adopt digitalbond/Quickdraw ICS rules into Malcolm's suricata instance

[mmguero]

See:

• digitalbond/Quickdraw-Snort
• digitalbond/Quickdraw-Suricata

Tasks:

• Examine suricata rules and either modify and add to Malcolm under here or adjust build to pull them in via git clone
• Examine snort rules and convert to suricata, then do the same process as in the previous bullet
• Examine any new variables that might need to be defined and determine if those need to be defined by the user, or if we can figure them out automatically or what
• test based on PCAPs provided by those repos