vrr/nDPId
2
0
Fork 0
mirror of https://github.com/utoni/nDPId.git synced 2026-05-06 03:45:27 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 4
nDPId/examples
History
Toni Uhlig a35fc1d5ea
Removed py-flow-undetected-to-pcap and py-risky-flow-to-pcap. Done by c-captured anyway. 
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
2021-11-21 12:01:45 +01:00
..
c-captured Additional semantic validation tests. 2021-11-02 09:26:23 +01:00
c-collectd bump libnDPI to 6b7e5fa8d251f11c1bae16ea892a43a92b098480 2021-08-03 12:37:59 +02:00
c-json-stdout Build JSMN with support for parent links. 2021-07-13 03:35:35 +02:00
go-dashboard go-dashboard renaming, ignore go-mod and it's file structure 2021-11-21 11:45:45 +01:00
py-flow-dashboard flow-dash: Simplified and extended bar graph. 2021-05-28 18:41:32 +02:00
py-flow-info py-flow-info: Support for --ipwhois, --new and --detection. 2021-04-30 22:39:11 +02:00
py-flow-muliprocess Added realtime web based graph example using Plotly/Dash. 2021-05-27 15:05:06 +02:00
py-ja3-checker Added JA3 blacklist downloader/checker from abuse.ch 2021-04-17 16:45:03 +02:00
py-json-stdout Added IPv6 support for -I / -E. 2021-04-11 00:16:52 +02:00
py-schema-validation Added nDPId semantic validation test. 2021-04-14 22:04:42 +02:00
py-semantic-validation Added timestamp validation test. 2021-11-02 12:15:41 +01:00
README.md Added realtime web based graph example using Plotly/Dash. 2021-05-27 15:05:06 +02:00

README.md

examples

Some ready-2-use/ready-2-extend examples/utils. All examples are prefixed with their used LANG.

c-captured

A capture daemon suitable for low-resource devices. It saves flows that were guessed/undetected/risky/midstream to a PCAP file for manual analysis. Basicially a combination of py-flow-undetected-to-pcap and py-risky-flow-to-pcap.

c-collectd

A collecd-exec compatible middleware that gathers statistic values from nDPId.

c-json-stdout

Tiny nDPId json dumper. Does not provide any useful funcationality besides dumping parsed JSON objects.

go-dashboard

A discontinued tty UI nDPId dashboard. I've figured out that Go + UI is a bad idea, in particular if performance is a concern.

py-flow-info

Prints prettyfied information about flow events.

py-flow-dash

A realtime web based graph using Plotly/Dash.

py-flow-multiprocess

Simple Python Multiprocess example spawning two worker processes, one connecting to nDPIsrvd and one printing flow id's to STDOUT.

py-flow-undetected-to-pcap

Captures and saves undetected flows to a PCAP file.

py-json-stdout

Dump received and parsed JSON strings.

py-risky-flow-to-pcap

Captures and saves risky flows to a PCAP file.

py-schema-validation

Validate nDPId JSON strings against pre-defined JSON schema's. See schema/. Required by tests/run_tests.sh

py-semantic-validation

Validate nDPId JSON strings against internal event semantics. Required by tests/run_tests.sh

py-ja3-checker

Captures JA3 hashes from nDPIsrvd and checks them against known hashes from ja3er.com.