Alex-Devera/tpotce
1
0
Fork 0
mirror of https://github.com/telekom-security/tpotce.git synced 2025-04-29 03:38:51 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
1287 commits 8 branches 18 tags 388 MiB
Commit graph

316 commits

Author SHA1 Message Date
t3chn0m4g3
f1275e5b07 fix 2019-08-16 16:55:36 +00:00
Marco Ochse
4164b75bea
Fixed 
DockerHub already uses 3.7
 2019-08-16 17:59:05 +02:00
Marco Ochse
c2afdc0f1f
Fix for DockerHub 
Works just fine on local build.
 2019-08-16 17:46:17 +02:00
t3chn0m4g3
e0427cfc21 bump tanner to latest master 2019-08-16 14:43:10 +00:00
t3chn0m4g3
786ab5c082 adjust dionaea, fixes #435 2019-08-16 12:18:28 +00:00
t3chn0m4g3
bf39c0f5b2 bump elastic stack to 6.7.2 2019-08-15 15:38:12 +00:00
t3chn0m4g3
364831ae58 fix cd 2019-08-15 08:32:04 +00:00
t3chn0m4g3
31d7707d19 download instead of git pull 
download translation maps rather than running a git pull
translation maps will now be bzip2 compressed to reduce traffic to a minimum
fixes #432
 2019-08-14 14:43:47 +00:00
t3chn0m4g3
28f5491977 bump suricata to 4.1.4 2019-06-07 13:00:20 +00:00
t3chn0m4g3
5e22afd10b finalize fatt support 2019-06-04 14:21:35 +00:00
t3chn0m4g3
8b03fb8f28 remove glastopf 2019-06-03 20:04:50 +00:00
t3chn0m4g3
bbf226aeda remove glastopf 2019-06-03 19:57:50 +00:00
t3chn0m4g3
a7e553efe9 still working on fatt 2019-06-03 16:13:58 +00:00
t3chn0m4g3
f870c8e885 continue working on fatt 2019-06-03 10:22:07 +00:00
t3chn0m4g3
4e902b6560 add fatt to nextgen 2019-06-01 17:47:14 +00:00
t3chn0m4g3
d3239b78c4 start working on fatt 2019-05-31 17:52:39 +00:00
listbot
867bda6ad7 increase number of fields limit 
#382
 2019-05-31 15:34:29 +00:00
listbot
b658a01637 fixes #381 2019-05-26 09:47:20 +00:00
Marco Ochse
efdd2fc11d
optimize build 2019-05-25 19:35:03 +02:00
listbot
c09547e3a4 adjust group and permissions for /data 2019-05-08 11:16:48 +00:00
t3chn0m4g3
d4654f2bbc prepare for hpfeeds opt in 2019-04-01 07:42:24 +00:00
t3chn0m4g3
c0d0e016e6 tweaking 
Update Heralding to support SOCKS5
Correct Readme
Resize tped.sh
 2019-03-27 13:39:23 +00:00
t3chn0m4g3
20711cb633 clean up 2019-03-26 16:30:14 +00:00
t3chn0m4g3
c7e9015a5a Bump Suricata to 4.1.3 
Build with Rust
Enable JA3
Enable more protocols
Improve payload logging
... and more.
