Announcing: Suricata 3.0

The OISF development team is proud to announce Suricata 3.0; a major new release with several exciting new features and improvements including:
– improved detection options, including multi-tenancy and xbits
– performance and scalability much improved
– much improved accuracy and robustness
– Lua scripting capabilities expanded significantly
– many output improvements, including much more JSON
– NETMAP capture method support, especially interesting to FreeBSD users
– SMTP inspection and file extraction

For a full list of features added, please see:

To get Suricata 3.0, visit:

OISF and Suricata’s success is in thanks to the community and consortium members who support us.  We’d like to thank those who have contributed to this new release:

FireEye, ProtectWise, ANSSI, Emerging Threats /
Proofpoint, Stamus Networks, Ntop, AFL project, CoverityScan

Aaron Campbell, Aleksey Katargin, Alessandro Guido,
Alexander Gozman, Alexandre Macabies, Alfredo Cardigliano,
Andreas Moe, Anoop Saldanha, Antti Tönkyrä, Bill Meeks,
Darien Huss, David Abarbanel, David Cannings, David Diallo,
David Maciejak, Duarte Silva, Eduardo Arada, Giuseppe Longo,
Greg Siemon, Hayder Sinan, Helmut Schaa, Jason Ish,
Jeff Barber, Ken Steele, lessyv, Mark Webb-Johnson,
Mats Klepsland, Matt Carothers, Michael Rash, Nick Jones,
Pierre Chifflier, Ray Ruvinskiy, Samiux A, Schnaffon,
Stephen Donnelly, sxhlinux, Tom DeCanio, Torgeir Natvig,
Travis Green, Zachary Rasmor