Miroslav Stampar

Now I can see that the Pcapy (used by Maltrail's sensor) support for Windows is basically dead from Python 2.7 :(

As said, now you have only MEANS how to send events to the central (logging) point. Sensor includes WAY more stuff to do, including detection of malicious activities. Take a...

1) Currently UID is just a dummy incremental value as there is no difference in functionality between admin and non-admin accounts 2) `USE_SSL` (https://github.com/stamparm/maltrail/blob/master/maltrail.conf#L10) should be set to `true`, while...

@rout3rx currently, in our production environment we prefer usage of following: 1) `sensor.py` (root's cronjob): ``` # m h dom mon dow command */1 * * * * /usr/bin/pgrep -f...

Hi. To be honest I am not able to explain it out-of-the box. My question is are you using an updated version (e.g. updated in last month period - as...

p.s. are you able to reproduce this or you just spotted it?

p.p.s. simplest explaination would be that the `imgsrc.baidu.com` is changing its IP quite occasionally (because of its CDN-alike nature) - look at https://www.virustotal.com/#/domain/imgsrc.baidu.com - though, I am not able to...

Hi. Usually I am doing the following on the sensor/server machines: 1) Cloning the maltrail repository with `git` to (e.g.) `/opt/maltrail` directory: `cd /opt && sudo git clone https://github.com/stamparm/maltrail.git` 2)...

As you already have a non-git version, you should do the step 1) and then immediately remove that same directory with `rm -rf /home/user1/maltrail` as it make problems to your...

Loading of custom TXT should not take too long. Updates are way slower. Also, loading of trails is something that is being done once (on load) and that's it. Is...