Suricata (software)
Template:Short description Template:For {{#invoke:Infobox|infobox}}Template:Template other{{#invoke:Check for unknown parameters | check | showblankpositional=1 | unknown = Template:Main other | preview = Page using Template:Infobox software with unknown parameter "_VALUE_"|ignoreblank=y | AsOf | author | background | bodystyle | caption | collapsetext | collapsible | developer | discontinued | engine | engines | genre | included with | language | language count | language footnote | latest preview date | latest preview version | latest release date | latest release version | latest_preview_date | latest_preview_version | latest_release_date | latest_release_version | licence | license | logo | logo alt | logo caption | logo upright | logo size | logo title | logo_alt | logo_caption | logo_upright | logo_size | logo_title | middleware | module | name | operating system | operating_system | other_names | platform | programming language | programming_language | released | replaced_by | replaces | repo | screenshot | screenshot alt | screenshot upright | screenshot size | screenshot title | screenshot_alt | screenshot_upright | screenshot_size | screenshot_title | service_name | size | standard | title | ver layout | website | qid }}Template:Main other Suricata is an open-source based intrusion detection system (IDS) and intrusion prevention system (IPS). It was developed by the Open Information Security Foundation (OISF). A beta version was released in December 2009, with the first standard release following in July 2010.<ref>{{#invoke:citation/CS1|citation |CitationClass=web }}</ref><ref name="xda"/><ref>{{#invoke:citation/CS1|citation |CitationClass=web }}</ref>
FeaturesEdit
Like other IDSes, Suricata provides threat detection capabilities. Like a firewall, Suricata provides traffic filtering and monitoring, but Suricata provides network administrators with the ability to write and enforce detection rules.<ref name="xda">{{#invoke:citation/CS1|citation |CitationClass=web }}</ref>
Suricata is able to detect common attack vectors such as port scanning, denial-of-service, pass-the-hash, and brute-force attacks.<ref name="xda"/>
Typically, a major update of Suricata is released every 3 months.<ref name="xda"/>
RulesetEdit
Suricata uses a ruleset to perform detection and threat analysis.<ref name="xda"/>