package info
(click to toggle)
sagan 1.2.0-1.2
- links: PTS
- area: main
- in suites: bookworm, bullseye
- size: 6,604 kB
- sloc: ansic: 21,146; sh: 4,499; asm: 1,002; perl: 282; makefile: 144
Folder: rules
 |
.. (parent) | |||
 |
- | rw-r--r-- | 8 | .last_used_sid |
|
- | rw-r--r-- | 11,751 | ChangeLog |
|
- | rw-r--r-- | 1,447 | README |
|
- | rw-r--r-- | 2,394 | adtran.rules |
|
- | rw-r--r-- | 21,789 | apache.rules |
|
- | rw-r--r-- | 2,784 | apc-emu.rules |
|
- | rw-r--r-- | 6,147 | arp.rules |
|
- | rw-r--r-- | 8,315 | artillery.rules |
|
- | rw-r--r-- | 7,282 | as400.rules |
|
- | rw-r--r-- | 4,955 | asterisk.rules |
|
- | rw-r--r-- | 4,041 | attack.rules |
|
- | rw-r--r-- | 6,427 | barracuda.rules |
|
- | rw-r--r-- | 13,939 | bash.rules |
|
- | rw-r--r-- | 6,240 | bind.rules |
|
- | rw-r--r-- | 2,250 | blacklist.rules |
|
- | rw-r--r-- | 137 | bluedot-categories.conf |
|
- | rw-r--r-- | 3,282 | bluedot.rules |
|
- | rw-r--r-- | 4,100 | bonding.rules |
|
- | rw-r--r-- | 2,046 | bro-bluedot.rules |
|
- | rw-r--r-- | 11,003 | bro-ids.rules |
|
- | rw-r--r-- | 2,251 | bro-intel.rules |
|
- | rw-r--r-- | 2,329 | cacti-thold.rules |
|
- | rw-r--r-- | 6,925 | carbonblack.rules |
|
- | rw-r--r-- | 5,154 | cisco-aetas.rules |
|
- | rw-r--r-- | 4,884 | cisco-blacklist.rules |
|
- | rw-r--r-- | 8,525 | cisco-bluedot.rules |
|
- | rw-r--r-- | 4,889 | cisco-brointel.rules |
|
- | rw-r--r-- | 10,021 | cisco-correlated.rules |
|
- | rw-r--r-- | 3,224 | cisco-cucm.rules |
|
- | rw-r--r-- | 6,751 | cisco-geoip.rules |
|
- | rw-r--r-- | 26,357 | cisco-ios.rules |
|
- | rw-r--r-- | 3,191 | cisco-ise-blacklist.rules |
|
- | rw-r--r-- | 3,247 | cisco-ise-bluedot.rules |
|
- | rw-r--r-- | 3,189 | cisco-ise-brointel.rules |
|
- | rw-r--r-- | 3,213 | cisco-ise-geoip.rules |
|
- | rw-r--r-- | 3,718 | cisco-ise.rules |
|
- | rw-r--r-- | 9,823 | cisco-malware.rules |
|
- | rw-r--r-- | 5,295 | cisco-meraki.rules |
|
- | rw-r--r-- | 128,910 | cisco-pixasa.rules |
|
- | rw-r--r-- | 34,726 | cisco-prime.rules |
|
- | rw-r--r-- | 707,597 | cisco-sdee.rules |
|
- | rw-r--r-- | 13,182 | cisco-wlc.rules |
|
- | rw-r--r-- | 3,203 | citrix-blacklist.rules |
|
- | rw-r--r-- | 3,460 | citrix-bluedot.rules |
|
- | rw-r--r-- | 3,196 | citrix-brointel.rules |
|
- | rw-r--r-- | 7,204 | citrix-correlated.rules |
|
- | rw-r--r-- | 3,393 | citrix-geoip.rules |
|
- | rw-r--r-- | 75,414 | citrix.rules |
|
- | rw-r--r-- | 5,865 | classification.config |
|
- | rw-r--r-- | 3,417 | courier-bluedot.rules |
|
- | rw-r--r-- | 6,041 | courier-correlated.rules |
|
- | rw-r--r-- | 3,301 | courier-geoip.rules |
|
- | rw-r--r-- | 4,306 | courier.rules |
|
- | rw-r--r-- | 7,100 | cylance.rules |
|
- | rw-r--r-- | 10,031 | deleted.rules |
|
- | rw-r--r-- | 12,064 | digitalpersona.rules |
|
- | rw-r--r-- | 3,110 | dovecot.rules |
|
- | rw-r--r-- | 19,335 | dynamic.rules |
|
- | rw-r--r-- | 4,940 | f5-big-ip-bluedot.rules |
|
- | rw-r--r-- | 4,802 | f5-big-ip-geoip.rules |
|
- | rw-r--r-- | 2,353 | f5-big-ip.rules |
|
- | rw-r--r-- | 2,773 | fatpipe-aetas.rules |
|
- | rw-r--r-- | 2,844 | fatpipe-bluedot.rules |
