-03-04 09:03:02 -06:00
  • e1c8bee71a install bc package #14328 reyesj2 2025-03-04 08:58:41 -06:00
  • 1c96449ad9 Merge pull request #14327 from Security-Onion-Solutions/dougburks-patch-1 Doug Burks 2025-03-04 07:10:41 -05:00
  • 44535cba8c FIX: Elastic Agent Security Events dashboard should reference user.effective.name #14325 #14327 Doug Burks 2025-03-04 06:46:56 -05:00
  • 3f4a5a1b28 Merge pull request #14320 from Security-Onion-Solutions/reyesj2/zeekparslin Jorge Reyes 2025-03-03 10:56:15 -06:00
  • 4bd83f8983 zeek traceroute & ntp #14320 reyesj2 2025-03-03 10:48:06 -06:00
  • 206acbe618 Merge pull request #14312 from Security-Onion-Solutions/dougburks-patch-1 Doug Burks 2025-03-03 07:09:45 -05:00
  • e53f4fd1f1 Update defaults.yaml to quote the process.entity_id value #14312 Doug Burks 2025-03-02 05:54:30 -05:00
  • 8047e196fe fix pipeline workers, zeek/suricata lbprocs, CPUCORES and CORECOUNT Josh Patterson 2025-02-28 17:21:06 -05:00
  • c6c979dc19 properly set memory and CPUCORES for minion pillars during vm setup Josh Patterson 2025-02-28 16:12:28 -05:00
  • 573a2a5595 Merge pull request #14307 from Security-Onion-Solutions/reyesj2/esmngdint Jorge Reyes 2025-02-27 17:13:26 -06:00
  • 9bc64bf453 managed int multiline input #14307 reyesj2 2025-02-27 16:48:07 -06:00
  • c8a1c8377a vm power operations Josh Patterson 2025-02-27 16:04:44 -05:00
  • 2ffaf2f601 Add hunt queries Mike Reeves 2025-02-27 12:42:03 -05:00
  • 4696152f78 Add hunt queries Mike Reeves 2025-02-27 12:31:51 -05:00
  • a0944f8359 Add hunt queries Mike Reeves 2025-02-27 12:17:57 -05:00
  • 1fdbe987b8 Add hunt queries Mike Reeves 2025-02-27 12:15:37 -05:00
  • 40303c2d78 Add hunt queries Mike Reeves 2025-02-27 12:10:59 -05:00
  • 4b5048bd80 Add hunt queries Mike Reeves 2025-02-27 11:57:57 -05:00
  • 9d31050907 roll back SOC changes Mike Reeves 2025-02-27 11:32:59 -05:00
  • e930d1dec6 roll back SOC changes Mike Reeves 2025-02-27 11:28:06 -05:00
  • 1d3bae4a7a Add additional entries for actions Mike Reeves 2025-02-27 11:15:51 -05:00
  • d950e4ebb3 Add additional entries for actions Mike Reeves 2025-02-27 11:11:56 -05:00
  • 3ba82bd5a4 Fix actions Mike Reeves 2025-02-27 11:04:47 -05:00
  • bc969c1ca2 Merge pull request #14302 from Security-Onion-Solutions/jertel/wip Jason Ertel 2025-02-27 08:00:49 -05:00
  • 772aa7379f more false positives #14302 Jason Ertel 2025-02-27 07:55:22 -05:00
  • 4e954c24f7 handle cpu, copper and sfp as options Josh Patterson 2025-02-26 17:58:09 -05:00
  • 6c00cdd726 Fix healthlink Mike Reeves 2025-02-26 16:15:00 -05:00
  • 52839e2a7d implement regex for cpu and mem Josh Patterson 2025-02-26 15:22:36 -05:00
  • 1a9d5f151f change description formatting. include full vm name in HYPERVISORS Josh Patterson 2025-02-26 14:28:31 -05:00
  • 8bc500e4da soc Mike Reeves 2025-02-26 14:16:42 -05:00
  • 25217c3262 soc Mike Reeves 2025-02-26 14:14:25 -05:00
  • 0c2797ecdc soc Mike Reeves 2025-02-26 13:49:30 -05:00
  • 101f6e744a sensoroni Mike Reeves 2025-02-26 13:44:35 -05:00
  • c5e0b8a42e sensoroni Mike Reeves 2025-02-26 13:40:24 -05:00
  • 6d7e0a7a72 sensoroni Mike Reeves 2025-02-26 13:39:18 -05:00
  • 2bc2e86b01 actions Mike Reeves 2025-02-26 13:36:16 -05:00
  • 6fec217068 actions Mike Reeves 2025-02-26 13:34:32 -05:00
