maltrail
maltrail copied to clipboard
stamparm
Malicious traffic detection system
Hi I am curious about some settings in maltrail ```` # User entries (username:sha256(password):UID:filter_netmask(s)) ```` - What is the UID and filter netmask used for? I assume the UID is...
Hello! Currently, if couple of trails/feeds were triggered, ```static``` has precedence (e.g. ```static``` + ```alienvault.com```). But there is no MT's heur output on, e.g. ```MT's heur + feed``` case. Practical...
Hi, is there away to start maltrail sensor and server automatically at OS boot? thanks
Hello! Now there is ```sensor_ip``` only  Let us have ```sensor_ip (sensor_name)```. It'll give some additional convenience for user to be clear in ```what is what...
Hello! Can be useful to track time startpoint of server/sensor in case if and when server/sensor was restarted. This info can be also sent to some monitoring system like Cacti...
Hi stamparm, Please help me with this case as below picture: 1. nslookup imgsrc.baidu.com  2. This is correct Dest IP address  3. But sometimes it's the same URL...
First, thank you for a most excellent tool. I would like to embed the server dashboard into a html iframe. Is it possible to either: a) auto login to dashboard...
Hi, I realized something. I have a big "dprk.txt" in /trails/custom/ directory. It's almost 20mb. When I started maltrail, the process takes very long time. I know it's reading from...
Was just wondering if there is any reason why the sensor cannot be converted to a windows executable. Something like: `C:\ sensor.exe -manual [server url:port]`
Hi stamparm, Could you please consider to develop new functions are weekly & monthly reports? Thanks, PN