CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-04-04 11:51:52 +02:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • f10f47ad4e including elasticsearch in logstash state #1016 m0duspwnens 2020-07-16 10:12:10 -04:00
  • f8bb094546 Merge pull request #1014 from Security-Onion-Solutions/fix/strelka_standalone weslambert 2020-07-16 09:32:06 -04:00
  • 8275f458a1 Fix module eval #1014 Wes Lambert 2020-07-16 13:30:38 +00:00
  • 5190e5d434 Update README.md William Wernert 2020-07-16 09:20:20 -04:00
  • 7fecfdab32 Update README.md weslambert 2020-07-16 08:14:47 -04:00
  • f7d527bb90 Update README.md weslambert 2020-07-16 08:14:23 -04:00
  • 350d2fbeda Update README.md Josh Brower 2020-07-15 19:07:25 -04:00
  • 29c28fcb5e Update README.md Josh Brower 2020-07-15 19:06:36 -04:00
  • 48c9244a81 Update README.md Josh Brower 2020-07-15 19:05:49 -04:00
  • a4672dedee Update README.md Mike Reeves 2020-07-15 18:17:05 -04:00
  • 473606371a Fix Features Download Mike Reeves 2020-07-15 17:49:13 -04:00
  • d71dc89b13 New SOUP Mike Reeves 2020-07-15 17:46:33 -04:00
  • 9781d8d0e7 Ensure permissions are consistently applied to all imported PCAP files Jason Ertel 2020-07-15 13:53:28 -04:00
  • 0a976861f3 Dynamically set sensor checkin interval; allow overrides if var is preset Jason Ertel 2020-07-15 13:22:11 -04:00
  • 80e081e828 Merge pull request #1010 from Security-Onion-Solutions/bugfix/playbook-anonymous-perms Josh Brower 2020-07-15 12:40:47 -04:00
  • d11ef08961 Playbook anonymous perms fix #1010 Josh Brower 2020-07-15 12:37:04 -04:00
  • 3c42f50e99 Ensure whiptail success/summary screen is final step before reboot Jason Ertel 2020-07-15 11:12:44 -04:00
  • 83428d4785 Merge pull request #1009 from Security-Onion-Solutions/quickfix/lstoes Josh Patterson 2020-07-15 08:32:50 -04:00
  • e4fff05dbc load templates for es for eval #1009 m0duspwnens 2020-07-15 08:30:43 -04:00
  • 9dc1151347 Imported logs are sent to so-import index on eval installations Jason Ertel 2020-07-14 22:59:42 -04:00
  • b53ce392ef Improve grammer of summary screen in whiptail Jason Ertel 2020-07-14 22:45:38 -04:00
  • c0960e58e8 Improve grammer of so-allow input prompt Jason Ertel 2020-07-14 19:42:50 -04:00
  • 549916306c Merge pull request #1008 from Security-Onion-Solutions/quickfix/lstoes Josh Patterson 2020-07-14 17:37:19 -04:00
  • 5cf71596b2 add curlys #1008 m0duspwnens 2020-07-14 17:36:52 -04:00
  • acb800d1c9 Using static UID for Grafana overview dashboard to allow SOC to directly link to those dashboards Jason Ertel 2020-07-14 17:36:26 -04:00
  • 9bbbaa485c Switch PM to AM since we want to span midnight to midnight Jason Ertel 2020-07-14 16:52:49 -04:00
  • acaec6c125 remove recurse causing issues m0duspwnens 2020-07-14 17:12:29 -04:00
  • e7e1982862 Merge pull request #1007 from Security-Onion-Solutions/bugfix/ingest-parsing Josh Brower 2020-07-14 17:00:04 -04:00
  • 8647944ae6 Parsing & Hunt query updates #1007 Josh Brower 2020-07-14 16:59:06 -04:00
  • 55056f3193 Merge pull request #1006 from Security-Onion-Solutions/fix/perms Mike Reeves 2020-07-14 16:19:02 -04:00
  • 57bf23d83c move templates from logstash to elasticsearch m0duspwnens 2020-07-14 16:07:46 -04:00
  • a1e6a85a68 explicitly set Suricata timestamp timezone to UTC Doug Burks 2020-07-14 15:49:46 -04:00
  • 7a36803e2c Merge pull request #1002 from Security-Onion-Solutions/fix/strelka_observer weslambert 2020-07-14 13:39:52 -04:00
  • f9df39977b Add observer name for Strelka events #1002 Wes Lambert 2020-07-14 17:38:43 +00:00
