diff options
| author | Ivan Nardi <12729895+IvanNardi@users.noreply.github.com> | 2023-01-17 22:02:23 +0100 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2023-01-17 22:02:23 +0100 |
| commit | 97014c53f3855b657ad876df2d1e5954ae52a075 (patch) | |
| tree | a8afc72142582eb16eadb69a3297d335fa7326cb /tests/result | |
| parent | ccc5a207100831df07c2dc9733837e731de86938 (diff) | |
Improve support for Snapchat voip calls (#1858)
Latest Snapchat versions use QUICv1 for their audio/video real time
sessions. See c50a8d480
Diffstat (limited to 'tests/result')
| -rw-r--r-- | tests/result/snapchat_call_v1.pcapng.out | 30 |
1 files changed, 30 insertions, 0 deletions
diff --git a/tests/result/snapchat_call_v1.pcapng.out b/tests/result/snapchat_call_v1.pcapng.out new file mode 100644 index 000000000..db82bfd83 --- /dev/null +++ b/tests/result/snapchat_call_v1.pcapng.out @@ -0,0 +1,30 @@ +Guessed flow protos: 0 + +DPI Packets (UDP): 20 (20.00 pkts/flow) +Confidence DPI : 1 (flows) +Num dissector calls: 1 (1.00 diss/flow) +LRU cache ookla: 0/0/0 (insert/search/found) +LRU cache bittorrent: 0/0/0 (insert/search/found) +LRU cache zoom: 0/0/0 (insert/search/found) +LRU cache stun: 0/0/0 (insert/search/found) +LRU cache tls_cert: 0/0/0 (insert/search/found) +LRU cache mining: 0/0/0 (insert/search/found) +LRU cache msteams: 0/0/0 (insert/search/found) +LRU cache stun_zoom: 0/0/0 (insert/search/found) +Automa host: 1/1 (search/found) +Automa domain: 1/0 (search/found) +Automa tls cert: 0/0 (search/found) +Automa risk mask: 0/0 (search/found) +Automa common alpns: 1/1 (search/found) +Patricia risk mask: 2/0 (search/found) +Patricia risk: 0/0 (search/found) +Patricia protocols: 1/1 (search/found) + +SnapchatCall 477 365314 1 + +JA3 Host Stats: + IP Address # JA3C + 1 192.168.12.169 1 + + + 1 UDP 192.168.12.169:47520 <-> 34.246.231.140:443 [proto: 188.255/QUIC.SnapchatCall][IP: 265/AmazonAWS][Encrypted][Confidence: DPI][cat: VoIP/10][386 pkts/353569 bytes <-> 91 pkts/11745 bytes][Goodput ratio: 95/67][9.53 sec][Hostname/SNI: str1-euwest1-34-246-231-140.addlive.io][(Advertised) ALPNs: h3][TLS Supported Versions: TLSv1.3][bytes ratio: 0.936 (Upload)][IAT c2s/s2c min/avg/max/stddev: 0/0 24/89 284/262 25/53][Pkt Len c2s/s2c min/avg/max/stddev: 70/67 916/129 1301/1242 282/178][TLSv1.3][JA3C: f4545fa40dda0c87b1bd81d9a55985a2][PLAIN TEXT (ktmbPg)][Plen Bins: 1,23,2,0,0,0,0,0,0,0,0,0,1,0,0,3,0,0,1,1,0,4,1,2,1,1,1,3,6,3,3,4,4,7,4,7,1,1,3,1,0,0,0,0,0,0,0,0] |