 2019-03-26 16:26:47 +00:00
t3chn0m4g3
349982baf7 update ewsposter 2019-03-20 14:43:21 +00:00
t3chn0m4g3
e8d8773863 tweaking 2019-03-19 11:08:23 +00:00
t3chn0m4g3
573ceb98a1 bump elk stack to 6.6.2, replace wget with aria2 to speed up d/l 2019-03-15 22:23:30 +00:00
t3chn0m4g3
5dae44b5e9 prepare for sissden opt-in 2019-03-15 15:59:02 +00:00
Marco Ochse
86715ccf7c
hpfeeds ca cert sissden 2019-03-15 13:38:19 +01:00
t3chn0m4g3
2b7d8ee01e update ewsposter 2019-03-13 22:04:07 +00:00
t3chn0m4g3
0b92b56c55 store data as ascii, adjust config 2019-03-13 21:13:36 +00:00
t3chn0m4g3
6f30322ad5 prepare for honeypy 2019-03-10 18:15:59 +00:00
t3chn0m4g3
d9e5331a84 fix #313 2019-03-09 21:25:58 +00:00
t3chn0m4g3
bfa54853ab add honeypy docker 2019-03-08 21:32:09 +00:00
t3chn0m4g3
869f05ca8b cleanup 2019-03-01 21:08:36 +00:00
t3chn0m4g3
8d59602a75 tweaking 2019-03-01 13:57:21 +00:00
listbot
e1fe025dd7 remove fallback 2019-02-28 21:03:07 +00:00
listbot
6467a03d19 fix suricata ref location 2019-02-28 20:59:20 +00:00
listbot
65f242d322 cleanup 2019-02-28 15:01:12 +00:00
listbot
728607a2da bump elk stack to 6.6.1 2019-02-28 14:52:42 +00:00
t3chn0m4g3
06ccf17c5f add openssl 2019-02-26 13:25:06 +00:00
t3chn0m4g3
32043158bf bump cowrie to 1.5.3 2019-02-26 13:07:07 +00:00
t3chn0m4g3
00f068980e pin nginx to tls v1.3 2019-02-26 07:55:42 +00:00
t3chn0m4g3
9664d7b6c3 kibana pin to alpine 3.8 2019-02-25 15:49:26 +00:00
t3chn0m4g3
4e34e5c77d cyberchef pin to alpine 3.8 2019-02-25 15:28:54 +00:00
t3chn0m4g3
28d6487ff5 rdpy fix dockerfile alpine 3.9 2019-02-25 15:12:48 +00:00
t3chn0m4g3
238fc05854 glastopf fix dockerfile alpine 3.9 2019-02-25 14:48:43 +00:00
t3chn0m4g3
fd150699f2 heralding fix dockerfile alpine 3.9 2019-02-25 13:55:46 +00:00
Marco Ochse
ec30cf89b9
Update Dockerfile 2019-02-06 17:11:08 +01:00
Marco Ochse
a0fcc62bf1
Fix names for Suricata daemons 2019-02-06 16:15:51 +01:00
t3chn0m4g3
4754526884 bump elk stack to 6.5.4 2019-01-14 20:41:08 +00:00
Marco Ochse
2fa03671e2
Bump to 8.20.0 2019-01-10 10:33:24 +01:00
t3chn0m4g3
526674b5e0 fix build for tanner testing 2018-12-12 08:48:45 +00:00
t3chn0m4g3
c4bae5f715 bump elk stack to 6.5.2 2018-12-10 17:25:46 +00:00
t3chn0m4g3
9f905f70de prepare for new release 
fix for installer, now always pointing to master repo
include adbhoney and dashboard
 2018-12-07 17:50:39 +01:00
t3chn0m4g3
c7873554c3 prepare for adbhoney 2018-12-05 16:59:08 +00:00
t3chn0m4g3
223aed6676 bump cyberchef to 8.12.3 2018-12-03 10:58:44 +00:00
Marco Ochse
e939bb3545
Update README.md 2018-11-24 01:13:26 +01:00
t3chn0m4g3
1c8074bce3 update docs, screenshots 2018-11-24 01:05:21 +01:00
t3chn0m4g3
aa17604a7a change defaults for kibana.yml 2018-11-23 22:32:11 +00:00
t3chn0m4g3
5e8345695f bump elk stack to 6.5.1 
fix docker hub build
 2018-11-22 23:18:59 +00:00
t3chn0m4g3
d6a700d2b2 fix conpot 2018-11-21 12:36:13 +00:00
t3chn0m4g3
b978065a43 fix ewsposter deps 2018-11-21 10:29:03 +00:00
t3chn0m4g3
9a834c5607 avoid error on docker hub 2018-11-21 10:06:30 +00:00
t3chn0m4g3
ece169dd76 update docker-compose files 2018-11-21 09:26:31 +00:00
t3chn0m4g3
ed921d31f8 cleaning up 2018-11-19 12:34:07 +00:00
t3chn0m4g3
53383f7313 rename fields 2018-11-19 11:33:00 +00:00
listbot
7d7bdd27c1 open links in new window or tab 2018-11-15 10:17:29 +00:00
t3chn0m4g3
5754c79086 clean up log sources 2018-11-13 15:46:57 +00:00
t3chn0m4g3
106193fac5 fix for CVE-2018-17244 2018-11-09 14:36:54 +00:00
t3chn0m4g3
89a1553429 add trailing slash 2018-10-30 09:06:59 +00:00
t3chn0m4g3
fb012ae683 tls v1.3 testing 2018-10-29 15:39:22 +00:00
t3chn0m4g3
c46d3e4f6f bump elk to 6.4.2 2018-10-12 16:07:20 +00:00
t3chn0m4g3
0c86bd9a5a tweaking 2018-09-11 12:19:26 +00:00
t3chn0m4g3
992d453b9a medpot tweaking 2018-09-11 07:59:14 +00:00
t3chn0m4g3
f0f6981f34 add medpot to ELK 2018-09-10 01:15:21 +00:00
t3chn0m4g3
39fb972589 add medpot 
great work by @schmalle, thank you!
