ntop – ntop

New Directions in Network Traffic Security: Homework for 2020

Posted October 23, 2019 · Add Comment

Summary With today’s traffic, most network IDSs (NIDS) have severe limitations in terms of visibility and ability to be easily circumvented by malware (for instance running a known service on a non-default port or the other way round), and thus … Continue reading →

Finding a Needle in a Haystack (was Traffic Disaggregation with Sub Interfaces in ntopng)

Posted October 21, 2019 · Add Comment

Network traffic moving across a link often contains various types of traffic, for example in large companies it can include a mix of traffic coming from: Employees network Core company servers Guests network Other Analysing the traffic as a whole … Continue reading →

Do You Know What Hackers Hide in SSL/TLS?

Posted October 19, 2019 · Add Comment

ntop believes that the future of traffic monitoring and network security will be played by the ability to inspect the behaviour of encrypted communications. It is fortunate that Sam Bocetta, a technical writer focused on network security and open source … Continue reading →

Building a (Cheap) Continuous Packet Recorder using n2disk and PF_RING [Part 2]

Posted July 11, 2019 · Add Comment

Continuous packet recorders are devices that capture raw traffic to disk, providing a window into network history, that allows you to go back in time when a network event occurs, and analyse traffic up to the packet level to find … Continue reading →

System-Introspected Network and Container Visibility: A Quick Start Guide

Posted June 26, 2019 · Add Comment

Recently, we have introduced the concept of network and container visibility through system introspection and also demonstrated its feasibility with an opensource library libebpfflow. In other words, by leveraging certain functionalities of the linux operating system, we are able to … Continue reading →

Introducing nProbe Agent: Packetless, System-Introspected Network Visibility

Posted June 21, 2019 · Add Comment

A few months ago at FOSDEM we introduced the concept of network and container visibility through system introspection and we released an opensource library based on eBPF that can be used for this scope. Based on this technology, we created a lightweight … Continue reading →

Talking about Network, Service, and Container Monitoring at InfluxDays

Posted June 11, 2019 · Add Comment

Later this week the ntop team will attend InfluxDays, June 13-14, London, UK. We’ll be talking about traffic monitoring in containerised environments, and give you an outlook of our roadmap. If you are attending this event (we’ll have a … Continue reading →

ntopConf 2019 Retrospective

Posted May 10, 2019 · Add Comment

On May 8-9th we have organised our yearly event, in Padova, Italy. The first day was dedicated to training and the second day to the conference. Overall about 150 people attended the event, and we’re glad of it. Our gratitude … Continue reading →

Monitoring Containerised Application Environments with eBPF

Posted May 2, 2019 · Add Comment

Earlier this week ntop and InfluxData held a joint webinar about monitoring containerised applications. We have discussed solution for monitoring both legacy (e.g. non-containerised) and containerised applications, what are the technologies we can use. As most of you know, we have developed … Continue reading →

Cento 1.6 Stable Just Released

Posted March 1, 2019 · Add Comment

After more than one year since the latest stable release, we are glad to announce cento 1.6-stable. This new release brings stability, fixes and several new features. Among the new features, it is worth mentioning that: Flows can be exported … Continue reading →

Popular
Recent
Comments
Tags

ntopng Deep Dive: Interview with Ivan PepelnjakLast month Ivan Pepelnjak interviewed me on Software Gone Wild [...]
PF_RING 6.0.3 Just ReleasedToday we have released PF_RING 6.0.3 a maintenance release that [...]
Using ntop Applications with Docker and OpenStackIn order to ease the deployment of our applications in [...]
Introducing n2disk 3.0This is to announce n2disk 3.0 that is more than [...]

Spotting Plaintext Information in Network ProtocolsIn short: encryption does not always mean that all the [...]
Packet-less traffic analysis using Wireshark and libebpfflowIf you wonder how you can use Wireshark with containers [...]
ntopng & Suricata: Unifying Visibility with SecurityThis week we have presented at Suricon 2019 our work [...]
New Directions in Network Traffic Security: Homework for 2020Summary With today’s traffic most network IDSs (NIDS) have severe [...]

Browse By Date
Browse By Date
Browse By Categories
- Announce (40)
- cento (5)
- Components (1)
- Features (2)
- Guides (10)
- libebpfflow (1)
- n2disk (17)
- n2n (5)
- nbox (7)
- nDPI (25)
- nEdge (5)
- News (8)
- nProbe (75)
- nScrub (1)
- ntop (71)
- ntopng (87)
- PF_RING (86)
- snort (3)
- TNAPI (11)
- tutorials (13)
- vPF_RING (3)
- ZC (29)