Commit message (Collapse) | Author | Age | ||
---|---|---|---|---|
... | ||||
* | | Merge pull request #973 from IvanNardi/esni3 | Luca Deri | 2020-08-06 | |
|\ \ | | | | | | | Add risk flag about suspicious ESNI usage | |||
| * | | Add risk flag about suspicious ESNI usage | Nardi Ivan | 2020-08-05 | |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | In a Client Hello, the presence of both SNI and ESNI may obfuscate the real domain of an HTTPS connection, fooling DPI engines and firewalls, similarly to Domain Fronting. Such technique is reported in a presentation at DEF CON 28: "Domain Fronting is Dead, Long Live Domain Fronting: Using TLS 1.3 to evade censors, bypass network defenses, and blend in with the noise" Full credit for the idea must go the original author At the moment, the only way to get the pdf presention and related video is via https://forum.defcon.org/node/234492 Hopefully a direct link (and an example pcap) will be available soon | |||
* | | | Added note on memory management | Luca Deri | 2020-08-06 | |
| | | | ||||
* | | | Added new ndpi_string_sha1_hash API call | Luca Deri | 2020-08-05 | |
| | | | ||||
* | | | Fixed possible memory leak in TLS certificate handling | Luca Deri | 2020-08-05 | |
|/ / | ||||
* / | Win #define fix | Luca Deri | 2020-08-05 | |
|/ | ||||
* | Added check on payload lenght during extra packet processing | Luca Deri | 2020-08-04 | |
| | ||||
* | Added new traffic category for connectivity check detection | Luca Deri | 2020-08-04 | |
| | ||||
* | Added memory checks | Luca Deri | 2020-08-02 | |
| | ||||
* | Sync TLS definitions. | aouinizied | 2020-08-01 | |
| | ||||
* | Fixed partial TLS dissection | Luca Deri | 2020-07-30 | |
| | ||||
* | Changed due to bin size extension | Luca Deri | 2020-07-30 | |
| | ||||
* | Restored TLS dissection | Luca Deri | 2020-07-30 | |
| | ||||
* | Tiny changes for TLS block lenght dissection | Luca Deri | 2020-07-29 | |
| | ||||
* | Update CFFI definitions. | aouinizied | 2020-07-29 | |
| | ||||
* | Merge pull request #970 from IvanNardi/fix | Luca Deri | 2020-07-28 | |
|\ | | | | | Minor fixes | |||
| * | Minor fixes | Nardi Ivan | 2020-07-26 | |
| | | | | | | | | Fix a memory leak and an issue (re)-introduced in configure script | |||
* | | TLS dissection improvements | Luca Deri | 2020-07-28 | |
| | | ||||
* | | Added NDPI_SMB_INSECURE_VERSION for detecting insecure SMB versions (e.g. v1) | Luca Deri | 2020-07-27 | |
| | | ||||
* | | Boundary check on QUIC | Luca Deri | 2020-07-27 | |
| | | ||||
* | | Boundary check | Luca Deri | 2020-07-27 | |
|/ | ||||
* | Added parentheses to avoid issues with macro expansion | Luca Deri | 2020-07-25 | |
| | ||||
* | SSH code cleanup | Luca Deri | 2020-07-25 | |
| | ||||
* | Merge pull request #967 from MrRadix/dev | Luca Deri | 2020-07-25 | |
|\ | | | | | Ssh signature checking | |||
| * | added other ssh implementations to check | MrRadix | 2020-07-24 | |
| | | ||||
| * | added cipher check | MrRadix | 2020-07-22 | |
| | | ||||
| * | Resolved conflicts on fetch | MrRadix | 2020-07-22 | |
| |\ | ||||
| * | | fixed bug inside set bit macro call | MrRadix | 2020-07-22 | |
| | | | ||||
| * | | modified new last two risks | MrRadix | 2020-07-22 | |
| | | | ||||
| * | | added sscanf error handling | MrRadix | 2020-07-22 | |
| | | | ||||
| * | | improved performance and legibility | MrRadix | 2020-07-22 | |
| | | | ||||
| * | | added modified risks | MrRadix | 2020-07-22 | |
| | | | ||||
| * | | merged with remote | MrRadix | 2020-07-22 | |
| |\ \ | ||||
| * | | | improved ndpi_risk2str output for new risks | MrRadix | 2020-07-22 | |
| | | | | ||||
| * | | | Merge remote-tracking branch 'ntop_origin/dev' into dev | MrRadix | 2020-07-22 | |
| |\ \ \ | ||||
| * | | | | added new risks to ndpi_risk_enum | MrRadix | 2020-07-22 | |
| | | | | | ||||
| * | | | | added new risks iside ndpi_risk2str function | MrRadix | 2020-07-22 | |
| | | | | | ||||
| * | | | | improved performance by removing linear scan | MrRadix | 2020-07-22 | |
| | | | | | ||||
| * | | | | added ssh_analyse_signature_version and ssh_has_old_signature for check old ↵ | MrRadix | 2020-07-21 | |
| | | | | | | | | | | | | | | | | | | | | signature version of ssh | |||
| * | | | | added ssh obsolete version risks | MrRadix | 2020-07-21 | |
| | | | | | ||||
* | | | | | Fixed bin similarity | Luca Deri | 2020-07-24 | |
| | | | | | ||||
* | | | | | Improved bin clustering | Luca Deri | 2020-07-22 | |
| | | | | | ||||
* | | | | | Merge pull request #968 from catenacyber/fuzzci | Luca Deri | 2020-07-22 | |
|\ \ \ \ \ | |_|_|_|/ |/| | | | | Reenables CI with sanitizers | |||
| * | | | | msan cxx | Philippe Antoine | 2020-07-22 | |
| | | | | | ||||
| * | | | | Reenables CI with sanitizers | Philippe Antoine | 2020-07-22 | |
| | | | | | ||||
* | | | | | Added changes for handlign SSSH cipher detection | Luca Deri | 2020-07-22 | |
|/ / / / | ||||
* | | / | Minor HLL fixes | Luca Deri | 2020-07-22 | |
| |_|/ |/| | | ||||
* | | | Introduced SSH rick checks | Luca Deri | 2020-07-22 | |
| | | | ||||
* | | | Merge pull request #966 from catenacyber/ossfuzzbuild | Luca Deri | 2020-07-22 | |
|\ \ \ | | | | | | | | | Enables fuzz targets even without sanitizer | |||
| * \ \ | Merge branch 'dev' into ossfuzzbuild | Luca Deri | 2020-07-22 | |
| |\ \ \ | |/ / / |/| | | |