-
First of all, Lulu is a great product and thanks for all your hard work.
I'm finding it struggling to find a baseline list of "blocklist" and rules (ips, ports, destinations etc).
Would be great i…
-
The Emerging Threats team has discontinued releasing rules for Suricata version 4.x. As a result, PulledPork can no longer update these rules. [Suricata 4.x support ends Friday, September 13, 2024](ht…
-
Attempting to upload the subscriber Snort rules (version 2983) results in '413 Request Entity Too Large' error being kicked back from nginx and the rules are not imported.
Sc0th updated
6 years ago
-
Currently (2.4.100) analysts can modify YARA and Sigma rules, but when attempting to modify a Suricata rule a 401 error is returned.
-
Hello,
I habe a problem with my barnyard 2.1.13 installation. I see alerts in /var/log/snort/alert, but barnyard failed to write the event to the database. I found the following message in /var/log/m…
-
### Implementing #99
Configured to run
- [x] Working ELK Stack (Elasticsearch, Logstash, Kibana)
- [x] Bro/Zeek traffic analyzer working
- [ ] Moloch/Arkime - configured to listen on the ops r…
-
Hi!
I'm having error message when trying this local.rules with OPNsense 24.7.2-amd64.
Just download file with "curl -O https://raw.githubusercontent.com/aleksibovellan/opnsense-suricata-nmaps/ma…
-
-
Hi,
All alerts are coming in and showing normally, except for rules SID 2019401,2014297,2011582 (related to outdated java clients).
Error in logstash is:
[2018-09-24T11:18:12,750][WARN ][log…
-
I was made aware of this through a Suricata forum post: https://forum.suricata.io/t/bad-option-value-formatting-possible-missing-semicolon-for-keyword-content/4865
After checking for the fix for ht…