webhead404
webhead404
This issue is solely related to conversations I have had with @neu5ron on improving HELK. He asked me to track them here. Improvements: 1. Custom sigma rules * Possible solutions...
**Feature request** Would be awesome to have the capability of having a global BPF and/or per process option in Rock. Something like https://github.com/Security-Onion-Solutions/security-onion/wiki/BPF.
It doesn't appear that there is any documentation on how to manage data in RockNSM as far as disk utilization goes. For instance in my lab after about a week,...
Using default settings specified in the ReadMe of ElastAlert Server the associated Kibana plugin doesn't create rule files with the default rule location. `03:06:24.149Z ERROR elastalert-server: Routes: Request for '/rules/:id'...
When using Fakenet on Windows with Elastic Defend, Fakenet can not pass packets from localhost to localhost. The `elastic-endpoint.exe` communicates over GRPC to `elastic-agent.exe` over ports `6788-6789` and any changes...
Per our discussion around the different ways to add hosts. 1. Packer boxes that are built by us (locally) and hosted on Vagrantcloud 2. Packer boxes maintained by others such...
Add the ability to include Docker for each OS type within stationctl to install ECP for users outside of the range
**Describe the bug** Virtualbox is forcing all host_only networks to use `192.168.56.0/21` with Virtualbox 6.1.28 on Linux and macOS by default. This can be changed if the user manually edits...
**VMWare Support** - vmware workstation - vmware fusion - Add `open-vm-tools` to Ansible for elastomic