Suricata 是一个网络入侵检测和阻止引擎,由开放信息安全基金会以及它说支持的提供商说开发。该引擎是多线程的,内置 IPv6 的支持,可加载预设规则,支持 Barnyard 和 Barnyard2 工具。
Suricata 1.2 Beta1 发布了,改进内容:
1. File inspection and extraction for HTTP was added.
2. Support for the file_data keyword was added.
3. PF_RING bpf support was added.
4. A Tos keyword was added.
5. IPS runmodes were improved.