summaryrefslogtreecommitdiff
path: root/examples/README.md
Commit message (Collapse)AuthorAge
* Added Filebeat Configuration (#44)Naix2024-10-06
| | | | | Added Filebeat Configuration Co-authored-by: Toni <matzeton@googlemail.com>
* Removed unmaintained C JSON dumper.Toni Uhlig2024-04-17
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Added Grafana example dashboard image.Toni Uhlig2023-12-20
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Add InfluxDB push daemon.Toni Uhlig2023-12-07
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Replaced ambiguous naming of "JSON string" to more accurate "JSON message".Toni Uhlig2023-12-04
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Updated ReadMe's, ToDo's and ChangeLog.1.6Toni Uhlig2023-11-20
| | | | | | * 1.6-release Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Add DBUS suspicious flow event notification daemon.Toni Uhlig2023-11-03
| | | | | | * nDPIsrvd.h: support for closing/resetting a nDPIsrvd_socket (required for a reconnect) Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Added GLFW/OpenGL stats drawer written in C++.Toni Uhlig2023-07-16
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Added Keras based Autoencode (Work-in-Progress!)Toni Uhlig2023-07-16
| | | | | | * minor fixes Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Added https://gitlab.com/verzulli/ndpid-rt-analyzer-frontend.git example.Toni Uhlig2023-01-11
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Updated README's.Toni Uhlig2022-11-20
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Increased network buffer size to 33792 bytes.Toni Uhlig2022-10-30
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* py-machine-learning: load and save trained modelsToni Uhlig2022-10-15
| | | | | | * added link to a pre-trained model Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Removed discontinued examples from the ReadMe.Toni Uhlig2022-10-13
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Removed example py-ja3-checker.Toni Uhlig2022-10-13
| | | | | | | * renamed sklearn-ml.py to sklearn-random-forest.py (there is more to come!) * force all protocol classes to lower case Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Improved py-machine-learning example.Toni Uhlig2022-10-10
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Improved py-machine-learning example.Toni Uhlig2022-10-09
| | | | | | | | | * c-analysed: fixed quoting bug * nDPId: fixed invalid iat storing/serialisation * nDPId: free data analysis after event was sent Signed-off-by: Toni Uhlig <matzeton@googlemail.com> Signed-off-by: lns <matzeton@googlemail.com>
* Small fixes.lns2022-10-01
| | | | Signed-off-by: lns <matzeton@googlemail.com>
* c-analysed: improved feature extraction from "analyse" eventsToni Uhlig2022-10-01
| | | | | | | | * c-captured: update detected risks on "detection-update" events * c-collectd: added missing flow breed * c-collectd: PUTVAL macros are more flexible now Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Added https://gitlab.com/verzulli/ndpid-rt-analyzer.git to examples.Toni Uhlig2022-09-06
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Updated examples/README.mdToni Uhlig2022-03-06
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* py-flow-dashboard: added tab layout and event pie chartToni Uhlig2022-01-26
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Major nDPId extension. Sorry for the huge commit.Toni Uhlig2022-01-20
| | | | | | | | | | | | | | | | | | | | | | | | | | | | - nDPId: fixed invalid IP4/IP6 tuple compare - nDPIsrvd: fixed caching issue (finally) - added tiny c example (can be used to check flow manager sanity) - c-captured: use flow_last_seen timestamp from `struct nDPIsrvd_flow` - README.md update: added example JSON sequence - nDPId: added new flow event `update` necessary for correct timeout handling (and other future use-cases) - nDPIsrvd.h and nDPIsrvd.py: switched to an instance (consists of an alias/source tuple) based flow manager - every flow related event **must** now serialize `alias`, `source`, `flow_id`, `flow_last_seen` and `flow_idle_time` to make the timeout handling and verification process work correctly - nDPIsrvd.h: ability to profile any dynamic memory (de-)allocation - nDPIsrvd.py: removed PcapPacket class (unused) - py-flow-dashboard and py-flow-multiprocess: fixed race condition - py-flow-info: print statusbar with probably useful information - nDPId/nDPIsrvd.h: switched from packet-flow only timestamps (`pkt_*sec`) to a generic flow event timestamp `ts_msec` - nDPId-test: added additional checks - nDPId: increased ICMP flow timeout - nDPId: using event based i/o if capturing packets from a device - nDPIsrvd: fixed memory leak on shutdown if remote descriptors were still connected Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Added realtime web based graph example using Plotly/Dash.Toni Uhlig2021-05-27
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Added simple Python Multiprocess example.Toni Uhlig2021-05-26
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Added python example to check JA3 hashes against known hashes via JA3er.comToni Uhlig2021-04-16
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Added nDPId semantic validation test.Toni Uhlig2021-04-14
| | | | | | | | | | | * fixed inconsistent processing of remaining flows during nDPId shutdown phase * fixed multiple `detected' flow events (instead only `detection-update' flow events can occur after a `detected' flow event) * fixed nDPIsrvd.py invalid message buffer handling * improved run_tests.sh so only valid pcap capture files are getting processed (and some more cosmetics + logging) Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Updated README.mdToni Uhlig2021-03-24
* added examples/README.md and schema/README.md Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
Powered by cgit, Themed by Ted Yin.