vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-04-30 16:09:32 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3
17474 commits 26 branches 19 tags 446 MiB
Commit graph

305 commits

Author SHA1 Message Date
Simone Mainardi
b3dc39c641 Refactors alert_severities into an independend Lua module 2020-11-30 15:28:17 +01:00
matteo
86008481b5 Fixes #4266 plugin for triggering alerts on periodic behaviour 2020-11-27 09:01:21 +01:00
Luca Deri
06161556ac Fixes issues with unexpected XXX alerts where impacted server was not reported 
Added Lua getFlowProtoClientIP/getFlowProtoServerIP calls in flows
 2020-11-25 15:52:03 +01:00
Matteo Biscosi
507583db64
Added host category to flow and host alerts (#4767) 
* Fixed shell endpoint bug and added notice when executing the script

* Added victim and attacker to security plugins

* Updated hosts alert with host_category info

* Added host category to hosts alert description

* Added host category to flows

Co-authored-by: matteo <biscosi@ntop.org>
 2020-11-20 19:14:07 +01:00
Matteo Biscosi
b07f943f34
Fixed formatConnectionIssues bug, expecting table but getting number 2020-11-19 12:50:57 +01:00
Matteo Biscosi
e543b207c9
Fixed shell endpoint bug and added notice when executing the script (#4748) 
Co-authored-by: matteo <biscosi@ntop.org>
 2020-11-18 17:06:06 +01:00
Matteo Biscosi
0e341f3d0b
Modified flow scripts in view of the new trigger_status (#4710) 
* Modified blacklisted script in view of the new flow_script API

* Modified plugins scripting in view of the new API

* Modified flow scripts with the new trigger API

* Fixed creators severity

Co-authored-by: matteo <biscosi@ntop.org>
 2020-11-12 13:52:53 +01:00
Simone Mainardi
d13a4451d2 Changes for the migration to the new alerts_api.trigger_status 2020-11-12 11:48:59 +01:00
Luca Deri
83816cefae Zero window alert improvement 2020-11-07 00:41:02 +01:00
Simone Mainardi
389f9c2beb Reworks TCP issues flow user script 2020-10-30 15:56:36 +01:00
Simone Mainardi
355be90e5d Improves alerts with better descriptions and hyperlinks 
Implements #4585
 2020-10-23 14:24:16 +02:00
Simone Mainardi
cbfd2c8025 Implements user script for remote to remote host alerts 
Addresses #4614
 2020-10-22 16:25:31 +02:00
Simone Mainardi
d811d27b3b Avoids printing empty members list in pool alerts 
Partially addresses #4585
 2020-10-21 15:28:48 +02:00
Simone Mainardi
27c1318ab6 Fixes risk not shown in generated flow-risk alerts 
Fixes #4594
 2020-10-19 11:10:19 +02:00
Simone Mainardi
d3dda0bb82 Unifies misbehaving with alerted flows 
Implements #4596
 2020-10-16 18:58:20 +02:00
Simone Mainardi
5d80b67327 Adds info-level alerts upon successful lists download 
Addresses #4554
 2020-10-14 15:08:01 +02:00
Simone Mainardi
ce4d69a273 Moves alert and status definitions under lua/modules/ 2020-10-12 15:03:39 +02:00
Simone Mainardi
f617f8ffcf Uses hostinfo2detailshref to print hosts hyperlinks 2020-10-12 10:09:12 +02:00
Simone Mainardi
291538b323 Additional lateral movement alert fixes 2020-10-12 10:03:23 +02:00
Simone Mainardi
4ffe97f3b0 Lateral movement alert entity fixes 2020-10-12 09:22:08 +02:00
Luca Deri
c5e0db54b7 Added support for lateral movement detection 2020-10-11 18:30:21 +02:00
Simone Mainardi
f9de2bdb8a Adds alert_flow_blacklisted.lua 2020-10-09 09:48:41 +02:00
Simone Mainardi
b82738330c Adds extra indications upon plugin load failures 
Fixes #4549
 2020-10-09 09:23:11 +02:00
Simone Mainardi
f6c42554bc Fixes slow hash entries purging alert 
Fixes #4527
 2020-10-05 14:38:53 +02:00
Simone Mainardi
814ee67cf9 Reworks nDPI Risks flow plugins to handle all risks and scores 
Fixes #4432
 2020-09-23 17:58:51 +02:00
Luca Deri
8db941c31e Improved IEC 104 plugin 2020-09-16 23:24:40 +02:00
Simone Mainardi
7f241d71d5 Implements attack mitigation via SNMP 
Implements #3833 along with companion pro commit
 2020-08-24 15:05:35 +02:00
Alfredo Cardigliano
1160066b08 Add logging for all non-get REST calls (fix #4279) 2020-08-14 12:02:09 +02:00
Alfredo Cardigliano
628bdd8994 Add tracing of rest set calls 2020-08-13 16:08:25 +02:00
Alfredo Cardigliano
bde41ff4b7 Cleanup nagios code 2020-07-28 11:33:04 +02:00
Simone Mainardi
ad93df50f3 Migrates alert_quota_exceeded.lua to use the new lua host pools class 2020-07-16 17:21:06 +02:00
Simone Mainardi
5ade224d85 Implements global host pools 
Implements #4086

