jasonish/py-idstools

idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)

PythonNOASSERTION

Issues

Invalid issue
#98 opened 7 months ago by Koen1999
0
Wrong parsing of pcre and possibly others
#97 opened a year ago by vpiserchia
0
New release to support python 3.13
#95 opened a year ago by marcindulak
6
memory usage increase issue
#92 opened 3 years ago by ganduulgag
3
Rule parsing fails if last option doesn't close with semi-colon
#90 opened 3 years ago by KimiNewt
1
Recent versions of Snort unified2 not supported.
#72 opened 3 years ago by deepakrana47
5
Tests fail with python 3.11
#89 opened 3 years ago by marcindulak
1
u2json event.appid output is in byte format and mangled
#85 opened 4 years ago by csbflyer
0
Unified2 Event Types mpls, vlan, and appid not included in u2eve output
#84 opened 4 years ago by csbflyer
0
Provide option for idstools-u2eve to reload sid-msg.map after updating sid-msg.map contents.
#83 opened 4 years ago by csbflyer
1
Add .md5 extension between URL's filename and its parameters
#81 opened 4 years ago by petiepooo
1
Feature request: mutate metadata key value pairs
#80 opened 4 years ago by nokje
0
Coverting packets object to pcap file
#79 opened 4 years ago by DDB-en
7
Connection with suricata-update
#78 opened 4 years ago by vpiserchia
2
python2-scapy as pkg dependency
#77 opened 5 years ago by cherdt
0
eve2pcap.py fails with IPv6 addresses
#76 opened 5 years ago by cherdt
1
SoolRecordReader stop working
#75 opened 6 years ago by someone77
2
Feature Request: ability to parse the source, destination, protocol using dictionary.
#73 opened 6 years ago by ancoleman
0
Bug: Multiple instances of rule options fields clobber eachother
#71 opened 6 years ago by andrewbolster
4
Feature request: extract rule group from msg when parsing
#41 opened 6 years ago by sevdog
4
appStats u2 can't work
#68 opened 7 years ago by AAyyy
1
cannot parse rule
#67 opened 7 years ago by sonicold
2
Error eve2pcap not work
#66 opened 7 years ago by Canon88
8
support for spaces in list of hosts
#65 opened 7 years ago by 0xmilkmix
2
Error when parsing Unicode in URL
#64 opened 7 years ago by Straevaras
0
Feature request: add flowint parsing
#63 opened 7 years ago by sevdog
0
rulecat: Tweak log levels.
#56 opened 7 years ago by jasonish
1
Do you have idstools with Multi-thread?
#59 opened 7 years ago by q1f3
1
setup.py not reflecting the contents of bin
#61 opened 7 years ago by marcindulak
1
Parsing a badly-formatted rule ends in seg fault
#58 opened 7 years ago by imbellish
1
Bug: parse multiple metadata tags
#57 opened 7 years ago by sevdog
1
Feature request: xbits parsing support
#62 opened 7 years ago by sevdog
0
Missing tag or release for 0.6.2
#60 opened 7 years ago by sevdog
1
rulecat: Don't display "oinkcode" in log output.
#55 opened 8 years ago by jasonish
0
Issues with rulecat.py and Python3
#53 opened 8 years ago by marcindulak
4
Rules where msg contains ":" don't appear correctly
#51 opened 8 years ago by DigiAngel
10
Feature request: snort.org support in rulecat
#52 opened 8 years ago by sevdog
4
issue with u2eve
#54 opened 8 years ago by kernelschmelze
14
Improvement: rulecat report only if needed
#49 opened 8 years ago by sevdog
1
Bug: semicolon in rule message
#50 opened 8 years ago by sevdog
2
Two writers, one file?
#48 opened 8 years ago by DigiAngel
2
FeatureRequest: Unified to Elasticsearch
#44 opened 8 years ago by DigiAngel
19
u2eve: add --packet-hex option
#46 opened 8 years ago by jasonish
1
u2eve: include unified2's extra data in eve event
#47 opened 8 years ago by jasonish
1
SpoolEventReader packet data
#39 opened 8 years ago by asermam
6
u2spewfoo.py KeyError
#45 opened 8 years ago by DigiAngel
3
Feature request: extract ruleset when parsing
#42 opened 8 years ago by sevdog
1
Feature Request: Suricata version override for rulecat?
#38 opened 8 years ago by valorcz
3
idstools-rulecat: crash on Python 3.
#40 opened 8 years ago by jasonish
1
eve2pcap.py: problem parsing timezone
#37 opened 8 years ago by marcindulak
1