-
Notifications
You must be signed in to change notification settings - Fork 335
Issues: cisagov/Malcolm
New issue
Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? # to your account
Author
Label
Projects
Milestones
Assignee
Sort
Issues list
ensure all conn.log entries are tagged "ics" for OT protocols
enhancement
New feature or request
ics
Relating to ICS (Industrial Control Systems) devices
logstash
Relating to Malcolm's use of Logstash
zeek
Relating to Malcolm's use of Zeek
port numbers should not be shown with commas in Dashboards
bug
Something isn't working
dashboards
Relating to Malcolm's OpenSearch Dashboards interface
opensearch
Relating to Malcolm's use of OpenSearch
UI
Relating to general UI experience
opensearch.keystore not created when running in Hedgehog profile
bug
Something isn't working
control.py
Related to control.py script
standardize look-and-feel of Malcolm local user management interface
enhancement
New feature or request
UI
Relating to general UI experience
standardize look-and-feel of Malcolm upload interface
enhancement
New feature or request
UI
Relating to general UI experience
upload
Relating to PCAP and/or Zeek log ingestion
expand test suite framework to run on top of docker and vagrant in addition to virter
docker
Relating to docker and docker-compose as used by Malcolm
enhancement
New feature or request
testing
Related to automated system testing of Malcolm
trim test suite artifact data down to bare minimum
enhancement
New feature or request
testing
Related to automated system testing of Malcolm
Hedgehog Linux: Blank Screen Issue with Raspberry Pi Official Touchscreen After Boot
bug
Something isn't working
minihog
Related to Hedgehog Linux on Raspberry Pi
#511
opened Nov 25, 2024 by
TanayBole
updates to documentation for Docker-based installation examples
doc
Relating to Malcolm documentation
yes/no/back dialog buttons in install/configure scripts don't work correctly on Ubuntu 22.04
bug
Something isn't working
install.py
Relating to the install.py configuration script
UI
Relating to general UI experience
extend intel.log with additional fields using corelight/ExtendIntel
arkime
Relating to Malcolm's use of Arkime
dashboards
Relating to Malcolm's OpenSearch Dashboards interface
enhancement
New feature or request
external
Depends on a bug or feature external to this project
intel
Related to integration with threat intel feeds
logstash
Relating to Malcolm's use of Logstash
zeek
Relating to Malcolm's use of Zeek
somehow NetBox gets into a read-only mode
bug
Something isn't working
netbox
Related to Malcolm's use of NetBox
standardize container health checks into scripts for all docker containers
cloud
Relating to deployment of Malcolm in the cloud and/or with Kubernetes
docker
Relating to docker and docker-compose as used by Malcolm
enhancement
New feature or request
uploading zeek log files with rolled-over filenames including the date don't get the log type detected correctly
bug
Something isn't working
logstash
Relating to Malcolm's use of Logstash
regression
It worked at one point...
upload
Relating to PCAP and/or Zeek log ingestion
OpenSearch to Splunk export/searching capabilities
enhancement
New feature or request
opensearch
Relating to Malcolm's use of OpenSearch
research
Research or proof-of-concept for an idea
#487
opened Nov 5, 2024 by
mmguero
investigate Strelka for file scanning
carving
Relating to carving (extraction) of files from traffic and the scanning of those files
enhancement
New feature or request
research
Research or proof-of-concept for an idea
#485
opened Nov 5, 2024 by
mmguero
not parsing Profinet Real-Time Protocol directly on ethernet frame
ics
Relating to ICS (Industrial Control Systems) devices
zeek
Relating to Malcolm's use of Zeek
#484
opened Nov 5, 2024 by
mmguero
install.py should recommend different settings for minimal memory instances, if possible
install.py
Relating to the install.py configuration script
opensearch
Relating to Malcolm's use of OpenSearch
performance
Related to speed/performance
#483
opened Nov 5, 2024 by
mmguero
support HTTP proxy for geoip database, rule updates, etc.
enhancement
New feature or request
#482
opened Nov 5, 2024 by
mmguero
replace logstash with fluentd
beats
Relating to Malcolm's use of Beats
enhancement
New feature or request
logstash
Relating to Malcolm's use of Logstash
research
Research or proof-of-concept for an idea
sensor
For issues dealing with the Hedgehog OS capture sensor
#481
opened Nov 5, 2024 by
mmguero
AIDE false positives in ISO-installed Hedgehog and Malcolm
bug
Something isn't working
iso
relating to the ISO-installed environment for Malcolm and/or Hedgehog
Linux
Related to running Malcolm under Linux
security
Related to issues with bearing on the security of Malcolm itself
#480
opened Nov 5, 2024 by
mmguero
optimize OpenSearch index storage
opensearch
Relating to Malcolm's use of OpenSearch
performance
Related to speed/performance
#479
opened Nov 5, 2024 by
mmguero
Compare NetBox inventory with database of known vulnerabilities
enhancement
New feature or request
external
Depends on a bug or feature external to this project
netbox
Related to Malcolm's use of NetBox
#478
opened Nov 5, 2024 by
mmguero
Populate NetBox inventory via active discovery
enhancement
New feature or request
external
Depends on a bug or feature external to this project
netbox
Related to Malcolm's use of NetBox
#477
opened Nov 5, 2024 by
mmguero
Previous Next
ProTip!
Exclude everything labeled
bug
with -label:bug.