cisagov Malcolm · Discussions

Sort by: Latest activity

Discussions

You must be logged in to vote

Malcolm v25.04.1

mmguero announced Apr 30, 2025 in Releases

0
You must be logged in to vote

Malcolm and Suricata alert IP association issue

H-Dynamite asked Apr 29, 2025 in Q&A · Unanswered

0
You must be logged in to vote

Malcolm v25.04.0

mmguero announced Apr 28, 2025 in Releases

0
You must be logged in to vote

Detect ARP spoofing with Malcolm

tbfhg started Apr 23, 2025 in General Discussions

4
You must be logged in to vote

Modbus Connection logs
zeek Relating to Malcolm's use of Zeek ics Relating to ICS (Industrial Control Systems) devices
tbfhg asked Apr 23, 2025 in Q&A · Unanswered

2
You must be logged in to vote

Questions about ENV_PCAP_FILTER
capture Relating to pcap-capture container
alleniverson33 asked Mar 18, 2025 in Q&A · Closed · Answered

1
You must be logged in to vote

Regarding Performance Monitoring
elastic Related to issue with external ElasticSearch/Kibana output logstash Relating to Malcolm's use of Logstash opensearch Relating to Malcolm's use of OpenSearch performance Related to speed/performance
alleniverson33 asked Apr 1, 2025 in Q&A · Closed · Answered

1
You must be logged in to vote

File extraction configuration conflicts with zeek default extraction
bug Something isn't working
H-Dynamite asked Apr 21, 2025 in Q&A · Closed · Answered

3
You must be logged in to vote

Arkime and Zeek Integration

Satsubu asked Apr 15, 2025 in Q&A · Closed · Answered

4
You must be logged in to vote

Malcolm Orientation Overview - May 1, 2025

mmguero announced Apr 7, 2025 in General Announcements

0
You must be logged in to vote

🏢 Malcolm "Office Hours"

mmguero announced Mar 13, 2025 in General Announcements

0
You must be logged in to vote

Unexpected behavior indexes
elastic Related to issue with external ElasticSearch/Kibana output
devilman85 asked Apr 2, 2025 in Troubleshooting · Closed · Unanswered

3
You must be logged in to vote

Malcolm v25.03.1

mmguero announced Mar 28, 2025 in Releases · Closed

0
You must be logged in to vote

Forward remote Zeek logs to Malcolm for analysis in Dashboards and Arkime
zeek Relating to Malcolm's use of Zeek logstash Relating to Malcolm's use of Logstash external Depends on a bug or feature external to this project
StammesOpfer asked Mar 24, 2025 in Q&A · Closed · Answered

9
You must be logged in to vote

After restarting Malcolm, zeek did not start
zeek Relating to Malcolm's use of Zeek
H-Dynamite asked Mar 10, 2025 in Troubleshooting · Closed · Answered

3
You must be logged in to vote

Malcolm v25.03.0

mmguero announced Mar 18, 2025 in Releases · Closed

0
You must be logged in to vote

Permission Error Running suricata-update list-sources in Suricata Container
suricata Relating to Malcolm's use of Suricata
devilman85 asked Mar 12, 2025 in Q&A · Closed · Answered

2
You must be logged in to vote

JWT authentication not supported

lhayesg asked Feb 19, 2025 in Troubleshooting · Closed · Answered

2
You must be logged in to vote

Artifact Upload maximum

dwade5 asked Mar 7, 2025 in Q&A · Closed · Answered

1
You must be logged in to vote

Malcolm Server with Multiple NICs

riley611 asked Mar 6, 2025 in Q&A · Closed · Answered

1
You must be logged in to vote

Arkime exporting 0 byte PCAP
arkime Relating to Malcolm's use of Arkime
riley611 asked Feb 20, 2025 in Troubleshooting · Closed · Answered

13
You must be logged in to vote

Malcolm v25.02.0 (see NOTE prior to upgrade)

mmguero announced Feb 27, 2025 in Releases · Closed

2
You must be logged in to vote

netbox not starting
netbox Related to Malcolm's use of NetBox
stefanm79 asked Feb 28, 2025 in Troubleshooting · Closed · Answered

2
You must be logged in to vote

Zeek/Suricata Alerts without matching PCAP
arkime Relating to Malcolm's use of Arkime
MHeezy asked Feb 21, 2025 in Q&A · Closed · Unanswered

6
You must be logged in to vote

Filebeat keeps restarting
cloud Relating to deployment of Malcolm in the cloud and/or with Kubernetes
alleniverson33 asked Feb 25, 2025 in Troubleshooting · Closed · Answered

4