Changelog - 1.0 (2024-09-03)
π Initial Release: Automation for Creating and Updating Custom Snort Rules π
π οΈ Key Features:
Snort Installation Check: The script verifies if Snort is installed before proceeding. If not found, the process will halt.
Configuration File Detection: Automatically searches for the snort.conf file. If not found, prompts the user to enter the file path.
Rules Directory Extraction: Extracts the rules directory path from snort.conf to correctly place the custom rules file.
Custom Rules Creation: Creates a customrules.rules file in the determined rules directory.
IP Bypass Option: Provides an option to add bypass rules for a specific IP to exclude certain traffic from being scanned.
Default Rules: Includes a comprehensive set of default rules to cover various types of network attacks, including DDoS, scans, and specific service port scans.
π Changes in This Release:
Comprehensive Rule Set: Introduced an extensive rule set to address a wide range of network security issues.
User Prompts for Missing Configuration Details: Improved user interface with prompts for missing configuration details and IP bypass rules, making configuration easier and more customizable.