vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-04-30 16:09:32 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3
16962 commits 26 branches 19 tags 446 MiB
Commit graph

55 commits

Author SHA1 Message Date
MatteoBiscosi
e9147aa37d Implemented connection failed alert (#6622) 2022-05-27 10:45:25 +02:00
MatteoBiscosi
65284b6929 Fixes Score Network alert (#6366) 2022-05-17 11:26:00 +02:00
MatteoBiscosi
7b51a4ca61 Added Fin Scan check (#5903) 2022-05-16 17:18:11 +02:00
Luca Deri
7c038e29da Implemented IEC104 Invalid Command Transition check/alert 2022-05-11 23:16:45 +02:00
MatteoBiscosi
2bcf7c8dfa Added Suspicious Entropy alert (#6563) 2022-05-04 22:11:44 +02:00
Luca Deri
3081d8d63b Added alert for SNMP MAC detection/disappear 2022-04-09 14:41:07 +02:00
Alfredo Cardigliano
673a7cf971 Add alert gateway_unreachable 2022-04-07 19:33:52 +02:00
Luca Deri
269e9da142 (C) Update 2022-02-20 23:17:50 +01:00
Luca Deri
c724f0fbb2 Implemented spider/bot detection risk 
Fixes for double flag visualization
 2022-02-17 21:06:44 +01:00
MatteoBiscosi
57a85de50e Cleaned up the code from plugin_utils 2022-02-11 12:07:23 +01:00
Luca
66450d4811 Added support for NDPI_ERROR_CODE_DETECTED security risk 2022-02-03 14:56:51 +01:00
Luca
d1a31b5b1f Added IDN risk handling 2022-02-03 11:57:14 +01:00
Luca Deri
0eec59aa2e Added support for NDPI_TLS_CERTIFICATE_ABOUT_TO_EXPIRE flow risk 2022-01-26 09:54:34 +01:00
Matteo Biscosi
795125c814 Added alert to network discovery (#6218) 2022-01-19 16:17:30 +01:00
Alfredo Cardigliano
257ece18c0 Copyright update (Lua) 2022-01-03 09:42:33 +01:00
Luca Deri
3dcad5296b Added support for nDPI possible exploit detection used to detect Log4J/Log4Shell exploits 2021-12-23 21:47:37 +01:00
Simone Mainardi
e89fe31dc1 Comments 2021-12-22 17:48:03 +01:00
MatteoBiscosi
4528e5a660 Added Broadcast non-UDP traffic alert and minor fixes to apexcharts 2021-12-17 13:33:11 +01:00
Simone Mainardi
ac0969eddc Additional fixes for PktThresholdAlert 2021-11-18 18:30:25 +01:00
Simone Mainardi
a014ce46a6 Fixes cleanup of old alerts when stored in Clickhouse 
Addresses #6066
 2021-11-10 16:50:44 +01:00
Simone Mainardi
a406391502 Implement stateful SNMP alert to detect too many MACs on non-trunk 
Addresses #5893
 2021-10-20 12:21:59 +02:00
MatteoBiscosi
7c10fba84b Implements ICMP flood check (#5904) 2021-10-07 11:40:51 +02:00
MatteoBiscosi
4b197ca2cc Changed alert name (#5805) 2021-10-01 15:52:51 +02:00
Simone Mainardi
63a5df06f6 Implement IPS activities logging (e.g., block, unblock) 
Addresses #5900
 2021-09-20 16:59:35 +02:00
Luca Deri
4cddc6c280 Added DNS fragment and packet too long alerts 2021-09-17 16:31:02 +02:00
Simone Mainardi
aecc1e3e65 Adds HTTP susp. content risk as example 
Addresses #5743
 2021-09-15 16:13:14 +02:00
Simone Mainardi
fef7723445 Implements dynamic loading of flow risk alerts in Lua 
Addresses #5743
 2021-09-15 13:57:43 +02:00
Simone Mainardi
4b55e02899 Reworks check for Obsolete SSH that was not handling cli and srv 
Addresses #5861
 2021-09-10 11:58:46 +02:00
MatteoBiscosi
c15b62407c Separated Score Threshold and Anomaly alert (#5845) 2021-09-07 11:38:48 +02:00
Francesco Amodeo
de27966413
Implemented countries host check (#5713) 
* Added check and alert implementation

