From d55e39792970234b0b07582378cc3ec07ab62bf3 Mon Sep 17 00:00:00 2001
From: Toni Uhlig <matzeton@googlemail.com>
Date: Sat, 29 Oct 2022 14:37:06 +0200
Subject: bump libnDPI to db9f6ec1b4018164e5bff05f115dc60711bb711b

Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
---
 test/results/flow-info/WebattackSQLinj.pcap.out | 72 ++++++++++++-------------
 1 file changed, 36 insertions(+), 36 deletions(-)

(limited to 'test/results/flow-info/WebattackSQLinj.pcap.out')

diff --git a/test/results/flow-info/WebattackSQLinj.pcap.out b/test/results/flow-info/WebattackSQLinj.pcap.out
index ffc44e526..4bc7f3830 100644
--- a/test/results/flow-info/WebattackSQLinj.pcap.out
+++ b/test/results/flow-info/WebattackSQLinj.pcap.out
@@ -2,48 +2,48 @@
      DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
      DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
               new: [.....1] [ip4][..tcp] [.....172.16.0.1][36196] -> [..192.168.10.50][...80] 
-         detected: [.....1] [ip4][..tcp] [.....172.16.0.1][36196] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable][205.174.165.68]
-                   RISK: HTTP Numeric IP Address
+         detected: [.....1] [ip4][..tcp] [.....172.16.0.1][36196] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
+                   RISK: HTTP Numeric IP Address, HTTP Suspicious Header
               new: [.....2] [ip4][..tcp] [.....172.16.0.1][36198] -> [..192.168.10.50][...80] 
-         detected: [.....2] [ip4][..tcp] [.....172.16.0.1][36198] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable][205.174.165.68]
-                   RISK: HTTP Numeric IP Address
+         detected: [.....2] [ip4][..tcp] [.....172.16.0.1][36198] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
+                   RISK: HTTP Numeric IP Address, HTTP Suspicious Header
               new: [.....3] [ip4][..tcp] [.....172.16.0.1][36200] -> [..192.168.10.50][...80] 
-         detected: [.....3] [ip4][..tcp] [.....172.16.0.1][36200] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable][205.174.165.68]
-                   RISK: HTTP Numeric IP Address
+         detected: [.....3] [ip4][..tcp] [.....172.16.0.1][36200] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
+                   RISK: HTTP Numeric IP Address, HTTP Suspicious Header
               new: [.....4] [ip4][..tcp] [.....172.16.0.1][36202] -> [..192.168.10.50][...80] 
-         detected: [.....4] [ip4][..tcp] [.....172.16.0.1][36202] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable][205.174.165.68]
-                   RISK: HTTP Numeric IP Address
+         detected: [.....4] [ip4][..tcp] [.....172.16.0.1][36202] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
+                   RISK: HTTP Numeric IP Address, HTTP Suspicious Header
               new: [.....5] [ip4][..tcp] [.....172.16.0.1][36204] -> [..192.168.10.50][...80] 
-         detected: [.....5] [ip4][..tcp] [.....172.16.0.1][36204] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable][205.174.165.68]
-                   RISK: HTTP Numeric IP Address
+         detected: [.....5] [ip4][..tcp] [.....172.16.0.1][36204] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
+                   RISK: HTTP Numeric IP Address, HTTP Suspicious Header
               new: [.....6] [ip4][..tcp] [.....172.16.0.1][36206] -> [..192.168.10.50][...80] 
-         detected: [.....6] [ip4][..tcp] [.....172.16.0.1][36206] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable][205.174.165.68]
-                   RISK: HTTP Numeric IP Address
+         detected: [.....6] [ip4][..tcp] [.....172.16.0.1][36206] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
+                   RISK: HTTP Numeric IP Address, HTTP Suspicious Header
               new: [.....7] [ip4][..tcp] [.....172.16.0.1][36208] -> [..192.168.10.50][...80] 
-         detected: [.....7] [ip4][..tcp] [.....172.16.0.1][36208] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable][205.174.165.68]
-                   RISK: HTTP Numeric IP Address
+         detected: [.....7] [ip4][..tcp] [.....172.16.0.1][36208] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
+                   RISK: HTTP Numeric IP Address, HTTP Suspicious Header
               new: [.....8] [ip4][..tcp] [.....172.16.0.1][36210] -> [..192.168.10.50][...80] 
