81c6351cf1 
					 
					
						
						
							
							fix for keeping daily index  
						
						
						
						
					 
					
						2020-06-23 21:40:38 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						a396356785 
					 
					
						
						
							
							add honeysap logstash config  
						
						
						
						
					 
					
						2020-06-19 22:53:56 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						2882668826 
					 
					
						
						
							
							Add a new elasticsearch honeypot  
						
						... 
						
						
						
						adjust installer
adjust elasticpot configs to T-Pot's environment
create Dockerfile
adjust logstash config
update Readme 
						
						
					 
					
						2020-06-17 18:09:59 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						680194adf7 
					 
					
						
						
							
							prep for new listbot FQDN  
						
						
						
						
					 
					
						2020-05-12 09:19:09 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						ed73d83317 
					 
					
						
						
							
							Update update.sh  
						
						
						
						
					 
					
						2020-04-22 17:48:32 +02:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						1a7b3b3795 
					 
					
						
						
							
							Load listbot data from OTC  
						
						
						
						
					 
					
						2020-04-22 16:50:41 +02:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						73e1842c16 
					 
					
						
						
							
							offload listbot from netlify CDN  
						
						
						
						
					 
					
						2020-04-02 13:12:11 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						b9da9f04af 
					 
					
						
						
							
							adjust default field  
						
						
						
						
					 
					
						2020-02-03 12:18:43 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						984ba958fb 
					 
					
						
						
							
							logstash template not upgraded  
						
						... 
						
						
						
						with daily index enabled logstash will not be able to put new events into ES
simple solution, just deleting logstash template upon logstash start and leave it to logstash to upload the latest template
. 
						
						
					 
					
						2020-02-01 14:08:23 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						5a4724bcba 
					 
					
						
						
							
							elk 7.x dev test  
						
						
						
						
					 
					
						2020-01-31 14:21:55 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						f110eb08b0 
					 
					
						
						
							
							prepare for mailoney json logging  
						
						
						
						
					 
					
						2020-01-22 12:17:30 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						1d0aad3b34 
					 
					
						
						
							
							tweak logstash.conf for citrixhoneypot  
						
						
						
						
					 
					
						2020-01-16 18:04:29 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						a6ed6613a5 
					 
					
						
						
							
							prepare citrixhoneypot for ELK integration  
						
						
						
						
					 
					
						2020-01-16 15:13:58 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						bf39c0f5b2 
					 
					
						
						
							
							bump elastic stack to 6.7.2  
						
						
						
						
					 
					
						2019-08-15 15:38:12 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						31d7707d19 
					 
					
						
						
							
							download instead of git pull  
						
						... 
						
						
						
						download translation maps rather than running a git pull
translation maps will now be bzip2 compressed to reduce traffic to a minimum
fixes  #432  
						
						
					 
					
						2019-08-14 14:43:47 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						bbf226aeda 
					 
					
						
						
							
							remove glastopf  
						
						
						
						
					 
					
						2019-06-03 19:57:50 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						a7e553efe9 
					 
					
						
						
							
							still working on fatt  
						
						
						
						
					 
					
						2019-06-03 16:13:58 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						f870c8e885 
					 
					
						
						
							
							continue working on fatt  
						
						
						
						
					 
					
						2019-06-03 10:22:07 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						867bda6ad7 
					 
					
						
						
							
							increase number of fields limit  
						
						... 
						
						
						
						#382  
					
						2019-05-31 15:34:29 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						c09547e3a4 
					 
					
						
						
							
							adjust group and permissions for /data  
						
						
						
						
					 
					
						2019-05-08 11:16:48 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						e8d8773863 
					 
					
						
						
							
							tweaking  
						
						
						
						
					 
					
						2019-03-19 11:08:23 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						6f30322ad5 
					 
					
						
						
							
							prepare for honeypy  
						
						
						
						
					 
					
						2019-03-10 18:15:59 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						e1fe025dd7 
					 
					
						
						
							
							remove fallback  
						
						
						
						
					 
					
						2019-02-28 21:03:07 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						728607a2da 
					 
					
						
						
							
							bump elk stack to 6.6.1  
						
						
						
