API tools faq
paste
Advertisement
travisbgreen

suricata_update.yaml.patch

travisbgreen
May 20th, 2018
176
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.53 KB | None | 0 0
raw download clone embed print report
  1. --- suricata_default.yaml 2018-05-20 11:34:57.618505320 -0600
  2. +++ suricata_update.yaml 2018-05-20 12:02:57.172759069 -0600
  3. @@ -33,6 +33,7 @@
  4. MODBUS_SERVER: "$HOME_NET"
  5. ENIP_CLIENT: "$HOME_NET"
  6. ENIP_SERVER: "$HOME_NET"
  7. + DC_SERVERS: "$HOME_NET"
  8.  
  9. port-groups:
  10. HTTP_PORTS: "80"
  11. @@ -49,63 +50,10 @@
  12. ## Step 2: select the rules to enable or disable
  13. ##
  14.  
  15. -default-rule-path: /etc/suricata/rules
  16. +
  17. +default-rule-path: /var/lib/suricata/rules
  18. rule-files:
  19. - - botcc.rules
  20. - # - botcc.portgrouped.rules
  21. - - ciarmy.rules
  22. - - compromised.rules
  23. - - drop.rules
  24. - - dshield.rules
  25. -# - emerging-activex.rules
  26. - - emerging-attack_response.rules
  27. - - emerging-chat.rules
  28. - - emerging-current_events.rules
  29. - - emerging-dns.rules
  30. - - emerging-dos.rules
  31. - - emerging-exploit.rules
  32. - - emerging-ftp.rules
  33. -# - emerging-games.rules
  34. -# - emerging-icmp_info.rules
  35. -# - emerging-icmp.rules
  36. - - emerging-imap.rules
  37. -# - emerging-inappropriate.rules
  38. -# - emerging-info.rules
  39. - - emerging-malware.rules
  40. - - emerging-misc.rules
  41. - - emerging-mobile_malware.rules
  42. - - emerging-netbios.rules
  43. - - emerging-p2p.rules
  44. - - emerging-policy.rules
  45. - - emerging-pop3.rules
  46. - - emerging-rpc.rules
  47. -# - emerging-scada.rules
  48. -# - emerging-scada_special.rules
  49. - - emerging-scan.rules
  50. -# - emerging-shellcode.rules
  51. - - emerging-smtp.rules
  52. - - emerging-snmp.rules
  53. - - emerging-sql.rules
  54. - - emerging-telnet.rules
  55. - - emerging-tftp.rules
  56. - - emerging-trojan.rules
  57. - - emerging-user_agents.rules
  58. - - emerging-voip.rules
  59. - - emerging-web_client.rules
  60. - - emerging-web_server.rules
  61. -# - emerging-web_specific_apps.rules
  62. - - emerging-worm.rules
  63. - - tor.rules
  64. -# - decoder-events.rules # available in suricata sources under rules dir
  65. -# - stream-events.rules # available in suricata sources under rules dir
  66. - - http-events.rules # available in suricata sources under rules dir
  67. - - smtp-events.rules # available in suricata sources under rules dir
  68. - - dns-events.rules # available in suricata sources under rules dir
  69. - - tls-events.rules # available in suricata sources under rules dir
  70. -# - modbus-events.rules # available in suricata sources under rules dir
  71. -# - app-layer-events.rules # available in suricata sources under rules dir
  72. -# - dnp3-events.rules # available in suricata sources under rules dir
  73. -# - ntp-events.rules # available in suricata sources under rules dir
  74. + - suricata.rules
  75.  
  76. classification-file: /etc/suricata/classification.config
  77. reference-config-file: /etc/suricata/reference.config
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!