bump libnDPI to db9f6ec1b4018164e5bff05f115dc60711bb711b

Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
author: Toni Uhlig <matzeton@googlemail.com> 2022-10-29 14:37:06 +0200
committer: Toni Uhlig <matzeton@googlemail.com> 2022-10-31 13:53:02 +0100
commit: d55e39792970234b0b07582378cc3ec07ab62bf3 (patch)
tree: db067f18ef90aecf1d000611ef4f1f3ea3b476c2 /test/results/flow-info/WebattackSQLinj.pcap.out
parent: d3f99f21e6ab7c13286af5f37dafbe9cd76f2fad (diff)
1 files changed, 36 insertions, 36 deletions
diff --git a/test/results/flow-info/WebattackSQLinj.pcap.out b/test/results/flow-info/WebattackSQLinj.pcap.out
index ffc44e526..4bc7f3830 100644
--- a/test/results/flow-info/WebattackSQLinj.pcap.out
+++ b/test/results/flow-info/WebattackSQLinj.pcap.out
@@ -2,48 +2,48 @@
      DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
      DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
               new: [.....1] [ip4][..tcp] [.....172.16.0.1][36196] -> [..192.168.10.50][...80] 
-         detected: [.....1] [ip4][..tcp] [.....172.16.0.1][36196] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable][205.174.165.68]
-                   RISK: HTTP Numeric IP Address
+         detected: [.....1] [ip4][..tcp] [.....172.16.0.1][36196] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
+                   RISK: HTTP Numeric IP Address, HTTP Suspicious Header
               new: [.....2] [ip4][..tcp] [.....172.16.0.1][36198] -> [..192.168.10.50][...80] 
-         detected: [.....2] [ip4][..tcp] [.....172.16.0.1][36198] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable][205.174.165.68]
-                   RISK: HTTP Numeric IP Address
+         detected: [.....2] [ip4][..tcp] [.....172.16.0.1][36198] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
+                   RISK: HTTP Numeric IP Address, HTTP Suspicious Header
               new: [.....3] [ip4][..tcp] [.....172.16.0.1][36200] -> [..192.168.10.50][...80] 
-         detected: [.....3] [ip4][..tcp] [.....172.16.0.1][36200] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable][205.174.165.68]
-                   RISK: HTTP Numeric IP Address
+         detected: [.....3] [ip4][..tcp] [.....172.16.0.1][36200] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
+                   RISK: HTTP Numeric IP Address, HTTP Suspicious Header
               new: [.....4] [ip4][..tcp] [.....172.16.0.1][36202] -> [..192.168.10.50][...80] 
-         detected: [.....4] [ip4][..tcp] [.....172.16.0.1][36202] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable][205.174.165.68]
-                   RISK: HTTP Numeric IP Address
+         detected: [.....4] [ip4][..tcp] [.....172.16.0.1][36202] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
+                   RISK: HTTP Numeric IP Address, HTTP Suspicious Header
               new: [.....5] [ip4][..tcp] [.....172.16.0.1][36204] -> [..192.168.10.50][...80] 
-         detected: [.....5] [ip4][..tcp] [.....172.16.0.1][36204] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable][205.174.165.68]
-                   RISK: HTTP Numeric IP Address
+         detected: [.....5] [ip4][..tcp] [.....172.16.0.1][36204] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
+                   RISK: HTTP Numeric IP Address, HTTP Suspicious Header
               new: [.....6] [ip4][..tcp] [.....172.16.0.1][36206] -> [..192.168.10.50][...80] 
-         detected: [.....6] [ip4][..tcp] [.....172.16.0.1][36206] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable][205.174.165.68]
-                   RISK: HTTP Numeric IP Address
+         detected: [.....6] [ip4][..tcp] [.....172.16.0.1][36206] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
+                   RISK: HTTP Numeric IP Address, HTTP Suspicious Header
               new: [.....7] [ip4][..tcp] [.....172.16.0.1][36208] -> [..192.168.10.50][...80] 
-         detected: [.....7] [ip4][..tcp] [.....172.16.0.1][36208] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable][205.174.165.68]
-                   RISK: HTTP Numeric IP Address
+         detected: [.....7] [ip4][..tcp] [.....172.16.0.1][36208] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
+                   RISK: HTTP Numeric IP Address, HTTP Suspicious Header
               new: [.....8] [ip4][..tcp] [.....172.16.0.1][36210] -> [..192.168.10.50][...80] 
-         detected: [.....8] [ip4][..tcp] [.....172.16.0.1][36210] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable][205.174.165.68]
-                   RISK: HTTP Numeric IP Address
