ntopng

Alfredo Cardigliano 7a314e9d69 Add sample custom query for host alerts. Fix host alerts format to handle empty fields.	2023-07-24 15:50:59 +02:00
..
alert_binary_application_transfer.lua	Fixes alerts inconsistent alerts and checks names (#7314 )	2023-03-14 15:36:07 +00:00
alert_blacklisted_country.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_broadcast_non_udp_traffic.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_custom_lua_script.lua	Implemented custom host script (WIP)	2022-11-24 12:34:14 +01:00
alert_data_exfiltration.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_device_protocol_not_allowed.lua	Fix telegram notifications (fix #6915 )	2022-10-03 12:29:23 +02:00
alert_dns_data_exfiltration.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_dns_invalid_query.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_elephant_flow.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_external.lua	Remove alert severity from Alerts. Always use score (convert to severity when required for UI or similar)	2021-05-05 09:54:14 +02:00
alert_flow_blacklisted.lua	Add blacklist name. (#7549 )	2023-06-14 11:56:13 +00:00
alert_flow_blocked.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_flow_low_goodput.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_flow_tcp_no_data_exchanged.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_iec_invalid_command_transition.lua	Fixes alerts inconsistent alerts and checks names (#7314 )	2023-03-14 15:36:07 +00:00
alert_iec_invalid_transition.lua	Fixes alerts inconsistent alerts and checks names (#7314 )	2023-03-14 15:36:07 +00:00
alert_iec_unexpected_type_id.lua	Fixes alerts inconsistent alerts and checks names (#7314 )	2023-03-14 15:36:07 +00:00
alert_internals.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_known_proto_on_non_std_port.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_lateral_movement.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_longlived.lua	Fix format of longlived alerts	2023-07-18 11:34:50 +02:00
alert_modbus_invalid_transition.lua	added Modbus Invalid Transition Alert	2023-06-05 00:53:27 +02:00
alert_modbus_too_many_exceptions.lua	Implemented Modbus exceptions	2023-06-01 22:53:59 +02:00
alert_modbus_unexpected_function_code.lua	Implemented Modbus exceptions	2023-06-01 22:53:59 +02:00
alert_ndpi_anonymous_subscriber.lua	Fixes inconsistent naming in ntopng (#6716 )	2022-10-17 12:52:47 +02:00
alert_ndpi_clear_text_credentials.lua	Fixes dns large packets alert incorrectly triggered (#6674 )	2022-06-10 10:34:03 +02:00
alert_ndpi_desktop_or_file_sharing_session.lua	Updated ndpi alerts (#7200 )	2023-02-09 18:46:37 +01:00
alert_ndpi_dns_fragmented.lua	Added dns fragmented alert	2022-05-31 18:34:22 +02:00
alert_ndpi_dns_invalid_characters.lua	Fixes inconsistent naming in ntopng (#6716 )	2022-10-17 12:52:47 +02:00
alert_ndpi_dns_large_packet.lua	Added dns fragmented alert	2022-05-31 18:34:22 +02:00
alert_ndpi_dns_suspicious_traffic.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_ndpi_error_code.lua	Fixes inconsistent naming in ntopng (#6716 )	2022-10-17 12:52:47 +02:00
alert_ndpi_http_crawler_bot.lua	Fixes inconsistent naming in ntopng (#6716 )	2022-10-17 12:52:47 +02:00
alert_ndpi_http_obsolete_server.lua	Updated ndpi alerts (#7200 )	2023-02-09 18:46:37 +01:00
alert_ndpi_http_suspicious_content.lua	Added ndpi http suspicious content alert mapping	2022-07-15 11:40:20 +02:00
alert_ndpi_http_suspicious_header.lua	Fixes alerts inconsistent alerts and checks names (#7314 )	2023-03-14 15:36:07 +00:00
alert_ndpi_http_suspicious_url.lua	Fixes alerts inconsistent alerts and checks names (#7314 )	2023-03-14 15:36:07 +00:00
alert_ndpi_http_suspicious_user_agent.lua	Fixes alerts inconsistent alerts and checks names (#7314 )	2023-03-14 15:36:07 +00:00
alert_ndpi_malformed_packet.lua	Fixes alerts inconsistent alerts and checks names (#7314 )	2023-03-14 15:36:07 +00:00
alert_ndpi_malicious_ja3.lua	Updated ndpi alerts (#7200 )	2023-02-09 18:46:37 +01:00
alert_ndpi_malicious_sha1_certificate.lua	Updated ndpi alerts (#7200 )	2023-02-09 18:46:37 +01:00
alert_ndpi_numeric_ip_host.lua	Fixes alerts inconsistent alerts and checks names (#7314 )	2023-03-14 15:36:07 +00:00
