4cc1aa08c2
tweaking
...
Bump ELK stack to 7.7.1
Install curator via pip
Some tweaks
2020-06-08 21:56:16 +00:00
be918033e0
bump to ELK 7.7.0
2020-05-14 16:27:57 +00:00
680194adf7
prep for new listbot FQDN
2020-05-12 09:19:09 +00:00
ed73d83317
Update update.sh
2020-04-22 17:48:32 +02:00
a6c8d3d712
Update Dockerfile
2020-04-22 17:15:44 +02:00
1a7b3b3795
Load listbot data from OTC
2020-04-22 16:50:41 +02:00
73e1842c16
offload listbot from netlify CDN
2020-04-02 13:12:11 +00:00
df22adb45d
bump elk stack to 7.6.1
2020-03-05 21:20:11 +00:00
07c68c85bb
tweaking
2020-03-04 14:36:03 +00:00
f11ad6b523
tweaking
...
ELK 7.6.0 is not ready for production, however it works if APM is enabled (disabled in config, so image wont build as precaution)
Remove SISSDEN from ewsposter, suricata
Bump suricata to 5.0.1
Alpine now support suricata incl. enabled JA3 support, move back to Alpine install
2020-02-14 15:28:06 +00:00
5ce5911ec1
cleanup
2020-02-03 12:59:21 +00:00
b9da9f04af
adjust default field
2020-02-03 12:18:43 +00:00
984ba958fb
logstash template not upgraded
...
with daily index enabled logstash will not be able to put new events into ES
simple solution, just deleting logstash template upon logstash start and leave it to logstash to upload the latest template
.
2020-02-01 14:08:23 +00:00
64729f5064
remove ilm support, breaks existing index at upgrade
2020-01-31 15:50:34 +00:00
5a4724bcba
elk 7.x dev test
2020-01-31 14:21:55 +00:00
fa0fdbb579
prepare for ELK migration to 7.x
2020-01-29 14:21:40 +00:00
f110eb08b0
prepare for mailoney json logging
2020-01-22 12:17:30 +00:00
1d0aad3b34
tweak logstash.conf for citrixhoneypot
2020-01-16 18:04:29 +00:00
a6ed6613a5
prepare citrixhoneypot for ELK integration
2020-01-16 15:13:58 +00:00
66bb9443f9
bump elk stack to 6.8.2
2019-08-28 11:49:03 +00:00
bc6e94d329
spiderfoot, head bump to latest master
2019-08-16 17:29:41 +00:00
bf39c0f5b2
bump elastic stack to 6.7.2
2019-08-15 15:38:12 +00:00
364831ae58
fix cd
2019-08-15 08:32:04 +00:00
31d7707d19
download instead of git pull
...
download translation maps rather than running a git pull
translation maps will now be bzip2 compressed to reduce traffic to a minimum
fixes #432
2019-08-14 14:43:47 +00:00
bbf226aeda
remove glastopf
2019-06-03 19:57:50 +00:00
a7e553efe9
still working on fatt
2019-06-03 16:13:58 +00:00
f870c8e885
continue working on fatt
2019-06-03 10:22:07 +00:00
867bda6ad7
increase number of fields limit
...
#382
2019-05-31 15:34:29 +00:00
c09547e3a4
adjust group and permissions for /data
2019-05-08 11:16:48 +00:00
e8d8773863
tweaking
2019-03-19 11:08:23 +00:00
573ceb98a1
bump elk stack to 6.6.2, replace wget with aria2 to speed up d/l
2019-03-15 22:23:30 +00:00
6f30322ad5
prepare for honeypy
2019-03-10 18:15:59 +00:00
869f05ca8b
cleanup
2019-03-01 21:08:36 +00:00
e1fe025dd7
remove fallback
2019-02-28 21:03:07 +00:00
728607a2da
bump elk stack to 6.6.1
2019-02-28 14:52:42 +00:00
9664d7b6c3
kibana pin to alpine 3.8
2019-02-25 15:49:26 +00:00
4754526884
bump elk stack to 6.5.4
2019-01-14 20:41:08 +00:00
c4bae5f715
bump elk stack to 6.5.2
2018-12-10 17:25:46 +00:00
c7873554c3
prepare for adbhoney
2018-12-05 16:59:08 +00:00
1c8074bce3
update docs, screenshots
2018-11-24 01:05:21 +01:00
aa17604a7a
change defaults for kibana.yml
2018-11-23 22:32:11 +00:00
5e8345695f
bump elk stack to 6.5.1
...
fix docker hub build
2018-11-22 23:18:59 +00:00
ece169dd76
update docker-compose files
2018-11-21 09:26:31 +00:00
ed921d31f8
cleaning up
2018-11-19 12:34:07 +00:00
53383f7313
rename fields
2018-11-19 11:33:00 +00:00
5754c79086
clean up log sources
2018-11-13 15:46:57 +00:00
106193fac5
fix for CVE-2018-17244
2018-11-09 14:36:54 +00:00
c46d3e4f6f
bump elk to 6.4.2
2018-10-12 16:07:20 +00:00
0c86bd9a5a
tweaking
2018-09-11 12:19:26 +00:00
992d453b9a
medpot tweaking
2018-09-11 07:59:14 +00:00
