| Commit message (Collapse) | Author | Age | ||
|---|---|---|---|---|
| ... | ||||
| * | Restored 32 bit value in ndpi_match_string_value() | Luca Deri | 2021-06-21 | |
| | | ||||
| * | Upgraded exponential smoothing to 64 bit values | Luca Deri | 2021-06-18 | |
| | | ||||
| * | Extende nDPI API with ndpi_netbios_name_interpret() | Luca Deri | 2021-06-17 | |
| | | ||||
| * | Code review. (#1205) | Vitaly Lavrov | 2021-06-15 | |
| | | | | | | | | | | | | | | | | The common actions required to call the ac_automata_search() function have been moved to the ndpi_match_string_common function. This made it possible to simplify the ndpi_match_string, ndpi_match_string_protocol_id, ndpi_match_string_value, ndpi_match_custom_category, ndpi_match_string_subprotocol, ndpi_match_bigram, ndpi_match_trigram functions. Using u_int16_t type for protocol identifiers when working with the ahocorasick library (changes src/include/ndpi_api.h.in and src/include/ndpi_typedefs.h). Reworked "finalization" of all AC_AUTOMATA_t structures. Changing the order of fields in the ndpi_call_function_struct structure reduces the size of the ndpi_detection_module_struct structure by 10 kB (for x86_64). | |||
| * | Call ac_automata_release with free_pattern = 1 (malloc'ed patterns expected ↵ | Alfredo Cardigliano | 2021-06-14 | |
| | | | | | in ndpi_add_string_to_automa) | |||
| * | Reworked ndpi flow risk score adding client and server score | Luca | 2021-06-01 | |
| | | ||||
| * | Added risk/score dump (ndpiReader -h) | Luca Deri | 2021-05-18 | |
| | | | | | Added ndpi_dump_risks_score() API score | |||
| * | Updated API for ndpi_risk2score() | Luca Deri | 2021-05-17 | |
| | | | | | Added ndpi_get_upper_proto() API call | |||
| * | Added ndpi_check_subprotocol_risk() API call definition | Luca Deri | 2021-05-15 | |
| | | ||||
| * | Implemented flow score in Wireshark integration | Luca Deri | 2021-05-10 | |
| | | ||||
| * | Fix some warnings (#1181) | Ivan Nardi | 2021-05-09 | |
| | | | | | | | | | | | | | | | | | | | | ``` In file included from protocols/fasttrack.c:29: ../include/ndpi_api.h:1504:3: warning: type qualifiers ignored on function return type [-Wignored-qualifiers] 1504 | const ndpi_risk_severity ndpi_risk2severity(ndpi_risk_enum risk); | ^~~~~ In file included from protocols/amazon_video.c:28: ../include/ndpi_api.h:1504:3: warning: type qualifiers ignored on function return type [-Wignored-qualifiers] 1504 | const ndpi_risk_severity ndpi_risk2severity(ndpi_risk_enum risk); | ^~~~~ ... ndpi_utils.c: In function ‘ndpi_risk2severity’: ndpi_utils.c:1834:1: warning: control reaches end of non-void function [-Wreturn-type] 1834 | } | ^ ``` | |||
| * | Added ndpi_risk2severity() API call | Luca | 2021-05-02 | |
| | | ||||
| * | Reworked GeoIP API | Luca Deri | 2021-04-19 | |
| | | | | | | | | | int ndpi_get_geoip_asn(struct ndpi_detection_module_struct *ndpi_str, char *ip, u_int32_t *asn); int ndpi_get_geoip_country_continent(struct ndpi_detection_module_struct *ndpi_str, char *ip, char *country_code, u_int8_t country_code_len, char *continent, u_int8_t continent_len); | |||
| * | Fixed mispelled word | Luca Deri | 2021-03-31 | |
| | | ||||
| * | Added double exponential smoothing implementation | Luca | 2021-03-11 | |
| | | ||||
| * | Added single exponential smoothing API | Luca Deri | 2021-03-11 | |
| | | | | | | int ndpi_ses_init(struct ndpi_ses_struct *ses, double alpha, float significance); int ndpi_ses_add_value(struct ndpi_ses_struct *ses, const u_int32_t _value, double *forecast, double *confidence_band); | |||
| * | Added Ookla detection over IPv6 | Luca Deri | 2021-03-09 | |
| | | ||||
| * | Added the ability to define a custom DGA detection function by overwriting | Luca Deri | 2021-03-08 | |
| | | | | | | the value of the function pointer ndpi_dga_function curently set to NULL (that means the nDPI internal DGA function will be used) | |||
