aboutsummaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAge
* Added check for binary scriptsLuca Deri2020-05-15
| | | | | Added NDPI_HTTP_NUMERIC_IP_HOST risk ndpi_risk moved to 32 bit
* Fix for potential heap-buffer-overflow in ndpi_search_openvpnLuca Deri2020-05-15
|
* Added NDPI_HTTP_SUSPICIOUS_USER_AGENT ndpi_riskLuca Deri2020-05-15
|
* Merge branch 'dev' of https://github.com/ntop/nDPI into devLuca Deri2020-05-15
|\
| * Added link to nfstreamLuca Deri2020-05-15
| |
* | Added NDPI_TLS_CERTIFICATE_EXPIRED, NDPI_TLS_CERTIFICATE_MISMATCH, to ndpi_riskLuca Deri2020-05-15
|/
* Gotomeeting address range fixLuca Deri2020-05-15
|
* Improvements on GotoMeetingLuca Deri2020-05-15
| | | | Added pcap for testing malware
* Merge pull request #903 from Loures/devLuca Deri2020-05-14
|\ | | | | Extend packet struct with Content-Disposition HTTP header field
| * Extend filetype matching for Content-Disposition headerloures2020-05-14
| |
| * Extend packet struct with Content-Disposition HTTP header fieldloures2020-05-14
|/ | | | and improve HTTP binary transfer mime type check
* Code clenup for PR #902Luca Deri2020-05-14
|
* Merge pull request #902 from Loures/devLuca Deri2020-05-14
|\ | | | | Add check for HTTP transfer of executable files
| * Set risk field instead of changing protocol when checking for dangerousloures2020-05-13
| | | | | | | | HTTP traffic
| * Add check for HTTP transfer of executable filesloures2020-05-13
|/
* Code cleanupLuca Deri2020-05-13
|
* Merge pull request #897 from catenacyber/fuzzoracleLuca Deri2020-05-12
|\ | | | | Adds bound check in oracle protocol
| * Adds bound check in oracle protocolPhilippe Antoine2020-05-10
| | | | | | | | | | Found by oss-fuzz https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=21780
* | Merge pull request #896 from IvanNardi/natsLuca Deri2020-05-12
|\ \ | | | | | | Fix NATS dissector
| * | Fix NATS dissectorNardi Ivan2020-05-09
| |/
* | Invalid TLS checkLuca Deri2020-05-12
| |
* | Added NDPI_XXX_BIT_16Luca Deri2020-05-11
| |
* | Added TLS weak cipher and obsolete protocol version detectionLuca Deri2020-05-10
| |
* | Added detection of self-signed TLS certificatesLuca Deri2020-05-10
| |
* | Added the ability to detect when a known protocol is using a non-standard portLuca Deri2020-05-10
|/ | | | Added check to spot executables exchanged via HTTP
* Cleaned hyperscan leftoverLuca Deri2020-05-08
| | | | Added further hyperscan hooks
* Added self signed certificate test pcapLuca Deri2020-05-08
|
* Added TLS issuerDN and subjectDNLuca Deri2020-05-07
|
* Reworked TLS dissector with a certificate RDN sequence readerLuca Deri2020-05-07
|
* Fixed category matchingLuca Deri2020-05-06
|
* API cleanup for indetifying explicitly in automa's what we're searching ↵Luca Deri2020-05-06
| | | | | | (protocol or category) Removed hyperscan support that is apperently unused
* Updated automa API to use 32 bit values splits from protocol/categpryLuca Deri2020-05-06
|
* Added support for Telegram v6Luca Deri2020-05-06
|
* Introduced custom protocols with IP and (optional) port supportLuca Deri2020-05-06
| | | | | | | | | | | | | | | | Example - Single IP address ip:213.75.170.11@CustomProtocol - IP address with CIDR ip:213.75.170.11/32@CustomProtocol - IP address with CIDR and port ip:213.75.170.11/32:443@CustomProtocol Please note that there are some restrictions on the port usage. They have been listed in example/protos.txt
* Various fixes to patricia tree handlingLuca Deri2020-05-06
|
* False positive fixesLuca Deri2020-05-06
|
* Updated APILuca Deri2020-05-06
|
* Reworked protocol handling chnging it is u_int16_tLuca Deri2020-05-06
|
* Removed now obsolete MSN protocolLuca Deri2020-05-03
| | | | Added nats.io protocol dissector
* SSH boundary check reworkLuca Deri2020-04-30
|
* Minor cleanupLuca Deri2020-04-30
|
* Merge pull request #891 from catenacyber/ghsl2Luca Deri2020-04-30
|\ | | | | Better fix for integer overflow in SSH
| * Better fix for integer overflow in SSHPhilippe Antoine2020-04-30
|/ | | | Credits to GHSL
* Merge pull request #883 from leonn/websocketLuca Deri2020-04-27
|\ | | | | :bulb: implement WebSocket protocol dissector
| * :bulb: implement websocket protocol dissectorLeonn Paiva2020-04-26
| |
* | Merge pull request #884 from lnslbrty/devLuca Deri2020-04-27
|\ \ | | | | | | Added missing ndpiReader dependency for the install target
| * | Added missing ndpiReader dependency for the install targetToni Uhlig2020-04-22
| | | | | | | | | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* | | Merge pull request #887 from IvanNardi/tunnelLuca Deri2020-04-27
|\ \ \ | | | | | | | | Tunnel
| * | | Fix heap-overflow error in CAPWAP detunneling codeNardi Ivan2020-04-24
| | | |
| * | | Fix "division by zero" runtime errorNardi Ivan2020-04-23
| | | |
Powered by cgit, Themed by Ted Yin.