Skip to content

Issues: idaholab/Malcolm

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

111 Open 312 Closed
111 Open 312 Closed
Author
Filter by author
Label
Filter by label
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Milestones
Filter by milestone
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

sensor and policy manager for Malcolm arkime Relating to Malcolm's use of Arkime enhancement New feature or request sensor For issues dealing with the Hedgehog OS capture sensor suricata UI Relating to general UI experience zeek Relating to Malcolm's use of Zeek
#477 opened May 15, 2024 by mmguero z.staging
discrepancy between environment variables used to populate Arkime's config.ini between Malcolm and Hedgehog arkime Relating to Malcolm's use of Arkime bug Something isn't working sensor For issues dealing with the Hedgehog OS capture sensor
#476 opened May 15, 2024 by mmguero v24.05.0
@mmguero
streamline configuration of Zeek live capture worker load balancing using AF_PACKET and fanout enhancement New feature or request performance Related to speed/performance zeek Relating to Malcolm's use of Zeek
#475 opened May 13, 2024 by mmguero v24.05.0
@mmguero
1
BPF capture filter does not seem to be passed to Zeek correctly bug Something isn't working zeek Relating to Malcolm's use of Zeek
#474 opened May 13, 2024 by mmguero v24.05.0
@mmguero
use mount instead of volume in docker compose file to avoid creating empty directories for missing files enhancement New feature or request
#473 opened May 9, 2024 by mmguero v24.05.0
don't overwrite Zeek threat intel files if all sources associated with a type fail bug Something isn't working zeek Relating to Malcolm's use of Zeek
#472 opened May 9, 2024 by mmguero v24.05.0
allow artifact upload to handle windows event logs enhancement New feature or request upload Relating to PCAP and/or Zeek log ingestion
#465 opened Apr 29, 2024 by mmguero v24.06.0
allow custom tags to be specified at the point of log file ingestion (ie., filebeat) beats Relating to Malcolm's use of Beats enhancement New feature or request
#463 opened Apr 23, 2024 by mmguero v24.05.0
@mmguero
handle invalid URLs better (with a 404 instead of a 500) bug Something isn't working nginx Relating to Malcolm's use of nginx UI Relating to general UI experience
#461 opened Apr 22, 2024 by mmguero v24.05.0
adopt digitalbond/Quickdraw ICS rules into Malcolm's suricata instance enhancement New feature or request ics Relating to ICS (Industrial Control Systems) devices suricata
#460 opened Apr 18, 2024 by mmguero v24.06.0
Configuring Hedgehog Linux sensor For issues dealing with the Hedgehog OS capture sensor train-configuration Training topic relating to installation or configuration training Related to developing and releasing Malcolm training
#451 opened Mar 20, 2024 by mmguero
allow splitting out indexes by event.provider elastic Related to issue with external ElasticSearch/Kibana output enhancement New feature or request logstash Relating to Malcolm's use of Logstash opensearch Relating to Malcolm's use of OpenSearch performance Related to speed/performance
#450 opened Mar 19, 2024 by mmguero v24.06.0
handle multiple NetBox sites capture Relating to pcap-capture container enhancement New feature or request logstash Relating to Malcolm's use of Logstash netbox Related to Malcolm's use of NetBox sensor For issues dealing with the Hedgehog OS capture sensor upload Relating to PCAP and/or Zeek log ingestion
#449 opened Mar 19, 2024 by mmguero z.staging
@mmguero
Installing Hedgehog Linux sensor For issues dealing with the Hedgehog OS capture sensor train-configuration Training topic relating to installation or configuration training Related to developing and releasing Malcolm training
#448 opened Mar 19, 2024 by mmguero
allow total index size-based pruning for opensearch-remote and elasticsearch-remote database modes elastic Related to issue with external ElasticSearch/Kibana output enhancement New feature or request opensearch Relating to Malcolm's use of OpenSearch
#446 opened Mar 15, 2024 by mmguero v24.06.0
add community ID to more (all) Zeek logs types enhancement New feature or request external Depends on a bug or feature external to this project zeek Relating to Malcolm's use of Zeek
#444 opened Mar 14, 2024 by mmguero z.staging
add script for exporting dashboard dashboards Relating to Malcolm's OpenSearch Dashboards interface doc Relating to Malcolm documentation enhancement New feature or request
#439 opened Mar 13, 2024 by mmguero v24.06.0
investigate default capture settings for best Suricata performance performance Related to speed/performance suricata
#435 opened Mar 4, 2024 by mmguero z.staging
2
Integrate Scirius CE for Suricata enhancement New feature or request suricata UI Relating to general UI experience
#430 opened Feb 26, 2024 by ArmsSec
2
Asset Interaction Analysis netbox Related to Malcolm's use of NetBox train-operation Training topic related to how to use Malcolm to conduct network traffic analysis training Related to developing and releasing Malcolm training
#425 opened Feb 20, 2024 by mmguero
investigate magika as an alternative to libmagic carving Relating to carving (extraction) of files from traffic and the scanning of those files enhancement New feature or request external Depends on a bug or feature external to this project
#422 opened Feb 20, 2024 by mmguero
review and update macOS prep and installation documentation doc Relating to Malcolm documentation enhancement New feature or request
#420 opened Feb 20, 2024 by mmguero v24.06.0
1
integrate JA4 zeek plugin arkime Relating to Malcolm's use of Arkime enhancement New feature or request external Depends on a bug or feature external to this project zeek Relating to Malcolm's use of Zeek
#419 opened Feb 16, 2024 by mmguero v24.06.0
@piercema
6
netbox device type import is slow bug Something isn't working netbox Related to Malcolm's use of NetBox performance Related to speed/performance
#411 opened Feb 13, 2024 by mmguero
support PCAPNG enhancement New feature or request external Depends on a bug or feature external to this project upload Relating to PCAP and/or Zeek log ingestion
#409 opened Feb 12, 2024 by mmguero
ProTip! Type g p on any issue or pull request to go back to the pull request listing page.