vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-04-29 15:39:33 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3
22186 commits 26 branches 19 tags 446 MiB
Commit graph

417 commits

Author SHA1 Message Date
Simone Mainardi
f563447bd9 Host alert label fixes 2021-07-30 12:51:02 +02:00
Simone Mainardi
7ba9cf0dc5 Adds TCP flag filters in historical flows drilldown 2021-07-28 18:37:43 +02:00
Simone Mainardi
de576aa999 Implements historical floww search function for all host alerts 
Addresses #5326
 2021-07-28 18:16:32 +02:00
Simone Mainardi
b6913c946d Implements skeleton to drilldown historical flows from alerts 
Addresses #5326
 2021-07-28 17:19:44 +02:00
Simone Mainardi
5fe995ecfe Implements host check for NTP traffic 2021-07-27 12:19:52 +02:00
Simone Mainardi
1a552d24ec Cleanup excessive traffic check (to be implemented as host check) 2021-07-27 11:39:40 +02:00
Simone Mainardi
aef24d06b0 Implements TLS cert validity check and corresponding test 
Addresses https://github.com/ntop/ntopng/issues/5434
Addresses https://github.com/ntop/nDPI/issues/1196
 2021-07-14 18:04:00 +02:00
MatteoBiscosi
596ecf87ad Fixes threshold put to 0 for score anomaly (#5657) 2021-07-13 09:53:18 +02:00
MatteoBiscosi
7a04146a00 Added threshold to score anomaly (#5657) 2021-07-12 13:02:31 +02:00
Simone Mainardi
eb41fd4c8f Fixes elephant and long-lived flow alerts visualization 
Fixes #5646
 2021-07-09 12:12:17 +02:00
Simone Mainardi
04a5a6ea78 Fixes DGA domains not properly handled over ZMQ 
Fixes #5649
 2021-07-07 19:20:39 +02:00
Simone Mainardi
9c3e4fc5cb Fixes invalid filter for dropped alerts 
Fixes #5631
 2021-07-07 16:42:17 +02:00
Alfredo Cardigliano
471e56a9ef Fix nil access (url) 2021-07-06 16:21:47 +02:00
l3wiz
d24f94d14d Added a modal when try to open external links (Issue #5618) 2021-07-02 19:28:33 +02:00
MatteoBiscosi
744a5e53c3 Added vlan to each host reference (#5595) 2021-07-02 13:13:00 +02:00
MatteoBiscosi
06b72839dd Extended url length #5596 2021-07-02 11:54:39 +02:00
MatteoBiscosi
04865c8938 Implements #5596 added external href to suspicious file transfer 2021-07-02 10:39:58 +02:00
MatteoBiscosi
fcf4084a03 Fixes #5590 removed table.concat function and changed with tconcat 2021-07-01 16:30:23 +02:00
Alfredo Cardigliano
26868ca62c Set missing entities in alert definitions 2021-07-01 09:03:02 +02:00
MatteoBiscosi
b487946452 Fixes #5590 concatenation using function 2021-06-30 18:32:36 +02:00
MatteoBiscosi
a04d1a25bf Removed concatenation and used the tconcat function 2021-06-30 17:22:19 +02:00
MatteoBiscosi
be198c2a99 Added L7 iface proto behavior analysis and alert (#5499 #5474) 2021-06-29 16:50:56 +02:00
Alfredo Cardigliano
b6043c1e72 Fix (entities in am_threshold_cross alert definition and) alert type filter 2021-06-25 16:08:19 +02:00
MatteoBiscosi
1ad608e905 Changed behavior alert family key into entities id 2021-06-25 15:06:21 +02:00
Simone Mainardi
63168f5ff2 Implements 'Subject' column for interface alerts 
Addresses #5563
 2021-06-24 15:51:17 +02:00
MatteoBiscosi
68fb1ec1b1 Fixed wrong ifid number 2021-06-24 12:52:04 +02:00
l3wiz
572e209bd0 Added question tooltip when string is cut (Issue #5522) 2021-06-24 12:21:15 +02:00
MatteoBiscosi
47497ca666 Fixes behavior anomaly alert key not found 2021-06-23 22:55:08 +02:00
MatteoBiscosi
fd40e51428 Changed alert behavior location 2021-06-23 17:58:30 +02:00
MatteoBiscosi
a6aa647624 Removed path and timeseries string from behavior alerts 2021-06-23 16:23:45 +02:00
MatteoBiscosi
462eaa384b Fixes ASes and Networks alert behavior 2021-06-23 15:14:03 +02:00
Alfredo Cardigliano
279ed66deb Add alert type filter for all families 2021-06-23 12:53:20 +02:00
MatteoBiscosi
638bf881fd Migrated periodicity update alert into flow alert 2021-06-21 17:47:03 +02:00
MatteoBiscosi
6549d19a99 Fixes alert formatting broken (#5536) 2021-06-21 16:16:22 +02:00
MatteoBiscosi
f4d4543fab Changed behavior anomaly alert (#5521) 2021-06-21 09:41:53 +02:00
MatteoBiscosi
7f9cf7a181 Removed debug print 2021-06-18 15:27:42 +02:00
MatteoBiscosi
89071f0a9a Fixes alert score/flow anomaly description (#5522) 2021-06-18 15:19:08 +02:00
MatteoBiscosi
8a1e315496 Fixed lateral movement alert description (#5524) 2021-06-18 11:37:25 +02:00
MatteoBiscosi
5a02d2a0d7 Fixed lateral movement not triggering 2021-06-18 11:08:44 +02:00
MatteoBiscosi
dd3a038a0f Changed lateral movement description (#5517) 2021-06-18 10:07:48 +02:00
Luca Deri
34897cec6b Fix for alert display 2021-06-18 08:51:39 +02:00
MatteoBiscosi
5c4142fdcb Implements behavioral alerts (#5500 #5501) 2021-06-17 17:10:02 +02:00
MatteoBiscosi
cf363eaa10 Changed old info string into lateral movement 2021-06-17 12:05:26 +02:00
MatteoBiscosi
48554751f9 Removed duplicated info from lateral movement alert 2021-06-17 12:02:56 +02:00
MatteoBiscosi
a89c95dba4 Migrated Lateral Movement alert from interface to flow (Fixes #5485) 2021-06-17 11:07:29 +02:00
Simone Mainardi
25159f0a9b Refactors {host,flow}_callbacks into {host,flow}_checks (lua) 2021-06-16 18:59:07 +02:00
Simone Mainardi
9a541f14ba Cleanup unused alert_check_calls_drops.lua 2021-06-16 18:48:51 +02:00
Simone Mainardi
76fd315d1b Refactors user_scripts into checks (lua) 2021-06-16 18:02:22 +02:00
Simone Mainardi
f39401e64a Fixes ogin denied for user 'nil' 2021-06-14 14:32:28 +02:00
Luca Deri
c76cce1c4f Renamed Host Ban to Dangerous Host 2021-06-09 22:54:17 +02:00