Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Suricata…Next gen Snort???

    Off-Topic & Non-Support Discussion
    3
    3
    3.1k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      jmcentire
      last edited by

      Anyone taken a look at Suricata?  Supposedly the "next generation" snort IDS/IPS:

      http://openinfosecfoundation.org/index.php/downloads
      http://openinfosecfoundation.org/index.php/faqs

      Just curious if anyone has researched or tried it out.

      1 Reply Last reply Reply Quote 0
      • C
        cmb
        last edited by

        haven't tried it. Sure ticked off Marty Roesch (Snort founder) it appears, though his basic complaint looks to be legit - it's nothing more than a government-funded rewrite of Snort that doesn't perform nearly as well.

        1 Reply Last reply Reply Quote 0
        • Cry HavokC
          Cry Havok
          last edited by

          +1 to cmb's comments.  Give it a while and it may be worth looking at, but currently there's nothing it can do that Snort hasn't done for some time.  Given a choice between a well tested platform, and a new one, for any security critical one I'd go with the well tested one…

          1 Reply Last reply Reply Quote 0
          • First post
            Last post