vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-04-30 16:09:32 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3
23362 commits 26 branches 19 tags 446 MiB
Commit graph

48 commits

Author SHA1 Message Date
GabrieleDeri
6dca44aeb6
Added network configuration menu section. Removed checks text box area (#8710) 
* Added network configuration menu section. Removed checks text box area
 2024-09-09 09:53:17 +02:00
Alfredo Cardigliano
3b0b60c422 Remove JA3 leftovers. Update alert keys. Rename malivious JA3 to malicious Fingerprint. 2024-09-02 18:34:17 +02:00
Matteo Biscosi
46fff4d8e3 Updated checks documentation (#8463) 2024-08-08 17:25:35 +02:00
Nicolò Maio
59075f5e10
Splitting blacklisted flow alert and creating two new alerts. (#8354) (#8355) 
* Splitting blacklisted flow alert and creating two new alerts. (#8354)

* Renaming to 'Blacklisted Client Contact' and 'Blacklisted Server Contact'. (#8354)
 2024-04-24 17:37:30 +02:00
Nicolò Maio
636ba2975c
Add Flow Reset Alert and counter. (#8264) (#8348) 
* Add Flow Reset Alert and counter. (#8264)

* Renaming to TCP Flow Reset. (#8264)

* Renaming the value retrieved by the getName method. (#8264)
 2024-04-24 17:15:20 +02:00
Nicolò Maio
fd6b0958c3
Rename the alert to "Remote to Local Insecure Flow". (#8257) (#8339) 2024-04-18 12:45:54 +02:00
Matteo Biscosi
5edfdeedcd Fixes various lua memory issues 2024-02-22 11:22:52 +00:00
Luca Deri
55870e97b9 (C) Update 2024-01-12 11:44:18 +01:00
Alfredo Cardigliano
8ea3d4bb59 Move connection_failed check definition to pro 2024-01-08 17:28:32 +01:00
Matteo Biscosi
f9a55743b6 Added malware host contacted check 2023-10-18 10:40:54 +00:00
Matteo Biscosi
3ff83d802f Fixes possible exploit alert name 2023-08-22 15:44:17 +00:00
Luca Deri
96e10b12a5 Added stub for RareDestination check/alert implementation #6416 and #6417 2023-03-22 15:11:53 +01:00
Matteo Biscosi
76267099a2 Fixes alerts inconsistent alerts and checks names (#7314) 2023-03-14 15:36:07 +00:00
Matteo Biscosi
fc82eff56b Updated alert to NDPI_NUMERIC_IP_HOST 2023-03-02 15:18:40 +00:00
MatteoBiscosi
ddb55b4d7e Updated ndpi alerts (#7200) 2023-02-09 18:46:37 +01:00
Nicolò Maio
3d741f0e75
Fix title discrepancy on known proto on non std port alert. (#7217) 2023-02-08 12:06:31 +01:00
Nicolò Maio
ddd3e4318e
Fix VLANs form. (#7126) (#7207) 
* Fix VLANs form. (#7126)

* Fix VLAN lower case. (#7126)
 2023-02-06 14:47:20 +00:00
Nicolò Maio
7162045cdd
Add VLAN bidirectional traffic alert (#7126) (#7194) 
* Add VLAN bidirectional traffic alert (#7126)

* Add alert description. (#7126)
 2023-02-03 10:33:25 +01:00
MatteoBiscosi
1c5fbe7df3 Fixes offline option not working 2023-01-13 18:31:07 +01:00
MatteoBiscosi
39aaaf58da Moved the TCP packets issues alert to default disabled 2022-11-28 12:16:12 +01:00
MatteoBiscosi
372c54294e Disabled check by default 2022-11-21 16:04:17 +01:00
Luca Deri
80db634bfe Implemented skeleton of CustomFlowLuaScriptAlert check 2022-11-19 20:31:24 +01:00
MatteoBiscosi
b6692f3fea Added TCP Packets issues check (#6899) 2022-11-16 11:28:16 +01:00
MatteoBiscosi
db32c0c67a Moved tcp issues generci alert 2022-11-11 12:41:42 +01:00
MatteoBiscosi
4ee36c721f Removed still not implemented check (#6977) 2022-11-11 12:26:34 +01:00
MatteoBiscosi
7bfc2fdde4 Fixes Flow risks not defined (#6939) 2022-10-21 13:37:08 +02:00
MatteoBiscosi
4728baed14 Fixes inconsistent naming in ntopng (#6716) 2022-10-17 12:52:47 +02:00
MatteoBiscosi
687d508daa Fixes IEC alerts triggered even when disabled (#6682) 2022-07-19 11:14:25 +02:00
MatteoBiscosi
3681ca34dc Added ndpi http suspicious content alert mapping 2022-07-15 11:40:20 +02:00
MatteoBiscosi
755c90e0c2 Changed from UDP unidirection to unidirectiont traffic 2022-06-21 15:11:54 +02:00
MatteoBiscosi
4f8c5c6cec Moved UDP unidirection to nDPI alerts 2022-06-21 11:37:46 +02:00
Alfredo Cardigliano
69f639c16b Fix FQDN validation in unexpected dns check (fix #4869) 2022-06-17 13:13:54 +02:00
MatteoBiscosi
3509b3b74b Added dns fragmented alert 2022-05-31 18:34:22 +02:00
MatteoBiscosi
167cf6484a Updated ndpi flow risk alerts 2022-05-31 17:15:21 +02:00
MatteoBiscosi
e9147aa37d Implemented connection failed alert (#6622) 2022-05-27 10:45:25 +02:00
Luca Deri
7c038e29da Implemented IEC104 Invalid Command Transition check/alert 2022-05-11 23:16:45 +02:00
MatteoBiscosi
2bcf7c8dfa Added Suspicious Entropy alert (#6563) 2022-05-04 22:11:44 +02:00
MatteoBiscosi
57a85de50e Cleaned up the code from plugin_utils 2022-02-11 12:07:23 +01:00
Alfredo Cardigliano
257ece18c0 Copyright update (Lua) 2022-01-03 09:42:33 +01:00
MatteoBiscosi
4528e5a660 Added Broadcast non-UDP traffic alert and minor fixes to apexcharts 2021-12-17 13:33:11 +01:00
MatteoBiscosi
4b197ca2cc Changed alert name (#5805) 2021-10-01 15:52:51 +02:00
Simone Mainardi
5f70c1eff7 Implements support for obsolete client SSH version 
Addresses #5861
 2021-09-10 12:32:42 +02:00
Simone Mainardi
4b55e02899 Reworks check for Obsolete SSH that was not handling cli and srv 
Addresses #5861
 2021-09-10 11:58:46 +02:00
Alfredo Cardigliano
aad505f87a Add support for domain name match in Unexpected Server checks (required by #4869) 2021-08-11 09:53:06 +02:00
Simone Mainardi
e70c16be27 Adds cog icon to configure checks from the flow details page 
Addresses #5606
 2021-07-01 17:28:37 +02:00
Simone Mainardi
18cbfc5b3a Fixes for invalid checks for packet/non-packet interfaces 
Addresses #5519
 2021-06-29 18:43:00 +02:00
Simone Mainardi
4a526c3cdf Decouples checks from alerts (removes unnecessary flag is_alert) 2021-06-17 11:43:12 +02:00
Simone Mainardi
25159f0a9b Refactors {host,flow}_callbacks into {host,flow}_checks (lua) 2021-06-16 18:59:07 +02:00