index
:
libndpi.git
Open Source Deep Packet Inspection Software Toolkit
log msg
author
committer
range
4.2-stable
add/1kxun
add/AmongUs
add/activision-dissector
add/agora-sd-rtn-protocol-dissector
add/alicloud
add/apache-thrift
add/avast
add/bacnet-dissector
add/breed-to-serializer
add/build-rpm
add/can-over-ethernet
add/capnproto
add/cloudflare-warp
add/code-coverage-build
add/collectd-protocol
add/coverage-make-targets
add/crynet
add/discord-dissector
add/double-serialization
add/doxygen-gen
add/dpkg-no-sign-and-ci
add/edgecast_and_cachefly_cdn
add/elasticsearch
add/elf-risk-detect
add/entropy-calc-and-check
add/entropy-calculation-unknown-proto
add/fast-flux-risk
add/fastcgi
add/free-flow-data-api-fn
add/gearup_booster-protocol-dissector
add/generic-json-dissector
add/generic-protobuf-dissector
add/generic-reassembler-interface
add/genshin-impact
add/get-flow-info-apifn
add/google-benchmark
add/gprof
add/gprof-test-ci-integration
add/haproxy
add/haproxy-and-more
add/hostname-inc-generator-and-gambling-sites
add/hpvirtgrp
add/i3d-and-riotgames-protocol-dissector
add/icmp-tunnel-chksm-risk
add/invalid-chars-detection-in-text
add/kcp
add/kismet
add/malicious-sites
add/monero-protocol-dissector
add/more-and-detailed-entropy-checks
add/mpegdash-and-subproto-handling
add/munin
add/natpmp
add/oicq
add/output-realtime-protocols
add/pe-dissector
add/psiphon3
add/raft
add/raknet
add/ripe_atlas
add/rmcp
add/roughtime
add/rsh
add/service-location-protocol-dissector
add/set_config_u64
add/shellscript-risk-detection
add/softether
add/softether-dissector
add/source-engine-dissector
add/ssl-cert-sha1-blacklist
add/syncthing
add/tarball-verification-script
add/tesla-services
add/threema
add/tivoconnect
add/tls-check-common-alpn
add/toca-boca-protocol-dissector
add/tsan-support-ci-and-autoconf
add/tunnelbear
add/ultrasurf-vpn
add/vs-proj-sln-and-ci-msbuild
add/windows-update-urls
add/yojimbo
add/z3950
add/zug-consensus-dissector
added/avast_securedns
added/sus_tls_ext_risk
dev
dev-1
do/some/maintenance
first-step-to-automake-integration
fix-add/make-doc-and-CI
fix/broken-ndpi_timeval_to_microseconds
fix/configure-seed-leftover
fix/data-analyse-implicit-u32-cast
fix/data-races
fix/double-ndpi_tot_allocated_memory-add
fix/external-ndpi-build
fix/external-ndpi-build-2
fix/external-ndpi-build-3
fix/gcrypt-autoconf-and-dpkg-pkg-config
fix/git-format-hash-abbr-length
fix/http-lower-upper-proto-weirdness
fix/intrustion-detection-leftovers-build-err
fix/invalid-ndpi-free
fix/invalid-realloc-wrapper
fix/ip-tuple-logic-error-and-more
fix/irc-heap-overflow
fix/json-c-with-only-libndpi
fix/json-empty-risk-serialization
fix/memory-errors-and-packet-fuzzer
fix/missing-packet-counter-increase
fix/missing-typedefs-and-strncasecmp-replacement
fix/mpegdash-vs-http
fix/ndpi-pkt-timeval
fix/ndpi-reader-serialization
fix/ndpi-reader-serialization-issues
fix/ndpi-simple-hash-buffer-size
fix/ndpi-subprotocol-detection
fix/ndpi-subprotocol-detection-and-refactoring
fix/overflow-and-libgerror-check
fix/packaging
fix/reader-util-hashval-calculation-endianess
fix/sonarcloud-ci
fix/strinop-truncation
fix/strncpy-trunc
fix/syslog-false-positive
fix/syslog-heap-overflow
fix/tls-ja3-off-by-one
fix/tls-ja4-strncpy-truncation
fix/tls-memleaks
fix/tls-sig-heap-overflow
fix/unit-tests
fix/unitialized-use-of-W
fix/unused-params-and-fns
fix/use-fastcgi-malloc-wrapper
fix/windows-latest-build
fix/windows-msys2
improve/cfg_set_error-fprintf
improve/disable-global-ctx-and-pthread
improve/kafka
improve/proto-debug-printf
improve/risks-naming
improve/serialize-ja4-to-json
improved/aes-ni-check
improved/autoconf-missing-brackets
improved/be-gambling-regex
improved/bittorrent-utorrent-utp
improved/c-ld-flags-copts
