[Oisf-users] Testing

Al MailingList alpal.mailinglist at gmail.com
Thu Jan 14 17:14:00 UTC 2010

Hey guys,

I notice some talk about people looking at replacing their production
SNORT installs with Suricata installs?

Just curious about the level of testing that's been done to ensure
100% true pos rates on detection etc?

I still haven't had a chance to actually look at the code, but in
particular interested in performance of the stream reassembler etc in
real world scenarios? Has anyone done a bake off against SNORT with
the same rules on realistic data rates?

Seems like some amazing work is being done! Can't wait to get stuck
into the code when I get a spot of time


More information about the Oisf-users mailing list