1.1.4

• Removes PID file from elasticsearch.service ExecStart command.

1.1.3

• Fixes default VXLAN port for Suricata 4789
• Zeek/Suricata definition files used for friendly aliasing are now included in the configurations
• Filebeat sample output logs are now included in configurations
• Suricata's systemd unit file no longer includes PreExec methods to create a PID file.
• Removes dynamite-agent.target dependency.
• Zeek and Suricata will now run under the dynamite user
• Zeek Scripts & Suricata rules ids updated to accommodate new sha256 hashing
• Added definitions for several new Suricata rules and Zeek scripts
• Replaces hard-coded bin paths in systemd services with environment variables
• Zeek and Suricata now run setcap to ensure the dynamite user/group has permission to capture traffic on ifaces

1.1.2

• Updated Suricata SURI_PID location (dropped directory)
• Skips filebeat.yml permission checks

1.1.1

added dynamite user and group for filebeat.service

1.1

• updated default zeek scripts and suricata rules

• updated default suricata log path and made file name relative

• base/default_configs/suricata/suricata.yaml

• Update suricata.yaml

• Update suricata.yaml

• Updates filebeat.service to use dynamite user instead of root.

• Fixes issue with DNS errors in community_id Zeek script

1.0

Corresponds with DynamiteNSM 1.0 Release.