Welcome to the Aanval Wiki. Snort, Suricata and Syslog Intrusion Detection, Situational Awareness and Risk Management.
Visit http://www.aanval.com/ for more information.
Suricata writes only in Unified2 format, and Sourcefire has announced that the upcoming Snort release 2.9.3 will only write in Unified2, as the current version 126.96.36.199 writes in Unified2 or to a database.
Unified2 offers IPv6 support.