238a08b055
tweaking
...
cleanup index-pattern
add dicompot log to logstash
2020-06-24 13:21:29 +00:00
99d8cf9b32
fix for query fields
2020-06-24 10:22:09 +00:00
81c6351cf1
fix for keeping daily index
2020-06-23 21:40:38 +00:00
65e849cf33
bump elk stack to 7.8
2020-06-21 21:11:21 +00:00
a396356785
add honeysap logstash config
2020-06-19 22:53:56 +00:00
a7c653e7fe
start integrating honeysap
2020-06-19 11:54:50 +00:00
697c5cb3f6
begin integration of dicompot
2020-06-18 16:38:43 +00:00
2882668826
Add a new elasticsearch honeypot
...
adjust installer
adjust elasticpot configs to T-Pot's environment
create Dockerfile
adjust logstash config
update Readme
2020-06-17 18:09:59 +00:00
27a5db9edf
alpine 3.11 needs py3-pip in extra package
2020-06-16 11:28:56 +00:00
4cc1aa08c2
tweaking
...
Bump ELK stack to 7.7.1
Install curator via pip
Some tweaks
2020-06-08 21:56:16 +00:00
be918033e0
bump to ELK 7.7.0
2020-05-14 16:27:57 +00:00
680194adf7
prep for new listbot FQDN
2020-05-12 09:19:09 +00:00
be7afd8042
Merge pull request #636 from dtag-dev-sec/master
...
merge master to dev
2020-05-12 10:31:34 +02:00
fea6b8a646
correct typo
...
fixes #635
2020-05-11 17:21:22 +02:00
cbefe6a074
Update capture-filter.bpf
2020-04-22 17:49:59 +02:00
ed73d83317
Update update.sh
2020-04-22 17:48:32 +02:00
34bbbf59ac
Update Dockerfile
2020-04-22 17:16:19 +02:00
a6c8d3d712
Update Dockerfile
2020-04-22 17:15:44 +02:00
1a7b3b3795
Load listbot data from OTC
2020-04-22 16:50:41 +02:00
73e1842c16
offload listbot from netlify CDN
2020-04-02 13:12:11 +00:00
2201e072f6
testing honeysap
2020-03-12 16:02:43 +00:00
fb06c46793
Merge branch 'dev' of https://github.com/dtag-dev-sec/tpotce into dev
2020-03-09 10:44:36 +00:00
f76d8ab161
update delivery window
2020-03-09 10:43:52 +00:00
a256ecedc8
Merge branch 'master' into dev
2020-03-09 11:20:39 +01:00
fb3777141b
tanner, prepare merger w/ master
2020-03-09 09:44:26 +00:00
a18304dfdc
tanner, prepare merger w/ master
2020-03-09 09:35:19 +00:00
6a703544c6
tweaking
2020-03-05 23:58:27 +00:00
941a0e1587
tweaking
2020-03-05 23:22:03 +00:00
692a21ddb1
tanner tweaking and testing
...
include unsecure, fix name bug
2020-03-05 23:12:49 +00:00
df22adb45d
bump elk stack to 7.6.1
2020-03-05 21:20:11 +00:00
07c68c85bb
tweaking
2020-03-04 14:36:03 +00:00
a4227e6a9f
tweaking
2020-03-04 12:12:12 +00:00
3b8c959c66
tweaking
2020-03-03 12:30:57 +00:00
5d7a6f3270
tweaking
2020-03-02 15:23:05 +00:00
53e9470d58
cleanup
2020-02-27 10:35:50 +00:00
bf7d1299ca
tweaking
2020-02-26 14:22:48 +00:00
70dca02ce4
tweaking
2020-02-25 16:59:22 +00:00
6bfcf8b1c4
tweaking
2020-02-24 16:43:34 +00:00
bd0e6936eb
bump heralding to latest master
...
fixed by https://github.com/johnnykv/heralding/issues/129#event-3058184614
2020-02-21 11:38:29 +00:00
545209dce6
fix for honeytrap
2020-02-15 15:40:47 +00:00
153f7be9dc
cleanup
2020-02-14 17:26:53 +00:00
faa5667246
bump adbhoney, cowrie, honeytrap to 20.06
2020-02-14 17:22:30 +00:00
f11ad6b523
tweaking
...
ELK 7.6.0 is not ready for production, however it works if APM is enabled (disabled in config, so image wont build as precaution)
Remove SISSDEN from ewsposter, suricata
Bump suricata to 5.0.1
Alpine now support suricata incl. enabled JA3 support, move back to Alpine install
2020-02-14 15:28:06 +00:00
b31225b97c
Merge pull request #524 from pisces-period/pisces-period-cowrie-patch
...
make Dockerfile compatible with any Python version
2020-02-03 17:17:25 +01:00
ad861200de
update mailoney
2020-02-03 14:46:43 +00:00
5ce5911ec1
cleanup
2020-02-03 12:59:21 +00:00
b9da9f04af
adjust default field
2020-02-03 12:18:43 +00:00
984ba958fb
logstash template not upgraded
...
with daily index enabled logstash will not be able to put new events into ES
simple solution, just deleting logstash template upon logstash start and leave it to logstash to upload the latest template
.
2020-02-01 14:08:23 +00:00
64729f5064
remove ilm support, breaks existing index at upgrade
2020-01-31 15:50:34 +00:00
5a4724bcba
elk 7.x dev test
2020-01-31 14:21:55 +00:00
