outflanknl RedELK issues

outflanknl / RedELK

Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.

BSD 3-Clause "New" or "Revised" License

2.38k stars 370 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

Fixed typo in IBM module

#210 fastlorenzo closed 2 years ago
0
alarm_filehash: force result conversion to int

#209 fastlorenzo closed 2 years ago
0
Moved error handling from modules to daemon script

#208 fastlorenzo closed 2 years ago
0
Add missing Greynoise API key in header

#207 fastlorenzo closed 2 years ago
0
Fixed incorrect tr regex on password generation

#206 MarcOverIP closed 2 years ago
0
Make Kibana 5601 port always accessible from localhost elkserver

#205 MarcOverIP closed 2 years ago
0
Erroneous Password Generation

#204 FuzzySecurity closed 2 years ago
1
Support for Empire C2

#203 Cx01N opened 3 years ago
2
removed outflank.nl as active domain to check

#202 MarcOverIP closed 3 years ago
0
Fix alarm_filehash error

#201 fastlorenzo closed 3 years ago
1
Fix issue 199 wrong paths in rsync

#200 MarcOverIP closed 3 years ago
1
rsync command in getremotelogs.sh pulls from wrong directory

#199 78454674 closed 3 years ago
3
Change rsync command for docker friendly file permissions

#198 MarcOverIP closed 3 years ago
2
python scripts should do sanity checks before running

#197 MarcOverIP closed 2 years ago
0
python script alarm_filehash throws error on VT data

#196 MarcOverIP closed 3 years ago
0
python script for greynosie throws error

#195 MarcOverIP closed 2 years ago
0
Support for Nuages C2

#194 fastlorenzo opened 3 years ago
2
RedWarden redirector support

#193 MarcOverIP opened 3 years ago
6
Generic solution to multiple C2 support

#192 MarcOverIP closed 3 years ago
1
Outflank Stage1 C2 integration

#191 MarcOverIP closed 3 years ago
1
rsync command in getremotelogs.sh messes up permissions

#190 MarcOverIP closed 3 years ago
4
Fixed GH action for pylint

#189 fastlorenzo closed 3 years ago
0
FIxed merge error

#188 fastlorenzo closed 3 years ago
0
Updated traffic dashboard + fixed implant log file URL

#187 fastlorenzo closed 3 years ago
0
Alarm/Enrich for daemon.py always says 'missing configuration'. Parsing dict key is incorrect.

#186 FLeiXiuS closed 3 years ago
2
How to verify alarms manually

#185 FLeiXiuS closed 3 years ago
1
Change Kibana default time window

#184 MarcOverIP closed 2 years ago
1
Moved Greynoise support to Community API

#183 fastlorenzo closed 3 years ago
4
Add pylint support (cont'd)

#182 fastlorenzo closed 3 years ago
0
Fullchain Cert Generation, relative path assumption

#181 FuzzySecurity closed 3 years ago
6
Fix python deps

#180 fastlorenzo closed 3 years ago
0
Elkinstaller fixes

#179 MarcOverIP closed 3 years ago
0
Bump urllib3 from 1.26.4 to 1.26.5 in /elkserver/docker/redelk-base/redelkinstalldata/scripts

#178 dependabot[bot] closed 3 years ago
1
New alarm: new implant for a new host

#177 fastlorenzo opened 3 years ago
0
New alarm: new implant from a new user

#176 fastlorenzo opened 3 years ago
3
Small fix to make httptraffic alarm work again

#175 fastlorenzo closed 3 years ago
0
Docker mem tuning

#174 MarcOverIP closed 3 years ago
8
Added pylint and re-formatted python code

#173 fastlorenzo closed 3 years ago
0
Fix filehash alarm

#172 fastlorenzo closed 3 years ago
0
Greynoise enrichment not working due to API change

#171 MarcOverIP closed 2 years ago
10
Memory mngt for docker aligned to best practices

#170 MarcOverIP closed 3 years ago
3
Fix es fields

#169 fastlorenzo closed 3 years ago
0
Updates release notes for v2 beta4

#168 MarcOverIP closed 3 years ago
0
export_kibana_config script should import credentials

#167 MarcOverIP closed 2 years ago
0
Fixed rsync

#166 fastlorenzo closed 3 years ago
0
Fix logging

#165 fastlorenzo closed 3 years ago
0
Revert neo4j changes

#164 fastlorenzo closed 3 years ago
0
💡 Add the possibility to "flag" key events

#163 fastlorenzo opened 3 years ago
1
Updated neo4j container + added behind Nginx

#162 fastlorenzo closed 3 years ago
1
Revert "Moved to neo4j official docker to fix #159"

#161 MarcOverIP closed 3 years ago
0

Previous Next