-
### Is there an existing issue for this?
- [X] I have searched the existing issues
### Current Behavior
Default deployment of SELKS dockerized version over Ubuntu 22.04.4 LTS does not work
### Exp…
-
|Wazuh version| Component | Action type |
4.2
| X.Y.Z-rev | Rules/Decoders | New/Error/Improve |
## Description
I created a new Decoder to handle Syslog Messages from OPNSense Suricata in Eve …
-
Hello, I really like your project, especially the TLS decryption feature, but I have questions:
1) As I understand it, it is possible to inspect decrypted TLS traffic with suricata/snort with all …
-
Hello,
I have opnsense 23.7.6. I would like to download the IDS rules with a proxy but it does not work
my config:
/root/.cshrc:
setenv HTTP_PROXY http://proxy:8080
setenv HTTPS_PROXY http:…
-
Many examples in OISF ruleset[0] primarily stream-event, app-layer-event, decoder-event etc.)
Probably most of these can just be tags? Documentation is rather sparse on some of these.
[0] https://…
-
I've spotted the category files in the ETOpen Ruleset. However once I go to the source, click edit, download the tar file from the source itself (https://rules.emergingthreats.net/open/suricata-3.0/em…
-
Hello,
Today i installed pirogue OS on a pi4 and a pi5 with [current version v2.1.0](https://github.com/PiRogueToolSuite/pirogue-images/releases/tag/arm64_v2.1.0).
While performing the latest …
-
On Ubuntu 18.04.3 LTS X86_64 I have built `suricata` with `-pg` flag. However, the `uftrace replay` command fails:
```
$ uftrace -v replay
uftrace: reading uftrace.data/task.txt file
WARN: canno…
-
Don't clutter the ContainNSM repo, keep it simple. Configs, rules, and other user contributions should be in a separate repo called maybe `containnsm-extra` or `containnsm-contrib` or w/e. This will c…
-
Team,
Thanks for the work you are doing on OSSEC, it is great.
One feature / addition that I could see being useful is the ability to do a live rule reload / swap via a HUP or some arbitrary kill s…
ghost updated
3 years ago