						
					 
					
						2019-02-28 14:52:42 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						c7873554c3 
					 
					
						
						
							
							prepare for adbhoney  
						
						
						
						
					 
					
						2018-12-05 16:59:08 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						ed921d31f8 
					 
					
						
						
							
							cleaning up  
						
						
						
						
					 
					
						2018-11-19 12:34:07 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						53383f7313 
					 
					
						
						
							
							rename fields  
						
						
						
						
					 
					
						2018-11-19 11:33:00 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						5754c79086 
					 
					
						
						
							
							clean up log sources  
						
						
						
						
					 
					
						2018-11-13 15:46:57 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						992d453b9a 
					 
					
						
						
							
							medpot tweaking  
						
						
						
						
					 
					
						2018-09-11 07:59:14 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						f0f6981f34 
					 
					
						
						
							
							add medpot to ELK  
						
						
						
						
					 
					
						2018-09-10 01:15:21 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						79bb324a4a 
					 
					
						
						
							
							rename conpot fields to match index pattern  
						
						
						
						
					 
					
						2018-08-28 13:30:58 +02:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						d19d3823f6 
					 
					
						
						
							
							prevent status field from being indexed as string  
						
						
						
						
					 
					
						2018-08-28 12:41:11 +02:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						59c8c5b34c 
					 
					
						
						
							
							bump ELK to 6.4.0  
						
						... 
						
						
						
						YES! Index patterns can finally exported through Kibana! A joy to the ELK world :-) 
						
						
					 
					
						2018-08-24 17:07:00 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						1dd57d8022 
					 
					
						
						
							
							NGINX logs are in /data/nginx/log/  
						
						... 
						
						
						
						Syslog should be viewed in Cockpit now, storing events of Syslog in ELK
is ineffective 
						
						
					 
					
						2018-06-24 03:24:51 +02:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						37424eb541 
					 
					
						
						
							
							cleanup  
						
						
						
						
					 
					
						2018-05-29 12:06:20 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						72313a600d 
					 
					
						
						
							
							include tanner patterns, tweaking  
						
						
						
						
					 
					
						2018-05-29 12:05:07 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						428ee43c18 
					 
					
						
						
							
							prepare for tanner  
						
						
						
						
					 
					
						2018-05-28 21:46:51 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						3bea740632 
					 
					
						
						
							
							tweaking  
						
						
						
						
					 
					
						2018-05-09 16:43:37 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						b1fbcd9532 
					 
					
						
						
							
							tweaking, hardening  
						
						
						
						
					 
					
						2018-05-04 16:29:55 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						40244d3bcb 
					 
					
						
						
							
							ciscoasa, tweaking, hardening, logging, logstash  
						
						
						
						
					 
					
						2018-04-27 23:10:45 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						89d31ffbe0 
					 
					
						
						
							
							finalize elk6.x docker images  
						
						... 
						
						
						
						continue working on elk6.x helper scripts
cleaning up 
						
						
					 
					
						2018-04-20 21:22:46 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						6e072980a0 
					 
					
						
						
							
							start on elk6.x  
						
						
						
						
					 
					
						2018-04-18 15:21:32 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						446880de55 
					 
					
						
						
							
							tweaking  
						
						
						
						
					 
					
						2018-04-16 22:05:16 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						c9a33870ff 
					 
					
						
						
							
							prep for 18.04  
						
						
						
						
					 
					
						2018-03-25 18:35:32 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						70f75d51ee 
					 
					
						
						
							
							remove listbot sources  
						
						
						
						
					 
					
						2017-10-21 16:32:14 +02:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						f2880ec3d6 
					 
					
						
						
							
							refine ip matching  
						
						... 
						
						
						
						fix regex to only match IPs at the beginning of a line 
						
						
					 
					
						2017-10-21 16:00:03 +02:00 
						 
				 
			
				
					
						
					 
					
						
						
							
						
						0d5d80b1e3 
					 
					
						
						
							
							include docker repos  
						
						... 
						
						
						
						... skip emobility since it is a dev repo 
						
						
					 
					
						2017-10-13 18:58:14 +00:00