Malcolm v2.4.2 contains the following changes:
- Added code to allow periodic updates of Yara and Capa rules in addition to ClamAV rules for file scanners
- Bump to Arkime (Moloch up until recently) 2.7.1 and all possible related user-facing code/documentation changed
- Bump kernel to 5.9.0 for ISO installer
- minor bug fixes and documentation tweaks
Malcolm and Hedgehog Linux may be obtained by pulling or building the Docker images and/or building the ISO installer images as described in the documentation. Unofficial ISO installer images for Malcolm and Hedgehog Linux are not hosted on GitHub, but may be downloaded from https://malcolm.fyi/download/.