Suricata

Version : Suricata 2.0.11

Suricata is an open source-based intrusion detection system (IDS), Suricata is a high performance Network IDS, IPS and Network Security Monitoring engine.

Netsurion Data Source Integrations for Suricata allows you to monitor the following components:-

  • Security - Suspicious network activities, if there is any change in privileges on user logon/authentication activities (logon, logoff). 

Once Suricata is configured to deliver events to Netsurion Manager; alerts, dashboards and reports can be configured into Netsurion.

Some of the Data Source Integrations available in Netsurion are listed below.

Alerts

Type Name Description
Security Suricata - High priority alert generated This alert is generated when highest priority (1) alert has occurred in Suricata IDS.

Reports

Type Name Description
Security Suricata - Alert analysis This report provides information related to alerts which were detected by Suricata IDS.

Documentation:

The configuration details are consistent with Netsurion Enterprise version 7.X and later,Suricata 2.0.11

Download Integration Guide for more information and to configuration instructions.