CyberMind-FR
e58f479cd4
Add detection patterns for latest actively exploited vulnerabilities: - CVE-2025-55182 (React2Shell, CVSS 10.0) - CVE-2025-8110 (Gogs RCE), CVE-2025-53770 (SharePoint) - CVE-2025-52691 (SmarterMail), CVE-2025-40551 (SolarWinds) - CVE-2024-47575 (FortiManager), CVE-2024-21887 (Ivanti) - CVE-2024-3400, CVE-2024-0012, CVE-2024-9474 (PAN-OS) New attack categories based on OWASP Top 10 2025: - HTTP Request Smuggling (TE.CL/CL.TE conflicts) - AI/LLM Prompt Injection (ChatML, instruction markers) - WAF Bypass techniques (Unicode normalization, double encoding) - Supply Chain attacks (CI/CD poisoning, dependency confusion) - Extended SSTI (Jinja2, Freemarker, Velocity, Thymeleaf) - API Abuse (BOLA/IDOR, mass assignment) CrowdSec scenarios split into 11 separate files for reliability. Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> |
||
|---|---|---|
| .. | ||
| htdocs/luci-static/resources | ||
| root | ||
| Makefile | ||
| README.md | ||
LuCI nDPId Dashboard
LuCI web interface for nDPId deep packet inspection -- real-time traffic analysis and protocol detection.
Installation
opkg install luci-app-ndpid
Access
LuCI > SecuBox > nDPId Intelligence
Tabs
- Dashboard -- Live traffic statistics and protocol breakdown
- Flows -- Active network flows with detected application protocols
- Settings -- nDPId daemon configuration
Helper Scripts
ndpid-compat-- Compatibility layer for nDPId integrationndpid-flow-actions-- Flow event processing and actionsndpid-collector-- Traffic data collection and aggregation
RPCD Methods
Service: luci.ndpid
Dependencies
luci-basendpidsocatjq
License
Apache-2.0