vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-05-03 09:20:10 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
12744 commits 26 branches 19 tags 446 MiB
Commit graph

19 commits

Author SHA1 Message Date
Matteo Biscosi
10fb8bbecc Implements #4919 custom alert severity 2021-01-27 12:29:19 +01:00
Simone Mainardi
ad59b61245 Implements dropdown search for interfaces 
Partially addresses #4800
 2021-01-08 17:45:41 +01:00
Simone Mainardi
1aaf92e843 Reworks attacker/victim in alerts 2021-01-07 19:03:42 +01:00
Luca Deri
a1178a0791 Updated (C) 2021-01-02 12:08:23 +01:00
Matteo Biscosi
e94f2cb0b4 Fixed #4737 integration with fail2ban 2020-12-30 11:46:10 +01:00
Simone Mainardi
f839b6ba76 Removes flow_consts requires no longer necessary 2020-12-22 18:06:50 +01:00
Matteo Biscosi
bcf2c2c1ed Migrates alerts to an object-oriented implementation 2020-12-22 14:48:00 +01:00
matteo
e24ef4ef35 Revert "Migrates alerts to an object-oriented implementation" 
This reverts commit fbc283f12f.
 2020-12-22 13:13:57 +01:00
matteo
fbc283f12f Migrates alerts to an object-oriented implementation 2020-12-22 13:00:25 +01:00
Simone Mainardi
b3dc39c641 Refactors alert_severities into an independend Lua module 2020-11-30 15:28:17 +01:00
Luca Deri
06161556ac Fixes issues with unexpected XXX alerts where impacted server was not reported 
Added Lua getFlowProtoClientIP/getFlowProtoServerIP calls in flows
 2020-11-25 15:52:03 +01:00
Matteo Biscosi
507583db64
Added host category to flow and host alerts (#4767) 
* Fixed shell endpoint bug and added notice when executing the script

* Added victim and attacker to security plugins

* Updated hosts alert with host_category info

* Added host category to hosts alert description

* Added host category to flows

Co-authored-by: matteo <biscosi@ntop.org>
 2020-11-20 19:14:07 +01:00
Simone Mainardi
b87e641086 Fixes validation of unexpected servers whitelist 2020-11-14 17:39:59 +01:00
Matteo Biscosi
0e341f3d0b
Modified flow scripts in view of the new trigger_status (#4710) 
* Modified blacklisted script in view of the new flow_script API

* Modified plugins scripting in view of the new API

* Modified flow scripts with the new trigger API

* Fixed creators severity

Co-authored-by: matteo <biscosi@ntop.org>
 2020-11-12 13:52:53 +01:00
gabryon99
cf16003826 add notification for unexpected plugins (#4659) 2020-11-02 11:42:30 +01:00
Luca Deri
374b97c516 Unexpected protocol plugins default to disable 2020-10-15 21:44:24 +02:00
Daniele Zulberti
3b8ee0e9f0 Added use of local variables. 
Used flow.getInfo() and srv.ip instead flow.getServerKey().
Now the for breaks when a match is found.
 2020-10-11 18:09:47 +02:00
Luca Deri
2093488db3 Minor fixe: when the list of DNS/SMTP servers is empty, no check is performed 2020-10-10 10:33:47 +02:00
Daniele Zulberti
d74caa9d2b Added unexpected SMTP plugin 2020-10-09 17:06:23 +02:00