nDPI
nDPI copied to clipboard
ntop
Open Source Deep Packet Inspection Software Toolkit
Since we have support for the new fingerprint JA4, should we remove the oldest version?
nDPI releases have always been cut approximately every 6-9 months. As reported by @lucaderi (https://www.ntop.org/ndpi/released-ndpi-4-10-421-protocols-55-flow-risks-several-improvements-getting-ready-for-fpc/) there were some discussions recently to change that and provide a new release more frequently...
_Hi Team, We added more protocols based on port numbers in protos.txt and increased the macros as below -#define NDPI_NUM_BITS 512 -#define NDPI_NUM_BITS_MASK (512-1) +#define NDPI_NUM_BITS 600 +#define NDPI_NUM_BITS_MASK (600-1)...
It seems that we have some Z3950 false positives. In the attachement, the 4 flows are definitely not Z3950 but they are classified as such. [z3950_false_positives.zip](https://github.com/user-attachments/files/16833613/z3950_false_positives.zip)
Similar to to other protocols such as HTTP, TLS... enhance metadata export in SSDP [ssdp.pcapng.zip](https://github.com/user-attachments/files/16673609/ssdp.pcapng.zip)
Type your question in a clear and concise way to help the community answering it.I am looking for guidance on how to effectively use ndpi and integrate it into my...
Hi, At this moment I'm working on a research project. I research the options of analysing captured network traffic with machine learning thechniques. Any help is welcome.
