View Issue Details

IDProjectCategoryView StatusLast Update
0008073Kali LinuxQueued Tool Additionpublic2023-08-16 13:34
Reporterg0tmi1k Assigned Tosbrun  
PrioritynormalSeverityminorReproducibilityhave not tried
Status resolvedResolutionfixed 
Fixed in Version2023.2 
Summary0008073: arkime - large-scale, open-source, indexed packet capture and search tool.

Name: arkime
Description: Arkime (formerly Moloch) is an open source, large scale, full packet capturing, indexing, and database system.

Arkime augments your current security infrastructure to store and index network traffic in standard PCAP format, providing fast, indexed access. An intuitive and simple web interface is provided for PCAP browsing, searching, and exporting. Arkime exposes APIs which allow for PCAP data and JSON formatted session data to be downloaded and consumed directly. Arkime stores and exports all packets in standard PCAP format, allowing you to also use your favorite PCAP ingesting tools, such as wireshark, during your analysis workflow.

Arkime is built to be deployed across many systems and can scale to handle tens of gigabits/sec of traffic. PCAP retention is based on available sensor disk space. Metadata retention is based on the Elasticsearch cluster scale. Both can be increased at anytime and are under your complete control.




2023-01-10 14:42

manager   ~0017389

arkime version 4.0.3-0kali1 is available for test

Issue History

Date Modified Username Field Change
2022-11-29 10:28 g0tmi1k New Issue
2022-12-16 15:10 sbrun Assigned To => sbrun
2022-12-16 15:10 sbrun Status new => assigned
2023-01-10 14:42 sbrun Note Added: 0017389
2023-03-21 13:18 sbrun Status assigned => resolved
2023-03-21 13:18 sbrun Resolution open => fixed
2023-03-21 13:18 sbrun Fixed in Version => 2023.2
2023-08-16 13:34 g0tmi1k Category New Tool Requests => Queued Tool Addition