aboutsummaryrefslogtreecommitdiff
path: root/test/results/flow-info
diff options
context:
space:
mode:
authorToni Uhlig <matzeton@googlemail.com>2023-05-23 04:38:07 +0200
committerToni Uhlig <matzeton@googlemail.com>2023-05-24 19:30:19 +0200
commitc9514136b7c4246a57b85474d1a8e376a9009d4a (patch)
treeeb17d83ea16815000a4f723c240e54f21cf0691b /test/results/flow-info
parenta4e5bab9b2826ae50a48da275b6b441624aab50f (diff)
bump libnDPI to ...
* upstream changed regression test interface, needed to adapt * improved libnDPI helper build script * updated JSON schema Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
Diffstat (limited to 'test/results/flow-info')
-rw-r--r--test/results/flow-info/chrome.pcap.out93
-rw-r--r--test/results/flow-info/default/1kxun.pcap.out (renamed from test/results/flow-info/1kxun.pcap.out)275
-rw-r--r--test/results/flow-info/default/443-chrome.pcap.out (renamed from test/results/flow-info/443-chrome.pcap.out)1
-rw-r--r--test/results/flow-info/default/443-curl.pcap.out (renamed from test/results/flow-info/443-curl.pcap.out)0
-rw-r--r--test/results/flow-info/default/443-firefox.pcap.out (renamed from test/results/flow-info/443-firefox.pcap.out)0
-rw-r--r--test/results/flow-info/default/443-git.pcap.out (renamed from test/results/flow-info/443-git.pcap.out)0
-rw-r--r--test/results/flow-info/default/443-opvn.pcap.out (renamed from test/results/flow-info/443-opvn.pcap.out)0
-rw-r--r--test/results/flow-info/default/443-safari.pcap.out (renamed from test/results/flow-info/443-safari.pcap.out)0
-rw-r--r--test/results/flow-info/default/4in4tunnel.pcap.out (renamed from test/results/flow-info/4in4tunnel.pcap.out)0
-rw-r--r--test/results/flow-info/default/4in6tunnel.pcap.out (renamed from test/results/flow-info/4in6tunnel.pcap.out)2
-rw-r--r--test/results/flow-info/default/6in4tunnel.pcap.out (renamed from test/results/flow-info/6in4tunnel.pcap.out)0
-rw-r--r--test/results/flow-info/default/6in6tunnel.pcap.out (renamed from test/results/flow-info/6in6tunnel.pcap.out)2
-rw-r--r--test/results/flow-info/default/BGP_Cisco_hdlc_slarp.pcap.out (renamed from test/results/flow-info/BGP_Cisco_hdlc_slarp.pcap.out)0
-rw-r--r--test/results/flow-info/default/BGP_redist.pcap.out (renamed from test/results/flow-info/BGP_redist.pcap.out)2
-rw-r--r--test/results/flow-info/default/EAQ.pcap.out (renamed from test/results/flow-info/EAQ.pcap.out)50
-rw-r--r--test/results/flow-info/default/FAX-Call-t38-CA-TDM-SIP-FB-1.pcap.out (renamed from test/results/flow-info/FAX-Call-t38-CA-TDM-SIP-FB-1.pcap.out)15
-rw-r--r--test/results/flow-info/default/IEC104.pcap.out (renamed from test/results/flow-info/IEC104.pcap.out)4
-rw-r--r--test/results/flow-info/default/KakaoTalk_chat.pcap.out (renamed from test/results/flow-info/KakaoTalk_chat.pcap.out)30
-rw-r--r--test/results/flow-info/default/KakaoTalk_talk.pcap.out (renamed from test/results/flow-info/KakaoTalk_talk.pcap.out)21
-rw-r--r--test/results/flow-info/default/NTPv2.pcap.out (renamed from test/results/flow-info/NTPv2.pcap.out)2
-rw-r--r--test/results/flow-info/default/NTPv3.pcap.out (renamed from test/results/flow-info/NTPv3.pcap.out)2
-rw-r--r--test/results/flow-info/default/NTPv4.pcap.out (renamed from test/results/flow-info/NTPv4.pcap.out)2
-rw-r--r--test/results/flow-info/default/Oscar.pcap.out (renamed from test/results/flow-info/Oscar.pcap.out)3
-rw-r--r--test/results/flow-info/default/TivoDVR.pcap.out (renamed from test/results/flow-info/TivoDVR.pcap.out)0
-rw-r--r--test/results/flow-info/default/WebattackRCE.pcap.out (renamed from test/results/flow-info/WebattackRCE.pcap.out)1594
