| .. |
|
alerts_template.json
|
add index templates
|
2015-11-16 14:59:13 -08:00 |
|
auth02mozdef.json
|
Add support to import auth0 logs intomozdef
|
2016-08-04 14:28:29 -07:00 |
|
auth02mozdef.py
|
Add support to import auth0 logs intomozdef
|
2016-08-04 14:28:29 -07:00 |
|
backup.conf
|
averez-114-snapshots: add backuping script
|
2014-06-18 16:40:23 -07:00 |
|
backupDiscover.py
|
chmod +x and update target conf file
|
2014-12-19 12:32:11 -08:00 |
|
backupDiscover.sh
|
chmod +x and update target conf file
|
2014-12-19 12:32:11 -08:00 |
|
backupSnapshot.py
|
update snapshot backup to allow multiple snapshots/day
|
2014-12-18 14:32:41 -08:00 |
|
backupSnapshot.sh
|
minor chmod +x
|
2015-01-13 14:55:25 -08:00 |
|
broAlerts.py
|
Update other bro_* categories
|
2016-06-28 13:47:40 -05:00 |
|
broAlerts.sh
|
averez-22-license: Fix license stuff (Closes #22)
|
2014-04-16 11:40:15 -07:00 |
|
cloudTrailAlerts.conf
|
adding cronjob scripts
|
2014-02-17 23:51:35 -08:00 |
|
cloudTrailAlerts.py
|
explicitly set alert exchange to durable
|
2015-01-15 15:25:13 -08:00 |
|
cloudTrailAlerts.sh
|
averez-22-license: Fix license stuff (Closes #22)
|
2014-04-16 11:40:15 -07:00 |
|
cloudtrail2mozdef.conf
|
Added the ability to iterate over multiple AWS accounts, multiple regions, and the s3 buckets associated with the CloudTrail in each account/region combination
|
2015-10-21 13:40:29 -07:00 |
|
cloudtrail2mozdef.py
|
Remove cloudtrail logic which hard codes the S3 bucket name if the script can not authenticate to the target AWS account.
|
2016-10-27 12:20:01 -07:00 |
|
cloudtrail2mozdef.sh
|
averez-22-license: Fix license stuff (Closes #22)
|
2014-04-16 11:40:15 -07:00 |
|
collectAttackers.py
|
Update bro_notice category to bronotice
|
2016-06-28 13:26:33 -05:00 |
|
collectSSHFingerprints.py
|
correlate and track ssh fingerprints
|
2014-06-24 16:58:21 -07:00 |
|
complianceitems_template.json
|
add index templates
|
2015-11-16 14:59:13 -08:00 |
|
correlateUserMacAddress.py
|
add correlation for user to mac address in new intel index closes #211
|
2014-12-09 15:19:26 -08:00 |
|
createIPBlockList.py
|
minor query change
|
2014-12-09 09:35:17 -08:00 |
|
defaultTemplate.json
|
Adding defaultTemplate back in
|
2016-11-04 09:27:00 -05:00 |
|
esCacheMaint.py
|
fill in some rarely used toUTC gaps
|
2014-10-08 10:51:59 -07:00 |
|
esMaint.sh
|
chmod +x and update target conf file
|
2014-12-19 12:32:11 -08:00 |
|
eventStats.py
|
Add aggregation cron script to tally category counts for statistical analysis, closes #207
|
2014-12-01 10:24:14 -08:00 |
|
eventStatsAlerts.py
|
add cronjob for alerting on event category statistical deviations over time
|
2015-02-26 17:04:04 -08:00 |
|
events_minimal_template.json
|
add index templates
|
2015-11-16 14:59:13 -08:00 |
|
google2mozdef.py
|
add support for google api login/logout event import, closes #272
|
2015-05-14 16:00:00 -07:00 |
|
healthAndStatus.py
|
round occasionally long, longs from rabbit queue api
|
2014-11-14 13:14:30 -08:00 |
|
healthAndStatus.sh
|
add event stats to the health/status
|
2014-12-09 09:35:44 -08:00 |
|
healthToMongo.py
|
move health jobs to UTC by default
|
2014-08-02 07:53:24 -07:00 |
|
mig2mozdef.py
|
fix mig api error location in mig2mozdef.py
|
2015-01-26 09:19:52 -05:00 |
|
okta2mozdef.py
|
Normalize details.sourceipaddress, details.username, details.sourceuri from Okta logs
|
2015-11-06 16:27:03 -08:00 |
|
pruneES.sh
|
chmod +x and update target conf file
|
2014-12-19 12:32:11 -08:00 |
|
pruneIndexes.py
|
minor cleanup to comments, logging
|
2014-12-18 16:54:25 -08:00 |
|
rotateIndexes.py
|
minor bugfix in format string
|
2015-03-27 08:37:44 -07:00 |
|
setupIndexTemplates.py
|
set template name and file in the .conf file
|
2014-05-22 15:46:44 -07:00 |
|
syncAlertsToMongo.py
|
add index to the esmetadata.id field
|
2014-10-20 10:39:22 -07:00 |
261e360997