aboutsummaryrefslogtreecommitdiff
path: root/src
Commit message (Collapse)AuthorAge
...
* | | Merge pull request #1017 from lnslbrty/fix/mingw-xcompileLuca Deri2020-09-20
|\ \ \ | |_|/ |/| | Added support for mingw xcompile.
| * | Using NDPI_I64_FORMAT, NDPI_U64_FORMAT format string to differentiate ↵Toni Uhlig2020-09-18
| | | | | | | | | | | | | | | | | | between Windows and non-Windows. Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
| * | Fixed mingw build w/o examples/tests/fuzzer.Toni Uhlig2020-09-18
| | | | | | | | | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
| * | Fixed shlib xcompile for x86_64-w64-mingw32Toni Uhlig2020-09-08
| | | | | | | | | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* | | Added MDNS in extra packet dissection functionLuca Deri2020-09-18
| | |
* | | Reworked MDNS dissector that is not based on the DNS dissectorLuca Deri2020-09-17
| | |
* | | Merge pull request #1012 from IvanNardi/uaLuca Deri2020-09-17
|\ \ \ | | | | | | | | QUIC: extract User Agent information
| * | | TLS: fix memory accesses in QUIC transport parameters extensionNardi Ivan2020-09-10
| | | |
| * | | QUIC: extract User Agent informationNardi Ivan2020-09-08
| | | |
| * | | http: create a common function to parse User Agent fieldNardi Ivan2020-09-08
| | |/ | |/| | | | | | | Prepare the code to handle UA information from flows other than HTTP
* | | Disabled QUIC tracing that pollutes the outputLuca Deri2020-09-17
| | |
* | | Commented unused functionLuca2020-09-13
| | |
* | | Temporarily keep using snprintfAlfredo Cardigliano2020-09-11
| | |
* | | Reworked DGA checksLuca Deri2020-09-11
| | |
* | | Replace snprintf with ndpi_snappendAlfredo Cardigliano2020-09-11
| | |
* | | Added boundary checkLuca Deri2020-09-10
| | |
* | | Added buffer check in DGA analysisLuca Deri2020-09-10
| | |
* | | Complation fix as not on all platforms isnumber() is availablelucaderi2020-09-10
| | |
* | | Merge pull request #1014 from lnslbrty/improved/teamspeakLuca Deri2020-09-09
|\ \ \ | | | | | | | | Improved Teamspeak(3) protocol detection.
| * | | Improved Teamspeak(3) protocol detection.Toni Uhlig2020-09-09
| |/ / | | | | | | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* | | Added extension to detect nested subdomains as used in Browsertunnel attack toolLuca Deri2020-09-09
| | | | | | | | | | | | https://github.com/veggiedefender/browsertunnel
* | | Add missing low-level serializer calls to the APIAlfredo Cardigliano2020-09-09
|/ /
* | Updated DoT/DoH provider.Toni Uhlig2020-09-07
| | | | | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* | Improved dnscrypt v1/v2 protocol detection.Toni Uhlig2020-09-06
|/ | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Add start_of_block/end_of_block support to TLVAlfredo Cardigliano2020-09-04
|
* Added some additional TLS mappingsLuca Deri2020-09-02
|
* Fixed off-by-one error in Kerberos protocol.Toni Uhlig2020-09-02
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Fixed false positive detection for Skype.SkypeCall (affects at least Cisco ↵Toni Uhlig2020-09-02
| | | | | | HSRP and RADIUS). Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Added boundary checkLuca Deri2020-09-01
|
* Added check for ndpi_ssl_version2str()Luca Deri2020-08-31
|
* Added (optional) notifier for LRU addLuca Deri2020-08-31
|
* Merge pull request #999 from IvanNardi/quicLuca Deri2020-08-30
|\ | | | | QUIC: add support for GQUIC T050 and T051
| * QUIC: add support for GQUIC T050 and T051Nardi Ivan2020-08-30
| | | | | | | | | | | | QUIC versioning wasn't complex enough without T05X family... These versions are very similar to Q050, but use TLS as their handshake protocol.
* | Added new risk for NDPI_UNSAFE_PROTOCOL that identifies protocols that are ↵Luca Deri2020-08-30
|/ | | | not condidered safe/secure
* Improved ntop detection over HTTPLuca Deri2020-08-30
| | | | Added cap on number of attempts for CiscoVPN
* Stddev calculation changesLuca Deri2020-08-30
|
* Fixed false positive in suspicous user agentLuca Deri2020-08-30
| | | | Optimized stddev calculation
* Merge pull request #996 from lnslbrty/fix/travis-ciLuca Deri2020-08-28
|\ | | | | Fix travis-ci related errors.
| * Fixed use-of-uninitialized-value in QUIC clho decryption probably caused by ↵Toni Uhlig2020-08-27
| | | | | | | | | | | | a BUG in libgcrypt (not verified). Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
| * Moved NDPI_CURRENT_PROTO define before ndpi_api.h include to prevent a ↵Toni Uhlig2020-08-27
| | | | | | | | | | | | redefinition warning. Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* | Fixes control reaches end of non-void functionSimone Mainardi2020-08-27
| |
* | Passes method_len param to ndpi_http_str2methodSimone Mainardi2020-08-27
| |
* | Added ndpi_http_method ndpi_http_str2method(const char* method) API callLuca Deri2020-08-26
| |
* | Added ndpi_http_method2str() API callLuca Deri2020-08-26
|/
* QUIC: minor fixesNardi Ivan2020-08-24
| | | | | | LGTM found a real issue on a boundary check Fix unit tests: a pcap ha been uploaded twice (with different names) Fix compilation when using DPDK (see #990)
* Creared IoT-Scada categoryLuca Deri2020-08-23
| | | | Minor dnp3 changes
* Cosmetic fixLuca Deri2020-08-22
|
* Fixes compilation issues introduced by https://github.com/ntop/nDPI/pull/989Luca Deri2020-08-22
|
* Warning fixLuca Deri2020-08-22
|
* Add sub-classification for GQUIC >= Q050 and (IETF-)QUICNardi Ivan2020-08-21
| | | | | | | | | | | Add QUIC payload and header decryption: most of the crypto code has been "copied-and-incolled" from Wireshark. That code has been clearly marked as such. All credits for that code should go to the original authors. I tried to keep the Wireshark code as similar as possible to the original, comments included, to ease future backporting of fixes. Inevitably, glibc data types and data structures, tvbuff abstraction and allocation functions have been converted.
Powered by cgit, Themed by Ted Yin.