[Oisf-users] Anomaly-based vs Rule-based NIDS

[Lucas Augusto Mota de Alcantara]

Hello everyone. I'd like to know if there's any available data or piece of
information about the popularity of Rule-Based NIDS in comparison with
Anomaly-Based NIDS in the market.

Does Suricata have any kind of anomaly-based detection tool or it only
works with signatures?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20200304/b22803cf/attachment.html>