  • ee1af39c55 elastalert Mike Reeves 2025-02-26 13:17:08 -05:00
  • a5ae481ea4 globals Mike Reeves 2025-02-26 13:10:57 -05:00
  • f8d19301be Merge pull request #14300 from Security-Onion-Solutions/betrfix Jorge Reyes 2025-02-26 08:32:46 -06:00
  • d6f527881a allow for destroyed vms to be displayed in ui. VNM cleanup destroyed status files after 48h Josh Patterson 2025-02-26 09:06:45 -05:00
  • 80fed1e045 default capinfos to use start/end time arg #14300 reyesj2 2025-02-25 21:47:56 -06:00
  • a94d657251 Merge pull request #14296 from Security-Onion-Solutions/jertel/wip Jason Ertel 2025-02-25 17:04:13 -05:00
  • 9dafa062f8 annotation/config updates #14296 Jason Ertel 2025-02-25 17:00:41 -05:00
  • 5811b184be enhance annotations. account for line separation instead of comma for hardware Josh Patterson 2025-02-25 11:13:35 -05:00
  • e0a3b51ca2 md in description Josh Patterson 2025-02-25 08:54:04 -05:00
  • b5276a6a1d add hypervisor to firewall annotation Josh Patterson 2025-02-25 04:41:59 -05:00
  • c8a6aa42fb Merge pull request #14290 from Security-Onion-Solutions/reyesj2-patch-41 Jorge Reyes 2025-02-24 15:24:38 -06:00
  • 17edc06987 allow installing integrations that require an elastic license #14290 reyesj2 2025-02-24 14:45:43 -06:00
  • cc1b030c00 q xMerge remote-tracking branch 'origin/2.4/dev' into vlb2 Josh Patterson 2025-02-24 15:32:54 -05:00
  • c896785480 fix vm deletion Josh Patterson 2025-02-24 14:20:09 -05:00
  • 0006948c29 get hypervisor from dir name Josh Patterson 2025-02-24 12:26:28 -05:00
  • 6ac14f832e only allow first process step to overwrite last Josh Patterson 2025-02-24 12:22:52 -05:00
  • a60afdbaa5 Merge pull request #14288 from Security-Onion-Solutions/reyesj2-patch-41 Jorge Reyes 2025-02-24 10:31:42 -06:00
  • e2772e899e component template missing metadata field #14288 reyesj2 2025-02-24 10:24:11 -06:00
  • 43f86e5e37 Merge pull request #14287 from Security-Onion-Solutions/reyesj2-patch-41 Jorge Reyes 2025-02-24 09:11:58 -06:00
  • d7c06e5ff4 run elasticsearch state, right before completing soup to ensure templates for optional integrations are loaded #14287 reyesj2 2025-02-24 09:02:56 -06:00
  • 3f2b0973af manually create unused logs-soc@package for successful elasticsearch templates load reyesj2 2025-02-24 08:59:59 -06:00
  • ac841077c2 Merge pull request #14281 from Security-Onion-Solutions/2.4/patch3 Josh Brower 2025-02-23 15:03:05 -05:00
  • fd9a4966ec move logic from reactor to orchestration Josh Patterson 2025-02-23 14:07:51 -05:00
  • 6d0350793d Remove old defend json #14281 Josh Brower 2025-02-23 14:02:17 -05:00
  • d74f9183a0 Merge pull request #14279 from Security-Onion-Solutions/jertel/wip Jason Ertel 2025-02-21 17:13:56 -05:00
  • 7155ccaf96 ensure override for nmcli exists in /etc #14279 Jason Ertel 2025-02-21 17:10:39 -05:00
  • 64996db86b Merge pull request #14277 from Security-Onion-Solutions/reyesj2-patch-40 Jorge Reyes 2025-02-21 14:07:31 -06:00
  • c1282e77a0 move removal of eaintegrations.txt to up_to_2.4.130 #14277 reyesj2 2025-02-21 14:02:22 -06:00
  • 3246176c0a comments Josh Patterson 2025-02-21 14:34:08 -05:00
  • b68f561e6f progress and hw tracking for soc hypervisor dynamic annotations Josh Patterson 2025-02-21 09:50:01 -05:00
