Skip to content

Suricata Sensor

Brady Sullivan edited this page Nov 4, 2017 · 1 revision

Suricata is "capable of real time intrusion detection (IDS), inline intrusion prevention (IPS), network security monitoring (NSM) and offline pcap processing."

Deployment

This sensor can be deployed using the Ubuntu - Suricata deploy script, found in MHN's Deploy page. The script provided supports installation on Ubuntu 14.04 and 16.04 systems. To avoid installation errors, it is highly recommended you make sure the host system is fully up-to-date before running the deploy script.

Further Information

The deploy script installs Suricata from the ThreatStream fork. The base repo can be found at https://github.com/OISF/suricata