i-code console - Browse /rules at SourceForge.net

The interactive file manager requires Javascript. Please enable it or use sftp or scp.
You may still browse the files here.

Name	Modified	Size	InfoDownloads / Week
Parent folder
successattack	2012-11-26		0
geoinfo	2012-11-26		0
anubistask	2012-11-26		0
README	2012-11-26	790 Bytes	0
Totals: 4 Items		790 Bytes	0

This folder contains 3 sample ruels to be used with the Prelude Correlator Module.

** SUCCESSATTACK **
This rule triggers whenever 2 or more rules from the same source and port target the same host within the network.
Requirements:
- Prelude
- Prelude Correlator

Installation:
- python setup.py install


** GEOINFO **
This rule performs geolocalization on the source IP of every event.
Requirements:
- Prelude
- Prelude Correlator
- http://ipinfodb.com API key

Installation:
- insert API key into main.py file
- python setup.py install


** ANUBISTASK **
This rule sends the shellcode gathered from the peripheral tools (if they provide it), sends it to Anubis and retrieves the corresponding task id
Requirements:
- Prelude
- Prelude Correlator

Installation:
- python setup.py install

Source: README, updated 2012-11-26

i-code console Files