-         detected: [.....8] [ip4][..tcp] [.....172.16.0.1][36210] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable][205.174.165.68]
-                   RISK: HTTP Numeric IP Address
+         detected: [.....8] [ip4][..tcp] [.....172.16.0.1][36210] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
+                   RISK: HTTP Numeric IP Address, HTTP Suspicious Header
               new: [.....9] [ip4][..tcp] [.....172.16.0.1][36212] -> [..192.168.10.50][...80] 
-         detected: [.....9] [ip4][..tcp] [.....172.16.0.1][36212] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable][205.174.165.68]
-                   RISK: HTTP Numeric IP Address
-              end: [.....1] [ip4][..tcp] [.....172.16.0.1][36196] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable]
-                   RISK: HTTP Numeric IP Address
-              end: [.....2] [ip4][..tcp] [.....172.16.0.1][36198] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable]
-                   RISK: SQL Injection, HTTP Numeric IP Address
-              end: [.....3] [ip4][..tcp] [.....172.16.0.1][36200] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable]
-                   RISK: SQL Injection, HTTP Numeric IP Address
-              end: [.....4] [ip4][..tcp] [.....172.16.0.1][36202] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable]
-                   RISK: SQL Injection, HTTP Numeric IP Address
-              end: [.....5] [ip4][..tcp] [.....172.16.0.1][36204] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable]
-                   RISK: SQL Injection, HTTP Numeric IP Address
-              end: [.....6] [ip4][..tcp] [.....172.16.0.1][36206] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable]
-                   RISK: HTTP Numeric IP Address
-              end: [.....7] [ip4][..tcp] [.....172.16.0.1][36208] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable]
-                   RISK: SQL Injection, HTTP Numeric IP Address
-              end: [.....8] [ip4][..tcp] [.....172.16.0.1][36210] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable]
-                   RISK: SQL Injection, HTTP Numeric IP Address
-              end: [.....9] [ip4][..tcp] [.....172.16.0.1][36212] -> [..192.168.10.50][...80] [HTTP][Web][Acceptable]
-                   RISK: SQL Injection, HTTP Numeric IP Address
+         detected: [.....9] [ip4][..tcp] [.....172.16.0.1][36212] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
+                   RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+              end: [.....1] [ip4][..tcp] [.....172.16.0.1][36196] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
+                   RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+              end: [.....2] [ip4][..tcp] [.....172.16.0.1][36198] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
+                   RISK: SQL Injection, HTTP Numeric IP Address, HTTP Suspicious Header
+              end: [.....3] [ip4][..tcp] [.....172.16.0.1][36200] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
+                   RISK: SQL Injection, HTTP Numeric IP Address, HTTP Suspicious Header
+              end: [.....4] [ip4][..tcp] [.....172.16.0.1][36202] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
+                   RISK: SQL Injection, HTTP Numeric IP Address, HTTP Suspicious Header
+              end: [.....5] [ip4][..tcp] [.....172.16.0.1][36204] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
+                   RISK: SQL Injection, HTTP Numeric IP Address, HTTP Suspicious Header
+              end: [.....6] [ip4][..tcp] [.....172.16.0.1][36206] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
+                   RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+              end: [.....7] [ip4][..tcp] [.....172.16.0.1][36208] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
+                   RISK: SQL Injection, HTTP Numeric IP Address, HTTP Suspicious Header
+              end: [.....8] [ip4][..tcp] [.....172.16.0.1][36210] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
+                   RISK: SQL Injection, HTTP Numeric IP Address, HTTP Suspicious Header
+              end: [.....9] [ip4][..tcp] [.....172.16.0.1][36212] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
+                   RISK: SQL Injection, HTTP Numeric IP Address, HTTP Suspicious Header
      DAEMON-EVENT: shutdown
-- 
cgit v1.2.3