aboutsummaryrefslogtreecommitdiff
path: root/tests/cfgs/default/result/dns-exf.pcap.out
diff options
context:
space:
mode:
authorToni Uhlig <matzeton@googlemail.com>2024-04-11 13:36:26 +0200
committerToni Uhlig <matzeton@googlemail.com>2024-05-09 13:43:12 +0200
commitf8f669a7ce92da582f0dbef7337639bf060ef47d (patch)
tree8f2d7033aa0fe3a695134e7554c624be3e8fb472 /tests/cfgs/default/result/dns-exf.pcap.out
parentb65a755e8569d428732f54bc72f7da3ffb94a3ff (diff)
Add extra entropy checks and more precise(?) analysis.add/more-and-detailed-entropy-checks
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
Diffstat (limited to 'tests/cfgs/default/result/dns-exf.pcap.out')
-rw-r--r--tests/cfgs/default/result/dns-exf.pcap.out2
1 files changed, 1 insertions, 1 deletions
diff --git a/tests/cfgs/default/result/dns-exf.pcap.out b/tests/cfgs/default/result/dns-exf.pcap.out
index 58a159f55..479f7f261 100644
--- a/tests/cfgs/default/result/dns-exf.pcap.out
+++ b/tests/cfgs/default/result/dns-exf.pcap.out
@@ -24,4 +24,4 @@ DNS 2 342 1
Acceptable 2 342 1
- 1 UDP 192.168.2.225:45290 <-> 192.168.2.134:53 [proto: 5/DNS][IP: 0/Unknown][ClearText][Confidence: DPI][DPI packets: 2][cat: Network/14][1 pkts/163 bytes <-> 1 pkts/179 bytes][Goodput ratio: 74/76][0.00 sec][Hostname/SNI: 4sicn03_2qaa3rlc3qudhh0aavjycxwakjehelu5klueow0zjxulgage-.4s2fgaaaa__-.test.txt][::][Risk: ** Susp DNS Traffic **** Non-Printable/Invalid Chars Detected **** Minor Issues **][Risk Score: 160][Risk Info: Invalid chars detected in domain name / Long DNS host name / DNS Record with zero TTL][PLAIN TEXT (sICN03)][Plen Bins: 0,0,0,50,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+ 1 UDP 192.168.2.225:45290 <-> 192.168.2.134:53 [proto: 5/DNS][IP: 0/Unknown][ClearText][Confidence: DPI][DPI packets: 2][cat: Network/14][1 pkts/163 bytes <-> 1 pkts/179 bytes][Goodput ratio: 74/76][0.00 sec][Hostname/SNI: 4sicn03_2qaa3rlc3qudhh0aavjycxwakjehelu5klueow0zjxulgage-.4s2fgaaaa__-.test.txt][::][Risk: ** Susp DNS Traffic **** Susp Entropy **** Non-Printable/Invalid Chars Detected **** Minor Issues **][Risk Score: 170][Risk Info: Invalid chars detected in domain name / Long DNS host name / Entropy: 5.224 (Executable?) / DNS Record with zero TTL][PLAIN TEXT (sICN03)][Plen Bins: 0,0,0,50,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
Powered by cgit, Themed by Ted Yin.