mirror of
https://github.com/telekom-security/tpotce.git
synced 2025-10-26 18:24:45 +00:00
620a909657
PROBLEM (see #487) - ET rule files start with the "emerging-*" prefix; - ETPRO rule files do not start with that prefix. SOLUTION Concatenate all rule files, with the exception of "*disabled.rules", into a single rule file at "/etc/suricata/rules/tpotce.rules" I have left as-is the "sed" command that enables all commented-out rules. Since that is usually done for performance reasons, maybe it could be turned into a configuration option like the OINKCODE. Another thing worth considering is to use "suricata-update" instead: https://suricata-update.readthedocs.io/en/latest/quickstart.html |
||
|---|---|---|
| .. | ||
| adbhoney | ||
| ciscoasa | ||
| citrixhoneypot | ||
| conpot | ||
| cowrie | ||
| cyberchef | ||
| deprecated | ||
| dicompot | ||
| dionaea | ||
| elasticpot | ||
| elk | ||
| ews | ||
| fatt | ||
| glutton | ||
| heimdall | ||
| heralding | ||
| honeypy | ||
| honeysap | ||
| honeytrap | ||
| ipphoney | ||
| mailoney | ||
| medpot | ||
| p0f | ||
| rdpy | ||
| spiderfoot | ||
| suricata | ||
| tanner | ||
| docker-compose.yml | ||