vrr/nDPI
2
0
Fork 0
mirror of https://github.com/vel21ripn/nDPI.git synced 2026-05-06 03:45:32 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 6
3709 commits 9 branches 12 tags 263 MiB
Commit graph

741 commits

Author SHA1 Message Date
Toni Uhlig
69ccb39741 Generate profiling results as PNG. 
* use -ltcmalloc_and_profiler and try to get rid of LD_PRELOAD=/usr/lib/x86_64-linux-gnu/libprofiler.so

Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2022-07-03 17:38:43 +02:00
lns
f2d1edbedf gprof test/CI integration 
Signed-off-by: lns <matzeton@googlemail.com>
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2022-07-03 17:38:43 +02:00
Toni
1a01e8dc68
Improved TFTP. Dissect Read/Write Request filenames. (#1617) 
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2022-07-03 14:37:05 +02:00
Toni
59b00b00a7
Fix byte-order issue during ndpiReader tcp/udp src/dst port serialization. Fixes #1608. (#1614) 
* fixed possible memory leak caused by an invalid call to `node_proto_guess_walker()` during serialization
 * execute serialization code while running regression tests

Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2022-07-03 11:16:52 +02:00
Toni
7c5c811eb0
Added Cloudflare WARP detection patterns. (#1615) (#1616) 
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2022-07-02 14:57:56 +02:00
Luca Deri
008a1790e4 Fixed SMTP default port 587 2022-07-02 11:49:22 +02:00
Toni
bb72aa4767
Added TunnelBear VPN detection patterns. (#1615) 
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2022-07-01 13:19:17 +02:00
Toni
c96f4512fa
sync unit tests (#1612) 
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2022-06-30 09:37:30 +02:00
Luca Deri
5f1caeb54e Fix after the protocol name update 2022-06-28 17:26:11 +02:00
Luca Deri
227ab5c105 Enhanced TLS risk info reported to users 2022-06-28 00:01:00 +02:00
Ivan Nardi
b2b61011ae
Fix compilation and sync unit tests results (#1606) 2022-06-20 14:27:13 +02:00
Luca Deri
ab09b8ce2e Added unidirectional traffic flow risk 2022-06-20 00:22:13 +02:00
Toni
c287eb835b
Improved SOAP via HTTP. (#1605) 
Signed-off-by: lns <matzeton@googlemail.com>
 2022-06-18 17:19:16 +02:00
Toni
6cd8f8cc6d
Improved GenshinImpact protocol dissector. (#1604) 
Signed-off-by: lns <matzeton@googlemail.com>
 2022-06-18 15:11:59 +02:00
Toni
432de5eb57
Added collectd dissector (again). (#1601) 
Signed-off-by: lns <matzeton@googlemail.com>
 2022-06-17 19:56:33 +02:00
Toni
20a29c393f
Improved IPSec/ISAKMP detection. (#1600) 
Signed-off-by: lns <matzeton@googlemail.com>
 2022-06-16 09:16:18 +02:00
Luca
c43360f8e6 Added new test pcaps 2022-06-15 18:57:46 +02:00
Ivan Nardi
e2cc08bfe5
Add support for PIM (Protocol Indipendent Multicast) protocol (#1599) 
Close #1598
 2022-06-15 12:25:26 +02:00
Toni
d1773cc8e3
Improved WhatsApp detection. (#1595) 
Signed-off-by: lns <matzeton@googlemail.com>
 2022-06-14 20:06:48 +02:00
Ivan Nardi
8dcaa5c0e1
DNS: fix TTL check and sync unit test results (#1594) 2022-06-14 09:29:16 +02:00
Luca Deri
defe7d7f79 Updated DNS alert triggered only with TTL == 0 2022-06-14 00:13:05 +02:00
Luca Deri
831562c141 Restored ndpi_set_proto_defaults() prototype 
Updated test results
 2022-06-13 23:53:32 +02:00
Luca Deri
cf5873ffd7 Improved DNS traffic analysis 
Added ability to identify application and network protocols
 2022-06-13 23:19:47 +02:00
Toni
df0ff9bcbd
Added gprof CPU/HEAP profiling support. (#1592) 
* Some small auto{conf,make} improvements

Signed-off-by: lns <matzeton@googlemail.com>
 2022-06-12 21:00:41 +02:00
Luca Deri
11babc7ea3 Added Pragmatic General Multicast (PGM) protocol detection 2022-06-08 09:11:22 +02:00
Toni
bb3c2e82de
Dissect host line if SSDP contains such. (#1586) 
Signed-off-by: lns <matzeton@googlemail.com>
 2022-06-07 11:15:47 +02:00
Toni
938e89ca33
Reimplemented 1kxun application protocol. (#1585) 
Signed-off-by: lns <matzeton@googlemail.com>
 2022-06-06 18:04:49 +02:00
Toni
0b3f8ed849
Fixed syslog false negatives. (#1582) 
- RSH vs Syslog may still happen for midstream traffic

