Download the ISO
What's Changed
- managerhype by @m0duspwnens in #14966
- Vlb2 by @m0duspwnens in #14972
- merge with 2.4/dev by @m0duspwnens in #14990
- pass pillar properly by @m0duspwnens in #14994
- Vlb2 by @m0duspwnens in #15015
- Vlb2 by @m0duspwnens in #15056
- only update mine for managerhype during setup by @m0duspwnens in #15061
- update service file, use salt.minion state to update mine_functions by @m0duspwnens in #15065
- set interface for network.ip_addrs for hypervisors by @m0duspwnens in #15066
- Vlb2 by @m0duspwnens in #15067
- Vlb2 by @m0duspwnens in #15076
- Byoh by @m0duspwnens in #15098
- nsm virtual disk and new nsm_total grain by @m0duspwnens in #15122
- bump version by @jertel in #15169
- bump version by @jertel in #15170
- estimate elasticsearch retention by @reyesj2 in #15176
- create libvirt volumes directory by @m0duspwnens in #15181
- add manager role to elasticsearch ingest time spent by @reyesj2 in #15182
- Upgrade Salt 3006.16 by @m0duspwnens in #15185
- Available Models by @coreyogburn in #15188
- Salt 3006.16 by @m0duspwnens in #15193
- move off of cmd.script with args \ by @reyesj2 in #15194
- ensure previous setup outcomes are cleared by @jertel in #15198
- strelka use single master image by @reyesj2 in #15192
- update so-elasticsearch-retention-estimate by @reyesj2 in #15201
- rename forward node -> sensor node by @reyesj2 in #15207
- Update defaults.yaml by @TOoSmOotH in #15209
- Suricata 8.0.2 by @m0duspwnens in #15211
- reduce pcapMaxCount to fit better with max upload size by @jertel in #15213
- add support to so-yaml for using yaml file content for values by @jertel in #15219
- update so-elasticsearch-retention-estimate by @reyesj2 in #15204
- configure salt, then install. update bootstrap-salt. reduce salt install fail timeout by @m0duspwnens in #15223
- CompressContextPrompt by @coreyogburn in #15221
- wait for 200 from registry before proceeding by @m0duspwnens in #15228
- Add Enabled Flag to Models by @coreyogburn in #15229
- pcap annotations by @jertel in #15225
- suricata pipeline updates by @reyesj2 in #15230
- fix so-setup error duplicate bond0 by @reyesj2 in #15231
- rm salt keyring and repo file for deb by @m0duspwnens in #15237
- update zeek pipelines by @reyesj2 in #15234
- communicate to the viewer that OS patches may take some time by @jertel in #15240
- suricata capture file by @reyesj2 in #15244
- Notify user of hypervisor environment setup failures by @m0duspwnens in #15247
- clarify hypervisor annotation by @m0duspwnens in #15248
- use timestamp in volume path to prevent duplicates by @m0duspwnens in #15251
- Add JA4D option to config.zeek.ja4 by @TOoSmOotH in #15271
- add force & certs flag to update fleet certs as needed by @reyesj2 in #15264
- add new so-yaml_test for removefromlist by @m0duspwnens in #15275
- need additional line bw class by @m0duspwnens in #15277
- reserve group ids by @m0duspwnens in #15280
- skip continue prompt if user cannot actually continue by @jertel in #15281
- FEATURE: Advanced ILM actions via SOC UI by @reyesj2 in #15241
- Idstools refactor by @defensivedepth in #15232
- Fixup Airgap by @defensivedepth in #15283
- Make sure local salt dir is created by @defensivedepth in #15284
- be more verbose by @defensivedepth in #15286
- Rework ordering by @defensivedepth in #15287
- match correct custom ruleset name by @defensivedepth in #15290
- Fix custom name by @defensivedepth in #15292
- Remove Claude Sonnet 4 model configuration by @TOoSmOotH in #15293
- small fixes by @defensivedepth in #15297
- Fixup logic by @defensivedepth in #15298
- Update Assistant Models by @TOoSmOotH in #15289
- Rework backup by @defensivedepth in #15301
- Add Airgap check by @defensivedepth in #15303
- fix cleaning repos on remote nodes if airgap by @m0duspwnens in #15304
- Add trailing nl if it doesnt already exist by @defensivedepth in #15308
- Update so-minion by @TOoSmOotH in #15311
Full Changelog: 2.4.190-20251024...2.4.200-20251216