Open Source Suricata-based Network Detection and Response System
As the next generation open source turnkey Suricata implementation from Stamus Networks, CLEAR NDR® Community edition is the successor to the widely-deployed SELKS project. We incorporated many lessons learned from the 10 years of SELKS innovation and user feedback into this platform.
Wondering why we made the change from SELKS to Clear NDR? Check out the FAQ here >>
Released under GPL 3.0-or-later license, the distribution is available as either via Docker compose on any Linux operating system or as an installable Debian-based ISO (coming soon).
The Clear NDR Community user interface (also known as Scirius) is the Stamus Networks open-source application that brings all these components together. It provides the web interface for the entire system, giving you the ability to:
For many small-to-medium sized organizations, Clear NDR Community can be a suitable production-grade network security monitoring (NSM) and intrusion detection (IDS) solution.
And because all the data available in Clear NDR Community is generated by the Suricata engine, Clear NDR Community is widely used by network security practitioners, researchers, educators, students, and hobbyists to explore what is possible with Suricata IDS/IPS/NSM and the network protocol monitoring logs and alerts it produces.
For enterprise scale applications, please review our commercial solution, Clear NDR Enterprise, described below.
Use stamusctl to install Clear NDR - Community in any Linux environment with docker installed. Get setup in only a few minutes.
Use the image with Desktop when you want a turnkey installation that includes the Debian x64 12 (Bookworm) Linux desktop.
Use the image without Desktop for a turnkey Clear NDR Community installation with Debian Linux in a headless environment.
To access README documentation, issues tracker and the Clear NDR - Community components, please visit our GitHub pages here:
Visit the documentation site for complete installation instructions, here >>
To ask questions or ask for help, join our Discord server here >> %20PNG-1.png?width=50&name=Discord%20Logo%20(black)%20PNG-1.png)
While Clear NDR Community is a great system to test out the power of Suricata for intrusion detection and threat hunting, it was never designed to be deployed in an enterprise setting. For enterprise applications, please review our commercial solution, Clear NDR Enterprise (formerly Stamus Security Platform).
To learn more about the differences between Clear NDR Community and our Enterprise solutions, download the white paper, Comparing Clear NDR Community to Clear NDR Enterprise.
ABOUT STAMUS® NETWORKS
Stamus Networks is the global leader in Suricata-based network security and the creator of the innovative Clear NDR® system. Designed to close visibility gaps and reduce alert fatigue, Clear NDR transforms raw network traffic into actionable security insights with unmatched transparency, customization, and effectiveness. Trusted by leading financial institutions, government agencies, and participants in NATO’s largest cybersecurity exercises, Stamus Networks delivers proven, high-performance network detection and response solutions. Stamus empowers security teams – delivering clarity amidst complexity – with greater control, fewer false positives, faster response times, and a more responsive, open approach than legacy vendors.
© 2014-2025 Stamus Networks, Inc. All rights Reserved.
.jpg)
