141 commits

Author	SHA1	Message	Date
Matteo Biscosi	3ca4ad98ae	Added vulnerability issues alert (#7717)	2023-08-04 13:24:27 +00:00
Alfredo Cardigliano	823757f0a1	Typo	2023-07-31 09:44:52 +02:00
Matteo Biscosi	fcd6102ad0	Reworked behavior analysis alerts	2023-06-16 14:32:02 +00:00
Luca Deri	e86cd0f2ce	added Modbus Invalid Transition Alert	2023-06-05 00:53:27 +02:00
Luca Deri	4a13dc41d5	Implemented Modbus exceptions	2023-06-01 22:53:59 +02:00
Alfredo Cardigliano	2434ae9e76	Cleanup deprecated code	2023-05-18 18:36:25 +02:00
Nicolo Maio	5bf92eec23	Add backend endpoint to handle checks. (#7446)	2023-05-15 16:12:17 +00:00
Luca Deri	96e10b12a5	Added stub for RareDestination check/alert implementation #6416 and #6417	2023-03-22 15:11:53 +01:00
Matteo Biscosi	fc82eff56b	Updated alert to NDPI_NUMERIC_IP_HOST	2023-03-02 15:18:40 +00:00
Nicolò Maio	cf8a89a7e1	Add lowerbound and upperbound choice and percentage threshold on host rules. (#6855) (#7238) ... * Add lowerbound and percentage threshold on host rules. (#6855) * Add interface rules. (#6855) * Added ability to blacklist hosts via Lua API * Not supposed to be committed * Method signature change to be called it also from a lua host script * Fix empty string heck * Add param check * Add example listing alerts * Fix params check * Fix alert raw queris * Removed debug code * MacOS changes * Updated (C) * Warning fixes * Removed sprintf calls * Added rx_only_hosts classification * https://github.com/ntop/ntopng/issues/7233; extend datatable component to allow external vue components in table menu bar * Update dist: https://github.com/ntop/ntopng/issues/7233; extend datatable component to allow external vue components in table menu bar * Remove obsoleted comment * Minor GUI fix. (#6855) * Fix on alert format. (#6855) * Minor fix. (#6855) * Update doc. (#6855) --------- Co-authored-by: Luca Deri <lucaderi@users.noreply.github.com> Co-authored-by: Luca Deri <deri@ntop.org> Co-authored-by: Alfredo Cardigliano <cardigliano@ntop.org> Co-authored-by: uccidibuti <vannucci@ntop.org>	2023-02-21 14:37:09 +01:00
Nicolò Maio	6d2ee3d599	Add network issue alert (#6691) (#7228) ... * Add network issues alert. (#6691) * Fix alert subtype. (#6691) * Update default values. (#6691) * Minor fix. (#6691)	2023-02-14 05:40:06 -05:00
MatteoBiscosi	ddb55b4d7e	Updated ndpi alerts (#7200)	2023-02-09 18:46:37 +01:00
Nicolò Maio	7162045cdd	Add VLAN bidirectional traffic alert (#7126) (#7194) ... * Add VLAN bidirectional traffic alert (#7126) * Add alert description. (#7126)	2023-02-03 10:33:25 +01:00
Alfredo Cardigliano	73af3fa521	Add support for external (REST) host alerts (#7170)	2023-01-26 15:34:54 +01:00
Luca Deri	8acaf30b2e	Enhancement to support NDPI_TCP_ISSUES flow risk	2023-01-24 23:11:25 +01:00
Luca Deri	ccd8890e54	Fixed bug that reported wrong DNS information	2023-01-23 19:18:17 +01:00
Luca Deri	f718854bce	Improved report of periodic flows ... Updated nDPI flow risks list	2022-12-31 18:08:21 +01:00