-rw-r--r--test/results/flow-info/default/WebattackSQLinj.pcap.out (renamed from test/results/flow-info/WebattackSQLinj.pcap.out)36
-rw-r--r--test/results/flow-info/default/WebattackXSS.pcap.out (renamed from test/results/flow-info/WebattackXSS.pcap.out)88
-rw-r--r--test/results/flow-info/default/activision.pcap.out (renamed from test/results/flow-info/activision.pcap.out)9
-rw-r--r--test/results/flow-info/default/adult_content.pcap.out9
-rw-r--r--test/results/flow-info/default/afp.pcap.out (renamed from test/results/flow-info/afp.pcap.out)2
-rw-r--r--test/results/flow-info/default/agora-sd-rtn.pcap.out (renamed from test/results/flow-info/agora-sd-rtn.pcap.out)75
-rw-r--r--test/results/flow-info/default/ah.pcapng.out (renamed from test/results/flow-info/ah.pcapng.out)4
-rw-r--r--test/results/flow-info/default/ajp.pcap.out (renamed from test/results/flow-info/ajp.pcap.out)0
-rw-r--r--test/results/flow-info/default/alexa-app.pcapng.out (renamed from test/results/flow-info/alexa-app.pcapng.out)48
-rw-r--r--test/results/flow-info/default/alicloud.pcap.out (renamed from test/results/flow-info/alicloud.pcap.out)0
-rw-r--r--test/results/flow-info/default/among_us.pcap.out (renamed from test/results/flow-info/among_us.pcap.out)2
-rw-r--r--test/results/flow-info/default/amqp.pcap.out (renamed from test/results/flow-info/amqp.pcap.out)4
-rw-r--r--test/results/flow-info/default/android.pcap.out (renamed from test/results/flow-info/android.pcap.out)36
-rw-r--r--test/results/flow-info/default/anyconnect-vpn.pcap.out (renamed from test/results/flow-info/anyconnect-vpn.pcap.out)87
-rw-r--r--test/results/flow-info/default/anydesk.pcapng.out (renamed from test/results/flow-info/anydesk.pcapng.out)6
-rw-r--r--test/results/flow-info/default/avast.pcap.out (renamed from test/results/flow-info/avast.pcap.out)0
-rw-r--r--test/results/flow-info/default/avast_securedns.pcapng.out (renamed from test/results/flow-info/avast_securedns.pcapng.out)87
-rw-r--r--test/results/flow-info/default/bacnet.pcap.out74
-rw-r--r--test/results/flow-info/default/bad-dns-traffic.pcap.out (renamed from test/results/flow-info/bad-dns-traffic.pcap.out)34
-rw-r--r--test/results/flow-info/default/badpackets.pcap.out (renamed from test/results/flow-info/badpackets.pcap.out)0
-rw-r--r--test/results/flow-info/default/bitcoin.pcap.out (renamed from test/results/flow-info/bitcoin.pcap.out)24
-rw-r--r--test/results/flow-info/default/bittorrent.pcap.out (renamed from test/results/flow-info/bittorrent.pcap.out)92
-rw-r--r--test/results/flow-info/default/bittorrent_tcp_miss.pcapng.out19
-rw-r--r--test/results/flow-info/default/bittorrent_utp.pcap.out (renamed from test/results/flow-info/bittorrent_utp.pcap.out)2
-rw-r--r--test/results/flow-info/default/bjnp.pcap.out (renamed from test/results/flow-info/bjnp.pcap.out)20
-rw-r--r--test/results/flow-info/default/bot.pcap.out (renamed from test/results/flow-info/bot.pcap.out)2
-rw-r--r--test/results/flow-info/default/bt-dns.pcap.out7
-rw-r--r--test/results/flow-info/default/bt-http.pcapng.out7
-rw-r--r--test/results/flow-info/default/bt_search.pcap.out (renamed from test/results/flow-info/bt_search.pcap.out)0
-rw-r--r--test/results/flow-info/default/cachefly.pcapng.out (renamed from test/results/flow-info/cachefly.pcapng.out)0
-rw-r--r--test/results/flow-info/default/capwap.pcap.out (renamed from test/results/flow-info/capwap.pcap.out)15
-rw-r--r--test/results/flow-info/default/capwap_data.pcapng.out18
-rw-r--r--test/results/flow-info/default/cassandra.pcap.out (renamed from test/results/flow-info/cassandra.pcap.out)0
