vrr/nDPI
2
0
Fork 0
mirror of https://github.com/vel21ripn/nDPI.git synced 2026-05-05 19:15:12 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 6
2937 commits 9 branches 12 tags 263 MiB
Commit graph

55 commits

Author SHA1 Message Date
Luca Deri
dd75060932 Fixed false positive in suspicous user agent 
Optimized stddev calculation
 2020-08-30 12:25:15 +02:00
Luca Deri
e71df49b3e Changed due to bin size extension 2020-07-30 00:06:46 +02:00
Luca Deri
879cec94b2 User agent detection improvements 2020-07-21 12:06:34 +02:00
Luca Deri
12abcd516b Updated test results due to bin changes 2020-07-09 17:28:02 +02:00
Luca Deri
d9af1562f0 Fixes #906 
Packet bins are not printed wehn empty
 2020-06-22 14:30:26 +02:00
Luca Deri
1a62f4c799 Added ndpi_bin_XXX API 
Added packet lenght distribution bins
 2020-06-22 01:02:54 +02:00
Luca Deri
3506a07864 Added check in TLS 1.2+ for reporting a risk when TLS is not used to carry HTTPS 2020-06-08 14:20:10 +02:00
Luca Deri
b7e666e465 Added fix to avoid potential heap buffer overflow in H.323 dissector 
Modified HTTP report information to make it closer to the HTTP field names
 2020-05-19 08:31:05 +02:00
Luca Deri
ee15c6149d Added TLS weak cipher and obsolete protocol version detection 2020-05-10 21:55:35 +02:00
Luca Deri
e5e69d0f7a Added the ability to detect when a known protocol is using a non-standard port 
Added check to spot executables exchanged via HTTP
 2020-05-10 21:25:38 +02:00
emanuele-f
fd94270507 Remove decimals in test results for IAT, packet lengths and goodput ratio 2020-02-14 11:42:20 +01:00
Luca Deri
0703ab5ac5 Improved DNS response decoding 
The first decoded address is now reported by ndpiReader
 2020-02-04 22:16:54 +01:00
Luca Deri
e98b994a39 Updated results 2019-11-21 13:35:04 +01:00
Luca
4802987178 Initial work towards HTTP content-type export 2019-10-31 00:14:20 +01:00
Luca
0e54f87b18 Added telnet dissector 
Improved data report
 2019-10-29 19:12:42 +01:00
Luca Deri
044ba7697a Improved guess 2019-10-25 16:02:44 +02:00
Luca Deri
e6bd64b3ea Improved HTTP reporting in ndpiReader 2019-10-25 15:56:47 +02:00
Luca Deri
0974075fa0 Major cleanup 
Removed ndpi_pref_http_dont_dissect_response and ndpi_pref_dns_dont_dissect_response as the ndpi_extra_dissection_possible() call will now handle everything
 2019-10-24 19:48:55 +02:00
Luca Deri
4fd7e5734a Manual merge of pull #769 2019-10-02 23:01:29 +02:00
Luca Deri
6a22bee2ca Added URL in results 2019-10-01 12:26:15 +02:00
Luca Deri
c839dcb74c Improved category handlign in subprotocols 
Further DNS dissection fixes
Fixed WeChat invalid category
 2019-09-27 17:34:22 +02:00
Luca
0ed679e795 Improves IAT calculation 2019-09-24 16:37:42 +02:00
Luca Deri
086c511a11 Parsed TLS certificate validity 2019-09-10 00:34:48 +02:00
Luca
886d575157 Added -C to generate CSV analysis files 
Improved IAT and byte distribution
 2019-09-03 18:38:54 +02:00
Luca
c328452687 Average calculation fix 2019-08-29 16:08:18 +02:00
Luca Deri
8b8fd25626 Compilation fix on systems without JSON-C 2019-08-29 15:35:29 +02:00
Luca
b1270fc7bb Uodated results 2019-08-29 15:23:01 +02:00
Luca
e4e40e3c70 Added entropy, average, stddev, variance, bytes ratio calculation 2019-08-28 14:02:39 +02:00
Luca
c6e832be18 Various TLS/STUN improvememnts 2019-08-08 18:09:12 +02:00
Luca
419160f351 Implemented DTLS support 
Renamed ssl to tls
 2019-08-08 12:45:27 +02:00
Luca Deri
3c4a959c1e Updated results when adding client hello 2019-08-07 20:06:31 +02:00
Luca Deri
b715467da6 Added -e option to ndpiReader for searchign human readeable strings lenght 
Default human readeable strings lenght is not 5 chars (used to be 8)
 2019-07-24 00:25:00 +02:00
Luca Deri
b8867642fc Refresh after data leak detection 2019-07-18 11:49:53 +02:00
Luca Deri
5c758d4564 Reworked output 
-v 1 now prints only unknown flows
-v 2 now prints all flows
 2019-07-15 14:45:25 +02:00
Luca Deri
17c49b2e6d Updated test resultss after export changes 2019-07-13 18:37:57 +02:00
Luca Deri
c43bec826d Updated results with the new SSL dissection 
Added RDP dissector
 2019-05-30 11:15:50 +02:00
Luca
1290706fad Tests result fix 
Merge branch 'dev' of https://github.com/ntop/nDPI into dev
 2019-04-05 12:51:59 +02:00
Luca
c09284ba27 Improved heuristics 
Used the host guessed protocol if upper protocol has not been detected
 2018-11-29 08:44:41 +01:00
Luca
e4f01976a6 Added missing categorization when giveup/guess is called 
Added optimization for TCP flows that do not start with a SYN packet: early giveup is performed
Code cleanup
 2018-08-30 11:10:30 +02:00
Luca
a499f369a5 Updated results based on the new output format 2018-07-21 15:20:11 +02:00
Campus
3407db11cd added new viber pcap and updated results 2018-05-29 20:37:02 +02:00
Luca Deri
36c1b72118 Updated test resuls 2018-05-18 23:22:14 +02:00
Luca Deri
529492e81f Updated test results 2018-05-14 21:42:19 +02:00
Campus
73b4019561 update results for test pcap 2018-02-03 19:56:14 +01:00
Luca
3ba3a08141 Implemented flow sort based on total bytes so that we can (with -v X) immediately spot elephants and mice 2017-08-02 20:15:21 +02:00
Luca Deri
d66e473a2c Code cleanup 
Updated test results
Renamed SOMEIP -> someip
 2017-07-06 09:28:15 +02:00
Campus
4829222e73 update results after modifications 2017-05-26 11:26:22 +02:00
Luca Deri
99c9f1d36b Updated results are ndpiReader output has been modified 2017-05-17 15:53:52 +02:00
Campus
846f457db4 update detection and tests 2017-02-20 17:25:19 +01:00
Luca Deri
1d2e67d38c Dissected SSH client/server versions and reported in data structures 2017-02-11 10:48:08 +01:00