aboutsummaryrefslogtreecommitdiff
path: root/src/lib/protocols
Commit message (Collapse)AuthorAge
...
* | | Fixes for https://github.com/ntop/nDPI/pull/911Luca Deri2020-05-29
| | | | | | | | | | | | Added code for dumping invalid HTTP header
* | | Added references to ESNILuca Deri2020-05-29
| | |
* | | Added check for suspicious HTTP headersTommaso Macchioni2020-05-29
| | |
* | | Added support for Encrypted TLS SNI dissectionLuca Deri2020-05-28
| | | | | | | | | | | | https://datatracker.ietf.org/doc/draft-ietf-tls-sni-encryption/
* | | Added stub for checking HTTP headerLuca Deri2020-05-21
| | | | | | | | | | | | Updated Teams result
* | | Fixed valse positive whatsapp detectionLuca Deri2020-05-20
| | | | | | | | | | | | Cleaned Microsoft IP addresses list
* | | Removed bittorrent false positive detectionLuca Deri2020-05-20
| |/ |/|
* | Added fix to avoid potential heap buffer overflow in H.323 dissectorLuca Deri2020-05-19
|/ | | | Modified HTTP report information to make it closer to the HTTP field names
* Added check for invalid HTTP URLsLuca Deri2020-05-16
|
* Added check for binary scriptsLuca Deri2020-05-15
| | | | | Added NDPI_HTTP_NUMERIC_IP_HOST risk ndpi_risk moved to 32 bit
* Fix for potential heap-buffer-overflow in ndpi_search_openvpnLuca Deri2020-05-15
|
* Added NDPI_HTTP_SUSPICIOUS_USER_AGENT ndpi_riskLuca Deri2020-05-15
|
* Added NDPI_TLS_CERTIFICATE_EXPIRED, NDPI_TLS_CERTIFICATE_MISMATCH, to ndpi_riskLuca Deri2020-05-15
|
* Extend filetype matching for Content-Disposition headerloures2020-05-14
|
* Extend packet struct with Content-Disposition HTTP header fieldloures2020-05-14
| | | | and improve HTTP binary transfer mime type check
* Code clenup for PR #902Luca Deri2020-05-14
|
* Set risk field instead of changing protocol when checking for dangerousloures2020-05-13
| | | | HTTP traffic
* Add check for HTTP transfer of executable filesloures2020-05-13
|
* Code cleanupLuca Deri2020-05-13
|
* Merge pull request #897 from catenacyber/fuzzoracleLuca Deri2020-05-12
|\ | | | | Adds bound check in oracle protocol
| * Adds bound check in oracle protocolPhilippe Antoine2020-05-10
| | | | | | | | | | Found by oss-fuzz https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=21780
* | Merge pull request #896 from IvanNardi/natsLuca Deri2020-05-12
|\ \ | | | | | | Fix NATS dissector
| * | Fix NATS dissectorNardi Ivan2020-05-09
| |/
* | Invalid TLS checkLuca Deri2020-05-12
| |
* | Added TLS weak cipher and obsolete protocol version detectionLuca Deri2020-05-10
| |
* | Added detection of self-signed TLS certificatesLuca Deri2020-05-10
| |
* | Added the ability to detect when a known protocol is using a non-standard portLuca Deri2020-05-10
|/ | | | Added check to spot executables exchanged via HTTP
* Added TLS issuerDN and subjectDNLuca Deri2020-05-07
|
* Reworked TLS dissector with a certificate RDN sequence readerLuca Deri2020-05-07
|
* Added support for Telegram v6Luca Deri2020-05-06
|
* False positive fixesLuca Deri2020-05-06
|
* Removed now obsolete MSN protocolLuca Deri2020-05-03
| | | | Added nats.io protocol dissector
* SSH boundary check reworkLuca Deri2020-04-30
|
* Minor cleanupLuca Deri2020-04-30
|
* Better fix for integer overflow in SSHPhilippe Antoine2020-04-30
| | | | Credits to GHSL
* :bulb: implement websocket protocol dissectorLeonn Paiva2020-04-26
|
* Warning fixLuca Deri2020-04-22
|
* Fix some compilation warningsNardi Ivan2020-04-20
|
* CiscoVPN dissection improvementsLuca Deri2020-04-17
|
* Fixed invalid checkLuca Deri2020-04-15
|
* Adds netbios bound checkPhilippe Antoine2020-04-15
|
* TLS initializes version_strPhilippe Antoine2020-04-15
|
* Adds bound check for IRCPhilippe Antoine2020-04-15
|
* Fix integer overflow in quicPhilippe Antoine2020-04-15
|
* Adds bound check in TLSPhilippe Antoine2020-04-15
|
* Fixes OOB reads in postgresPhilippe Antoine2020-04-15
| | | | Reported by GHSL
* Merge pull request #869 from disconnect3d/patch-2Luca Deri2020-04-15
|\ | | | | Fix incorrect "<iq from=\"' parsing
| * Fix incorrect "<iq from=\"' parsingDisconnect3d2020-04-13
| | | | | | This PR fixes a wrong size arg passed to memcmp when checking for "<iq from=\"" and "<iq from \'" strings.
* | Merge pull request #868 from disconnect3d/patch-1Luca Deri2020-04-15
|\ \ | | | | | | Fix off by one when checking for "GET / HTTP" string
| * | Fix off by one when checking for "GET / HTTP" stringDisconnect3d2020-04-13
| |/
Powered by cgit, Themed by Ted Yin.