diff options
| author | Toni Uhlig <matzeton@googlemail.com> | 2023-11-09 23:18:55 +0100 |
|---|---|---|
| committer | Toni Uhlig <matzeton@googlemail.com> | 2023-11-09 23:44:35 +0100 |
| commit | 8ebaccc27d779e981b500e80b69f62396dcaa0ca (patch) | |
| tree | 62993474d9ea00d23c579a649ab048fd2a8e76e6 /test/results/flow-info/default/gnutella.pcap.out | |
| parent | dcb595e16153caa1600b64adea6af20009ea8419 (diff) | |
py-flow-info: Improved analyse result printing.1.6rc4
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
Diffstat (limited to 'test/results/flow-info/default/gnutella.pcap.out')
| -rw-r--r-- | test/results/flow-info/default/gnutella.pcap.out | 36 |
1 files changed, 18 insertions, 18 deletions
diff --git a/test/results/flow-info/default/gnutella.pcap.out b/test/results/flow-info/default/gnutella.pcap.out index 43e9501b7..61a725470 100644 --- a/test/results/flow-info/default/gnutella.pcap.out +++ b/test/results/flow-info/default/gnutella.pcap.out @@ -805,9 +805,9 @@ detected: [...327] [ip4][..udp] [......10.0.2.15][28681] -> [...84.28.53.225][44859] [Gnutella][Unknown][Download][Potentially Dangerous] RISK: Unsafe Protocol analyse: [...239] [ip4][..tcp] [......10.0.2.15][50285] -> [..75.133.101.93][52367] [Gnutella][Unknown][Download][Potentially Dangerous] - min| max| avg| stddev| variance| entropy - [IAT.........: 0.000| 8.796| 0.767| 2.113| 4465727.373| 2.600] - [PKTLEN......: 40.000| 1500.000| 409.200| 491.700| 241767.600| 4.100] + min| max| avg| stddev| variance| entropy + [IAT.........: < 0.001| 8.796| 0.767| 2.113| 4465727.373| 2.600] + [PKTLEN......: 40.000| 1500.000| 409.200| 491.700| 241767.600| 4.100] [BINS(c->s)..: 9,2,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 6,0,0,0,1,0,0,0,0,0,0,1,1,0,0,0,0,0,4,1,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,4,0,0] [DIRECTIONS..: 0,1,0,0,1,1,0,1,0,1,1,1,0,0,1,1,0,0,1,1,1,0,1,1,0,1,1,0,1,1,0,1] @@ -815,9 +815,9 @@ [PKTLENS.....: 52,44,40,639,40,652,90,40,353,40,182,423,40,68,40,449,40,86,40,1500,1052,40,640,1488,40,1500,628,40,1500,628,40,640] [ENTROPIES...: 4.6,4.8,4.7,5.8,4.6,5.7,5.6,4.7,7.1,4.6,6.7,7.4,4.7,5.3,4.6,7.4,4.8,5.6,4.6,7.8,7.8,4.7,7.6,7.9,4.7,7.9,7.6,4.7,7.9,7.6,4.7,7.7] analyse: [...238] [ip4][..tcp] [......10.0.2.15][50284] -> [.104.156.226.72][53258] [Gnutella][Unknown][Download][Potentially Dangerous] - min| max| avg| stddev| variance| entropy - [IAT.........: 0.000| 8.218| 0.797| 1.971| 3884024.594| 2.900] - [PKTLEN......: 40.000| 1064.000| 282.600| 381.800| 145784.600| 3.900] + min| max| avg| stddev| variance| entropy + [IAT.........: < 0.001| 8.218| 0.797| 1.971| 3884024.594| 2.900] + [PKTLEN......: 40.000| 1064.000| 282.600| 381.800| 145784.600| 3.900] [BINS(c->s)..: 12,2,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 8,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,1,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,5,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [DIRECTIONS..: 0,1,0,0,1,1,0,1,0,1,1,0,0,1,1,0,0,1,1,0,1,0,1,0,1,0,1,0,0,1,0,1] @@ -825,9 +825,9 @@ [PKTLENS.....: 52,44,40,640,40,668,90,40,353,40,574,40,68,40,442,40,86,40,1064,40,1064,40,1064,40,1064,40,1064,40,55,40,50,40] [ENTROPIES...: 4.7,4.7,4.6,5.8,4.5,5.7,5.6,4.6,7.2,4.6,7.5,4.7,5.4,4.6,7.3,4.7,5.7,4.6,7.8,4.7,7.8,4.7,7.8,4.7,7.8,4.7,7.8,4.7,4.9,4.6,4.9,4.6] analyse: [...288] [ip4][..tcp] [......10.0.2.15][50312] -> [104.238.172.250][23548] [Gnutella][Unknown][Download][Potentially