-
-
Notifications
You must be signed in to change notification settings - Fork 12.5k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
ndpi 4.12 #202050
Open
chenrui333
wants to merge
2
commits into
master
Choose a base branch
from
bump-ndpi-4.12
base: master
Could not load branches
Branch not found: {{ refName }}
Loading
Could not load tags
Nothing to show
Loading
Are you sure you want to change the base?
Some commits from the old base branch may be removed from the timeline,
and old review comments may become outdated.
Open
ndpi 4.12 #202050
+3
−3
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
github-actions
bot
added
the
bump-formula-pr
PR was created using `brew bump-formula-pr`
label
Dec 21, 2024
daeho-ro
approved these changes
Dec 21, 2024
|
daeho-ro
force-pushed
the
bump-ndpi-4.12
branch
from
December 22, 2024 04:10
de0ba4e
to
f0ffe20
Compare
Tried to patch several commits but it getting worse. Have to wait for the next release for |
Signed-off-by: Rui Chen <[email protected]>
daeho-ro
force-pushed
the
bump-ndpi-4.12
branch
from
December 22, 2024 04:59
f0ffe20
to
1105c8a
Compare
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Labels
build failure
CI fails while building the software
bump-formula-pr
PR was created using `brew bump-formula-pr`
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Created by
brew bump
Created with
brew bump-formula-pr
.release notes
For further details on these three topics, see https://www.ntop.org/ntop/a-deep-dive-into-traffic-fingerprints/
New Supported Protocols and Services
This is the list of the new supported protocols, grouped by category.
Information about these new protocols is available on https://github.com/ntop/nDPI/blob/dev/doc/protocols.rst
NDPI_PROTOCOL_CATEGORY_IOT_SCADA
:NDPI_PROTOCOL_CNP_IP
(Add CNP/IP protocol support ntop/nDPI#2521, Fix CNP-IP false positives ntop/nDPI#2531)NDPI_PROTOCOL_ATG
(Used to identify the Automatic Tank Gauge protocol ntop/nDPI#2527)NDPI_PROTOCOL_TRDP
(Add TRDP protocol support ntop/nDPI#2528)NDPI_PROTOCOL_DICOM
(ntop/nDPI@4fd1227)NDPI_PROTOCOL_CATEGORY_DATA_TRANSFER
:NDPI_PROTOCOL_LUSTRE
(Add Lustre protocol detection support ntop/nDPI#2544)NDPI_PROTOCOL_CATEGORY_VPN
:NDPI_PROTOCOL_NORDVPN
(ntop/nDPI@f350379)NDPI_PROTOCOL_SURFSHARK
(ntop/nDPI@5b0374c)NDPI_PROTOCOL_CACTUSVPN
(ntop/nDPI@c99646e)NDPI_PROTOCOL_WINDSCRIBE
(ntop/nDPI@2964c23)NDPI_PROTOCOL_CATEGORY_MUSIC
:NDPI_PROTOCOL_SONOS
(ntop/nDPI@806f473)NDPI_PROTOCOL_CATEGORY_CHAT
:NDPI_PROTOCOL_DINGTALK
(Add DingTalk protocol support ntop/nDPI#2581)NDPI_PROTOCOL_PALTALK
(Add Paltalk protocol support ntop/nDPI#2606)NDPI_PROTOCOL_CATEGORY_WEB
:NDPI_PROTOCOL_NAVER
(Add Naver protocol support ntop/nDPI#2610)NDPI_PROTOCOL_CATEGORY_SHOPPING
:NDPI_PROTOCOL_SHEIN
(Add support for some Chinese shopping platforms (Temu, Shein and Taobao) ntop/nDPI#2615)NDPI_PROTOCOL_TEMU
(Add support for some Chinese shopping platforms (Temu, Shein and Taobao) ntop/nDPI#2615)NDPI_PROTOCOL_TAOBAO
(Add support for some Chinese shopping platforms (Temu, Shein and Taobao) ntop/nDPI#2615)NDPI_PROTOCOL_CATEGORY_NETWORK
:NDPI_PROTOCOL_MIKROTIK
(Implemented Mikrotik discovery protocol dissection and metadata extraction ntop/nDPI#2618)NDPI_PROTOCOL_CATEGORY_STREAMING
:NDPI_PROTOCOL_PARAMOUNTPLUS
(Add support for Paramount+ streaming service ntop/nDPI#2628)NDPI_PROTOCOL_CATEGORY_VIRTUAL_ASSISTANT
