vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-05-06 03:45:26 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 4
7135 commits 26 branches 19 tags 449 MiB
Commit graph

273 commits

Author SHA1 Message Date
Luca Deri
ffcfe398cc Reworked flow stats defining InterarrivalStats 
Fixed ms/timeval diffrence functions
 2019-09-02 23:58:34 +02:00
emanuele-f
2d02de6cc1 Implement initial flow score support 2019-08-30 17:16:11 +02:00
Alfredo Cardigliano
2c81afd678 Setting severity for IDS alerts 2019-08-28 03:38:01 +02:00
emanuele-f
b66b71fd7e Implement alert on JA3 malicious signatures 
Closes #2788
 2019-08-28 18:33:13 +02:00
Simone Mainardi
af61cfd483 Implements tcp packet stats for hosts, ases, networks in interface views 2019-08-27 11:16:20 +02:00
Simone Mainardi
11aa854cba Handles hosts HASSH fingerprints 2019-08-26 16:55:39 +02:00
Simone Mainardi
0353edb2a6 Adds ssh HASSH signatures into flows 2019-08-26 15:22:47 +02:00
Simone Mainardi
54473f7883 Updates host pools stats also in community mode 2019-08-20 12:00:41 +02:00
Luca
899b580cc4 SSL/TLS rename 2019-08-08 15:24:38 +02:00
Alfredo Cardigliano
babab56394 Handling http ret code, dns query type and ret code from the ZMQ parser 2019-07-26 16:12:35 +00:00
Alfredo Cardigliano
d010bb9b47 ZMQ flow processing optimization (+20%) 2019-07-26 11:11:40 +00:00
Simone Mainardi
afe2e5111e Fixes disaggregated interfaces initialization 
Possible fix for #2745 and #2743
 2019-07-26 10:13:51 +02:00
Simone Mainardi
9c448445ac Implements MySQL flow dump for view interfaces 2019-07-23 17:44:40 +02:00
Simone Mainardi
92bf42fa0d Fixes flow partials for database dumps 2019-07-23 15:09:17 +02:00
Simone Mainardi
969c51fbe4 Implements time-based aggregated flows dump 2019-07-23 12:28:04 +02:00
Luca Deri
d0d759c7ec Improved port stats handling 2019-07-23 11:31:22 +02:00
Simone Mainardi
9b6714823a Implements hash entries lifecycle as a finite states machine 
Fixes certain sporadic race conditions
 2019-07-22 15:18:39 +02:00
Luca Deri
1f10876a0b Work in progress towards flow alert generation preference handling in hosts 2019-07-19 16:40:21 +02:00
Simone Mainardi
6e8d0caca7 Implements host flows counters in View interfaces 2019-07-19 09:37:33 +02:00
Simone Mainardi
5fcc4986bc Implements interface view hosts updates 2019-07-17 18:31:25 +02:00
Simone Mainardi
6b6c0843be Groups base flow stats in a structure to allow easy snapshotting 2019-07-17 17:42:20 +02:00
Simone Mainardi
34f91bfd9f Implements new algorithm to allow flows purging control from interface views 2019-07-17 16:15:56 +02:00
Simone Mainardi
d8f5a9c712 Reduces flows memory utilization 2019-07-16 23:03:20 +02:00
Simone Mainardi
7eae30e914 Allows ntopng to work without Host instances and hosts HT 2019-07-16 19:02:36 +02:00
Alfredo Cardigliano
c63831bfa3 Computing L4 protocol statistics for flows 2019-07-12 16:27:34 +02:00
Luca Deri
3ea1b7e5d8 Window fixes 
Moved community hash to attic
 2019-06-29 18:54:19 +02:00
Simone Mainardi
57f56d1fc3 Implements client/server flows sort 2019-06-27 15:16:10 +02:00
emanuele-f
f9f341b2ca Add preference to enable l7 total flow timeseries 2019-06-27 10:01:12 +02:00
Simone Mainardi
f4cdf18d79 Fixes race conditions when iterating flows from Lua 2019-06-25 15:27:55 +02:00
Simone Mainardi
75af00d080 Fixes false positive obsolete SSL alarms 
Fixes #2670
 2019-06-21 16:46:21 +02:00
Simone Mainardi
78b2456931 Implements whitelist for long-lived flows 
Fixes #2666
 2019-06-21 16:00:54 +02:00
emanuele-f
793dcab32c Use process name and username as key instead of pid and uid 
Names are more reliable across multiple machines
 2019-05-30 18:04:38 +02:00
Luca Deri
e03b7f0f5f Merge branch 'dev' of https://github.com/ntop/ntopng into dev 2019-05-29 00:17:39 +02:00
Luca Deri
93ed8c009a Added SSL protocol handling 2019-05-29 00:12:26 +02:00
emanuele-f
1c9a4d3461 Implement ICMP data exfiltration alerts 
Closes #256
 2019-05-28 10:37:59 +02:00
Luca Deri
15046a4157 Improved SSL cipher display 2019-05-23 00:21:51 +02:00
Alfredo Cardigliano
86f3f19756 IP fragments per flow direction (implements #2359) 2019-05-21 12:43:55 +02:00
Simone Mainardi
df46dfecfa Reworks counters of tcp seqs 2019-05-21 12:06:27 +02:00
Luca Deri
1228ddc2ca Added unsafe SSL ciphers detection 2019-05-20 23:19:53 +02:00
Alfredo Cardigliano
9cdb84a875 Implements filtering per flow status in the active flows page 2019-05-20 18:54:50 +02:00
Luca Deri
7ec6b9f42c Improve JA3 support 2019-05-14 15:55:45 +02:00
Simone Mainardi
1ab525422c Uses class ParsedeBPF also in Flow 2019-05-13 17:16:45 +02:00
Simone Mainardi
204ea6cf62 Cleanup unused code based on struct eBPFEvent 2019-05-13 14:47:47 +02:00
Simone Mainardi
c95bdc7aa4 Implements class ParsedeBPF to handle eBPF events 2019-05-13 11:56:24 +02:00
Luca Deri
7144478591 Added JA3 support in flows 2019-05-12 14:15:19 +02:00
Simone Mainardi
b03c57dccf Uses eBPF events to determine if the proc is cli or srv 2019-05-05 16:20:03 +02:00
emanuele-f
939ca8c166 Implement eBPF flows view and improve containers/pods pages 2019-04-26 15:34:53 +02:00
emanuele-f
6fb921d68a Implement Pods and Containers page 2019-04-24 18:46:07 +02:00
Simone Mainardi
bf3b1e45c4 Adds TcpInfo to class Flow with nProbe mini eBPF data 2019-04-24 18:13:09 +02:00
Simone Mainardi
e1e1dc5a52 Makes processLua static 2019-04-24 12:13:27 +02:00