PT NAD uses a signature engine partially compatible with Suricata 5. A detailed description of the rule syntax in Suricata 5 is available on the developer's website. This section lists the distinctive features of the PT NAD rule syntax.