Is there a document anywhere that show which “sid:prefix” maps to which source or vendor? I have seen https://doc.emergingthreats.net/bin/view/Main/SidAllocation
Ideally i’m looking for “sid:123” is “source X”. Then the range sid:456 to sid:789 is source Y. Is there a table to document this anywhere?
How do different rule authors avoid conflicts?