I found these items in the meeting agenda for today:
Some IPS Ruleset Housekeeping
- Removal of PT Attack Detection Team Ruleset
- Status: Read-Only since Sep 2022, Last Major Changes in 2021
- EOL Status and Current Focus of Positive Technologies
- Removal of Secureworks Rulesets
- Enhanced, Malware, and Security Rulesets
- Issue: Rulesets No Longer Available (404 Error)
- Secureworks Website: No Mention of Suricata Rulesets
- Community Suggestion
- Addition of
ThreatFoxIPS Ruleset by abuse.ch? (Suggestion here) - Consideration: Potential Conflicts or Duplication with Existing Rules
- Addition of