-rw-r--r--test/results/flow-info/default/check_mk_new.pcap.out (renamed from test/results/flow-info/check_mk_new.pcap.out)0
-rw-r--r--test/results/flow-info/default/chrome.pcap.out28
-rw-r--r--test/results/flow-info/default/citrix.pcap.out (renamed from test/results/flow-info/citrix.pcap.out)0
-rw-r--r--test/results/flow-info/default/cloudflare-warp.pcap.out (renamed from test/results/flow-info/cloudflare-warp.pcap.out)3
-rw-r--r--test/results/flow-info/default/coap_mqtt.pcap.out (renamed from test/results/flow-info/coap_mqtt.pcap.out)38
-rw-r--r--test/results/flow-info/default/collectd.pcap.out (renamed from test/results/flow-info/collectd.pcap.out)0
-rw-r--r--test/results/flow-info/default/corba.pcap.out (renamed from test/results/flow-info/corba.pcap.out)0
-rw-r--r--test/results/flow-info/default/cpha.pcap.out (renamed from test/results/flow-info/cpha.pcap.out)0
-rw-r--r--test/results/flow-info/default/crawler_false_positive.pcapng.out9
-rw-r--r--test/results/flow-info/default/crynet.pcap.out (renamed from test/results/flow-info/crynet.pcap.out)8
-rw-r--r--test/results/flow-info/default/custom_rules_same-ip_multiple_ports.pcapng.out12
-rw-r--r--test/results/flow-info/default/dazn.pcapng.out (renamed from test/results/flow-info/dazn.pcapng.out)0
-rw-r--r--test/results/flow-info/default/dcerpc.pcap.out (renamed from test/results/flow-info/dcerpc.pcap.out)8
-rw-r--r--test/results/flow-info/default/dhcp-fuzz.pcapng.out (renamed from test/results/flow-info/dhcp-fuzz.pcapng.out)0
-rw-r--r--test/results/flow-info/default/diameter.pcap.out (renamed from test/results/flow-info/diameter.pcap.out)2
-rw-r--r--test/results/flow-info/default/discord.pcap.out (renamed from test/results/flow-info/discord.pcap.out)12
-rw-r--r--test/results/flow-info/default/discord_mid_flow.pcap.out20
-rw-r--r--test/results/flow-info/default/dlt_ppp.pcap.out (renamed from test/results/flow-info/dlt_ppp.pcap.out)0
-rw-r--r--test/results/flow-info/default/dnp3.pcap.out (renamed from test/results/flow-info/dnp3.pcap.out)0
-rw-r--r--test/results/flow-info/default/dns-invalid-chars.pcap.out (renamed from test/results/flow-info/dns-invalid-chars.pcap.out)3
-rw-r--r--test/results/flow-info/default/dns-tunnel-iodine.pcap.out (renamed from test/results/flow-info/dns-tunnel-iodine.pcap.out)5
-rw-r--r--test/results/flow-info/default/dns_ambiguous_names.pcap.out (renamed from test/results/flow-info/dns_ambiguous_names.pcap.out)12
-rw-r--r--test/results/flow-info/default/dns_doh.pcap.out (renamed from test/results/flow-info/dns_doh.pcap.out)0
-rw-r--r--test/results/flow-info/default/dns_dot.pcap.out (renamed from test/results/flow-info/dns_dot.pcap.out)0
-rw-r--r--test/results/flow-info/default/dns_exfiltration.pcap.out (renamed from test/results/flow-info/dns_exfiltration.pcap.out)8
-rw-r--r--test/results/flow-info/default/dns_fragmented.pcap.out (renamed from test/results/flow-info/dns_fragmented.pcap.out)38
-rw-r--r--test/results/flow-info/default/dns_invert_query.pcapng.out (renamed from test/results/flow-info/dns_invert_query.pcapng.out)0
-rw-r--r--test/results/flow-info/default/dns_long_domainname.pcap.out (renamed from test/results/flow-info/dns_long_domainname.pcap.out)3
-rw-r--r--test/results/flow-info/default/dnscrypt-v1-and-resolver-pings.pcap.out (renamed from test/results/flow-info/dnscrypt-v1-and-resolver-pings.pcap.out)660
-rw-r--r--test/results/flow-info/default/dnscrypt-v2-doh.pcap.out (renamed from test/results/flow-info/dnscrypt-v2-doh.pcap.out)36
