Suricata (software)

From Wikipedia, the free encyclopedia
Jump to navigation Jump to search
Suricata
Suricata IDS.png
Developer(s)Open Information Security Foundation
Stable release
5.0.3 / April 28, 2020; 5 months ago (2020-04-28)[1]
Preview release
6.0.0-beta1 / August 7, 2020; 2 months ago (2020-08-07)[1]
Repository Edit this at Wikidata
Written inC, Rust
Operating systemFreeBSD, Linux, UNIX, Mac OS X, Microsoft Windows
Type
LicenseGNU General Public License[2]
Websitesuricata-ids.org Edit this at Wikidata

Suricata is an open source-based intrusion detection system (IDS) and intrusion prevention system (IPS). It was developed by the Open Security Foundation (OISF). A beta version was released in December 2009, with the first standard release following in July 2010.[3][4]

Features[edit]

[5]

  • Multi-threading
  • Automatic protocol detection
  • Gzip decompression
  • Independent HTP library
  • Standard input methods
  • Unified2 output
  • Flow variables
  • Fast IP matching
  • HTTP log module
  • JSON standard outputs
  • Windows binaries
  • Lua scripting[6]
  • Prelude output[7]
  • file matching, logging, extraction, md5 checksum calculation[7]
  • IP reputation
  • DNS logger
  • VXLAN support since 4.1.5
in a future release
[5]
  • Global flow variables

Third-party tools[edit]

Third-party tools available for Snort are compatible with Suricata, like the following:

Free intrusion detection systems[edit]

See also[edit]

References[edit]

  1. ^ a b "Releases - OISF/suricata". Retrieved 7 August 2020 – via GitHub.
  2. ^ "Suricata license".
  3. ^ "New Open Source Intrusion Detector Suricata Released". Slashdot. 2009-12-31. Retrieved 2011-11-08.
  4. ^ "Suricata Downloads". Open Security Information Foundation. Retrieved 2011-11-08.
  5. ^ a b Jonkman, Matt (2009-12-31). "Suricata IDS Available for Download!". Seclists.org. Retrieved 2011-11-08.
  6. ^ "Suricata Features". Retrieved 2012-10-06.
  7. ^ a b "Suricata All Features". Retrieved 2012-10-06.

External links[edit]