ntopng – ntop

Monitoring Industrial IoT/Scada Traffic with nDPI and ntopng

Posted September 8, 2020 · Add Comment

Monitoring Industrial IoT and SCADA traffic can be challenging as most open source monitoring tools are designed for Internet protocols. As this is becoming a hot topic with companies automating production lines, we have decided to enhance ntop tools to … Continue reading →

How Attack Mitigation Works (via SNMP)

Posted August 26, 2020 · Add Comment

One of the greatest strengths of ntopng is its ability to correlate data originating at different layers and at multiple sources together. For example, ntopng can look at IP packets, Ethernet frames and, at the same time, poll SNMP devices. … Continue reading →

Mice and Elephants: HowTo Detect and Monitor Periodic Traffic

Posted August 4, 2020 · Add Comment

Most people are used to top X: top senders, top receivers, top protocols. So in essence they are looking for elephants. While this is a good practice, mice are also very interesting as they can often be hidden in the … Continue reading →

Howto Identify and Block Telegram-based Botnets

Posted June 10, 2020 · Add Comment

Botnets are a popular way to run malware on a network using the command and control paradigm. Popular protocols used by botnets include IRC and HTTP. Most IDSs can detect bots as long as they can inspect the network traffic. … Continue reading →

Trickbot Malware Analysis Using nDPI and ntopng

Posted May 10, 2020 · Add Comment

Trickbot is a malware distributed via malspam, spam emails containing links for downloading malicious files that infect computers. A pcap file of a trickbot infection named 2019-09-25-Trickbot-gtag-ono19-infection-traffic.pcap can be downloaded at this URL. You can analyse the file using nDPI … Continue reading →

How Active Monitoring Works in ntopng

Posted May 8, 2020 · Add Comment

In v4 we have introduced active monitoring in ntopng and since then we are improving in the 4.1.x development versions. In order to enable it you have to selectd the “System” interface from the top menubar and select “Active Monitoring” … Continue reading →

Implementing Network Visibility in Covid-19 Days

Posted April 16, 2020 · Add Comment

Ongoing health emergency demands business to enable employee work from home: call it smart working or (better) remote working. This process puts pressure on the company Internet connection as many (if not all) the activities need to be done remotely. … Continue reading →

ntopng 4.0: A Refreshed Look with Dark Themes!

Posted April 7, 2020 · Add Comment

The latest ntopng 4.0 has a renewed look. The main changes we have introduced are: An always-on-top status bar. Key information on the health and status of the network is essential for the analyst and it must be always visible … Continue reading →

Active Monitoring in ntopng 4.0: ICMP, ICMPv6, HTTP and HTTPS pings with RTT

Posted April 2, 2020 · Add Comment

The latest stable ntopng 4.0 features a Round Trip Time (RTT) monitor which is capable of pinging hosts on a minute-by-minute basis to check: IP reachability with ICMP and ICMPv6 pings Web servers functionality with HTTP and HTTPS pings Checks … Continue reading →

Introducing ntopng for MacOS. Finally.

Posted March 31, 2020 · Add Comment

For a long time out MacOS users asked a native ntopng package. Even though we use MacOS and Linux to develop our tools, we didn’t consider important to revamp the MacOS installer (ntopng 1.x has a native MacOS installer) as … Continue reading →

Popular
Recent
Comments
Tags

ntopng Deep Dive: Interview with Ivan PepelnjakLast month Ivan Pepelnjak interviewed me on Software Gone Wild [...]
PF_RING 6.0.3 Just ReleasedToday we have released PF_RING 6.0.3 a maintenance release that [...]
Using ntop Applications with Docker and OpenStackIn order to ease the deployment of our applications in [...]
Introducing n2disk 3.0This is to announce n2disk 3.0 that is more than [...]

How to Dump, Index, and Layer-7 Filter Network Traffic at High Speedn2disk is an application that many of the ntop community [...]
September Webinars: ntopng Scripting and API IntegrationsSave the date! Two webinars have been planned for the [...]
Monitoring Industrial IoT/Scada Traffic with nDPI and ntopngMonitoring Industrial IoT and SCADA traffic can be challenging as [...]
How Attack Mitigation Works (via SNMP)One of the greatest strengths of ntopng is its ability [...]

Browse By Date
Browse By Date
Browse By Categories
- Announce (43)
- cento (5)
- Components (1)
- Cybersecurity (3)
- Features (2)
- Guides (10)
- libebpfflow (1)
- n2disk (19)
- n2n (7)
- nbox (7)
- nDPI (39)
- nEdge (6)
- News (11)
- nProbe (76)
- nScrub (2)
- ntop (81)
- ntopng (104)
- PF_RING (88)
- snort (3)
- TNAPI (11)
- tutorials (13)
- vPF_RING (3)
- ZC (30)