code_public/ja4-platform
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Commit Graph

  • 4a41e31822 feat(ebpf): Apache HTTP capture + nginx multi-kernel validation master Jacquin Antoine 2026-04-20 19:49:40 +02:00
  • 4d30d9a7cb feat(ebpf): Apache HTTP capture implementation (WIP on Rocky 10) Jacquin Antoine 2026-04-20 18:22:10 +02:00
  • 8d817414b3 fix(ebpf): rename Apache BPF maps to avoid conflicts with nginx Jacquin Antoine 2026-04-20 16:05:54 +02:00
  • a2e0cfa2f3 feat(ebpf): add Apache httpd HTTP capture via kretprobe recvfrom Jacquin Antoine 2026-04-20 14:11:56 +02:00
  • cba1cca180 refactor(ebpf): simplify web server configuration with server list Jacquin Antoine 2026-04-20 13:43:32 +02:00
  • 7dfe640003 feat(ebpf): add Apache httpd HTTP capture via read() syscall Jacquin Antoine 2026-04-20 13:38:58 +02:00
  • 382683710a feat(ebpf): add nginx HTTP capture infrastructure via kretprobe recvfrom Jacquin Antoine 2026-04-20 13:30:41 +02:00
  • bb2160efbc docs: update documentation for kretprobe recvfrom fix Jacquin Antoine 2026-04-20 13:30:02 +02:00
  • 3e00e7bc7b fix(ebpf): replace tracepoint with kretprobe for sys_exit_recvfrom Jacquin Antoine 2026-04-20 13:29:01 +02:00
  • 9e4bfe8289 feat(ebpf): add nginx uprobes skeleton for HTTP L7 capture Jacquin Antoine 2026-04-20 01:29:53 +02:00
  • b6735b3081 fix(ebpf): fix SSL data capture bug at 4096-byte boundary Jacquin Antoine 2026-04-19 15:42:24 +02:00
  • 742f4420c0 fix(test): add ClickHouse readiness check before starting ja4ebpf Jacquin Antoine 2026-04-19 15:11:22 +02:00
  • 506d151832 refactor(writer): improve headerVal function clarity Jacquin Antoine 2026-04-19 14:38:56 +02:00
  • 3429c74e03 feat(main): add error logging for HTTP parsing failures Jacquin Antoine 2026-04-19 14:38:20 +02:00
  • 678aa48a12 fix(correlation): prevent race condition in session manager Jacquin Antoine 2026-04-19 14:34:30 +02:00
  • 3353b3ae82 fix(main): prevent goroutine leak on shutdown Jacquin Antoine 2026-04-19 14:24:50 +02:00
  • 8beed18eea refactor(vm): reduce VM resource sizes for lighter test environment Jacquin Antoine 2026-04-17 00:25:38 +02:00
  • 36b5065a0a feat(e2e): add multi-IP endpoint architecture with dedicated traffic VM Jacquin Antoine 2026-04-16 14:25:24 +02:00
  • f0c8fe81c6 feat(ja4ebpf): add multi-interface TC, LPM_TRIE ignore_src, unit tests, and fix bugs Jacquin Antoine 2026-04-16 01:49:26 +02:00
  • fd84aebc44 fix(ja4ebpf): correct HPACK static table per RFC 7541 and decode indexed representations Jacquin Antoine 2026-04-15 15:24:04 +02:00
  • 0975d40609 feat(ja4ebpf): add dst_ip/dst_port to TLS and HTTP plain events for complete L3/L4 Jacquin Antoine 2026-04-15 14:31:46 +02:00
  • 65d833bb18 fix(ja4ebpf): correct BPF struct byte offsets and regenerate SSL_write programs Jacquin Antoine 2026-04-15 14:06:28 +02:00
  • 24306ef390 feat(ja4ebpf): add SSL_write uprobe, HPACK decoder, and AcceptCache for session correlation Jacquin Antoine 2026-04-15 03:34:43 +02:00
