• Newsletter
  • Working at ntop
  • E-Shop Legal Information
  • E-Shop Terms and Conditions
  • GitHub
  • Resellers
ntop
  • Home
  • Blog
  • Products
    • Packet Capture
      • PF_RING
      • PF_RING ZC (Zero Copy)
      • PF_RING FT (Flow Table)
      • nBroker
    • Traffic Recording & Replay
      • n2disk
      • disk2n
      • nBox Recorder
    • Flow-based Traffic Analysis
      • nProbe
      • nProbe™ Agent
      • nProbe™ Cento
      • nBox NetFlow/IPFIX
    • Traffic Analysis and Enforcement
      • ntopng
      • ntopng Edge
    • Deep Packet Inspection
      • nDPI
    • DDoS Mitigation and VPN
      • nScrub
      • n2n
  • Support
    • Documentation
      • FAQs
      • User’s Guides
      • Video Tutorials
    • Need Help?
      • Bug Report
      • Contact Us
      • Community Support
      • Commercial Support
    • Misc
      • Code Security
      • Contributor License Agreement
      • Brochures
  • GitHub
  • Get Started
  • About
    • About Us
    • The ntop Team
    • ntop Conference
    • Credits
    • Partners
    • Resellers
    • Legal Information
    • Privacy Policy
    • Locations
    • Resources
  • Shop

Security-Centric Traffic Analysis

Posted October 23, 2020 · Add Comment

Days ago we have given a short speak about cybersecurity at an Italian meetup. These are the presentation slides (English) where you can read more about the steps we have taken to make our tools more cybersecurity-oriented. Below you can … Continue reading →

Read More

How Attack Mitigation Works (via SNMP)

Posted August 26, 2020 · Add Comment

One of the greatest strengths of ntopng is its ability to correlate data originating at different layers and at multiple sources together. For example, ntopng can look at IP packets, Ethernet frames and, at the same time, poll SNMP devices. … Continue reading →

Read More

How to Detect Domain Hiding (a.k.a. as Domain Fronting)

Posted August 19, 2020 · Add Comment

Domain fronting is a technique that was used in 2010s by mobile apps to attempt to bypass censorship. The technique relies on a “front” legitimate domain that basically acts as a pivot for the forbidden domain. In essence an attacker … Continue reading →

Read More

Mice and Elephants: HowTo Detect and Monitor Periodic Traffic

Posted August 4, 2020 · Add Comment

Most people are used to top X: top senders, top receivers, top protocols. So in essence they are looking for elephants. While this is a good practice, mice are also very interesting as they can often be hidden in the … Continue reading →

Read More
 
  • Popular
  • Recent
  • Comments
  • Tags
  • PF_RING 6.0.3 Just ReleasedToday we have released PF_RING 6.0.3  a maintenance release that [...]
  • ntopng Deep Dive: Interview with Ivan PepelnjakLast month Ivan Pepelnjak interviewed me on Software Gone Wild [...]
  • Why nProbe+JSON+ZMQ instead of native sFlow/NetFlow support in ntopng?Both sFlow and NetFlow/IPFIX are the two leading network monitoring [...]
  • Dec 3rd, ntop miniconf 2020 part II: ntopngThis is a reminder for the second part of our [...]
  • Exploiting Arista MetaWatch with n2disk and ntopng: HighRes Timestamping and AnalyticsPrecise packet timestamping is a key feature for network traffic [...]
  • Dec 3rd, ntop miniconf 2020 part II: ntopngThis is a reminder for the second part of our [...]
  • Using ntopng as network sensor for SecurityOnion (and integrated with Suricata)SecurityOnion (SO) is a popular Linux distribution for threat hunting [...]
  • Embedding ntop: Nokia Beacon and Ubiquity UniFi Dream MachineThe latest generation of network devices are pretty powerful and [...]
active monitoring bgp cento containers continuous traffic recording ebpf elasticsearch export flows hardware icinga2 influxdb n2disk nagios netflow nindex nProbe nprobeagent nsca ntopng performance radius release round trip time rtt tcp tcp states telemetry themes visibility

  • Browse By Date

  • Browse By Categories

    • Announce (44)
    • cento (6)
    • Components (1)
    • Cybersecurity (4)
    • Features (2)
    • Guides (10)
    • libebpfflow (1)
    • n2disk (20)
    • n2n (7)
    • nbox (7)
    • nDPI (41)
    • nEdge (6)
    • News (12)
    • nProbe (76)
    • nScrub (2)
    • ntop (90)
    • ntopng (111)
    • PF_RING (88)
    • snort (3)
    • TNAPI (11)
    • tutorials (13)
    • vPF_RING (3)
    • ZC (30)
 

  • Latest Posts

    • Exploiting Arista MetaWatch with n2disk and ntopng: HighRes Timestamping and Analytics
    • Dec 3rd, ntop miniconf 2020 part II: ntopng
    • Using ntopng as network sensor for SecurityOnion (and integrated with Suricata)
    • Embedding ntop: Nokia Beacon and Ubiquity UniFi Dream Machine
    • Using ntop tools on VyOS

  • Upcoming Events

    • December 3rd - ntop miniconf 2020 part II (webinar)
    • December 10th - ntop miniconf 2020 part III (webinar)
© 1998-2020 ntop
ntop, ntopng, nDPI, PF_RING, nProbe, and n2disk are registered trademarks.
Privacy & Cookies: This site uses cookies. By continuing to use this website, you agree to their use. OkRead more