Skip to content
/ EIQ-to-IDS Public

Toolkit to take an EclecticIQ JSON outgoing feed, extract the useful observables and transform those into IDS rulesets.

License

GPL-3.0 license
2 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

KPN-CISO/EIQ-to-IDS

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

80 Commits
config
config
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
eiq_to_ids.py
eiq_to_ids.py
 
 
eiqcalls.py
eiqcalls.py
 
 
eiqjson.py
eiqjson.py
 
 

Repository files navigation

EIQ-to-IDS

Toolkit to take an EclecticIQ JSON outgoing feed, extract the useful observables and transform those into IDS rulesets.

Please note that we consider this to be proof-of-concept code for generating Snort/SourceFire rules. You should really not blindly run this on production environments without careful checking of the generated rulesets.

Check back regularly for updates, as development will continue.

About

Toolkit to take an EclecticIQ JSON outgoing feed, extract the useful observables and transform those into IDS rulesets.

Resources

Readme

License

GPL-3.0 license
Activity
Custom properties

Stars

2 stars

Watchers

5 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages