vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-05-13 05:51:46 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3
22631 commits 26 branches 19 tags 455 MiB
Commit graph

3754 commits

Author SHA1 Message Date
Luca Deri
a87a127d40 Increased number of server ports, removed warning message 2024-06-23 11:08:16 +02:00
Luca Deri
542f9100a6 Fixed LocalHostStats initialization 2024-06-21 19:23:27 +02:00
Alfredo Cardigliano
8d326f2718 Define new alert cloud_reconnected 2024-06-21 17:59:14 +02:00
Alfredo Cardigliano
dab5aeba99 Define new alert cloud_disconnected 2024-06-21 17:33:05 +02:00
Luca Ferretti
d8955d355f
initial integration of the netbox api (#8465) 
* added feature sorting flows by protocol

* changed protocols comparison order

* initial commit for bitmap of server ports

* bitmap added to redis

* added debug string, bitmap not working

* Update alerts_list_per_license.rst

* Update alerts_list_per_license.rst

* initial mitre att&ck standardization

* Update ServerPortsBitmap.h

* updated mitre standardization

* ICMP ping fixes

* added http post method that use an auth token

* initial integration of the netbox api
 2024-06-21 16:22:08 +02:00
Matteo Biscosi
f71507f7ef Added netbox functions 2024-06-21 14:48:25 +02:00
GabrieleDeri
56099d7322
Started implementing assets inventory pref. To implement cpp side (#8462) 
* Implemented ticket 8455

* Started implementing assets inventory pref. To implement cpp side

---------

Co-authored-by: DGabri <gabriele.deri@gmail.com>
 2024-06-21 13:05:50 +02:00
Alfredo Cardigliano
59612cf096 Fix nameclash with datalink type variable. Add missing datalink initializations. 2024-06-10 15:53:43 +02:00
Alfredo Cardigliano
3cf7c653ea Rework clickhouse paths 2024-06-05 18:46:59 +02:00
Luca Deri
d5eacdd1a3 Minor cosmetic changes 2024-06-05 17:57:05 +02:00
Luca Ferretti
4ae4f0cec8
Added ServerPortsBitmap (#8437) 
* added feature sorting flows by protocol

* changed protocols comparison order

* initial commit for bitmap of server ports

* bitmap added to redis

* added debug string, bitmap not working

* Update ServerPortsBitmap.cpp

* updated bitmapserverports

* added restore function
 2024-06-05 17:17:56 +02:00
Alfredo Cardigliano
4cbde1509e Cleanup debug code 2024-06-03 15:44:03 +02:00
Matteo Biscosi
fa8fc8a6d5 Fixes too many exceptions alert triggered (#8410) 2024-05-31 12:05:01 -04:00
Luca Ferretti
db8cb2cfa0
added feature sorting flows by protocol (#8416) 2024-05-31 16:12:46 +02:00
Matteo Biscosi
dec8c48fd0 Fixes configuration import not working 2024-05-31 06:49:50 -04:00
Luca Deri
bfc7a7fb1d Reworked SNMP polling implementation 2024-05-28 23:51:29 +02:00
Luca Deri
acca81e583 Added ServerPortsContacts.h 2024-05-28 15:10:46 +02:00
Luca Ferretti
edef411ebc
added contacted_server_port alert (#8408) 
* initial integretion of server port check

* update learning period and received packet time

* updated host initial time

* Update Flow.cpp

* fixed reported issues

* added server_ports_contacts alert

* minor changes
 2024-05-28 12:52:36 +02:00
Luca Deri
d0be3720ff Minor cleanup 2024-05-27 19:27:01 +02:00
Matteo Biscosi
d6ee3f61b2 Added preference for host port alert (#8403) 2024-05-27 10:31:41 -04:00
Luca Ferretti
87429d4314
FIrst integration of check on open server ports (#8402) 
* initial integretion of server port check

