Alex-Devera/tpotce
1
0
Fork 0
mirror of https://github.com/telekom-security/tpotce.git synced 2025-04-29 11:48:52 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
1257 commits 8 branches 18 tags 388 MiB
Commit graph

49 commits

Author SHA1 Message Date
t3chn0m4g3
238a08b055 tweaking 
cleanup index-pattern
add dicompot log to logstash
 2020-06-24 13:21:29 +00:00
t3chn0m4g3
99d8cf9b32 fix for query fields 2020-06-24 10:22:09 +00:00
t3chn0m4g3
81c6351cf1 fix for keeping daily index 2020-06-23 21:40:38 +00:00
t3chn0m4g3
a396356785 add honeysap logstash config 2020-06-19 22:53:56 +00:00
t3chn0m4g3
2882668826 Add a new elasticsearch honeypot 
adjust installer
adjust elasticpot configs to T-Pot's environment
create Dockerfile
adjust logstash config
update Readme
 2020-06-17 18:09:59 +00:00
t3chn0m4g3
680194adf7 prep for new listbot FQDN 2020-05-12 09:19:09 +00:00
Marco Ochse
ed73d83317
Update update.sh 2020-04-22 17:48:32 +02:00
Marco Ochse
1a7b3b3795
Load listbot data from OTC 2020-04-22 16:50:41 +02:00
t3chn0m4g3
73e1842c16 offload listbot from netlify CDN 2020-04-02 13:12:11 +00:00
t3chn0m4g3
b9da9f04af adjust default field 2020-02-03 12:18:43 +00:00
t3chn0m4g3
984ba958fb logstash template not upgraded 
with daily index enabled logstash will not be able to put new events into ES
simple solution, just deleting logstash template upon logstash start and leave it to logstash to upload the latest template
.
 2020-02-01 14:08:23 +00:00
t3chn0m4g3
5a4724bcba elk 7.x dev test 2020-01-31 14:21:55 +00:00
t3chn0m4g3
f110eb08b0 prepare for mailoney json logging 2020-01-22 12:17:30 +00:00
t3chn0m4g3
1d0aad3b34 tweak logstash.conf for citrixhoneypot 2020-01-16 18:04:29 +00:00
t3chn0m4g3
a6ed6613a5 prepare citrixhoneypot for ELK integration 2020-01-16 15:13:58 +00:00
t3chn0m4g3
bf39c0f5b2 bump elastic stack to 6.7.2 2019-08-15 15:38:12 +00:00
t3chn0m4g3
31d7707d19 download instead of git pull 
download translation maps rather than running a git pull
translation maps will now be bzip2 compressed to reduce traffic to a minimum
fixes #432
 2019-08-14 14:43:47 +00:00
t3chn0m4g3
bbf226aeda remove glastopf 2019-06-03 19:57:50 +00:00
t3chn0m4g3
a7e553efe9 still working on fatt 2019-06-03 16:13:58 +00:00
t3chn0m4g3
f870c8e885 continue working on fatt 2019-06-03 10:22:07 +00:00
listbot
867bda6ad7 increase number of fields limit 
#382
 2019-05-31 15:34:29 +00:00
listbot
c09547e3a4 adjust group and permissions for /data 2019-05-08 11:16:48 +00:00
t3chn0m4g3
e8d8773863 tweaking 2019-03-19 11:08:23 +00:00
t3chn0m4g3
6f30322ad5 prepare for honeypy 2019-03-10 18:15:59 +00:00
listbot
e1fe025dd7 remove fallback 2019-02-28 21:03:07 +00:00
listbot
728607a2da bump elk stack to 6.6.1 2019-02-28 14:52:42 +00:00
t3chn0m4g3
c7873554c3 prepare for adbhoney 2018-12-05 16:59:08 +00:00
t3chn0m4g3
ed921d31f8 cleaning up 2018-11-19 12:34:07 +00:00
t3chn0m4g3
53383f7313 rename fields 2018-11-19 11:33:00 +00:00
t3chn0m4g3
5754c79086 clean up log sources 2018-11-13 15:46:57 +00:00
t3chn0m4g3
992d453b9a medpot tweaking 2018-09-11 07:59:14 +00:00
t3chn0m4g3
f0f6981f34 add medpot to ELK 2018-09-10 01:15:21 +00:00
Marco Ochse
79bb324a4a
rename conpot fields to match index pattern 2018-08-28 13:30:58 +02:00
Marco Ochse
d19d3823f6
prevent status field from being indexed as string 2018-08-28 12:41:11 +02:00
listbot
59c8c5b34c bump ELK to 6.4.0 
YES! Index patterns can finally exported through Kibana! A joy to the ELK world :-)
 2018-08-24 17:07:00 +00:00
Marco Ochse
1dd57d8022 NGINX logs are in /data/nginx/log/ 
Syslog should be viewed in Cockpit now, storing events of Syslog in ELK
is ineffective
 2018-06-24 03:24:51 +02:00
Marco Ochse
37424eb541 cleanup 2018-05-29 12:06:20 +00:00
Marco Ochse
72313a600d include tanner patterns, tweaking 2018-05-29 12:05:07 +00:00
Marco Ochse
428ee43c18 prepare for tanner 2018-05-28 21:46:51 +00:00
Marco Ochse
3bea740632 tweaking 2018-05-09 16:43:37 +00:00
Marco Ochse
b1fbcd9532 tweaking, hardening 2018-05-04 16:29:55 +00:00
Marco Ochse
40244d3bcb ciscoasa, tweaking, hardening, logging, logstash 2018-04-27 23:10:45 +00:00
Marco Ochse
89d31ffbe0 finalize elk6.x docker images 
continue working on elk6.x helper scripts
cleaning up
 2018-04-20 21:22:46 +00:00
Marco Ochse
6e072980a0 start on elk6.x 2018-04-18 15:21:32 +00:00
Marco Ochse
446880de55 tweaking 2018-04-16 22:05:16 +00:00
Marco Ochse
c9a33870ff prep for 18.04 2018-03-25 18:35:32 +00:00
Marco Ochse
70f75d51ee remove listbot sources 2017-10-21 16:32:14 +02:00
Marco Ochse
f2880ec3d6 refine ip matching 
fix regex to only match IPs at the beginning of a line
 2017-10-21 16:00:03 +02:00
Marco Ochse
0d5d80b1e3 include docker repos 
... skip emobility since it is a dev repo
 2017-10-13 18:58:14 +00:00