Welcome to the Aanval Wiki. Snort, Suricata and Syslog Intrusion Detection, Situational Awareness and Risk Management.
Visit for more information.
Suricata writes only in Unified2 format, and Sourcefire has announced that the upcoming Snort release 2.9.3 will only write in Unified2, as the current version 18.104.22.168 writes in Unified2 or to a database.
Unified2 offers IPv6 support.