From 91a8664b662ed506a7896b638c6d9d140485a5aa Mon Sep 17 00:00:00 2001
From: Stefan Schantl <stefan.schantl@ipfire.org>
Date: Mon, 25 Apr 2022 21:15:23 +0200
Subject: [PATCH] Revert "ruleset-sources: Remove support for PT Attack Team
 Detection rules."

The ruleset provider has recovered his github presence.

This reverts commit c8adaee1958ed0c382341e08949d5cb88bd58c7e.
---
 config/suricata/ruleset-sources | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/config/suricata/ruleset-sources b/config/suricata/ruleset-sources
index 54a739d18c..1d2c6e98b2 100644
--- a/config/suricata/ruleset-sources
+++ b/config/suricata/ruleset-sources
@@ -97,6 +97,16 @@ our %Providers = (
 		dl_type => "plain",
 	},
 
+	# Positive Technologies Attack Detection Team rules.
+	attack_detection => {
+		summary => "PT Attack Detection Team Rules",
+		website => "https://github.com/ptresearch/AttackDetection",
+		tr_string => "attack detection team rules",
+		requires_subscription => "False",
+		dl_url => "https://raw.githubusercontent.com/ptresearch/AttackDetection/master/pt.rules.tar.gz",
+		dl_type => "archive",
+	},
+
 	# Secureworks Security rules.
 	secureworks_security => {
 		summary => "Secureworks Security Ruleset",
-- 
2.39.2