Suricata (software)

From Wikipedia, the free encyclopedia
Jump to navigation Jump to search
Suricata
Suricata IDS.png
Developer(s)Open Information Security Foundation
Stable release
4.0.5 / July 18, 2018; 4 months ago (2018-07-18)
Preview release
4.1beta1 / March 23, 2018; 8 months ago (2018-03-23)
Written inC
Operating systemFreeBSD, Linux, UNIX, Mac OS X, Microsoft Windows
Type
LicenseGNU General Public License[1]
Websitesuricata-ids.org

Suricata is an open source-based intrusion detection system (IDS) and intrusion prevention system (IPS). It was developed by the Open Information Security Foundation (OISF). A beta version was released in December 2009, with the first standard release following in July 2010.[2][3]

Features[edit]

[4]

  • Multi-threading
  • Automatic protocol detection
  • Gzip decompression
  • Independent HTP library
  • Standard input methods
  • Unified2 output
  • Flow variables
  • Fast IP matching
  • HTTP log module
  • Graphics card acceleration
  • Windows binaries
  • Lua scripting[5]
  • Prelude output[6]
  • file matching, logging, extraction, md5 checksum calculation[6]
  • IP reputation
  • DNS logger
in a future release
[4]
  • Global flow variables

Third-party tools[edit]

Third-party tools available for Snort are compatible with Suricata, like the following:

Free intrusion detection systems[edit]

See also[edit]

References[edit]

  1. ^ "Suricata license".
  2. ^ "New Open Source Intrusion Detector Suricata Released". Slashdot. 2009-12-31. Retrieved 2011-11-08.
  3. ^ "Suricata Downloads". Open Security Information Foundation. Retrieved 2011-11-08.
  4. ^ a b Jonkman, Matt (2009-12-31). "Suricata IDS Available for Download!". Seclists.org. Retrieved 2011-11-08.
  5. ^ "Suricata Features". Retrieved 2012-10-06.
  6. ^ a b "Suricata All Features". Retrieved 2012-10-06.

External links[edit]