Download

Community Edition

Free for internal use. 10 protocol parsers included.

intrufend_2.4.310_amd64.deb

Ubuntu/Debian x86_64 · 515 KB · DPDK-enabled

10 protocol parsers (IT + Modbus/DNP3) · 18 built-in OT/ICS rules

Quick start

Installation

# Install
sudo dpkg -i intrufend_2.4.310_amd64.deb
sudo apt-get install -f                     # install dependencies

# Download 49K+ community detection rules
sudo intrufend-update-rules

# Configure
sudo nano /etc/intrufend/config.yaml        # set capture interface

# Start
sudo systemctl start intrufend
sudo systemctl enable intrufend

System Requirements

Component	Minimum	Recommended
OS	Ubuntu 22.04+ / Debian 12+	Ubuntu 24.04 LTS
CPU	2 cores	4+ cores
RAM	2 GB	8 GB
Disk	500 MB	10 GB
NIC	Any (pcap)	Intel 10G+ (DPDK)

Included Protocols

IT Protocols

HTTPDNSTLSSSHSMTPSNMPNTPMQTT

OT/ICS Protocols

Modbus TCPDNP3

Need S7comm, IEC 104, EtherNet/IP, OPC UA, BACnet, and 58 more? OEM Edition

Build from Source

# Prerequisites
sudo apt-get install build-essential cmake pkg-config \
    libpcap-dev libyaml-dev libpcre2-dev rustc cargo

# Build
git clone https://github.com/intrufend/intrufend.git
cd intrufend
cd plugins && cargo build --release && cd ..
cmake -S . -B build && cmake --build build -j$(nproc)

# Test
./build/src/intrufend --self-test
./build/src/intrufend --replay test.pcap -c conf/config.yaml

Package Contents

/usr/bin/intrufend                    # IDS engine
/usr/bin/intrufend-update-rules       # Rule downloader
/usr/lib/intrufend/plugins/*.so       # 10 protocol parsers
/etc/intrufend/config.yaml            # Configuration
/etc/intrufend/rules/intrufend.yml    # 18 built-in OT/ICS rules
/lib/systemd/system/intrufend.service # Systemd unit
/var/log/intrufend/                   # Logs (eve.json)

By downloading, you agree to the . Community Edition is free for internal use only. For redistribution, OEM, or managed service deployment, see the OEM Edition.