Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/dgenzer/surify-cli

🧙🏼‍♂️Generate suricata-rules from collection of IOCs (JSON, CSV or flags) based on your suricata template.
https://github.com/dgenzer/surify-cli

generator rules ruleset suricata

Last synced: about 1 month ago
JSON representation

🧙🏼‍♂️Generate suricata-rules from collection of IOCs (JSON, CSV or flags) based on your suricata template.

Awesome Lists containing this project

README 

        
# surify-cli



Generate suricata-rules from collection of IOCs (JSON, CSV or flags) based on your suricata template.



## Installation

`# npm i -g surify-cli`



## Features



### Inputs

- CSV as input (only with header)

(_you have to manually set the delimiter_)

  - `$ surify c config.json --csv example.csv -d ";" -o suri_csv.rules --sid 1`

- JSON as input

  - `$ surify -c config.json --json example.json -o suri.rules`

- [JSON Lines](http://jsonlines.org/) as input (e.g. from [armbues/ioc-parser](https://github.com/armbues/ioc_parser))

  - `$ surify -c config.json --jsonl example.jsonl -o suri.rules`

- flags as input

  - `$ surify -c config.json --test1 1.2.3.4 --test2 9.9.9.9 --sid 120000 -o log`



### Outputs

- output to stdout 

  - `... -o log`

- output to file

  - `... -o suri.rules`



## Examples



An example `config.json` and some templates `./templates/*` are available. Further examples are available [here](https://github.com/dgenzer/surify-cli/wiki/Examples).



## ToDo

- [ ] Tests

- [x] conditions in **config.json**

  - [ ] Example in wiki

- [ ] **surify.js** as a standalone package

- [ ] autodetect inputtype