mozilla
/
MozDef
зеркало из https://github.com/mozilla/MozDef.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
1 136 коммитов 4 Ветки 53 Теги 68 MiB
Граф коммитов

1136 Коммитов

Автор SHA1 Сообщение Дата
Anthony Verez 3dd054b1f2 averez-heka-snippets: Copy the true bro-lua-bro-intel (Closes #38) 2014-04-14 15:56:48 -07:00
Anthony Verez 671975e893 averez-heka-snippets: some warnings, documentation and refactoring for syslog snippets 2014-04-14 12:15:44 -07:00
Jeff Bryner 2c491c0a38 add example heka config/script for parsing syslog-ng tab delimited output 2014-04-14 09:43:31 -07:00
jeffbryner 29c482aa4c Merge pull request #37 from netantho/averez-issue-23-contributing 
averez-issue-23-contributing: add CONTRIBUTING.md
 2014-04-14 09:34:46 -07:00
jeffbryner 47ad44a332 Merge pull request #39 from trink/master 
Feedback
 2014-04-14 09:34:08 -07:00
Mike Trinkala 6698c89e16 Feedback 2014-04-14 09:23:36 -07:00
Anthony Verez ec57fb23b4 averez-issue-23-contributing: add CONTRIBUTING.md 2014-04-14 08:53:42 -07:00
jeffbryner 856bdae3bf Merge pull request #35 from netantho/averez-issue-31 
averez-issue-31: Fix docker config for docker 0.10 (Issue #31)
 2014-04-14 08:35:06 -07:00
Jeff Bryner c6a2deabea geoip plugin 2014-04-13 21:35:09 -07:00
Jeff Bryner 4b8df4dac0 moar pep8 2014-04-13 20:33:25 -07:00
Jeff Bryner 26c34c356f moar pep8, plugin framework tweaks 2014-04-13 20:27:16 -07:00
Jeff Bryner 16ef4e6411 add initial setup for index templates 2014-04-13 16:21:37 -07:00
Jeff Bryner 1610f310b4 limit to current events index 2014-04-13 16:20:01 -07:00
Jeff Bryner 53ba93d87a change alerts to monthly rotation, add alias for previous day events 2014-04-13 16:19:22 -07:00
Jeff Bryner 90561c7d6a rework index pruning 2014-04-13 16:18:06 -07:00
Jeff Bryner 57d40fc9d4 typo, limit to current index 2014-04-13 16:17:37 -07:00
Anthony Verez 46f665491d averez-issue-31: Fix docker config for docker 0.10 2014-04-11 11:03:04 -07:00
jeffbryner 8cf32cd6e7 Merge pull request #33 from netantho/averez-issue-30 
averez-issue-30: Doc for installation fix by @BjornArnelid thanks! (Issu...
 2014-04-10 16:22:18 -07:00
Anthony Verez a3a7f75631 averez-issue-30: Doc for installation fix by @BjornArnelid thanks! (Issue #30) 2014-04-10 16:13:01 -07:00
jeffbryner 416262e095 Merge pull request #32 from netantho/averez-doc 
Shipping and JSON structure documentation
 2014-04-10 14:29:52 -07:00
Anthony Verez c274341bdc Merge remote-tracking branch 'upstream/master' into averez-doc 
Conflicts:
	docs/source/usage.rst
 2014-04-10 14:29:24 -07:00
Anthony Verez 558dbafe56 averez-doc: adding nxlog-syslog configuration snippet 2014-04-10 14:09:40 -07:00
Anthony Verez 30fe2e19fb averez-doc: adding heka-lua-bro-notice and heka-lua-bro-intel configuration snippets 2014-04-08 21:22:41 -07:00
Anthony Verez 0d7077c357 averez-doc: fix heka-syslog snippet and add heka-apache snippet 2014-04-08 20:51:56 -07:00
Anthony Verez 6fabfde780 averez-doc: fix beaver-syslog snippet and add heka-syslogng snippet 2014-04-08 20:46:59 -07:00
Anthony Verez f2a271d94e averez-doc: configuration snippet for beaver-syslog 2014-04-08 20:31:09 -07:00
Anthony Verez 3c263b261c averez-doc: fix links 2014-04-08 12:41:59 -07:00
Jeff Bryner 57aa8ab6e0 allow alertworker to monitor MQ on one server and send alerts to another MQ server 2014-04-08 12:30:55 -07:00
Anthony Verez 1fbfd2db7b averez-doc: add "What should I log?" section 2014-04-08 12:23:56 -07:00
Anthony Verez d97d15ddf2 averez-doc: document JSON structure 2014-04-08 11:38:50 -07:00
Jeff Bryner 884c7dfe98 add fifo read size option, error checking on headers 2014-04-08 09:48:05 -07:00
Jeff Bryner ee42f669fb 90% more pep8, 10% less cruft 2014-04-07 15:16:34 -07:00
jeffbryner 8577534819 Merge pull request #29 from richierichrawr/master 
String formatting and variable cleanup
 2014-04-07 14:43:06 -07:00
richierichrawr 87dff92a31 String formatting and variable cleanup 
Extra `quotes =` was hanging around for some reason.

Fixed the string formatting so it matches the rest of the code.
 2014-04-07 14:53:04 -04:00
Jeff Bryner d26ccc4db3 whitelist CEF fields, correct syslog facility, unicode and lowercase the keys 2014-04-07 07:44:13 -07:00
Jeff Bryner d5cd5048bd add utility to read a fifo with cef data and post to mozdef message queue(s) 2014-04-05 21:08:27 -07:00
Anthony Verez be859fe855 docs: add json example 2014-04-04 13:16:01 -07:00
Jeff Bryner e50f4fc85e merging upstream changes 2014-04-04 12:55:19 -07:00
Jeff Bryner 2b3ee9fc73 utility script to non-blocking tail a file with CEF messages (and only cef messages, no date/time/etc) and send to mozdef 2014-04-04 12:52:15 -07:00
jeffbryner ebeb8d532f Merge pull request #28 from BjornArnelid/master 
Created Shell script to generate static code analyzis for Python (related to issue #7)
 2014-04-04 12:20:42 -07:00
ba2150 fae681eb1b Removed extra mkdir line 2014-04-04 15:53:19 +02:00
ba2150 efe4bebff7 Added pymetrics codechecking... 2014-04-04 15:51:10 +02:00
ba2150 b5a5c21416 Merge branch 'master' of https://github.com/BjornArnelid/MozDef 2014-04-04 14:23:53 +02:00
ba2150 b03cf71ed2 Make analyze_code skip checks that are not installed. 2014-04-04 14:22:50 +02:00
ba2150 4af296ad97 Added Shell script to run static code analyzis for python code. 2014-04-04 14:22:50 +02:00
ba2150 f14e2a0b2a Make analyze_code skip checks that are not installed. 2014-04-04 13:18:03 +02:00
ba2150 715ea0d8ab Added Shell script to run static code analyzis for python code. 2014-04-04 11:51:57 +02:00
jeffbryner c5dd612c13 Merge pull request #26 from netantho/netantho-docker 
docker
 2014-04-03 21:18:52 -07:00
Jeff Bryner 2bfb1a2d9b explicitly define the config file 2014-04-03 21:11:11 -07:00
Jeff Bryner 0d72eafa6a update to allow cef details or fields sub dictionary 2014-04-03 21:10:33 -07:00