Skip to content

Issues: cisagov/Malcolm

New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort

Issues list

ensure all conn.log entries are tagged "ics" for OT protocols enhancement New feature or request ics Relating to ICS (Industrial Control Systems) devices logstash Relating to Malcolm's use of Logstash zeek Relating to Malcolm's use of Zeek
#541 opened Dec 19, 2024 by mmguero v25.01.0
port numbers should not be shown with commas in Dashboards bug Something isn't working dashboards Relating to Malcolm's OpenSearch Dashboards interface opensearch Relating to Malcolm's use of OpenSearch UI Relating to general UI experience
#540 opened Dec 19, 2024 by mmguero v25.01.0
opensearch.keystore not created when running in Hedgehog profile bug Something isn't working control.py Related to control.py script
#533 opened Dec 17, 2024 by mmguero v25.01.0
standardize look-and-feel of Malcolm local user management interface enhancement New feature or request UI Relating to general UI experience
#531 opened Dec 12, 2024 by mmguero z.staging
standardize look-and-feel of Malcolm upload interface enhancement New feature or request UI Relating to general UI experience upload Relating to PCAP and/or Zeek log ingestion
#530 opened Dec 12, 2024 by mmguero z.staging
expand test suite framework to run on top of docker and vagrant in addition to virter docker Relating to docker and docker-compose as used by Malcolm enhancement New feature or request testing Related to automated system testing of Malcolm
#527 opened Dec 12, 2024 by mmguero z.staging
trim test suite artifact data down to bare minimum enhancement New feature or request testing Related to automated system testing of Malcolm
#526 opened Dec 12, 2024 by mmguero v25.01.0
extracted_files_http_server.py not working with some filenames bug Something isn't working carving Relating to carving (extraction) of files from traffic and the scanning of those files UI Relating to general UI experience
#524 opened Dec 11, 2024 by mmguero v25.01.0
Hedgehog Linux: Blank Screen Issue with Raspberry Pi Official Touchscreen After Boot bug Something isn't working minihog Related to Hedgehog Linux on Raspberry Pi
#511 opened Nov 25, 2024 by TanayBole
updates to documentation for Docker-based installation examples doc Relating to Malcolm documentation
#506 opened Nov 20, 2024 by mmguero z.staging
yes/no/back dialog buttons in install/configure scripts don't work correctly on Ubuntu 22.04 bug Something isn't working install.py Relating to the install.py configuration script UI Relating to general UI experience
#505 opened Nov 20, 2024 by mmguero z.staging
extend intel.log with additional fields using corelight/ExtendIntel arkime Relating to Malcolm's use of Arkime dashboards Relating to Malcolm's OpenSearch Dashboards interface enhancement New feature or request external Depends on a bug or feature external to this project intel Related to integration with threat intel feeds logstash Relating to Malcolm's use of Logstash zeek Relating to Malcolm's use of Zeek
#502 opened Nov 19, 2024 by mmguero
7 tasks
z.staging
somehow NetBox gets into a read-only mode bug Something isn't working netbox Related to Malcolm's use of NetBox
#501 opened Nov 19, 2024 by mmguero z.staging
standardize container health checks into scripts for all docker containers cloud Relating to deployment of Malcolm in the cloud and/or with Kubernetes docker Relating to docker and docker-compose as used by Malcolm enhancement New feature or request
#491 opened Nov 7, 2024 by mmguero z.staging
uploading zeek log files with rolled-over filenames including the date don't get the log type detected correctly bug Something isn't working logstash Relating to Malcolm's use of Logstash regression It worked at one point... upload Relating to PCAP and/or Zeek log ingestion
#490 opened Nov 7, 2024 by mmguero z.staging
OpenSearch to Splunk export/searching capabilities enhancement New feature or request opensearch Relating to Malcolm's use of OpenSearch research Research or proof-of-concept for an idea
#487 opened Nov 5, 2024 by mmguero
investigate Strelka for file scanning carving Relating to carving (extraction) of files from traffic and the scanning of those files enhancement New feature or request research Research or proof-of-concept for an idea
#485 opened Nov 5, 2024 by mmguero
not parsing Profinet Real-Time Protocol directly on ethernet frame ics Relating to ICS (Industrial Control Systems) devices zeek Relating to Malcolm's use of Zeek
#484 opened Nov 5, 2024 by mmguero
install.py should recommend different settings for minimal memory instances, if possible install.py Relating to the install.py configuration script opensearch Relating to Malcolm's use of OpenSearch performance Related to speed/performance
#483 opened Nov 5, 2024 by mmguero
support HTTP proxy for geoip database, rule updates, etc. enhancement New feature or request
#482 opened Nov 5, 2024 by mmguero
replace logstash with fluentd beats Relating to Malcolm's use of Beats enhancement New feature or request logstash Relating to Malcolm's use of Logstash research Research or proof-of-concept for an idea sensor For issues dealing with the Hedgehog OS capture sensor
#481 opened Nov 5, 2024 by mmguero
AIDE false positives in ISO-installed Hedgehog and Malcolm bug Something isn't working iso relating to the ISO-installed environment for Malcolm and/or Hedgehog Linux Related to running Malcolm under Linux security Related to issues with bearing on the security of Malcolm itself
#480 opened Nov 5, 2024 by mmguero
optimize OpenSearch index storage opensearch Relating to Malcolm's use of OpenSearch performance Related to speed/performance
#479 opened Nov 5, 2024 by mmguero
Compare NetBox inventory with database of known vulnerabilities enhancement New feature or request external Depends on a bug or feature external to this project netbox Related to Malcolm's use of NetBox
#478 opened Nov 5, 2024 by mmguero
Populate NetBox inventory via active discovery enhancement New feature or request external Depends on a bug or feature external to this project netbox Related to Malcolm's use of NetBox
#477 opened Nov 5, 2024 by mmguero
ProTip! Exclude everything labeled bug with -label:bug.