vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-05-05 19:15:03 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 4
26031 commits 26 branches 19 tags 448 MiB
Commit graph

762 commits

Author SHA1 Message Date
Simone Mainardi
3ae569b594 Reworks heuristic on client/server (#5058) 2021-02-26 16:29:32 +01:00
Matteo Biscosi
4e0bb51969 Implements client/server heuristic #5058 2021-02-25 10:01:53 +01:00
Alfredo Cardigliano
db9adb9060 Add support for Malicious JA3 signature using nDPI (#5045) 2021-02-23 18:35:19 +01:00
Alfredo Cardigliano
8c4408628a Show TLS info for protocols using TLS as transport (fix #5045) 2021-02-19 11:32:23 +01:00
Simone Mainardi
f4dff6f2e7 Implements risk-based filtering of flow alerts 2021-02-16 15:25:20 +01:00
Simone Mainardi
af2eeda9e5 Implements MAC access in user scripts 
Implements #5015
 2021-02-04 09:22:05 +01:00
Luca Deri
e22e7c6963 Implemented smart IPv4 fragment handling 2021-02-02 23:00:48 +01:00
Simone Mainardi
30fb35741f Fixes process of detected protocol for non-packet interfaces 
Fixes #5000
 2021-02-02 14:30:06 +01:00
Simone Mainardi
ce45bf0f9c Reworks throughput estimation for ZMQ interfaces 2021-01-25 17:27:13 +01:00
Alfredo Cardigliano
f2e64bb9ef Support 4-byte INPUT/OUTPUT SNMP 2021-01-22 10:24:56 +01:00
Luca Deri
440f6e5892 Added IEC flow info 
Changed getFlowInfo() method signature
 2021-01-21 22:10:48 +01:00
Matteo Biscosi
43fa8cf6e9 Implements OperatingSystem Hash 
Implements #1599
 2021-01-21 11:14:52 +01:00
Luca Deri
a1178a0791 Updated (C) 2021-01-02 12:08:23 +01:00
Luca Deri
62e76db122 Fixed TLS stats 2020-12-30 16:50:14 +01:00
Alfredo Cardigliano
764a9ba898 Rename Flow->dumpFlow to avoid confusion with NetworkInterface->dumoFlow 2020-12-11 14:43:19 +00:00
Luca Deri
599835c72f Reworked IEC104 implementation 2020-11-27 22:34:50 +01:00
Luca Deri
17266b71a6 Extended flow alert JSON 2020-11-17 17:04:11 +01:00
Luca Deri
83816cefae Zero window alert improvement 2020-11-07 00:41:02 +01:00
Luca
bac9ee8701 Optimized TCP window memory usage 2020-11-05 19:32:39 +01:00
Matteo Biscosi
e5a48cb5d2
TCP Zero Window alert from issue #3417 (#4684) 
* Added no_if_activity alert to user script keys

* Added no_if_activity description alert

* Fixes #4648 trigger an alert when no flows are collected

* Changed the time past one call of the alert and an other

* Fixes #4648 reorganized files and cache management

* Added status flow check regarding issue #3417

* Removed debug code

Co-authored-by: matteo <biscosi@ntop.org>
Co-authored-by: Luca Deri <lucaderi@users.noreply.github.com>
 2020-11-05 18:20:09 +01:00
Luca Deri
82fab91a2e
Merge pull request #4604 from Wallace4/retry_project 
Retransmissions Plugin updated
 2020-10-25 18:18:57 +01:00
Simone Mainardi
a2705a8bda Implements header and drilldown of flow status severities 2020-10-19 19:26:30 +02:00
Simone Mainardi
d7f1ce0d8c Reworks and optimizes flow alerted status 2020-10-19 16:50:22 +02:00
Wallace4
ca88369ef3 New version of retransmission plugin, fixed and tested 2020-10-19 16:40:22 +02:00
Simone Mainardi
d3dda0bb82 Unifies misbehaving with alerted flows 
Implements #4596
 2020-10-16 18:58:20 +02:00
Simone Mainardi
adfec81477 Simplifies idling of flows for views 2020-10-15 09:03:01 +02:00
Alfredo Cardigliano
3aae425731 Print device ID in flow details (when available) 2020-10-13 17:17:17 +02:00
Simone Mainardi
7320c8266c Adds throughput estimation via ZMQ 
Implements #3508
 2020-10-06 19:28:11 +02:00
Simone Mainardi
891e52c1ef Adds comments for flow status / alerted status 2020-10-02 17:03:47 +02:00
Simone Mainardi
fdf0f15140 Fixes races in view interfaces and cli/srv scores 
Fixes #4513
Fixes #4512
 2020-10-02 16:34:28 +02:00
Simone Mainardi
0db456c0cf Reworks flow user scripts execution in C++ 2020-09-30 18:41:36 +02:00
Simone Mainardi
90a5a57b36 Implements user script queues (avoids 5-sec HT walk) 2020-09-28 11:45:00 +02:00
Simone Mainardi
6e0c369fa9 Handles flow dump queues in view interfaces - and fixes races 2020-09-25 14:10:06 +02:00
Simone Mainardi
7f2a9b1420 Decouples flow dump from user scripts execution 
Addresses #3545
 2020-09-24 19:29:00 +02:00
Simone Mainardi
814ee67cf9 Reworks nDPI Risks flow plugins to handle all risks and scores 
Fixes #4432
 2020-09-23 17:58:51 +02:00
Luca Deri
55d8e299fa Cleanued up code for flow score 2020-09-23 10:51:36 +02:00
Luca Deri
c7b7f2ee1b Minor cleanup 2020-09-23 09:35:32 +02:00
Simone Mainardi
a9a323acf1 Reworks (simplifies) hosts score calculation 
Fixes #4459
Fixes #4460
 2020-09-22 15:46:38 +02:00
Simone Mainardi
841dacd4cd Simplifies per-category host score 2020-09-21 11:44:00 +02:00
Simone Mainardi
db0d7730a8 Implements per-category host score 
Implements #4413
 2020-09-18 18:34:28 +02:00
Luca Deri
6cd3ebcc3b Flow dump code rework 2020-09-11 15:58:33 +02:00
Luca Deri
4648dfffe1 Implemented full IEC 104 handling 2020-09-08 20:03:20 +02:00
Luca Deri
9fe21dac15 Added IEC 104 handling 2020-09-04 16:58:44 +02:00
Simone Mainardi
941da6819f Implements HTTP method using enum ndpi_http_method 2020-08-27 10:04:58 +02:00
Luca Deri
0bd6f1353a Added support for flow risk over ZMQ 2020-08-26 23:03:00 +02:00
Simone Mainardi
00c428eb1a Fixes heap-use-after-free on HTTP dissected last_url 
Fixes #4328
 2020-08-26 11:17:07 +02:00
Luca Deri
522fafc6df Added new flow call (to be used in scripts for instance) that allows from Lua to set a custom 
info message.
Example: flow.setCustomInfo("hello world")
 2020-08-04 19:00:40 +02:00
Simone Mainardi
21d151a404 Implements HTTP stats over ZMQ 
Fixes #4152
 2020-07-29 11:07:35 +02:00
Simone Mainardi
ec9d092423 Fixes DNS stats when collecting from ZMQ 
Fixes #4148
 2020-07-29 10:40:53 +02:00
Simone Mainardi
d33c1b23d7 Optimizes stats refresh calc for large flows 2020-07-27 18:51:20 +02:00