issues
search
cisagov
/
Malcolm
Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.
https://cisagov.github.io/Malcolm/
Other
2.14k
stars
367
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
extend intel.log with additional fields using corelight/ExtendIntel (part 2)
#695
mmguero
opened
17 hours ago
0
documentation served at /readme is trying to pull fonts from use.fontawesome.com
#694
mmguero
opened
19 hours ago
0
Expose init arguments for Arkime's db.pl
#692
mmguero
closed
4 days ago
1
Bump requests from 2.32.3 to 2.32.4 in /api
#690
dependabot[bot]
opened
1 week ago
0
PCAP Files Filling up HardDrive
#686
DJNAT10
closed
2 weeks ago
2
Improvements to the upgrade process
#683
mmguero
opened
3 weeks ago
0
investigate level of development effort for FIPS compliance
#682
mmguero
closed
1 week ago
1
FIPS compliance
#681
mmguero
opened
3 weeks ago
0
Bump flask-cors from 5.0.0 to 6.0.0 in /hedgehog-iso/interface
#679
dependabot[bot]
closed
1 week ago
1
Logstash zeek event failure
#677
divinehawk
closed
1 month ago
1
Malcolm v25.05.0
#674
mmguero
closed
1 month ago
0
PCAP Files keep filling up Hard Drive
#672
DJNAT10
closed
1 month ago
2
NetBox autopopulation not working with prefixes correctly
#670
mmguero
closed
1 month ago
2
Missing Fields
#669
devilman85
closed
1 month ago
8
Make zeek metrics port configurable
#668
divinehawk
closed
1 month ago
2
race condition in suricata offline container between pcap processing and suricata socket
#667
mmguero
closed
1 month ago
0
If arkime-capture fails to connect, eventually fail over to netsniff-ng or tcpdump capture mode
#665
mmguero
opened
1 month ago
0
Netbox enrichment stops Opensearch data
#664
agrieco
closed
3 weeks ago
5
Malcolm v25.04.1
#662
mmguero
closed
1 month ago
0
incorporate new ROC Plus parser into Malcolm
#661
mmguero
closed
1 month ago
1
Malcolm v25.04.0
#658
mmguero
closed
1 month ago
0
integrate customizations from Malcolm-Helm as options in vanilla Malcolm (part 2)
#657
mmguero
opened
1 month ago
0
Option for Quiet Start/Restart
#656
ee-hex-ee
closed
1 month ago
0
overhaul "deploying Malcolm on AWS" documentation
#655
mmguero
closed
1 month ago
0
be more resilient in zeekctl status checks in zeekdeploy.sh
#652
mmguero
closed
1 month ago
0
in deployments with multiple zeek-live containers, each container's restarting causes the others to restart zeek
#651
mmguero
closed
1 month ago
1
File extraction configuration conflicts with zeek default extraction
#649
H-Dynamite
closed
1 month ago
0
put in version pinning for Python packages
#644
mmguero
closed
2 months ago
0
document customizing Malcolm with an adidtional output pipeline
#643
mmguero
closed
1 month ago
0
integrate customizations from Malcolm-Helm as options in vanilla Malcolm (part 1)
#642
mmguero
closed
1 month ago
1
Unexpected behavior indexes
#641
devilman85
closed
2 months ago
0
Environment variable migration, netbox restore and building 25.03.1 api
#640
lelandmills
closed
2 months ago
9
Connection refused opensearch problem
#638
mohammad-hasan
closed
2 months ago
3
Arkime unhealthy after update Elasticsearch and Malcolm
#637
devilman85
closed
2 months ago
21
Malcolm v25.03.1
#635
mmguero
closed
2 months ago
0
allow user to specify subnet filters for NetBox autopopulation
#634
mmguero
opened
2 months ago
0
Keycloak authentication: require group or role membership for login
#633
mmguero
closed
2 months ago
1
support external postgres database in lieu of Malcolm-embedded one
#632
mmguero
opened
2 months ago
0
errata for learning tree
#631
mmguero
opened
2 months ago
0
adjust logstash health check so kubernetes liveness probe doesn't kill it
#630
mmguero
closed
2 months ago
1
handle non-HTTPS arkime case
#629
mmguero
closed
2 months ago
0
Bump gunicorn from 22.0.0 to 23.0.0 in /hedgehog-iso/interface
#627
dependabot[bot]
closed
2 months ago
1
Fix pcap processor to retain ordering of user tags
#626
divinehawk
closed
2 months ago
2
Fix pcap processor to retain ordering of user tags
#625
divinehawk
closed
2 months ago
0
User tag order not preserved
#624
divinehawk
closed
2 months ago
0
incorporate new s7comm known devices log
#622
mmguero
closed
2 months ago
0
Logstash container health/liveness script should accept either "green" OR "yellow"
#620
mmguero
closed
3 months ago
0
Malcolm v25.03.0
#618
mmguero
closed
3 months ago
0
figure out how to support Hedgehog authenticating to Keycloak
#617
mmguero
opened
3 months ago
0
create a Malcolm theme and make it the default for the embedded Keycloak instance
#616
mmguero
opened
3 months ago
0
Next