Suricata is an open source high performance Network IDS, IPS and Network Security Monitoring engine. It inspects the network traffic using a powerful and extensive rules and signature language, and has powerful Lua scripting support for detection of complex threats.
Features:
- Automatic protocol detection
- DNS logger
- Fast IP matching
- file matching, logging, extraction, md5 checksum calculation
- Flow variables
- Graphics card acceleration
- Gzip decompression
- HTTP log module
- Independent HTP library
- IP reputation
- Lua scripting
- Multi-threading
- Prelude output
- Standard input methods
- Unified2 output
- Windows binaries
- And more...
You might also like:
Comments
Post a Comment