  • a02423fd18 feat: maximize data completeness across L3/L4/TLS/HTTP layers and add E2E test infra Jacquin Antoine 2026-04-15 03:34:33 +02:00
  • e25caa85da fix(ja4ebpf): remove double bswap16 on accept4 port Jacquin Antoine 2026-04-15 02:57:29 +02:00
  • 61addc8cfa feat: JA3 fingerprinting, SSL correlation fix, ML pipeline overhaul, E2E test infra Jacquin Antoine 2026-04-15 02:57:07 +02:00
  • f88b739992 feat(e2e): add distributed E2E test framework with parametric traffic generation Jacquin Antoine 2026-04-15 00:09:32 +02:00
  • 7894d39f1c feat(ml): replace logistic regression with MLP fusion and KS drift with ADWIN online learning Jacquin Antoine 2026-04-13 16:32:34 +02:00
  • c6cb12981c feat(ml): replace NetworkX/Louvain with PyTorch Geometric GraphSAGE for fleet detection Jacquin Antoine 2026-04-13 15:45:34 +02:00
  • c1821dcbc4 feat(ml): replace Autoencoder with RealNVP Normalizing Flow and add SessionTransformer embeddings Jacquin Antoine 2026-04-13 15:11:21 +02:00
  • 0e5f94dd0d docs: restructure thesis into chapter files with corrected references Jacquin Antoine 2026-04-13 13:51:38 +02:00
  • ac75ce2956 chore: remove regenerable data and build artifacts from git tracking Jacquin Antoine 2026-04-13 02:31:27 +02:00
  • 6e5eb38efd docs: update thesis and docs with Cleanlab label filtering integration Jacquin Antoine 2026-04-13 02:19:46 +02:00
  • 9d27abf43c fix(ml): integrate Cleanlab to filter noisy SOC labels and prevent model poisoning Jacquin Antoine 2026-04-13 02:11:25 +02:00
  • c60ce97f23 feat(bot-detector): add dynamic browser profiling engine with HDBSCAN clustering Jacquin Antoine 2026-04-13 02:06:00 +02:00
  • 64dada980f docs: synchronize thesis with codebase — browser_matcher, fleet detection, module counts Jacquin Antoine 2026-04-13 01:38:57 +02:00
  • 842b98d13a chore: remove stale binary blob from index Jacquin Antoine 2026-04-13 01:13:17 +02:00
  • 6b244e307e chore: add .vagrant/machines to gitignore, remove orphan binary Jacquin Antoine 2026-04-13 01:12:12 +02:00
  • d75825278e feat: multi-distro VM tests, ja4ebpf eBPF improvements, bot-detector scoring Jacquin Antoine 2026-04-13 01:09:33 +02:00
  • d81463a589 fix(tests): rewrite test-rpm.sh for 3 distros × 3 stacks RPM validation Jacquin Antoine 2026-04-13 01:03:57 +02:00
  • 957918c565 fix(ja4ebpf): Rocky Linux RPM builder, remove correlated field, fix thesis toto 2026-04-12 04:48:40 +02:00
  • b1218a2367 fix(ja4ebpf): fix TLS capture, SYN offsets, TCP option parsing toto 2026-04-12 04:16:44 +02:00
  • f85a10b012 feat: pipeline L7 HTTP complet + infrastructure tests VM toto 2026-04-12 02:37:00 +02:00
  • 9734e21fe3 chore: suppression des services obsolètes (sentinel, correlator, mod-reqin-log) toto 2026-04-12 01:48:14 +02:00
  • dc6ffd6474 fix: tests intégration matrix — procps-ng, varnish h2, hitch ALPN, pgrep→ps toto 2026-04-12 01:29:01 +02:00
  • 3b047b680a fix(ja4ebpf): split bpf2go generate into Ja4Tc + Ja4Ssl, fix RPM systemd-rpm-macros toto 2026-04-11 23:21:11 +02:00
  • a1e4c1dad5 feat: add ja4ebpf service — eBPF-based TLS/TCP fingerprinting daemon toto 2026-04-11 22:43:26 +02:00
