FICHA · AUR

suricata

A high performance Network IDS, IPS and Network Security Monitoring engine, Vectorscan instead of hyperscan

  • Service
  • SERVICE
  • TERMINAL
  • Launchable
  • Runs in terminal
  • Background service
official+codex · reviewed · May 29, 2026 description in en

Description

Network traffic can be inspected at high speed for intrusion detection, prevention, protocol logging, and security monitoring. This is useful for administrators who run sensors on gateways, servers, or lab networks.

The engine can capture sensitive traffic and may block connections when configured for prevention. It should be deployed only by users who understand rulesets, privacy impact, performance cost, and network placement.

How to run

suricata

Commands: suricata

Permissions

Permissions not analysed for this source yet.