Distributions Containing Suricata

Security oriented distributions


"SELKS is both Live and installable ISO based on Debian implementing a ready to use Suricata IDS/IPS. The name comes from its major components: Suricata Elasticsearch Logstash Kibana Scirius. After starting or installing SELKS, you get a running Suricata with IDPS and NSM capabilities, Kibana to analyse alert and events and Scirius to configure the Suricata ruleset. SELKS is released under GPLv3 license. Sources, issues tracker and wiki are hosted on GitHub."

Suricata 2.1beta4 is part of SELKS 2.0

Security Onion

"Security Onion is a Linux distro for IDS (Intrusion Detection System) and NSM (Network Security Monitoring). It's based on Xubuntu 12.04 and contains Snort, Suricata, Sguil, Squert, Xplico, tcpreplay, scapy, hping, and many other security tools."

Suricata 2.0.8 is part of the Security Onion 12.04


Simplewall is a software appliance SMB firewall. It delivers simplest and most user friendly UTM for small & medium sized businesses globally to protect their business networks, maximize bandwidth usage and define personalize content filtering policies for employee productivity. Most importantly, Simplewall is easy to setup and manage for the system administrator as well as to the business owner.

Suricata 2.0.6 is part of simplewall current release.


OSSIM is a software appliance that contains a Host Intrusion Detection System (HIDS), a Network Intrusion Detection System (NIDS), and Security Information and Event Management (SIEM).

Regular distributions


Ubuntu 12.04 contains Suricata 1.1.1
Ubuntu 14.04 contains Suricata 1.4.7
Ubuntu 14.10 contains Suricata 2.0.2
Ubuntu 15.04 contains Suricata 2.0.6
Ubuntu 15.10 contains Suricata 2.0.8

An official PPA with 2.0.8 is available here

Overview of Suricata packages in Ubuntu:


Squeeze contains Suricata 1.0.1
Wheezy contains Suricata 1.2.1
Wheezy-backports contains Suricata 2.0.4
Testing contains Suricata 2.0.8
Jessie contains Suricata 2.0.7
Sid contains Suricata 2.0.8

Backports instructions:

Link for seeing what version Debian has:


Fedora 22 contains Suricata 2.0.11
Fedora 23 contains Suricata 2.0.11

Links for seeing what version Fedora has:


Ports contains 2.0.8


AUR contains 2.0.10


portage contains 2.0.11

Alpine Linux

Alpine Linux testing repo contains 6.0.13


Any distro missing? Outdated info? Please let us know!