Luca Deri	21101c43f1	Added detection of periodic flows and exported it as flow risk in both flows and alerts	2022-12-30 19:48:26 +01:00
Luca Deri	c42fdd60c9	Added traffic volume alert	2022-12-19 23:17:44 +01:00
MatteoBiscosi	cde463a324	Added RST scan alert (#5903)	2022-11-30 17:01:49 +01:00
MatteoBiscosi	63aacc9ec9	Fixes incorrect flow alert key	2022-11-28 12:09:51 +01:00
Luca Deri	71fbbdbf58	Implemented custom host script (WIP)	2022-11-24 12:34:14 +01:00
MatteoBiscosi	2e27e21cc8	Added SNMP flood check (#5905)	2022-11-23 12:14:42 +01:00
MatteoBiscosi	71bb0efbc2	Added DNS flood alert (#5905)	2022-11-22 11:13:02 +01:00
Luca Deri	80db634bfe	Implemented skeleton of CustomFlowLuaScriptAlert check	2022-11-19 20:31:24 +01:00
MatteoBiscosi	7bfc2fdde4	Fixes Flow risks not defined (#6939)	2022-10-21 13:37:08 +02:00
Luca	0aa60f5001	Added support for HTTP Obsolete HTTP server flow risk	2022-10-04 22:34:21 +02:00
Luca Deri	7992446d9e	Implements Local Hosts BlackList Check #6858	2022-09-09 22:51:12 +02:00
MatteoBiscosi	d6471d8dac	Added device connection/disconnection alert (#6801)	2022-08-05 10:46:18 +02:00
MatteoBiscosi	3db8cc6cc8	Added check when SNMP traffic changes (#6144)	2022-07-20 12:42:41 +02:00
MatteoBiscosi	7f49e1cb04	Added SNMP interface error alert (#6747)	2022-07-15 17:11:14 +02:00
MatteoBiscosi	755c90e0c2	Changed from UDP unidirection to unidirectiont traffic	2022-06-21 15:11:54 +02:00
MatteoBiscosi	4f8c5c6cec	Moved UDP unidirection to nDPI alerts	2022-06-21 11:37:46 +02:00
Luca Deri	5de07dc827	Added support for nDPI unidirectional traffic risk	2022-06-20 00:46:51 +02:00
Luca Deri	9d364c69b4	Fixed TCP with no answer alert definition	2022-06-07 13:11:35 +02:00
MatteoBiscosi	68671222bd	Added DHCP starvation alert (#6659)	2022-06-06 17:39:12 +02:00
MatteoBiscosi	e9147aa37d	Implemented connection failed alert (#6622)	2022-05-27 10:45:25 +02:00
MatteoBiscosi	65284b6929	Fixes Score Network alert (#6366)	2022-05-17 11:26:00 +02:00
MatteoBiscosi	7b51a4ca61	Added Fin Scan check (#5903)	2022-05-16 17:18:11 +02:00
Luca Deri	7c038e29da	Implemented IEC104 Invalid Command Transition check/alert	2022-05-11 23:16:45 +02:00
MatteoBiscosi	2bcf7c8dfa	Added Suspicious Entropy alert (#6563)	2022-05-04 22:11:44 +02:00
Luca Deri	3081d8d63b	Added alert for SNMP MAC detection/disappear	2022-04-09 14:41:07 +02:00
Alfredo Cardigliano	673a7cf971	Add alert gateway_unreachable	2022-04-07 19:33:52 +02:00
Luca Deri	269e9da142	(C) Update	2022-02-20 23:17:50 +01:00
Luca Deri	c724f0fbb2	Implemented spider/bot detection risk ... Fixes for double flag visualization	2022-02-17 21:06:44 +01:00
MatteoBiscosi	57a85de50e	Cleaned up the code from plugin_utils	2022-02-11 12:07:23 +01:00
Luca	66450d4811	Added support for NDPI_ERROR_CODE_DETECTED security risk	2022-02-03 14:56:51 +01:00
Luca	d1a31b5b1f	Added IDN risk handling	2022-02-03 11:57:14 +01:00
Luca Deri	0eec59aa2e	Added support for NDPI_TLS_CERTIFICATE_ABOUT_TO_EXPIRE flow risk	2022-01-26 09:54:34 +01:00
Matteo Biscosi	795125c814	Added alert to network discovery (#6218)	2022-01-19 16:17:30 +01:00