Hello,
I understand that the “ET OPEN Rulesets” range from 2000000 to 2099999 is under the BSD license, and the range from 2100000 to 2103999 is under the GPL license.
Then, what type of license do the third-party rules fall under? For example, the following rules:
https://rules.emergingthreats.net/open/suricata-7.0.3/rules/3coresec.rules
https://rules.emergingthreats.net/open/suricata-7.0.3/rules/ciarmy.rules
Thank you for your wonderful efforts.
Thanks @shohei ! Those rules are part of ET Open for these purposes.
Thank you, @rgonzalez
Uhm…,
So “3coresec.rules”, “ciarmy.rules” and other third-party rules are the same as “ET Open”, are they under BSD license?
I found this post. I am wondering because in this case it is GPL 2.0.
Partners like 3CoreSec and Threatview.io are under agreement with Proofpoint to adopt their work specifically into ET Open. I’ll have to check on the legal specifics for CI-Army. If you have a specific use to propose I can ask our legal and that will definitely get you a better answer.