CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 17:22:49 +01:00
Code Issues Packages Projects Releases Wiki Activity

make rule settings advanced

Browse Source
This commit is contained in:
Jason Ertel
2024-05-01 12:51:04 -04:00
parent c71af9127b
commit 252d9a5320
2 changed files with 4 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
salt/idstools/soc_idstools.yaml
View File

@@ -26,6 +26,7 @@ idstools:
regex: \d*|re:.*
helpLink: managing-alerts.html
readonlyUi: True
advanced: true
enabled:
description: Contains the list of NIDS rules (or regex patterns) enabled across the grid. This setting is readonly; Use the Detections screen to enable rules.
global: True
@@ -34,6 +35,7 @@ idstools:
regex: \d*|re:.*
helpLink: managing-alerts.html
readonlyUi: True
advanced: true
modify:
description: Contains the list of NIDS rules (SID "REGEX_SEARCH_TERM" "REGEX_REPLACE_TERM"). This setting is readonly; Use the Detections screen to modify rules.
global: True
@@ -41,6 +43,7 @@ idstools:
forcedType: "[]string"
helpLink: managing-alerts.html
readonlyUi: True
advanced: true
rules:
local__rules:
description: Contains the list of custom NIDS rules applied to the grid. This setting is readonly; Use the Detections screen to adjust rules.

1
salt/suricata/soc_suricata.yaml
View File

@@ -12,6 +12,7 @@ suricata:
title: SIDS
helpLink: suricata.html
readonlyUi: True
advanced: true
classification:
classification__config:
description: Classifications config file.