1 个仓库
Executes custom Lua scripts embedded directly within detection rules to extend inspection and response logic beyond built-in rule syntax.
Distinct from Lua Scripting: Distinct from Lua Scripting: focuses on embedding Lua code inline within rules for detection, not general Lua scripting for atomic operations.
Explore 1 awesome GitHub repository matching data & databases · Inline Rule Scripts. Refine with filters or upvote what's useful.
Suricata is an open-source network intrusion detection and prevention engine that analyzes live network traffic in real-time to identify and alert on malicious activity. It operates as a rule-based threat detection system, matching traffic against user-defined signatures to detect known attack patterns and policy violations, and can be placed inline to actively block malicious packets before they reach their target. The engine inspects a wide range of application-layer protocols including HTTP, DNS, TLS, SMB, and MQTT, and supports high-performance packet capture through specialized hardware a
Ships a Lua scripting extension system that allows custom detection logic to be embedded directly in rules.