On the Sessions tab you can view indexed sessions for the selected time period.
The search bar allows for powerful search queries to narrow down the data. Click the owl for available fields.
Get more information about any session and view the session's packet data by clicking the green "+" button.
Click any of the links in the session information to apply search criteria.
Click and drag an area in the timeline to filter sessions by time.
You can export search results as PCAP or CSV by clicking the "Actions" drop down menu on the top right.
The SPI View tab allows you you to view unique values with session counts for each of the captured fields. Change your search query or selected time period to limit results.
Click any row to expand its contents.
Click any of the links in the expanded section to apply search criteria. Right click for more options!
The SPI Graph tab shows a temporal view for the top unique values of any field.
Click and drag an area in the timeline to filter statistics by time.
Make a selection from the SPI Graph drop down to view the unique values for different fields.
On the Connections tab you can view a network graph of your search results.
Click and drag a node to lock it into place in the graph.
Click on a node to view more information or hide it.
Make a selection from the Src and Dst drop downs to visualize your data based upon different captured field relationships.
On the Stats tab you can view statistics about each Molcoh capture node and Elasticsearch node.
Click on a table header to sort the table.
Enter text into the node filter input box to search the results.
|Moloch 0.16.1||Ubuntu 14.04 deb||Ubuntu 16.04 deb||CentOS 6 rpm||CentOS 7 rpm|
|Moloch 0.16.0||Ubuntu 14.04 deb||Ubuntu 16.04 deb||CentOS 6 rpm||CentOS 7 rpm|
|Moloch 0.15.1||Ubuntu 14.04 deb||Ubuntu 16.04 deb||CentOS 6 rpm|
|Moloch 0.15.0||Ubuntu 14.04 deb||Ubuntu 16.04 deb||CentOS 6 rpm|
|Nightly Builds||Ubuntu 14.04 deb||Ubuntu 16.04 deb||CentOS 6 rpm||CentOS 7 rpm|