MineMeld Discussions
cancel
Showing results for 
Search instead for 
Did you mean: 
MineMeld Discussions
About MineMeld Discussions

Welcome to the MineMeld discussion forum. Please feel free to ask questions and engage with other community members. Ideas, questions, research, and observations regarding MineMeld are all actively encouraged.

Note: Participation in the discussion forum requires a Live Community account. Registration is free and easy! Simply click here to sign up.

Forum Posts

Deploying Minemeld Using Vagrant and Virtualbox

Hello All, Based on @lmori's great guide for doing a manual install of Minemeld on Ubuntu 14.04, I have taken his configurations and wrapped them in a Vagrantfile for easy foolproof deployment of Minemeld. It's a simple 3 step process: Install latest...

nbilal by L3 Networker
  • 10110 Views
  • 2 replies
  • 9 Likes

Reg Case _reg 01075000

Hi Team , I have a problem with connecting paloalto with minemeld via EDL, i have installed the minemeld according to documentation and the certificate with the feed user. The result is the next: 2019-02-06 12:03:42.234 -0500 EDLRefresh job started p...

alal by L2 Linker
  • 2750 Views
  • 3 replies
  • 0 Likes

Resolved! JSON parser extractor name with a "-"

I have a JSON list (URL https://ip-ranges.cloud.signiant.com/MediaShuttle) with one part of the JSON path name containing a minus sign ("-"): { "us-east-1": { "all_ips": [ "3.83.158.71", "3.87.14.184", "34.207.126.66", "34.227.155.76", "34.236.155.24...

Basic setup- PAN8.0 + Minemeld issues

Hello All, Having a problem getting a basic setup running feel I am missing something simple. - Fresh install of MM on AWS. Built using Ubuntu and the following link: https://live.paloaltonetworks.com/t5/MineMeld-Articles/Manually-install-MineMeld-on...

Resolved! JSON Miner with basic auth and an API key

I would like to have a miner to connect to the Pingdom API to pull a list of their US node addresses. The Pingdom API uses basic auth and requires an "app key". Their documentation references two HTTP headers, authentication and app-key: > GET /check...

MISP automatization with Minemeld

Hi, I have an issue trying to customize misp node params over API:(with python) curl -XPOST -u 'admin:admin' -H 'Content-Type: application/json' -i http://127.0.0.1/config/node -d '{ "name": "misp_test", "properties": { "prototype": "misp.anyEvent", ...

ITSCERT by L1 Bithead
  • 1234 Views
  • 0 replies
  • 0 Likes

Resolved! Problems with CentOs 7 and MM 0.9.52

Hi guys, I used to run standalone MM 0.9.50 with CentOS 7, perfectly. Last week I updated MM to 0.9.52 with the help of @lmori and the proccess was completed with success. See ( https://live.paloaltonetworks.com/t5/MineMeld-Discussions/Updating-MineM...

Captura_Minemeld_0_9_52_Dashboard.PNG
Captura_Minemeld_0_9_52_Nodes.PNG
Captura_Minemeld_0_9_52_Nodes2.PNG
Captura_Minemeld_0_9_52_Nodes3.PNG

MISP -> Minemeld -> QRadar

Good morning, I can find almost this integration, however taxii server for QRadar mybe isn't the best approach. I would like to develop a connector to QRadar API, because taxii isn't so smooth dealing with data from MISP. Anyone can help? Thank you,B...

Nodes not loading

Good moorning all, I have an issue with nodes. After some hours tab nodes say loading, however it will not load. #chassis if everything ok say "2", however, when nodes stop loading it says 1. Hope to find some help. Best Regards,Tiago Santos

Issues with the MineMeld Microsoft EDL's

For the last couple of weeks we are running into an interesting issue with our Office365 EDL's. We pull the Office365 API based IP/URL list into Panorama using MineMeld. This process is working perfectly. We have compared the output within MineMeld a...

Disable HTTPS

All: I'm running MM Community edition, and for lab testing I need to disable the HTTPS redirect. I have followed the guide here, but still cannot get the HTTP-only running on the nginx: https://live.paloaltonetworks.com/t5/MineMeld-Discussions/Disabl...

KorkLM by L0 Member
  • 1683 Views
  • 1 replies
  • 0 Likes

Resolved! Atlassian custom Miner and Feed

I am trying to create a miner/feed for Atlassian IP-Ranges which they publish in a JSON file. I have configured the below and it all looks good and I have Indicators, but when I go to the feed URL it returns a blank page. I created the prototype by u...

JDomNY by L1 Bithead
  • 8646 Views
  • 5 replies
  • 1 Likes
Top Liked Authors