Dangerous] - min| max| avg| stddev| variance| entropy - [IAT.........: 0.000| 8.692| 0.666| 2.111| 4456211.546| 1.900] - [PKTLEN......: 40.000| 668.000| 121.800| 170.000| 28912.700| 4.100] + min| max| avg| stddev| variance| entropy + [IAT.........: < 0.001| 8.692| 0.666| 2.111| 4456211.546| 1.900] + [PKTLEN......: 40.000| 668.000| 121.800| 170.000| 28912.700| 4.100] [BINS(c->s)..: 12,2,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 12,0,0,0,1,0,0,0,0,0,1,0,1,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [DIRECTIONS..: 0,1,0,0,1,1,0,1,0,1,1,1,0,0,1,1,0,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0] @@ -876,9 +876,9 @@ detected: [...336] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][.6888] [Gnutella][Unknown][Download][Potentially Dangerous] RISK: Unsafe Protocol analyse: [...276] [ip4][..tcp] [......10.0.2.15][50300] -> [..188.61.52.183][11852] [Gnutella][Unknown][Download][Potentially Dangerous] - min| max| avg| stddev| variance| entropy - [IAT.........: 0.000| 13.802| 1.828| 3.934| 15478358.540| 2.800] - [PKTLEN......: 40.000| 1500.000| 198.900| 294.000| 86413.100| 4.000] + min| max| avg| stddev| variance| entropy + [IAT.........: < 0.001| 13.802| 1.828| 3.934| 15478358.540| 2.800] + [PKTLEN......: 40.000| 1500.000| 198.900| 294.000| 86413.100| 4.000] [BINS(c->s)..: 8,1,2,1,1,0,0,0,1,0,0,1,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 8,1,1,0,1,1,0,0,0,0,1,0,0,0,1,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0] [DIRECTIONS..: 0,1,0,0,1,1,0,1,0,1,1,1,0,0,1,1,0,1,0,0,1,1,0,1,0,0,1,1,0,0,1,0] @@ -1175,9 +1175,9 @@ update: [...202] [ip4][..udp] [......10.0.2.15][28681] -> [.176.134.139.39][.6346] [Gnutella][Unknown][Download][Potentially Dangerous] RISK: Unsafe Protocol analyse: [....93] [ip4][..tcp] [......10.0.2.15][50248] -> [109.214.154.216][.6346] [Gnutella][Unknown][Download][Potentially Dangerous] - min| max| avg| stddev| variance| entropy - [IAT.........: 0.001| 22.685| 3.465| 6.256| 39132462.055| 3.300] - [PKTLEN......: 40.000| 1064.000| 138.200| 217.400| 47264.800| 4.000] + min| max| avg| stddev| variance| entropy + [IAT.........: 0.001| 22.685| 3.465| 6.256| 39132462.055| 3.300] + [PKTLEN......: 40.000| 1064.000| 138.200| 217.400| 47264.800| 4.000] [BINS(c->s)..: 9,0,2,2,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 12,0,2,0,0,1,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [DIRECTIONS..: 0,1,0,0,1,1,0,1,1,1,0,1,1,0,0,1,0,1,1,1,0,1,0,0,1,1,0,0,1,0,1,1] @@ -1624,9 +1624,9 @@ update: [...202] [ip4][..udp] [......10.0.2.15][28681] -> [.176.134.139.39][.6346] [Gnutella][Unknown][Download][Potentially Dangerous] RISK: Unsafe Protocol analyse: [....94] [ip4][..tcp] [......10.0.2.15][50249] -> [.86.208.180.181][45883] [Gnutella][Unknown][Download][Potentially Dangerous] - min| max| avg| stddev| variance| entropy - [IAT.........: 0.000| 55.455| 7.491| 14.262| 203411798.622| 3.200] - [PKTLEN......: 40.000| 1105.000| 156.900| 244.600| 59812.500| 4.000] + min| max| avg| stddev| variance| entropy + [IAT.........: < 0.001| 55.455| 7.491| 14.262| 203411798.622| 3.200] + [PKTLEN......: 40.000| 1105.000| 156.900| 244.600| 59812.500| 4.000] [BINS(c->s)..: 11,0,2,2,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 10,0,0,0,1,1,0,0,1,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [DIRECTIONS..: 0,1,0,0,1,1,0,1,1,0,0,1,0,1,1,0,1,0,0,1,1,0,0,1,0,1,1,1,0,1,0,0] |