|
- | rw-r--r-- | 5,110 | fatpipe-correlated.rules |
|
- | rw-r--r-- | 2,786 | fatpipe-geoip.rules |
|
- | rw-r--r-- | 3,539 | fatpipe.rules |
|
- | rw-r--r-- | 6,216 | fipaypin.rules |
|
- | rw-r--r-- | 3,208 | fortinet-aetas.rules |
|
- | rw-r--r-- | 3,388 | fortinet-bluedot.rules |
|
- | rw-r--r-- | 7,746 | fortinet-correlated.rules |
|
- | rw-r--r-- | 3,273 | fortinet-geoip.rules |
|
- | rw-r--r-- | 4,412 | fortinet-malware.rules |
|
- | rw-r--r-- | 22,785 | fortinet.rules |
|
- | rw-r--r-- | 7,069 | ftpd.rules |
|
- | rw-r--r-- | 241 | gen-msg.map |
|
- | rw-r--r-- | 2,784 | grsec.rules |
|
- | rw-r--r-- | 4,722 | honeyd.rules |
|
- | rw-r--r-- | 3,478 | hordeimp.rules |
|
- | rw-r--r-- | 4,358 | hostapd.rules |
|
- | rw-r--r-- | 18,958 | huawei.rules |
|
- | rw-r--r-- | 4,524 | imapd-bluedot.rules |
|
- | rw-r--r-- | 8,913 | imapd-correlated.rules |
|
- | rw-r--r-- | 4,511 | imapd-geoip.rules |
|
- | rw-r--r-- | 3,566 | imapd.rules |
|
- | rw-r--r-- | 2,217 | ipop3d.rules |
|
- | rw-r--r-- | 2,594 | juniper-aetas.rules |
|
- | rw-r--r-- | 3,752 | juniper-bluedot.rules |
|
- | rw-r--r-- | 3,173 | juniper-geoip.rules |
|
- | rw-r--r-- | 20,732 | juniper.rules |
|
- | rw-r--r-- | 9,662 | kismet.rules |
|
- | rw-r--r-- | 2,292 | knockd.rules |
|
- | rw-r--r-- | 4,786 | linux-kernel.rules |
|
- | rw-r--r-- | 2,609 | milter.rules |
|
- | rw-r--r-- | 6,430 | mongodb.rules |
|
- | rw-r--r-- | 3,718 | mysql.rules |
|
- | rw-r--r-- | 2,570 | nexpose.rules |
|
- | rw-r--r-- | 5,032 | nfcapd-malware.rules |
|
- | rw-r--r-- | 16,486 | nfcapd.rules |
|
- | rw-r--r-- | 4,306 | nginx.rules |
|
- | rw-r--r-- | 47,174 | normalization.rulebase |
|
- | rw-r--r-- | 2,102 | ntp.rules |
|
- | rw-r--r-- | 3,818 | nxlog.rules |
|
- | rw-r--r-- | 3,371 | openssh-aetas.rules |
|
- | rw-r--r-- | 3,469 | openssh-bluedot.rules |
|
- | rw-r--r-- | 7,444 | openssh-correlated.rules |
|
- | rw-r--r-- | 3,389 | openssh-geoip.rules |
|
- | rw-r--r-- | 18,131 | openssh.rules |
|
- | rw-r--r-- | 2,921 | openvpn.rules |
|
- | rw-r--r-- | 3,281 | oracle.rules |
|
- | rw-r--r-- | 198,000 | ossec-mi.rules |
|
- | rw-r--r-- | 5,813 | ossec.rules |
|
- | rw-r--r-- | 5,433 | palo-alto-geoip.rules |
|
- | rw-r--r-- | 14,228 | palo-alto.rules |
|
- | rw-r--r-- | 15,847 | passwordstate.rules |
|
- | rw-r--r-- | 3,615 | php.rules |
|
- | rw-r--r-- | 2,898 | postfix.rules |
|
- | rw-r--r-- | 4,153 | postgresql.rules |
|
- | rw-r--r-- | 2,433 | pptp.rules |
|
- | rw-r--r-- | 3,956 | procurve.rules |
|
- | rw-r--r-- | 2,149 | proftpd-aetas.rules |
|
- | rw-r--r-- | 2,183 | proftpd-bluedot.rules |
|
- | rw-r--r-- | 2,153 | proftpd-geoip.rules |
|
- | rw-r--r-- | 8,827 | proftpd.rules |
|
- | rw-r--r-- | 390 | protocol.map |
|
- | rw-r--r-- | 22,083 | proxy-malware.rules |
|
- | rw-r--r-- | 4,689 | pure-ftpd.rules |
|
- | rw-r--r-- | 3,625 | racoon.rules |
|
- | rw-r--r-- | 2,395 | reference.config |
|
- | rw-r--r-- | 2,449 | riverbed-aetas.rules |
|
- | rw-r--r-- | 2,370 | riverbed-bluedot.rules |
|
- | rw-r--r-- | 2,453 | riverbed-geoip.rules |
|
- | rw-r--r-- | 3,423 | riverbed.rules |
|