* update learning period and received packet time

* updated host initial time

* Update Flow.cpp

* fixed reported issues
 2024-05-27 11:16:54 +02:00
mzac
c17c5c82d1
Update ntop_defines.h 
Update copyright year from 1998-23 to 1998-24
 2024-05-24 09:57:50 -04:00
Luca Deri
91bea0bce2 Added risk NDPI_PROBING_ATTEMPT 2024-05-22 18:44:10 +02:00
Matteo Biscosi
82d2d40ad5 Removed no more used define 2024-05-20 11:08:37 -04:00
Matteo Biscosi
0b5ff1305c Fixes minor issues with alert counter 2024-05-20 10:58:14 -04:00
Luca Ferretti
336b2ff2fd
fixed flow/sec counter (#8396) 2024-05-20 16:46:45 +02:00
Nicolo Maio
02de3d317d Fix TCPFlowReset check. (#8264) 2024-05-15 17:40:57 +02:00
Matteo Biscosi
f1ce15cc85 Removed no more used values 2024-05-14 06:43:12 -04:00
Nicolo Maio
3a022c8a36 Set the packet only interfaces option to false.(#8264) 2024-05-13 18:11:42 +02:00
Matteo Biscosi
d795bf3474 Added NAT info in clickhouse (#8384) 2024-05-10 10:22:55 -04:00
Matteo Biscosi
84806c9669 Removed unused code 2024-05-08 09:28:34 -04:00
Matteo Biscosi
b1d48910cc Added support for ClickHouse Cloud 2024-05-07 06:52:42 -04:00
Luca Deri
3d117a9e16 Added support for SIP CallID in flow key 2024-05-04 11:27:38 +02:00
Luca Deri
db38a5d2d5 DHCP (via ZMQ) Fixes for #7972 
The symbolic hostname will use the DHCP name before the DNS resolved name
 2024-05-02 21:46:03 +02:00
Luca Deri
3cc0aeddc5 Removed outdated unahandled flows that was casing fiscrepancies in flow accounting 2024-05-02 10:54:56 +02:00
Luca Deri
c51d4d70c9 CentOS 7 fixes 2024-04-29 21:48:15 +02:00
Luca Deri
ddd449ea90 Added the ability to set custom alert score 2024-04-29 11:56:02 +02:00
Nicolo Maio
3ae43b18c5 Change the severity of the old blacklisted flow to critical 2024-04-24 18:39:20 +02:00
Nicolo Maio
7ced911ec7 Fix autoAck (#7948) 2024-04-24 18:34:19 +02:00
Nicolò Maio
59075f5e10
Splitting blacklisted flow alert and creating two new alerts. (#8354) (#8355) 
* Splitting blacklisted flow alert and creating two new alerts. (#8354)

* Renaming to 'Blacklisted Client Contact' and 'Blacklisted Server Contact'. (#8354)
 2024-04-24 17:37:30 +02:00
Nicolò Maio
636ba2975c
Add Flow Reset Alert and counter. (#8264) (#8348) 
* Add Flow Reset Alert and counter. (#8264)

* Renaming to TCP Flow Reset. (#8264)

* Renaming the value retrieved by the getName method. (#8264)
 2024-04-24 17:15:20 +02:00
Luca Deri
812f1efdab Fix for #8347 2024-04-23 18:01:09 +02:00
Alfredo Cardigliano
260510289e Fix match on alert type 2024-04-23 16:02:55 +02:00
Alfredo Cardigliano
3dbdcc4966 Fix filters on alert types for non host/flow alerts 2024-04-22 18:39:55 +02:00
Alfredo Cardigliano
6c02a54e20 Fix entity for alerts triggered from lua 2024-04-22 13:19:16 +02:00
Alfredo Cardigliano
d7415c156d Add option to limit rows 2024-04-19 15:41:27 +02:00
Luca Deri
6ed953a5a3 Reworked host categorization 
Fix for https://github.com/ntop/ntopng/issues/8262
 2024-04-18 23:28:21 +02:00
Nicolò Maio
fd6b0958c3
Rename the alert to "Remote to Local Insecure Flow". (#8257) (#8339) 2024-04-18 12:45:54 +02:00
Luca Deri
4a93fe8a87 Added support in flow details for STUN MAPPED-ADDRESS 2024-04-12 21:14:38 +02:00
Nicolo Maio
4f7ba024c0 Set the emergency level score for SYN flood alerts. (#8253) 2024-04-10 16:59:46 +02:00