Phase 2 development is almost over now. Among the completed major features:
- Multithread
- protocol discovery
- smb logging
- HTTP logging
- flowvars
One of the advantage of Suricata over Snort is protocol discovery combined to HTTP parsing by libhtp. It provides a huge improvement over Snort as a lot of bad flow are using HTTP on non standard ports.
I don’t think the title of your article matches the content lol. Just kidding, mainly because I had some doubts after reading the article. https://accounts.binance.bh/register/person?ref=QCGZMHR6