CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 17:22:49 +01:00
Code Issues Packages Projects Releases Wiki Activity

make rule settings advanced

Browse Source
This commit is contained in:
Jason Ertel
2024-05-01 12:51:04 -04:00
parent c71af9127b
commit 252d9a5320
2 changed files with 4 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
salt/idstools/soc_idstools.yaml
View File

@@ -26,6 +26,7 @@ idstools:
regex: \d*|re:.* regex: \d*|re:.*
helpLink: managing-alerts.html helpLink: managing-alerts.html
readonlyUi: True readonlyUi: True
advanced: true
enabled: enabled:
description: Contains the list of NIDS rules (or regex patterns) enabled across the grid. This setting is readonly; Use the Detections screen to enable rules. description: Contains the list of NIDS rules (or regex patterns) enabled across the grid. This setting is readonly; Use the Detections screen to enable rules.
global: True global: True
@@ -34,6 +35,7 @@ idstools:
regex: \d*|re:.* regex: \d*|re:.*
helpLink: managing-alerts.html helpLink: managing-alerts.html
readonlyUi: True readonlyUi: True
advanced: true
modify: modify:
description: Contains the list of NIDS rules (SID "REGEX_SEARCH_TERM" "REGEX_REPLACE_TERM"). This setting is readonly; Use the Detections screen to modify rules. description: Contains the list of NIDS rules (SID "REGEX_SEARCH_TERM" "REGEX_REPLACE_TERM"). This setting is readonly; Use the Detections screen to modify rules.
global: True global: True
@@ -41,6 +43,7 @@ idstools:
forcedType: "[]string" forcedType: "[]string"
helpLink: managing-alerts.html helpLink: managing-alerts.html
readonlyUi: True readonlyUi: True
advanced: true
rules: rules:
local__rules: local__rules:
description: Contains the list of custom NIDS rules applied to the grid. This setting is readonly; Use the Detections screen to adjust rules. description: Contains the list of custom NIDS rules applied to the grid. This setting is readonly; Use the Detections screen to adjust rules.

1
salt/suricata/soc_suricata.yaml
View File

@@ -12,6 +12,7 @@ suricata:
title: SIDS title: SIDS
helpLink: suricata.html helpLink: suricata.html
readonlyUi: True readonlyUi: True
advanced: true
classification: classification:
classification__config: classification__config:
description: Classifications config file. description: Classifications config file.