| Commit message (Collapse) | Author | Age |
|---|
| ... | |
| | |
| |
| |
| | |
The minimum packet payload length is: "NOTIFY * HTTP/1.1" + 0x0d + 0x0a (19 bytes).
|
| |\ \
| | |
| | | |
Fix end-of-line bounds handling.
|
| | |/
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
The existing implementation misses ending lines and as a result, fails
to match certain protocols (SMTP for example, which needs to see at
least 3 commain/response matches). It appears from the commit history
that an attempt was made (end-1) to prevent reads past payload length.
This can be ensured by simply not reading any payload that is < 3 bytes.
The updated logic for this loop is:
- Payload length is >= 3 bytes, or return.
- Loop over payload, compare for EOL (CR + NL) sequence.
- If found, process string.
- If index 'a' plus two is less than payload length, increment 'a' by
one and continue.
- Loop return always increments index 'a' by one.
|
| | |
| |
| |
| |
| | |
Fixed missing LOG_ERR initialization
Fixed logging warnings
|
| | | |
|
| | | |
|
| | | |
|
| | | |
|
| |/
|
|
| |
Converted some not popular protocols to NDPI_PROTOCOL_GENERIC with category detection
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
| |
Using content substring match in category search
|
| | |
|
| |
|
|
| |
-j now accepts - as stdout
|
| | |
|
| | |
|
| | |
|
| |
|
|
| |
Fixes https://github.com/ntop/nDPI/commit/c77ec63e
|
| | |
|
| | |
|
| |\ |
|
| | | |
|
| |/ |
|
| |
|
|
| |
New ports taken from
https://support.viber.com/customer/portal/articles/1506350-opening-ports-for-viber-desktop
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Added the new subnet, added viber.it and removed the old subnet 54.169.X since are no more part of viber network
daniele@bart:~$ whois 54.169.63.160
[Querying whois.arin.net]
[whois.arin.net]
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/whois_reporting/index.html
#
NetRange: 54.160.0.0 - 54.175.255.255
CIDR: 54.160.0.0/12
NetName: AMAZON-2011L
NetHandle: NET-54-160-0-0-1
Parent: NET54 (NET-54-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Amazon Technologies Inc. (AT-88-Z)
RegDate: 2014-06-20
Updated: 2014-06-20
Ref: https://whois.arin.net/rest/net/NET-54-160-0-0-1
|
| | |
|
| |\ |
|
| | |
| |
| |
| |
| |
| |
| |
| |
| | |
CUSTOM_CATEGORY_MINING = 99
CUSTOM_CATEGORY_MALWARE = 100
CUSTOM_CATEGORY_ADVERTISEMENT = 101
CUSTOM_CATEGORY_BANNED_SITE = 102
Updated test results
|
| |/ |
|
| |
|
| |
Updated CDN list of PrimeVideo
|
| |
|
| |
Added support for SMTPS on port 587
|
| |
|
| |
Added support for SMTPS on port 587
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Removed 64.68.192.0 since is no more part of Cloudflare according to the whois data
NetRange: 64.68.192.0 - 64.68.207.255
CIDR: 64.68.192.0/20
NetName: EDNS
NetHandle: NET-64-68-192-0-1
Parent: NET64 (NET-64-0-0-0-0)
NetType: Direct Assignment
OriginAS: AS16686
Organization: easyDNS Technologies, Inc. (EASYD-2)
RegDate: 2008-06-12
Updated: 2012-03-02
Comment: ARINA51-ARIN
Ref: https://whois.arin.net/rest/net/NET-64-68-192-0-1
|
| |
|
| |
Updated Cloudflare subnet
|
| |
|
|
| |
Code cleanup
|
| |
|
|
| |
Optimized memory usage
|
| |
|
|
|
|
| |
https://code.facebook.com/posts/608854979307125/building-zero-protocol-for-fast-secure-mobile-connections/
Discontinued filetopia protocol
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
| |
Skype.SkypeCallOut
Skype.SkypeCallIn
|
| |
|
|
| |
Introduced intitial Skype in/out support
|
| | |
|
| |
|
|
|
|
|
| |
According to RFC4253, a client may send additional data right after
its identification string (before receiving the server's identification
string). For instance, PuTTY sends supported ciphers. This exceeds
100 bytes and nDPI fails to detect such SSH sessions.
|
| | |
|