| Commit message (Collapse) | Author | Age | ||
|---|---|---|---|---|
| ... | ||||
| | * | | OpenBSD: Do not redefine __LITTLE_ENDIAN__ | Adrian Zgorzałek | 2020-08-09 | |
| | | | | | | | | | | | | | Will silence omnipresent compiler warnings when building ntopng. | |||
| | * | | OpenBSD: Introduce pkt_timeval to deal with (bpf_)_timeval | Adrian Zgorzałek | 2020-08-09 | |
| | | | | | | | | | | | | | | | | | | | Some BSD APIs called in example/ return `struct bpf_timeval`, where nDPI APIs expect `struct timeval`. These two structs, besides having a different name, share the exact same set of fields. | |||
| * | | | Added support for discord | Luca Deri | 2020-08-16 | |
| | |/ |/| | ||||
| * | | Fix typo. | aouinizied | 2020-08-10 | |
| | | | ||||
| * | | Added case-insensitive substring matching | Luca Deri | 2020-08-10 | |
| |/ | ||||
| * | Merge pull request #973 from IvanNardi/esni3 | Luca Deri | 2020-08-06 | |
| |\ | | | | | Add risk flag about suspicious ESNI usage | |||
| | * | Add risk flag about suspicious ESNI usage | Nardi Ivan | 2020-08-05 | |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | In a Client Hello, the presence of both SNI and ESNI may obfuscate the real domain of an HTTPS connection, fooling DPI engines and firewalls, similarly to Domain Fronting. Such technique is reported in a presentation at DEF CON 28: "Domain Fronting is Dead, Long Live Domain Fronting: Using TLS 1.3 to evade censors, bypass network defenses, and blend in with the noise" Full credit for the idea must go the original author At the moment, the only way to get the pdf presention and related video is via https://forum.defcon.org/node/234492 Hopefully a direct link (and an example pcap) will be available soon | |||
| * | | Added note on memory management | Luca Deri | 2020-08-06 | |
| | | | ||||
| * | | Added new ndpi_string_sha1_hash API call | Luca Deri | 2020-08-05 | |
| |/ | ||||
| * | Win #define fix | Luca Deri | 2020-08-05 | |
| | | ||||
| * | Added new traffic category for connectivity check detection | Luca Deri | 2020-08-04 | |
| | | ||||
| * | Tiny changes for TLS block lenght dissection | Luca Deri | 2020-07-29 | |
| | | ||||
| * | TLS dissection improvements | Luca Deri | 2020-07-28 | |
| | | ||||
| * | Added NDPI_SMB_INSECURE_VERSION for detecting insecure SMB versions (e.g. v1) | Luca Deri | 2020-07-27 | |
| | | ||||
| * | Added parentheses to avoid issues with macro expansion | Luca Deri | 2020-07-25 | |
| | | ||||
| * | Added changes for handlign SSSH cipher detection | Luca Deri | 2020-07-22 | |
| | | ||||
| * | Introduced SSH rick checks | Luca Deri | 2020-07-22 | |
| | | ||||
| * | Added ndpi_reset_data_analysis() API call | Luca Deri | 2020-07-17 | |
| | | ||||
| * | Added ndpi_data_last() API call | Luca Deri | 2020-07-16 | |
| | | ||||
| * | Added ndpi_data_window_variance() and ndpi_data_window_stddev() API calls | Luca Deri | 2020-07-15 | |
| | | ||||
| * | Add ndpi_hll_reset() API call | Luca Deri | 2020-07-15 | |
| | | | | | Fixes bug in ndpi_data_window_average() with zero points | |||
| * | Add note for sync with cffi bindings. | aouinizied | 2020-07-13 | |
| | | ||||
| * | Fixed race condition in ndpi_ssl_version2str() caused by static qualifier in ↵ | Toni Uhlig | 2020-07-11 | |
| | | | | | | | | | | the version string buffer. * added also GREASE supported tls versions as specified in https://tools.ietf.org/html/draft-davidben-tls-grease-01#page-4 Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | |||
| * | Various fixes in bins implementation | Luca Deri | 2020-07-09 | |
| | | | | | Added -b flag in ndpiReader to test bins | |||
| * | Update note. | aouinizied | 2020-07-09 | |
| | | ||||
| * | Added -b to ndpiReader to evaluate bins | Luca Deri | 2020-07-09 | |
| | | ||||
