Add the functionality to collect from AWS cloudtrail and parse aws logs.

Add the functionality to collect from azure event hubs and parse azure logs.

Please make geo-location data available for generic syslog report type. We have configured a regex token for source IP and it would be nice to display geo info for the field. Thanks.

It would be helpful to have a Private Enterprise Number (PEN) assigned to Snare and/or Prophecy to identify outbound traps. 24 is a really generic OID to use as default.

Application can be made at: https://pen.iana.org/pen/PenApplication.page

This could populate the trap SNMP OID in the config wizzard, and also be used in the snmpd.conf to identify the polled servers as Snare instead of generic Net-SNMP.

It does not require any changes in design, simple config items.

Ability to export data from the event search module to a pdf file or txt file or csv file.

SNMP enabled for query on the Snare Server to monitor health of our Snare server.

Allow the Snare Central Server to enable FIPS compliance mode. This will restrict all encryption methods to only use they approved encryption algorithms.

Pattern Map Details in reports do not allow selection of columns. Certain fields such as DETAILS and STRING are large and take up a large amount of screen estate.

Although the Tabular details allows inclusion or exclusion of fields the Pattern Map’s details does not allow that customization and shows fields that are not desired.

Snare Central does not currently have an option to save logs in an uncompressed format.

Need to show how much data is being reflected in executive reports. The current Snare Central Reflector page only shows a rolling 24 hour volume.

Have a multi tenant Snare Central server in the cloud to send my own events