aboutsummaryrefslogtreecommitdiff
path: root/tests
Commit message (Collapse)AuthorAge
...
| * | Fixed heap overflow in tls esni extraction triggered by manipulated packets.Toni Uhlig2020-06-29
| |/ | | | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* / Copy&Paste ./tests/ossfuzz.sh from https://github.com/google/oss-fuzz/pull/4041Toni Uhlig2020-06-29
|/ | | | | | | | * Changing the OSS-Fuzz script from our side is much more easier then opening a PR to google/oss-fuzz every time we have to change a single line. * https://github.com/google/oss-fuzz/pull/4041 will be updated once this PR is merged Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Improved fuzz_ndpi_reader which supports now SMP/MT w/o race-coniditions.Toni Uhlig2020-06-29
| | | | | | | ./tests/do.sh can supports SMP/MT via environment variables. Removed -fno-sanitize=shift as well, was fixed by 317d3ffd. Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Update test resultsNardi Ivan2020-06-28
|
* DNP3: add missing initializationNardi Ivan2020-06-28
|
* TLS: extract JA3 signatures in some corner casesNardi Ivan2020-06-28
| | | | | In some (rare) cases, Client Hello message contains lots of cipher suits.
* Fixed off-by-one error in h323.Toni Uhlig2020-06-27
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* fixed fuzzing tests in a way that ./tests/do.sh is now able to use corpus ↵Toni Uhlig2020-06-27
| | | | | | *.pcap files from ./tests/pcap Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Added malformed packet risk supportLuca Deri2020-06-26
|
* Merge pull request #927 from lnslbrty/fix/fbzero-missing-length-checkLuca Deri2020-06-24
|\ | | | | Fixed missing length check in fbzero.
| * Fixed missing length check in fbzero.Toni Uhlig2020-06-23
| | | | | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* | Fixed unitialized values in ndpiReader protocol detection bitmask during dga ↵Toni Uhlig2020-06-23
|/ | | | | | | | selftest. * make ./tests/vagrind_test.sh directory agnostic Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Fixes #906Luca Deri2020-06-22
| | | | Packet bins are not printed wehn empty
* Merge pull request #921 from lnslbrty/improved/test-shLuca Deri2020-06-22
|\ | | | | make tests/do.sh directory agnostic
| * make tests/do.sh directory agnosticToni Uhlig2020-06-19
| | | | | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* | Added ndpi_bin_XXX APILuca Deri2020-06-22
| | | | | | | | Added packet lenght distribution bins
* | Fixed use after free caused by dangling pointerToni Uhlig2020-06-21
| | | | | | | | | | | | * This fix also improved RCE Injection detection Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* | Merge pull request #920 from lnslbrty/fix/tls-rdn-crashLuca Deri2020-06-19
|\ \ | | | | | | Fixed stack overflow caused by missing length check
| * | Fixed stack overflow caused by missing length checkToni Uhlig2020-06-18
| | | | | | | | | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* | | Added GoogleDNS DoH on Android 10Luca Deri2020-06-19
| |/ |/|
* | DGA detection improvementsLuca Deri2020-06-18
| |
* | Added checks for DGA detectionLuca Deri2020-06-17
| |
* | Implemented proprietary AnyDesk protocolToni Uhlig2020-06-17
|/ | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Added DGA risk for names that look like a DGALuca Deri2020-06-11
|
* Added check in TLS 1.2+ for reporting a risk when TLS is not used to carry HTTPSLuca Deri2020-06-08
|
* Removed some obsolete protocols (battlefield, oscar, pcanywhere, tvants)Luca Deri2020-06-06
|
* Added check to avoid producing alerts for known protocol on unknown port ↵Luca Deri2020-05-30
| | | | when using TLS
* Refreshed test pcapLuca Deri2020-05-28
|
* Added support for Encrypted TLS SNI dissectionLuca Deri2020-05-28
| | | | https://datatracker.ietf.org/doc/draft-ietf-tls-sni-encryption/
* Result updateLuca Deri2020-05-27
|
* Added pcap with encrypted SNILuca Deri2020-05-27
| | | | | - https://blog.cloudflare.com/encrypted-sni/ - https://www.inmotionhosting.com/support/website/security/dns-over-https-encrypted-sni-in-firefox/
* Added stub for checking HTTP headerLuca Deri2020-05-21
| | | | Updated Teams result
* Added fix to avoid potential heap buffer overflow in H.323 dissectorLuca Deri2020-05-19
| | | | Modified HTTP report information to make it closer to the HTTP field names
* Added check for invalid HTTP URLsLuca Deri2020-05-16
|
* Added NDPI_HTTP_SUSPICIOUS_USER_AGENT ndpi_riskLuca Deri2020-05-15
|
* Added NDPI_TLS_CERTIFICATE_EXPIRED, NDPI_TLS_CERTIFICATE_MISMATCH, to ndpi_riskLuca Deri2020-05-15
|
* Improvements on GotoMeetingLuca Deri2020-05-15
| | | | Added pcap for testing malware
* Added TLS weak cipher and obsolete protocol version detectionLuca Deri2020-05-10
|
* Added detection of self-signed TLS certificatesLuca Deri2020-05-10
|
* Added the ability to detect when a known protocol is using a non-standard portLuca Deri2020-05-10
| | | | Added check to spot executables exchanged via HTTP
* Added self signed certificate test pcapLuca Deri2020-05-08
|
* Added TLS issuerDN and subjectDNLuca Deri2020-05-07
|
* Updated automa API to use 32 bit values splits from protocol/categpryLuca Deri2020-05-06
|
* Removed now obsolete MSN protocolLuca Deri2020-05-03
| | | | Added nats.io protocol dissector
* Merge pull request #883 from leonn/websocketLuca Deri2020-04-27
|\ | | | | :bulb: implement WebSocket protocol dissector
| * :bulb: implement websocket protocol dissectorLeonn Paiva2020-04-26
| |
* | Add basic support for some ip-in-ip tunnelsNardi Ivan2020-04-23
|/ | | | | | | | Add support for 4in4, 6in6 and 4in6 encapsulations Add support for ipv6 traffic in gtp tunnels, too To allow gtp unit test, gtp detunneling flag has been globally enabled in the test suite
* Updated resultsLuca Deri2020-04-21
|
* Office365 renamed to Microsoft365 (by Microsoft)Luca Deri2020-04-20
|
* CiscoVPN dissection improvementsLuca Deri2020-04-17
|
Powered by cgit, Themed by Ted Yin.