issues
search
idaholab
/
Malcolm
Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.
https://idaholab.github.io/Malcolm/
Other
327
stars
53
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
handle invalid URLs better (with a 404 instead of a 500)
#461
mmguero
closed
1 month ago
1
adopt digitalbond/Quickdraw ICS rules into Malcolm's suricata instance
#460
mmguero
opened
2 months ago
0
Bump gunicorn from 20.1.0 to 22.0.0 in /hedgehog-iso/interface
#459
dependabot[bot]
closed
2 months ago
1
Bump gunicorn from 20.1.0 to 22.0.0 in /api
#458
dependabot[bot]
closed
2 months ago
1
Bump idna from 3.4 to 3.7 in /hedgehog-iso/interface
#457
dependabot[bot]
closed
2 months ago
1
adjustments to how Zeek intel files get generated among Malcolm's containers
#456
mmguero
closed
2 months ago
1
allow user to specify prefix for dashboards
#455
mmguero
closed
2 months ago
1
Malcolm v24.03.1
#454
mmguero
closed
3 months ago
0
provide threshold for pruning extracted files
#453
mmguero
closed
2 months ago
2
stderr from new docker compose v2.25 will mess up creation of OpenSearch keystore
#452
mmguero
closed
3 months ago
0
Configuring Hedgehog Linux
#451
mmguero
opened
3 months ago
1
allow splitting out indexes by event.provider
#450
mmguero
opened
3 months ago
0
handle multiple NetBox sites
#449
mmguero
closed
1 week ago
2
Installing Hedgehog Linux
#448
mmguero
opened
3 months ago
0
unformly increase number of results for table visualizations in Dashboards
#447
mmguero
closed
3 months ago
0
allow total index size-based pruning for opensearch-remote and elasticsearch-remote database modes
#446
mmguero
opened
3 months ago
0
add ability to generate suricata.yaml such that suricata's eve.json is split/rotated so it doesn't grow as large
#445
mmguero
closed
3 months ago
1
add community ID to more (all) Zeek logs types
#444
mmguero
opened
3 months ago
0
Exception: auth_setup should not be run as root
#443
kirankalelkar
closed
3 months ago
5
suricata stats on "Packet Capture Statistics" not reflecting search time frame
#442
mmguero
closed
3 months ago
0
file extraction/scanning could overwhelm the system, causing the disk to fill
#441
mmguero
closed
2 months ago
1
release ISO images with GitHub release artifacts
#440
mmguero
closed
3 months ago
1
add script for exporting dashboard
#439
mmguero
opened
3 months ago
0
how to build and start docker container using docker images
#438
kirankalelkar
closed
3 months ago
2
AF_PACKET isn't being enabled for zeek-live container capture
#437
mmguero
closed
3 months ago
1
autocreation and assignment of NetBox subnets in Logstash
#436
mmguero
closed
3 months ago
2
investigate default capture settings for best Suricata performance
#435
mmguero
closed
1 month ago
2
Malcolm v24.03.0
#434
mmguero
closed
3 months ago
0
Logout page
#433
piercema
closed
4 months ago
0
develop "training heirarchy" tree to represent training progression
#432
mmguero
closed
3 months ago
1
unencrypted, unzipped extracted file download not working
#431
mmguero
closed
4 months ago
0
Integrate Scirius CE for Suricata
#430
ArmsSec
opened
4 months ago
2
incorporate icsnpp-profinet-io-cm
#429
mmguero
closed
4 months ago
0
hard-coded date value in Kibana pivot links
#428
mmguero
closed
4 months ago
0
links on landing page should open in a new tab
#427
mmguero
closed
4 months ago
0
htadmin creating entries without a newline between them in the htpasswd file
#426
mmguero
closed
2 months ago
5
Asset Interaction Analysis
#425
mmguero
opened
4 months ago
0
using threat intelligence feeds with Malcolm
#424
mmguero
closed
4 months ago
1
investigate allowing specifying another index pattern for Arkime to query in addition to arkime_sessions3-*
#423
mmguero
closed
3 months ago
4
investigate magika as an alternative to libmagic
#422
mmguero
opened
4 months ago
0
review and update Windows prep and installation documentation
#421
mmguero
closed
2 months ago
1
review and update macOS prep and installation documentation
#420
mmguero
opened
4 months ago
1
integrate JA4 zeek plugin
#419
mmguero
closed
1 week ago
7
investigate integrating sandialabs/gait Zeek plugin
#418
mmguero
closed
3 months ago
1
Raspberry Pi Hedgehog sensor user should belong to netdev group
#417
mmguero
closed
4 months ago
1
a few issues with the install.py script when installing from GitHub releases
#416
mmguero
closed
4 months ago
0
utilize DNS/NTLM/DHCP/etc. when populating NetBox inventory via passively-gathered network traffic metadata
#415
mmguero
closed
2 months ago
2
create dashboards for other non-network log data
#414
mmguero
closed
4 months ago
2
fix the way we do environment variables in local.zeek
#413
mmguero
closed
4 months ago
0
Malcolm v24.02.0
#412
mmguero
closed
4 months ago
0
Previous
Next