pulledpork
snort-rules
pulledpork | snort-rules | |
---|---|---|
2 | 1 | |
415 | 153 | |
- | - | |
0.0 | 3.8 | |
almost 3 years ago | about 3 years ago | |
Perl | C | |
GNU General Public License v3.0 only | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
pulledpork
-
Getting a lot of BF attempts on my server, any tips/ways to cut this out?
Snort on the other hand is a real full-featured IPS and much more powerful. Using them together can offload the processing work Snort needs to do though. You can use something like pulledpork to automatically update various rulesets for Snort as well (community, Talos (Cisco), etc.). Snort is also a big part of Cisco's FirePower firewalls.
-
Rules update during system installation
In the Github issues section, there's a 3 year old, still Open "Process Snort 3 Rules (https://github.com/shirkdog/pulledpork/issues/297)" issue. So that would get me questioning how they got it working in the guide at all...
snort-rules
What are some alternatives?
tpotce - 🍯 T-Pot - The All In One Honeypot Platform 🐝 [Moved to: https://github.com/telekom-security/tpotce]
Wazuh - Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
Munin - Main repository for munin master / node / plugins
Suricata - Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community.
Rsnapshot - a tool for backing up your data using rsync (if you want to get help, use https://lists.sourceforge.net/lists/listinfo/rsnapshot-discuss)
security-onion - Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management
Fail2Ban - Daemon to ban hosts that cause multiple authentication errors
OSSEC - OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.
py-idstools - idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)