issues
search
Security-Onion-Solutions
/
securityonion-elsa-extras
10
stars
20
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Make consistent with securityonion-elsa-reset
#29
phil1090
closed
7 years ago
0
add delaycompress for elsa logs
#28
petiepooo
closed
7 years ago
1
refactor of securityonion-elsa-reset
#27
4A61736F6E
closed
7 years ago
1
Add ELSA Log Storage Calculator
#26
weslambert
closed
7 years ago
1
added 5140 parser
#25
theflakes
closed
7 years ago
1
Windows process enhancments
#24
theflakes
closed
8 years ago
4
Added better parsing for event id 4776
#23
theflakes
closed
8 years ago
1
Parse event ids 4776s appropriately
#22
theflakes
closed
8 years ago
1
Autoruns - Tightened Pattern Matching
#21
defensivedepth
closed
8 years ago
0
Sysmon 4 and 4.11 most parsers
#20
strengthnotes
closed
8 years ago
1
Create bro_knowndevices
#19
jeffhammett
opened
8 years ago
1
Add bro's modbus and dnp3 logs to elsa.
#18
tadglines
closed
8 years ago
5
Create Autoruns Class
#17
defensivedepth
closed
8 years ago
0
Remove non-ASCII character
#16
harvii
closed
8 years ago
1
Parser additions
#15
theflakes
closed
8 years ago
3
hardcoded mysql credentials in postinst
#14
petiepooo
opened
8 years ago
5
Update securityonion-patterndb.xml
#13
jeffhammett
closed
8 years ago
2
CISCO parsers
#12
theflakes
closed
8 years ago
4
Change NameVirtualHost to eliminate warning on apache restart
#11
petiepooo
closed
9 years ago
2
Sysmon RemoteThread ELSA parsers
#10
strengthnotes
closed
8 years ago
5
Add OSSEC IIS Logs
#9
strengthnotes
closed
9 years ago
0
Updated decoder for Sysmon v3 & cosmetic tweak to v1
#8
defensivedepth
closed
9 years ago
0
Add OSSEC IIS Logs
#7
strengthnotes
closed
9 years ago
2
better parsing of 4740 user lockout events
#6
theflakes
closed
9 years ago
0
Edited for SysmonV3 EventID 1 log compatibility
#5
defensivedepth
closed
9 years ago
3
Updated test and parsers for logs as they are in the sylog_data db
#4
theflakes
closed
9 years ago
0
Added Windows and Cisco VPN ELSA parsing
#3
theflakes
closed
9 years ago
10
Update bro_intel to match new Bro 2.4 schema
#2
branchnetconsulting
closed
9 years ago
0
parser.ql, patterndb refactoring
#1
karolisc
closed
9 years ago
3