  • 7eb3ad21fd feat(dashboard): afficher SETTINGS H2 individuels dans la table mismatch toto 2026-04-11 03:11:17 +02:00
  • f704541f83 feat(h2): direct per-parameter SETTINGS comparison in browser_matcher toto 2026-04-11 03:05:36 +02:00
  • 95e87149aa docs: mise à jour thèse — capture HTTP/2 passive et colonnes individuelles toto 2026-04-11 02:40:41 +02:00
  • 85d3b95b7b feat: HTTP/2 passive fingerprinting with individual SETTINGS fields toto 2026-04-11 02:33:45 +02:00
  • bd81331411 maj these toto 2026-04-11 00:27:20 +02:00
  • 8da1b7d8e6 tests/integration/platform/csv-stubs/browser_h2.csv toto 2026-04-10 23:13:35 +02:00
  • aa233bc55c docs(thesis): v3 — corrections + §3.9 browser_matcher + XFF proxy accuracy toto 2026-04-10 19:45:02 +02:00
  • d098de1a66 fix(bot-detector): neutralize H2 dimensions behind proxy (X-Forwarded-For) toto 2026-04-10 15:15:20 +02:00
  • 261205028d fix(dashboard): campaigns scatter chart — show campaigns not IPs toto 2026-04-10 15:09:02 +02:00
  • fb73c60e7d feat(dashboard): fingerprint discovery page — extract and group JA4/H2/headers from traffic toto 2026-04-10 15:02:53 +02:00
  • fde6864311 feat(dashboard): browser signatures management UI toto 2026-04-10 14:46:07 +02:00
  • da1b579d4f fix(dashboard): rename duplicate /api/browsers route to /api/browser-signatures toto 2026-04-10 14:17:38 +02:00
  • 9c308747bd feat(dashboard): page Browser Signature Detection (/browsers) toto 2026-04-10 14:02:39 +02:00
  • e52cdcc01f feat(bot-detector): Browser Signature Detection engine (parallel mode) toto 2026-04-10 13:52:57 +02:00
  • c77d479d6c docs(thesis): 5 corrections — 85 features, MetaLearner diagram, browser axes note, quantile clarification, §5.6/5.7 named toto 2026-04-10 13:51:31 +02:00
  • 79dbb23d6f feat(dashboard): sélecteur de plage temporelle sur /campaigns toto 2026-04-10 13:24:08 +02:00
  • 9548b1782d fix: corriger ORDER BY ml_detected_anomalies dans le schéma de base toto 2026-04-10 01:34:07 +02:00
  • 51dd376f7a docs: mise à jour complète — 7/8 techniques, 85 features, 12 modules toto 2026-04-10 01:31:20 +02:00
  • edbb4aed2c fix(import): add h2 columns with defaults for prod data missing 4 cols toto 2026-04-10 01:16:36 +02:00
  • 92432085e2 fix(campaigns): fix IP navigation URL encoding toto 2026-04-10 01:08:53 +02:00
  • 7a04e47041 fix(sql+api): fix view column mismatches and ClickHouse 24.8 JOIN issue toto 2026-04-10 01:05:04 +02:00
  • 040437921c fix(init-stack): pre-drop mv_http_logs + http_logs before schema apply toto 2026-04-10 01:00:04 +02:00
  • b409a70970 fix(views): align SQL views with dashboard API expected columns toto 2026-04-10 00:59:57 +02:00
  • 2f2c5e03bb fix(sql): contournement bug scope ClickHouse 24.8 dans view_ai_features_1h toto 2026-04-10 00:48:05 +02:00
  • a108814a56 feat: roadmap détection bots §2-9 — HTTP/2, cohérence, drift, flotte, Jaccard, ExIFFI, méta-learner, métriques toto 2026-04-10 00:11:35 +02:00
  • 8ca4a1e849 feat(mod_reqin_log): fingerprinting HTTP/2 passif (Akamai format) toto 2026-04-09 23:46:50 +02:00