- | rw-r--r-- | 2,429 | roundcube.rules |
|
- | rw-r--r-- | 3,745 | rsync.rules |
|
- | rw-r--r-- | 818,413 | sagan-sid-msg.map |
|
- | rw-r--r-- | 3,121 | samba.rules |
|
- | rw-r--r-- | 8,527 | sendmail.rules |
|
- | rw-r--r-- | 4,057 | snort-bluedot.rules |
|
- | rw-r--r-- | 3,921 | snort-geoip.rules |
|
- | rw-r--r-- | 12,027 | snort.rules |
|
- | rw-r--r-- | 2,348 | solaris.rules |
|
- | rw-r--r-- | 45,415 | sonicwall.rules |
|
- | rw-r--r-- | 4,675 | squid.rules |
|
- | rw-r--r-- | 2,318 | ssh-tectia-server-aetas.rules |
|
- | rw-r--r-- | 2,356 | ssh-tectia-server-bluedot.rules |
|
- | rw-r--r-- | 3,544 | ssh-tectia-server-correlated.rules |
|
- | rw-r--r-- | 2,324 | ssh-tectia-server-geoip.rules |
|
- | rw-r--r-- | 2,391 | ssh-tectia-server.rules |
|
- | rw-r--r-- | 4,772 | su.rules |
|
- | rw-r--r-- | 6,163 | symantec-ems.rules |
|
- | rw-r--r-- | 13,465 | syslog.rules |
|
- | rw-r--r-- | 2,075 | tcp.rules |
|
- | rw-r--r-- | 3,372 | telnet.rules |
|
- | rw-r--r-- | 2,117 | trendmicro.rules |
|
- | rw-r--r-- | 2,094 | tripwire.rules |
|
- | rw-r--r-- | 2,119 | vmpop3d.rules |
|
- | rw-r--r-- | 3,042 | vmware-bluedot.rules |
|
- | rw-r--r-- | 6,123 | vmware-correlated.rules |
|
- | rw-r--r-- | 2,918 | vmware-geoip.rules |
|
- | rw-r--r-- | 5,870 | vmware.rules |
|
- | rw-r--r-- | 3,060 | vpopmail.rules |
|
- | rw-r--r-- | 2,598 | vsftpd-bluedot.rules |
|
- | rw-r--r-- | 4,552 | vsftpd-correlated.rules |
|
- | rw-r--r-- | 2,544 | vsftpd-geoip.rules |
|
- | rw-r--r-- | 4,343 | vsftpd.rules |
|
- | rw-r--r-- | 2,666 | watchguard-geoip.rules |
|
- | rw-r--r-- | 18,564 | watchguard.rules |
|
- | rw-r--r-- | 31,875 | web-attack.rules |
|
- | rw-r--r-- | 2,646 | weblabrinth.rules |
|
- | rw-r--r-- | 2,950 | windows-aetas.rules |
|
- | rw-r--r-- | 4,974 | windows-applocker.rules |
|
- | rw-r--r-- | 60,484 | windows-auth.rules |
|
- | rw-r--r-- | 34,396 | windows-blacklist.rules |
|
- | rw-r--r-- | 38,103 | windows-bluedot.rules |
|
- | rw-r--r-- | 34,645 | windows-brointel.rules |
|
- | rw-r--r-- | 7,389 | windows-correlated.rules |
|
- | rw-r--r-- | 3,447 | windows-emet.rules |
|
- | rw-r--r-- | 4,760 | windows-geoip.rules |
|
- | rw-r--r-- | 45,615 | windows-malware.rules |
|
- | rw-r--r-- | 24,586 | windows-misc.rules |
|
- | rw-r--r-- | 4,802 | windows-mssql.rules |
|
- | rw-r--r-- | 2,157 | windows-owa-blacklist.rules |
|
- | rw-r--r-- | 2,211 | windows-owa-bluedot.rules |
|
- | rw-r--r-- | 2,155 | windows-owa-brointel.rules |
|
- | rw-r--r-- | 3,376 | windows-owa-correlated.rules |
|
- | rw-r--r-- | 2,380 | windows-owa-geoip.rules |
|
- | rw-r--r-- | 3,699 | windows-owa.rules |
|
- | rw-r--r-- | 154,122 | windows-security.rules |
|
- | rw-r--r-- | 17,550 | windows-sysmon.rules |
|
- | rw-r--r-- | 379 | windows.rules |
|
- | rw-r--r-- | 3,728 | wordpress.rules |
|
- | rw-r--r-- | 5,970 | xinetd.rules |
|
- | rw-r--r-- | 2,189 | yubikey.rules |
|
- | rw-r--r-- | 3,231 | zeus.rules |
|
- | rw-r--r-- | 3,699 | zimbra-geoip.rules |
|
- | rw-r--r-- | 8,163 | zimbra.rules |
|
- | rw-r--r-- | 2,306 | zscaler-bluedot.rules |
|
- | rw-r--r-- | 34,181 | zscaler.rules |