Add PT Research Attack Detection ruleset.

author Jason Ish <ish@unx.ca>

Thu, 30 Nov 2017 18:51:31 +0000 (12:51 -0600)

committer Jason Ish <ish@unx.ca>

Thu, 30 Nov 2017 18:51:31 +0000 (12:51 -0600)
author Jason Ish <ish@unx.ca>
Thu, 30 Nov 2017 18:51:31 +0000 (12:51 -0600)
committer Jason Ish <ish@unx.ca>
Thu, 30 Nov 2017 18:51:31 +0000 (12:51 -0600)
diff --git a/index.yaml b/index.yaml

index 256614feb01bfbb709ef60f000cf495131595ef2..957b951f7ea37672e245ef09f337ddf23bd21b80 100644 (file)
--- a/index.yaml
+++ b/index.yaml
@@ -42,6 +42,15 @@ sources:
      tags:
        - labelling
  
+  ptresearch/attackdetection:
+    vendor: Positive Technologies
+    summary: Positive Technologies Attack Detection Team ruleset
+    description: |
+      The Attack Detection Team searches for new vulnerabilities and 0-days, reproduces it and creates PoC exploits to understand how these security flaws work and how related attacks can be detected on the network layer. Additionally, we are interested in malware and hackers’ TTPs, so we develop Suricata rules for detecting all sorts of such activities.
+    url: https://raw.githubusercontent.com/ptresearch/AttackDetection/master/pt.rules.tar.gz
+    license: Custom
+    license-url: https://raw.githubusercontent.com/ptresearch/AttackDetection/master/LICENSE
+
    # SSBL FP blacklist ruleset.
    sslbl/ssl-fp-blacklist:
      summary: Abuse.ch SSL Blacklist
author	Jason Ish <ish@unx.ca>
	Thu, 30 Nov 2017 18:51:31 +0000 (12:51 -0600)
committer	Jason Ish <ish@unx.ca>
	Thu, 30 Nov 2017 18:51:31 +0000 (12:51 -0600)