This is just a space for me to play around with creating custom suricata rules for my network, feel free to look around :)
https://www.echosec.net/blog/what-is-pastebin-and-why-do-hackers-love-it
https://rules.emergingthreats.net/OPEN_download_instructions.html
- Suricata's open ruleset alerts on Kali hostnames, I modified it to be more broad and alert on any traffic with the kali keyword
https://github.com/SigmaHQ/sigma/blob/master/rules/web/web_cve_2021_44228_log4j_fields.yml