From 60a9f6610d7b15c33ecd8db865cf8f7519ad0ef0 Mon Sep 17 00:00:00 2001
From: Luca Deri <deri@ntop.org>
Date: Mon, 21 Sep 2020 19:57:23 +0200
Subject: Added risks for checking - invalid DNS traffic (probably carrying
 exfiltrated data) - TLS traffic with no SNI extension

---
 python/ndpi.py | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'python')

diff --git a/python/ndpi.py b/python/ndpi.py
index c60faa96b..066ca2e9f 100644
--- a/python/ndpi.py
+++ b/python/ndpi.py
@@ -314,6 +314,8 @@ typedef enum {
   NDPI_SMB_INSECURE_VERSION,
   NDPI_TLS_SUSPICIOUS_ESNI_USAGE,
   NDPI_UNSAFE_PROTOCOL,
+  NDPI_DNS_SUSPICIOUS_TRAFFIC,
+  NDPI_TLS_MISSING_SNI,
   /* Leave this as last member */
   NDPI_MAX_RISK
 } ndpi_risk_enum;
-- 
cgit v1.2.3