lucaspalomodevelop/core
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/core.git synced 2026-03-19 19:15:22 +00:00
Code Issues Packages Projects Releases Wiki Activity
14,803 Commits 1 Branch 0 Tags
Commit Graph

25 Commits

Author SHA1 Message Date
Markus Reiter
2bf4f44c4a
Fix EmergingThreats documentation URL. (#5530) 2022-01-31 14:06:39 +01:00
Ad Schellevis
c30e535ac9 IDPS - ET Pro telemetry 5 uses the new name scheme of version 6, which we accidentially didn't take under account when migrating ET-open. make sure we do fetch the new rulesets as being published for 6 (related to https://github.com/opnsense/core/pull/5482) 2022-01-17 18:28:27 +01:00
Ad Schellevis
1c34b86cb5 IDPS: hook et-open to suricata 5 ruleset including migration, brings 41eefdd105 back in 2021-10-28 14:21:22 +02:00
Ad Schellevis
eb921d8e07 Services / Intrusion detection: add new Abuse.ch feed ThreatFox to detect indicators of compromise 2021-03-09 10:16:18 +01:00
Ad Schellevis
41eefdd105 IDPS: revert content part of 09f74fe1ce7b4805c1bb8354e5d0c5b98955497b until ETPro telemetry ships new content. 2021-01-07 20:32:21 +01:00
Ad Schellevis
09f74fe1ce IDS: point Emerging threats open rules to suricata 5 and add a migration for the rules that moved. Includes a small patch to the rule management scripts, so we can support deprecated sets (which should be removed). 2019-12-06 15:47:18 +01:00
Ad Schellevis
923f1982f7 IDS/abuse.ch, remove non functional dyre_sslipblacklist.rules and use new location for Feodo Tracker (currently defunct) 2018-12-16 18:11:27 +01:00
Ad Schellevis
f2b30558ac IDS/IPS, abuse.ch fingerprint ruleset for suricata 4.1.x using tls_cert_fingerprint keyword for better performance. 
keep on master while still on suricata 4.0.x
 2018-10-13 11:15:56 +02:00
Michael
738bd2acc3 IDS: add uncategorized category to classification and rule download (#2485) 2018-06-27 18:07:46 +02:00
Ad Schellevis
e9b9b22c73 IDS/IPS, ET open rules, support https://github.com/opnsense/core/issues/2377 2018-05-01 20:12:32 +02:00
Ad Schellevis
6a0ded3f42 IDS/IPS add abuse.ch URLhaus 2018-04-06 16:03:06 +02:00
Ad Schellevis
77ee15156c IDS, add app detect rules to definition xml. 2018-04-03 21:23:46 +02:00
Ad Schellevis
35bb9097da IDS/et-open, start using suricata version 4 rules. closes https://github.com/opnsense/core/issues/2150 2018-02-26 20:39:19 +01:00
Ad Schellevis
8f396690f2 IDS/IPS switch to tarball for et-open rules, improves download/install speed 2017-09-25 20:26:35 +02:00
Ad Schellevis
ec92f844e8 (IDS) change et-open ruleset 2016-11-13 20:23:09 +01:00
Ad Schellevis
2641694a20 (ips) remove obsolete rbn ruleset, closes https://github.com/opnsense/core/issues/1063 2016-07-23 09:04:12 +02:00
Ad Schellevis
6ae6e594d1 (ids) remove rbn-malvertisers.rules, closes https://github.com/opnsense/core/issues/954 2016-05-21 08:47:51 +02:00
Ad Schellevis
16e3ddf2fa (ids) add test ruleset for suricata 
enable the opnsense test ruleset and try to download the eicar virus:

http://www.eicar.org/download/eicar.com.txt

it should block (over http)

closes https://github.com/opnsense/core/issues/884
 2016-04-28 16:40:03 +02:00
Ad Schellevis
32dca498c8 (ids) add source urls for suricata content providers 2016-02-10 17:38:48 +01:00
Ad Schellevis
ec244ebe52 (IDS) add ssl fingerprint blacklist and other abuse lists to standard. courtesy of abuse.ch (https://www.abuse.ch/) 2016-01-29 19:33:04 +01:00
Ad Schellevis
1e4725b2fc (ids) append rule prefix to ET-open rules 2016-01-29 18:57:51 +01:00
Franco Fichtner
fa8bf4e4ba src: whitespace police 2015-07-02 12:00:19 +02:00
Ad Schellevis
8f4f9195aa (ids) fix typo in ruleset 2015-07-02 08:29:12 +02:00
Ad Schellevis
14d1ccf1cb (ids) ruleset download definition, add ET open rules 2015-07-01 11:47:29 +02:00
Ad Schellevis
409dd5f10a (ids) work in progress rule file download 2015-06-30 20:21:20 +02:00