:NDPI_PROTOCOL_YANDEX_ALICE
(Add support Yandex Alice ntop/nDPI#2633)New features
ndpiReader
(Add a configuration file to ndpiReader ntop/nDPI#2629)New algorithms
ndpi_quick_encrypt()
andndpi_quick_decrypt()
API calls (Added ndpi_quick_encrypt() ndpi_quick_decrypt() APi calls ntop/nDPI#2568)New configuration knobs
Further information is available on https://github.com/ntop/nDPI/blob/dev/doc/configuration_parameters.md
tls,subclassification
,quic,subclassification
,http,subclassification
: enable/disable subclassification (HTTP, QUIC, TLS: allow to disable sub-classification ntop/nDPI#2533)openvpn,subclassification_by_ip
,wiregurad,subclassification_by_ip
: enable/disable sub-classification using server IP. Useful to detect the specific VPN application/app (ntop/nDPI@85ebda4)openvpn,dpi.heuristics
,openvpn,dpi.heuristics.num_messages
: configure heuristics to detect OpenVPN flows (Add an heuristic to detect encrypted/obfuscated OpenVPN flows ntop/nDPI#2547)dpi.guess_ip_before_port
: enable/disable guessing by IP first when guessing flow classifcation (Allow IP guess before port in ndpi_detection_giveup ntop/nDPI#2562)tls,dpi.heuristics
,tls,dpi.heuristics.max_packets_extra_dissection
: configure heuristics to detect TLS flows (Add some heuristics to detect encrypted/obfuscated/proxied TLS flows ntop/nDPI#2553)flow.use_client_ip_in_guess
,flow.use_client_port_in_guess
: configure guessing algorithm (Add enable/disable guessing using client IP/port ntop/nDPI#2569)$PROTO_NAME,monitoring
: enable/disable monitoring state (Add monitoring capability ntop/nDPI#2588)metadata.tcp_fingerprint
,tls,metadata.ja4r_fingerprint
: enable/disable some fingerprints (ntop/nDPI@6b6dad4, ntop/nDPI@42ded07)sip,metadata.attribute.XXX
: enable/disable extraction of some SIP metadata (SIP: rework detection and extract metadata ntop/nDPI#2614)Improvements
ndpi_set_bin
,ndpi_inc_bin
andndpi_get_bin_value
(bins: fixndpi_set_bin
,ndpi_inc_bin
andndpi_get_bin_value
ntop/nDPI#2536)NDPI_MALFORMED_PACKET
risk (dns: add a check before settingNDPI_MALFORMED_PACKET
risk ntop/nDPI#2558)flow->flow_multimedia_types
to a bitmask (Updateflow->flow_multimedia_types
to a bitmask ntop/nDPI#2625)Misc
verify_dist_tarball.sh
after latest release (Fixverify_dist_tarball.sh
after latest release ntop/nDPI#2519)ndpi_master_app_protocol
typedef (ntop/nDPI@53a6bae)ndpi_get_protocol_by_name*
API call (ntop/nDPI@f7ee92c)NDPI_MALICIOUS_JA3
toNDPI_MALICIOUS_FINGERPRINT
(ntop/nDPI@bad0e60)ndpi_is_proto_*
andndpi_get_proto_by_*
API call (ntop/nDPI@9263d4d)ndpi_risk2code
andndpi_code2risk
API call (ntop/nDPI@5436ddd)print_ndpi_address_port
in nDPi API (ntop/nDPI@d769b23)ndpi_dump_risks_score
(ntop/nDPI@69fd4aa)ndpi_detection_giveup
(Allow IP guess before port in ndpi_detection_giveup ntop/nDPI#2562)ndpi_hex2bin
andndpi_bin2hex
(ntop/nDPI@42cfd29)ndpi_is_public_ipv4
(ntop/nDPI@3e04321)ndpi_tot_allocated_memory
calculation ifndpi_calloc()
used (Fixndpi_tot_allocated_memory
calculation ifndpi_calloc()
used ntop/nDPI#2604)ndpi_serialization_format_inner_json
(ntop/nDPI@8ad34b3)is_ndpi_proto
definition (ntop/nDPI@183175f)--enable-no-sign
to build*.deb
packages w/o signing those (Debian/Ubuntu packaging: use--enable-no-sign
to build*.deb
packages w/o signing those ntop/nDPI#2616)New Contributors
Full Changelog: ntop/nDPI@4.10...4.12