Граф коммитов

45 Коммитов

Автор SHA1 Сообщение Дата
Phrozyn 33d1cff95d
adjusts kibana5 to kibana for logging needs 2019-07-30 15:06:58 -05:00
Brandon Myers 1d987ae886
Update missing references to alertactions in syslog configs 2019-03-21 17:36:47 -05:00
Brandon Myers 663fd76ab2
Merge remote-tracking branch 'origin/infosec_workweek' into virtualenv_path_change 2018-10-24 13:05:30 -05:00
Phrozyn 20aeb09686
Removing delay compress so nagios stops complaining on old events 2018-10-10 09:25:01 -05:00
Phrozyn 1d64edbd9b
Adding updated logrotate scripts for mozdef archival of old logs. 2018-08-27 15:19:18 -05:00
Phrozyn d35979c39f
Update kibana programname to kibana5 from kibana4 2018-07-03 16:55:36 -05:00
Brandon Myers c13bd9d7d5
Update virtualenv path in nginx config 2018-04-20 13:27:35 -05:00
Brandon Myers 171a790b0b
Update nginx config to use off for access log 2018-04-04 10:10:14 -05:00
Brandon Myers 9ed267dbed
Fix formatting of nginx config 2018-04-04 10:02:25 -05:00
Brandon Myers fd4b29c7ba
Fixup nginx config for kibana5 2018-04-04 09:55:31 -05:00
Brandon Myers d827e65a56
Move default mapping file under cron directory 2018-03-15 12:50:28 -05:00
Brandon Myers 3d70e2c63b
Update ES default mapping for version 5 2018-03-07 16:22:01 -06:00
Brandon Myers 53c85596c7
Revert "update default mapping to facilitate singe event type, be stingy about doc_value/norms/etc."
This reverts commit 98d560f7aa.
2018-03-02 12:14:07 -06:00
Jeff Bryner 98d560f7aa update default mapping to facilitate singe event type, be stingy about doc_value/norms/etc. 2018-02-28 12:52:35 -08:00
Brandon Myers 4e4699eb95
Reapply cloudtrail worker improvements 2018-01-18 12:41:41 -06:00
A Smith 6d92cadbd3
Merge branch 'master' into defTemplate_apiversion 2017-12-08 20:40:44 -06:00
Brandon Myers f73cc3364d
Revert "Merge pull request #560 from mozilla/fix_cloudtrail_mapping"
This reverts commit 804757f242, reversing
changes made to 501819cfb5.
2017-12-08 16:09:43 -06:00
A Smith f1edc04658
Merge branch 'master' into defTemplate_apiversion 2017-12-07 18:56:46 -06:00
Phrozyn 8cd2542c7c
Correcting case of apiversion in defaultMappingTemplate.json 2017-12-06 18:04:12 -06:00
Brandon Myers 09ddacc9fd
Remove trailing comma in json mapping 2017-11-28 13:10:36 -06:00
Brandon Myers 64852540d5
Move apiVersion field under details in mapping 2017-11-28 12:53:53 -06:00
Phrozyn 6bec1e7c01
Adding mandatory fields to mapping. 2017-11-21 17:44:38 -06:00
Phrozyn 1fd7335355
Naming Convention and Logging Changes. 2017-10-04 15:59:49 -05:00
Phrozyn 13d9f95a6d
Updating mapping of defaulttemplate to handle Bro version field. 2017-10-02 12:39:19 -05:00
Brandon Myers 9c03f12773
Move default ES mapping to config directory 2017-08-04 16:22:27 -05:00
Brandon Myers 496311a364
Add parsys mq worker 2017-06-15 15:07:30 -05:00
Phrozyn 30eb50385a
Adding infosecsqs to mozdef syslog filter 2017-06-15 15:07:29 -05:00
A Smith 3f4b4567fe
fix sso worker filter 2017-06-15 15:07:28 -05:00
Phrozyn aadd791181
Adding kibana logging to mozdef filter. 2017-06-15 15:07:28 -05:00
Phrozyn 8db45f199c
Adding logrotate config for nginx. 2017-06-15 15:07:27 -05:00
Phrozyn 79f0ba1ac9
Adding logrotate config for nginx. 2017-06-15 15:07:27 -05:00
Phrozyn 58e8fa9077
Adding logrotate for mongo 2017-06-15 15:07:26 -05:00
Phrozyn e119281a42
Moving mongod to syslog logging. 2017-06-15 15:07:26 -05:00
Phrozyn 9cd1d2ce07
Adding contegix-auditd log to syslog filter. 2017-06-15 15:07:25 -05:00
Phrozyn ded22e02a8
Adding alertplugins to syslog mozdef filter config. 2017-06-15 15:07:24 -05:00
Phrozyn fd9937b9e1
Adding logrotate configs for mozdef. 2017-06-15 15:07:23 -05:00
Phrozyn 03b35e5cc5
Adding rsyslog mozdef filter config. 2017-06-15 15:07:23 -05:00
Phrozyn 65ea6841eb
Moving meteor-mongo to /var/log/mozdef/mongo 2017-06-15 15:07:23 -05:00
Phrozyn 232b742ba7
Moving nginx logging to /var/log/mozdef/nginx 2017-06-15 15:07:23 -05:00
Brandon Myers f87c94a088
Unencrypt config files
Signed-off-by: Brandon Myers <bmyers@mozilla.com>
2017-06-15 15:05:55 -05:00
Brandon Myers 27ac4cdcb5
Remove openresty config and generalize nginx conf
Signed-off-by: Brandon Myers <bmyers@mozilla.com>
2017-06-15 15:05:52 -05:00
Phrozyn 0832813446
Adding nginx.conf and openresty-nginx.conf to config. 2017-06-15 15:05:19 -05:00
Brandon Myers 776c59be2e
Add config directory from mozdef public
Signed-off-by: Brandon Myers <bmyers@mozilla.com>
2017-06-15 15:03:42 -05:00
Brandon Myers 1d8c59b93f
Setup codebase for merge of two repos 2017-06-15 14:56:47 -05:00
Phrozyn 71f2a3204e Adding systemd files to MozDef. 2016-08-23 10:28:04 -05:00