MineMeld Discussions
cancel
Showing results for 
Search instead for 
Did you mean: 
MineMeld Discussions
About MineMeld Discussions

Welcome to the MineMeld discussion forum. Please feel free to ask questions and engage with other community members. Ideas, questions, research, and observations regarding MineMeld are all actively encouraged.

Note: Participation in the discussion forum requires a Live Community account. Registration is free and easy! Simply click here to sign up.

Forum Posts

Deploying Minemeld Using Vagrant and Virtualbox

Hello All, Based on @lmori's great guide for doing a manual install of Minemeld on Ubuntu 14.04, I have taken his configurations and wrapped them in a Vagrantfile for easy foolproof deployment of Minemeld. It's a simple 3 step process: Install latest...

nbilal by L3 Networker
  • 9980 Views
  • 2 replies
  • 9 Likes

Resolved! About last 30days query.

Hello Here is a qurery about last 30days. I just would like to change started date/time automatically when Minemeld do the query. {"operator":"all","children":[{"field":"sample.malware","operator":"is","value":1},{"operator":"all","children":[{"field...

Resolved! Miner for host file format.

Is there a miner + documentation on how to get it working for a host file list? i.e. https://raw.githubusercontent.com/StevenBlack/hosts/master/hosts This tool was recommended by Palo Alto for a project we are working on, howver the documentation on ...

PowerMM - Powershell Utility for MineMeld

A Powershell-based graphical user interface utility for MineMeld. Additional functionality may be added over time. Currently the script supports uploading the following types of indicators: IPv4 (IP/CIDR) Domain URL Features: Rapid indicator ingestio...

Resolved! Outputs Limit! Service restart loop @ 30+

So the title is a slight misnomer.Have a dev server with 59 miners, 42 procs, and 32 outputs, works fine.Have a prod server with 58 miners 41 procs and 29 outputs, does not work fine. The two devices are set up with "identical" configs the dev server...

0isac0 by L1 Bithead
  • 2031 Views
  • 5 replies
  • 0 Likes

Minemeld RBAC

Are there any plans to incorporate RBAC? There is a use-case for having different teams manage different miners (think manual entries) to a consolidated output node.

jchitsaz by L1 Bithead
  • 1352 Views
  • 0 replies
  • 1 Likes

DROP_UPDATE

Hi, I've just created a new node and I'm seeing events such us: DROP_UPDATE on aggregator type. Does anybody have an idea of what could be the issue?

Resolved! Zero indicators in inboundfeed

I am trying out minemeld and I started by adding miner (zeustracker.badips) and removing the default dshield and spam nodes. Before removal inbound feeds were showing subnet ranges/indicators. After removal there is not a single ip. processor shows R...

raji_toor by L4 Transporter
  • 2721 Views
  • 3 replies
  • 0 Likes
Top Solution Authors
Top Liked Authors