miked235
commented
6 years ago See https://github.com/sealingtech/EDCOP-TOOLS/pull/51 for a Moloch statefulset :)
Side note: Docket isn't working as intended right now, but the Stenographer daemonset should write PCAPs if you query it manually, meaning we don't have a web interface ready just yet. Eventually, Stenographer will have a Web UI + RESTful API, but until then I'll continue to mess with Docket and search for other projects like it.
Have either Steganographer or Moloch fully functional. We need to be able to query pcaps from data.