hrbrmstr/porc
Tools to Work with 'Snort' Rules, Logs and Data

Package index
Search the hrbrmstr/porc package
Vignettes
Functions
9
Source code
9
Man pages
8
Home
/
GitHub
/
hrbrmstr/porc
/
read_rules: Parse in a file of snort rules into a data frame

read_rules: Parse in a file of snort rules into a data frame
In hrbrmstr/porc: Tools to Work with 'Snort' Rules, Logs and Data

Description Usage Arguments Value Examples

Description

The individual components of a Snort rule are parsed and put into a tidy data frame format. The rule options are also parsed and the resultant options columns is a data frame with option name and value. The value for options that do not have values is NA_character.

There is an id column which is just an index of the rule position in the file. An extra commented field exists to identify rules that are in the file but commented out. This makes it easy to filter on in-use rules.

The options column can be unnested with tidyr::unnest().

Usage

1
read_rules(path)

Arguments

path

path to snort rules file

Value

data frame

Examples

1
2
3
rules <- read_rules(
  system.file("extdata", "emerging-telnet.rules", package="porc")
)

hrbrmstr/porc documentation built on May 28, 2019, 5:43 a.m.

Related to read_rules in hrbrmstr/porc...

hrbrmstr/porc index
README.md

R Package Documentation

rdrr.io home R language documentation Run R code online

Browse R Packages

CRAN packages Bioconductor packages R-Forge packages GitHub packages

We want your feedback!

Note that we can't provide technical support on individual packages. You should contact the package authors for that.
GitHub issue tracker
ian@mutexlabs.com
Personal blog

 
Embedding an R snippet on your website

Add the following code to your website.

For more information on customizing the embed code, read Embedding Snippets.

Close