[Oisf-users] Anomaly-based vs Rule-based NIDS

Lucas Augusto Mota de Alcantara lama2 at cin.ufpe.br
Wed Mar 4 19:02:20 UTC 2020

Hello everyone. I'd like to know if there's any available data or piece of
information about the popularity of Rule-Based NIDS in comparison with
Anomaly-Based NIDS in the market.

Does Suricata have any kind of anomaly-based detection tool or it only
works with signatures?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20200304/b22803cf/attachment.html>

More information about the Oisf-users mailing list