Signed-off-by: lns <matzeton@googlemail.com>
 2022-06-05 23:01:56 +02:00
Luca Deri
59c084b166 Updated test results 2022-06-05 11:34:10 +02:00
Toni
7419cfee64
Added RSH dissector. Fixes #202. (#1581) 
- added syslog false-positive pcap that was missing in 09fbe0a64a
 - added NDPI_ARRAY_LENGTH() macro, usable on `type var[]` declarations

Signed-off-by: lns <matzeton@googlemail.com>
 2022-06-04 19:12:53 +02:00
Ivan Nardi
338427d712
Add support for GoTo products (mainly GoToMeeting) (#1580) 
There is some overlap with Citrix protocol.
 2022-06-04 14:30:52 +02:00
Toni
09fbe0a64a
Fixed syslog false positives. (#1577) 
* syslog: removed unnecessary/unreliable printable string check
 * added `ndpi_isalnum()`
 * splitted `ndpi_is_printable_string()` into `ndpi_is_printable_buffer()` and `ndpi_normalize_printable_string()`

Signed-off-by: lns <matzeton@googlemail.com>
 2022-06-03 18:21:29 +02:00
Toni
d8d806c79f
Force roaring bitmap to use ndpi memory wrappers. (#1569) 
GCC analyzer won't complain about possible use-after-free (false positive).

 * tests/do.sh prints word diff's only once and not the same over and over again
 * sync unit tests

Signed-off-by: lns <matzeton@googlemail.com>
 2022-05-31 12:06:01 +02:00
Luca Deri
354addd693 Updated risk results 2022-05-30 23:28:59 +02:00
Toni
00ee364a7e
Updated README.md (#1562) 
* make check great again (not so much)
 * make doc/doc-view
 * CI updates

Signed-off-by: lns <matzeton@googlemail.com>
 2022-05-30 19:48:05 +02:00
Toni
48065d80e9
Support word diff for tests/do.sh for better readability. (#1565) 
* Sync unit tests

Signed-off-by: lns <matzeton@googlemail.com>
 2022-05-30 17:33:03 +02:00
Toni
32750271c3
Prohibit MPEG-DASH to set HTTP as application protocol. (#1560) 
Signed-off-by: lns <matzeton@googlemail.com>
 2022-05-30 14:54:27 +02:00
Ivan Nardi
3b825fca6d
Certificate timestamps should be printed in UTC (#1563) 
This way, the CI results are consistent
 2022-05-30 13:43:05 +02:00
Luca Deri
897f8314b2 Fixed dispay bug for risk_info 2022-05-30 01:12:38 +02:00
Luca Deri
1da9f1a36f Updated tests results 
Code cleanup
 2022-05-30 00:54:17 +02:00
Ivan Nardi
9c1a53f39f
Dazn: add support for Dazn streaming service (#1559) 
Update .gitignore file
 2022-05-29 17:47:16 +02:00
Toni
33f9729ee4
Added MPEG-DASH dissector. Fixes #1223. (#1555) 
* Improved HTTP POST detection
 * Refactored subprotocol detection

Signed-off-by: lns <matzeton@googlemail.com>
 2022-05-29 13:12:13 +02:00
Toni
cfd23e8819
Fixed HTTP lower/upper protocol mess for Aimini/IPP. (#1557) 
* If HTTP was already detected, there is no need to overwrite the detection again

Signed-off-by: lns <matzeton@googlemail.com>
 2022-05-28 16:31:35 +02:00
Ivan Nardi
f81f0c5e69
Sync unit test results (#1554) 2022-05-26 20:15:30 +02:00
Luca Deri
cedbd32030 Updated SkypeCall -> Skype_TeamsCall 2022-05-26 19:27:12 +02:00
Toni
78dfe959cb
Added script to compare and verify the output of `make dist'. (#1551) 
This fixes some build/test issues resulting when using tarballs.

 * nDPI uses autotools (especially autoconf) in a wrong way, see #1163

Signed-off-by: lns <matzeton@googlemail.com>
 2022-05-26 15:07:22 +02:00
Luca Deri
4f9dee164e Improved detection of invalid SNI and hostnames in TLS, HTTP 2022-05-24 19:47:54 +02:00
Toni Uhlig
7162bf6abf Moved mgcp.pcapng to tests/pcap/ instead of tests/ 
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2022-05-16 16:54:18 +02:00
Toni
054d151373
Improved Viber (TCP) detection. (#1547) 
Signed-off-by: lns <matzeton@googlemail.com>
 2022-05-10 21:37:03 +02:00
Toni
704920414a
Improved Xiaomi HTTP detection. (#1546) 
* Merged Xiaomi pcap files

Signed-off-by: lns <matzeton@googlemail.com>
 2022-05-10 11:10:04 +02:00