vrr/nDPI
2
0
Fork 0
mirror of https://github.com/vel21ripn/nDPI.git synced 2026-05-02 00:40:17 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 5
4990 commits 9 branches 12 tags 263 MiB
Commit graph

4990 commits

This branch
This branch
All branches
Author SHA1 Message Date
Ivan Nardi
43f7dc9ba0
fuzz: extend fuzzing coverage (#2626) 2024-11-20 13:36:41 +01:00
Ivan Nardi
c5bd9d8bff
RTP, STUN: improve detection of multimedia flow type (#2620) 
Let's see if we are able to tell audio from video calls only looking at
RTP Payload Type field...
 2024-11-19 16:38:14 +01:00
Ivan Nardi
c228502cb4
Small updates on domains list (#2623) 
See #2595 (no sure about the best way to handle the two domains about
games...)
 2024-11-18 17:54:59 +01:00
Alfredo Cardigliano
2dbf6b3cf8 Remove unused variable 2024-11-18 16:55:50 +01:00
Ivan Nardi
2e2f08cd87
Zoom: fix heap-buffer-overflow (#2621) 
```
=================================================================
==30923==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x50400023cc34 at pc 0x591f8b5dd546 bp 0x7ffe5ffc3530 sp 0x7ffe5ffc3528
READ of size 1 at 0x50400023cc34 thread T0
    #0 0x591f8b5dd545 in is_sfu_5 /home/ivan/svnrepos/nDPI/src/lib/protocols/zoom.c:146:6
    #1 0x591f8b5dda11 in zoom_search_again /home/ivan/svnrepos/nDPI/src/lib/protocols/zoom.c:166:6
    #2 0x591f8b22182f in ndpi_process_extra_packet /home/ivan/svnrepos/nDPI/src/lib/ndpi_main.c:8156:9
    #3 0x591f8b236f88 in ndpi_internal_detection_process_packet /home/ivan/svnrepos/nDPI/src/lib/ndpi_main.c:8793:5
```
Found by oss-fuzz
See: https://issues.oss-fuzz.com/issues/379072455
 2024-11-18 13:20:42 +01:00
Ivan Nardi
d7d942586a
ndpiReader: fix statistic about total number of flows (#2622) 
When capturing live traffic, accounting and export of expired flows is
 wrong (see #2617).
Let's try to fix some statistics, at least
 2024-11-18 13:01:53 +01:00
Toni
f2ef6e1d18
Debian/Ubuntu packaging: use --enable-no-sign to build *.deb packages w/o signing those (#2616) 
* can be used for local and CI builds

Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2024-11-18 09:17:14 +01:00
Vladimir Gavrilov
5afdf2db69
Fix MSBuild (#2619) 2024-11-18 09:16:35 +01:00
Luca Deri
de8c326cd2 Added ndpi_intoav6() 
Implemented Mikrotik JSON serialization
 2024-11-17 10:07:29 +01:00
Luca Deri
35f37c38d9 Heap overflow fix 2024-11-16 09:36:29 +01:00
Luca Deri
95bf287c02 Results update 2024-11-16 09:27:08 +01:00
Luca
4fd12278b1 Added DICOM support 
Testing pcaps courtesy of https://github.com/virtalabs/tapirx.git
 2024-11-15 18:45:51 +01:00
Luca Deri
3ce8d0e508
Implemented Mikrotik discovery protocol dissection and metadata extraction (#2618) 2024-11-14 23:34:31 +01:00
Luca
dfc3168caf Cosmetic change 2024-11-14 11:57:32 +01:00
Ivan Nardi
59ee1fe115
Add support for some Chinese shopping platforms (Temu, Shein and Taobao) (#2615) 
Extend content match list
 2024-11-12 20:11:07 +01:00
Luca Deri
755bce2eb7 Added "make pull" 2024-11-12 18:34:24 +01:00
Ivan Nardi
1bda2bf414 SIP: extract some basic metadata 2024-11-12 13:34:25 +01:00
Ivan Nardi
6ff71aa6be SIP: rework detection 2024-11-12 13:34:25 +01:00
Toni
ccbbcdf283
Unify ndpi debug logging to always use a u16 protocol id (#2613) 
* fixes SonarCloud complaint

Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2024-11-11 15:17:33 +01:00
Luca Deri
35ef56cc24 Crash fix when -f is specified with a non-existing pcap file (-i) 2024-11-04 22:14:09 +01:00
Luca Deri
183175fc6b Exported is_ndpi_proto definition 2024-11-04 22:02:13 +01:00
Luca Deri
4e18a56d61 Heap-buffer-overflow fix 2024-11-04 08:34:01 +01:00
Ivan Nardi
b63f74a080
fuzz: improve coverage (#2612) 
Add fuzzer to test `ndpi_quick_encrypt()` and `ndpi_quick_decrypt()`
 2024-11-01 18:17:22 +01:00
Vladimir Gavrilov
137d87fd87
Add Naver protocol support (#2610) 2024-11-01 14:56:25 +01:00
Ivan Nardi
a903932155
HTTP: fix leak and out-of-bound error on credential extraction (#2611) 2024-11-01 13:11:06 +01:00
Luca Deri
21c968f414 Increased "struct ndpi_flow_struct" size 2024-10-31 21:54:38 +01:00
Luca Deri
412ca8700f Added HTTP credentials extraction 2024-10-31 21:20:46 +01:00
Alfredo Cardigliano
bcc1874e58 Update buff_diff 2024-10-31 18:54:57 +01:00
Alfredo Cardigliano
9009d207d8 Fix blocks with inner-json mode 2024-10-31 18:14:56 +01:00
Alfredo Cardigliano
8ad34b381c Add new json serialization type ndpi_serialization_format_inner_json 2024-10-31 17:36:44 +01:00
Luca
a97a130e59 TikTok cleanup 2024-10-30 15:34:52 +01:00
Luca
0d4c1e9179 DNS reponse addresses are now serialized in JSON 2024-10-30 12:54:02 +01:00
Luca Deri
ed479e5bad Syntax fix (missing comma) 2024-10-29 12:43:05 +01:00
Ivan Nardi
9da99075aa
TLS: export heuristic fingerprint as metadata (#2609) 2024-10-28 23:36:51 +01:00
Vladimir Gavrilov
dc125dc2a8
Add Paltalk protocol support (#2606) 2024-10-28 16:57:05 +01:00
Luca Deri
7abe7c50ba Added ndpi_str_endswith() 2024-10-28 13:24:54 +01:00
Luca Deri
ecd3c734d0 Rename 2024-10-28 12:55:18 +01:00
Luca Deri
fecc378e04 Added DHCP fingerprint 
Minor fixes
 2024-10-27 22:05:15 +01:00
Luca Deri
d5236c0aaf Fixes TCP fingerprint calculation when multiple EOL are specified in TCP options 2024-10-27 08:17:27 +01:00
Luca Deri
925bd2f482 Fingerprint update 2024-10-27 07:48:34 +01:00
Luca Deri
14c060bfa0 Updated fingerprints 2024-10-27 07:13:08 +01:00
Luca Deri
1bc204360a Added dha directory to dist target 2024-10-27 07:13:08 +01:00
Luca Deri
80487fe9df
Added reference to the new DGA model 2024-10-26 21:20:48 +02:00
Luca Deri
4481ecd4c0
Added reference to the existing nDPI DGA code 2024-10-26 21:19:11 +02:00
Luca Deri
f5d903caad Moved new DGA code 2024-10-26 21:15:36 +02:00
Luca Deri
0fb30c857d Not necessary 2024-10-26 21:07:12 +02:00
YellowMan
dba105291c added dga ml tests file to EXTRA_DIST 2024-10-26 20:32:11 +02:00
YellowMan
551941ea4d ml tests for dga detection 2024-10-26 19:04:20 +02:00
Luca Deri
3b1286ab03 Added Ubuntu 20 fingerprint 2024-10-21 19:25:46 +02:00
Ivan Nardi
a55d8d95bc
ndpiReader: fix command line options used by wireshark (#2605) 2024-10-21 18:26:28 +02:00