-rw-r--r--test/results/flow-info/default/dnscrypt-v2.pcap.out (renamed from test/results/flow-info/dnscrypt-v2.pcap.out)0
-rw-r--r--test/results/flow-info/default/dnscrypt_skype_false_positive.pcapng.out (renamed from test/results/flow-info/dnscrypt_skype_false_positive.pcapng.out)0
-rw-r--r--test/results/flow-info/default/doq.pcapng.out (renamed from test/results/flow-info/doq.pcapng.out)6
-rw-r--r--test/results/flow-info/default/doq_adguard.pcapng.out (renamed from test/results/flow-info/doq_adguard.pcapng.out)2
-rw-r--r--test/results/flow-info/default/dos_win98_smb_netbeui.pcap.out (renamed from test/results/flow-info/dos_win98_smb_netbeui.pcap.out)4
-rw-r--r--test/results/flow-info/default/drda_db2.pcap.out (renamed from test/results/flow-info/drda_db2.pcap.out)0
-rw-r--r--test/results/flow-info/default/dropbox.pcap.out (renamed from test/results/flow-info/dropbox.pcap.out)14
-rw-r--r--test/results/flow-info/default/dtls.pcap.out (renamed from test/results/flow-info/dtls.pcap.out)2
-rw-r--r--test/results/flow-info/default/dtls2.pcap.out (renamed from test/results/flow-info/dtls2.pcap.out)2
-rw-r--r--test/results/flow-info/default/dtls_certificate.pcapng.out (renamed from test/results/flow-info/dtls_certificate.pcapng.out)4
-rw-r--r--test/results/flow-info/default/dtls_certificate_fragments.pcap.out (renamed from test/results/flow-info/dtls_certificate_fragments.pcap.out)8
-rw-r--r--test/results/flow-info/default/dtls_mid_sessions.pcapng.out (renamed from test/results/flow-info/dtls_mid_sessions.pcapng.out)8
-rw-r--r--test/results/flow-info/default/dtls_old_version.pcapng.out (renamed from test/results/flow-info/dtls_old_version.pcapng.out)2
-rw-r--r--test/results/flow-info/default/dtls_session_id_and_coockie_both.pcap.out (renamed from test/results/flow-info/dtls_session_id_and_coockie_both.pcap.out)2
-rw-r--r--test/results/flow-info/default/elasticsearch.pcap.out (renamed from test/results/flow-info/elasticsearch.pcap.out)8
-rw-r--r--test/results/flow-info/default/emotet.pcap.out (renamed from test/results/flow-info/emotet.pcap.out)12
-rw-r--r--test/results/flow-info/default/encrypted_sni.pcap.out (renamed from test/results/flow-info/encrypted_sni.pcap.out)3
-rw-r--r--test/results/flow-info/default/esp.pcapng.out (renamed from test/results/flow-info/esp.pcapng.out)4
-rw-r--r--test/results/flow-info/default/ethereum.pcap.out (renamed from test/results/flow-info/ethereum.pcap.out)106
-rw-r--r--test/results/flow-info/default/ethernetIP.pcap.out (renamed from test/results/flow-info/ethernetIP.pcap.out)8
-rw-r--r--test/results/flow-info/default/exe_download.pcap.out (renamed from test/results/flow-info/exe_download.pcap.out)6
-rw-r--r--test/results/flow-info/default/exe_download_as_png.pcap.out (renamed from test/results/flow-info/exe_download_as_png.pcap.out)6
-rw-r--r--test/results/flow-info/default/facebook.pcap.out (renamed from test/results/flow-info/facebook.pcap.out)0
-rw-r--r--test/results/flow-info/default/fastcgi.pcap.out (renamed from test/results/flow-info/fastcgi.pcap.out)0
-rw-r--r--test/results/flow-info/default/firefox.pcap.out28
-rw-r--r--test/results/flow-info/default/fix.pcap.out (renamed from test/results/flow-info/fix.pcap.out)24
-rw-r--r--test/results/flow-info/default/fix2.pcap.out (renamed from test/results/flow-info/fix2.pcap.out)0
-rw-r--r--test/results/flow-info/default/forticlient.pcap.out (renamed from test/results/flow-info/forticlient.pcap.out)4
-rw-r--r--test/results/flow-info/default/ftp-start-tls.pcap.out (renamed from test/results/flow-info/ftp-start-tls.pcap.out)0
