vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-04-30 07:59:35 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3
23362 commits 26 branches 19 tags 446 MiB
Commit graph

111 commits

Author SHA1 Message Date
GabrieleDeri
6dca44aeb6
Added network configuration menu section. Removed checks text box area (#8710) 
* Added network configuration menu section. Removed checks text box area
 2024-09-09 09:53:17 +02:00
Alfredo Cardigliano
3b0b60c422 Remove JA3 leftovers. Update alert keys. Rename malivious JA3 to malicious Fingerprint. 2024-09-02 18:34:17 +02:00
Alfredo Cardigliano
548c9aeec5 Remove obsolete JA3 support 2024-08-09 09:08:32 +02:00
Matteo Biscosi
4b1b37103a Changed alert msg and added support to zmq only interface alerts 2024-08-08 17:25:35 +02:00
Matteo Biscosi
46fff4d8e3 Updated checks documentation (#8463) 2024-08-08 17:25:35 +02:00
Luca Deri
16b5a8ccc1 Implemented no exporter/probe activity (#8608) 2024-08-07 18:06:51 +02:00
Alfredo Cardigliano
b09688beee Add new alert no_exporter_activity 2024-08-07 13:05:48 +02:00
Alfredo Cardigliano
60c6d0c9a7 Do not trigger no_if_activity for pcap or db dump anlysis 2024-07-18 13:59:22 +00:00
Luca Deri
4ecd7e8bf6 Removed trace 2024-07-16 21:30:01 +02:00
Matteo Biscosi
13287d609e Added alert when dropping flows due to flow exporters limit exceeded 2024-07-15 18:58:36 +02:00
Luca Deri
d780b05308 Added additional check (#8389) 2024-05-10 12:07:55 +02:00
Nicolò Maio
59075f5e10
Splitting blacklisted flow alert and creating two new alerts. (#8354) (#8355) 
* Splitting blacklisted flow alert and creating two new alerts. (#8354)

* Renaming to 'Blacklisted Client Contact' and 'Blacklisted Server Contact'. (#8354)
 2024-04-24 17:37:30 +02:00
Nicolò Maio
636ba2975c
Add Flow Reset Alert and counter. (#8264) (#8348) 
* Add Flow Reset Alert and counter. (#8264)

* Renaming to TCP Flow Reset. (#8264)

* Renaming the value retrieved by the getName method. (#8264)
 2024-04-24 17:15:20 +02:00
Nicolò Maio
fd6b0958c3
Rename the alert to "Remote to Local Insecure Flow". (#8257) (#8339) 2024-04-18 12:45:54 +02:00
Matteo Biscosi
88e5d26afe Removed no more used checks (#8235) 2024-02-27 05:49:44 -05:00
Matteo Biscosi
5edfdeedcd Fixes various lua memory issues 2024-02-22 11:22:52 +00:00
Luca Deri
2ee2c180a5 Removed alerts no longer necessary as they have been replaced by local traffic rules 2024-02-21 22:54:22 +01:00
Matteo Biscosi
48462f4d96 Fixes circular dependency between lua_utils and rest_utils 2024-02-20 10:02:33 +00:00
Matteo Biscosi
64b603d855 Fixes slow periodic activities failing in case of empty string 2024-02-17 09:35:53 +00:00
Matteo Biscosi
952fa6e995 Fixes missing functions 2024-02-17 09:31:51 +00:00
Luca Deri
55870e97b9 (C) Update 2024-01-12 11:44:18 +01:00
Alfredo Cardigliano
8ea3d4bb59 Move connection_failed check definition to pro 2024-01-08 17:28:32 +01:00
Alfredo Cardigliano
6098dc87b0 Fix discovery alerts (#8132) 2023-12-27 15:58:08 +01:00
Matteo Biscosi
ccc7382dd0 Fixes dropped alert not working 2023-12-01 09:40:24 +00:00
Alfredo Cardigliano
e8f10f0795 Add Alert:set_category for host/flow lua alerts with no check definition in lua 2023-11-28 12:30:53 +01:00
Matteo Biscosi
ed4ab2836f Added system alert in case of ntopng failure (#8040) 2023-11-22 10:22:22 +00:00
Matteo Biscosi
7b66ca5f6f Moved alert from critical to emergency 2023-11-21 11:04:47 +00:00
Matteo Biscosi
f9a55743b6 Added malware host contacted check 2023-10-18 10:40:54 +00:00
Matteo Biscosi
3ff83d802f Fixes possible exploit alert name 2023-08-22 15:44:17 +00:00
Alfredo Cardigliano
2ff83bcdc3 Add check for periodic scripts changing the interface 2023-07-13 16:14:10 +02:00
Alfredo Cardigliano
bc74c9d1df Improve failure messages 2023-07-13 12:39:57 +02:00
Alfredo Cardigliano
b8801431b8 Script review 2023-05-22 16:26:38 +02:00
Luca Deri
96e10b12a5 Added stub for RareDestination check/alert implementation #6416 and #6417 2023-03-22 15:11:53 +01:00
Matteo Biscosi
76267099a2 Fixes alerts inconsistent alerts and checks names (#7314) 2023-03-14 15:36:07 +00:00
Matteo Biscosi
fc82eff56b Updated alert to NDPI_NUMERIC_IP_HOST 2023-03-02 15:18:40 +00:00
Alfredo Cardigliano
b15bd6c965 Fix message 2023-02-16 17:47:56 +01:00
Alfredo Cardigliano
21f75ed0af Add failure reason msg 2023-02-16 16:50:20 +01:00
Alfredo Cardigliano
669a4a484a Add syslog handler for nbox 2023-02-16 16:35:47 +01:00
Matteo Biscosi
7e6bdde2bd Added support to multi_threshold template for every hook 2023-02-14 11:56:25 +01:00
Nicolò Maio
6d2ee3d599
Add network issue alert (#6691) (#7228) 
* Add network issues alert. (#6691)

* Fix alert subtype. (#6691)

* Update default values. (#6691)

* Minor fix. (#6691)
 2023-02-14 05:40:06 -05:00
MatteoBiscosi
ddb55b4d7e Updated ndpi alerts (#7200) 2023-02-09 18:46:37 +01:00
Nicolò Maio
3d741f0e75
Fix title discrepancy on known proto on non std port alert. (#7217) 2023-02-08 12:06:31 +01:00
Nicolò Maio
ddd3e4318e
Fix VLANs form. (#7126) (#7207) 
* Fix VLANs form. (#7126)

* Fix VLAN lower case. (#7126)
 2023-02-06 14:47:20 +00:00
Nicolò Maio
7162045cdd
Add VLAN bidirectional traffic alert (#7126) (#7194) 
* Add VLAN bidirectional traffic alert (#7126)

* Add alert description. (#7126)
 2023-02-03 10:33:25 +01:00
Alfredo Cardigliano
73af3fa521 Add support for external (REST) host alerts (#7170) 2023-01-26 15:34:54 +01:00
MatteoBiscosi
1c5fbe7df3 Fixes offline option not working 2023-01-13 18:31:07 +01:00
MatteoBiscosi
cde463a324 Added RST scan alert (#5903) 2022-11-30 17:01:49 +01:00
MatteoBiscosi
39aaaf58da Moved the TCP packets issues alert to default disabled 2022-11-28 12:16:12 +01:00
Luca Deri
71fbbdbf58 Implemented custom host script (WIP) 2022-11-24 12:34:14 +01:00
MatteoBiscosi
71bb0efbc2 Added DNS flood alert (#5905) 2022-11-22 11:13:02 +01:00