1 Release published by 1 person

• 2.4.80-20240625

  published Jun 25, 2024

36 Pull requests merged by 6 people

• Exclude policy phases if not defined in defaults

  #13355 merged Jul 17, 2024

• Kafka influxdb metrics & pillar update

  #13350 merged Jul 16, 2024

• fix custom indices

  #13353 merged Jul 16, 2024

• New Config Values for Detections Bulk Indexer

  #13349 merged Jul 15, 2024

• Elastic 8.14.3

  #13347 merged Jul 15, 2024

• FEATURE: Add new action to SOC Actions list to allow users to more easily add their own actions #13346

  #13348 merged Jul 15, 2024

• Revert "Change pipeline version for agent"

  #13341 merged Jul 15, 2024

• Revert "Elastic 8.14.2"

  #13342 merged Jul 15, 2024

• force var to be list of string

  #13340 merged Jul 15, 2024

• FIX: Kafka configuration updates

  #13335 merged Jul 12, 2024

• Change pipeline version for agent

  #13323 merged Jul 10, 2024

• Elastic 8.14.2

  #13316 merged Jul 10, 2024

• FIX: Update SOC MOTD #13320

  #13321 merged Jul 9, 2024

• FIX: Update MOTD #13317

  #13318 merged Jul 9, 2024

• Elastic 8.14.2

  #13314 merged Jul 8, 2024

• Delete old user commands

  #13299 merged Jul 2, 2024

• Change name for ILM

  #13296 merged Jul 2, 2024

• Change name to winlog.winlogs

  #13295 merged Jul 2, 2024

• Changes for Elastic 8.14.1

  #13290 merged Jul 1, 2024

• FIX: so-rule-update airgap check

  #13282 merged Jun 28, 2024

• Issue/13073 - disable Logstash on heavynodes

  #13278 merged Jun 27, 2024

• Revert back to 8.10.4

  #13275 merged Jun 27, 2024

• Elastic 8.14.1

  #13271 merged Jun 26, 2024

• start soup 2.4.90

  #13270 merged Jun 26, 2024

• Update VERSION

  #13260 merged Jun 25, 2024

• 2.4.80

  #13255 merged Jun 25, 2024

• Update .gitleaks.toml

  #13259 merged Jun 25, 2024

• Fix git

  #13256 merged Jun 25, 2024

• 2.4.80

  #13254 merged Jun 25, 2024

• Remove unused sbin_jinja for kafka

  #13253 merged Jun 24, 2024

• FIX: update firewall defaults

  #13251 merged Jun 24, 2024

• Fix soup for proxy servers

  #13245 merged Jun 21, 2024

• Add option for detections without a license

  #13246 merged Jun 21, 2024

• Update soc_manager.yaml

  #13244 merged Jun 21, 2024

• update kafka annotations

  #13242 merged Jun 20, 2024

• Update defaults.yaml to put Process actions in logical order

  #13239 merged Jun 20, 2024

25 Issues closed by 6 people

• Security Onion Change management interface after installation

  #13359 closed Jul 18, 2024

• FIX: Exclude policy phases if not defined in defaults

  #13354 closed Jul 17, 2024

• UPGRADE: so-idh to newer base image

  #13265 closed Jul 17, 2024

• UPGRADE: so-nginx to nginx:1.26.1-alpine

  #13264 closed Jul 17, 2024

• FIX: Improve displayed metrics for Kafka in influxdb

  #13235 closed Jul 16, 2024

• FIX: Custom defined template causes SLS rendering error in base:elasticsearch.enabled

  #13328 closed Jul 16, 2024

• FEATURE: Add new action to SOC Actions list to allow users to more easily add their own actions

  #13346 closed Jul 16, 2024

• UPGRADE: Base image for so-tcpreplay container to oracle9:latest

  #13345 closed Jul 15, 2024

• UPGRADE: Base image for so-steno container to oracle9:latest

  #13344 closed Jul 15, 2024

• FIX: Disable logstash on heavynodes

  #13073 closed Jul 15, 2024

• FIX: Better Timeout Error message

  #12534 closed Jul 13, 2024

• FIX: Update SOC MOTD

  #13320 closed Jul 9, 2024

• FIX: Update MOTD

  #13317 closed Jul 9, 2024

• UPGRADE: Suricata 7.0.6

  #13283 closed Jul 5, 2024

• Update to 2.4.80 from 2.4.60 fails

  #13300 closed Jul 3, 2024

• UPGRADE: CyberChef 10.19.0

  #13267 closed Jun 28, 2024

• ElastAlert dosen't send mails

  #13280 closed Jun 28, 2024

• FIX: Can not use suricata address-book names in address-group definitions

  #13136 closed Jun 21, 2024

• FEATURE: Support Custom Suricata Rulesets via URL and local file

  #13195 closed Jun 21, 2024

• FIX: Quoting when duplication Suricata Detection

  #13241 closed Jun 21, 2024

• FEATURE: Support Suricata VARs for Overrides

  #13194 closed Jun 21, 2024

• FIX: Proxy support in Detections

  #13153 closed Jun 21, 2024

• FIX: Detections - Suricata Integrity Check

  #13180 closed Jun 21, 2024

• FEATURE: Create Detection - Preload Rule Templates

  #13152 closed Jun 20, 2024

• FEATURE: Bulk Delete Custom Detections

  #13151 closed Jun 20, 2024

3 Issues opened by 3 people

• FIX: network.community_id should be calculated on zeek logs that do not have community_id

  #13322 opened Jul 10, 2024

• UPGRADE: Elastic 8.14.3

  #13263 opened Jun 26, 2024

• FIX: Intermittent soup errors causing soup to exit with failure message

  #13247 opened Jun 21, 2024

6 Unresolved conversations

Sometimes conversations happen on old items that aren’t yet closed. Here is a list of all the Issues and Pull Requests with unresolved conversations.

• FIX: Improve SOC annotation file

  #12424 commented on Jun 21, 2024 • 0 new comments

• FIX: IDH startup message not parsed correctly

  #11467 commented on Jul 13, 2024 • 0 new comments

• FIX: Review and disable outdated ciphers for Fleet

  #11145 commented on Jul 15, 2024 • 0 new comments

• FIX: Update Agent Builder Dependencies

  #13142 commented on Jul 15, 2024 • 0 new comments

• FIX: Tuning details should be included as part of the history item

  #13225 commented on Jul 15, 2024 • 0 new comments

• FIX: Make so-repo-sync run as socore no matter what and add proxy tweaks

  #13211 commented on Jul 17, 2024 • 0 new comments