Commit message (Collapse) | Author | Age | |
---|---|---|---|
* | Added stub for checking HTTP header | Luca Deri | 2020-05-21 |
| | | | | Updated Teams result | ||
* | Fixed valse positive whatsapp detection | Luca Deri | 2020-05-20 |
| | | | | Cleaned Microsoft IP addresses list | ||
* | Removed bittorrent false positive detection | Luca Deri | 2020-05-20 |
| | |||
* | Added fix to avoid potential heap buffer overflow in H.323 dissector | Luca Deri | 2020-05-19 |
| | | | | Modified HTTP report information to make it closer to the HTTP field names | ||
* | Added check for invalid HTTP URLs | Luca Deri | 2020-05-16 |
| | |||
* | Added check for binary scripts | Luca Deri | 2020-05-15 |
| | | | | | Added NDPI_HTTP_NUMERIC_IP_HOST risk ndpi_risk moved to 32 bit | ||
* | Fix for potential heap-buffer-overflow in ndpi_search_openvpn | Luca Deri | 2020-05-15 |
| | |||
* | Added NDPI_HTTP_SUSPICIOUS_USER_AGENT ndpi_risk | Luca Deri | 2020-05-15 |
| | |||
* | Added NDPI_TLS_CERTIFICATE_EXPIRED, NDPI_TLS_CERTIFICATE_MISMATCH, to ndpi_risk | Luca Deri | 2020-05-15 |
| | |||
* | Extend filetype matching for Content-Disposition header | loures | 2020-05-14 |
| | |||
* | Extend packet struct with Content-Disposition HTTP header field | loures | 2020-05-14 |
| | | | | and improve HTTP binary transfer mime type check | ||
* | Code clenup for PR #902 | Luca Deri | 2020-05-14 |
| | |||
* | Set risk field instead of changing protocol when checking for dangerous | loures | 2020-05-13 |
| | | | | HTTP traffic | ||
* | Add check for HTTP transfer of executable files | loures | 2020-05-13 |
| | |||
* | Code cleanup | Luca Deri | 2020-05-13 |
| | |||
* | Merge pull request #897 from catenacyber/fuzzoracle | Luca Deri | 2020-05-12 |
|\ | | | | | Adds bound check in oracle protocol | ||
| * | Adds bound check in oracle protocol | Philippe Antoine | 2020-05-10 |
| | | | | | | | | | | Found by oss-fuzz https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=21780 | ||
* | | Merge pull request #896 from IvanNardi/nats | Luca Deri | 2020-05-12 |
|\ \ | | | | | | | Fix NATS dissector | ||
| * | | Fix NATS dissector | Nardi Ivan | 2020-05-09 |
| |/ | |||
* | | Invalid TLS check | Luca Deri | 2020-05-12 |
| | | |||
* | | Added TLS weak cipher and obsolete protocol version detection | Luca Deri | 2020-05-10 |
| | | |||
* | | Added detection of self-signed TLS certificates | Luca Deri | 2020-05-10 |
| | | |||
* | | Added the ability to detect when a known protocol is using a non-standard port | Luca Deri | 2020-05-10 |
|/ | | | | Added check to spot executables exchanged via HTTP | ||
* | Added TLS issuerDN and subjectDN | Luca Deri | 2020-05-07 |
| | |||
* | Reworked TLS dissector with a certificate RDN sequence reader | Luca Deri | 2020-05-07 |
| | |||
* | Added support for Telegram v6 | Luca Deri | 2020-05-06 |
| | |||
* | False positive fixes | Luca Deri | 2020-05-06 |
| | |||
* | Removed now obsolete MSN protocol | Luca Deri | 2020-05-03 |
| | | | | Added nats.io protocol dissector | ||
* | SSH boundary check rework | Luca Deri | 2020-04-30 |
| | |||
* | Minor cleanup | Luca Deri | 2020-04-30 |
| | |||
* | Better fix for integer overflow in SSH | Philippe Antoine | 2020-04-30 |
| | | | | Credits to GHSL | ||
* | :bulb: implement websocket protocol dissector | Leonn Paiva | 2020-04-26 |
| | |||
* | Warning fix | Luca Deri | 2020-04-22 |
| | |||
* | Fix some compilation warnings | Nardi Ivan | 2020-04-20 |
| | |||
* | CiscoVPN dissection improvements | Luca Deri | 2020-04-17 |
| | |||
* | Fixed invalid check | Luca Deri | 2020-04-15 |
| | |||
* | Adds netbios bound check | Philippe Antoine | 2020-04-15 |
| | |||
* | TLS initializes version_str | Philippe Antoine | 2020-04-15 |
| | |||
* | Adds bound check for IRC | Philippe Antoine | 2020-04-15 |
| | |||
* | Fix integer overflow in quic | Philippe Antoine | 2020-04-15 |
| | |||
* | Adds bound check in TLS | Philippe Antoine | 2020-04-15 |
| | |||
* | Fixes OOB reads in postgres | Philippe Antoine | 2020-04-15 |
| | | | | Reported by GHSL | ||
* | Merge pull request #869 from disconnect3d/patch-2 | Luca Deri | 2020-04-15 |
|\ | | | | | Fix incorrect "<iq from=\"' parsing | ||
| * | Fix incorrect "<iq from=\"' parsing | Disconnect3d | 2020-04-13 |
| | | | | | | This PR fixes a wrong size arg passed to memcmp when checking for "<iq from=\"" and "<iq from \'" strings. | ||
* | | Merge pull request #868 from disconnect3d/patch-1 | Luca Deri | 2020-04-15 |
|\ \ | | | | | | | Fix off by one when checking for "GET / HTTP" string | ||
| * | | Fix off by one when checking for "GET / HTTP" string | Disconnect3d | 2020-04-13 |
| |/ | |||
* | | Fix some debug messages | Nardi Ivan | 2020-04-08 |
| | | |||
* | | kerberos: fix heap-overflow error | Nardi Ivan | 2020-04-08 |
| | | |||
* | | s7comm: fix heap-overflow error | Nardi Ivan | 2020-04-08 |
|/ | |||
* | ssh: fixing unsigned overflow leading to heap overflow | Philippe Antoine | 2020-04-02 |
| | | | | cf GHSL-2020-051 |