vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-05-06 03:45:26 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 4
25378 commits 26 branches 19 tags 449 MiB
Commit graph

497 commits

Author SHA1 Message Date
Manuel Ceroni
d3b3a6b681
Removed AS from the message of the AS ranking changed alert (#9633) 2025-09-08 11:55:15 +02:00
Manuel Ceroni
837dc962b6
Implemented AS ranking changed alert (#9626) 2025-09-08 10:11:13 +02:00
Manuel Ceroni
62ef822ad4
Changed the message of the ASN Traffic Rule Alert (#9563) 2025-08-28 12:47:43 +02:00
Manuel Ceroni
33ad9fc7b6
Various fixes to ASN Traffic Rules (#9555) 
* Various fixes to ASN Traffic Rules

* Formatted ASN names for ASN traffic rules alerts
 2025-08-25 14:51:46 +02:00
Alfredo Cardigliano
ba382f7316 Add AS alert entity. Fix AS threshold crossed. 2025-08-25 14:45:22 +02:00
Manuel Ceroni
5e48729f68
Implemented ASN traffic rules (#9531) 2025-08-19 23:17:25 +02:00
Alfredo Cardigliano
aebf4ccf37 Add nEdge Policy Violation check 2025-08-14 12:33:38 +02:00
Luca
9568fa96aa Added support for unresolved hostname risk 2025-08-04 22:52:19 +02:00
Matteo Biscosi
13ebc1e8d0 Possible fix for issue description and removed Connection Refused alert (#9233) 2025-05-23 11:21:06 +02:00
Matteo Biscosi
52a9c5c0e8 Fixes unexpected server alerts not working 2025-05-22 12:30:10 +02:00
Manuel Ceroni
534048ac4f
Fixed empty description column (#9216) 2025-05-16 12:00:11 +02:00
Matteo Biscosi
3d6d26422a Fixes bidirectional traffic check description 2025-05-13 17:04:03 +02:00
Alfredo Cardigliano
f4e5625669 Add safety check 2025-04-15 11:21:17 +02:00
Alfredo Cardigliano
8e9532680d Fix elephant flows description. Print exceeding threshold only. #9075 2025-04-14 14:36:49 +02:00
Manuel Ceroni
26c23347e7
Improved Scan Alerts with MITRE and fixes (#9127) 2025-04-08 11:33:53 +02:00
Manuel Ceroni
9127b22b76
Improved Scan Realtime Alert (#9122) 2025-04-07 16:26:08 +02:00
Manuel Ceroni
e1328ae36b
Implemented Scan Realtime Alert (#9106) 
* Implemented Scan Realtime Alert

* Removed old scan alerts
 2025-04-04 12:42:46 +02:00
Alfredo Cardigliano
7dcf3de812 Fix ip_outsite_dhcp_range alert 2025-04-01 13:17:46 +02:00
Manuel Ceroni
486dc0e33e
Implemented nat detected alert (#9074) 2025-03-27 11:28:16 +01:00
Alfredo Cardigliano
eb5df64e5f Fix links 2025-03-26 16:47:40 +01:00
Luca Deri
e0b908b42e Removed obsoleted TLSSuspiciousESNIUsage 
Improved device type guessing based on the OS
 2025-03-25 21:56:38 +01:00
Luca Deri
a4e09a03e4 Minor cosmetic changes 2025-03-21 16:59:47 +01:00
Manuel Ceroni
fe0975ba2a
Added Service Down check to Scan Alert (#9066) 2025-03-21 16:55:29 +01:00
Alfredo Cardigliano
b077895c01 Fix format 2025-03-18 09:05:55 +01:00
Alfredo Cardigliano
8690becceb Parse query id from syslog alerts 2025-03-17 20:14:56 +01:00
Alfredo Cardigliano
0cff924bf8 Fix ext alert formatter 2025-03-17 18:34:04 +01:00
Manuel Ceroni
43ead976bb
Implemented QoE Issues Alert (#9033) 
* Implemented QoE Issues Alert

* Fixed QoE Issue alert serializer
 2025-03-14 11:41:25 +01:00
Manuel Ceroni
00c6efdce6
Implemented network and service scan checks, merging them with the port scan check into a single alert (Scan Alert) (#9024) 2025-03-10 21:19:05 +01:00
Matteo Biscosi
34b559e66d Added attacker in port scan (#9009) 2025-03-05 11:52:56 +01:00
Manuel Ceroni
83d6fb24da
Port scan alert aggregation (#9021) 2025-03-04 16:12:13 +01:00
Manuel Ceroni
d4b7a3d375
Implemented port scan alert (clickhouse) (#9006) 2025-02-27 10:44:18 +01:00
Manuel Ceroni
4ad05ce8e5
Implemented an alert for anomalous Redis reads and writes number (#8969) 2025-02-19 17:48:47 +01:00
Alfredo Cardigliano
31752105d9 Add Lua host check example (Suspicious Domain Scans) #8956 2025-02-17 15:14:30 +01:00
Alfredo Cardigliano
aebd8b459c Add more info to login activities alerts 2025-02-14 16:48:43 +01:00
Alfredo Cardigliano
95ba6d19c6 Indent 2025-02-14 12:19:06 +01:00
Luca Deri
ac6788a311 Bug fix 2024-12-23 21:01:01 +01:00
Luca Deri
4b160de275 Improved host policy alert 2024-12-23 10:32:04 +01:00
Matteo Biscosi
133f5339b3 Added host policy alert in lua 2024-12-19 10:23:46 +01:00
Matteo Biscosi
a514dc9cdb Fixes periodicity changed description (#8853) 2024-12-17 11:06:52 +01:00
Matteo Biscosi
e89f07f238 Merged score threshold and dangerous hosts alerts (#8827) 2024-12-12 16:45:43 +01:00
YellowMan
c712750200
Remote to local insecure flow (#8871) 
* Fixed domain names contact alert behaviour

* enanched remote to local insecure flow alert description

* minor fix
 2024-12-11 16:54:01 +01:00
Luca Deri
76e47112e8 Fixes invalid format error 2024-12-05 12:22:23 +01:00
Matteo Biscosi
0ebe2b9e88 Fixes missing blacklist (#8841) 2024-12-02 18:34:00 +01:00
Matteo Biscosi
2a47b8667f Fixes mac addresses alerts 2024-12-02 17:32:55 +01:00
Matteo Biscosi
07ef54c7cc Added ACL violation ARP alert (#8696) 2024-12-02 13:07:56 +01:00
Matteo Biscosi
819f39830b Added ACL Violation alert (#8696) 2024-11-28 18:02:53 +01:00
Luca Deri
fb06400fe2 Changed alert serialization 2024-11-28 09:34:57 +01:00
Luca Deri
084e295af8 Minor fixes 2024-11-27 15:26:31 +01:00
Matteo Biscosi
b2a37ea016 Fixes missing protocol mapping (#8805) 2024-11-12 11:07:47 +01:00
Matteo Biscosi
4fffe8b449 Fixes host alert score treshold description 2024-10-23 16:11:31 +02:00