Skip to content

Issues: cisagov/Malcolm

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

124 Open 165 Closed
124 Open 165 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

Integrate Sigma rules via OpenSearch Security Analytics dashboards Relating to Malcolm's OpenSearch Dashboards interface enhancement New feature or request logstash Relating to Malcolm's use of Logstash
#475 opened Nov 5, 2024 by mmguero
4
Live capture on AWS using VPC traffic mirroring capture Relating to pcap-capture container cloud Relating to deployment of Malcolm in the cloud and/or with Kubernetes
#474 opened Nov 5, 2024 by mmguero
2
kubernetes (next steps) - helm chart(s) cloud Relating to deployment of Malcolm in the cloud and/or with Kubernetes
#473 opened Nov 5, 2024 by mmguero
3
kubernetes - check out filebeat on network volumes beats Relating to Malcolm's use of Beats cloud Relating to deployment of Malcolm in the cloud and/or with Kubernetes
#472 opened Nov 5, 2024 by mmguero
support configuration for and enabling of TLS decryption for Zeek enhancement New feature or request zeek Relating to Malcolm's use of Zeek
#471 opened Nov 5, 2024 by mmguero
suport PCAP files with 802.11 packet structure arkime Relating to Malcolm's use of Arkime enhancement New feature or request external Depends on a bug or feature external to this project upload Relating to PCAP and/or Zeek log ingestion
#470 opened Nov 5, 2024 by mmguero
1
Kubernetes - Document how to get running on Azure Kubernetes Service (AKS) cloud Relating to deployment of Malcolm in the cloud and/or with Kubernetes doc Relating to Malcolm documentation
#469 opened Nov 5, 2024 by mmguero
Support and document receiving cloud logs cloud Relating to deployment of Malcolm in the cloud and/or with Kubernetes doc Relating to Malcolm documentation logstash Relating to Malcolm's use of Logstash
#468 opened Nov 5, 2024 by mmguero
NetFlow v9 input enhancement New feature or request logstash Relating to Malcolm's use of Logstash
#467 opened Nov 5, 2024 by mmguero
1
OpenSearch report export to PDF/PNG fails on Firefox with some dashboards bug Something isn't working dashboards Relating to Malcolm's OpenSearch Dashboards interface regression It worked at one point...
#466 opened Nov 5, 2024 by mmguero
3
examine default OpenSearch Dashboards dashboard dashboards Relating to Malcolm's OpenSearch Dashboards interface enhancement New feature or request UI Relating to general UI experience
#465 opened Nov 5, 2024 by mmguero
1
Add PCAP-over-IP support capture Relating to pcap-capture container enhancement New feature or request
#464 opened Nov 5, 2024 by mmguero
examine tables in dashboards for sort column dashboards Relating to Malcolm's OpenSearch Dashboards interface enhancement New feature or request
#463 opened Nov 5, 2024 by mmguero
allow uploading compressed PCAP files enhancement New feature or request upload Relating to PCAP and/or Zeek log ingestion
#462 opened Nov 5, 2024 by mmguero
investigate Zeek's javascript MISP interface as an improvement to existing Zeek intel MISP integration enhancement New feature or request external Depends on a bug or feature external to this project zeek Relating to Malcolm's use of Zeek
#461 opened Nov 5, 2024 by mmguero
2
fine-grained access controls arkime Relating to Malcolm's use of Arkime enhancement New feature or request nginx Relating to Malcolm's use of nginx opensearch Relating to Malcolm's use of OpenSearch security Related to issues with bearing on the security of Malcolm itself
#460 opened Nov 5, 2024 by mmguero
Single Sign On (SSO) enhancement New feature or request nginx Relating to Malcolm's use of nginx security Related to issues with bearing on the security of Malcolm itself
#459 opened Nov 5, 2024 by mmguero
2
UI for backing up/restoring entire netbox configuration enhancement New feature or request netbox Related to Malcolm's use of NetBox
#458 opened Nov 5, 2024 by mmguero
improve efficiency of Suricata processing uploaded PCAP files performance Related to speed/performance suricata Relating to Malcolm's use of Suricata upload Relating to PCAP and/or Zeek log ingestion
#457 opened Nov 5, 2024 by mmguero
integrate BSI ot-parsers enhancement New feature or request external Depends on a bug or feature external to this project zeek Relating to Malcolm's use of Zeek
#456 opened Nov 5, 2024 by mmguero
Installing Malcolm Using the Installation ISO iso relating to the ISO-installed environment for Malcolm and/or Hedgehog train-configuration Training topic relating to installation or configuration training Related to developing and releasing Malcolm training
#455 opened Nov 5, 2024 by mmguero
1
Installing Malcolm on Linux Using Docker docker Relating to docker and docker-compose as used by Malcolm install.py Relating to the install.py configuration script train-configuration Training topic relating to installation or configuration training Related to developing and releasing Malcolm training
#454 opened Nov 5, 2024 by mmguero
Configuring Malcolm install.py Relating to the install.py configuration script train-configuration Training topic relating to installation or configuration training Related to developing and releasing Malcolm training
#453 opened Nov 5, 2024 by mmguero
File Extraction and Analysis carving Relating to carving (extraction) of files from traffic and the scanning of those files train-operation Training topic related to how to use Malcolm to conduct network traffic analysis training Related to developing and releasing Malcolm training
#452 opened Nov 5, 2024 by mmguero
Authentication and User Management security Related to issues with bearing on the security of Malcolm itself train-operation Training topic related to how to use Malcolm to conduct network traffic analysis training Related to developing and releasing Malcolm training
#451 opened Nov 5, 2024 by mmguero
ProTip! Follow long discussions with comments:>50.