| * | Added ndpi_cluster_bins() for clustering bins and ancillary functions for ↵ | Luca Deri | 2020-07-07 | |
| | | | | | bins manipulation | |||
| * | Merge pull request #932 from IvanNardi/log | Luca Deri | 2020-07-07 | |
| |\ | | | | | Log | |||
| | * | Fix compilation with --enable-debug-messages flag | Nardi Ivan | 2020-06-26 | |
| | | | | | | | | | | | | | | | | | | | | | | | | | NDPI_LOG* macros dereference ndpi_detection_module_struct object which is private to ndpi library (via NDPI_LIB_COMPILATION define). So we can't use them outside the library itself, i.e. in ndpiReader code Therefore, in files in example/, convert all (rare) uses of NDPI_LOG* macros to a new very simple macro, private to ndpiReader program. If necessary, such macro may be improved. According to a comment in ndpi_define.h, each dissector must define its own NDPI_CURRENT_PROTO macro before including ndpi_api.h file | |||
| * | | Added ndpi_print_bin() API call | Luca Deri | 2020-06-29 | |
| | | | ||||
| * | | Added ndpi_bin_similarity() for computing bin similarity | Luca Deri | 2020-06-29 | |
| | | | ||||
| * | | Fix undefined behaviour in internal tests | Nardi Ivan | 2020-06-28 | |
| | | | | | | | | | | | | | | | | | Error messages: ndpiReader.c:3211:2: runtime error: left shift of 1 by 31 places cannot be represented in type 'int' ndpiReader.c:3207:5: runtime error: left shift of 1 by 31 places cannot be represented in type 'int' The errors started popping up since 3d9285f1 | |||
| * | | Added notes whenever a new flow risk is added | Luca Deri | 2020-06-26 | |
| | | | ||||
| * | | Added malformed packet risk support | Luca Deri | 2020-06-26 | |
| | | | ||||
| * | | Values stored in patricia tree are now 32 bit (they used to be 16 bit) long | Luca Deri | 2020-06-26 | |
| |/ | ||||
| * | Added ndpi_bin_XXX API | Luca Deri | 2020-06-22 | |
| | | | | | Added packet lenght distribution bins | |||
| * | Fixed API documentation: packet tiestamp is expressed in milliseconds | Luca Deri | 2020-06-18 | |
| | | ||||
| * | Merge pull request #919 from lnslbrty/new/protocol/anydesk | Luca Deri | 2020-06-17 | |
| |\ | | | | | Implemented proprietary AnyDesk protocol | |||
| | * | Implemented proprietary AnyDesk protocol | Toni Uhlig | 2020-06-17 | |
| | | | | | | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | |||
| * | | Add API ndpi_serializer_get_format | Alfredo Cardigliano | 2020-06-16 | |
| |/ | ||||
| * | Added DGA risk for names that look like a DGA | Luca Deri | 2020-06-11 | |
| | | ||||
| * | Added HyperLogLog cardinality estimator API calls | Luca Deri | 2020-06-10 | |
| | | | | | | | | | | | | | | /* Memory lifecycle */ int ndpi_hll_init(struct ndpi_hll *hll, u_int8_t bits); void ndpi_hll_destroy(struct ndpi_hll *hll); /* Add values */ void ndpi_hll_add(struct ndpi_hll *hll, const char *data, size_t data_len); void ndpi_hll_add_number(struct ndpi_hll *hll, u_int32_t value) ; /* Get cardinality estimation */ double ndpi_hll_count(struct ndpi_hll *hll); | |||
| * | Updated (C) | Luca Deri | 2020-06-08 | |
| | | ||||
| * | Win fixes | Luca Deri | 2020-06-08 | |
| | | ||||
| * | Added check in TLS 1.2+ for reporting a risk when TLS is not used to carry HTTPS | Luca Deri | 2020-06-08 | |
| | | ||||
| * | Removed some obsolete protocols (battlefield, oscar, pcanywhere, tvants) | Luca Deri | 2020-06-06 | |
| | | ||||
| * | Add ndpi_serializer_get_header API (CSV only) | Alfredo Cardigliano | 2020-06-05 | |
| | | ||||
| * | Added ndpi_dpi2json() API call | Luca Deri | 2020-06-05 | |
| | | ||||
| * | Reworked ndpi_strncasestr | Luca Deri | 2020-05-31 | |
| | | ||||
| * | Added support for Encrypted TLS SNI dissection | Luca Deri | 2020-05-28 | |
| | | | | | https://datatracker.ietf.org/doc/draft-ietf-tls-sni-encryption/ | |||