| Commit message (Collapse) | Author | Age | |
|---|---|---|---|
| * | Sync unit tests results (#1423) | Ivan Nardi | 2022-01-28 |
| | | | | Fix: 7a3aa41a | ||
| * | Add a "confidence" field about the reliability of the classification. (#1395) | Ivan Nardi | 2022-01-11 |
| | | | | | | | | | | | | | | As a general rule, the higher the confidence value, the higher the "reliability/precision" of the classification. In other words, this new field provides an hint about "how" the flow classification has been obtained. For example, the application may want to ignore classification "by-port" (they are not real DPI classifications, after all) or give a second glance at flows classified via LRU caches (because of false positives). Setting only one value for the confidence field is a bit tricky: more work is probably needed in the next future to tweak/fix/improve the logic. | ||
| * | ndpiReader: slight simplificaton of the output (#1378) | Ivan Nardi | 2021-11-27 |
| | | |||
| * | Reworked HTTP protocol dissection including HTTP proxy and HTTP connect | Luca Deri | 2021-11-25 |
| | | |||
| * | Differentiate between standard Amazon stuff (i.e market) and AWS (#1369) | Ivan Nardi | 2021-11-04 |
| | | |||
| * | Fixed cleartext protocol assignment (#1357) | Ivan Nardi | 2021-10-25 |
| | | |||
| * | Refreshed results list | Luca Deri | 2021-10-16 |
| | | |||
| * | Updated test results after latest commit | Luca Deri | 2021-10-16 |
| | | |||
| * | Improved DGA detection for skipping potential DGAs of known/popular domain names | Luca Deri | 2021-10-05 |
| | | |||
| * | Update unit tests results after da8eed5a (#1323) | Ivan Nardi | 2021-10-05 |
| | | |||
| * | Updated output | Luca Deri | 2021-08-07 |
| | | |||
| * | Reworked flow risk implementation | Luca Deri | 2021-07-23 |
| | | |||
| * | Updated download category name | Luca Deri | 2021-07-16 |
| | | |||
| * | ndpiReader: add statistics about nDPI performance (#1240) | Ivan Nardi | 2021-07-13 |
| | | | | | | | | The goal is to have a (roughly) idea about how many packets nDPI needs to properly classify a flow. Log this information (and guessed flows number too) during unit tests, to keep track of improvements/regressions across commits. | ||
| * | Updated category labels | Luca Deri | 2021-07-08 |
| | | |||
| * | Added flow risk score | Luca Deri | 2021-05-18 |
| | | |||
| * | Updated protocol category | Luca Deri | 2021-05-15 |
| | | |||
| * | Modified JA3 fingerprint message | Luca Deri | 2021-02-24 |
| | | |||
| * | Added NDPI_MALICIOUS_JA3 flow risk | Luca Deri | 2021-02-22 |
| | | | | | Added ndpi_load_malicious_ja3_file() API call | ||
| * | Implemented TLS Certificate Sibject matching | Luca Deri | 2021-02-22 |
| | | | | | Improved AnyDesk detection | ||
| * | Improved (partial) TLS dissection | Luca Deri | 2021-02-04 |
| | | |||
| * | Introduced fix on TLS for discarding traffic out of sequence that might ↵ | Luca Deri | 2020-12-22 |
| | | | | | invalidate dissection | ||
| * | Fixes #1029 | Luca Deri | 2020-11-27 |
| | | |||
| * | Fixes #1033 | Luca Deri | 2020-10-21 |
| | | |||
| * | Fixed false positive in suspicous user agent | Luca Deri | 2020-08-30 |
| | | | | | Optimized stddev calculation | ||
| * | Fixed partial TLS dissection | Luca Deri | 2020-07-30 |
| | | |||
| * | Changed due to bin size extension | Luca Deri | 2020-07-30 |
| | | |||
| * | TLS dissection improvements | Luca Deri | 2020-07-28 |
| | | |||
| * | Updated test results due to bin changes | Luca Deri | 2020-07-09 |
| | | |||
| * | Fixes #906 | Luca Deri | 2020-06-22 |
| | | | | | Packet bins are not printed wehn empty | ||
| * | Added ndpi_bin_XXX API | Luca Deri | 2020-06-22 |
| | | | | | Added packet lenght distribution bins | ||
| * | Added fix to avoid potential heap buffer overflow in H.323 dissector | Luca Deri | 2020-05-19 |
| | | | | | Modified HTTP report information to make it closer to the HTTP field names | ||
| * | Added TLS weak cipher and obsolete protocol version detection | Luca Deri | 2020-05-10 |
| | | |||
| * | Added detection of self-signed TLS certificates | Luca Deri | 2020-05-10 |
| | | |||
| * | Added the ability to detect when a known protocol is using a non-standard port | Luca Deri | 2020-05-10 |
| | | | | | Added check to spot executables exchanged via HTTP | ||
| * | Added TLS issuerDN and subjectDN | Luca Deri | 2020-05-07 |
| | | |||
| * | Remove decimals in test results for IAT, packet lengths and goodput ratio | emanuele-f | 2020-02-14 |
| | | |||
| * | Improved DNS response decoding | Luca Deri | 2020-02-04 |
| | | | | | The first decoded address is now reported by ndpiReader | ||
| * | Reworked TLS dissection | Luca | 2020-01-01 |
| | | |||
| * | Updated results | Luca Deri | 2019-11-21 |
| | | |||
| * | Updated content-type parsing | Luca | 2019-10-31 |
| | | |||
| * | Initial work towards HTTP content-type export | Luca | 2019-10-31 |
| | | |||
| * | Added telnet dissector | Luca | 2019-10-29 |
| | | | | | Improved data report | ||
| * | Improved HTTP reporting in ndpiReader | Luca Deri | 2019-10-25 |
| | | |||
| * | Major cleanup | Luca Deri | 2019-10-24 |
| | | | | | Removed ndpi_pref_http_dont_dissect_response and ndpi_pref_dns_dont_dissect_response as the ndpi_extra_dissection_possible() call will now handle everything | ||
| * | Manual merge of pull #769 | Luca Deri | 2019-10-02 |
| | | |||
| * | Added URL in results | Luca Deri | 2019-10-01 |
| | | |||
| * | Improves IAT calculation | Luca | 2019-09-24 |
| | | |||
| * | As TLS certificate fingerprint is computed, TLS without certificate protocol ↵ | Luca Deri | 2019-09-15 |
| | | | | | | | has been removed Various improvemenets in detection quality | ||
| * | Parsed TLS certificate validity | Luca Deri | 2019-09-10 |
| | | |||