| * | Add ndpi_serialize_binary_boolean for consistency. Fix comments. | Alfredo Cardigliano | 2021-03-04 | |
| | | ||||
| * | Added NDPI_MALICIOUS_SHA1 flow risk. (#1142) | Toni | 2021-02-26 | |
| | | | | | | | * An external file which contains known malicious SSL certificate SHA-1 hashes can be loaded via ndpi_load_malicious_sha1_file(...) Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | |||
| * | Add more utility functions to work with patricia trees | Alfredo Cardigliano | 2021-02-23 | |
| | | ||||
| * | Update ndpi_patricia_walk_inorder API | Alfredo Cardigliano | 2021-02-23 | |
| | | ||||
| * | Add support for MAC to Patricia tree. Expose full API to applications. Add ↵ | Alfredo Cardigliano | 2021-02-23 | |
| | | | | | utility functions. | |||
| * | Added NDPI_MALICIOUS_JA3 flow risk | Luca Deri | 2021-02-22 | |
| | | | | | Added ndpi_load_malicious_ja3_file() API call | |||
| * | Implemented TLS Certificate Sibject matching | Luca Deri | 2021-02-22 | |
| | | | | | Improved AnyDesk detection | |||
| * | Added risky domain flow-risk support | Luca Deri | 2021-02-21 | |
| | | ||||
| * | Added ndpi_get_geoip() APi call | Luca Deri | 2021-02-18 | |
| | | ||||
| * | Initial geoip support | Luca Deri | 2021-02-18 | |
| | | ||||
| * | Extended the API to calculate jitter | Luca Deri | 2021-02-09 | |
| | | | | | | | - ndpi_jitter_init() - ndpi_jitter_free() - ndpi_jitter_add_value() | |||
| * | Added timeseries forecasting support implementing Holt-Winters with ↵ | Luca Deri | 2021-02-08 | |
| | | | | | | | | | | confidence interval New API calls added - ndpi_hw_init() - ndpi_hw_add_value() - ndpi_hw_free() | |||
| * | Implemented more efficient and memory savvy RSI | Luca Deri | 2021-02-05 | |
| | | ||||
| * | RSI enhancements | Luca Deri | 2021-02-05 | |
| | | ||||
| * | Implemented API for computing RSI (Relative Strenght Index) | Luca Deri | 2021-02-04 | |
| | | | | | | | void ndpi_init_rsi(struct ndpi_rsi_struct *s, u_int16_t num_learning_values); void ndpi_free_rsi(struct ndpi_rsi_struct *s); float ndpi_rsi_add_value(struct ndpi_rsi_struct *s, const u_int32_t value); | |||
| * | Added simple hash implementation to the nDPI API | Luca Deri | 2021-01-20 | |
| | | ||||
| * | Added a new API function `ndpi_free_flow_data' which free's all members of ↵ | Toni | 2021-01-04 | |
| | | | | | | ndpi_flow_struct but not the struct itself. (#1101) Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | |||
| * | Updated ndpi_ptree_match_addr() prototype | Luca Deri | 2020-12-30 | |
| | | ||||
| * | Split ptree user data in 32 and 64 bit entries | Luca Deri | 2020-12-30 | |
| | | ||||
| * | Removed test code | Luca Deri | 2020-12-26 | |
| | | ||||
| * | Type change to avoid Windows compilation issues | Luca Deri | 2020-12-17 | |
| | | ||||
| * | nDPI rules (work in progress) implementation | Luca Deri | 2020-11-30 | |
| | | ||||
| * | Add serialization of values list in TLV | Alfredo Cardigliano | 2020-10-15 | |
| | | ||||
| * | Serialized doxygen doc | Alfredo Cardigliano | 2020-10-05 | |
| | | ||||
| * | Added ndpi_quick_16_byte_hash | Luca | 2020-10-05 | |
| | | | | | Warning fix | |||
| * | Added back ndpi_check_flow_func (correct) prototype | Luca Deri | 2020-09-25 | |
| | | ||||
| * | Compilation fix | Luca Deri | 2020-09-25 | |
| | | ||||
| * | Added extension to detect nested subdomains as used in Browsertunnel attack tool | Luca Deri | 2020-09-09 | |
| | | | | | https://github.com/veggiedefender/browsertunnel | |||
| * | Add missing low-level serializer calls to the API | Alfredo Cardigliano | 2020-09-09 | |
| | | ||||
| * | Passes method_len param to ndpi_http_str2method | Simone Mainardi | 2020-08-27 | |
| | | ||||
| * | Added ndpi_http_method ndpi_http_str2method(const char* method) API call | Luca Deri | 2020-08-26 | |
| | | ||||
| * | Added ndpi_http_method2str() API call | Luca Deri | 2020-08-26 | |
| | | ||||