I'm on the hunt for websites or tools that can assist me in creating custom Suricata rules. Any recommendations or tips would be greatly appreciated!
1 Answer
Once you start with rules for the most common scenarios, it usually becomes about copying and pasting while making slight adjustments. But I have to say, maintaining hundreds of rules is quite a challenge!
It sounds like modifying rules from Palo to AWS might get tricky! I’m also surprised there isn’t a streamlined tool for that yet.