mozilla
/
MozDef
зеркало из https://github.com/mozilla/MozDef.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
5 424 коммитов 4 Ветки 53 Теги 68 MiB
Граф коммитов

509 Коммитов

Автор SHA1 Сообщение Дата
Brandon Myers e1b6f03246
Fixup uptycs cron script and add to lower keys plugin 2019-09-05 16:18:34 -05:00
Brandon Myers dbad0bb8af
Add customizable sleep option for mq workers 2019-08-26 13:06:27 -05:00
Brandon Myers 29b6f99581
Remove unused config option 2019-08-26 13:01:14 -05:00
Brandon Myers 89374b3fe6
Remove sys.path where possible from mq 2019-08-07 16:40:27 -05:00
Brandon Myers e79c290094
Remove sys.path from mq plugin tests 2019-08-07 16:32:56 -05:00
Jan Andre Ikenmeyer 51822417a3
Update MPL license to https 2019-08-02 01:41:37 +02:00
Brandon Myers 211ab423e7
Update regex strings 2019-07-31 18:01:26 -05:00
Brandon Myers cb723a114c
Merge pull request #1398 from mpurzynski/dhcpfixups 
Dhcpfixups
 2019-07-31 17:24:51 -05:00
Michal Purzynski 2c5f5fd736 MAC address is 6 bytes, not 8 2019-07-31 15:09:22 -07:00
Michal Purzynski d17e38da00 fixups for fixups part 2 2019-07-31 13:22:58 -07:00
Michal Purzynski 0e6fb423ba fixups for fixups 2019-07-31 13:17:46 -07:00
Phrozyn 64efeaf9cd
adding missing comma 2019-07-30 15:24:49 -05:00
Phrozyn 35037392dc
adding new requestparam callerreference 2019-07-30 15:22:08 -05:00
Michal Purzynski 02c35da3b8 EIS-879 2019-07-26 13:21:42 -07:00
Michal Purzynski 4ff8e2a599 EIS-879 2019-07-26 13:14:02 -07:00
Brandon Myers 7ce8e6147e
Merge pull request #1385 from mozilla/remove_unused_cloudtrailconfig 
Remove unused eventexchange options
 2019-07-25 10:29:11 -04:00
Phrozyn 3422c5dd0c
Adds additional fields to the cloudtrail plugin to prevent field conflicts 2019-07-22 17:10:42 -05:00
Phrozyn 1566a45378
Adds additional fields to the cloudtrail plugin to prevent field conflicts 2019-07-22 17:08:50 -05:00
Brandon Myers fa7875f5c4
Fix region parameter in connect_sqs (#1383) 
* Fix region parameter in connect_sqs

* Modify parameter names to get_aws_credentials

* Clean up connect_sqs function to call get_aws_credentials

* Cleanup workers to use connect_sqs call

* Fix local import in sqs file

* Fix parameter name in cloudtrail worker

* Assert AWS region of SQS queues

Since the two SQS queues are provisioned by CloudTrail in the same region as the CloudTrail
stack, let's assert to MozDef that the region for those queus is indeed the same region.

* Update region name parameter in cloudtrail worker
 2019-07-19 17:50:58 -04:00
Brandon Myers aa03a4da57
Remove unused eventexchange options 2019-07-19 13:47:12 -04:00
Brandon Myers ee13b19fa1
Allow config option to tune cloudtrail sleep time 2019-07-09 13:54:34 -05:00
Brandon Myers ac3b27977c
Fixup lower_keys plugin 2019-07-08 12:31:50 -05:00
Brandon Myers 721675cfbf
Update fluentd plugin 2019-07-08 10:56:38 -05:00
Brandon Myers 6e0ee8d0a0
Merge remote-tracking branch 'origin/master' into python_3_upgrade 2019-07-08 10:48:19 -05:00
Brandon Myers 17ab5bbb30
Fixup cloudtrail worker to no longer use old boto version 2019-07-03 17:10:29 -05:00
Brandon Myers 8a8562fce8
Convert sqs boto use to boto3 2019-07-03 12:58:35 -05:00
Michal Purzynski 5f5cd58d39 Merge branch 'master' of https://github.com/mozilla/mozdef into dhcpzeek 2019-07-03 10:24:16 -07:00
Brandon Myers 63c6cbf857
Update mq workers to remove need to use RawMessage 2019-07-02 19:14:33 -05:00
Brandon Myers 51f03e9f21
Merge pull request #1339 from mozilla/fixup_printstatements 
Ensure parenthesis for print statements
 2019-07-01 18:07:08 -05:00
Brandon Myers 81eebb18b7
Fixup cloudtrail worker to use BytesIO 2019-06-30 17:17:37 -05:00
Brandon Myers 1cb8709681
Fix local includes for mq and alerts 2019-06-30 16:52:32 -05:00
Brandon Myers e3543a86a6
Fix relative imports for mq lib 2019-06-30 16:05:21 -05:00
Brandon Myers ed1d4aa8cf
Fixup remaining python3 leftovers 2019-06-29 15:51:00 -05:00
Brandon Myers 9a075dcbe0
Remove unicode-u keyword 2019-06-29 15:11:00 -05:00
Brandon Myers 8506c4eb1a
Update syntax in cloudtrail worker 2019-06-28 18:59:06 -05:00
Brandon Myers d421dbb33f
Fixup mozdef_util query_model tests 2019-06-28 18:52:41 -05:00
Brandon Myers 390a3feef2
Rename unicode type to str 2019-06-28 18:21:48 -05:00
Brandon Myers 9e736c3b80
Fixup mq tests 2019-06-28 18:12:04 -05:00
Brandon Myers e30f3f1d69
Remove call to encode ascii on strings 2019-06-28 17:26:58 -05:00
Brandon Myers 827e99ffa6
Convert keys function return to list 2019-06-28 17:10:27 -05:00
Michal Purzynski 0b2f738662 Upgrade the DHCP message format to Zeek's format 2019-06-28 14:53:24 -07:00
Brandon Myers bd4c48db9a
Rename iteritems to items for dictionaries 2019-06-28 16:49:30 -05:00
Brandon Myers b2ca33ed7a
Fixup reload function namespace 2019-06-28 16:43:52 -05:00
Brandon Myers 3a37b42bca
Fix exception message function no longer available 2019-06-28 16:40:38 -05:00
Brandon Myers f1c4287fa5
Ensure parenthesis for print statements 2019-06-28 16:28:14 -05:00
Brandon Myers 49798f15f5
Ensure parenthesis for print statements 2019-06-28 13:13:28 -05:00
Brandon Myers a0f8e3fa10
Add geo_points for sourceip and destinationip 2019-06-28 11:14:56 -05:00
Brandon Myers 9510ba4556
Update cloudtrail plugin to support details.responseelements.credentials 2019-06-20 12:09:21 -05:00
Brandon Myers a89cc567b0
Update cloudtrail plugin for describeflowlogsrequest 2019-06-18 00:21:35 -05:00
Brandon Myers 7714970cac
Merge pull request #1308 from mozilla/deprecate_vidyo 
Move vidyo cron script and dependencies into mozdef-deprecated
 2019-06-03 17:52:32 -05:00