alert_ndpi_periodic_flow.lua	Updated ndpi alerts (#7200 )	2023-02-09 18:46:37 +01:00
alert_ndpi_possible_exploit.lua	Fixes inconsistent naming in ntopng (#6716 )	2022-10-17 12:52:47 +02:00
alert_ndpi_punicody_idn.lua	Fixes inconsistent naming in ntopng (#6716 )	2022-10-17 12:52:47 +02:00
alert_ndpi_risky_asn.lua	Fixes Flow risks not defined (#6939 )	2022-10-21 13:37:08 +02:00
alert_ndpi_risky_domain.lua	Fixes Flow risks not defined (#6939 )	2022-10-21 13:37:08 +02:00
alert_ndpi_smb_insecure_version.lua	Fixes alerts inconsistent alerts and checks names (#7314 )	2023-03-14 15:36:07 +00:00
alert_ndpi_ssh_obsolete_client.lua	Fixes alerts inconsistent alerts and checks names (#7314 )	2023-03-14 15:36:07 +00:00
alert_ndpi_ssh_obsolete_server.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_ndpi_suspicious_dga_domain.lua	Fixes suspicious dga domain url not formatted	2022-06-09 18:19:03 +02:00
alert_ndpi_suspicious_entropy.lua	Added Suspicious Entropy alert (#6563 )	2022-05-04 22:11:44 +02:00
alert_ndpi_tls_cert_validity_too_long.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_ndpi_tls_certificate_about_to_expire.lua	Fixes inconsistent naming in ntopng (#6716 )	2022-10-17 12:52:47 +02:00
alert_ndpi_tls_fatal_alert.lua	Updated ndpi alerts (#7200 )	2023-02-09 18:46:37 +01:00
alert_ndpi_tls_missing_sni.lua	Fixes alerts inconsistent alerts and checks names (#7314 )	2023-03-14 15:36:07 +00:00
alert_ndpi_tls_not_carrying_https.lua	Fixes alerts inconsistent alerts and checks names (#7314 )	2023-03-14 15:36:07 +00:00
alert_ndpi_tls_old_protocol_version.lua	Add alert notification retention policy by default 1h. (#6240 )	2023-07-19 16:25:32 +00:00
alert_ndpi_tls_suspicious_esni_usage.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_ndpi_tls_suspicious_extension.lua	Updated ndpi alerts (#7200 )	2023-02-09 18:46:37 +01:00
alert_ndpi_tls_uncommon_alpn.lua	Updated ndpi alerts (#7200 )	2023-02-09 18:46:37 +01:00
alert_ndpi_unidirectional_traffic.lua	Changed from UDP unidirection to unidirectiont traffic	2022-06-21 15:11:54 +02:00
alert_ndpi_unsafe_protocol.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_ndpi_url_possible_rce_injection.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_ndpi_url_possible_sql_injection.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_ndpi_url_possible_xss.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_packets_issues.lua	Add sample custom query for host alerts. Fix host alerts format to handle empty fields.	2023-07-24 15:50:59 +02:00
alert_periodicity_changed.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_rare_destination.lua	Added stub for RareDestination check/alert implementation #6416 and #6417	2023-03-22 15:11:53 +01:00
alert_remote_access.lua	Fixes description duration not formatted (#6249 )	2022-01-27 13:07:47 +01:00
alert_remote_to_local_insecure_proto.lua	Fixes alerts inconsistent alerts and checks names (#7314 )	2023-03-14 15:36:07 +00:00
alert_remote_to_remote.lua	Fixes alerts inconsistent alerts and checks names (#7314 )	2023-03-14 15:36:07 +00:00
alert_tcp_connection_no_answer.lua	Fixes Flow risks not defined (#6939 )	2022-10-21 13:37:08 +02:00
alert_tcp_connection_refused.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_tls_certificate_expired.lua	Add alert notification retention policy by default 1h. (#6240 )	2023-07-19 16:25:32 +00:00
alert_tls_certificate_mismatch.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_tls_certificate_selfsigned.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_tls_unsafe_ciphers.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_unexpected_dhcp_server.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_unexpected_dns_server.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_unexpected_ntp_server.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_unexpected_smtp_server.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_vlan_bidirectional_traffic.lua	Add VLAN bidirectional traffic alert (#7126 ) (#7194 )	2023-02-03 10:33:25 +01:00
alert_web_mining.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00
alert_zero_tcp_window.lua	Copyright update (Lua)	2022-01-03 09:42:33 +01:00

alert_binary_application_transfer.lua

Fixes alerts inconsistent alerts and checks names (#7314 )

