vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-05-05 19:15:03 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 4
6435 commits 26 branches 19 tags 448 MiB
Commit graph

239 commits

Author SHA1 Message Date
emanuele-f
1c9a4d3461 Implement ICMP data exfiltration alerts 
Closes #256
 2019-05-28 10:37:59 +02:00
Luca Deri
15046a4157 Improved SSL cipher display 2019-05-23 00:21:51 +02:00
Alfredo Cardigliano
86f3f19756 IP fragments per flow direction (implements #2359) 2019-05-21 12:43:55 +02:00
Simone Mainardi
df46dfecfa Reworks counters of tcp seqs 2019-05-21 12:06:27 +02:00
Luca Deri
1228ddc2ca Added unsafe SSL ciphers detection 2019-05-20 23:19:53 +02:00
Alfredo Cardigliano
9cdb84a875 Implements filtering per flow status in the active flows page 2019-05-20 18:54:50 +02:00
Luca Deri
7ec6b9f42c Improve JA3 support 2019-05-14 15:55:45 +02:00
Simone Mainardi
1ab525422c Uses class ParsedeBPF also in Flow 2019-05-13 17:16:45 +02:00
Simone Mainardi
204ea6cf62 Cleanup unused code based on struct eBPFEvent 2019-05-13 14:47:47 +02:00
Simone Mainardi
c95bdc7aa4 Implements class ParsedeBPF to handle eBPF events 2019-05-13 11:56:24 +02:00
Luca Deri
7144478591 Added JA3 support in flows 2019-05-12 14:15:19 +02:00
Simone Mainardi
b03c57dccf Uses eBPF events to determine if the proc is cli or srv 2019-05-05 16:20:03 +02:00
emanuele-f
939ca8c166 Implement eBPF flows view and improve containers/pods pages 2019-04-26 15:34:53 +02:00
emanuele-f
6fb921d68a Implement Pods and Containers page 2019-04-24 18:46:07 +02:00
Simone Mainardi
bf3b1e45c4 Adds TcpInfo to class Flow with nProbe mini eBPF data 2019-04-24 18:13:09 +02:00
Simone Mainardi
e1e1dc5a52 Makes processLua static 2019-04-24 12:13:27 +02:00
Simone Mainardi
2d4488eb24 Pushes container info into lua tables for visualization 2019-04-24 12:11:28 +02:00
Simone Mainardi
47438af92f Sets Flow process and container data from nProbe mini eBPF 2019-04-24 10:44:51 +02:00
Simone Mainardi
a600b0d2aa Adds ContainerInfo to class Flow 2019-04-24 10:00:18 +02:00
Luca Deri
dcbd42ae1f Fixed suricata README 
Tiny flow change to avoid false positives when the application protocol is not NULL
 2019-04-10 11:46:27 +02:00
Alfredo Cardigliano
7ce1150a69 IDS flow alerts notification 2019-04-04 16:03:48 +02:00
Alfredo Cardigliano
3c3d581b93 Parsing Suricata alerts, minor improvements 2019-04-03 17:04:32 +02:00
Simone Mainardi
b58f67a5de Protocol detection fixes 2019-04-02 12:29:32 +02:00
Simone Mainardi
2872ccb54b Adds traces to debug false positives in blacklisted flows 2019-04-01 16:56:55 +02:00
Simone Mainardi
f5c269da5a Prevents protocols from being returned when dpi is not completed 2019-03-29 12:48:10 +01:00
Simone Mainardi
e6b85f56fe Check SSL alt names to avoid false SSL certificate mismatchs 2019-03-27 15:22:45 +01:00
Luca Deri
fa3b2940c5 Merge branch 'dev' of https://github.com/ntop/ntopng into dev 2019-03-25 23:54:22 +01:00
Luca Deri
afda95c8d6 Added SSL certificate dissection 2019-03-25 23:54:02 +01:00
Simone Mainardi
3fcb15cda2 Handles TCP flags via nProbe 2019-03-25 20:31:13 +01:00
Luca Deri
64911a37e8 Merge branch 'dev' of https://github.com/ntop/ntopng into dev 2019-03-25 18:54:59 +01:00
Luca Deri
e230c3a451 SSL cleanup 2019-03-25 18:54:45 +01:00
Simone Mainardi
34b36422ad Parses nProbe application latency 2019-03-25 17:34:54 +01:00
Simone Mainardi
d9d21462cd Parses nProbe client/server network latencies 2019-03-25 16:55:14 +01:00
Simone Mainardi
4f4548713e Fixes protocol detection for flows with a few packets 2019-03-05 12:21:00 +01:00
Simone Mainardi
9a413a5d72 Implements TCP states filtering (est., connecting, closed and rst) 
Implements #2385
 2019-02-16 18:19:25 +01:00
Simone Mainardi
ae23ebcd1c Implements visibility of ICMP port-unreachable flows IPv4 2019-02-15 18:59:01 +01:00
Simone Mainardi
86e4157b16 Adds mark in Flow to count if it has been aggregated 2019-02-14 16:16:39 +01:00
emanuele-f
62eded2bfb Fix ZMQ host name match 2019-02-12 18:15:06 +01:00
Simone Mainardi
1d9107bdc5 Simplifies detection of SYN-only flows 2019-02-12 18:07:04 +01:00
emanuele-f
f267875fb8 Fix ZMQ host category detection 2019-02-12 17:29:14 +01:00
emanuele-f
a09e8efed0 Add hosts anomalous flows counter 2019-02-12 12:05:30 +01:00
Simone Mainardi
19a4b03478 ParserInterface sprobe cleanup 2019-02-11 15:15:48 +01:00
Simone Mainardi
a3b342219c Simplifies and improves handling of TCP flow states 2019-02-08 17:33:52 +01:00
Simone Mainardi
3dd9f11628 Implements flow TCP states filters 2019-02-08 15:57:03 +01:00
Luca
509df6a1fc Improved counter monitoring algorithm 2019-02-03 23:30:07 +01:00
Simone Mainardi
50e32be5a7 Properly handles Host ssdp and mdns without shadows 2019-01-25 12:39:43 +01:00
emanuele-f
2dbf1e9cb8 Rework host counters and implemtent host stats/data reset 2019-01-18 19:31:16 +01:00
Luca Deri
bedff2c8e2 Updated (C) 2019-01-07 19:28:49 +01:00
Alfredo Cardigliano
706bbf8558 Fixes missing flows on mysql after shutdown 2018-12-20 19:48:16 +01:00
Emanuele Faranda
74b916c054 Add conntrack marker debug 2018-12-07 19:23:09 +01:00