User Tools

Site Tools


suricata50

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
suricata50 [2020/04/07 18:35]
zog [Settings.]
suricata50 [2020/04/07 18:45] (current)
zog [Rules.]
Line 35: Line 35:
 {{:​suricata4.png?​|}} {{:​suricata4.png?​|}}
  
-On this tab you can see available database for attack detector module. There are three rule databases: the “Rules from snort.org” ​site, the “Positive Technologies Open Ruleset (Attack Detection)” and the “Emerging Threats Rules”.+On this tab you can see available database for attack detector module. There are three rule databases: the “Rules from snort.org” ​source, the “Positive Technologies Open Ruleset (Attack Detection)” and the “Emerging Threats Rules”.
  
-Each base contains ​set of downloadable files, and each file contains ​set of rules, grouped according to the security target. For a ruleset work, it is necessary that the base would be downloaded (you can read about this in the “Updating settings”),​ if the base wasn't downloaded, next to each file you will see the “was not downloaded” text. +Each base contains set of downloadable files, and each file contains set of rules, grouped according to the security target. For a ruleset ​to work, it is necessary that the base has been downloaded (you can read about this in the “Updating settings”),​ if the base hasn'​t ​been downloaded, next to each file you will see the “was not downloaded” text. 
  
-If the base was downloaded, you can choose either to use all the base entirely, ​marking ​the “Apply” checkbox. Or, if you want to apply a specific file, or exclude a specific file, you can mark it with “Apply” checkbox. Next to each file you can see the amount of rules that it contains.+If the base has been downloaded, you can choose either to use all of the base entirely, ​selecting ​the “Apply” checkbox. Or, if you want to apply a specific file, or exclude a specific file, you can mark the file with “Apply” checkbox. Next to each file you can see the amount of rules that it contains.
  
-In the right top corner you can see search line - it works both with names and amount of rules in a file. To look through the rules and to choose an action you should click on the filename, and the new window with a table will be open+In the right top corner you can see search line - it works both with names and amount of rules in a file. To look through the rules and to choose an action you should click on the filename, and new window with a table will be opened
  
 The table contains following tabs: The table contains following tabs:
suricata50.txt · Last modified: 2020/04/07 18:45 by zog