2023-03-14 15:36:07 +00:00

alert_blacklisted_country.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_broadcast_non_udp_traffic.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_custom_lua_script.lua

Implemented custom host script (WIP)

2022-11-24 12:34:14 +01:00

alert_data_exfiltration.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_device_protocol_not_allowed.lua

Fix telegram notifications (fix #6915 )

2022-10-03 12:29:23 +02:00

alert_dns_data_exfiltration.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_dns_invalid_query.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_elephant_flow.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_external.lua

Remove alert severity from Alerts. Always use score (convert to severity when required for UI or similar)

2021-05-05 09:54:14 +02:00

alert_flow_blacklisted.lua

Add blacklist name. (#7549 )

2023-06-14 11:56:13 +00:00

alert_flow_blocked.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_flow_low_goodput.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_flow_tcp_no_data_exchanged.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_iec_invalid_command_transition.lua

Fixes alerts inconsistent alerts and checks names (#7314 )

2023-03-14 15:36:07 +00:00

alert_iec_invalid_transition.lua

Fixes alerts inconsistent alerts and checks names (#7314 )

2023-03-14 15:36:07 +00:00

alert_iec_unexpected_type_id.lua

Fixes alerts inconsistent alerts and checks names (#7314 )

2023-03-14 15:36:07 +00:00

alert_internals.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_known_proto_on_non_std_port.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_lateral_movement.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_longlived.lua

Fix format of longlived alerts

2023-07-18 11:34:50 +02:00

alert_modbus_invalid_transition.lua

added Modbus Invalid Transition Alert

2023-06-05 00:53:27 +02:00

alert_modbus_too_many_exceptions.lua

Implemented Modbus exceptions

2023-06-01 22:53:59 +02:00

alert_modbus_unexpected_function_code.lua

Implemented Modbus exceptions

2023-06-01 22:53:59 +02:00

alert_ndpi_anonymous_subscriber.lua

Fixes inconsistent naming in ntopng (#6716 )

2022-10-17 12:52:47 +02:00

alert_ndpi_clear_text_credentials.lua

Fixes dns large packets alert incorrectly triggered (#6674 )

2022-06-10 10:34:03 +02:00

alert_ndpi_desktop_or_file_sharing_session.lua

Updated ndpi alerts (#7200 )

2023-02-09 18:46:37 +01:00

alert_ndpi_dns_fragmented.lua

Added dns fragmented alert

2022-05-31 18:34:22 +02:00

alert_ndpi_dns_invalid_characters.lua

Fixes inconsistent naming in ntopng (#6716 )

2022-10-17 12:52:47 +02:00

alert_ndpi_dns_large_packet.lua

Added dns fragmented alert

2022-05-31 18:34:22 +02:00

alert_ndpi_dns_suspicious_traffic.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_ndpi_error_code.lua

Fixes inconsistent naming in ntopng (#6716 )

2022-10-17 12:52:47 +02:00

alert_ndpi_http_crawler_bot.lua

Fixes inconsistent naming in ntopng (#6716 )

2022-10-17 12:52:47 +02:00

alert_ndpi_http_obsolete_server.lua

Updated ndpi alerts (#7200 )

2023-02-09 18:46:37 +01:00

alert_ndpi_http_suspicious_content.lua

Added ndpi http suspicious content alert mapping

2022-07-15 11:40:20 +02:00

alert_ndpi_http_suspicious_header.lua

Fixes alerts inconsistent alerts and checks names (#7314 )

2023-03-14 15:36:07 +00:00

alert_ndpi_http_suspicious_url.lua

Fixes alerts inconsistent alerts and checks names (#7314 )

2023-03-14 15:36:07 +00:00

alert_ndpi_http_suspicious_user_agent.lua

Fixes alerts inconsistent alerts and checks names (#7314 )

2023-03-14 15:36:07 +00:00

alert_ndpi_malformed_packet.lua

Fixes alerts inconsistent alerts and checks names (#7314 )

2023-03-14 15:36:07 +00:00

alert_ndpi_malicious_ja3.lua

Updated ndpi alerts (#7200 )

2023-02-09 18:46:37 +01:00

alert_ndpi_malicious_sha1_certificate.lua

Updated ndpi alerts (#7200 )

2023-02-09 18:46:37 +01:00

alert_ndpi_numeric_ip_host.lua

Fixes alerts inconsistent alerts and checks names (#7314 )

