| Commit message (Collapse) | Author | Age | |
|---|---|---|---|
| * | Reworked flow risk implementation | Luca Deri | 2021-07-23 |
| | | |||
| * | ndpiReader: add statistics about nDPI performance (#1240) | Ivan Nardi | 2021-07-13 |
| | | | | | | | | The goal is to have a (roughly) idea about how many packets nDPI needs to properly classify a flow. Log this information (and guessed flows number too) during unit tests, to keep track of improvements/regressions across commits. | ||
| * | Added flow risk score | Luca Deri | 2021-05-18 |
| | | |||
| * | Improved DGA detection with trigrams. Disadvantage: slower startup time | Luca Deri | 2021-03-03 |
| | | | | | | Reworked Tor dissector embedded in TLS (fixes #1141) Removed false positive on HTTP User-Agent | ||
| * | Split HTTP request from response Content-Type. Request Content-Type should ↵ | Luca Deri | 2021-01-06 |
| | | | | | be present with POSTs and not with other methods such as GET | ||
| * | Fixes #1029 | Luca Deri | 2020-11-27 |
| | | |||
| * | Updated results with numeric IP detection | Luca Deri | 2020-11-01 |
| | | |||
| * | Reworked MDNS dissector that is not based on the DNS dissector | Luca Deri | 2020-09-17 |
| | | |||
| * | Added new risk for NDPI_UNSAFE_PROTOCOL that identifies protocols that are ↵ | Luca Deri | 2020-08-30 |
| | | | | | not condidered safe/secure | ||
| * | Stddev calculation changes | Luca Deri | 2020-08-30 |
| | | |||
| * | Fixed false positive in suspicous user agent | Luca Deri | 2020-08-30 |
| | | | | | Optimized stddev calculation | ||
| * | Added the ability do identigy as DGA those host/domain names with too many ↵ | Luca Deri | 2020-08-21 |
| | | | | | | | | consucutive repeated characters such as ckaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa used fr netbios reflection attacks https://www.akamai.com/uk/en/multimedia/documents/state-of-the-internet/ddos-reflection-netbios-name-server-rpc-portmap-sentinel-udp-threat-advisory.pdf | ||
| * | Fixed partial TLS dissection | Luca Deri | 2020-07-30 |
| | | |||
| * | Changed due to bin size extension | Luca Deri | 2020-07-30 |
| | | |||
| * | Updated test results due to bin changes | Luca Deri | 2020-07-09 |
| | | |||
| * | Fixes #906 | Luca Deri | 2020-06-22 |
| | | | | | Packet bins are not printed wehn empty | ||
| * | Added ndpi_bin_XXX API | Luca Deri | 2020-06-22 |
| | | | | | Added packet lenght distribution bins | ||
| * | Added checks for DGA detection | Luca Deri | 2020-06-17 |
| | | |||
| * | Added DGA risk for names that look like a DGA | Luca Deri | 2020-06-11 |
| | | |||
| * | Added check in TLS 1.2+ for reporting a risk when TLS is not used to carry HTTPS | Luca Deri | 2020-06-08 |
| | | |||
| * | Added fix to avoid potential heap buffer overflow in H.323 dissector | Luca Deri | 2020-05-19 |
| | | | | | Modified HTTP report information to make it closer to the HTTP field names | ||
| * | Added check for invalid HTTP URLs | Luca Deri | 2020-05-16 |
| | | |||
| * | Added TLS weak cipher and obsolete protocol version detection | Luca Deri | 2020-05-10 |
| | | |||
| * | Added the ability to detect when a known protocol is using a non-standard port | Luca Deri | 2020-05-10 |
| | | | | | Added check to spot executables exchanged via HTTP | ||
| * | NetBIOS dissection improvements | Luca Deri | 2020-03-01 |
| | | |||
| * | Remove decimals in test results for IAT, packet lengths and goodput ratio | emanuele-f | 2020-02-14 |
| | | |||
| * | Improved DNS response decoding | Luca Deri | 2020-02-04 |
| | | | | | The first decoded address is now reported by ndpiReader | ||
| * | Reworked TLS dissection | Luca | 2020-01-01 |
| | | |||
| * | Improved category detection with HTTP | Luca Deri | 2019-12-01 |
| | | |||
| * | Improvements to stop dissection when the first protocol is detected | Luca Deri | 2019-11-28 |
| | | | | | | Used IP-based detection to compute the application protocol Improved application detection | ||
| * | Updated results | Luca Deri | 2019-11-21 |
| | | |||
| * | Initial work towards HTTP content-type export | Luca | 2019-10-31 |
| | | |||
| * | Added telnet dissector | Luca | 2019-10-29 |
| | | | | | Improved data report | ||
| * | Added capwap support | Luca Deri | 2019-10-27 |
| | | |||
| * | Improved HTTP reporting in ndpiReader | Luca Deri | 2019-10-25 |
| | | |||
| * | Added NetBIOS metadata export | Luca Deri | 2019-10-08 |
| | | |||
| * | Manual merge of pull #769 | Luca Deri | 2019-10-02 |
| | | |||
| * | Added URL in results | Luca Deri | 2019-10-01 |
| | | |||
| * | Reworked categories handling | Luca Deri | 2019-09-29 |
| | | | | | | Removed GenericProtocol and replaced with categories Removed ndpi_pref_enable_category_substring_match option: substring matching is now default | ||
| * | Improved category handlign in subprotocols | Luca Deri | 2019-09-27 |
| | | | | | | Further DNS dissection fixes Fixed WeChat invalid category | ||
| * | Improves IAT calculation | Luca | 2019-09-24 |
| | | |||
| * | As TLS certificate fingerprint is computed, TLS without certificate protocol ↵ | Luca Deri | 2019-09-15 |
| | | | | | | | has been removed Various improvemenets in detection quality | ||
| * | Parsed TLS certificate validity | Luca Deri | 2019-09-10 |
| | | |||
| * | Refreshed Tor node list | Luca Deri | 2019-09-08 |
| | | |||
| * | Added -C to generate CSV analysis files | Luca | 2019-09-03 |
| | | | | | Improved IAT and byte distribution | ||
| * | Average calculation fix | Luca | 2019-08-29 |
| | | |||
| * | Compilation fix on systems without JSON-C | Luca Deri | 2019-08-29 |
| | | |||
| * | Uodated results | Luca | 2019-08-29 |
| | | |||
| * | Added entropy, average, stddev, variance, bytes ratio calculation | Luca | 2019-08-28 |
| | | |||
| * | Various TLS/STUN improvememnts | Luca | 2019-08-08 |
| | | |||