vrr/nDPI
2
0
Fork 0
mirror of https://github.com/vel21ripn/nDPI.git synced 2026-04-30 07:59:49 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 5
3155 commits 9 branches 12 tags 263 MiB
Commit graph

427 commits

Author SHA1 Message Date
Luca Deri
b2c24558c5 DGA detection improvements 2020-06-18 00:17:30 +02:00
Luca Deri
46d96e7f32 Added checks for DGA detection 2020-06-17 19:46:37 +02:00
Luca Deri
55364ef0b4 Added DGA risk for names that look like a DGA 2020-06-11 18:51:53 +02:00
Luca Deri
60aaa80570 Added HyperLogLog cardinality estimator API calls 
/* Memory lifecycle */
int ndpi_hll_init(struct ndpi_hll *hll, u_int8_t bits);
void ndpi_hll_destroy(struct ndpi_hll *hll);

/* Add values */
void ndpi_hll_add(struct ndpi_hll *hll, const char *data, size_t data_len);
void ndpi_hll_add_number(struct ndpi_hll *hll, u_int32_t value) ;

/* Get cardinality estimation */
double ndpi_hll_count(struct ndpi_hll *hll);
 2020-06-10 23:43:35 +02:00
Luca Deri
43ddbfdfba Merge branch 'dev' of https://github.com/ntop/nDPI into dev 2020-06-06 11:30:47 +02:00
Luca Deri
801c9481cb Removed some obsolete protocols (battlefield, oscar, pcanywhere, tvants) 2020-06-06 11:29:03 +02:00
Alfredo Cardigliano
2beecdc8af Handle EOR in TLV test 2020-06-06 11:18:17 +02:00
Luca Deri
605d548d4a removed obsolete yahoo plugin 2020-06-06 09:38:19 +02:00
Alfredo Cardigliano
0da76fdac6 Support for multiple records in CSV serialization 2020-06-05 17:28:27 +02:00
Alfredo Cardigliano
67c72a8cb5 Add ndpi_serializer_get_header API (CSV only) 2020-06-05 16:52:26 +02:00
Luca Deri
9c3bfeca80 Added support for Encrypted TLS SNI dissection 
https://datatracker.ietf.org/doc/draft-ietf-tls-sni-encryption/
 2020-05-28 17:44:18 +02:00
Alfredo Cardigliano
2dce6cd525 Add ndpi_serialize_start_of_list/ndpi_serialize_end_of_list to serialize simple lists in JSON 2020-05-25 16:37:00 +02:00
Luca Deri
b7e666e465 Added fix to avoid potential heap buffer overflow in H.323 dissector 
Modified HTTP report information to make it closer to the HTTP field names
 2020-05-19 08:31:05 +02:00
Luca Deri
3d9285f1be Added check for invalid HTTP URLs 2020-05-16 00:10:35 +02:00
Luca Deri
c375782b96 Added check for binary scripts 
Added NDPI_HTTP_NUMERIC_IP_HOST risk
ndpi_risk moved to 32 bit
 2020-05-15 22:49:55 +02:00
Luca Deri
e5e69d0f7a Added the ability to detect when a known protocol is using a non-standard port 
Added check to spot executables exchanged via HTTP
 2020-05-10 21:25:38 +02:00
Luca Deri
4a09b4efa0 Added TLS issuerDN and subjectDN 2020-05-07 18:44:51 +02:00
Nardi Ivan
c2ebbb15ad Fix "division by zero" runtime error 2020-04-23 14:24:49 +02:00
Nardi Ivan
b1a6c6b895 Fix some compilation warnings 2020-04-20 16:53:39 +02:00
Alexander Czyrny
32ab88a26e
Fix for missing line breaks in CSV file 
If "-v" is used as an argument, the line breaks are missing in the csv file ("-C"), because the argument "-J" is assumed. Moving the condition for the CSV file handler out of the scope of the "enable_joy_stats" condition removes this dependency and the CSV file is formatted correctly.
 2020-04-15 10:12:37 +02:00
Nardi Ivan
e84563f971 ndpiReader: fix memory leak in idle sessions purging 2020-04-08 15:15:34 +02:00
Nardi Ivan
a60854bae6 Fix some debug messages 2020-04-08 15:15:34 +02:00
Luca Deri
db8497778d Fixes #853 and adds a self check for duplicates 2020-04-07 19:17:37 +02:00
Luca Deri
fdf8dd724f Minor fix 2020-02-17 22:15:36 +01:00
emanuele-f
fd94270507 Remove decimals in test results for IAT, packet lengths and goodput ratio 2020-02-14 11:42:20 +01:00
Luca Deri
88fc9232ff Code improvements 2020-02-04 22:31:02 +01:00
MrTiz9
daa1171593 nDPI now detect RCE in HTTP GET requests 2020-01-24 17:16:18 +01:00
Luca Deri
283588a37b Crash fix when not using CSV output 2020-01-19 20:50:23 +01:00
Luca Deri
9f7b1c84f2
Merge pull request #829 from vitalivanov/pull_warning_vit 
example: fix build warning.
 2020-01-14 16:36:51 -08:00
Alfredo Cardigliano
e1047b324b Fix misleading error message 2020-01-14 10:57:05 +01:00
Vitaliy Ivanov
24f2cd6fc1 example: fix build warning. 
ndpiReader.c:24:0: warning: "_GNU_SOURCE" redefined
 #define _GNU_SOURCE
<command-line>:0:0: note: this is the location of the previous definition

