Formatting of rules and decoders

wazuh · Mar 12, 2020 · 49d89c8 · 49d89c8
1 parent 3cc7715
commit 49d89c8
Show file tree

Hide file tree

Showing 2 changed files with 14 additions and 11 deletions.
diff --git a/decoders/0490-junos_decoders.xml b/decoders/0490-junos_decoders.xml
@@ -1,8 +1,10 @@
 <!--
-wazuh
+  -  Junos decoders
+  -  Updated by Wazuh, Inc.
+  -  Copyright (C) 2015-2020, Wazuh Inc.
+  -  This program is a free software; you can redistribute it and/or modify it under the terms of GPLv2.
 -->
 
-<!-- ======= Junos IDS decoders ======= -->
 
 <decoder name="junos-ids">
     <program_name>junos-ids</program_name>

diff --git a/rules/0655-junos_rules.xml b/rules/0655-junos_rules.xml
@@ -1,32 +1,33 @@
 <!--
-  Junos ruleset
-  Created by Wazuh, Inc. <support@wazuh.com>.
-  This program is a free software; you can redistribute it and/or modify it under the terms of GPLv2.
+  - Junos rules
+  - Created by Wazuh, Inc. 
+  - Copyright (C) 2015-2020, Wazuh Inc.
+  - This program is a free software; you can redistribute it and/or modify it under the terms of GPLv2.
 -->
 
 <group name="junos-ids,junos,rsyslog">
 
-    <rule id="200100" level="0">
+    <rule id="67100" level="0">
         <decoded_as>junos-ids</decoded_as>
         <description>Junos IDS</description>
     </rule>
 
-    <rule id="200101" level="10">
-        <if_sid>200100</if_sid>
+    <rule id="67101" level="10">
+        <if_sid>67100</if_sid>
         <description>Junos IDS: $(attack.name)</description>
     </rule>
 
 </group>
 
 <group name="rsyslog,junos,junos-rtflow,">
 
-    <rule id="130000" level="0">
+    <rule id="67102" level="0">
         <decoded_as>junos-rt-flow</decoded_as>
         <description>Junos RT Flow</description>
     </rule>
 
-    <rule id="130001" level="5">
-        <if_sid>130000</if_sid>
+    <rule id="67103" level="5">
+        <if_sid>67102</if_sid>
         <description>Junos RT flow: $(subcat)</description>
     </rule>