Suricata v1.3 Released
Suricata is a rule-based ID/PS engine that utilises externally developed rule sets to monitor network traffic and provide alerts to the system administrator when suspicious events occur. Designed to be compatible with existing network security components, Suricata features unified output functionality and pluggable library options to accept calls from other applications.
- TLS/SSL handshake parser and rule keywords for detecting anomolies in TLS/SSL traffic
- HTTP user agent keyword for matching directly on User-Agent header
- On the fly MD5 calculation and matching for files in HTTP streams.
Download Suricata v1.3