Skip to content
/ de_testing_tools Public

just sets up a docker container for testing zeek scrtips, suricata and yara rules

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

ratfink417/de_testing_tools

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
de_testing_tools
de_testing_tools
 
 
zeek/scripts
zeek/scripts
 
 
docker-compose.yml
docker-compose.yml
 
 
readme.md
readme.md
 
 

Repository files navigation

when this thing is in a fully working state....

you should be able to use this container standalone from your terminal by running docker compose up from inside the root folder of this repository or use the dockerfile as a gitlab runner for ci/cd

any logs or extracted files resulting from a test can be found in the artifacts folder for the type of rule or scipt you are testing ie artifacts/{suricata,zeek,yara}

if your test was meant to extract files from pcap, it should be placed in artifacts/files

any pcap or files you would like added to the container for you to run tests against should be placed in the artifacts/{files,pcap} folders

About

just sets up a docker container for testing zeek scrtips, suricata and yara rules

Resources

Readme
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages