[Oisf-users] How to add and update IoC in Suricata?
Bjørn Ruberg
bjorn at ruberg.no
Fri Apr 19 08:21:50 UTC 2019
On 18.04.2019 21:50, Ariel Garcia wrote:
> Hello!
> I am new with the IDS.
> I have installed a Suricata 4.1.3 + Elasticsearch + Kibana7, all ok, but
> I would like to know how to add and / or update IoC (Indicators of
> commitments) to the Suricata, and where to download them if there is any
> site.
If you mean Indicators of Compromise, check out Open Threat Exchange
(https://otx.alienvault.com/). The relevant tools for updating Suricata
can be found at https://github.com/AlienVault-OTX/OTX-Suricata.
--
Bjørn
More information about the Oisf-users
mailing list