libndpi.git - Open Source Deep Packet Inspection Software Toolkit

	Commit message (Collapse)	Author	Age
*	Add extra entropy checks and more precise(?) analysis. (#2383)	Toni	2024-05-09
\| \| \|	Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
*	Remove "zoom" cache (#2420)	Ivan Nardi	2024-05-06
\| \| \| \| \| \| \| \| \|	This cache was added in b6b4967aa, when there was no real Zoom support. With 63f349319, a proper identification of multimedia stream has been added, making this cache quite useless: any improvements on Zoom classification should be properly done in Zoom dissector. Tested for some months with a few 10Gbits links of residential traffic: the cache pretty much never returned a valid hit.
*	Tuned DNS risk values	Luca Deri	2024-04-09
\| \| \| \|	Modified NDPI_BINARY_TRANSFER_ATTEMPT in NDPI_BINARY_DATA_TRANSFER
*	Fixed false positives on binary application transfer risk	Luca Deri	2024-04-08
\|
*	ndpiReader: add breed stats on output used for CI (#2236)	Ivan Nardi	2024-01-05
\|
*	Add HL7 protocol dissector (#2240)	Vladimir Gavrilov	2024-01-02
\| \| \| \| \| \| \|	* Add HL7 protocol dissector * Small fixes * Small fixes
*	Add JSON-RPC protocol dissector (#2217)	Vladimir Gavrilov	2023-12-20
\| \| \| \| \| \| \|	* Add JSON-RPC protocol dissector * Small fixes * Improve detection
*	ndpiReader: fix `guessed_flow_protocols` statistic (#2203)	Ivan Nardi	2023-12-12
\| \| \|	Increment the counter only if the flow has been guessed
*	IPv6: add support for IPv6 risk exceptions (#2122)	Ivan Nardi	2023-10-29
\|
*	IPv6: add support for IPv6 risk tree (#2118)	Ivan Nardi	2023-10-27
\| \| \|	Fix the script to download crawler addressess
*	ipv6: add support for ipv6 addresses lists (#2113)	Ivan Nardi	2023-10-26
\|
*	Fixes risk mask exception handling while improving the overall performance	Luca Deri	2023-07-14
\|
*	added feature to extract filename from http attachment (#2037)	Chiara Maggi	2023-07-11
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	* added feature to extract filename from http attachment * fixed some issues * added check for filename format * added check for filename format * remove an unnecessary print * changed the size from 952 to 960 * modified some test result files * small changes string size * comment removed and mallocs checked
*	Add Apache Thrift protocol dissector. (#2007)	Toni	2023-06-22
\| \| \|	Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
*	HTTP: rework state machine (#1966)	Ivan Nardi	2023-05-16
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	The goal if to correlate the right request-response pair, exporting metadata from only one transaction (for example, the right url & return state pair) As a nice side effect, the code should be much cleaner, but that is a matter of taste. Two differences respect to the previous code: * as it happens in the CI, if in the flow there are only one response (before) and one request (after), only the metadata of the response are saved/exported * for performance reasons, we don't call `ndpi_parse_packet_line_info()` anymore for ALL packets triggering the HTTP dissector, but only for the packets that we already know belong to an HTTP flow. This is the reason for the changes in RTSP/SOAP/... code
*	HTTP: improve extraction of metadata and of flow risks (#1959)	Ivan Nardi	2023-05-05
\|
*	Test multiple `ndpiReader` configurations (#1931)	Ivan Nardi	2023-04-06
	Extend internal unit tests to handle multiple configurations. As some examples, add tests about: * disabling some protocols * disabling Ookla aggressiveness Every configurations data is stored in a dedicated directory under `tests\cfgs`