Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community.

cybersecurityidsintrusion-detection-systemintrusion-prevention-systemipsnetwork-monitornetwork-monitoringnsmsecuritysuricatathreat-hunting

You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

Victor Julien f00703acc1 Fix False Positive of rules with ports on portless protocols ... In case of 'alert ip' rules that have ports, the port checks would be bypassed for non-port protocols, such as ICMP. This would lead to a rule matching: a false positive. This patch adds a check. If the rule has a port setting other than 'any' and the protocol is not TCP, UDP or SCTP, then we rule won't match. Rules with 'alert ip' and ports are rare, so the impact should be minimal. Bug #611.		12 years ago
benches	Initial add of the files.	16 years ago
contrib	Add option on Tile-Gx for logging for fast.log alerts over PCIe	12 years ago
doc	Update docs from wiki	13 years ago
m4	Prelude plugin: add detection in configure script	16 years ago
qa	Updated banned function cocci check	12 years ago
rules	classification: add category to some stream rules	12 years ago
scripts	suricatasc: fix make distcheck.	13 years ago
src	Fix False Positive of rules with ports on portless protocols	12 years ago
.gitignore	unittest: make check use a qa/log dir for logging	12 years ago
COPYING	Initial add of the files.	16 years ago
ChangeLog	Update Changelog for 2.0rc1 release	12 years ago
LICENSE	import of gplv2 LICENSE	16 years ago
Makefile.am	make install-full: get correct version of ET	12 years ago
Makefile.cvs	Initial add of the files.	16 years ago
acsite.m4	Added C99 defs/macros to acsite.m4 for CentOS	16 years ago
autogen.sh	OpenBSD 5.2 build fixes, Unit test fix.	13 years ago
classification.config	Import of classification.config	16 years ago
config.rpath	Add file needed for some autotools version.	12 years ago
configure.ac	configure: simplify OpenBSD handling	12 years ago
doxygen.cfg	doxygen: document all code	12 years ago
reference.config	Add md5 to reference.config.	14 years ago
suricata.yaml.in	Disable emerging-icmp in default config	12 years ago
threshold.config	threshold: improve comments of shipped threshold.config, add links to wiki.	13 years ago