test regexes for detections

2025-12-25 18:33:37 +01:00 · 2024-05-06 19:03:12 -04:00
parent a67f0d93a0
commit 4ebe070cd8
3 changed files with 17 additions and 0 deletions
--- a/setup/so-setup
+++ b/setup/so-setup
@@ -245,6 +245,9 @@ if [ -n "$test_profile" ]; then
 	WEBUSER=onionuser@somewhere.invalid
 	WEBPASSWD1=0n10nus3r
 	WEBPASSWD2=0n10nus3r
+	STRELKA_ALLOW_REGEX="EquationGroup_Toolset_Apr17__ELV_.*"
+	ELASTALERT_ALLOW_REGEX="Security Onion"
+	SURICATA_ALLOW_REGEX="200033\\d"

 	update_sudoers_for_testing
 fi