+         detected: [.....8] [ip4][..tcp] [.....172.16.0.1][36210] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
+                   RISK: HTTP Numeric IP Address, HTTP Suspicious Header
               new: [.....9] [ip4][..tcp] [.....172.16.0.1][36212] -> [..192.168.10.50][...80] 
-         detected: [.....9] [ip4][..tcp] [.....172.16.0.1][36212] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable][205.174.165.68]
-                   RISK: HTTP Numeric IP Address
-              end: [.....1] [ip4][..tcp] [.....172.16.0.1][36196] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable]
-                   RISK: HTTP Numeric IP Address
-              end: [.....2] [ip4][..tcp] [.....172.16.0.1][36198] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable]
-                   RISK: SQL Injection, HTTP Numeric IP Address
-              end: [.....3] [ip4][..tcp] [.....172.16.0.1][36200] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable]
-                   RISK: SQL Injection, HTTP Numeric IP Address
-              end: [.....4] [ip4][..tcp] [.....172.16.0.1][36202] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable]
-                   RISK: SQL Injection, HTTP Numeric IP Address
-              end: [.....5] [ip4][..tcp] [.....172.16.0.1][36204] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable]
-                   RISK: SQL Injection, HTTP Numeric IP Address
-              end: [.....6] [ip4][..tcp] [.....172.16.0.1][36206] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable]
-                   RISK: HTTP Numeric IP Address
-              end: [.....7] [ip4][..tcp] [.....172.16.0.1][36208] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable]
-                   RISK: SQL Injection, HTTP Numeric IP Address
-              end: [.....8] [ip4][..tcp] [.....172.16.0.1][36210] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable]
-                   RISK: SQL Injection, HTTP Numeric IP Address
-              end: [.....9] [ip4][..tcp] [.....172.16.0.1][36212] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable]
-                   RISK: SQL Injection, HTTP Numeric IP Address
+         detected: [.....9] [ip4][..tcp] [.....172.16.0.1][36212] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
+                   RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+              end: [.....1] [ip4][..tcp] [.....172.16.0.1][36196] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
+                   RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+              end: [.....2] [ip4][..tcp] [.....172.16.0.1][36198] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
+                   RISK: SQL Injection, HTTP Numeric IP Address, HTTP Suspicious Header
+              end: [.....3] [ip4][..tcp] [.....172.16.0.1][36200] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
+                   RISK: SQL Injection, HTTP Numeric IP Address, HTTP Suspicious Header
+              end: [.....4] [ip4][..tcp] [.....172.16.0.1][36202] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
+                   RISK: SQL Injection, HTTP Numeric IP Address, HTTP Suspicious Header
+              end: [.....5] [ip4][..tcp] [.....172.16.0.1][36204] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
+                   RISK: SQL Injection, HTTP Numeric IP Address, HTTP Suspicious Header
+              end: [.....6] [ip4][..tcp] [.....172.16.0.1][36206] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
+                   RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+              end: [.....7] [ip4][..tcp] [.....172.16.0.1][36208] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
+                   RISK: SQL Injection, HTTP Numeric IP Address, HTTP Suspicious Header
+              end: [.....8] [ip4][..tcp] [.....172.16.0.1][36210] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
+                   RISK: SQL Injection, HTTP Numeric IP Address, HTTP Suspicious Header
+              end: [.....9] [ip4][..tcp] [.....172.16.0.1][36212] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
+                   RISK: SQL Injection, HTTP Numeric IP Address, HTTP Suspicious Header
      DAEMON-EVENT: shutdown
author	Toni Uhlig <matzeton@googlemail.com>	2022-10-29 14:37:06 +0200
committer	Toni Uhlig <matzeton@googlemail.com>	2022-10-31 13:53:02 +0100
commit	d55e39792970234b0b07582378cc3ec07ab62bf3 (patch)
tree	db067f18ef90aecf1d000611ef4f1f3ea3b476c2 /test/results/flow-info/WebattackSQLinj.pcap.out
parent	d3f99f21e6ab7c13286af5f37dafbe9cd76f2fad (diff)