Commit message (Collapse) | Author | Age | ||
---|---|---|---|---|
... | ||||
| * | http: create a common function to parse User Agent field | Nardi Ivan | 2020-09-08 | |
| | | | | | | | | Prepare the code to handle UA information from flows other than HTTP | |||
* | | Added extension to detect nested subdomains as used in Browsertunnel attack tool | Luca Deri | 2020-09-09 | |
|/ | | | | https://github.com/veggiedefender/browsertunnel | |||
* | Improved ntop detection over HTTP | Luca Deri | 2020-08-30 | |
| | | | | Added cap on number of attempts for CiscoVPN | |||
* | Fixed false positive in suspicous user agent | Luca Deri | 2020-08-30 | |
| | | | | Optimized stddev calculation | |||
* | Passes method_len param to ndpi_http_str2method | Simone Mainardi | 2020-08-27 | |
| | ||||
* | Added ndpi_http_method ndpi_http_str2method(const char* method) API call | Luca Deri | 2020-08-26 | |
| | ||||
* | Added check on payload lenght during extra packet processing | Luca Deri | 2020-08-04 | |
| | ||||
* | User agent detection improvements | Luca Deri | 2020-07-21 | |
| | ||||
* | Merge pull request #932 from IvanNardi/log | Luca Deri | 2020-07-07 | |
|\ | | | | | Log | |||
| * | Incorporated some feedback | Nardi Ivan | 2020-07-01 | |
| | | ||||
| * | Fix compilation with --enable-debug-messages flag | Nardi Ivan | 2020-06-26 | |
| | | | | | | | | | | | | | | | | | | | | | | | | NDPI_LOG* macros dereference ndpi_detection_module_struct object which is private to ndpi library (via NDPI_LIB_COMPILATION define). So we can't use them outside the library itself, i.e. in ndpiReader code Therefore, in files in example/, convert all (rare) uses of NDPI_LOG* macros to a new very simple macro, private to ndpiReader program. If necessary, such macro may be improved. According to a comment in ndpi_define.h, each dissector must define its own NDPI_CURRENT_PROTO macro before including ndpi_api.h file | |||
* | | Improved HTTP line parsing if request splitted into multiple packets. | Toni Uhlig | 2020-07-05 | |
| | | | | | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | |||
* | | Added malformed packet risk support | Luca Deri | 2020-06-26 | |
|/ | ||||
* | Added checks for DGA detection | Luca Deri | 2020-06-17 | |
| | ||||
* | Added DGA risk for names that look like a DGA | Luca Deri | 2020-06-11 | |
| | ||||
* | Reworked HTTP header processing workflow | Luca Deri | 2020-06-01 | |
| | ||||
* | HTTP comparison optimization | Luca Deri | 2020-05-31 | |
| | ||||
* | Minor changes | Luca Deri | 2020-05-31 | |
| | ||||
* | HTTP dissector improvements | Luca Deri | 2020-05-30 | |
| | ||||
* | Minor cleanup | Luca Deri | 2020-05-29 | |
| | ||||
* | Fixes for https://github.com/ntop/nDPI/pull/911 | Luca Deri | 2020-05-29 | |
| | | | | Added code for dumping invalid HTTP header | |||
* | Added check for suspicious HTTP headers | Tommaso Macchioni | 2020-05-29 | |
| | ||||
* | Added stub for checking HTTP header | Luca Deri | 2020-05-21 | |
| | | | | Updated Teams result | |||
* | Added check for invalid HTTP URLs | Luca Deri | 2020-05-16 | |
| | ||||
* | Added check for binary scripts | Luca Deri | 2020-05-15 | |
| | | | | | Added NDPI_HTTP_NUMERIC_IP_HOST risk ndpi_risk moved to 32 bit | |||
* | Added NDPI_HTTP_SUSPICIOUS_USER_AGENT ndpi_risk | Luca Deri | 2020-05-15 | |
| | ||||
* | Added NDPI_TLS_CERTIFICATE_EXPIRED, NDPI_TLS_CERTIFICATE_MISMATCH, to ndpi_risk | Luca Deri | 2020-05-15 | |
| | ||||
* | Extend filetype matching for Content-Disposition header | loures | 2020-05-14 | |
| | ||||
* | Extend packet struct with Content-Disposition HTTP header field | loures | 2020-05-14 | |
| | | | | and improve HTTP binary transfer mime type check | |||
* | Code clenup for PR #902 | Luca Deri | 2020-05-14 | |
| | ||||
* | Set risk field instead of changing protocol when checking for dangerous | loures | 2020-05-13 | |
| | | | | HTTP traffic | |||
* | Add check for HTTP transfer of executable files | loures | 2020-05-13 | |
| | ||||
* | Code cleanup | Luca Deri | 2020-05-13 | |
| | ||||
* | Added the ability to detect when a known protocol is using a non-standard port | Luca Deri | 2020-05-10 | |
| | | | | Added check to spot executables exchanged via HTTP | |||
* | Added memory boundary check in HTTP dissector | Luca Deri | 2020-01-24 | |
| | ||||
* | Merge branch 'dev' of https://github.com/ntop/nDPI into dev | Luca Deri | 2020-01-05 | |
|\ | ||||
| * | Reworked TLS dissection | Luca | 2020-01-01 | |
| | | ||||
| * | Removed disable_metadata_export preference that is no longer useful | Luca | 2019-12-29 | |
| | | | | | | | | since ndpi_process_extra_packet() can drive limited or full metadata export | |||
* | | Updated (C) | Luca Deri | 2020-01-05 | |
|/ | ||||
* | Fix invalid reads and add valgrind test | emanuele-f | 2019-12-04 | |
| | ||||
* | Improved category detection with HTTP | Luca Deri | 2019-12-01 | |
| | ||||
* | Fixed invalid category matching in HTTP | Luca Deri | 2019-11-23 | |
| | | | | Fixed overlapping categories | |||
* | Initial work towards HTTP content-type export | Luca | 2019-10-31 | |
| | ||||
* | Major cleanup | Luca Deri | 2019-10-24 | |
| | | | | Removed ndpi_pref_http_dont_dissect_response and ndpi_pref_dns_dont_dissect_response as the ndpi_extra_dissection_possible() call will now handle everything | |||
* | Removed http:// from HTTP url | Luca Deri | 2019-10-01 | |
| | | | | Reported URL in ndpiReader | |||
* | Adedd DTLS check in STUN | Luca Deri | 2019-09-21 | |
| | | | | Uodated (C) | |||
* | Implemented STUN cache to enhance matching of STUN-based protocols | Luca | 2019-08-12 | |
| | ||||
* | Fixes #740 | Luca Deri | 2019-07-14 | |
| | ||||
* | Solve remaining warnings | Stuart Reilly | 2019-07-12 | |
| | ||||
* | Add compiler warnings and fix them | Stuart Reilly | 2019-07-12 | |
| |