improved/ci-test-update-scripts
improved/ciscovpn
improved/configure-ac-obsolete-macros
improved/crynet
improved/debug-out
improved/discord-pattern
improved/dnscrypt
improved/dnscrypt_and_steam
improved/empty-api-version
improved/empty-app-protos
improved/fastcgi-dissection
improved/fuzz-reader
improved/genshin-impact
improved/gnutella
improved/gprof
improved/helper-scripts
improved/http-manipulated-url
improved/http-soap
improved/http_subprotocols
improved/ietf-quic-0rtt-detection
improved/ipsec-isakmp-detection
improved/jabber-xmpp
improved/json-serialize-ndpi-block
improved/kerberos-asn1-parsing
improved/label-smtp-w-starttls-as-smtps
improved/libc-malloc-wrapper-and-checks
improved/libm-check
improved/logging_callback_ndpi_printf
improved/mdsn-llmnr-detection
improved/mgcp
improved/mgcp-line-feed
improved/natpmp-dissect
improved/ndpi-hashtable-with-uthash
improved/ndpi-lib-and-reader-user-agent
improved/ndpi-max-packets-to-process
improved/ndpi-reader-help-spam
improved/ndpi-rule-handling-failure
improved/ndpi-serialization
improved/ndpiReader-CTRL-C
improved/openwrt-xcc-builtin-memcpy-warning
improved/pcap_processing
improved/pluralsight
improved/polish-gambling-fetch
improved/protobuf-debug
improved/protobuf-detection
improved/readme-and-autotools-int
improved/riotgames-sigs
improved/rtsp
improved/rtsp_detection
improved/rtsp_detection_the_second
improved/rtsp_detection_the_third
improved/run-tests
improved/serialization
improved/serialization-and-api-helper
improved/serialize
improved/sflow
improved/smtp-starttls
improved/softether-dissector
improved/some-categories
improved/sonarcloud-ci
improved/ssdp-hostname-dissect
improved/ssh
improved/steam-by-adding-steamdiscover
improved/steam-steamdiscover
improved/sus-ua-detect
improved/syslog-false-negatives
improved/tests-diff-word-wise-and-unittest-sync
improved/tftp
improved/tftp-dissect
improved/tftp-filename-dissection
improved/tls-alert-detection
improved/tls-appdata-detection
improved/tls-appdata-detection-the-second
improved/tls-cert-wildcards
improved/tls-sig-dissect-and-ci
improved/ts3-license-weblist
improved/viber-tcp
improved/websocket-detection-and-chisel-ssh-tunnel
improved/whatsapp
improved/whatsapp-the-second
improved/wuse-after-free-false-positive
improved/xiaomi
remove/builds-without-gcrypt-support
remove/ciscovpn-tls-patterns
remove/configure-seed
remove/ht_hash
remove/lgtm-network-arithm
remove/old-ndpi-readme
remove/readme-md-protocols
remove/unnecessary-ifdef-includes
remove/unused-code
replaced/malicious-ja3-sha1-with-hashmaps
restore/confidence-enum-values
sync/psiphon-unit-test
tiny-improvements
update-improved-fixed/ip-addr-ranges-update-scripts
update/proto-serialization
update/slack-content-match
about
summary
refs
log
tree
commit
diff
path:
root
/
wireshark
/
sharkfest_scripts
/
README.md
diff options
context:
1
2
3
4
5
6
7
8
9
10
15
20
25
30
35
40
space:
include
ignore
mode:
unified
ssdiff
stat only
Diffstat
(limited to 'wireshark/sharkfest_scripts/README.md')
-rw-r--r--
wireshark/sharkfest_scripts/README.md
11
1 files changed, 11 insertions, 0 deletions
diff --git a/wireshark/sharkfest_scripts/README.md b/wireshark/sharkfest_scripts/README.md
new file mode 100644
index 000000000..43d5b8d0f
--- /dev/null
+++ b/
wireshark/sharkfest_scripts/README.md
@@ -0,0 +1,11 @@
+# Companion Wireshark Scripts
+
+This folder contains some scripts we developed for the Sharkfest conference. They are used
+to detect specific attacks and security flaws.
+
+In order to test these scripts you can use the following pcaps:
+- https://github.com/NewBee119/ctf_ics_traffic
+- https://www.netresec.com/?page=pcapfiles
+
+or pcaps from nDPI test directory
+- https://github.com/ntop/nDPI/tree/dev/tests/pcap