MineMeld Discussions
cancel
Showing results for 
Search instead for 
Did you mean: 
MineMeld Discussions
About MineMeld Discussions

Welcome to the MineMeld discussion forum. Please feel free to ask questions and engage with other community members. Ideas, questions, research, and observations regarding MineMeld are all actively encouraged.

Note: Participation in the discussion forum requires a Live Community account. Registration is free and easy! Simply click here to sign up.

Forum Posts

Deploying Minemeld Using Vagrant and Virtualbox

Hello All, Based on @lmori's great guide for doing a manual install of Minemeld on Ubuntu 14.04, I have taken his configurations and wrapped them in a Vagrantfile for easy foolproof deployment of Minemeld. It's a simple 3 step process: Install latest...

nbilal by L3 Networker
  • 10011 Views
  • 2 replies
  • 9 Likes

Resolved! Zero indicators in inboundfeed

I am trying out minemeld and I started by adding miner (zeustracker.badips) and removing the default dshield and spam nodes. Before removal inbound feeds were showing subnet ranges/indicators. After removal there is not a single ip. processor shows R...

raji_toor by L4 Transporter
  • 2731 Views
  • 3 replies
  • 0 Likes

Resolved! Minemeld List or Miner for a static list of IPs/URLs

Creating this post based on another thread. In a previous post's comment section, @spssspss asked "Is it possible to create a white list from an IPs address file?" and Luigi requested a new post be created for this functionality.. Can a list of IPs o...

chmotley by L2 Linker
  • 4704 Views
  • 2 replies
  • 0 Likes

IPsum: Daily publicly feed of bad IPs

IPsum is a threat intelligence feed based on 30+ different publicly available lists of suspicious and/or malicious IP addresses. All lists are automatically retrieved and parsed on a daily (24h) basis and the final result is pushed to this repository...

Resolved! How to make a passive miner

How would one create a miner that listenes for data instead of actively retrieve it ? (For example a miner that serves a rest endpoint so another application can send data to it)

Minemeld PA syslog processing

Hi, I installed Minemeld. I'm now trying to mine the PA traffic logs via syslog. It seems that the processing works but no indicators are extracted? The PA is running 7.1.13 and sending the syslog messages on TCP port 13514 to the Minemeld server.I a...

image.png
jorisVD by L1 Bithead
  • 1291 Views
  • 1 replies
  • 0 Likes

Talos Blacklist

I am trying to create a miner/processor/output nodes for the talos black list ( https://talosintelligence.com/documents/ip-blacklist ) and am failing. Has anyone got this to work?

Hal_Blum by L0 Member
  • 3764 Views
  • 2 replies
  • 0 Likes

Minemeld eth0 loses connectivity

Installed Minemeld on Ubuntu Trusty in ESXi with no issues; however, soemtimes when navigating within the Minemeld gui, I lose network connectivity. The only way to fix thus far is to ping the gateway from the console. Any ideas what I may have done ...

Top Solution Authors
Top Liked Authors