vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-04-30 16:09:32 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3
16962 commits 26 branches 19 tags 446 MiB
Commit graph

39 commits

Author SHA1 Message Date
MatteoBiscosi
e9147aa37d Implemented connection failed alert (#6622) 2022-05-27 10:45:25 +02:00
MatteoBiscosi
7b51a4ca61 Added Fin Scan check (#5903) 2022-05-16 17:18:11 +02:00
Luca Deri
b0158f89c2 Reworked MAC/IP Reassociation alert used to detect spoofind and MITM (Man In The Middle) Attacks 2022-05-15 19:17:18 +02:00
Luca Deri
7c038e29da Implemented IEC104 Invalid Command Transition check/alert 2022-05-11 23:16:45 +02:00
MatteoBiscosi
524378cccd Changed alert drops description (#6575) 2022-05-09 11:47:01 +02:00
MatteoBiscosi
2bcf7c8dfa Added Suspicious Entropy alert (#6563) 2022-05-04 22:11:44 +02:00
Luca Deri
c430f9d6e6 Updated scan detection code (work in progress) 2022-02-21 10:39:29 +01:00
Luca Deri
269e9da142 (C) Update 2022-02-20 23:17:50 +01:00
Luca Deri
1fe96bc73b Initial work for implementing host/port scan detection (#6327) (#6328) 2022-02-20 23:17:04 +01:00
MatteoBiscosi
57a85de50e Cleaned up the code from plugin_utils 2022-02-11 12:07:23 +01:00
Matteo Biscosi
7439f589d7 Fixed alert no activity on interface not correctly working (#6291) 2022-02-08 14:35:26 +01:00
Matteo Biscosi
d304f02b91 Moved collector checks logic 2022-02-07 12:51:50 +01:00
Matteo Biscosi
b3594647a1 Fixes unexpected new device unused code (#6273) 2022-02-03 18:16:01 +01:00
Matteo Biscosi
a7c6016162 Moved too many drops plugin 2022-02-03 17:28:55 +01:00
Matteo Biscosi
59754483c9 Removed plugin from ntopng and migrated all of them 2022-02-03 17:23:03 +01:00
Matteo Biscosi
d990f2bb77 Example rework of plugin interface/slow_purge.lua 2022-02-03 17:23:02 +01:00
Alfredo Cardigliano
257ece18c0 Copyright update (Lua) 2022-01-03 09:42:33 +01:00
MatteoBiscosi
4528e5a660 Added Broadcast non-UDP traffic alert and minor fixes to apexcharts 2021-12-17 13:33:11 +01:00
Simone Mainardi
ac0969eddc Additional fixes for PktThresholdAlert 2021-11-18 18:30:25 +01:00
Marco Tranchida
98aa892aab
Implementazione nuovo check, progetto GR (#6074) 
* Add files via upload

* Add files via upload

* Add files via upload

* Add files via upload

* Add files via upload

* Add files via upload

* Add files via upload

* Add files via upload

* Add files via upload

* Update en.lua

* Update en.lua

* Update ntop_typedefs.h

* Update HostChecksStatus.h

* Update PktThreshold.cpp
 2021-11-18 17:15:07 +01:00
MatteoBiscosi
3f4a1a0e49 Changed ICMP flood per minute description (#5904) 2021-10-07 11:48:29 +02:00
MatteoBiscosi
fda446fb7c Added ICMP flood alert (#5904) 2021-10-07 11:42:22 +02:00
MatteoBiscosi
4b197ca2cc Changed alert name (#5805) 2021-10-01 15:52:51 +02:00
Simone Mainardi
ba64aad551 Introduces the IPS/IDS cat. to further classify checks 
Addresses #5899
 2021-09-20 11:55:47 +02:00
Simone Mainardi
5f70c1eff7 Implements support for obsolete client SSH version 
Addresses #5861
 2021-09-10 12:32:42 +02:00
Simone Mainardi
4b55e02899 Reworks check for Obsolete SSH that was not handling cli and srv 
Addresses #5861
 2021-09-10 11:58:46 +02:00
MatteoBiscosi
c15b62407c Separated Score Threshold and Anomaly alert (#5845) 2021-09-07 11:38:48 +02:00
MatteoBiscosi
37267ab935 Removed not used DES structure and Fixed non working alert (#5713) 2021-08-25 16:45:16 +02:00
Francesco Amodeo
de27966413
Implemented countries host check (#5713) 
* Added check and alert implementation

* Fixed size of estimation and some typo

* Added HLL counters and DES structure
Co-authored-by: Paolo Junior Mollica <p.mollica@studenti.unipi.it>

* fixes according comments of PR

* decreased memory footprint

* resolved conflicts

* fixed HostCheckID

* Removed wrongly committed file

Co-authored-by: paolo-junior-mollica <paolo.junior.mollica@gmail.com>
Co-authored-by: Matteo Biscosi <49585191+MatteoBiscosi@users.noreply.github.com>
 2021-08-25 15:50:07 +02:00
MatteoBiscosi
5df881478d Fixes domain names contacts alert not working 2021-08-25 12:34:38 +02:00
Gaetano Barresi
f650a3700a
Domain Names host check (#5723) 
* Adding/modifying .cpp for Domain Names host check

* Adding/modifying .h/.lua for Domain Names host check

* minor synstax fix

* dns_contacts

Co-authored-by: Stefano Russo <55586218+D0kken@users.noreply.github.com>
Co-authored-by: Stefano Russo <s.russo41@studenti.unipi.it>
 2021-08-25 11:22:41 +02:00
Alfredo Cardigliano
aad505f87a Add support for domain name match in Unexpected Server checks (required by #4869) 2021-08-11 09:53:06 +02:00
Simone Mainardi
5fe995ecfe Implements host check for NTP traffic 2021-07-27 12:19:52 +02:00
Simone Mainardi
343fc335c2 Implements support for non-community {host,flow} checks 2021-07-12 12:32:06 +02:00
Simone Mainardi
e70c16be27 Adds cog icon to configure checks from the flow details page 
Addresses #5606
 2021-07-01 17:28:37 +02:00
Simone Mainardi
18cbfc5b3a Fixes for invalid checks for packet/non-packet interfaces 
Addresses #5519
 2021-06-29 18:43:00 +02:00
Simone Mainardi
f48670a557 Prevents loading nEdge-only checks on non-nEdge systems 
Partially addresses #5519
 2021-06-29 18:05:47 +02:00
Simone Mainardi
4a526c3cdf Decouples checks from alerts (removes unnecessary flag is_alert) 2021-06-17 11:43:12 +02:00
Simone Mainardi
25159f0a9b Refactors {host,flow}_callbacks into {host,flow}_checks (lua) 2021-06-16 18:59:07 +02:00