Refactors host pools to global

Implements host pools migration

Migration fixes

nEdge changes for host pools migration

Create README.host_pools_migration.md
 2020-07-01 12:02:09 +02:00
Simone Mainardi
cd4a513b0f Implements snmp_consts.lua with SNMP consts 2020-06-10 15:40:47 +02:00
Simone Mainardi
0bbb30e13e Refactors snmp_utils global methods into module functions 2020-06-10 13:09:30 +02:00
Simone Mainardi
8a3e65ac50 Requires snmp_utils as local module 2020-06-10 12:17:25 +02:00
Simone Mainardi
49e49e0ed6 Unifies host_details.lua generation 
Addresses #3977
 2020-05-26 12:50:47 +02:00
emanuele-f
39d76d233d Hide zero MAC address in remote to remote alerts 
Addresses #3644
 2020-05-19 14:41:19 +02:00
Alfredo Cardigliano
e8fcbd2a90 Trigger host alerts for collected syslog messages (also to companions) 2020-05-18 12:52:38 +02:00
Simone Mainardi
c543df45f9 Reworks suspicious file transfers 2020-05-13 19:38:24 +02:00
Simone Mainardi
0d7ed3f0ed Extends binary and unknown port alerts 2020-05-13 12:21:01 +02:00
Luca Deri
f4b25f30b3 Flow risk report improvemements 2020-05-12 12:57:36 +02:00
Luca Deri
e315158c1d Added plugin for handling flow risks reported by nDPI 2020-05-12 12:18:50 +02:00
Luca Deri
ff76407e68 Added detection of self-signed (< TLS 1.3) certificates 2020-05-08 09:53:31 +02:00
emanuele-f
ba5c64b107 Rework host label getters 
This fixes inconsistencies across the ntopng gui

Addresses #3699
 2020-05-07 17:47:18 +02:00
emanuele-f
04328b7f37 Fix alert formatting with percentage value 2020-04-29 15:47:14 +02:00
emanuele-f
237bac3afe Shorten the broadcast domain alert message 
Closes #3790
 2020-04-28 15:02:57 +02:00
emanuele-f
e3115e14e8 Alternative message for speedtest execution alerts 2020-04-28 12:53:43 +02:00
Simone Mainardi
290175b16f Refactors alrt builders into creators 
Refactors builders into creators: calls
 2020-04-27 15:53:56 +02:00
emanuele-f
00c5e9f909 Add ability to report resolved IP address for unreachable hosts 2020-04-27 15:46:03 +02:00
Simone Mainardi
efe4f9a8be Unifies alerts generation format with flow statuses 2020-04-27 14:37:04 +02:00