In recent ntopng versions, alerts have been significantly enriched with metadata useful to understand network and security issues. In this post, we focus on the “Attacker” and “Victim” metadata, used to enrich flow alerts and label hosts. Specifically, the client or the server of a flow is labelled as “Attacker” when it is, with high […]
- PF_RING 6.0.3 Just ReleasedToday we have released PF_RING 6.0.3 a maintenance release that [...]
- ntopng Deep Dive: Interview with Ivan PepelnjakLast month Ivan Pepelnjak interviewed me on Software Gone Wild [...]
- Welcome to nProbe 10: Agent-mode, Timeseries, AWS/Google Cloud, Custom Flow CollectionnProbe 1.0 was introduced in 2002. After 20 years we [...]
- ntop Professional Training: May 2022This is to announce that the next ntop professional training [...]
- How to Monitor What MattersYesterday we have been invited to the NetEye Users Group [...]
- Announcing ntop Professional Training: November 2023ntop tools range from packet capture traffic analysis and processing [...]
- How to Send ntopng Alerts to PagerDutyPagerDuty is a popular incident-response platform that allows problem notifications [...]
- How nDPI Improved Bloom Filters ImplementationA Bloom filter is. probabilistic data-structure used to test whether [...]
Browse By Date
Browse By Categories