nDPI
nDPI copied to clipboard
ntop
Open Source Deep Packet Inspection Software Toolkit
I was comparing stats calculated by ndpiReader with my own program which uses nDPI and I noticed that for a specific QUIC pcap, ndpiReader throws a segmentation fault: ----------------------------------------------------------- *...
Attached is a pcap where the server supports 1.3 but the session falls back to TLS 1.2. However, ssl_version field still shows 1.3 as the version. In fact, when I...
Would this the right venue to request additional protocols? We are storage heavy and a large portion of our traffic is gpfs. I would assume other storage environments would benefit...
``` simone@devel:~/ntopng$ cat /tmp/proto tcp:3000@NTOP simone@devel:~/ntopng$ sudo ./ntopng -i eno1 --disable-login 1 --dont-change-user --ndpi-protocols /tmp/proto ```  I'm posting here as I've verified that protocols arrive exchanged from nDPI.
nDPI has always been able to use custom memory allocators, via `set_ndpi_malloc()` and `set_ndpi_free()` functions. But looking at the code, I started to have a doubt: are these functions supposed...
See if an heuristic can be implemented to detect DNS Fast Flux. An example heuristic is described at https://osqa-ask.wireshark.org/questions/18394/help-with-filters-for-detecting-fast-flux-in-dns-queries
Dear Team, Can you please add the CGO API support to call the nDPI library APIs? Best Regards, Rajesh~ iRxTx.com +91-9600635770
It would be nice to have GRE de-tunneling capability in `ndpiReader` (like GTP or CAPWAP). Pcap example: [gre_sip.zip](https://github.com/ntop/nDPI/files/8035528/gre_sip.zip)
I have added a custom protocol entry as **tcp:443@HTTPS** So what I see is happening is the traffic matching port 443 gets detected as HTTPS, and it doesn't go via...
Add APIs to map between internal protocol IDs and permanent external IDs.
