This repository has been archived by the owner on Nov 1, 2023. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 115
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
* Updating winlogbeat to support the Elastic Common Schema * updating documentation for new winlogbeat files * Update to ES 7.8 * Updating deployment questions to make them more clear * Providing instructions to update winlogbeat * Adding syslog support * Adding directory creation command * Removing reporting settings as this is currently broken, Fixed in the unreleased 7.8.1 elastic/kibana#69621 * The module files are now actually shipped with ES 7.8.0 so not including them in the git, Removing the version named directory for install as this would break updates. * Removing module files that are no longer needed * changing install script to reflect the fact that network and hashing is now suitable in our recommended sysmon config * Updating winlogbeat to support ECS with forwarded events, Fixes the multi script issues * Updating logstash config to support syslog via pipelines * Adding pipeline upgrade paths and updating documentation * Updating Documentation and screenshots for v0.3 * Adding more screenshots of v0.3 * Adding kibana saved objects encryption key settings * Correcting variable name * adding screenshots for siem activation * Updating siem instructions and adding more screenshots * Removing NGINX mention as this was removed in v0.2
- Loading branch information
1 parent
e1a4cd4
commit d2caa4a
Showing
21 changed files
with
558 additions
and
52 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1 +1 @@ | ||
C:\WINDOWS\Sysmon64.exe -i c:\WINDOWS\sysmonconf.xml -accepteula -h sha1,sha256 -n | ||
C:\WINDOWS\Sysmon64.exe -i c:\WINDOWS\sysmonconf.xml -accepteula |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Large diffs are not rendered by default.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.