alpal.mailinglist at gmail.com
Thu Jan 14 17:14:00 UTC 2010
I notice some talk about people looking at replacing their production
SNORT installs with Suricata installs?
Just curious about the level of testing that's been done to ensure
100% true pos rates on detection etc?
I still haven't had a chance to actually look at the code, but in
particular interested in performance of the stream reassembler etc in
real world scenarios? Has anyone done a bake off against SNORT with
the same rules on realistic data rates?
Seems like some amazing work is being done! Can't wait to get stuck
into the code when I get a spot of time
More information about the Oisf-users