telekom-security/tpotce
1
0
Fork 0
mirror of https://github.com/telekom-security/tpotce.git synced 2025-07-02 01:27:27 -04:00
Code Issues Packages Projects Releases Wiki Activity
1,673 Commits 8 Branches 18 Tags
4ea2a11a445ccee2e8f44af744b4a0a35c09a48c
Commit Graph

88 Commits

Author SHA1 Message Date
t3chn0m4g3
9705538dba fix typo 2022-03-30 18:00:15 +00:00
t3chn0m4g3
22276d1cc6 fix permissions for distributed setup 2022-03-30 15:53:08 +00:00
t3chn0m4g3
5237215bf0 tweaking, add sentrypeer to logstash config 2022-02-24 17:39:57 +00:00
t3chn0m4g3
656c99446e fix template 2022-02-20 16:38:15 +00:00
t3chn0m4g3
a73c4b67d9 reduce index refresh to 1s 2022-02-18 19:55:31 +00:00
t3chn0m4g3
7ee263e8e8 bump elastic stack to 8.0.0 2022-02-16 02:55:20 +00:00
t3chn0m4g3
278c7aa61a bump elastic stack to 7.17.0 2022-02-02 22:57:50 +00:00
t3chn0m4g3
a507bc5f39 logstash cleanup, prep for multiarch, move to ubuntu 
log4pot tweaking
 2022-01-23 14:49:07 +00:00
t3chn0m4g3
3524bafda2 Cleanup, Tweaking 
Remove old Sensor Edition and replace with Pot Edition
Rename Pot Edition to new Sensor Edition
POT is now called SENSOR
 2022-01-20 18:26:43 +00:00
t3chn0m4g3
602d1cc673 bump Elastic Stack to 7.16.3, change deprecated fields 2022-01-20 10:32:10 +00:00
t3chn0m4g3
d301cf0447 tweaking, remove honeypy => deprecated 2022-01-17 17:45:03 +00:00
t3chn0m4g3
c611101987 improve nginx logging 2022-01-17 17:15:04 +00:00
t3chn0m4g3
68d6aa4180 fix data fields with regard to the request field, log4pot, nginx 2022-01-17 14:50:50 +00:00
t3chn0m4g3
0e5986d2df Tweaking 
Remove Elasticsearch-Curator in packages, configs and references (BREAKING CHANGE)
Add Index Lifecycle Management in favor of elasticsearch-curator
Point all images to 2203 tags
 2022-01-14 15:52:08 +00:00
t3chn0m4g3
fb49a77180 tweaking, json_batch transfer to hive 2022-01-07 15:41:57 +00:00
t3chn0m4g3
788a4c4f98 prepare for new attack map feature 
tweaking, cleanup
 2022-01-04 16:16:27 +00:00
t3chn0m4g3
68b080a3a8 Work in progress! 
This is the foundation for the distributed T-Pot feature,
highly work in progress, only works with local docker image builds,
will be available for prod for upcoming T-Pot 22xx.
 2022-01-03 18:24:17 +00:00
t3chn0m4g3
ef1a1fa057 Merge branch 'master' of https://github.com/telekom-security/tpotce 2021-12-21 11:37:18 +00:00
t3chn0m4g3
daf41b4b71 tweaking 2021-12-21 11:36:38 +00:00
t3chn0m4g3
aaccb43471 bump elk stack to 7.16.2 
ELK 7.16.2 includes log4j 2.17.0 to address latest issues
 2021-12-20 11:17:18 +00:00
t3chn0m4g3
b0339610a2 Prep for Log4Pot integration 2021-12-16 20:25:40 +00:00
t3chn0m4g3
a98b447556 ELK 7.16.1 fixes log4j vulns. 2021-12-13 15:59:48 +00:00
t3chn0m4g3
5f29516197 tweaking 2021-12-08 23:55:13 +00:00
t3chn0m4g3
ce39e1bd4f logstash logging for honeypots 2021-11-19 23:20:13 +00:00
t3chn0m4g3
c9b909e51d finetune new honeypots logging 2021-11-02 19:13:28 +00:00
t3chn0m4g3
ea624351b5 finetuning logstash.conf for new honeypots 2021-10-29 16:28:16 +00:00
t3chn0m4g3
c1eb9f7216 logstash parsing for ddospot, hellpot 2021-10-28 18:57:55 +00:00
t3chn0m4g3
1a844d13ba start integrating new honeypots into ELK 2021-10-27 16:14:52 +00:00
t3chn0m4g3
348a5d572b bump elastic stack to 7.15.1 2021-10-26 13:56:38 +00:00
t3chn0m4g3
9de1bdd0b5 tweaking, bump elastic stack to 7.14.1, rebuild dashboards 2021-09-15 15:58:44 +00:00
t3chn0m4g3
06ef8850fe prep for ELK 7.13.4, start full integration of new honeypots 2021-08-25 15:04:27 +00:00
t3chn0m4g3
4cb84166c5 bump ewsposter to 1.2.0, elk stack to 7.13.2 2021-06-28 16:30:40 +00:00
t3chn0m4g3
f51ab7ec0f prepare to bump elastic stack to 7.13.1 2021-06-10 17:03:22 +00:00
t3chn0m4g3
0c5ab33b8a bump elastic stack to 7.12.1 2021-05-17 16:32:03 +00:00
t3chn0m4g3
92925cecbd bump dicompot to latest master 2020-10-27 21:30:33 +00:00
t3chn0m4g3
54a6a944aa prep for ipphoney 2020-08-25 12:25:59 +00:00
t3chn0m4g3
b86d2c715b prep for ipphoney 2020-08-24 21:36:08 +00:00
t3chn0m4g3
5080151b7c prep for elk 7.9 2020-08-24 10:35:46 +00:00
t3chn0m4g3
16a7cdb975 tweaking 
Update logstash config for new Dicompot fields
Revert Dionaea back to 0.8.0, latest master was unstable
 2020-06-26 23:48:48 +00:00
t3chn0m4g3
238a08b055 tweaking 
cleanup index-pattern
add dicompot log to logstash
 2020-06-24 13:21:29 +00:00
t3chn0m4g3
99d8cf9b32 fix for query fields 2020-06-24 10:22:09 +00:00
t3chn0m4g3
81c6351cf1 fix for keeping daily index 2020-06-23 21:40:38 +00:00
t3chn0m4g3
a396356785 add honeysap logstash config 2020-06-19 22:53:56 +00:00
t3chn0m4g3
2882668826 Add a new elasticsearch honeypot 
adjust installer
adjust elasticpot configs to T-Pot's environment
create Dockerfile
adjust logstash config
update Readme
 2020-06-17 18:09:59 +00:00
t3chn0m4g3
680194adf7 prep for new listbot FQDN 2020-05-12 09:19:09 +00:00
Marco Ochse
ed73d83317 Update update.sh 2020-04-22 17:48:32 +02:00
Marco Ochse
1a7b3b3795 Load listbot data from OTC 2020-04-22 16:50:41 +02:00
t3chn0m4g3
73e1842c16 offload listbot from netlify CDN 2020-04-02 13:12:11 +00:00
t3chn0m4g3
b9da9f04af adjust default field 2020-02-03 12:18:43 +00:00
t3chn0m4g3
984ba958fb logstash template not upgraded 
with daily index enabled logstash will not be able to put new events into ES
simple solution, just deleting logstash template upon logstash start and leave it to logstash to upload the latest template
.
 2020-02-01 14:08:23 +00:00