Latest posts tagged with #Arkime on Bluesky
A screenshot of Malcolm's new Connections Tree visualization, depicting a tree of IP addresses with lines representing connections between the endpoints.
[Release notes for v25.11.0 of Malcolm, a powerful, easily deployable network traffic analysis tool suite for network security monitoring]
Malcolm v25.11.0 includes an overhaul of the `install.py` installation/configuration script, a few bug fixes, and some [β¦]
[Original post on infosec.exchange]
#Malcolm (malcolm.fyi) v25.09 features π§ threat intel improvements, new βοΈ config options, π component updates, π fixes, more! Details @ github.com/idaholab/Malcolm/releases. Malcolm is a powerful tool suite for NSM π΅π»ββοΈ. #Zeek #Arkime #NetBox #Suricata #NetworkTrafficAnalysis #networksecuritymonitoring
[Release notes for v25.09.0 of Malcolm, a powerful, easily deployable network traffic analysis tool suite for network security monitoring]
Malcolm v25.09.0 includes new features and available customizations, improvements to Threat Intelligence, component version updates, and several important [β¦]
Building a network traffic analysis system: Deploying Malcolm on Amazon EC2
This is the first of two blog posts on the AWS Public Sector Blog about deploying Malcolm on Amazon AWS. It covers installing Malcolm on a single EC2 instance. The next post will cover deploying Malcolm on EKS.
For [β¦]
A screenshot of the desktop from the ISO-installed Malcolm configuration, with a list describing the icons on the shortcut bar. 1. Applications menu 2. Terminal 3. Web browser 4. Malcolm landing page 5. Arkime 6. Dashboards 7. Upload artifacts 8. User management 9. Malcolm configuration 10. NetBox 11. CyberChef 12. Start Malcolm 13. Restart Malcolm 14. Stop Malcolm 15. Malcolm debug logs 16. Desktop workspaces 17. NetworkManager 18. Power management 19. System notifications 20. Time and date 21. Logout menu
[Release notes for v25.07.0 of Malcolm, a powerful, easily deployable network traffic analysis tool suite for network security monitoring]
Malcolm v25.07.0 includes quite a few new features and enhancements, performance improvements, bug fixes, and [β¦]
[Original post on infosec.exchange]
A screenshot of the Malcolm documentation for the role-based access control feature, found at https://malcolm.fyi/docs/authsetup.html#AuthKeycloakRBAC
#Malcolm (malcolm.fyi) v25.06.0 features π #rbac, other β¨ improvements, π component version updates, π bug fixes, & more. Details @ github.com/idaholab/Malcolm/releases. Malcolm is a powerful tool suite for NSM π΅π»ββοΈ. #Zeek #Arkime #NetBox #Suricata #NetworkTrafficAnalysis #networksecuritymonitoring
Screenshot of the Malcolm documentation for role-based access control found at https://malcolm.fyi/docs/authsetup.html#AuthKeycloakRBAC
[Release notes for v25.06.0 of Malcolm, a powerful, easily deployable network traffic analysis tool suite for network security monitoring]
Malcolm v25.06.0 includes a some new and oft-requested features, bug fixes, and component version bumps.
Compare v25 [β¦]
[Original post on infosec.exchange]
Great to see the #Arkime #opensource project supporting the #OpenSearch Project as search backend, to make high-volume network traffic data searchable and actionable.
BTW, Arkime also supports the #Valkey project. Two projects championed by AWS Open Source ππ
www.linkedin.com/feed/update/...
#Malcolm (malcolm.fyi) v25.04.1 contains a bevy of β¨ improvements, π component version updates, π bug fixes, and other great stuff. π github.com/idaholab/Mal... for details! Malcolm is a powerful tool suite for NSM π΅π»ββοΈ. #Zeek #Arkime #NetBox #Suricata #NetworkTrafficAnalysis #networksecuritymonitoring
A screenshot from Malcolm's GitHub releases page.
[Release notes for v25.04.1 of Malcolm, a powerful, easily deployable network traffic analysis tool suite for network security monitoring]
Malcolm v25.04.1 contains new features and improvements, component version updates, bug fixes, and other great stuff [β¦]
[Original post on infosec.exchange]
A simple network diagram showing how Malcolm is used to monitor network traffic.
[Release notes for v25.03.1 of Malcolm, a powerful, easily deployable network traffic analysis tool suite for network security monitoring]
_This has been a busy month for Malcolm! I pushed hard to getv25.03.0 out earlier this month, as it contained pretty [β¦]
[Original post on infosec.exchange]
The Malcolm landing page with Keycloak authentication enabled.
#Malcolm (malcolm.fyi) v25.03.0 brings π auth via #Keycloak and with it #SSO, identity providers, and more! See the release notes github.com/cisagov/Malc... for more info! Malcolm is a powerful tool suite for NSM. #Zeek #Arkime #NetBox #Suricata #NetworkTrafficAnalysis #networksecuritymonitoring
The Malcolm landing page showing the new Keycloak Authentication feature.
[Release notes for v25.03.0 of Malcolm, a powerful, easily deployable network traffic analysis tool suite for network security monitoring]
Malcolm v25.03.0 adds π authentication via Keycloak and all that entails: single sign-on (SSO), identity providers [β¦]
[Original post on infosec.exchange]
#DHS #CISA is big on the building community aspect of #Malcolm right now, so as part of that we'll be having our first "Malcolm Office Hours" this Thursday. The plan is to have this monthly, every third Thursday, at 12pm Eastern time for 30 minutes. Details for the office hours can be found [β¦]
Malcolm v25.02.0 is out! See the release notes for details!
malcolm.fyi
github.com/cisagov/Malc...
#Malcolm #HedgehogLinux #Zeek #Arkime #NetBox #OpenSearch #Elasticsearch #Suricata #PCAP #NetworkTrafficAnalysis #networksecuritymonitoring #OT #ICS #icssecurity #CyberSecurity #Cyber #Infosec
[Release notes for v25.02.0 of Malcolm, a powerful, easily deployable network traffic analysis tool suite for network security monitoring]
Malcolm v25.02.0 contains some **major performance improvements** , a few smaller new features and enhancements, several component version updates, bug [β¦]
Malcolm v25.01.0 is out! See the release notes for details!
malcolm.fyi
github.com/cisagov/Malc...
#Malcolm #HedgehogLinux #Zeek #Arkime #NetBox #OpenSearch #Elasticsearch #Suricata #PCAP #NetworkTrafficAnalysis #networksecuritymonitoring #OT #ICS #icssecurity #CyberSecurity #Cyber #Infosec
A screenshot of the Malcolm landing page, with links for Dashboards, Arkime, Netbox, Cyberchef, etc.
Malcolm (malcolm.fyi) v24.12.0 is out (github.com/cisagov/Malc...), with β¨enhancements, β component updates, and πbug fixes. See the release notes for details. #Malcolm #HedgehogLinux #Zeek #Arkime #NetBox #Suricata #PCAP #NetworkTrafficAnalysis #networksecuritymonitoring #OT #ICS #CyberSecurity
π¨ Live streaming this week with the creator of #Arkime - a network analysis and packet capture tool!
Join us Thursday at 3pm CST on #YouTubeπ
www.youtube.com/live/_EG16WL...
I just released v24.11.0 of #Malcolm (malcolm.fyi), a powerful, easily deployable network traffic analysis tool suite for #NSM. See github.com/cisagov/Malc... for details.
#opensource #HedgehogLinux #Zeek #Arkime #Suricata #PCAP #CyberSecurity #Cyber #Infosec #INL #DHS #CISA #CISAgov