* Fixed size of estimation and some typo

* Added HLL counters and DES structure
Co-authored-by: Paolo Junior Mollica <p.mollica@studenti.unipi.it>

* fixes according comments of PR

* decreased memory footprint

* resolved conflicts

* fixed HostCheckID

* Removed wrongly committed file

Co-authored-by: paolo-junior-mollica <paolo.junior.mollica@gmail.com>
Co-authored-by: Matteo Biscosi <49585191+MatteoBiscosi@users.noreply.github.com>
 2021-08-25 15:50:07 +02:00
Gaetano Barresi
f650a3700a
Domain Names host check (#5723) 
* Adding/modifying .cpp for Domain Names host check

* Adding/modifying .h/.lua for Domain Names host check

* minor synstax fix

* dns_contacts

Co-authored-by: Stefano Russo <55586218+D0kken@users.noreply.github.com>
Co-authored-by: Stefano Russo <s.russo41@studenti.unipi.it>
 2021-08-25 11:22:41 +02:00
Simone Mainardi
0c6392d8c7 Recycles an host alert id 2021-07-27 14:24:49 +02:00
Simone Mainardi
5fe995ecfe Implements host check for NTP traffic 2021-07-27 12:19:52 +02:00
Simone Mainardi
1a552d24ec Cleanup excessive traffic check (to be implemented as host check) 2021-07-27 11:39:40 +02:00
Simone Mainardi
aef24d06b0 Implements TLS cert validity check and corresponding test 
Addresses https://github.com/ntop/ntopng/issues/5434
Addresses https://github.com/ntop/nDPI/issues/1196
 2021-07-14 18:04:00 +02:00
Simone Mainardi
18cbfc5b3a Fixes for invalid checks for packet/non-packet interfaces 
Addresses #5519
 2021-06-29 18:43:00 +02:00
MatteoBiscosi
638bf881fd Migrated periodicity update alert into flow alert 2021-06-21 17:47:03 +02:00
MatteoBiscosi
48554751f9 Removed duplicated info from lateral movement alert 2021-06-17 12:02:56 +02:00
MatteoBiscosi
a89c95dba4 Migrated Lateral Movement alert from interface to flow (Fixes #5485) 2021-06-17 11:07:29 +02:00
Simone Mainardi
9a541f14ba Cleanup unused alert_check_calls_drops.lua 2021-06-16 18:48:51 +02:00
Simone Mainardi
76fd315d1b Refactors user_scripts into checks (lua) 2021-06-16 18:02:22 +02:00
Luca Deri
c76cce1c4f Renamed Host Ban to Dangerous Host 2021-06-09 22:54:17 +02:00
Matteo Biscosi
bcc717689f Partially Implements traffic blocking (#5387) 2021-05-21 18:40:49 +02:00
Alfredo Cardigliano
8dd0f903a1 Move host log alerts to host alerts. Fix syslog alerts. 2021-05-03 17:37:18 +02:00
Matteo Biscosi
1a30770933 Initial implementation of NTP and DNS traffic alert 2021-04-15 17:40:17 +02:00
Simone Mainardi
1782734e0c Removes unused host callbacks 2021-04-13 11:01:06 +02:00
Matteo Biscosi
fa5910c06f Implemented flow and host alert for remote access 2021-04-12 16:34:36 +02:00
Luca Deri
73c61e1308 Implemented score anomaly plugin 2021-04-11 18:57:23 +02:00
Simone Mainardi
b5717ea209 Adds manifest.lua file for network anomaly plugin 2021-04-11 14:36:53 +02:00
Luca Deri
8b2faf21f5 Added script for checking flow number anomalies 2021-04-11 13:59:47 +02:00