mirror of
https://github.com/Security-Onion-Solutions/securityonion.git
synced 2026-01-13 03:31:21 +01:00
40 lines
1.2 KiB
YAML
40 lines
1.2 KiB
YAML
idstools:
|
|
config:
|
|
oinkcode:
|
|
description: Enter your registration code for paid rulesets.
|
|
global: True
|
|
ruleset:
|
|
description: Define the ruleset you want to run. Options are ETOPEN or ETPRO.
|
|
global: True
|
|
urls:
|
|
description: This is a list of additional rule download locations.
|
|
global: True
|
|
sids:
|
|
disabled:
|
|
description: List of disables SIDS.
|
|
global: True
|
|
enabled:
|
|
description: List of SIDS that are disabled by the rule source that you want to enable.
|
|
global: True
|
|
modify:
|
|
description: List of SIDS that are modified.
|
|
global: True
|
|
rules:
|
|
local__rules:
|
|
description: This is where custom Suricata rules are entered.
|
|
file: True
|
|
global: True
|
|
advanced: True
|
|
title: Local Rules
|
|
filters__rules:
|
|
description: You can set custom filters for Suricata when using it for meta data creation.
|
|
file: True
|
|
global: True
|
|
advanced: True
|
|
title: Filter Rules
|
|
extraction__rules:
|
|
description: This is a list of mime types for file extraction when Suricata is used for meta data creation.
|
|
file: True
|
|
global: True
|
|
advanced: True
|
|
title: Extraction Rules |