Sold by: AdvanceCo Inc.
Deployed on AWS
AWS Free Tier
This product has charges associated with it for seller support of the operating system and open source software. Suricata is a high performance Network IDS, IPS and Network Security Monitoring engine.
Overview
Suricata is a high performance Network IDS, IPS and Network Security Monitoring engine. It is open source and owned by a community-run non-profit foundation, the Open Information Security Foundation (OISF). Suricata is developed by the OISF. Suricata is a free and open source, mature, fast and robust network threat detection engine. The Suricata engine is capable of real time intrusion detection (IDS), inline intrusion prevention (IPS), network security monitoring (NSM) and offline pcap processing. Suricata inspects the network traffic using a powerful and extensive rules and signature language, and has powerful Lua scripting support for detection of complex threats. With standard input and output formats like YAML and JSON integrations with tools like existing SIEMs, Splunk, Logstash/Elasticsearch, Kibana, and other database become effortless.
Highlights
- Open Source Security
- Network Based Intrusion Detection Solution
- Install to monitor and baseline cloud networking
Details
Sold by
Categories
Delivery method
Delivery option
64-bit (x86) Amazon Machine Image (AMI)
Latest version
Operating system
Ubuntu 22.04 LTS
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on a fixed subscription cost. You pay the same amount each billing period for unlimited usage of the product. Pricing is prorated, so you're only charged for the number of days you've been subscribed. Subscriptions have no end date and may be canceled any time.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
- Monthly subscription
- $625.00/month
Vendor refund policy
We do not currently support refunds, but you can cancel at any time.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
Suricata Version Update to 7.0.8 Marketplace Listing Release Note
Release Date: Feb 1, 2025
Overview
Suricata version 7.0.8 is now available in the marketplace. This update includes several new features and improvements, including: Support for TLS 1.3 Improved performance for HTTP traffic inspection New rules for detecting malicious activity Bug fixes and security enhancements Installation
AdvanceCo has already updated the image to version 7.0.8
Ubuntu 22.04 has also been updated to the latest version with updates.
Changes
The following changes are included in Suricata version 7.0.8: New features: Support for TLS 1.3 Improved performance for HTTP traffic inspection New rules for detecting malicious activity Bug fixes: Fixed a bug that could cause Suricata to crash when processing certain types of traffic Fixed a bug that could prevent Suricata from detecting certain types of attacks Security enhancements: Improved protection against buffer overflow attacks Improved protection against memory corruption attacks Known Issues
There are no known issues with Suricata version 7.0.8.
Contact Information
If you have any questions or problems, please contact AdvanceCo Inc
Additional details
Usage instructions
To connect to the operating system, use SSH and the username ubuntu.
Resources
Vendor resources
Support
Vendor support
Paid telephone, slack, and software maintenance support is available to customers requiring supported open source product support secproductsupport@advancecoinc.com secproductsupport@advancecoinc.com
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By AdvanceCo Inc.
By Security Onion Solutions, LLC
By OPNsense
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Intrusion Detection and Prevention
Real-time intrusion detection (IDS), inline intrusion prevention (IPS), and network security monitoring (NSM) capabilities
Rule and Signature Language
Powerful and extensive rules and signature language with Lua scripting support for detection of complex threats
Traffic Analysis and Processing
Network traffic inspection with capability for real-time analysis and offline pcap processing
Data Format and Integration
Standard input and output formats including YAML and JSON for seamless integration with SIEMs, Splunk, Logstash/Elasticsearch, and Kibana
Open Source Architecture
Open source network security engine developed and maintained by the Open Information Security Foundation (OISF)
Network Visibility and Intrusion Detection
Signature-based detection via Suricata with rich protocol metadata and file extraction capabilities, full packet capture, and file analysis
Host Visibility and Endpoint Monitoring
Elastic Agent for data collection, live queries via osquery, and centralized management using Elastic Fleet
Deception and Threat Detection
Intrusion detection honeypots based on OpenCanary for enhanced enterprise visibility
Log Aggregation and Management
Centralized log aggregation into Elastic stack with security-focused infrastructure activity monitoring
Distributed Deployment Architecture
Support for standalone single VM, distributed grid deployment, evaluation install mode, and import install mode for analyzing historical events
Stateful Firewall Inspection
Fully featured stateful inspection firewall with advanced routing capabilities supporting dynamic protocols such as OSPF and BGP
VPN Technologies
Support for multiple VPN technologies including OpenVPN, IPsec, and Wireguard for securing cloud infrastructure
Intrusion Detection and Prevention
Inline intrusion detection and prevention system with Proofpoint ET rulesets including ET Open and ET Pro Telemetry editions
Open Source License
Open Source Initiative approved 2-clause BSD license enabling open-source security platform deployment
Modular Architecture
Modularized and hardened architecture with simple firmware upgrades and fast adoption of upstream software updates
Standard contract
No
No
Customer reviews
No customer reviews yet
Be the first to review this product . We've partnered with PeerSpot to gather customer feedback. You can share your experience by writing or recording a review, or scheduling a call with a PeerSpot analyst.