| Commit message (Collapse) | Author | Age | |
|---|---|---|---|
| * | Fixed makefile error message | Luca Deri | 2020-07-13 |
| | | | | | Code hardedning fix | ||
| * | Fixed race condition in ndpi_ssl_version2str() caused by static qualifier in ↵ | Toni Uhlig | 2020-07-11 |
| | | | | | | | | | | the version string buffer. * added also GREASE supported tls versions as specified in https://tools.ietf.org/html/draft-davidben-tls-grease-01#page-4 Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | ||
| * | Updated test results due to bin changes | Luca Deri | 2020-07-09 |
| | | |||
| * | Merge pull request #951 from lnslbrty/fix/ossfuzzer | Luca Deri | 2020-07-06 |
| |\ | | | | | ossfuzz.sh: do not use wildcards for fuzzer e.g. fuzz/fuzz* | ||
| | * | ossfuzz.sh: do not use wildcards for fuzzer e.g. fuzz/fuzz* | Toni Uhlig | 2020-07-05 |
| | | | | | | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | ||
| * | | Merge pull request #950 from lnslbrty/improved/http-line-parsing | Luca Deri | 2020-07-06 |
| |\ \ | | | | | | | Improved HTTP line parsing if request splitted into multiple packets. | ||
| | * | | Improved HTTP line parsing if request splitted into multiple packets. | Toni Uhlig | 2020-07-05 |
| | |/ | | | | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | ||
| * | | Merge pull request #940 from lnslbrty/fix/small-and-optimistic-improvments | Luca Deri | 2020-07-06 |
| |\ \ | |/ |/| | Fixed CodeInspector issues. | ||
| | * | Fixed CodeInspector issues. | Toni Uhlig | 2020-07-05 |
| | | | | | | | | | | | | | | | | | | | * Added compiler search list for AC_PROG_CC, AM_PROG_CC_C_O, AC_PROG_CXX, AC_PROG_CC_STDC for Mac OS X only The list rendered the AX_CHECK_COMPILE_FLAG([-fsanitize=fuzzer]) useless as it did use clang for AX_CHECK_COMPILE_FLAG but gcc during the compile process. Seems broken somehow. Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | ||
| * | | Merge pull request #943 from lnslbrty/fix/missing-lengthcheck-in-tls-esni | Luca Deri | 2020-07-01 |
| |\ \ | | | | | | | Fixed heap overflow in tls esni extraction triggered by manipulated p… | ||
| | * | | Fixed heap overflow in tls esni extraction triggered by manipulated packets. | Toni Uhlig | 2020-06-29 |
| | |/ | | | | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | ||
| * / | Copy&Paste ./tests/ossfuzz.sh from https://github.com/google/oss-fuzz/pull/4041 | Toni Uhlig | 2020-06-29 |
| |/ | | | | | | | | * Changing the OSS-Fuzz script from our side is much more easier then opening a PR to google/oss-fuzz every time we have to change a single line. * https://github.com/google/oss-fuzz/pull/4041 will be updated once this PR is merged Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | ||
| * | Improved fuzz_ndpi_reader which supports now SMP/MT w/o race-coniditions. | Toni Uhlig | 2020-06-29 |
| | | | | | | | | ./tests/do.sh can supports SMP/MT via environment variables. Removed -fno-sanitize=shift as well, was fixed by 317d3ffd. Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | ||
| * | Update test results | Nardi Ivan | 2020-06-28 |
| | | |||
| * | DNP3: add missing initialization | Nardi Ivan | 2020-06-28 |
| | | |||
| * | TLS: extract JA3 signatures in some corner cases | Nardi Ivan | 2020-06-28 |
| | | | | | | In some (rare) cases, Client Hello message contains lots of cipher suits. | ||
| * | Fixed off-by-one error in h323. | Toni Uhlig | 2020-06-27 |
| | | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | ||
| * | fixed fuzzing tests in a way that ./tests/do.sh is now able to use corpus ↵ | Toni Uhlig | 2020-06-27 |
| | | | | | | | *.pcap files from ./tests/pcap Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | ||
| * | Added malformed packet risk support | Luca Deri | 2020-06-26 |
| | | |||
| * | Merge pull request #927 from lnslbrty/fix/fbzero-missing-length-check | Luca Deri | 2020-06-24 |
| |\ | | | | | Fixed missing length check in fbzero. | ||
