Suricata (software)

For the genus containing the meerkat, see Suricata.

Suricata is an open-source based intrusion detection system (IDS) and intrusion prevention system (IPS). It was developed by the Open Information Security Foundation (OISF). A beta version was released in December 2009, with the first standard release following in July 2010.^[3][4][5]

Suricata
Developer	Open Information Security Foundation
Stable release	8.0.1 / 16 September 2025; 32 days ago (16 September 2025)[1]
Repository	github.com/OISF/suricata
Written in	C, Rust
Operating system	FreeBSD, Linux, UNIX, Mac OS X, Microsoft Windows
Type	Intrusion-detection system Intrusion prevention system
License	GNU General Public License[2]
Website	suricata.io

Features

Like other IDSes, Suricata provides threat detection capabilities. Like a firewall, Suricata provides traffic filtering and monitoring, but Suricata provides network administrators with the ability to write and enforce detection rules.^[4]

Suricata is able to detect common attack vectors such as port scanning, denial-of-service, pass-the-hash, and brute-force attacks.^[4]

Typically, a major update of Suricata is released every 3 months.^[4]

Ruleset

Suricata uses a ruleset to perform detection and threat analysis.^[4]

See also

• Free and open-source software portal

• Aanval
• Snort