  • bc11cfa8eb fix: init-stack rock-solid — drop/recreate derived tables before views toto 2026-04-09 23:21:15 +02:00
  • 895d7894a9 docs: mise à jour copilot-instructions.md toto 2026-04-09 23:11:24 +02:00
  • 14db3d9040 refactor: suppression dépendance User-Agent de la détection navigateur toto 2026-04-09 23:06:01 +02:00
  • 00e99e5464 fix(bot-detector): make scoring functions public (remove underscore prefix) toto 2026-04-09 22:49:48 +02:00
  • 629f7b334d fix(bot-detector): rename _compute_drift_score to public, fix import toto 2026-04-09 22:48:21 +02:00
  • de6d8da931 fix(bot-detector): FEATURES_BASE → FEATURES import name mismatch toto 2026-04-09 22:42:32 +02:00
  • 1fa6aec784 fix: SQL view ordering, purge-db flag, ctest directory toto 2026-04-09 22:39:25 +02:00
  • 6d64c2a8a8 fix(rpm): add systemd-rpm-macros to Dockerfile.package, fix correlator spec_version toto 2026-04-09 22:33:53 +02:00
  • ea488c0b11 feat: add make help with all targets documented toto 2026-04-09 22:22:25 +02:00
  • 0ba66729da feat: add make purge-db target for full database reset toto 2026-04-09 22:21:15 +02:00
  • 6b3cc54652 docs: réécriture audit, DOCUMENTATION.md et IMPROVEMENTS.md pour architecture modulaire toto 2026-04-09 22:14:18 +02:00
  • c96c41fb45 docs: réécriture complète de la documentation des services en français toto 2026-04-09 22:04:58 +02:00
  • 8f5e771096 docs: réécriture complète de la documentation base de données en français toto 2026-04-09 22:03:37 +02:00
  • d05969867f docs: rewrite architecture/README, update deployment/development toto 2026-04-09 22:00:29 +02:00
  • 7bdc6e2865 docs: mise à jour du document de thèse (§2-§8) toto 2026-04-09 21:59:34 +02:00
  • 9ea36ad22e feat(scripts): complete stack init + prod data import with date shift toto 2026-04-09 21:40:05 +02:00
  • d8ca804a55 feat(scripts): add reload-prod-logs.sh for prod→dev data sync toto 2026-04-09 15:41:38 +02:00
  • 8180f4af04 refactor(anubis): simplify to IP/CIDR + ASN only, remove UA and Country rules toto 2026-04-09 15:25:33 +02:00
  • 98abbc80c7 feat(dashboard): page Listes de référence — visualisation CSV/dictionnaires toto 2026-04-09 14:56:54 +02:00
  • 039086a0b3 feat: nouvelles techniques de détection et page tactiques SOC toto 2026-04-09 14:29:18 +02:00
  • 702c0d5edb feat(dashboard): add JA4 fingerprint and cluster investigation pages toto 2026-04-09 14:05:52 +02:00
  • 70188b508c fix(dashboard): eliminate @apply CSS, fix status column, fix click propagation toto 2026-04-09 13:54:38 +02:00
  • 6babc55e3e fix(dashboard): hover infobulles, full-width layout, UX polish toto 2026-04-09 13:30:16 +02:00
  • 63ba6d203c feat(dashboard): complete SOC dashboard with full monitoring and workflows toto 2026-04-09 01:25:01 +02:00
  • 396baa90d2 feat(dashboard): visualisation clusters HDBSCAN toto 2026-04-09 01:11:16 +02:00
  • f1547423b5 refactor(bot-detector): suppression monolithe, tests multifactoriels toto 2026-04-09 01:03:17 +02:00
  • 1f103392ac refactor(bot-detector): extract monolith into modular package toto 2026-04-09 01:02:04 +02:00