Configuring Suricata to alert on Malicious files

Learn how to configure Suricata IDS to alert on malicious files hashes in our latest blog post.

IDSTower has this feature (&more) configured out-of-the-box, moreover, it will download hashes IOCs from from free/commercial feeds and will push those indicators to Suricata automatically.

Feedback is appreciated!

Will this work against an existing suricata installation?

If you are asking about this feature, then yes, you can configure your current Suricata installation to do the same.