  • 79574b31b0 Merge pull request #14275 from Security-Onion-Solutions/2.4/patch Josh Brower 2025-02-21 09:37:34 -05:00
  • 22f3865602 Dont upgrade integrations during pre-phase #14275 Josh Brower 2025-02-21 09:32:36 -05:00
  • f51d255c98 Merge pull request #14274 from Security-Onion-Solutions/jertel/wip Jason Ertel 2025-02-21 08:40:56 -05:00
  • 66a2ec7e21 ES upgrade errors to ignore #14274 Jason Ertel 2025-02-21 08:38:40 -05:00
  • fc12b1f09b Merge pull request #14272 from Security-Onion-Solutions/reyesj2-patch-1 Jorge Reyes 2025-02-20 17:32:20 -06:00
  • 69b559fb26 ES 8.17.2 pipeline version updates #14272 reyesj2 2025-02-20 17:11:28 -06:00
  • 637ed59567 Merge pull request #14271 from Security-Onion-Solutions/reyesj2-patch-1 Jorge Reyes 2025-02-20 15:26:12 -06:00
  • df350b5a56 ES 8.17.2 #14271 reyesj2 2025-02-20 14:20:09 -06:00
  • 3b6344e7f0 add back settings previously defined when overwritting logs-elastic_agent@package and logs-endpoint.diagnostics.collection@package reyesj2 2025-02-20 12:42:30 -06:00
  • cee9f66689 Merge pull request #14269 from Security-Onion-Solutions/dougburks-patch-1 Doug Burks 2025-02-20 13:29:32 -05:00
  • 5dc9200ee7 Add files via upload #14269 Doug Burks 2025-02-20 13:19:22 -05:00
  • 2be5384980 Create config.yml Doug Burks 2025-02-20 13:19:08 -05:00
  • 25dfc182a9 Delete .github/ISSUE_TEMPLATE Doug Burks 2025-02-20 13:18:02 -05:00
  • 145648431f Merge pull request #14267 from Security-Onion-Solutions/reyesj2-patch-1 Jorge Reyes 2025-02-20 10:13:29 -06:00
  • 14e7e411c0 Merge pull request #14268 from Security-Onion-Solutions/dougburks-patch-1 Doug Burks 2025-02-20 11:13:12 -05:00
  • c9b41e2eb1 formatting #14267 reyesj2 2025-02-20 10:11:34 -06:00
  • 7c2118f2f6 Create LICENSE #14268 Doug Burks 2025-02-20 11:07:50 -05:00
  • 499d473b9d set metrics indices to 0 replicas reyesj2 2025-02-20 10:06:59 -06:00
  • 41147ae7f3 Merge pull request #14265 from Security-Onion-Solutions/2.4/elasticfix Josh Brower 2025-02-19 16:22:28 -05:00
  • c6d72d31cb Update Elastic Defend JSON #14265 Josh Brower 2025-02-19 16:16:38 -05:00
  • bb101ef95e Merge pull request #14259 from Security-Onion-Solutions/reyesj2-patch-1 Jorge Reyes 2025-02-19 10:50:37 -06:00
  • 64f6a2d81e re-enable security (siem) in default kibana space #14259 reyesj2 2025-02-19 10:38:37 -06:00
  • 45c66b93d7 make sure only a non-empty file is loaded reyesj2 2025-02-19 09:23:48 -06:00
  • a3dba9b566 Merge pull request #14255 from Security-Onion-Solutions/foxtrot Jorge Reyes 2025-02-18 14:58:46 -06:00
  • f991d8a10a Update .gitleaks.toml #14255 Jorge Reyes 2025-02-18 14:37:20 -06:00
  • 2b7ebf08cb Update VERSION Jorge Reyes 2025-02-18 13:18:08 -06:00
  • 23ab8983f7 Revert "Support CLI changing of a user's password without disabling existing auth settings for that user" Jason Ertel 2025-02-18 12:41:41 -05:00
  • b25b6f7bf2 Support CLI changing of a user's password without disabling existing auth settings for that user Jason Ertel 2025-02-18 12:37:25 -05:00
  • b8b77693e1 Merge pull request #14254 from Security-Onion-Solutions/jertel/wip Jason Ertel 2025-02-18 12:19:24 -05:00
  • 19593cd771 use consistent ciphers across listeners #14254 Jason Ertel 2025-02-18 12:17:50 -05:00