wanderer/ fastnetmon-rewritten
1
0
Fork 0
mirror of https://github.com/pavel-odintsov/fastnetmon synced 2024-06-07 15:46:14 +02:00
Code Issues Releases Activity
3,724 Commits 2 Branches 19 Tags 50 MiB
Commit Graph

139 Commits

Author SHA1 Message Date
Pavel Odintsov 85ad7810e3 Unified logic to serialise attack information 2023-07-31 11:35:37 +01:00
Pavel Odintsov d389fd147d Code cleanup from unused things 2023-07-31 10:16:40 +01:00
Pavel Odintsov cbe0dfeaf9 New functions to work with prefixes 2023-07-18 16:50:50 +01:00
Pavel Odintsov 582a8292ff Sync IANA protocol numbers 2023-07-18 16:40:00 +01:00
Pavel Odintsov 20de1562bb Switched to use template based function for per network traffic export 2023-07-11 13:47:02 +01:00
Pavel Odintsov f5b7cd8e31 Unified InfluxDB host traffic export logic with templates 2023-07-10 19:10:27 +01:00
Pavel Odintsov f6bad000a0 Unified logic to store attack's traffic 2023-07-10 15:58:32 +01:00
Pavel Odintsov f719832ebd Implemented complete logic for attack detection 2023-07-09 18:20:53 +01:00
Pavel Odintsov 0bde56847a Improved argument sequence 2023-07-09 16:57:23 +01:00
Pavel Odintsov 50d863bedf Added logic to verify that IP belongs our ranges during ban call via API. Added ban logic for hash based counters 2023-07-08 16:33:37 +01:00
Pavel Odintsov 5382e0cd3f Added logic to populate traffic buckets logic in IPv4 mode 2023-07-08 15:08:11 +01:00
Pavel Odintsov 5f9894285e Added new function to print subnets 2023-07-08 13:34:08 +01:00
Pavel Odintsov 0aa2dc5511 Added support for bi-directional flows used by Cisco ASA and improved Netflow Lite aka Inline monitoring services support for Netflow v9 2023-07-03 17:08:37 +01:00
Pavel Odintsov c9ded9cf3b Added support for dozens of new Netflow v9 fields and improved data parsers for it 2023-07-03 14:08:27 +01:00
Pavel Odintsov 0f0ba0d063 Poretd parser to new logic which does not alter buffer content during parsing process 2023-06-07 13:10:36 +01:00
Pavel Odintsov 2b0e4a6212 Added inet_pton based implementation for reading IP addresses from string on Windows 2023-04-03 18:27:14 +01:00
Pavel Odintsov a3ee4e730e Removed old insecure and unsafe IP parser function 2023-04-03 17:23:34 +01:00
Pavel Odintsov 233eaf2287 Removed unused code 2023-04-03 17:12:56 +01:00
Pavel Odintsov 967455ed77 Removed unused function 2023-04-03 17:08:48 +01:00
Pavel Odintsov dc58b8172c Reworked subnet parser function to new version with clear safety checks 2023-04-03 17:02:02 +01:00
Pavel Odintsov b9d3519fad Removed unused code 2023-04-03 14:24:34 +01:00
Pavel Odintsov 546f5e6e2d Disabled logic for setting custom thread names on Windows platform 2023-04-03 14:02:53 +01:00
Pavel Odintsov c559487718 We need different approach for detect windows version 2023-04-03 13:58:05 +01:00
Pavel Odintsov 7e46e0754d We do not need cross platform portability for get_interface_number_by_device_name as we use it only for Linux 2023-04-03 12:43:52 +01:00
Pavel Odintsov 0ec5123b67 Removed pcap stats as we do not show stats for other backends and include cleanup 2023-04-02 22:48:51 +01:00
Pavel Odintsov a731f45c44 Significant include cleanup for fast_library 2023-04-02 22:41:23 +01:00
Pavel Odintsov 401d5b56f6 Cleanup of multiple system dependencies from main daemon and fast_library 2023-04-02 22:35:28 +01:00
Pavel Odintsov 1078253ad2 Moved away from using name interface as it conflicts with MingGW, related #977 2023-04-02 20:27:05 +01:00
Pavel Odintsov 5f928d1010 Added timestamp for JSON export format 2023-03-10 22:41:18 +01:00
Babak Farrokhi 0e0153bb4c
Unbreak build on FreeBSD 2023-03-06 11:36:00 +01:00
Pavel Odintsov bd4d62f305 Reformat all code with clang-format 2023-03-01 13:31:39 +00:00
Pavel Odintsov d32f3ba9ec Fixed test build system 2023-02-27 20:30:53 +00:00
Pavel Odintsov 1ae44451c4 Reformat code with clang format 2023-02-26 23:29:01 +00:00
Pavel Odintsov 960d35166b Extracted traffic format encoding into separate static library 2023-02-21 09:26:35 -08:00
Pavel Odintsov f18d4585c4 Added logic to encode telemetry type 2023-02-12 21:04:34 +00:00
Pavel Odintsov 231443a443 Improved IP address encoding and added direction encoding as enum 2023-02-12 20:57:29 +00:00
Pavel Odintsov e0de8b3356 Protobuf field naming adjustments 2023-02-12 19:48:58 +00:00
Pavel Odintsov b757876b30 Added PoC logic to encode Protobuf data 2023-02-12 12:40:41 +00:00
Pavel Odintsov 4aa29b2500 Added option to encode simple packet to JSON 2023-02-04 21:57:22 +00:00
Pavel Odintsov 0b0ba0e36b Add logic to export usage statistics with goal to learn more about customer platforms and most popular features in FastNetMon 2022-10-12 19:12:12 +01:00
Pavel Odintsov 6665ddee6e After OpenSSL upgrade this logic should work fine 2022-10-12 18:15:18 +01:00
Pavel Odintsov 07e9d2dab5 Improved HTTPS client to correctly handle server which do not implement proper TLS session shutdown 2022-10-09 19:32:40 +01:00
Pavel Odintsov 4e9da04715 Switched HTTPS client to use TLS instead of outdated SSL 2022-10-09 16:20:08 +01:00
Pavel Odintsov f96b3aa56e Added logic to retrieve CPU flags and added definitions 2022-10-02 11:13:56 +01:00
Pavel Odintsov 4a8f697c9d Improved exec function interface. Added multiple functions to get information about hardware level information 2022-10-02 11:09:22 +01:00
Pavel Odintsov 5d589f8375 Added option to override default content type via header flags for secure version of http query 2022-10-02 10:25:01 +01:00
Pavel Odintsov 0df782cb38 Added option to override default content type via header flags 2022-10-02 10:11:38 +01:00
Pavel Odintsov e913e91f21 Cleanup old code 2022-08-08 16:54:07 +01:00
Pavel Odintsov fe98664788 Reworked very error prone and complicated to use and maintain json-c to modern nlohmann/json. JSON schema change in MongoDB and Redis 2022-07-16 12:14:33 +01:00
Pavel Odintsov c2830fb337 Do not pass network load in attack's information as it's irrelevant 2022-07-16 11:50:35 +01:00