Suricata
Suricata is a network intrusion detection and prevention engine developed by the Open Information Security Foundation and its supporting vendors. The engine is multi-threaded and has native IPv6 support. It's capable of loading existing Snort rules and signatures and supports the Barnyard and Barnyard2 tools.
| Tags | IDS IPS Network Analysis Security snort IPv4 IPv6 |
|---|---|
| Licenses | GPLv2 |
| Operating Systems | Linux FreeBSD Mac OS X Windows |
| Implementation | C |
Recent releases
- 04 Apr 2012 21:03
Release Notes: TLS handshake decoder and detection keywords were added. Napatech capture card support was added. Md5 calculation for files was added. File log was added. HTTP CONNECT handling was improved. IPv6 issues were fixed. Major scalability improvements were made.
- 21 Jan 2012 02:19
Release Notes: Writing of malformed unified2 log records was fixed. TCP timeout handling was improved.
- 19 Jan 2012 21:42
Release Notes: PCAP live runmodes were fixed. CPU affinity settings for live runmodes were fixed. Windows/Cygwin path handling was improved.
- 11 Jan 2012 22:23
Release Notes: Auto-detection of interfaces with checksum offloading was added. HTTP and SMTP parser event matching was added. Unixsock output options were added. Performance was improved. IPS mode was improved. File inspection and extraction was improved.
- 20 Dec 2011 03:15
Release Notes: File inspection and extraction for HTTP was added. Support for the file_data keyword was added. PF_RING bpf support was added. A Tos keyword was added. IPS runmodes were improved.
Heartbeat
- Popularity Score
- 376.37
- Vitality Score
- 18.07
- Subscriptions
- 46
