0008073: arkime - large-scale, open-source, indexed packet capture and search tool.

ID	Project	Category	View Status	Date Submitted	Last Update

0008073	Kali Linux	[All Projects] New Tool Requests	public	2022-11-29 10:28	2023-03-21 13:18

Reporter	g0tmi1k	Assigned To	sbrun
Priority	normal	Severity	minor	Reproducibility	have not tried
Status	resolved	Resolution	fixed
Product Version
Target Version		Fixed in Version	2023.2

Summary	0008073: arkime - large-scale, open-source, indexed packet capture and search tool.
Description	Name: arkime Homepage: https://arkime.com/ Download: https://github.com/arkime/arkime/tags Description: Arkime (formerly Moloch) is an open source, large scale, full packet capturing, indexing, and database system. Arkime augments your current security infrastructure to store and index network traffic in standard PCAP format, providing fast, indexed access. An intuitive and simple web interface is provided for PCAP browsing, searching, and exporting. Arkime exposes APIs which allow for PCAP data and JSON formatted session data to be downloaded and consumed directly. Arkime stores and exports all packets in standard PCAP format, allowing you to also use your favorite PCAP ingesting tools, such as wireshark, during your analysis workflow. Arkime is built to be deployed across many systems and can scale to handle tens of gigabits/sec of traffic. PCAP retention is based on available sensor disk space. Metadata retention is based on the Elasticsearch cluster scale. Both can be increased at anytime and are under your complete control.

Date Modified	Username	Field	Change
2022-11-29 10:28	g0tmi1k	New Issue
2022-12-16 15:10	sbrun	Assigned To	=> sbrun
2022-12-16 15:10	sbrun	Status	new => assigned
2023-01-10 14:42	sbrun	Note Added: 0017389
2023-03-21 13:18	sbrun	Status	assigned => resolved
2023-03-21 13:18	sbrun	Resolution	open => fixed
2023-03-21 13:18	sbrun	Fixed in Version	=> 2023.2

sbrun 2023-01-10 14:42 manager ~0017389	arkime version 4.0.3-0kali1 is available for test