2023-03-14 15:36:07 +00:00

alert_ndpi_periodic_flow.lua

Updated ndpi alerts (#7200 )

2023-02-09 18:46:37 +01:00

alert_ndpi_possible_exploit.lua

Fixes inconsistent naming in ntopng (#6716 )

2022-10-17 12:52:47 +02:00

alert_ndpi_punicody_idn.lua

Fixes inconsistent naming in ntopng (#6716 )

2022-10-17 12:52:47 +02:00

alert_ndpi_risky_asn.lua

Fixes Flow risks not defined (#6939 )

2022-10-21 13:37:08 +02:00

alert_ndpi_risky_domain.lua

Fixes Flow risks not defined (#6939 )

2022-10-21 13:37:08 +02:00

alert_ndpi_smb_insecure_version.lua

Fixes alerts inconsistent alerts and checks names (#7314 )

2023-03-14 15:36:07 +00:00

alert_ndpi_ssh_obsolete_client.lua

Fixes alerts inconsistent alerts and checks names (#7314 )

2023-03-14 15:36:07 +00:00

alert_ndpi_ssh_obsolete_server.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_ndpi_suspicious_dga_domain.lua

Fixes suspicious dga domain url not formatted

2022-06-09 18:19:03 +02:00

alert_ndpi_suspicious_entropy.lua

Added Suspicious Entropy alert (#6563 )

2022-05-04 22:11:44 +02:00

alert_ndpi_tls_cert_validity_too_long.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_ndpi_tls_certificate_about_to_expire.lua

Fixes inconsistent naming in ntopng (#6716 )

2022-10-17 12:52:47 +02:00

alert_ndpi_tls_fatal_alert.lua

Updated ndpi alerts (#7200 )

2023-02-09 18:46:37 +01:00

alert_ndpi_tls_missing_sni.lua

Fixes alerts inconsistent alerts and checks names (#7314 )

2023-03-14 15:36:07 +00:00

alert_ndpi_tls_not_carrying_https.lua

Fixes alerts inconsistent alerts and checks names (#7314 )

2023-03-14 15:36:07 +00:00

alert_ndpi_tls_old_protocol_version.lua

Add alert notification retention policy by default 1h. (#6240 )

2023-07-19 16:25:32 +00:00

alert_ndpi_tls_suspicious_esni_usage.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_ndpi_tls_suspicious_extension.lua

Updated ndpi alerts (#7200 )

2023-02-09 18:46:37 +01:00

alert_ndpi_tls_uncommon_alpn.lua

Updated ndpi alerts (#7200 )

2023-02-09 18:46:37 +01:00

alert_ndpi_unidirectional_traffic.lua

Changed from UDP unidirection to unidirectiont traffic

2022-06-21 15:11:54 +02:00

alert_ndpi_unsafe_protocol.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_ndpi_url_possible_rce_injection.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_ndpi_url_possible_sql_injection.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_ndpi_url_possible_xss.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_packets_issues.lua

Add sample custom query for host alerts. Fix host alerts format to handle empty fields.

2023-07-24 15:50:59 +02:00

alert_periodicity_changed.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_rare_destination.lua

Added stub for RareDestination check/alert implementation #6416 and #6417

2023-03-22 15:11:53 +01:00

alert_remote_access.lua

Fixes description duration not formatted (#6249 )

2022-01-27 13:07:47 +01:00

alert_remote_to_local_insecure_proto.lua

Fixes alerts inconsistent alerts and checks names (#7314 )

2023-03-14 15:36:07 +00:00

alert_remote_to_remote.lua

Fixes alerts inconsistent alerts and checks names (#7314 )

2023-03-14 15:36:07 +00:00

alert_tcp_connection_no_answer.lua

Fixes Flow risks not defined (#6939 )

2022-10-21 13:37:08 +02:00

alert_tcp_connection_refused.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_tls_certificate_expired.lua

Add alert notification retention policy by default 1h. (#6240 )

2023-07-19 16:25:32 +00:00

alert_tls_certificate_mismatch.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_tls_certificate_selfsigned.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_tls_unsafe_ciphers.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_unexpected_dhcp_server.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_unexpected_dns_server.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_unexpected_ntp_server.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_unexpected_smtp_server.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_vlan_bidirectional_traffic.lua

Add VLAN bidirectional traffic alert (#7126 ) (#7194 )

2023-02-03 10:33:25 +01:00

alert_web_mining.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00

alert_zero_tcp_window.lua

Copyright update (Lua)

2022-01-03 09:42:33 +01:00