| Commit message (Collapse) | Author | Age | |
|---|---|---|---|
| * | Changed NDPI_MALICIOUS_JA3 to NDPI_MALICIOUS_FINGERPRINT | Luca Deri | 2024-08-25 |
| | | |||
| * | Added ndpi_get_protocol_by_name*( API call | Luca Deri | 2024-08-24 |
| | | |||
| * | Introduced ndpi_master_app_protocol typedef | Luca Deri | 2024-08-24 |
| | | |||
| * | Add Automatic Tank Gauge protocol (#2527) | wssxsxxsx | 2024-08-23 |
| | | | | | | | | See also #2523 --------- Co-authored-by: Nardi Ivan <nardi.ivan@gmail.com> | ||
| * | Add CNP/IP protocol support (#2521) | Vladimir Gavrilov | 2024-08-22 |
| | | | | ISO/IEC 14908-4 defines how to tunnel Control Network Protocol (CNP) over IP networks. It encapsulates protocols like EIA-709, EIA-600, and CNP, making it a versatile solution for building automation and control systems. | ||
| * | Removed unnecessary includes (#2525) | Luca Deri | 2024-08-21 |
| | | |||
| * | Fixed probing attempt risk that was creating false positives | Luca Deri | 2024-08-07 |
| | | |||
| * | Improved ICMP malformed packet risk description | Luca Deri | 2024-07-25 |
| | | |||
| * | FPC: add DPI information (#2514) | Ivan Nardi | 2024-07-23 |
| | | | | | If the flow is classified (via DPI) after the first packet, we should use this information as FPC | ||
| * | Add OpenWire support (#2513) | Vladimir Gavrilov | 2024-07-22 |
| | | |||
| * | FPC: small improvements (#2512) | Ivan Nardi | 2024-07-22 |
| | | | | | Add printing of fpc_dns statistics and add a general cconfiguration option. Rework the code to be more generic and ready to handle other logics. | ||
| * | FPC: add DNS correlation (#2497) | mmanoj | 2024-07-22 |
| | | | | | | | | | | Use DNS information to get a better First Packet Classification. See: #2322 --------- Co-authored-by: Nardi Ivan <nardi.ivan@gmail.com> | ||
| * | ndpi_strncasestr: optimization, fixes, tests (#2507) | Petr | 2024-07-18 |
| | | |||
| * | Add Nano (XNO) protocol support (#2508) | Vladimir Gavrilov | 2024-07-18 |
| | | |||
| * | Added ClickHouse protocol | Luca | 2024-07-17 |
| | | |||
| * | Add HLS support (#2502) | Vladimir Gavrilov | 2024-07-16 |
| | | |||
| * | Refactor ndpi_strnstr to use ndpi_memmem (#2500) | Vladimir Gavrilov | 2024-07-15 |
| | | |||
| * | ndpi_memmem: optimized, fixed bug, added tests (#2499) | Petr | 2024-07-15 |
| | | |||
| * | Optimize performance of ndpi_strnstr() and possible bugfix (#2494) | Petr | 2024-07-15 |
| | | |||
| * | fuzzing: improve coverage (#2495) | Ivan Nardi | 2024-07-12 |
| | | | | | | | | | | | | | | | Fix detection of WebDAV and Gnutella (over HTTP) Fix detection of z3950 Add two fuzzers to test `ndpi_memmem()` and `ndpi_strnstr()` Remove some dead code: * RTP: the same exact check is performed at the very beginning of the function * MQTT: use a better helper to exclude the protocol * Colletd: `ndpi_hostname_sni_set()` never fails Update pl7m code (fix a Use-of-uninitialized-value error) | ||
| * | Improve detection of Cloudflare WARP traffic (#2491) | Ivan Nardi | 2024-07-04 |
| | | | | See: #2484 | ||
| * | Add infrastructure for explicit support of Fist Packet Classification (#2488) | Ivan Nardi | 2024-07-03 |
| | | | | | | Let's start with some basic helpers and with FPC based on flow addresses. See: #2322 | ||
| * | Add detection of OpenAI ChatGPT bots (#2481) | Ivan Nardi | 2024-07-01 |
| | | |||
| * | Added default port mappings to ndpiReader help -H (#2477) | Mark Jeffery | 2024-06-19 |
| | | | | Close #2125 | ||
| * | fuzz: improve fuzzing coverage (#2474) | Ivan Nardi | 2024-06-17 |
| | | | | | | | Remove some code never triggered AFP: the removed check is included in the following one MQTT: fix flags extraction | ||
| * | Add Ripe Atlas probe protocol. (#2473) | Toni | 2024-06-17 |
| | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | ||
| * | Zoom: remove "stun_zoom" LRU cache | Nardi Ivan | 2024-06-17 |
| | | | | | | Since 070a0908b we are able to detect P2P calls directly from the packet content, without any correlation among flows | ||
| * | Added protocol - JRMI - Java Remote Method Invocation (#2470) | Mark Jeffery | 2024-06-15 |
| | | |||
| * | RTP/STUN: look for STUN packets after RTP/RTCP classification (#2465) | Ivan Nardi | 2024-06-07 |
| | | | | | | | | | | | After a flow has been classified as RTP or RTCP, nDPI might analyse more packets to look for STUN/DTLS packets, i.e. to try to tell if this flow is a "pure" RTP/RTCP flow or if the RTP/RTCP packets are multiplexed with STUN/DTLS. Useful for proper (sub)classification when the beginning of the flows are not captured or if there are lost packets in the the captured traffic. Disabled by default | ||
| * | Zoom: faster detection of P2P flows (#2467) | Ivan Nardi | 2024-06-07 |
| | | |||
| * | Fixes accounting of number of processed packets in ↵ | Luca Deri | 2024-06-04 |
| | | | | | ndpi_internal_detection_process_packet() | ||
| * | Add ZUG consensus protocol dissector. (#2458) | Toni | 2024-05-28 |
| | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | ||
| * | Rename Messenger to FacebookMessenger (#2453) | Vladimir Gavrilov | 2024-05-23 |
| | | |||
| * | More NDPI_PROBING_ATTEMPT changes | Luca | 2024-05-22 |
| | | |||
| * | Replace ndpi_strnstr() implementation with an optimal one (#2447) | Vladimir Gavrilov | 2024-05-22 |
| | | |||
| * | Enlarged buffer | Luca Deri | 2024-05-22 |
| | | |||
| * | Remove unused code. (#2450) | Toni | 2024-05-21 |
| | | | | | | | | | | * some `#ifdef`ed code dates back to 2019, 2020 and 2021 * some function signatures were still present in `ndpi_main.h` which may cause linker errors for libnDPI dependee's * return an error while trying to serialize a double instead of `fprintf(stderr, ...)` Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | ||
| * | Follow-up of 2093ac5bf (#2451) | Ivan Nardi | 2024-05-21 |
| | | |||
| * | Small fixes after API cleanup done in c63446e59 (#2449) | Ivan Nardi | 2024-05-20 |
| | | |||
| * | Minor dissector optimizations | Luca Deri | 2024-05-20 |
| | | |||
| * | Added dpi.compute_entropy configuration parameter | Luca Deri | 2024-05-18 |
| | | |||
| * | Cleaned up API | Luca Deri | 2024-05-17 |
| | | | | | | | | | | Removed - int ndpi_load_ipv4_ptree_file(ndpi_ptree_t *tree, const char *path, u_int16_t protocol_id); - int ndpi_load_ipv6_ptree_file(ndpi_ptree_t *tree, const char *path, u_int16_t protocol_id); Added (it supports both IPv4 and v6) + int ndpi_load_ptree_file(ndpi_ptree_t *tree, const char *path, u_int16_t protocol_id); | ||
| * | Add Call of Duty Mobile support (#2438) | Vladimir Gavrilov | 2024-05-15 |
| | | |||
| * | Revert `ndpi_strnstr()` optimization introduced in a813121e0 (#2439) | Ivan Nardi | 2024-05-11 |
| | | | | | | New implementation fails tests 11b, 12 and 13. Revert to the original (BSD) implementation (with also some basic parameters check) | ||
| * | Add Ethernet Global Data support (#2437) | Vladimir Gavrilov | 2024-05-11 |
| | | |||
| * | Remove Vevo support (#2436) | Vladimir Gavrilov | 2024-05-11 |
| | | | | Co-authored-by: Ivan Nardi <12729895+IvanNardi@users.noreply.github.com> | ||
| * | Viber: add detection of voip calls and avoid false positives (#2434) | Ivan Nardi | 2024-05-11 |
| | | |||
| * | `ndpi_strnstr()` optimization (#2433) | Vladimir Gavrilov | 2024-05-10 |
| | | |||
| * | Add extra entropy checks and more precise(?) analysis. (#2383) | Toni | 2024-05-09 |
| | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | ||
| * | Fix/improve fuzzing (#2426) | Ivan Nardi | 2024-05-08 |
| | | |||