[Emerging-Sigs] Announcing Suricata-Update

Jason Ish ish at unx.ca
Tue Dec 5 10:00:54 HST 2017


We are excited to announce the first alpha release of our new tool for
updating Suricata rules. This is a new rule update tool specifically
built for Suricata with a goal of being useful out of the box, even with
no configuration.

This release also introduces the Suricata Intel Index, which is
currently a list of available rule sources which Suricata-Update is
aware of. The idea here is to make it easier for users to find available
rule sets, as well as allowing rule writers to make their rules more
discoverable.

Features include:

  * Default to Emerging Threats Open ruleset if no configuration
    provided.
  * Automatic discovery of Suricata version for use in ruleset URLs.
  * Flowbit resolution
  * Enable, disable, drop and modify filters that should be familiar to
    users of Pulled Pork and Oinkmaster.
  * Easy enabling of additional rule sets from the index.

We invite all interested users to checkout the Quick Start
documentation, and leave us feedback on the Suricata-Update issue
tracker.

If you are a rule writer and would like to get listed in the index,
please leave a ticket in the issue tracker.

Quick Start Documentation
   http://suricata-update.readthedocs.io/en/1.0.0a1/quickstart.html

Github Project Page
   https://github.com/OISF/suricata-update

Issue Tracker
   https://redmine.openinfosecfoundation.org/projects/suricata-update

-- 
Jason Ish


More information about the Emerging-sigs mailing list