vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-05-06 20:46:19 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3
24376 commits 26 branches 19 tags 449 MiB
Commit graph

7561 commits

Author SHA1 Message Date
Luca Deri
dfa01cc736 Improved MAC address handling when 0.0.0.0 is used so that in this case we take inte MAC address into account 
The flow details page now reports the correct MAC
 2025-03-29 14:42:05 +01:00
Alfredo Cardigliano
236520afbf Update os_type validation 2025-03-28 10:38:42 +01:00
Alfredo Cardigliano
7b99f64158 Add safety checks 2025-03-28 09:00:43 +01:00
Luca Deri
7d8b599a8c DHCP fingerprint is now reported on flows 
Fixed OS inconsistencies
 2025-03-27 21:43:48 +01:00
Manuel Ceroni
486dc0e33e
Implemented nat detected alert (#9074) 2025-03-27 11:28:16 +01:00
Alfredo Cardigliano
eb5df64e5f Fix links 2025-03-26 16:47:40 +01:00
Luca Deri
e0b908b42e Removed obsoleted TLSSuspiciousESNIUsage 
Improved device type guessing based on the OS
 2025-03-25 21:56:38 +01:00
Luca Deri
bd422d221d Added MacMini device models 2025-03-25 15:43:48 +01:00
Luca Deri
fbe9b86d88 Added function for displaying device model 2025-03-25 15:35:19 +01:00
Luca Deri
809a83bdd5 Typo 2025-03-22 08:45:31 +01:00
Luca Deri
97997589c7 Updated Mac models list 2025-03-22 08:44:13 +01:00
Luca Deri
54f5b00098 Assets improvements 2025-03-21 18:57:34 +01:00
Luca Deri
a4e09a03e4 Minor cosmetic changes 2025-03-21 16:59:47 +01:00
Manuel Ceroni
fe0975ba2a
Added Service Down check to Scan Alert (#9066) 2025-03-21 16:55:29 +01:00
Alfredo Cardigliano
a35455bf27 Add utility function to mask IPs 2025-03-21 09:03:48 +01:00
Luca Deri
346e67fe27 Assets improvements 2025-03-20 21:50:00 +01:00
Alfredo Cardigliano
b6a95b82c8 Fix macOS label 2025-03-20 17:31:44 +01:00
Luca Deri
254af8566b Assets improvements 2025-03-18 22:32:31 +01:00
Luca Deri
14457b3818 Assets improvement 2025-03-18 20:58:09 +01:00
Luca Deri
704bb92b5b Asset rework 2025-03-18 18:01:44 +01:00
Alfredo Cardigliano
b077895c01 Fix format 2025-03-18 09:05:55 +01:00
Alfredo Cardigliano
b1fb4322f9 Fix correlation of suricata alerts for dns flows 2025-03-18 08:59:46 +01:00
Alfredo Cardigliano
8690becceb Parse query id from syslog alerts 2025-03-17 20:14:56 +01:00
Alfredo Cardigliano
0cff924bf8 Fix ext alert formatter 2025-03-17 18:34:04 +01:00
Manuel Ceroni
f5ea2e1062
Updated scan alert to display network address instead of network ID (#9043) 2025-03-17 15:39:59 +01:00
GabrieleDeri
a1e077c6ac
Added Unknown manufacturer filter (#9042) 
* Fixed dist and error codes in scss

* Moved network discovery to monitoring from dashboard

* Added unknown MAC manufacturer filter in assets page #9036
 2025-03-17 15:36:15 +01:00
GabrieleDeri
1f99754da4
Moved network discovery to monitoring from dashboard (#9041) 
* Fixed dist and error codes in scss

* Moved network discovery to monitoring from dashboard
 2025-03-17 14:17:17 +01:00
Luca Deri
4c4f5d9468 Fixes cento flow collection 2025-03-14 23:08:54 +01:00
Matteo Biscosi
d5c82eec2b Added lucide as internal library 2025-03-14 20:02:04 +01:00
Luca Deri
3d1eac8b1b Fixes failure when opening (sometimes) the interface timeseries page 2025-03-14 15:40:04 +01:00
Manuel Ceroni
43ead976bb
Implemented QoE Issues Alert (#9033) 
* Implemented QoE Issues Alert

* Fixed QoE Issue alert serializer
 2025-03-14 11:41:25 +01:00
Matteo Biscosi
e649e8b8fb Added comments and fixed ordering issue in assets 2025-03-14 10:34:45 +01:00
Matteo Biscosi
ff7d2caafa Fixes sql query 2025-03-13 16:28:56 +01:00
Matteo Biscosi
0f7344c79a Fixes issues with assets insert in clickhouse 2025-03-13 10:10:26 +01:00
Alfredo Cardigliano
86a35a1494 Fix filters from fingerprint custom queries 2025-03-12 18:17:28 +01:00
Matteo Biscosi
5f876167e5 Added assets dashboard 2025-03-12 17:08:46 +01:00
Alfredo Cardigliano
97ca40a349 Add ja4 client fingerprint and custom queries 2025-03-12 16:57:10 +01:00
Manuel Ceroni
69e91bd875
Updated service scan check and changed limits in Scan Alert (#9026) 2025-03-11 12:33:42 +01:00
Manuel Ceroni
00c6efdce6
Implemented network and service scan checks, merging them with the port scan check into a single alert (Scan Alert) (#9024) 2025-03-10 21:19:05 +01:00
Alfredo Cardigliano
a29c7edb1f Add configuration of dhcp options 114/160 2025-03-10 14:34:55 +01:00
Matteo Biscosi
1d6cfd2374 Possible fix for inactive hosts error (#9011) 2025-03-10 10:39:20 +01:00
Matteo Biscosi
02eeb2c6c5 Possible fix for asset_utils error (#9011) 2025-03-07 10:20:07 +01:00
Matteo Biscosi
2ba9fcda17 Fixes suspicious DGA domain alert (#8978) 2025-03-06 15:45:20 +01:00
Matteo Biscosi
ba09b280cb Added check for asset_utils fail 2025-03-05 11:53:05 +01:00
Matteo Biscosi
34b559e66d Added attacker in port scan (#9009) 2025-03-05 11:52:56 +01:00
Manuel Ceroni
83d6fb24da
Port scan alert aggregation (#9021) 2025-03-04 16:12:13 +01:00
Alfredo Cardigliano
d884c9bc14 Add alert set_as_attacker / set_as_victim for lua alerts on hosts 2025-03-03 08:55:19 +01:00
Luca
a72491832f Periodic flow check is now disabled by default 2025-02-28 18:58:34 +01:00
manuelceroni
bbbcd6510a Changed interval size and priority for port scan alerts 2025-02-28 13:14:17 +01:00
Alfredo Cardigliano
ab9224d2ce Extend lua alerts API with alert:set_require_attention() 2025-02-28 11:58:08 +01:00