forked from cisagov/Malcolm
-
Notifications
You must be signed in to change notification settings - Fork 59
Suricata Rule SID Ranges
Seth Grover edited this page Jun 10, 2024
·
3 revisions
This page is to help Malcolm developers track Suricata rule SIDs shipped with Malcolm.
| SID Low | SID High | Purpose or Ruleset |
|---|---|---|
| 1001001 | 1001019 | CVE-2023-28771_Zyxel.rules |
| 1001020 | 1001029 | CVE-2023-6448_Unitronics_VisiLogic.rules |
| 1001030 | 1001049 | Niagra Fox |
| 1001050 | 1001069 | Schneider Modicon |
| 1001070 | 1001089 | OMRON FINS |
| 1001100 | 1001199 | MODBUS |
| 1001200 | 1001299 | DNP3 |
| 1001300 | 1001399 | OPCUA |
| 1001400 | 1001499 | S7comm |
| 1001500 | 1001599 | EtherNet/IP / CIP |
| 1001700 | 1001799 | BACnet |
| 1001800 | 1001899 | Scanning |
| SID Low | SID High | Purpose or Ruleset |
|---|---|---|
| 1000000 | 1000499 | nsacyber's ELITEWOLF ruleset |
| 1111500 | 1111599 | Digital Bond EtherNet/IP / CIP |