misp-objects/objects/suricata/definition.json

{
  "requiredOneOf": [
    "suricata"
  ],
  "attributes": {
    "comment": {
      "description": "A description of the Suricata rule(s).",
      "ui-priority": 0,
      "misp-attribute": "comment"
    },
    "suricata": {
      "description": "Suricata rule.",
      "ui-priority": 0,
      "misp-attribute": "snort",
      "multiple": true
    },
    "version": {
      "description": "Version of the Suricata rule depending where the suricata rule is known to work as expected.",
      "ui-priority": 0,
      "misp-attribute": "text"
    },
    "ref": {
      "description": "Reference to the Suricata rule such as origin of the rule or alike.",
      "misp-attribute": "link",
      "ui-priority": 0
    }
  },
  "version": 2,
  "description": "An object describing one or more Suricata rule(s) along with version and contextual information.",
  "meta-category": "network",
  "uuid": "3c177337-fb80-405a-a6c1-1b2ddea8684a",
  "name": "suricata"
}
add: Suricata object added with context 2018-03-28 14:32:53 +02:00			`{`
			`"requiredOneOf": [`
			`"suricata"`
			`],`
			`"attributes": {`
			`"comment": {`
fix: [suricata] allow multiple Suricata rules in the object (similar context) and fix the rule to be in Snort format Fix #106 2018-07-09 21:50:44 +02:00			`"description": "A description of the Suricata rule(s).",`
add: Suricata object added with context 2018-03-28 14:32:53 +02:00			`"ui-priority": 0,`
			`"misp-attribute": "comment"`
			`},`
			`"suricata": {`
			`"description": "Suricata rule.",`
			`"ui-priority": 0,`
fix: [suricata] allow multiple Suricata rules in the object (similar context) and fix the rule to be in Snort format Fix #106 2018-07-09 21:50:44 +02:00			`"misp-attribute": "snort",`
			`"multiple": true`
add: Suricata object added with context 2018-03-28 14:32:53 +02:00			`},`
			`"version": {`
			`"description": "Version of the Suricata rule depending where the suricata rule is known to work as expected.",`
			`"ui-priority": 0,`
			`"misp-attribute": "text"`
			`},`
			`"ref": {`
			`"description": "Reference to the Suricata rule such as origin of the rule or alike.",`
			`"misp-attribute": "link",`
			`"ui-priority": 0`
			`}`
			`},`
fix: [suricata] allow multiple Suricata rules in the object (similar context) and fix the rule to be in Snort format Fix #106 2018-07-09 21:50:44 +02:00			`"version": 2,`
			`"description": "An object describing one or more Suricata rule(s) along with version and contextual information.",`
add: Suricata object added with context 2018-03-28 14:32:53 +02:00			`"meta-category": "network",`
			`"uuid": "3c177337-fb80-405a-a6c1-1b2ddea8684a",`
			`"name": "suricata"`
			`}`