Configuring Suricata to alert on Malicious files

IDSTower · July 22, 2022, 3:42pm

Learn how to configure Suricata IDS to alert on malicious files hashes in our latest blog post.

IDSTower has this feature (&more) configured out-of-the-box, moreover, it will download hashes IOCs from from free/commercial feeds and will push those indicators to Suricata automatically.

Feedback is appreciated!

noob_17 · July 22, 2022, 4:11pm

Will this work against an existing suricata installation?

IDSTower · July 22, 2022, 4:27pm

If you are asking about this feature, then yes, you can configure your current Suricata installation to do the same.

Topic		Replies	Views
IDSTower v2.0.0 released! Community Announcements suricata	0	923	July 4, 2021
Hash alerts no detected Help community , rules , suricata	1	109	May 28, 2024
Why suricata don't generate filehash for alerts Help	17	2159	September 15, 2023
Detect against sha256 hashes Help rules , suricata	9	457	October 31, 2023
Why you should use Suricata IDS to alert on IOCs Community Announcements	0	466	July 23, 2021

Configuring Suricata to alert on Malicious files

Related topics