Discussions

• 1 You must be logged in to vote

  ❓

  Zeek/Suricata Alerts without matching PCAP

  MHeezy asked Feb 21, 2025 in Q&A · Unanswered

  

  

  0
• 1 You must be logged in to vote

  😥

  Arkime exporting 0 byte PCAP

  arkime Relating to Malcolm's use of Arkime

  riley611 asked Feb 20, 2025 in Troubleshooting · Unanswered

  

  

  1
• 1 You must be logged in to vote

  😥

  troubleshooting Hedgehog forwarding Zeek/Suricata logs to Malcolm

  logstash Relating to Malcolm's use of Logstash iso relating to the ISO-installed environment for Malcolm and/or Hedgehog sensor For issues dealing with the Hedgehog OS capture sensor

  riley611 asked Feb 10, 2025 in Troubleshooting · Unanswered

  

  

  

  

  70
• 1 You must be logged in to vote

  😥

  JWT authentication not supported

  lhayesg asked Feb 19, 2025 in Troubleshooting · Answered

  

  

  1
• 1 You must be logged in to vote

  😮

  Feb 25 Webinar with NetBox Labs

  mmguero announced Feb 18, 2025 in General Announcements

  

  

  0
• 1 You must be logged in to vote

  😥

  Using OpenSearch Cluster

  logstash Relating to Malcolm's use of Logstash cloud Relating to deployment of Malcolm in the cloud and/or with Kubernetes opensearch Relating to Malcolm's use of OpenSearch

  alleniverson33 asked Feb 9, 2025 in Troubleshooting · Unanswered

  

  

  14
• 1 You must be logged in to vote

  ❓

  supressing noisy Suricata rules with thresholding

  suricata Relating to Malcolm's use of Suricata

  mmguero asked Aug 27, 2024 in Q&A · Unanswered

  

  

  2
• 1 You must be logged in to vote

  📖

  Will there be training videos forth coming about adanced configuration such as LDAP/LDAPS, "best practices" with deploying Malcolm...?

  trwagner1 asked Feb 11, 2025 in Training · Answered

  

  

  2
• 1 You must be logged in to vote

  ❓

  The problem with Logstash in Malcolm k8s

  alleniverson33 asked Feb 9, 2025 in Q&A · Unanswered

  

  

  3
• 2 You must be logged in to vote

  📖

  Malcolm Learning Tree

  training Related to developing and releasing Malcolm training github Dealing with Malcolm's GitHub repository

  mmguero asked Nov 19, 2024 in Training · Unanswered

  

  

  1
• 1 You must be logged in to vote

  💭

  NetBox Service Mappings

  trwagner1 started Feb 8, 2025 in General Discussions

  

  

  0
• 1 You must be logged in to vote

  ❓

  Auto - Refresh options?

  trwagner1 asked Feb 5, 2025 in Q&A · Closed · Answered

  

  

  2
• 1 You must be logged in to vote

  😥

  Dashboard data stopping after short period of runtime

  etherxrally asked Dec 12, 2024 in Troubleshooting · Closed · Unanswered

  

  

  15
• 2 You must be logged in to vote

  💭

  One Trick I've Learned - Malcolm with Netbox

  trwagner1 started Jan 30, 2025 in Tips and Tricks

  

  

  5
• 1 You must be logged in to vote

  💭

  Confiring primary NIC - Quick install or VM

  trwagner1 started Feb 3, 2025 in General Discussions

  

  

  4
• 1 You must be logged in to vote

  💭

  Setting up "SPAN"/"Mirror" ports in VMware

  trwagner1 started Feb 5, 2025 in Tips and Tricks

  

  

  0
• 1 You must be logged in to vote

  ❓

  Can Zeek send an alert if a new device/IP shows up on scans?

  enhancement New feature or request netbox Related to Malcolm's use of NetBox

  trwagner1 asked Jan 31, 2025 in Q&A · Closed · Answered

  

  

  4
• 1 You must be logged in to vote

  ❓

  Who is currently using/logged into Malcolm

  trwagner1 asked Jan 30, 2025 in Q&A · Closed · Answered

  

  

  2
• 1 You must be logged in to vote

  💭

  Suggestion - suppress text overlay after auth_setup script

  trwagner1 started Jan 30, 2025 in General Discussions · Closed

  

  

  2
• 1 You must be logged in to vote

  🌟

  Malcolm v25.01.0

  mmguero announced Jan 17, 2025 in Releases

  

  

  0
• 1 You must be logged in to vote

  😥

  Arkime container unhealthy

  arkime Relating to Malcolm's use of Arkime

  devilman85 asked Jan 11, 2025 in Troubleshooting · Unanswered

  

  

  8
• 1 You must be logged in to vote

  🌟

  Malcolm v24.12.0

  mmguero announced Dec 19, 2024 in Releases · Closed

  

  

  0
• 1 You must be logged in to vote

  😥

  The problem of data latency when network traffic is particularly high

  performance Related to speed/performance suricata Relating to Malcolm's use of Suricata

  alleniverson33 asked Nov 26, 2024 in Troubleshooting · Closed · Answered

  

  

  5
• 1 You must be logged in to vote

  ❓

  Could Malcolm identify and display operating systems?

  meetpity asked Dec 19, 2024 in Q&A · Closed · Answered

  

  

  2
• 1 You must be logged in to vote

  😮

  Users interested in providing a quote for an article on Malcolm, please read!

  mmguero announced Dec 19, 2024 in General Announcements

  

  

  0