Skip to content

regit/SublimeSuricata

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

23 Commits
README.md
README.md
 
 
sublimesuricata.png
sublimesuricata.png
 
 
suricata.sublime-syntax
suricata.sublime-syntax
 
 

Repository files navigation

SublimeSuricata

Basic Suricata syntax highlighter for Sublime Text 3.

alt text

Accounts for all of the following in Suricata v4.1 onwards

  • Meta keywords
  • IP keywords
  • TCP keywords
  • ICMP keywords
  • Payload keywords
  • Prefiltering keywords
  • Flow keywords
  • HTTP keywords
  • File keywords
  • DNS keywords
  • SSL/TLS keywords
  • JA3 keywords
  • DNP3 keywords
  • Xbits keywords
  • Thresholding keywords (partial)
  • IP reputation keywords
  • FTP keywords
  • App-layer keywords
  • Bold orange highlighting of negated content (i.e. content:!"negated"; and isdataat:!1,relative;)

To do

  • Add Modbus keywords
  • Add ENIP/CIP keywords

Getting it working

  • Save the suricata.sublime-syntax file in your Packages User folder
    • Windows: C:\Users%user%\AppData\Roaming\Sublime Text 3\Packages\User
    • Mac: $home/Library/Application Support/Sublime Text 3/Packages/User
    • Linux: $home/.config/sublime-text-3/Packages/User
  • Open Sublime Text 3
  • View > Syntax > suricata

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published