mozilla
/
MozDef
зеркало из https://github.com/mozilla/MozDef.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
MozDef/alerts
История
Phrozyn d455a816fd
Removed unused libs from script. 		2017-06-15 15:01:06 -05:00
..
lib changed timeframe of ssh_access_signreleng_pyes alert from 20 to 10 2017-06-15 15:00:49 -05:00
plugins Removed unused libs from script. 2017-06-15 15:01:06 -05:00
__init__.py averez-147-celery-alerts: more comments in the code 2014-07-15 16:31:21 -07:00
alertPluginsmules.ini Updated alertPluginsmules.ini to use threading. 2017-06-15 15:00:36 -05:00
alertWorker.conf Setup codebase for merge of two repos 2017-06-15 14:56:47 -05:00
alertWorker.py add alert plug in system, closes #162 2015-03-22 20:15:17 -07:00
amoFailedLogins_pyes.py Setup codebase for merge of two repos 2017-06-15 14:56:47 -05:00
auditd_sftp_pyes.py Setup codebase for merge of two repos 2017-06-15 14:56:47 -05:00
bro_intel.py fix up dashboard-style alerts to match new function names 2015-07-14 12:56:58 -07:00
bro_intel_dashboard.json Standardize category bro_intel to brointel 2016-06-28 13:33:30 -05:00
bro_intel_pyes.py Standardize category bro_intel to brointel 2016-06-28 13:33:30 -05:00
bro_notice.py internz mix they tabs and spaces 2014-08-13 16:56:11 -07:00
bro_notice_dashboard.json Update bro_notice category to bronotice 2016-06-28 13:26:33 -05:00
bruteforce_ssh.py fix up dashboard-style alerts to match new function names 2015-07-14 12:56:58 -07:00
bruteforce_ssh_dashboard.json averez-147-celery-alerts: make some alerts public + adapt docker config 2014-07-17 23:17:00 -07:00
bruteforce_ssh_pyes.py update alerts to match the new aggregation functions 2015-05-27 13:23:42 -07:00
bugzillaauthbruteforce_pyes.py Setup codebase for merge of two repos 2017-06-15 14:56:47 -05:00
celeryconfig.py add deadman alerts, refactor celeryconfig to allow args/kwargs, closes #257 2015-03-20 12:51:31 -07:00
cloudtrail.py internz mix they tabs and spaces 2014-08-13 16:56:11 -07:00
cloudtrail_dashboard.json averez-147-celery-alerts: make some alerts public + adapt docker config 2014-07-17 23:17:00 -07:00
cloudtrail_pyes.py update alerts to match the new aggregation functions 2015-05-27 13:23:42 -07:00
confluence_shell_pyes.py Setup codebase for merge of two repos 2017-06-15 14:56:47 -05:00
correlated_alerts_pyes.py add docs URL to alerts, closes #241 2015-03-24 15:37:29 -07:00
deadman.py Setup codebase for merge of two repos 2017-06-15 14:56:47 -05:00
duo_authfail_pyes.py Setup codebase for merge of two repos 2017-06-15 14:56:47 -05:00
duo_fail_open.py update alerts to match the new aggregation functions 2015-05-27 13:23:42 -07:00
fail2ban.py internz mix they tabs and spaces 2014-08-13 16:56:11 -07:00
fail2ban_dashboard.json averez-147-celery-alerts: make some alerts public + adapt docker config 2014-07-17 23:17:00 -07:00
fail2ban_pyes.py update alerts to match the new aggregation functions 2015-05-27 13:23:42 -07:00
fxaAlerts.py Setup codebase for merge of two repos 2017-06-15 14:56:47 -05:00
geomodel.py take severity into account in geomodel alert plugin 2016-06-22 14:09:58 -05:00
hostScannerAlerts_pyes.py Setup codebase for merge of two repos 2017-06-15 14:56:47 -05:00
httpauthbruteforce_pyes.py Setup codebase for merge of two repos 2017-06-15 14:56:47 -05:00
httperrors_pyes.py add docs URL to alerts, closes #241 2015-03-24 15:37:29 -07:00
ldapAdd_pyes.py Setup codebase for merge of two repos 2017-06-15 14:56:47 -05:00
ldapDelete_pyes.py Setup codebase for merge of two repos 2017-06-15 14:56:47 -05:00
ldapGroup_pyes.py update to a more universal match 2016-04-02 16:04:32 -07:00
ldapLockout.py add ldap lockout alert, closes #320 2015-12-22 14:05:50 -08:00
multiple_intel_hits_pyes.py update alerts to match the new aggregation functions 2015-05-27 13:23:42 -07:00
proxy_drop_pyes.py Setup codebase for merge of two repos 2017-06-15 14:56:47 -05:00
squiderrors_pyes.py Initial support for squid alerts coming from EC2 2015-10-22 17:25:52 -07:00
ssh_access_signreleng_pyes.conf Added logic to filter out infrasec logins. 2017-06-15 15:00:43 -05:00
ssh_access_signreleng_pyes.py Adjusted timing of notifyRelengSSHAccesstimedelta and ssh_access_signreleng_pyes timedelta. 2017-06-15 15:00:44 -05:00
sshbruteforce_bro_pyes.py minor: include url as an example 2015-03-25 16:52:19 -07:00
sshioc.py Setup codebase for merge of two repos 2017-06-15 14:56:47 -05:00
ssl_blacklist_hit_pyes.py Add tons of new alerts and improve some old ones. 2015-02-26 19:42:51 +01:00
supervisord.alerts.conf Setup codebase for merge of two repos 2017-06-15 14:56:47 -05:00
unauth_portscan_pyes.py Setup codebase for merge of two repos 2017-06-15 14:56:47 -05:00
unauth_scan_pyes.py Setup codebase for merge of two repos 2017-06-15 14:56:47 -05:00
unauth_ssh_pyes.conf Setup codebase for merge of two repos 2017-06-15 14:56:47 -05:00
unauth_ssh_pyes.py unauth_ssh_pyes: allow additional characters in username 2016-04-11 16:08:52 -05:00
vpn_duo_auth_failures_pyes.py Setup codebase for merge of two repos 2017-06-15 14:56:47 -05:00