 2018-09-09 18:00:59 +00:00
Marco Ochse
6869ceb548
Update Dockerfile 2018-09-04 22:51:41 +02:00
t3chn0m4g3
47ab206f68 clean up dockerfile, prepare for s 2018-09-04 15:28:46 +00:00
t3chn0m4g3
660a046bcc tweaking 2018-09-03 20:13:29 +00:00
t3chn0m4g3
0abb518177 update glutton 2018-09-03 13:33:54 +00:00
t3chn0m4g3
28fd8532b5 upstream changes 2018-08-30 16:26:53 +00:00
t3chn0m4g3
a4ead73672 cleanup 2018-08-30 16:20:03 +00:00
t3chn0m4g3
5fcb7ed4ce glutton structured json logging 2018-08-30 16:19:11 +00:00
t3chn0m4g3
64fed3d15b tweaking 2018-08-29 10:54:30 +00:00
listbot
775c7aeb95 conpot cleanup 2018-08-28 13:47:20 +00:00
Marco Ochse
79bb324a4a
rename conpot fields to match index pattern 2018-08-28 13:30:58 +02:00
Marco Ochse
d19d3823f6
prevent status field from being indexed as string 2018-08-28 12:41:11 +02:00
listbot
59c8c5b34c bump ELK to 6.4.0 
YES! Index patterns can finally exported through Kibana! A joy to the ELK world :-)
 2018-08-24 17:07:00 +00:00
listbot
ea1bf604c8 tweaking conpot 2018-08-24 16:01:27 +00:00
listbot
d02e34764e bump conpot to 0.6.x 2018-08-22 13:43:27 +00:00
t3chn0m4g3
5ce77c6f60 snare tweaking, change ports 2018-08-21 18:30:37 +00:00
listbot
6b77e64ff4 tweaking updater, conpot 2018-08-20 15:06:10 +00:00
t3chn0m4g3
e2613e7d17 add 10 personas for snare 2018-08-14 14:20:55 +00:00
t3chn0m4g3
f6a30dd973 update ews.cfg 2018-08-08 11:58:26 +00:00
t3chn0m4g3
3d259bbc34 tanner finetuning 2018-08-08 11:49:32 +00:00
t3chn0m4g3
00e909ea24 bump tanner to 0.6.0 2018-08-07 09:33:38 +00:00
t3chn0m4g3
78adc5a0e1 bump snare to 0.3.0 2018-08-02 22:17:03 +00:00
t3chn0m4g3
a6d996d016 fix kibana ci color for highlighted elements 2018-08-02 17:36:11 +00:00
t3chn0m4g3
a5f027e896 update glutton 2018-08-02 14:52:50 +00:00
t3chn0m4g3
67d5c5a26c get FQDN for ES head from open window 2018-08-01 20:09:05 +00:00
t3chn0m4g3
7945961cee Bump ELK to 6.3.2 2018-07-31 14:31:49 +00:00
t3chn0m4g3
0373d7145d Update Dionaea to version 0.8.0 
Thanks to @Dbof for noticing and supplying #222
 2018-07-31 13:31:50 +00:00
listbot
d91714cdf2 add cyberchef as tool 2018-07-12 09:03:33 +00:00
t3chn0m4g3
38112755ce Fix ci logo 2018-06-28 12:30:27 +00:00
t3chn0m4g3
00482df95b Bump ELK Stack to 6.3.0 2018-06-26 17:34:14 +00:00
Marco Ochse
b8a650002e
Update favicon 2018-06-26 12:09:23 +02:00
Marco Ochse
804f47f7ab
Fix IPv6 error 
fix an error where upstream site is not found while trying to connect with both IPv4 and IPv6. Setting `localhost` to `127.0.0.1` fixes it.
