2 Releases published by 2 people

• 2.4.100-20240829

  published Aug 29, 2024

• 2.4.100-20240903

  published Sep 3, 2024

55 Pull requests merged by 7 people

• add missing annotation file

  #13694 merged Sep 18, 2024

• enable stig for so desktop

  #13695 merged Sep 18, 2024

• Fix suricata alerts for opnsense and pfsense

  #13686 merged Sep 17, 2024

• resolve 13247

  #13675 merged Sep 16, 2024

• remove colon to avoid yaml parsing problems

  #13676 merged Sep 16, 2024

• Clarify enabled settings

  #13673 merged Sep 16, 2024

• Upgrade Elastic integrations when new versions are available

  #13651 merged Sep 13, 2024

• exit 1 if unable to connect to kibana

  #13666 merged Sep 13, 2024

• Allow custom IDH skins

  #13661 merged Sep 12, 2024

• mark specific settings as allowed to include Jinja

  #13663 merged Sep 12, 2024

• External Support for Detections

  #13647 merged Sep 12, 2024

• Fix annotations typo

  #13660 merged Sep 12, 2024

• Add annotations for barracuda and imperva

  #13658 merged Sep 11, 2024

• Add barracuda and imperva integrations

  #13657 merged Sep 11, 2024

• es sig pulled from es dir

  #13652 merged Sep 11, 2024

• Make Standalone installs use Suricata for PCAP

  #13648 merged Sep 10, 2024

• only elasticsearch image uses es version

  #13640 merged Sep 9, 2024

• Add destination IP for so-system

  #13639 merged Sep 9, 2024

• add so-suricata container req for rule reload

  #13638 merged Sep 9, 2024

• Upgrade Docker to 27.2.0

  #13635 merged Sep 9, 2024

• remove -it

  #13625 merged Sep 6, 2024

• fix es agent update for soup

  #13624 merged Sep 6, 2024

• es version shift

  #13620 merged Sep 5, 2024

• ref es version

  #13616 merged Sep 5, 2024

• resolve issues with es version pinning

  #13615 merged Sep 5, 2024

• use correct sig based on es image or not

  #13610 merged Sep 4, 2024

• use Elasticsearch version for some containers

  #13607 merged Sep 4, 2024

• remove hotfix from dev branch

  #13608 merged Sep 4, 2024

• Hotfix-2.4.100.20240903

  #13598 merged Sep 3, 2024

• Hotfix 2.4.100

  #13596 merged Sep 3, 2024

• 2.4.100 hotfix

  #13595 merged Sep 3, 2024

• Reload both types of rules

  #13590 merged Sep 2, 2024

• Update HOTFIX

  #13587 merged Aug 30, 2024

• Add so-system-mappings

  #13586 merged Aug 30, 2024

• Reload Suricata vs restart

  #13574 merged Aug 30, 2024

• Update Github Discussion template

  #13583 merged Aug 30, 2024

• Update VERSION

  #13577 merged Aug 29, 2024

• 2.4.100

  #13576 merged Aug 29, 2024

• 2.4.100

  #13575 merged Aug 29, 2024

• Exclude logstash startup errors

  #13570 merged Aug 28, 2024

• move custom alerters to subgroup; avoid false positives on log check

  #13565 merged Aug 28, 2024

• Update pipeline version for EVTX

  #13562 merged Aug 27, 2024

• annotation updates

  #13561 merged Aug 27, 2024

• Fix policy load

  #13556 merged Aug 26, 2024

• FIX: Add so-soc-logs

  #13554 merged Aug 26, 2024

• Use global@custom from common pipeline

  #13548 merged Aug 26, 2024

• Elastic Fleet refactoring

  #13547 merged Aug 23, 2024

• set kafka.id in common ingest pipeline

  #13546 merged Aug 23, 2024

• exclude all logstash errors related to license manager init log line

  #13540 merged Aug 22, 2024

• FIX: Check Elasticsearch for endpoint component template before loading templates

