vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-04-29 15:39:33 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3

Added suspicious ICMP payload content

Browse source 
Fixes #7049
This commit is contained in:
Luca Deri 2022-12-18 13:18:56 +01:00
parent e3be9b993a
commit f73c3b32f1
5 changed files with 38 additions and 4 deletions
Download patch file Download diff file Expand all files Collapse all files

9
scripts/lua/get_flows_data.lua
View file

@ -355,8 +355,15 @@ end
local info = value["info"]
if((info == "") and (value.icmp ~= nil)) then
if((info == "") and (value.icmp.entropy ~= nil)) then
local e = value.icmp.entropy
local diff = e.max - e.min
info = icmp_utils.get_icmp_type(value.icmp.type, true)
if(icmp_utils.is_suspicious_entropy(e.min, e.max)) then
info = info .. " <span class=\"badge bg-warning\">".. i18n("suspicious_payload") .."</span>"
end
end
if isScoreEnabled() then