Signed-off-by: Vitaliy Ivanov <vitaliyi@interfacemasters.com>
 2020-01-13 16:15:58 +02:00
Luca Deri
5571ce114d Added flow extra info field 
Updated tests/results
 2020-01-10 22:21:16 +01:00
Luca Deri
ef16591f3f Merge branch 'dev' of https://github.com/ntop/nDPI into dev 2020-01-05 18:25:44 +01:00
Luca Deri
29dd45838d Updated (C) 2020-01-05 18:24:58 +01:00
emanuele-f
798bb6e2e1 Fix leaks and sha1 certificate detection 2020-01-02 14:39:51 +01:00
Luca
634457615c Updated TLS support 2020-01-02 10:47:23 +01:00
Luca
daae1cc9b1 Reworked TLS dissection 2020-01-01 12:59:19 +01:00
Luca
9fb3a57a71 Kerberos fixes 
Minor TLS cleanup
 2019-12-29 10:45:42 +01:00
Luca Deri
81012b3201 CSV output enhancements 2019-12-13 12:50:52 +01:00
Luca Deri
406aa12468 Fixed CSV output 2019-12-13 09:45:34 +01:00
Luca
2c2bb11c9b Fixed output format 2019-12-11 11:27:00 +01:00
Luca Deri
1bd63d68a5 CSV export improvements 2019-12-11 09:45:14 +01:00
Luca Deri
65d526d8f6 Code cleanup 2019-12-09 15:28:44 +01:00
Luca Deri
c4d476cc58 Code improvements 2019-12-09 00:29:02 +01:00
Luca Deri
23b0b8625d Minor changes to the IDS score calculation 2019-12-09 00:11:32 +01:00
Luca Deri
558983c99c
Merge pull request #813 from SimoneRicci97/dev 
Fixed intrusion detection
 2019-12-09 00:01:09 +01:00
Simone Ricci
a65c959940 Fixed intrusion detection 2019-11-26 21:20:22 +01:00
Luca Deri
fc82cdfa4a Implemented telnet password export 2019-11-21 19:36:01 +01:00
Luca Deri
a58c838c4c Added flow duration and goodput in output (-v and -c) 2019-11-21 13:31:56 +01:00
Luca Deri
51cfdfb0d8 Removed unused JSON-C code 2019-11-17 17:51:45 +01:00