Adventures in Suricata (Part 1): Low Cost Intrusion Detection System

Welcome to the Adventures in Suricata series! Over the past couple months I have been exploring Suricata, an open source Intrusion Detection System (IDS), by standing it up in my virtualized ESXi server at home. By sharing my own experiences with you, I hope to overcome the misconception that IDS is only viable for large networks and/or enterprises. This misconception usually stems from the cost associated with monitoring tools; however, Suricata is free to use and can be implemented on a virtualized server or spare computer. In this blog post, I will show you how to set up the networking and what supporting systems are necessary. Note: Suricata can run on top of many different operating systems, including Linux, FreeBSD, OpenBSD, Max OS X, and Windows.

// read more