Suricata (software)

From Wikipedia, the free encyclopedia
Jump to: navigation, search
Suricata
Developer(s) Open Information Security Foundation
Stable release 2.0.2 / June 25, 2014; 13 days ago (2014-06-25)
Preview release 2.0rc3 / March 18, 2014; 3 months ago (2014-03-18)
Written in C
Operating system FreeBSD, Linux, UNIX, Mac OS X, Microsoft Windows
Type
License GNU General Public License[1]
Website suricata-ids.org

Suricata is an open source-based intrusion detection system (IDS). It was developed by the Open Information Security Foundation (OISF). A beta version was released in December 2009, with the first standard release following in July 2010.[2][3]

Features[edit]

in the current beta release
[4]
  • Multi-threading
  • Automatic protocol detection
  • Gzip decompression
  • Independent HTP library
  • Standard input methods
  • Unified2 output
  • Flow variables
  • Fast IP matching
  • HTTP log module
  • PostgreSQL log module[5]
  • Graphics card acceleration
  • Windows binaries
  • Lua scripting[6]
  • Prelude output[7]
  • file matching, logging, extraction, md5 checksum calculation[7]
  • IP reputation
  • DNS logger
in a future release
[4]
  • Global flow variables

Third-party tools[edit]

Many third-party tools available for Snort are compatible with Suricata, like the following:

Free Intrusion Detection Systems[edit]

See also[edit]

References[edit]

  1. ^ "Suricata license". 
  2. ^ "New Open Source Intrusion Detector Suricata Released". Slashdot. 2009-12-31. Retrieved 2011-11-08. 
  3. ^ "Suricata Downloads". Open Security Information Foundation. Retrieved 2011-11-08. 
  4. ^ a b Jonkman, Matt (2009-12-31). "Suricata IDS Available for Download!". Seclists.org. Retrieved 2011-11-08. 
  5. ^ "Suricata: Feature #118: Support of PostgreSQL database logging". Open Information Security Foundation. Retrieved 2011-11-08. 
  6. ^ "Suricata Features". Retrieved 2012-10-06. 
  7. ^ a b "Suricata All Features". Retrieved 2012-10-06. 

External links[edit]