Suricata is an Intrusion Detection and Prevention (IDS/IPS) engine developed by the Open Information Security Foundation and its supporting vendors. The engine is multi-threaded and has native IPv6 support, file extraction capabilities, and many more features. It's capable of loading existing Snort rules and signatures, and supports many frontends through Barnyard2.
|Tags||IDS IPS Network Analysis Security snort IPv4 IPv6|
|Operating Systems||Linux FreeBSD Mac OS X Windows|
Release Notes: An SSL parsing issue was fixed (CVE-2013-5919). IPv6-in-IPv6 decoding was fixed. Bugs in the pattern matcher and content inspection were fixed. Logging of tagged packets was fixed.
Release Notes: IPv6 issues were fixed.
Release Notes: HTTP support was much improved. CUDA support was updated. A DNS parser and logger were added. Lua support was improved. The stream engine was made more robust. IPS mode was improved. Many smaller improvements and fixes were made.
Release Notes: This release improves inspection order in relation to stream reassembly and fixes a false positive on IP fragments, the pass action, HTTP Connect tunnel crashes, and several Unix socket issues.
Release Notes: A case of missed detection in bytetest, bytejump, and byteextract was fixed. Tunneled packets can now be dropped properly in IPS mode. The OS X build was fixed.