According to Wikipedia, Suricata is an open source-based intrusion detection system (IDS) and intrusion prevention system (IPS). It was developed by the Open Information Security Foundation (OISF). A beta version was released in December 2009, with the first standard release following in July 2010.[3][4]
Contents
Features
- Multi-threading
- Automatic protocol detection
- Gzip decompression
- Independent HTP library
- Standard input methods
- Unified2 output
- Flow variables
- Fast IP matching
- HTTP log module
- JSON standard outputs
- Windows binaries
- Lua scripting[6]
- Prelude output[7]
- file matching, logging, extraction, md5 checksum calculation[7]
- IP reputation
- DNS logger
- VXLAN support since 4.1.5
in a future release[5]
- Global flow variables
Third-party tools
Third-party tools available for Snort are compatible with Suricata, like the following:
- Snorby
- BASE
- Sguil (free)
- Aanval (commercial)
- Telesoft CERNE Open IDS Platform (commercial)
Free intrusion detection systems
See also
References
- ^ “Releases – OISF/suricata”. Retrieved 16 August 2021 – via GitHub.
- ^ “Suricata license”.
- ^ “New Open Source Intrusion Detector Suricata Released”. Slashdot. 2009-12-31. Retrieved 2011-11-08.
- ^ “Suricata Downloads”. Open Security Information Foundation. Retrieved 2011-11-08.
- ^ Jump up to:a b Jonkman, Matt (2009-12-31). “Suricata IDS Available for Download!”. Seclists.org. Retrieved 2011-11-08.
- ^ “Suricata Features”. Retrieved 2012-10-06.
- ^ Jump up to:a b “Suricata All Features”. Retrieved 2012-10-06.
External links
- Official website
- Suricata Nedir? Kurulumu Nasıl Yapılır?
- Open Information Security Foundation
- “Suricata”. Freecode.
The development of Suricata is a combined effort of OISF employees and contractors, developers who work for 3rd party companies and individuals who help out in their free time.
More Stories
TID-Group
OPNsense
FlanScan