aboutsummaryrefslogtreecommitdiff
path: root/tests/result/youtubeupload.pcap.out
Commit message (Collapse)AuthorAge
* Patricia tree, Ahocarasick automa, LRU cache: add statistics (#1683)Ivan Nardi2022-07-29
| | | | | | | | | | Add (basic) internal stats to the main data structures used by the library; they might be usefull to check how effective these structures are. Add an option to `ndpiReader` to dump them; enabled by default in the unit tests. This new option enables/disables dumping of "num dissectors calls" values, too (see b4cb14ec).
* TINC: avoid processing SYN packets (#1676)Ivan Nardi2022-07-28
| | | | | | | | | | | Since e6b332aa, we have proper support for detecting client/server direction. So Tinc dissector is now able to properly initialize the cache entry only when needed and not anymore at the SYN time; initializing that entry for **every** SYN packets was a complete waste of resources. Since 4896dabb, the various `struct ndpi_call_function_struct` structures are not more separate objects and therefore comparing them using only their pointers is bogus: this bug was triggered by this change because `ndpi_str->callback_buffer_size_tcp_no_payload` is now 0.
* Update the protocol bitmask for some protocols (#1675)Ivan Nardi2022-07-27
| | | | | | | Tcp retransmissions should be ignored. Remove some unused protocol bitmasks. Update script to download Whatsapp IP list.
* Improved Jabber/XMPP detection. (#1661)Toni2022-07-13
| | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Keep track of how many dissectors calls we made for each flow (#1657)Ivan Nardi2022-07-11
|
* Fix handling of NDPI_UNIDIRECTIONAL_TRAFFIC risk (#1636)Ivan Nardi2022-07-05
|
* Added unidirectional traffic flow riskLuca Deri2022-06-20
|
* Updated tests resultsLuca Deri2022-05-30
| | | | Code cleanup
* Sync unit tests results (#1533)Ivan Nardi2022-04-27
|
* Add a "confidence" field about the reliability of the classification. (#1395)Ivan Nardi2022-01-11
| | | | | | | | | | | | | As a general rule, the higher the confidence value, the higher the "reliability/precision" of the classification. In other words, this new field provides an hint about "how" the flow classification has been obtained. For example, the application may want to ignore classification "by-port" (they are not real DPI classifications, after all) or give a second glance at flows classified via LRU caches (because of false positives). Setting only one value for the confidence field is a bit tricky: more work is probably needed in the next future to tweak/fix/improve the logic.
* ndpiReader: slight simplificaton of the output (#1378)Ivan Nardi2021-11-27
|
* Updated outputLuca Deri2021-08-07
|
* ndpiReader: add statistics about nDPI performance (#1240)Ivan Nardi2021-07-13
| | | | | | | The goal is to have a (roughly) idea about how many packets nDPI needs to properly classify a flow. Log this information (and guessed flows number too) during unit tests, to keep track of improvements/regressions across commits.
* Improved TLS browser detection heuristicsLuca Deri2021-05-19
|
* Added flow risk scoreLuca Deri2021-05-18
|
* Added browser TLS heuristicLuca Deri2021-05-13
|
* Modified JA3 fingerprint messageLuca Deri2021-02-24
|
* Added NDPI_MALICIOUS_JA3 flow riskLuca Deri2021-02-22
| | | | Added ndpi_load_malicious_ja3_file() API call
* QUIC: improve handling of SNI (#1105)Ivan Nardi2021-01-07
| | | | | | | | | | | | | * QUIC: SNI should be always saved in flow->protos.stun_ssl.ssl.client_requested_server_name Close #1077 * QUIC: fix matching of custom categories * QUIC: add NDPI_TLS_MISSING_SNI support for older GQUIC versions * QUIC: fix serialization * QUIC: add DGA check for older GQUIC versions
* Fixes #1029Luca Deri2020-11-27
|
* QUIC: extract User Agent informationNardi Ivan2020-09-08
|
* Fixed false positive in suspicous user agentLuca Deri2020-08-30
| | | | Optimized stddev calculation
* Fixed partial TLS dissectionLuca Deri2020-07-30
|
* Changed due to bin size extensionLuca Deri2020-07-30
|
* Added ndpi_bin_XXX APILuca Deri2020-06-22
| | | | Added packet lenght distribution bins
* Added TLS issuerDN and subjectDNLuca Deri2020-05-07
|
* Results updateLuca Deri2020-04-17
|
* Remove decimals in test results for IAT, packet lengths and goodput ratioemanuele-f2020-02-14
|
* Added export of TLS supported version in TLS headerLuca Deri2020-02-07
|
* Added TLS ALPN supportLuca Deri2020-02-07
|
* Reworked TLS dissectionLuca2020-01-01
|
* Updated resultsLuca Deri2019-11-21
|
* Manual merge of pull #769Luca Deri2019-10-02
|
* As TLS certificate fingerprint is computed, TLS without certificate protocol ↵Luca Deri2019-09-15
| | | | | | has been removed Various improvemenets in detection quality
* Fixed timezone conversionLuca Deri2019-09-10
|
* Changes in validity formatLuca Deri2019-09-10
|
* Uddated resultsLuca Deri2019-09-10
|
* Parsed TLS certificate validityLuca Deri2019-09-10
|
* Added -C to generate CSV analysis filesLuca2019-09-03
| | | | Improved IAT and byte distribution
* Uodated resultsLuca2019-08-29
|
* Added entropy, average, stddev, variance, bytes ratio calculationLuca2019-08-28
|
* Implemented DTLS supportLuca2019-08-08
| | | | Renamed ssl to tls
* Updated results when adding client helloLuca Deri2019-08-07
|
* Refresh after data leak detectionLuca Deri2019-07-18
|
* Reworked outputLuca Deri2019-07-15
| | | | | -v 1 now prints only unknown flows -v 2 now prints all flows
* Updated test resultss after export changesLuca Deri2019-07-13
|
* Updated results with the new SSL dissectionLuca Deri2019-05-30
| | | | Added RDP dissector
* Tests result fixLuca2019-04-05
| | | | Merge branch 'dev' of https://github.com/ntop/nDPI into dev
* Updated results based on the new output formatLuca2018-07-21
|
* Updated test resulsLuca Deri2018-05-18
|
Powered by cgit, Themed by Ted Yin.