vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-04-30 16:09:32 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3
20704 commits 26 branches 19 tags 446 MiB
Commit graph

83 commits

Author SHA1 Message Date
Matteo Biscosi
3ff83d802f Fixes possible exploit alert name 2023-08-22 15:44:17 +00:00
Alfredo Cardigliano
2ff83bcdc3 Add check for periodic scripts changing the interface 2023-07-13 16:14:10 +02:00
Alfredo Cardigliano
bc74c9d1df Improve failure messages 2023-07-13 12:39:57 +02:00
Alfredo Cardigliano
b8801431b8 Script review 2023-05-22 16:26:38 +02:00
Luca Deri
96e10b12a5 Added stub for RareDestination check/alert implementation #6416 and #6417 2023-03-22 15:11:53 +01:00
Matteo Biscosi
76267099a2 Fixes alerts inconsistent alerts and checks names (#7314) 2023-03-14 15:36:07 +00:00
Matteo Biscosi
fc82eff56b Updated alert to NDPI_NUMERIC_IP_HOST 2023-03-02 15:18:40 +00:00
Alfredo Cardigliano
b15bd6c965 Fix message 2023-02-16 17:47:56 +01:00
Alfredo Cardigliano
21f75ed0af Add failure reason msg 2023-02-16 16:50:20 +01:00
Alfredo Cardigliano
669a4a484a Add syslog handler for nbox 2023-02-16 16:35:47 +01:00
Matteo Biscosi
7e6bdde2bd Added support to multi_threshold template for every hook 2023-02-14 11:56:25 +01:00
Nicolò Maio
6d2ee3d599
Add network issue alert (#6691) (#7228) 
* Add network issues alert. (#6691)

* Fix alert subtype. (#6691)

* Update default values. (#6691)

* Minor fix. (#6691)
 2023-02-14 05:40:06 -05:00
MatteoBiscosi
ddb55b4d7e Updated ndpi alerts (#7200) 2023-02-09 18:46:37 +01:00
Nicolò Maio
3d741f0e75
Fix title discrepancy on known proto on non std port alert. (#7217) 2023-02-08 12:06:31 +01:00
Nicolò Maio
ddd3e4318e
Fix VLANs form. (#7126) (#7207) 
* Fix VLANs form. (#7126)

* Fix VLAN lower case. (#7126)
 2023-02-06 14:47:20 +00:00
Nicolò Maio
7162045cdd
Add VLAN bidirectional traffic alert (#7126) (#7194) 
* Add VLAN bidirectional traffic alert (#7126)

* Add alert description. (#7126)
 2023-02-03 10:33:25 +01:00
Alfredo Cardigliano
73af3fa521 Add support for external (REST) host alerts (#7170) 2023-01-26 15:34:54 +01:00
MatteoBiscosi
1c5fbe7df3 Fixes offline option not working 2023-01-13 18:31:07 +01:00
MatteoBiscosi
cde463a324 Added RST scan alert (#5903) 2022-11-30 17:01:49 +01:00
MatteoBiscosi
39aaaf58da Moved the TCP packets issues alert to default disabled 2022-11-28 12:16:12 +01:00
Luca Deri
71fbbdbf58 Implemented custom host script (WIP) 2022-11-24 12:34:14 +01:00
MatteoBiscosi
71bb0efbc2 Added DNS flood alert (#5905) 2022-11-22 11:13:02 +01:00
MatteoBiscosi
372c54294e Disabled check by default 2022-11-21 16:04:17 +01:00
Luca Deri
80db634bfe Implemented skeleton of CustomFlowLuaScriptAlert check 2022-11-19 20:31:24 +01:00
MatteoBiscosi
b6692f3fea Added TCP Packets issues check (#6899) 2022-11-16 11:28:16 +01:00
MatteoBiscosi
db32c0c67a Moved tcp issues generci alert 2022-11-11 12:41:42 +01:00
MatteoBiscosi
4ee36c721f Removed still not implemented check (#6977) 2022-11-11 12:26:34 +01:00
MatteoBiscosi
7bfc2fdde4 Fixes Flow risks not defined (#6939) 2022-10-21 13:37:08 +02:00
MatteoBiscosi
eda4cfb088 Added severity to ntopng checks table 2022-10-20 10:34:37 +02:00
MatteoBiscosi
692ae0bfcc Added critical and emergency status to alerts 2022-10-19 10:18:51 +02:00
MatteoBiscosi
4728baed14 Fixes inconsistent naming in ntopng (#6716) 2022-10-17 12:52:47 +02:00
MatteoBiscosi
533af346ff Re-enabled ip/mac reassignment alert (#6825) 2022-08-24 11:49:20 +02:00
MatteoBiscosi
1775233197 Updated device connection alert (#6801) 2022-08-08 11:37:33 +02:00
MatteoBiscosi
d6471d8dac Added device connection/disconnection alert (#6801) 2022-08-05 10:46:18 +02:00
MatteoBiscosi
687d508daa Fixes IEC alerts triggered even when disabled (#6682) 2022-07-19 11:14:25 +02:00
MatteoBiscosi
3681ca34dc Added ndpi http suspicious content alert mapping 2022-07-15 11:40:20 +02:00
MatteoBiscosi
755c90e0c2 Changed from UDP unidirection to unidirectiont traffic 2022-06-21 15:11:54 +02:00
MatteoBiscosi
4f8c5c6cec Moved UDP unidirection to nDPI alerts 2022-06-21 11:37:46 +02:00
Alfredo Cardigliano
69f639c16b Fix FQDN validation in unexpected dns check (fix #4869) 2022-06-17 13:13:54 +02:00
MatteoBiscosi
f341dff696 Removed duplicated require 2022-06-13 19:25:43 +02:00
MatteoBiscosi
a20d2dba58 Changed interface thpt alert 2022-06-10 11:45:31 +02:00
MatteoBiscosi
3509b3b74b Added dns fragmented alert 2022-05-31 18:34:22 +02:00
MatteoBiscosi
167cf6484a Updated ndpi flow risk alerts 2022-05-31 17:15:21 +02:00
MatteoBiscosi
91c9b5d04d Moved host mac reassociation alert 2022-05-31 11:31:42 +02:00
MatteoBiscosi
e9147aa37d Implemented connection failed alert (#6622) 2022-05-27 10:45:25 +02:00
MatteoBiscosi
7b51a4ca61 Added Fin Scan check (#5903) 2022-05-16 17:18:11 +02:00
Luca Deri
b0158f89c2 Reworked MAC/IP Reassociation alert used to detect spoofind and MITM (Man In The Middle) Attacks 2022-05-15 19:17:18 +02:00
Luca Deri
7c038e29da Implemented IEC104 Invalid Command Transition check/alert 2022-05-11 23:16:45 +02:00
MatteoBiscosi
524378cccd Changed alert drops description (#6575) 2022-05-09 11:47:01 +02:00
MatteoBiscosi
2bcf7c8dfa Added Suspicious Entropy alert (#6563) 2022-05-04 22:11:44 +02:00