| | * | Fixed missing length check in fbzero. | Toni Uhlig | 2020-06-23 |
| | | | | | | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | ||
| * | | Fixed unitialized values in ndpiReader protocol detection bitmask during dga ↵ | Toni Uhlig | 2020-06-23 |
| |/ | | | | | | | | selftest. * make ./tests/vagrind_test.sh directory agnostic Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | ||
| * | Fixes #906 | Luca Deri | 2020-06-22 |
| | | | | | Packet bins are not printed wehn empty | ||
| * | Merge pull request #921 from lnslbrty/improved/test-sh | Luca Deri | 2020-06-22 |
| |\ | | | | | make tests/do.sh directory agnostic | ||
| | * | make tests/do.sh directory agnostic | Toni Uhlig | 2020-06-19 |
| | | | | | | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | ||
| * | | Added ndpi_bin_XXX API | Luca Deri | 2020-06-22 |
| | | | | | | | | | Added packet lenght distribution bins | ||
| * | | Fixed use after free caused by dangling pointer | Toni Uhlig | 2020-06-21 |
| | | | | | | | | | | | | | * This fix also improved RCE Injection detection Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | ||
| * | | Merge pull request #920 from lnslbrty/fix/tls-rdn-crash | Luca Deri | 2020-06-19 |
| |\ \ | | | | | | | Fixed stack overflow caused by missing length check | ||
| | * | | Fixed stack overflow caused by missing length check | Toni Uhlig | 2020-06-18 |
| | | | | | | | | | | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | ||
| * | | | Added GoogleDNS DoH on Android 10 | Luca Deri | 2020-06-19 |
| | |/ |/| | |||
| * | | DGA detection improvements | Luca Deri | 2020-06-18 |
| | | | |||
| * | | Added checks for DGA detection | Luca Deri | 2020-06-17 |
| | | | |||
| * | | Implemented proprietary AnyDesk protocol | Toni Uhlig | 2020-06-17 |
| |/ | | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com> | ||
| * | Added DGA risk for names that look like a DGA | Luca Deri | 2020-06-11 |
| | | |||
| * | Added check in TLS 1.2+ for reporting a risk when TLS is not used to carry HTTPS | Luca Deri | 2020-06-08 |
| | | |||
| * | Removed some obsolete protocols (battlefield, oscar, pcanywhere, tvants) | Luca Deri | 2020-06-06 |
| | | |||
| * | Added check to avoid producing alerts for known protocol on unknown port ↵ | Luca Deri | 2020-05-30 |
| | | | | | when using TLS | ||
| * | Refreshed test pcap | Luca Deri | 2020-05-28 |
| | | |||
| * | Added support for Encrypted TLS SNI dissection | Luca Deri | 2020-05-28 |
| | | | | | https://datatracker.ietf.org/doc/draft-ietf-tls-sni-encryption/ | ||
| * | Result update | Luca Deri | 2020-05-27 |
| | | |||
| * | Added pcap with encrypted SNI | Luca Deri | 2020-05-27 |
| | | | | | | - https://blog.cloudflare.com/encrypted-sni/ - https://www.inmotionhosting.com/support/website/security/dns-over-https-encrypted-sni-in-firefox/ | ||
| * | Added stub for checking HTTP header | Luca Deri | 2020-05-21 |
| | | | | | Updated Teams result | ||
| * | Added fix to avoid potential heap buffer overflow in H.323 dissector | Luca Deri | 2020-05-19 |
| | | | | | Modified HTTP report information to make it closer to the HTTP field names | ||
| * | Added check for invalid HTTP URLs | Luca Deri | 2020-05-16 |
| | | |||
| * | Added NDPI_HTTP_SUSPICIOUS_USER_AGENT ndpi_risk | Luca Deri | 2020-05-15 |
| | | |||
| * | Added NDPI_TLS_CERTIFICATE_EXPIRED, NDPI_TLS_CERTIFICATE_MISMATCH, to ndpi_risk | Luca Deri | 2020-05-15 |
| | | |||
| * | Improvements on GotoMeeting | Luca Deri | 2020-05-15 |
| | | | | | Added pcap for testing malware | ||
| * | Added TLS weak cipher and obsolete protocol version detection | Luca Deri | 2020-05-10 |
| | | |||
| * | Added detection of self-signed TLS certificates | Luca Deri | 2020-05-10 |
| | | |||
| * | Added the ability to detect when a known protocol is using a non-standard port | Luca Deri | 2020-05-10 |
| | | | | | Added check to spot executables exchanged via HTTP | ||