|
When Suricata 7.0.10 outputs alert logs in eve.json, how can one know which part of the packet's keyword was matched by the rule?
|
|
1
|
59
|
July 17, 2025
|
|
Syslog output (please stop requiring a certain amount of characters for a subject thanks)
|
|
2
|
107
|
July 15, 2025
|
|
Suricata Rule : allowed to use variables in content?
|
|
2
|
66
|
July 11, 2025
|
|
Recommendations for sizing nf_queue
|
|
6
|
144
|
July 1, 2025
|
|
Desactivating stats log in eve-logs
|
|
2
|
123
|
June 16, 2025
|
|
Af-packet w tpacket-v3 vs af-packet without
|
|
2
|
79
|
June 4, 2025
|
|
Netflow collector
|
|
1
|
107
|
May 27, 2025
|
|
Error updating on Alma 9
|
|
4
|
110
|
May 16, 2025
|
|
DPDK Mode - Support for L3 In-Line Configuration (iptables/nftables equivalent)
|
|
1
|
101
|
May 12, 2025
|
|
Suricata support breakout mode?
|
|
1
|
37
|
April 20, 2025
|
|
Capture file not always exsits for alerts (Suricata v.7 Conditional PCAP)
|
|
5
|
707
|
April 9, 2025
|
|
I have some questions about suricata
|
|
7
|
132
|
April 9, 2025
|
|
Suricata 7.0.10 After unix-socket is Enabled, Logs cannot be output to eve.json. How can I Output logs to eve.json at the same time or Transmit Logs through unix-socket
|
|
1
|
59
|
April 7, 2025
|
|
High traffic rulesets to use and wazuh configuration
|
|
3
|
156
|
April 7, 2025
|
|
Suricata 7.0.10 cannot enable the unix-socket configuration
|
|
5
|
82
|
April 2, 2025
|
|
Interface ok, eve.json ok porem da erro no log wazuh
|
|
2
|
70
|
March 31, 2025
|
|
Suricata version7.0.9 failed to enable the bpf filter in af_packet mode
|
|
5
|
161
|
March 31, 2025
|
|
Need help on Design of multiple instances of Suricata
|
|
4
|
89
|
March 28, 2025
|
|
In 7.0.9 missing libpcre2-8-devel
|
|
6
|
231
|
March 24, 2025
|
|
Af-packet keeps trying to find interface eth0. I specified a different one already
|
|
5
|
1165
|
March 19, 2025
|
|
Packet Filter (BPF) not working / ignored
|
|
13
|
352
|
March 13, 2025
|
|
ICMP limit does not work
|
|
7
|
146
|
March 8, 2025
|
|
Suricata alerts view set to 5000
|
|
1
|
46
|
February 28, 2025
|
|
Ppa broken? Release' does not have a Release file
|
|
1
|
50
|
February 25, 2025
|
|
Changing timestamp format in output json file
|
|
1
|
60
|
February 23, 2025
|
|
Suricata not detecting intrusion on other docker containers within the same network
|
|
3
|
256
|
February 17, 2025
|
|
Alert for unidirectional traffic
|
|
1
|
53
|
February 12, 2025
|
|
Implications of bypassing encrypted traffic
|
|
1
|
92
|
February 12, 2025
|
|
Suricata fast.log help!
|
|
1
|
74
|
February 12, 2025
|
|
No alerts in the eve.json logfile
|
|
3
|
302
|
February 12, 2025
|