  • 7ed902c0ae Merge pull request #1001 from Security-Onion-Solutions/fix/suricata_timestamp weslambert 2020-07-14 13:34:58 -04:00
  • 47388fa98d Merge pull request #998 from Security-Onion-Solutions/bugfix/fleet-soimage-fix Josh Brower 2020-07-14 13:06:52 -04:00
  • ba8395fc11 Fleet reactor fix #998 Josh Brower 2020-07-14 13:04:29 -04:00
  • 3df5904269 Merge pull request #979 from Security-Onion-Solutions/feature/setup William Wernert 2020-07-14 11:17:03 -04:00
  • caf9e3f75a [fix] Redirect hive_init output to log #979 William Wernert 2020-07-14 11:13:50 -04:00
  • ad3c4c4950 [fix] master -> manager William Wernert 2020-07-14 11:09:12 -04:00
  • 57cd2cdbeb Change opt/so perms #1006 Mike Reeves 2020-07-14 10:37:49 -04:00
  • 4ab90a9a30 [fix] Move redirect var to function after $MAINIP has been set William Wernert 2020-07-14 10:12:51 -04:00
  • f2d9abf1a5 Merge pull request #996 from Security-Onion-Solutions/fix/curator Mike Reeves 2020-07-14 10:05:27 -04:00
  • e404a41d8a Add all actions to cron #996 Mike Reeves 2020-07-14 10:04:15 -04:00
  • 15be31af6d Merge pull request #995 from Security-Onion-Solutions/fix/curator Mike Reeves 2020-07-14 09:43:41 -04:00
  • 67f2edce28 Resolve merge conflict that reverted import URL back to Kibana Jason Ertel 2020-07-14 09:40:13 -04:00
  • d4e6189f6e Fix spelling error in actions #995 Mike Reeves 2020-07-14 09:39:56 -04:00
  • d6afde90b0 Convert message timestamp to @timestamp #1001 Wes Lambert 2020-07-14 13:37:00 +00:00
  • 0c9c66f6e1 Merge pull request #993 from Security-Onion-Solutions/bugfix/playbook-init Josh Brower 2020-07-14 09:14:56 -04:00
  • 2c72940010 Playbook db init fix #993 Josh Brower 2020-07-14 09:09:55 -04:00
  • b884e09e7a Playbook db init fix Josh Brower 2020-07-14 09:09:47 -04:00
  • 178ac79da8 [refactor] Set $REDIRECTIT outside of subshell William Wernert 2020-07-14 09:05:09 -04:00
  • 09c460dbe9 Switch to final image repository prefix 'securityonion' for RC1 Jason Ertel 2020-07-14 00:45:20 -04:00
  • d75d64c8ed Mount imported pcap dirs into sensoroni container for imported PCAP pivots Jason Ertel 2020-07-13 21:03:47 -04:00
  • 8f66a27f07 Refactor image repository to a single variable Jason Ertel 2020-07-13 18:26:43 -04:00
  • f67f0679ae Add new so-pcaptools image to docker list for network install Jason Ertel 2020-07-13 16:02:01 -04:00
  • aa4d435020 [fix] Don't run so-allow before setup complete menu William Wernert 2020-07-13 15:21:05 -04:00
  • 81c8185cb5 [refactor] Delete check for network install since we check /nsm now William Wernert 2020-07-13 14:53:47 -04:00
  • 1cf0732991 Merge branch 'dev' into feature/setup William Wernert 2020-07-13 14:35:24 -04:00
  • 00f178197c [fix] Evaluate $success early to avoid checking against other output William Wernert 2020-07-13 14:34:11 -04:00
  • 98811c147d Merge pull request #989 from Security-Onion-Solutions/feature/isosetup Mike Reeves 2020-07-13 14:27:20 -04:00
  • 55869c4f81 Fix username so install works properly from ISO #989 Mike Reeves 2020-07-13 14:25:10 -04:00
  • c585713122 [style] Change SO_ERROR check to non-empty check William Wernert 2020-07-13 13:28:54 -04:00
  • 8dc63a1f52 Merge pull request #987 from Security-Onion-Solutions/quickfix/patchschedule Josh Patterson 2020-07-13 11:35:00 -04:00
  • 59c00057b1 fix patch pillar, select patch hours on 1 screen #987 m0duspwnens 2020-07-13 11:34:30 -04:00
  • ef3c5d1fe0 fix patch pillar, select patch hours on 1 screen m0duspwnens 2020-07-13 11:31:37 -04:00
