vrr/nDPI
2
0
Fork 0
mirror of https://github.com/vel21ripn/nDPI.git synced 2026-05-06 03:45:32 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 6
2534 commits 9 branches 12 tags 263 MiB
Commit graph

1533 commits

Author SHA1 Message Date
Luca Deri
cf9c0b96b8 Indent 2020-06-30 16:25:53 +02:00
Alfredo Cardigliano
ea6332e004 Fix segfault on ndpi_guess_protocol_id with flow = null 2020-06-30 15:54:52 +02:00
Luca Deri
392ce44573 Added ndpi_print_bin() API call 2020-06-29 22:36:46 +02:00
Luca Deri
2c263bc726 Added ndpi_bin_similarity() for computing bin similarity 2020-06-29 19:09:38 +02:00
Nardi Ivan
d6a97219ea Fix use-after-free in http content parsing 2020-06-28 12:05:12 +02:00
Nardi Ivan
3669c14afd DNP3: add missing initialization 2020-06-28 12:05:12 +02:00
Nardi Ivan
b68b45f3bb TLS: extract JA3 signatures in some corner cases 
In some (rare) cases, Client Hello message contains lots of cipher
suits.
 2020-06-28 12:05:12 +02:00
Toni Uhlig
fbfa54eee6
Fixed off-by-one error in h323. 
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2020-06-27 22:58:05 +02:00
Luca Deri
b5f3facf7c Added notes whenever a new flow risk is added 2020-06-26 23:39:48 +02:00
Luca Deri
8566288e43 Added malformed packet risk support 2020-06-26 22:37:52 +02:00
Luca Deri
8de62c6d34 Values stored in patricia tree are now 32 bit (they used to be 16 bit) long 2020-06-26 17:49:45 +02:00
lucaderi
3034e53d00 CentOS6 fix (santize won't work as too old system) 
Fixes warning
 2020-06-25 10:22:16 +02:00
Luca Deri
d710b8291d
Merge pull request #927 from lnslbrty/fix/fbzero-missing-length-check 
Fixed missing length check in fbzero.
 2020-06-24 22:17:35 +02:00
Toni Uhlig
ca68beda85
Fixed missing length check in fbzero. 
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2020-06-23 18:35:50 +02:00
Toni Uhlig
2f5766d2f5
Added hulustream SNI pattern. Fixes #904. 
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2020-06-23 17:30:37 +02:00
Luca Deri
d9af1562f0 Fixes #906 
Packet bins are not printed wehn empty
 2020-06-22 14:30:26 +02:00
Luca Deri
c9d8efc2a4 Warning fix 2020-06-22 10:20:05 +02:00
Luca Deri
1a62f4c799 Added ndpi_bin_XXX API 
Added packet lenght distribution bins
 2020-06-22 01:02:54 +02:00
Toni Uhlig
6a9f5e4f7c
Fixed use after free caused by dangling pointer 
* This fix also improved RCE Injection detection

Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2020-06-21 20:05:38 +02:00
Luca Deri
fd0591b4fc
Merge pull request #920 from lnslbrty/fix/tls-rdn-crash 
Fixed stack overflow caused by missing length check
 2020-06-19 11:44:37 +02:00
Luca Deri
63670927e7 Fixed API documentation: packet tiestamp is expressed in milliseconds 2020-06-18 14:15:18 +02:00
Toni Uhlig
23594f0365
Fixed stack overflow caused by missing length check 
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2020-06-18 00:52:04 +02:00
Luca Deri
b2c24558c5 DGA detection improvements 2020-06-18 00:17:30 +02:00
Luca Deri
46d96e7f32 Added checks for DGA detection 2020-06-17 19:46:37 +02:00
Luca Deri
ffd20ebdf9
Merge pull request #919 from lnslbrty/new/protocol/anydesk 
Implemented proprietary AnyDesk protocol
 2020-06-17 06:47:35 +02:00
Toni Uhlig
da37f2444f
Implemented proprietary AnyDesk protocol 
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
 2020-06-17 01:23:03 +02:00
Alfredo Cardigliano
073e3a027b Add API ndpi_serializer_get_format 2020-06-16 18:40:17 +02:00
Luca Deri
0ddc3a0052 Fixed invalid assignment (typo) 2020-06-14 09:37:56 +02:00
Luca Deri
38e4910636 Added improved boundary check 2020-06-14 09:29:52 +02:00
Luca Deri
55364ef0b4 Added DGA risk for names that look like a DGA 2020-06-11 18:51:53 +02:00
Luca Deri
60aaa80570 Added HyperLogLog cardinality estimator API calls 
/* Memory lifecycle */
int ndpi_hll_init(struct ndpi_hll *hll, u_int8_t bits);
void ndpi_hll_destroy(struct ndpi_hll *hll);

/* Add values */
void ndpi_hll_add(struct ndpi_hll *hll, const char *data, size_t data_len);
void ndpi_hll_add_number(struct ndpi_hll *hll, u_int32_t value) ;

/* Get cardinality estimation */
double ndpi_hll_count(struct ndpi_hll *hll);
 2020-06-10 23:43:35 +02:00
Luca Deri
64fab4a478 Win fixes 2020-06-08 23:08:12 +02:00
Luca Deri
3506a07864 Added check in TLS 1.2+ for reporting a risk when TLS is not used to carry HTTPS 2020-06-08 14:20:10 +02:00
Luca Deri
d318285cae Added HTTP check 2020-06-07 09:46:27 +02:00
Luca Deri
1479c0a278 Added TLS bounadry check 2020-06-07 09:25:19 +02:00
Luca Deri
43ddbfdfba Merge branch 'dev' of https://github.com/ntop/nDPI into dev 2020-06-06 11:30:47 +02:00
Luca Deri
801c9481cb Removed some obsolete protocols (battlefield, oscar, pcanywhere, tvants) 2020-06-06 11:29:03 +02:00
Alfredo Cardigliano
2beecdc8af Handle EOR in TLV test 2020-06-06 11:18:17 +02:00
Luca Deri
605d548d4a removed obsolete yahoo plugin 2020-06-06 09:38:19 +02:00
Alfredo Cardigliano
0da76fdac6 Support for multiple records in CSV serialization 2020-06-05 17:28:27 +02:00
Luca Deri
597d6e5d60
Merge pull request #913 from yskcg/fix_segment_fault_dev 
Fix segment fault dev
 2020-06-05 16:57:46 +02:00
Alfredo Cardigliano
67c72a8cb5 Add ndpi_serializer_get_header API (CSV only) 2020-06-05 16:52:26 +02:00
Luca Deri
07c54f9992 Added ndpi_dpi2json() API call 2020-06-05 16:08:23 +02:00
Luca Deri
16ca69733a Improved teamviewer detection 2020-06-03 10:14:27 +02:00
ysk
40550073ef fix segment fault cause by the ssl.server_names when it may NULL 2020-06-03 11:19:37 +08:00
ysk
86a3dc5bea Merge branch 'dev' of github.com:yskcg/nDPI into dev 2020-06-03 10:41:40 +08:00
Luca Deri
5afa3ad818 Improved spotify detection 2020-06-02 15:00:14 +02:00
Luca Deri
af2a44ae5f Added boundary check in kerberos protocol 2020-06-01 18:22:10 +02:00
Luca Deri
241af016e9 Added check for spotify payload lenght 2020-06-01 16:36:12 +02:00
Luca Deri
16dc0ec29e Check to avoid allocating twice the esni memory 2020-06-01 16:34:24 +02:00