Configuring Hedgehog Linux

cisagov / Malcolm

Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.

https://cisagov.github.io/Malcolm/

Other

1.97k stars 331 forks source link

Configuring Hedgehog Linux #398

Open mmguero opened 2 weeks ago

mmguero commented 2 weeks ago

@mmguero cloned issue idaholab/Malcolm#451 on 2024-03-20:

For what topic would you like to see training developed?

Configuring Hedgehog Linux after the ISO installation

What format would be best suited for this training?

A brief video

Is there existing Malcolm documentation that could be improved by including this topic?

Yes, starting here.

mmguero commented 2 weeks ago

@Zokol commented on 2024-06-12:

While trying to debug https://github.com/idaholab/Malcolm/issues/490 I needed to access the process logs in Hedgehog. It might be good idea to highlight in this training that all relevant logs in Hedgehog can be found from /opt/sensor/sensor_ctl/logs