  • 06aa63dd14 Merge branch 'dev' into feature/setup William Wernert 2020-07-13 11:24:04 -04:00
  • 3bc492ebde Merge pull request #986 from Security-Onion-Solutions/feature/isosetup Mike Reeves 2020-07-13 11:13:10 -04:00
  • dc0aa270d9 Fix ISO rsync #986 Mike Reeves 2020-07-13 11:12:11 -04:00
  • 14faa3b898 Clean up bash profile Mike Reeves 2020-07-13 11:08:04 -04:00
  • a6cceef986 Removes create admin user from setup Mike Reeves 2020-07-13 10:55:55 -04:00
  • db80675609 Merge pull request #985 from Security-Onion-Solutions/quickfix/elasticpillar Josh Patterson 2020-07-13 09:48:44 -04:00
  • 242e17b329 prevent elasticsearch pillar being added twice for managers and helix #985 m0duspwnens 2020-07-13 09:45:11 -04:00
  • c31c24ccd8 [fix] Check /nsm instead of / for free space William Wernert 2020-07-13 09:12:24 -04:00
  • e62381e998 Merge pull request #982 from Security-Onion-Solutions/bugfix/alerting Josh Brower 2020-07-10 19:50:27 -04:00
  • 65062d93f4 Misc fixes #982 Josh Brower 2020-07-10 19:43:43 -04:00
  • 99dc16d644 Merge pull request #981 from Security-Onion-Solutions/bugfix/disk-space-network-only William Wernert 2020-07-10 18:52:48 -04:00
  • 605daaf66b [fix] Only check for disk space on a network install #981 William Wernert 2020-07-10 18:45:34 -04:00
  • 056b3a0629 Merge branch 'dev' into feature/setup William Wernert 2020-07-10 18:41:24 -04:00
  • f9c8f8cdca [fix] Set SKIP_REBOOT on any failure during setup William Wernert 2020-07-10 18:40:39 -04:00
  • aee304e5d5 [fix] master -> manager William Wernert 2020-07-10 18:13:20 -04:00
  • 4cfecae3b2 [ix] Remove grafanapassword pillar key William Wernert 2020-07-10 17:59:51 -04:00
  • ce7373501b [fix] Add fallback for hive + cortex users William Wernert 2020-07-10 17:58:47 -04:00
  • a5c790c31e [fix] managerr -> manager William Wernert 2020-07-10 17:50:53 -04:00
  • 8b146aac32 Merge branch 'dev' into feature/nginx-update William Wernert 2020-07-10 17:49:34 -04:00
  • 81006ebbd0 [fix] Reflect new manager syntax William Wernert 2020-07-10 17:46:15 -04:00
  • 571e97cdf7 Merge branch 'dev' into feature/setup William Wernert 2020-07-10 17:42:56 -04:00
  • 547298fce0 [refactor] Hide output for cortex and thehive init scripts William Wernert 2020-07-10 17:34:33 -04:00
  • ef64048fc6 Merge pull request #978 from Security-Onion-Solutions/fix/sensor-clean weslambert 2020-07-10 17:17:57 -04:00
  • eb2dc0be4c Fix value #978 weslambert 2020-07-10 17:17:33 -04:00
  • 69023cdb31 Merge pull request #976 from Security-Onion-Solutions/issue/404 Josh Patterson 2020-07-10 16:28:28 -04:00
  • 13af4cacb0 merge with dev and resolve conflicts #976 m0duspwnens 2020-07-10 16:27:10 -04:00
  • 755f47da2d Merge pull request #975 from Security-Onion-Solutions/fix/lstemplate Mike Reeves 2020-07-10 15:55:50 -04:00
  • 46d572fa8c Fix Filebeat spacing #975 Mike Reeves 2020-07-10 15:51:12 -04:00
  • 9b079df9f5 Merge pull request #974 from Security-Onion-Solutions/fix/sensor_clean weslambert 2020-07-10 15:35:57 -04:00
  • d7f7fb801c Set role #974 Wes Lambert 2020-07-10 19:35:27 +00:00
  • 37ab252e01 Add sensor proc eval Wes Lambert 2020-07-10 19:30:08 +00:00
  • f56811e745 [feat] Use setup user+pass for TheHive, Cortex, and Fleet as well William Wernert 2020-07-10 14:40:04 -04:00
  • 67c8836cd6 [fix] Use 100GB min space for standalone also William Wernert 2020-07-10 14:39:02 -04:00
  • 72aa91b763 [feat] Add message in setup and motd on where to access SOC William Wernert 2020-07-10 14:38:03 -04:00