diff options
| author | Toni Uhlig <matzeton@googlemail.com> | 2024-11-11 16:19:07 +0100 |
|---|---|---|
| committer | Toni Uhlig <matzeton@googlemail.com> | 2024-11-13 17:23:31 +0100 |
| commit | 9efdecf4efa352a6046c88a945cf9ff8db1b37b9 (patch) | |
| tree | 43c6ba4a106f47420a4f5dc1ddfe393400c5dbda /schema | |
| parent | 8c114e49168eb38a8598b5b342c7144a07323320 (diff) | |
bump libnDPI to 59ee1fe1156be234fed796972a29a31a0589e25a
* set minimum nDPI version to 4.12.0 (incompatible API changes)
* fixed `ndpi_debug_printf()` function signature
* JSON schema (flow): added risk `56`: "Obfuscated Traffic"
* JSON schema (flow): added "domainame"
* fixed OpenWrt build
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
Diffstat (limited to 'schema')
| -rw-r--r-- | schema/flow_event_schema.json | 22 |
1 files changed, 22 insertions, 0 deletions
diff --git a/schema/flow_event_schema.json b/schema/flow_event_schema.json index 95dc095e7..be4a0087a 100644 --- a/schema/flow_event_schema.json +++ b/schema/flow_event_schema.json @@ -1322,6 +1322,25 @@ } }, "additionalProperties": false + }, + "56": { + "type": "object", + "required": [ "risk", "severity", "risk_score" ], + "properties": { + "risk": { "type": "string", "enum": [ "Obfuscated Traffic" ] }, + "severity": { "type": "string" }, + "risk_score": { + "type": "object", + "required": [ "total", "client", "server" ], + "properties": { + "total": { "type": "number", "minimum": 350, "maximum": 350 }, + "client": { "type": "number", "minimum": 235, "maximum": 235 }, + "server": { "type": "number", "minimum": 115, "maximum": 115 }, + "additionalProperties": false + } + } + }, + "additionalProperties": false } }, "additionalProperties": false @@ -1371,6 +1390,9 @@ "entropy": { "type": "number" }, + "domainame": { + "type": "string" + }, "hostname": { "type": "string" }, |