2.4.60
What's Changed
- Cogburn/detections playbooks by @coreyogburn in #333
- Removed Hardcoded Config Values by @coreyogburn in #334
- Detection History by @coreyogburn in #335
- Reworked UI by @coreyogburn in #338
- Updated Tests to Include License Checks by @coreyogburn in #341
- Cogburn/detections playbooks by @defensivedepth in #348
- Query parameter can select ActiveTab by @coreyogburn in #350
- Tweak Wording by @defensivedepth in #351
- Initial Support - Detections Module by @defensivedepth in #353
- Text change by @defensivedepth in #354
- New Detection Creation Logic by @coreyogburn in #355
- fix broken sigma test by @jertel in #356
- disable community rule auto updates by default by @jertel in #357
- FEATURE: Add new SOC action for Process Info Security-Onion-Solutions/securityonion#12421 by @dougburks in #358
- New Alert Quick Action: Tune Detection by @coreyogburn in #359
- Disable QuickAction Item Until Ready by @coreyogburn in #360
- upgrade kratos by @jertel in #362
- Jertel/krup by @jertel in #363
- Change default test index by @defensivedepth in #364
- Change event.module to sigma by @defensivedepth in #366
- Fix tests by @defensivedepth in #367
- No More DetectionStore Crossover by @coreyogburn in #365
- Include Comments in Detection History by @coreyogburn in #369
- add feature toggle for detections by @jertel in #371
- Add toggle to exclude Detections data by @defensivedepth in #370
- suri pcap improvements by @jertel in #372
- error logging improvements by @jertel in #373
- Indicate Clickable Detection Fields by @coreyogburn in #374
- "Tune Detections" Only in Alerts by @coreyogburn in #376
- Strelka Rule License Fallback by @coreyogburn in #377
- pcap improvements by @jertel in #375
- Allow For Zero Strelka Rules Repos by @coreyogburn in #378
- improve reboot indicators by @jertel in #379
- allow sensoroni modules to succeed if at least one provided data by @jertel in #380
- Cogburn/detection tests by @coreyogburn in #381
- Fix for jsyaml reference in tests by @coreyogburn in #382
- Better Defaults in Detection Engines by @coreyogburn in #383
- Add NIDS Tuning Links back in by @defensivedepth in #384
- check bidirectional pcap by @jertel in #385
- add more logging by @jertel in #386
- Improve Suri PCAP parsing performance by @jertel in #387
- Add Version Number to External JS Filenames by @coreyogburn in #388
- 2.4.60 by @TOoSmOotH in #390
Full Changelog: 2.4.50...2.4.60
Contributors
defensivedepth, dougburks, and 3 other contributors