Security Onion is an Ubuntu based distribution created to handle a lot of Security task.
I wrote a perl script to make advanced modification to the downloaded SNORT rules. This script can handle rule transformation based on regular expression and multiple substitution patterns.
The README file details
- Download and Install tasks
- Script options
- Test mode and how the script works
- Basic configuration
- How to write custom rules
- Integration with Security Onion
Hope someone else find it useful as I did.