mozilla
/
MozDef
зеркало из https://github.com/mozilla/MozDef.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
730 коммитов 4 Ветки 53 Теги 68 MiB
Граф коммитов

730 Коммитов

Автор SHA1 Сообщение Дата
Anthony Verez 8a3c72d385 averez-xionox-fixes: don't analyze details.program 2014-06-27 19:30:18 -07:00
Anthony Verez 24646fae5d averez-xionox-fixes: don't analyze details.sourceipgeolocation.country_name 2014-06-27 12:26:06 -07:00
Jeff Bryner 7cb8dc105b add support for nxlog windows event log parsing 2014-06-27 11:31:54 -07:00
jeffbryner 0cae4aada1 Merge pull request #126 from netantho/averez-banhammer 
averez-banhammer: allow to enable/disable banhammer in rest api
 2014-06-27 11:24:22 -07:00
jeffbryner 8a0e6f09db Merge pull request #125 from netantho/averez-banhammer 
BanHammer integration
 2014-06-27 10:56:25 -07:00
Anthony Verez 598dd80969 averez-banhammer: allow to enable/disable banhammer in rest api 2014-06-27 09:33:57 -07:00
Anthony Verez 9e2c8c95e2 averez-banhammer: allow to disable banhammer in meteor 2014-06-27 09:13:08 -07:00
Anthony Verez f3f4eaef04 averez-banhammer: meteor changes 2014-06-26 23:59:07 -07:00
Anthony Verez 51b58a13d4 averez-banhammer: rest api for banhammer 2014-06-26 23:54:27 -07:00
jeffbryner 6ca4a9644b Merge pull request #124 from netantho/averez-mig-bugfix 
averez-mig-bugfix: Reverse list to process old compliance checks first, ...
 2014-06-26 15:28:58 -07:00
Anthony Verez 94b9664125 averez-mig-bugfix: Reverse list to process old compliance checks first, older later 2014-06-26 12:14:08 -07:00
jeffbryner 81f3b450b3 Merge pull request #122 from netantho/averez-scripted-dashboards 
event and alert scripted kibana dashboards
 2014-06-25 20:30:54 -07:00
Jeff Bryner 8d8c82a7f2 sshd event plugin to find ips in the message string 2014-06-25 12:57:54 -07:00
Jeff Bryner 650d600371 correlate and track ssh fingerprints 2014-06-24 16:58:21 -07:00
Jeff Bryner 8bbbf387c5 standardize the field names 2014-06-24 09:13:18 -07:00
Jeff Bryner 23ddf455fb internz mixing tabs and spaces 2014-06-24 08:59:13 -07:00
jeffbryner 506b035b46 Merge pull request #118 from netantho/averez-snmptt-plugin 
snmptt plugin
 2014-06-24 08:54:51 -07:00
jeffbryner 6f5e8ca23b Merge pull request #117 from netantho/averez-rtflow-plugin 
RT_FLOW plugin
 2014-06-24 08:54:16 -07:00
jeffbryner e386385f7e Merge pull request #123 from netantho/averez-auditd-long 
averez-auditd-long: use long instead of integers
 2014-06-24 08:35:15 -07:00
Anthony Verez d719ede4de averez-auditd-long: use long instead of integers 2014-06-23 17:19:02 -07:00
Anthony Verez 7341ecfce4 averez-rtflow-plugin: add action field 2014-06-20 18:01:13 -07:00
Anthony Verez fabc2f2fb8 averez-scripted-dashboards: event and alert sciripted kibana dashboards 2014-06-19 17:20:24 -07:00
Anthony Verez 5b35fe399c averez-114-snapshots: fix indentation for indices rotation 2014-06-19 15:31:33 -07:00
Anthony Verez b1b5315599 averez-114-snapshots: changes with jeff's feedback 2014-06-19 12:14:22 -07:00
Anthony Verez 3d12f90ebb averez-114-snapshots: update rotate index script to use backup.conf 2014-06-19 11:17:27 -07:00
Anthony Verez bcaee95031 averez-114-snapshots: new pruning script using backup.conf 2014-06-19 09:49:50 -07:00
Anthony Verez 5214afe467 averez-114-snapshots: delete old backup script 2014-06-18 16:40:54 -07:00
Anthony Verez 0603868d12 averez-114-snapshots: add backuping script 2014-06-18 16:40:23 -07:00
Jeff Bryner ae11b8ba66 sync health stats with no ack option 2014-06-18 15:07:35 -07:00
Jeff Bryner c38b022081 add option to run mq in no_ack, transient delivery mode 2014-06-18 14:32:33 -07:00
Anthony Verez 4a21c4c280 averez-114-snapshots: add discovering script 2014-06-17 16:56:12 -07:00
Jeff Bryner 6a97826b7b formatting changes for health/about screen 2014-06-17 09:02:01 -07:00
Jeff Bryner 191fcdfd7b check requests status 2014-06-17 09:01:24 -07:00
Jeff Bryner 70e6514328 add options for ssl ca cert, quieter logging 2014-06-17 07:53:00 -07:00
jeffbryner 7cf0538e42 Merge pull request #119 from netantho/averez-mig 
Add mig2mozdef cron script
 2014-06-16 16:02:43 -07:00
Anthony Verez d62655861d averez-mig: fix mig script 2014-06-16 15:58:10 -07:00
Jeff Bryner ce3b4ae2dd add total EPS to header 2014-06-16 15:51:42 -07:00
Jeff Bryner 305fa4f5b0 add dc/crossfilter/d3 driven charts to about/health screen 2014-06-16 13:11:29 -07:00
Anthony Verez b169c66780 averez-114-snapshots: delete obsolete backup script 2014-06-16 11:26:09 -07:00
Anthony Verez fa5b5cff5f averez-mig: Add mig2mozdef cron script 2014-06-16 10:54:11 -07:00
Anthony Verez f83fde1562 averez-snmptt-plugin: snmptt parsing 2014-06-13 11:42:39 -07:00
Anthony Verez 860e29f15c averez-rtflow-plugin: also parse RT_FLOW_SESSION_CREATE messages 2014-06-13 11:01:09 -07:00
Anthony Verez 3bf40d8fe8 averez-rtflow-plugin: int all the int 2014-06-12 18:06:12 -07:00
Anthony Verez 3a31847236 averez-rtflow-plugin: consider \n for rtflow plugin 2014-06-12 17:38:39 -07:00
Anthony Verez f5014ae9f1 averez-rtflow-plugin: initial rtflow plugin with RT_FLOW_SESSION_DENY parsing 2014-06-12 17:15:24 -07:00
jeffbryner 2e35a99a1e Merge pull request #116 from netantho/averez-mapping-raw-host 
averez-mapping-raw-host: .raw for details.hostname and auditd mapping
 2014-06-12 16:09:02 -07:00
Jeff Bryner 1c1d86fd31 moar reliable importing 2014-06-12 16:08:44 -07:00
Jeff Bryner cbc02ad5c0 remove bot coloring for mozdef keyword 2014-06-12 16:08:20 -07:00
Anthony Verez 64ef5a7a13 averez-mapping-raw-host: .raw for details.hostname and auditd mapping 2014-06-10 15:55:58 -07:00
Jeff Bryner e8d3a86e2e performance improvements of ogres to share base character mesh 2014-06-09 12:50:53 -07:00