  #13537 merged Aug 22, 2024

• notification updates

  #13535 merged Aug 22, 2024

• Create detections.alerts ILM policy with corresponding name

  #13528 merged Aug 21, 2024

• Add support for new appliance raid controllers

  #13530 merged Aug 21, 2024

• Check for endpoint package

  #13531 merged Aug 21, 2024

• Add Tenable IO

  #13526 merged Aug 21, 2024

41 Issues closed by 7 people

• FIX: Minion overrides in Config screen show global override values

  #13689 closed Sep 18, 2024

• FEATURE: Allow external access to suricata rules managed by Detections

  #13655 closed Sep 17, 2024

• BPF Issues 2.4.9

  #13684 closed Sep 17, 2024

• FIX: Intermittent soup errors causing soup to exit with failure message

  #13247 closed Sep 16, 2024

• FIX: Stenographer packet loss differs from influxdb

  #13626 closed Sep 16, 2024

• FIX: Stenographer Loss percent in Grid screen

  #13656 closed Sep 16, 2024

• Collect as ISO image

  #13672 closed Sep 16, 2024

• FEATURE: Handle Custom Integration Policy Upgrades

  #13560 closed Sep 13, 2024

• FIX: Sensor age in grid screen sometimes shows incorrect age of node

  #13628 closed Sep 13, 2024

• FEATURE: Standalone use Suricata for PCAP by default

  #13650 closed Sep 12, 2024

• FEATURE: For improved upgrade experience, tag Elasticsearch image with Elastic version

  #13606 closed Sep 9, 2024

• UPGRADE: CyberChef 10.19.2

  #13637 closed Sep 9, 2024

• UPGRADE: Docker 27.2.0

  #13566 closed Sep 9, 2024

• UPGRADE: Zeek 6.0.6

  #13600 closed Sep 5, 2024

• Trying to install SO for Eval or Standalone hangs for hours

  #13611 closed Sep 4, 2024

• security onion Logstash bug

  #13594 closed Sep 3, 2024

• UPGRADE: so-suricata base image

  #13492 closed Aug 27, 2024

• UPGRADE: so-tcpreplay base image

  #13499 closed Aug 27, 2024

• UPGRADE: so-zeek base image

  #13493 closed Aug 27, 2024

• UPGRADE: Salt 3006.9

  #13423 closed Aug 27, 2024

• UPGRADE: so-steno base image

  #13498 closed Aug 27, 2024

• UPGRADE: Docker Registry 2.8.3

  #13510 closed Aug 27, 2024

• FIX: SOC logs ILM policy doesn't exist

  #13555 closed Aug 27, 2024

• FIX: Update pipeline version for EVTX

  #13563 closed Aug 27, 2024

• FIX: Syntax Check before submitting New Rule

  #13385 closed Aug 27, 2024

• UPGRADE: Elastic 8.14.3

  #13263 closed Aug 27, 2024

• FIX: Review and disable outdated ciphers for Fleet

  #11145 closed Aug 26, 2024

• FIX: Update Agent Builder Dependencies

  #13142 closed Aug 26, 2024

• Issue with Fleet Plugin: Failed to Fetch Latest Version of Packages

  #13539 closed Aug 22, 2024

• FIX: Admin resetting of a user's password is not removing MFA

  #13468 closed Aug 21, 2024

• FIX: Tuning details should be included as part of the history item

  #13225 closed Aug 21, 2024

• UPGRADE: so-elastic-agent-builder base image

  #13505 closed Aug 21, 2024

• UPGRADE: so-strelka base images

  #13504 closed Aug 21, 2024

• UPGRADE: so-idh base image

  #13503 closed Aug 21, 2024

• UPGRADE: so-telegraf base image and Telegraf 1.31.3

  #13502 closed Aug 21, 2024

• UPGRADE: so-redis base image and Redis 7.2.5

  #13501 closed Aug 21, 2024

• UPGRADE: so-idstools base image

  #13500 closed Aug 21, 2024

• UPGRADE: ElastAlert 2.19.0

  #13496 closed Aug 21, 2024

• UPGRADE: so-pcaptools base image

  #13495 closed Aug 21, 2024

• UPGRADE: so-influxdb base image and InfluxDB 2.7.9

  #13494 closed Aug 21, 2024

• UPGRADE: so-nginx base image

  #13491 closed Aug 21, 2024

4 Issues opened by 4 people

• SO Sensor Showing Fault in Grid

  #13699 opened Sep 19, 2024

• FIX: Analysts should be able to modify and disable Suricata rules

  #13668 opened Sep 13, 2024

• FEATURE: Add new alerts for changes in SOC status

  #13654 opened Sep 11, 2024

• FIX: Malware Hash Registry analyzer failure

  #13571 opened Aug 29, 2024

2 Unresolved conversations

Sometimes conversations happen on old items that aren’t yet closed. Here is a list of all the Issues and Pull Requests with unresolved conversations.

• FIX: Make so-repo-sync run as socore no matter what and add proxy tweaks

  #13211 commented on Aug 27, 2024 • 0 new comments

• FIX: IDH startup message not parsed correctly

  #11467 commented on Sep 17, 2024 • 0 new comments