mozilla
/
MozDef
зеркало из https://github.com/mozilla/MozDef.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
5 612 коммитов 4 Ветки 53 Теги 68 MiB
Граф коммитов

548 Коммитов

Автор SHA1 Сообщение Дата
Michal Purzynski c57bbe1efc cleanups 2019-11-20 21:52:07 -08:00
Michal Purzynski 7aeb89aed9 Cleanups as requested 2019-11-20 16:54:54 -08:00
Michal Purzynski e15d4afb1f style fixups 2019-11-11 16:16:39 -08:00
Michal Purzynski 7a7b66a02c A new version of the guardduty plugin and a dedicated worker 2019-11-11 15:17:35 -08:00
Brandon Myers bf804f9ba0
Add conditional for None in geoip plugin 2019-10-28 13:18:01 -05:00
Brandon Myers 5db546fde4
Remove call to lower for geoip plugin 2019-10-28 12:33:45 -05:00
Brandon Myers 4f720ada1f
Add extra conditional check in geoip plugin 2019-10-28 11:23:14 -05:00
Brandon Myers e82f9c5c12
Only set geopoint check if lat and long are good 2019-10-25 16:16:33 -05:00
A Smith 510c736f75
Merge pull request #1499 from mozilla/fix_boolean_success 
Resolve details.success field type conflict
 2019-10-25 14:40:15 -05:00
Phrozyn 005f798b96
per pwnbus' suggestion, cleaning up 2019-10-25 13:00:34 -05:00
Phrozyn c6030ad4d7
removes mapping change in favor of rewriting summary 2019-10-25 11:57:07 -05:00
Brandon Myers 8999baa550
Add another field to cloutrail plugin 2019-10-24 12:24:31 -05:00
Brandon Myers 05067ec381
Add details.responseelements.createddate to cloudtrail plugin 2019-10-23 13:28:44 -05:00
Phrozyn 430d308b5c
adding additional object based parameters 2019-10-18 18:15:06 -05:00
Brandon Myers fab14b90d2
Merge pull request #1496 from mozilla/bro_tls_fixup 
updating broFixup to not using details.tls, but details.tls_encrypted…
 2019-10-17 18:51:32 -05:00
Phrozyn cb93f9644d
removing duplicated if statement 2019-10-17 18:26:54 -05:00
Phrozyn 381fc69c91
updating broFixup to not using details.tls, but details.tls_encrypted as boolean 2019-10-17 18:23:20 -05:00
Phrozyn 0fb364df11
adding 'ldap' to registration 2019-10-17 17:00:48 -05:00
Phrozyn 53e75bf3f9
adding unit test for fixup. 2019-10-17 14:24:41 -05:00
Phrozyn 534bbcabfa
adding in LDAP-Humanizer to registration 2019-10-17 11:02:19 -05:00
Phrozyn 4edc474e17
moves ldap details.tls to details.tls_encrypted as boolean 2019-10-17 10:56:42 -05:00
A Smith f848be9e3b
Merge pull request #1485 from mozilla/zoomFixup 
Rewriting summary of events, and dropping duplicate field data
 2019-10-15 09:25:54 -05:00
Phrozyn fa37609dc5
formats summary for consistency across base 2019-10-14 17:05:34 -05:00
Phrozyn 3365f497a0
modifies registration to a more uniquely named field 2019-10-14 15:33:28 -05:00
Brandon Myers 44067c7043
Add another key to cloudtrail plugin 2019-10-14 11:59:12 -05:00
Brandon Myers b1bf54e247
Add new key to cloudtrail plugin 2019-10-14 10:41:12 -05:00
Phrozyn be3e20dcf9
flake8 fixes 2019-10-10 16:06:13 -05:00
Phrozyn e6159e5685
adding in missing parameter 2019-10-10 15:07:48 -05:00
Phrozyn af0bb19bac
opting to use key_exists function from utilities 2019-10-10 12:54:51 -05:00
Phrozyn 9fe9a92386
rewriting summary of events, and dropping duplicate field data 2019-10-10 11:30:59 -05:00
A Smith 070f5b3c29
Merge pull request #1479 from mozilla/zoom_worker 
[WIP] adding mqPlugin 'zoom_fixup.py' to remove uneccessary fields
 2019-10-09 14:16:20 -05:00
Phrozyn 8fce7b0183
removing auditd comment and dev artifact 2019-10-08 13:42:45 -05:00
Brandon Myers 4f0bafed14
Merge pull request #1468 from mpurzynski/esworker_exceptions_fixups 
Esworker exceptions fixups
 2019-10-08 12:33:03 -05:00
Phrozyn f6cb9fab7a
adding test and fixing flake8 errro 2019-10-04 15:51:25 -05:00
Michal Purzynski bc64101e00 remove automated black formating 2019-10-03 13:55:42 -07:00
Phrozyn c89604e616
adding zoom_fixup.py to remove uneccessary fields 2019-10-02 15:10:41 -05:00
Michal Purzynski 75f63afaac cleanups 2019-09-30 14:00:44 -07:00
Michal Purzynski 05fe8c4880 Fixups for ES exception handling plus error messages when we drop events 2019-09-25 12:50:48 -07:00
Brandon Myers 15b48cd48e
Add describehostrequest to cloudtrail mq plugin 2019-09-24 14:18:52 -05:00
Brandon Myers e1b6f03246
Fixup uptycs cron script and add to lower keys plugin 2019-09-05 16:18:34 -05:00
Brandon Myers dbad0bb8af
Add customizable sleep option for mq workers 2019-08-26 13:06:27 -05:00
Brandon Myers 29b6f99581
Remove unused config option 2019-08-26 13:01:14 -05:00
Brandon Myers 89374b3fe6
Remove sys.path where possible from mq 2019-08-07 16:40:27 -05:00
Brandon Myers e79c290094
Remove sys.path from mq plugin tests 2019-08-07 16:32:56 -05:00
Jan Andre Ikenmeyer 51822417a3
Update MPL license to https 2019-08-02 01:41:37 +02:00
Brandon Myers 211ab423e7
Update regex strings 2019-07-31 18:01:26 -05:00
Brandon Myers cb723a114c
Merge pull request #1398 from mpurzynski/dhcpfixups 
Dhcpfixups
 2019-07-31 17:24:51 -05:00
Michal Purzynski 2c5f5fd736 MAC address is 6 bytes, not 8 2019-07-31 15:09:22 -07:00
Michal Purzynski d17e38da00 fixups for fixups part 2 2019-07-31 13:22:58 -07:00
Michal Purzynski 0e6fb423ba fixups for fixups 2019-07-31 13:17:46 -07:00