• Home
  • Working at ntop
  • GitHub
  • Resellers
  • E-Shop Legal Information
  • E-Shop Terms and Conditions
ntop
  • Home
  • Blog
  • Products
    • Packet Capture
      • PF_RING
      • PF_RING ZC (Zero Copy)
      • PF_RING FT (Flow Table)
      • nBroker
    • Traffic Recording & Replay
      • n2disk
      • disk2n
      • nBox Recorder
    • Flow-based Traffic Analysis
      • nProbe
      • nProbe™ Agent
      • nProbe™ Cento
      • nBox NetFlow/IPFIX
    • Traffic Analysis and Enforcement
      • ntopng
      • ntopng Edge
    • Deep Packet Inspection
      • nDPI
    • DDoS Mitigation and VPN
      • nScrub
      • n2n
  • Support
    • Documentation
      • FAQs
      • User’s Guides
      • Video Tutorials
    • Need Help?
      • Bug Report
      • Contact Us
      • Community Support
      • Commercial Support
    • Misc
      • Code Security
      • Contributor License Agreement
      • Brochures
  • GitHub
  • Get Started
  • About
    • About Us
    • The ntop Team
    • ntop Conference
    • Credits
    • Partners
    • Resellers
    • Legal Information
    • Privacy Policy
    • Locations
    • Resources
  • Shop

Howto Identify and Block Telegram-based Botnets

Posted June 10, 2020 · Add Comment

Botnets are a popular way to run malware on a network using the command and control paradigm. Popular protocols used by botnets include IRC and HTTP. Most IDSs can detect bots as long as they can inspect the network traffic. … Continue reading →

Read More

How enable DPI-based Traffic Management in pfSense using nEdge

Posted March 19, 2019 · Add Comment

We have been receiving several inquiries from pfSense users who would love to complement the classical firewall-style pfSense features with the inline Layer-7-based traffic policing offered by nEdge. Being able place pfSense and nEdge side by side allows to overcome … Continue reading →

Read More

How to Track and Fight Malware, Ransomware, Botnets… using ntopng

Posted February 22, 2019 · Add Comment

Malware blacklists are not something new to ntopng. ntopng (including ntopng Edge) has integrated the emerging threats blacklist https://rules.emergingthreats.net for a long time. The 3.6 stable release also introduced some webmining blacklists, which would flag online mining sites and generate … Continue reading →

Read More

Introducing Ubuntu 18 Support for ntopng Edge (nEdge)

Posted January 8, 2019 · Add Comment

After 6 months from the first nedge announcement, as a response to our customers feedback, nEdge now provides brand new features, like the ability to apply policies based on the device type, the RADIUS integration for captive portal users authentication, … Continue reading →

Read More

Say hello to ntopng and nEdge 3.6: Timeseries with TimeShift and InfluxDB

Posted August 22, 2018 · Add Comment

ntopng 3.6 release is paving the way to metrics-based traffic analysis. We have finally put ntopng on top of a timeseries-independent layer that allowed us to currently RRD and InfluxDB and in the future other backends. This means that you … Continue reading →

Read More

Introducing ntopng Edge (nEdge): Monitoring, Service Segmentation and Security for the Network Edge

Posted June 21, 2018 · Add Comment

The network edge, either wired or wireless, is becoming increasingly important as most things now happen there being the place where devices are deployed. Security-wise, central firewalls are too far from the edge, and thus devices can roam freely – … Continue reading →

Read More
 
  • Popular
  • Recent
  • Comments
  • Tags
  • ntopng Deep Dive: Interview with Ivan PepelnjakLast month Ivan Pepelnjak interviewed me on Software Gone Wild [...]
  • PF_RING 6.0.3 Just ReleasedToday we have released PF_RING 6.0.3  a maintenance release that [...]
  • Using ntop Applications with Docker and OpenStackIn order to ease the deployment of our applications in [...]
  • Introducing n2disk 3.0This is to announce n2disk 3.0 that is more than [...]
  • Introducing nDPI Risk Analysis for (Cybersecurity) Network Traffic Analysis (was Ripple20)Earlier last month Ripple20 became popular as it has listed [...]
  • Howto Build a 100 Gbit (Drop-Free) Continuous Packet Recorder using n2disk [Part 3]In the first post of this series (part 1) we described how [...]
  • Howto Identify and Block Telegram-based BotnetsBotnets are a popular way to run malware on a [...]
  • ntop Tools TaxonomyAs sometime people is confused about the various options ntopng [...]
alerts analytics cento configuration disk elasticsearch elasticsearch 6 flows flows export grafana hardware howto influxdb kafka ldap logstash mysql nagios nDPI nindex nProbe nsca ntopng offload performance radius release rrd secure snmp

  • Browse By Date

  • Browse By Categories

    • Announce (43)
    • cento (5)
    • Components (1)
    • Features (2)
    • Guides (10)
    • libebpfflow (1)
    • n2disk (19)
    • n2n (6)
    • nbox (7)
    • nDPI (36)
    • nEdge (6)
    • News (9)
    • nProbe (76)
    • nScrub (2)
    • ntop (80)
    • ntopng (101)
    • PF_RING (86)
    • snort (3)
    • TNAPI (11)
    • tutorials (13)
    • vPF_RING (3)
    • ZC (29)
 

  • Latest Posts

    • Introducing nDPI Risk Analysis for (Cybersecurity) Network Traffic Analysis (was Ripple20)
    • Howto Build a 100 Gbit (Drop-Free) Continuous Packet Recorder using n2disk [Part 3]
    • Howto Identify and Block Telegram-based Botnets
    • ntop Tools Taxonomy
    • Why Traffic Behaviour Analysis is Good (was Encrypting TLS 1.3 Traffic)

  • Upcoming Events

    ntop Webinar #2, May 21st and 26th, 2020
© 1998-2020 ntop
ntop, ntopng, nDPI, PF_RING, nProbe, and n2disk are registered trademarks.
Privacy & Cookies: This site uses cookies. By continuing to use this website, you agree to their use. OkRead more