Added -C to generate CSV analysis files

Improved IAT and byte distribution
author: Luca <deri@ntop.org> 2019-09-03 18:38:54 +0200
committer: Luca <deri@ntop.org> 2019-09-03 18:38:54 +0200
commit: 886d5751572ee2d8388714ecc3925bead298aeb6 (patch)
tree: 1a44cdae9a0c6455f6d65af5e453f0dbdf0f1740 /tests/result/snapchat.pcap.out
parent: 2a8f9c3a81d42a1a4ba52f8b2fc5fb0810f5db79 (diff)
1 files changed, 3 insertions, 3 deletions
diff --git a/tests/result/snapchat.pcap.out b/tests/result/snapchat.pcap.out
index 9955f8af2..d6843ab5f 100644
--- a/tests/result/snapchat.pcap.out
+++ b/tests/result/snapchat.pcap.out
@@ -6,6 +6,6 @@ JA3 Host Stats:
 	1	 10.8.0.1                 	 2      
 
 
-	1	TCP 10.8.0.1:56193 <-> 74.125.136.141:443 [proto: 91.199/TLS.Snapchat][cat: SocialNetwork/6][9 pkts/2290 bytes <-> 8 pkts/1653 bytes][bytes ratio: 0.162 (Mixed)][IAT c2s/s2c avg/stddev/entropy: 89.4/94.9 164.1/154.9 1.2/1.2][TLSv1.2][client: feelinsonice-hrd.appspot.com][JA3C: fded31ac9b978e56ce306f8056092f2a][JA3S: 7bee5c1d424b7e5f943b06983bb11422][Cipher: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256]
-	2	TCP 10.8.0.1:44536 <-> 74.125.136.141:443 [proto: 91.199/TLS.Snapchat][cat: SocialNetwork/6][9 pkts/2345 bytes <-> 8 pkts/1032 bytes][bytes ratio: 0.389 (Upload)][IAT c2s/s2c avg/stddev/entropy: 70.8/73.6 135.6/125.3 0.9/1.0][TLSv1.2][client: feelinsonice-hrd.appspot.com][JA3C: fded31ac9b978e56ce306f8056092f2a][JA3S: 7bee5c1d424b7e5f943b06983bb11422][Cipher: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256]
-	3	TCP 10.8.0.1:33233 <-> 74.125.136.141:443 [proto: 91.126/TLS.Google][cat: Web/5][11 pkts/1910 bytes <-> 11 pkts/969 bytes][bytes ratio: 0.327 (Upload)][IAT c2s/s2c avg/stddev/entropy: 226.5/226.5 609.5/592.1 0.6/0.7][TLSv1.2][JA3C: 36e9ceaa96dd810482573844f78a063f][JA3S: fbe78c619e7ea20046131294ad087f05][Cipher: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256]
+	1	TCP 10.8.0.1:56193 <-> 74.125.136.141:443 [proto: 91.199/TLS.Snapchat][cat: SocialNetwork/6][9 pkts/2290 bytes <-> 8 pkts/1653 bytes][bytes ratio: 0.162 (Mixed)][IAT c2s/s2c min/avg/max/stddev: 0/0 89.4/94.9 503/453 164.1/154.9][Pkt Len c2s/s2c min/avg/max/stddev: 54/54 254.4/206.6 590/1123 236.6/349.9][TLSv1.2][client: feelinsonice-hrd.appspot.com][JA3C: fded31ac9b978e56ce306f8056092f2a][JA3S: 7bee5c1d424b7e5f943b06983bb11422][Cipher: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256]
+	2	TCP 10.8.0.1:44536 <-> 74.125.136.141:443 [proto: 91.199/TLS.Snapchat][cat: SocialNetwork/6][9 pkts/2345 bytes <-> 8 pkts/1032 bytes][bytes ratio: 0.389 (Upload)][IAT c2s/s2c min/avg/max/stddev: 0/0 70.8/73.6 403/353 135.6/125.3][Pkt Len c2s/s2c min/avg/max/stddev: 54/54 260.6/129.0 590/502 235.8/149.5][TLSv1.2][client: feelinsonice-hrd.appspot.com][JA3C: fded31ac9b978e56ce306f8056092f2a][JA3S: 7bee5c1d424b7e5f943b06983bb11422][Cipher: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256]
+	3	TCP 10.8.0.1:33233 <-> 74.125.136.141:443 [proto: 91.126/TLS.Google][cat: Web/5][11 pkts/1910 bytes <-> 11 pkts/969 bytes][bytes ratio: 0.327 (Upload)][IAT c2s/s2c min/avg/max/stddev: 0/0 226.5/226.5 2052/2000 609.5/592.1][Pkt Len c2s/s2c min/avg/max/stddev: 54/54 173.6/88.1 590/292 162.7/75.5][TLSv1.2][JA3C: 36e9ceaa96dd810482573844f78a063f][JA3S: fbe78c619e7ea20046131294ad087f05][Cipher: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256]
author	Luca <deri@ntop.org>	2019-09-03 18:38:54 +0200
committer	Luca <deri@ntop.org>	2019-09-03 18:38:54 +0200
commit	886d5751572ee2d8388714ecc3925bead298aeb6 (patch)
tree	1a44cdae9a0c6455f6d65af5e453f0dbdf0f1740 /tests/result/snapchat.pcap.out
parent	2a8f9c3a81d42a1a4ba52f8b2fc5fb0810f5db79 (diff)