vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-05-23 03:50:20 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3
14685 commits 26 branches 19 tags 462 MiB
Commit graph

1152 commits

Author SHA1 Message Date
Alfredo Cardigliano
74b2beb829 Improve navbar look 2021-08-13 10:12:44 +02:00
Simone Mainardi
ef9597140b nEdge compilation fix 2021-08-11 17:23:03 +02:00
Simone Mainardi
f6560d1974 Implements and rework alert for flow periodicity change 2021-08-11 15:11:44 +02:00
Simone Mainardi
4bcfe1dac5 Allows also non-well-known-ports to be checked when swapping flows 
Addresses #5745
 2021-08-09 16:22:13 +02:00
Luca Deri
aca352452e Fixes #5733 and the regressions introduced by 13d804e199 
Updated code for new nDPI API
 2021-08-07 18:23:44 +02:00
Alfredo Cardigliano
13d804e199 Set proto icon to lock only for encrypted flows (#5733) 2021-08-06 10:28:19 +02:00
Simone Mainardi
de9886d5db Avoids setting host names when NDPI_HTTP_NUMERIC_IP_HOST is detected 2021-08-06 09:52:10 +02:00
Simone Mainardi
d23ea8fd7c Avoids setting TLS name upon certificate mismatch 2021-08-05 15:27:27 +02:00
Simone Mainardi
51cb8aae77 Improves the swap heuristics and adds a third test case 
Addresses #5706
 2021-08-04 18:32:42 +02:00
Simone Mainardi
15489b1d9c Improves the peers swap heuristic 
Addresses #5706
 2021-08-02 18:13:48 +02:00
Alfredo Cardigliano
7b62dcfbcb Change function return code to match the name 2021-08-02 16:01:00 +02:00
Simone Mainardi
08fa615c7d Minor fix 2021-07-23 18:05:44 +02:00
Simone Mainardi
b8dc6653fa Reworks handling of HTTP host names 
Addresses #5706
 2021-07-23 12:34:19 +02:00
Simone Mainardi
71089c8270 Reworks handling of TLS host names 
Addresses #5706
 2021-07-23 12:23:32 +02:00
Simone Mainardi
678369d969 Fixes update of partial traffic stats when peers are swapped 2021-07-23 12:03:39 +02:00
Simone Mainardi
f41faab5da Reworks TLS/MDNS flow names 2021-07-23 11:43:51 +02:00
Simone Mainardi
c5d876207c Fixes nEdge interface stats inc 2021-07-13 16:50:20 +02:00
Alfredo Cardigliano
e247139c02 Add ip_version to the alert DB. Add filter on IP version in alert explorer. 2021-07-09 18:04:27 +02:00
Luca Deri
e55f88faa2 ZMQ timeout optimizazion 2021-07-09 16:36:46 +02:00
Simone Mainardi
04a5a6ea78 Fixes DGA domains not properly handled over ZMQ 
Fixes #5649
 2021-07-07 19:20:39 +02:00
Simone Mainardi
c4142e975b Fixes flow alerts not stored in view interfaces 
Addresses #5639
 2021-07-07 12:32:52 +02:00
Luca
112c931226 Observation point code cleanup (WIP) 2021-07-01 23:26:15 +02:00
Luca
336f1f3d9f Adding observationPoint support (WIP) 2021-06-30 20:03:37 +02:00
Luca Deri
e90d4cd57b Compilation fix 2021-06-30 15:29:25 +02:00
Luca
b43ea2c78e Initial work towards support of observation points 2021-06-28 14:56:25 +02:00
Simone Mainardi
03b1633d1a Adds extra tracing for alert drops 
Addresses #5558
 2021-06-23 16:13:47 +02:00
MatteoBiscosi
638bf881fd Migrated periodicity update alert into flow alert 2021-06-21 17:47:03 +02:00
Luca Deri
195fe9578c Improved observation point id support and flow reporting 2021-06-19 00:16:48 +02:00
MatteoBiscosi
2d61babeaf Removed unused lateral movement variable 2021-06-17 16:59:15 +02:00
MatteoBiscosi
a89c95dba4 Migrated Lateral Movement alert from interface to flow (Fixes #5485) 2021-06-17 11:07:29 +02:00
Luca Deri
c0be0e4620 Compilation fix due to nDPI API change 2021-06-17 09:46:44 +02:00
Alfredo Cardigliano
bd92502baa Compilation fix 2021-06-17 07:39:24 +00:00
Simone Mainardi
40f5c4e821 Refactors {flow,host}callbacks into {flow,host}checks (C++) 2021-06-16 15:27:38 +02:00
Simone Mainardi
cf50f4e0e7 Uses possibly swapped cli and srv to set host names 
Possibly resolves #5506
 2021-06-16 09:14:14 +02:00
Luca Deri
846d24c5e9 Initial VLANid rework 2021-06-15 23:01:59 +02:00
Alfredo Cardigliano
1abb8e0c0d Improve filtering on l7 ptoto. Fix returned l7 ID. 2021-06-15 11:39:43 +02:00
Simone Mainardi
117e29a903 Fixes and improvements to the peers swap heuristic 
Fixes #5489
 2021-06-14 12:59:00 +02:00
Simone Mainardi
bd5ebabb16 Shows unhanlded flow risks in the flow details page 
Addresses #5402
 2021-06-11 17:56:49 +02:00
Simone Mainardi
3d1ab71f9b Reworks scores for nDPI-risk flow alerts 
Addresses #5402
 2021-06-11 15:22:32 +02:00
Alfredo Cardigliano
3a2c8052f2 Fix floe callbacks cli/src score 2021-06-11 12:15:15 +02:00
Simone Mainardi
0bd6efe5dc Implements breakdown for flow score 
Implements #5402
 2021-06-10 14:27:19 +02:00
Simone Mainardi
d7c2205e2d Minor fix to getFlowInfo 2021-06-09 14:22:08 +02:00
Luca
28368ac887 Harmonized host names in flows and used ASN instead of the meaningless MAC for remote hosts 2021-06-09 11:09:27 +02:00
Simone Mainardi
409a7ceed7 Fixes tests output 2021-06-09 11:00:58 +02:00
Simone Mainardi
c066e623e5 Fixes non-deterministic DNS DGA alerts 
Fixes #5437
 2021-06-08 17:31:36 +02:00
Simone Mainardi
4ccca54458 Handles possible races in setting multiple DNS queries 
Addresses #5437
 2021-06-08 17:11:56 +02:00
Luca Deri
c7939fb212 Added JA3 handling via ZMQ 2021-06-04 00:10:07 +02:00
Alfredo Cardigliano
94dd271814 Set flow score using ndpi_risk2score for Risk alerts. Change flow score from 8 to 16 bit in API calls. 2021-06-03 11:23:20 +02:00
Matteo Biscosi
bab578ca66 Removed dubplicated code 2021-06-01 18:04:14 +02:00
Simone Mainardi
f9f729e4aa Fixes last seen in lua_duration_info 2021-06-01 17:57:52 +02:00