Suricata (software)

For the genus containing the meerkat, see Suricata.

Suricata is an open-source based intrusion detection system (IDS) and intrusion prevention system (IPS). It was developed by the Open Information Security Foundation (OISF). A beta version was released in December 2009, with the first standard release following in July 2010.^[4][5][6]

Suricata

Developer(s)	Open Information Security Foundation
Stable release	7.0.10[1] / 25 March 2025; 2 months ago (25 March 2025)[2]
Repository	github.com/OISF/suricata
Written in	C, Rust
Operating system	FreeBSD, Linux, UNIX, Mac OS X, Microsoft Windows
Type	Intrusion-detection system Intrusion prevention system
License	GNU General Public License[3]
Website	suricata.io

Features

Like other IDSes, Suricata provides threat detection capabilities. Like a firewall, Suricata provides traffic filtering and monitoring, but Suricata provides network administrators with the ability to write and enforce detection rules.^[5]

Suricata is able to detect common attack vectors such as port scanning, denial-of-service, pass-the-hash, and brute-force attacks.^[5]

Typically, a major update of Suricata is released every 3 months.^[5]

Ruleset

Suricata uses a ruleset to perform detection and threat analysis.^[5]

See also

• Free and open-source software portal

• Aanval
• Snort