 2018-06-26 10:19:35 +02:00
Marco Ochse
b19aa6d5c8
update favicon 2018-06-26 10:09:33 +02:00
Marco Ochse
cd55b3c51f update logfile for tanner in ews 2018-06-24 23:16:19 +02:00
Marco Ochse
1dd57d8022 NGINX logs are in /data/nginx/log/ 
Syslog should be viewed in Cockpit now, storing events of Syslog in ELK
is ineffective
 2018-06-24 03:24:51 +02:00
t3chn0m4g3
a13f06f33d update ews for tanner 2018-06-23 22:10:55 +00:00
t3chn0m4g3
d6077792b9 continue working on installer 
remove portainer
remove wetty
remove netdata
add cockpit
tweak fail2ban for cockpit, sshd, nginx
update logo to 18.10
remove configs with regard to portainer, wetty, netdata
adjust packages for install.sh, preseed
 2018-06-23 21:23:33 +00:00
Marco Ochse
d047d1edbb
disable 3rd party plugins 
At least one of them was corrupt on Github which seems unlikely, hence not trustworthy
 2018-06-13 19:20:52 +02:00
Marco Ochse
eb6e877ae4
Clone Dionaea 0.7.0 instead master 2018-06-13 18:51:27 +02:00
Marco Ochse
42577b6016 Editions 
start work on new editions
 2018-06-07 16:39:13 +02:00
Marco Ochse
09ad1941b7 just a push 2018-06-07 12:38:46 +00:00
Marco Ochse
e901334748 change repo 2018-06-05 13:50:37 +00:00
Marco Ochse
bf6fd94ea9 merge hpfeeds changes from vorband 2018-06-05 14:14:41 +02:00
Marco Ochse
52ecc767f8 performance tweak template 2018-06-04 16:05:22 +00:00
Marco Ochse
650b4a9b51 clean up 2018-06-04 13:45:09 +00:00
Marco Ochse
e8621fbba1 tweaking 2018-06-04 13:43:59 +00:00
Marco Ochse
e211a19c37 change ports, add emu_scripts.yaml, tweaking 2018-06-04 11:29:25 +00:00
Marco Ochse
fbc11fa12c add hpfeeds broker for testing 2018-05-30 15:46:18 +00:00
Marco Ochse
62b02a7500 add hpfeeds support 2018-05-30 11:20:55 +00:00
Marco Ochse
37424eb541 cleanup 2018-05-29 12:06:20 +00:00
Marco Ochse
72313a600d include tanner patterns, tweaking 2018-05-29 12:05:07 +00:00
Marco Ochse
428ee43c18 prepare for tanner 2018-05-28 21:46:51 +00:00
Marco Ochse
cabd5a3941 cleanup 2018-05-28 21:46:26 +00:00
Marco Ochse
a4bfa08393 tweaking 2018-05-28 21:45:43 +00:00
Marco Ochse
5b11952899 cleanup 2018-05-28 16:43:32 +00:00
Marco Ochse
1b0d11177b prepare for snare, tanner 2018-05-28 16:42:39 +00:00
Marco Ochse
4bbc63fd02 begin with hardening, tweaking 2018-05-28 16:36:02 +00:00
Marco Ochse
88e252fbfb tanner, snare, deps 2018-05-26 23:09:31 +00:00
Marco Ochse
1b5e39e448 tweaking 2018-05-25 16:19:15 +00:00
Marco Ochse
b406c9b4e0 include hpfeeds support 
thank you @vorband
 2018-05-25 16:18:05 +00:00
Marco Ochse
35221f56c9 tweaking 2018-05-23 14:18:46 +00:00
Marco Ochse
2f8cbcb2d1 tweaking 2018-05-23 14:16:37 +00:00
Marco Ochse
e1c806ebe8 tweaking 2018-05-23 14:16:13 +00:00
Marco Ochse
2128c6a2b0 tweaking 2018-05-23 13:30:26 +00:00
Marco Ochse
38fce345cf tweaking 
fix condition when no internet connection is available
check internet connection before download of rules and avoid errors
check internet connection before setting up capture filters (with FQDNs, resulted in endless restart of suricata) and unset capture filters if no internet connection is available
 2018-05-23 13:02:19 +00:00
Marco Ochse
fbe1fff088 let mailoney run on tcp/25 within container 2018-05-23 07:58:01 +00:00
Marco Ochse
4e8d629b63 tweaking, fix build error 2018-05-19 22:01:03 +00:00
Marco Ochse
a07776d16c tweaking 2018-05-19 21:35:24 +00:00
Marco Ochse
551a3c2168 tweaking 2018-05-19 21:20:32 +00:00
Marco Ochse
52cf2a6094 tweaking 2018-05-19 21:18:35 +00:00
Marco Ochse
7638fb89d6 tweaking 2018-05-19 21:02:52 +00:00
Marco Ochse
84c51afe17 tweaking, hardening 2018-05-19 20:40:01 +00:00
Marco Ochse
eb55ad5870 tweaking 2018-05-19 19:43:02 +00:00
Marco Ochse
48b8915689 hardening 2018-05-19 19:13:03 +00:00