格式和语法突出显示suricata规则
suricata-prettifier的Python项目详细描述
苏打水美化剂
蛇形动力管道清洁器吃单线苏瑞塔规则和粪便之间的愉快间隔,充满活力的美食,直接到你的盘子。检查这个示例:
alert tcp $HOME_NET any -> 94.242.238.242 6565 (msg:"EmergingThreats:Indicator-2405101"; flow:to_server,established; flags:S; reference:url,doc.emergingthreats.net/bin/view/Main/BotCC; reference:url,www.shadowserver.org; threshold: type limit, track by_src, seconds 360, count 1; classtype:trojan-activity; flowbits:set,ET.Evil; flowbits:set,ET.BotccIP; sid: 533; rev:4991;)
现在,看着蛇宝宝吞下这么好的一点食物,这是冬天最后的食物,然后向北返回它们的配偶身边,留下它们本季的工作:
alert tcp $HOME_NET any -> 94.242.238.242 6565 ( \
msg: "EmergingThreats:Indicator-2405101"; \
flow: to_server,established; \
flags: S; \
reference: url,doc.emergingthreats.net/bin/view/Main/BotCC; \
reference: url,www.shadowserver.org; \
threshold: type limit, track by_src, seconds 360, count 1; \
classtype: trojan-activity; \
flowbits: set,ET.Evil; \
flowbits: set,ET.BotccIP; \
sid: 533; \
rev: 4991; \
)
注意:使用Suricata 4.0.4测试线路续航的选项
安装
pip install suricata-prettifier
用法
在控制台中突出显示并格式化。真的。
prettify-suricata input.rules
使用它为您的LiveJournal生成贴心的帖子(需要Netscape Navigator才能查看)
prettify-suricata -f html input.rules input.formatted.html style=vim full=True
从stdin读取并写入stdout以创建自己的梦想
head -n 50 input.rules | prettify-suricata -f html - - style=vim full=True | tee input.formatted.html
欢迎加入QQ群-->: 979659372
