Suricata

Suricata is a flexible, high performance Network Security Monitoring (NSM) tool that can detect and block attacks against your network.

Suricata can generate log events, trigger alerts, and drop traffic when it detects suspicious packets or requests to any number of different services running on a server.

featured tutorialHow To Install Suricata on Ubuntu 20.04
Suricata is a Network Security Monitoring (NSM) tool that uses sets of community created and user defined signatures ...

Jamon Camisso • Published on October 25, 2021 · Updated on October 22, 2021

Subscribe to Suricata
Get notified when new articles on Suricata are published.
    All
  • 13 Results
    • Tutorial

      How To Create Rules, Timelines, and Cases from Suricata Events Using Kibana's SIEM Apps

      In this final tutorial in the series, you will create custom Kibana rules and generate alerts within Kibana’s SIEM dashboards. Once you have rules in place and understand where and how to filter Suricata’s logs using ...
      3 months agoBy Jamon CamissoFirewallNetworkingSecuritySuricataUbuntu 20.04
    • Tutorial

      How To Build A SIEM with Suricata and Elastic Stack on Rocky Linux 8

      The previous tutorials in this series guided you through installing, configuring, and running Suricata as an Intrusion Detection (IDS) and Intrusion Prevention (IPS) system. You also learned about Suricata rules and h...
      4 months agoBy Jamon CamissoRocky LinuxRocky Linux 8SecurityNetworkingFirewallElasticsearchSuricata
    • Tutorial

      How To Build A SIEM with Suricata and Elastic Stack on Debian 11

      The previous tutorials in this series guided you through installing, configuring, and running Suricata as an Intrusion Detection (IDS) and Intrusion Prevention (IPS) system. You also…
      4 months agoBy Jamon CamissoSuricataSecurityNetworkingFirewallDebianDebian 11Elasticsearch
    • Tutorial

      How To Build A SIEM with Suricata and Elastic Stack on CentOS 8 Stream

      The previous tutorials in this series guided you through installing, configuring, and running Suricata as an Intrusion Detection (IDS) and Intrusion Prevention (IPS) system. You also learned about Suricata rules and h...
      4 months agoBy Jamon CamissoSuricataSecurityNetworkingFirewallCentOSCentOS 8Elasticsearch
    • Tutorial

      How To Install Suricata on CentOS 8 Stream

      Suricata is a Network Security Monitoring (NSM) tool that uses sets of community created and user defined signatures (also referred to as rules) to examine and process network traffic. Suricata can generate log events...
      4 months agoBy Jamon CamissoCentOS 8CentOSSuricataNetworkingFirewallSecurity
    • Tutorial

      How To Build A SIEM with Suricata and Elastic Stack on Ubuntu 20.04

      The previous tutorials in this series guided you through installing, configuring, and running Suricata as an Intrusion Detection (IDS) and Intrusion Prevention (IPS) system. You also learned about Suricata rules and h...
      4 months agoBy Jamon CamissoSuricataSecurityElasticsearchNetworkingFirewallUbuntuUbuntu 20.04
    • Tutorial

      How To Configure Suricata as an Intrusion Prevention System (IPS) on Rocky Linux 8

      In this tutorial you will learn how to configure Suricata’s built-in Intrusion Prevention System (IPS) mode on Rocky Linux 8. By default Suricata is configured to run as an Intrusion Detection System (IDS), which only...
      5 months agoBy Sammy SharkRocky LinuxRocky Linux 8SecurityNetworkingFirewallSuricata
    • Tutorial

      How To Configure Suricata as an Intrusion Prevention System (IPS) on Debian 11

      In this tutorial you will learn how to configure Suricata’s built-in Intrusion Prevention System (IPS) mode on Debian 11. By default Suricata is configured to run as an Intrusion Detection System (IDS), which only gen...
      5 months agoBy Sammy SharkDebianDebian 11SuricataSecurityFirewallNetworking
    • Tutorial

      How To Configure Suricata as an Intrusion Prevention System (IPS) on Ubuntu 20.04

      In this tutorial you will learn how to configure Suricata’s built-in Intrusion Prevention System (IPS) mode. When you enable IPS mode, Suricata can actively drop suspicious network traffic in addition to generating al...
      6 months agoBy Sammy SharkSecurityNetworkingFirewallUbuntu 20.04UbuntuSuricata
    • Tutorial

      Understanding Suricata Signatures

      In this tutorial you’ll learn how Suricata signatures are structured, and some important options that are commonly used in most rules. Once you are familiar with how to understand the structure and fields in a signatu...
      6 months agoBy Jamon CamissoSecurityNetworkingMonitoringSuricataFirewall
    • Tutorial

      How To Install Suricata on Rocky Linux 8

      Suricata is a Network Security Monitoring (NSM) tool that uses sets of community created and user defined signatures (also referred to as rules) to examine and process network traffic. In this tutorial you will learn ...
      6 months agoBy Jamon CamissoRocky LinuxRocky Linux 8SecurityNetworkingSuricata
    • Tutorial

      How To Install Suricata on Debian 11

      Suricata is a Network Security Monitoring (NSM) tool that uses sets of community created and user defined signatures (also referred to as rules) to examine and process network traffic. Suricata can generate log events...
      7 months agoBy Jamon CamissoSecurityDebianNetworkingDebian 11Suricata
    • Tutorial

      How To Install Suricata on Ubuntu 20.04

      Suricata is a Network Security Monitoring (NSM) tool that uses sets of community created and user defined signatures (also referred to as rules) to examine and process network traffic. Suricata can generate log events...
      7 months agoBy Jamon CamissoSuricataUbuntuUbuntu 20.04SecurityNetworking