-rw-r--r--test/results/flow-info/default/ftp.pcap.out (renamed from test/results/flow-info/ftp.pcap.out)6
-rw-r--r--test/results/flow-info/default/ftp_failed.pcap.out (renamed from test/results/flow-info/ftp_failed.pcap.out)4
-rw-r--r--test/results/flow-info/default/fuzz-2006-06-26-2594.pcap.out (renamed from test/results/flow-info/fuzz-2006-06-26-2594.pcap.out)584
-rw-r--r--test/results/flow-info/default/fuzz-2006-09-29-28586.pcap.out (renamed from test/results/flow-info/fuzz-2006-09-29-28586.pcap.out)50
-rw-r--r--test/results/flow-info/default/fuzz-2020-02-16-11740.pcap.out (renamed from test/results/flow-info/fuzz-2020-02-16-11740.pcap.out)221
-rw-r--r--test/results/flow-info/default/fuzz-2021-06-07-c6c72a0a56.pcap.out (renamed from test/results/flow-info/fuzz-2021-06-07-c6c72a0a56.pcap.out)0
-rw-r--r--test/results/flow-info/default/fuzz-2021-10-13.pcap.out (renamed from test/results/flow-info/fuzz-2021-10-13.pcap.out)0
-rw-r--r--test/results/flow-info/default/genshin-impact.pcap.out (renamed from test/results/flow-info/genshin-impact.pcap.out)10
-rw-r--r--test/results/flow-info/default/git.pcap.out (renamed from test/results/flow-info/git.pcap.out)0
-rw-r--r--test/results/flow-info/default/gnutella.pcap.out (renamed from test/results/flow-info/gnutella.pcap.out)4608
-rw-r--r--test/results/flow-info/default/google_ssl.pcap.out (renamed from test/results/flow-info/google_ssl.pcap.out)0
-rw-r--r--test/results/flow-info/default/googledns_android10.pcap.out (renamed from test/results/flow-info/googledns_android10.pcap.out)4
-rw-r--r--test/results/flow-info/default/gquic.pcap.out (renamed from test/results/flow-info/gquic.pcap.out)2
-rw-r--r--test/results/flow-info/default/gtp_c.pcap.out (renamed from test/results/flow-info/gtp_c.pcap.out)2
-rw-r--r--test/results/flow-info/default/gtp_false_positive.pcapng.out (renamed from test/results/flow-info/gtp_false_positive.pcapng.out)3
-rw-r--r--test/results/flow-info/default/gtp_prime.pcapng.out (renamed from test/results/flow-info/gtp_prime.pcapng.out)0
-rw-r--r--test/results/flow-info/default/h323-overflow.pcap.out (renamed from test/results/flow-info/h323-overflow.pcap.out)1
-rw-r--r--test/results/flow-info/default/h323.pcap.out (renamed from test/results/flow-info/h323.pcap.out)0
-rw-r--r--test/results/flow-info/default/hangout.pcap.out (renamed from test/results/flow-info/hangout.pcap.out)4
-rw-r--r--test/results/flow-info/default/heuristic_tcp_ack_payload.pcap.out66
-rw-r--r--test/results/flow-info/default/hots.pcapng.out45
-rw-r--r--test/results/flow-info/default/hpvirtgrp.pcap.out (renamed from test/results/flow-info/hpvirtgrp.pcap.out)0
-rw-r--r--test/results/flow-info/default/hsrp0.pcap.out (renamed from test/results/flow-info/hsrp0.pcap.out)0
-rw-r--r--test/results/flow-info/default/hsrp2.pcap.out (renamed from test/results/flow-info/hsrp2.pcap.out)0
-rw-r--r--test/results/flow-info/default/hsrp2_ipv6.pcapng.out (renamed from test/results/flow-info/hsrp2_ipv6.pcapng.out)0
-rw-r--r--test/results/flow-info/default/http-crash-content-disposition.pcap.out (renamed from test/results/flow-info/http-crash-content-disposition.pcap.out)0
-rw-r--r--test/results/flow-info/default/http-lines-split.pcap.out (renamed from test/results/flow-info/http-lines-split.pcap.out)2
-rw-r--r--test/results/flow-info/default/http-manipulated.pcap.out16
-rw-r--r--test/results/flow-info/default/http-proxy.pcapng.out (renamed from test/results/flow-info/http-proxy.pcapng.out)0
-rw-r--r--test/results/flow-info/default/http_asymmetric.pcapng.out13
-rw-r--r--test/results/flow-info/default/http_auth.pcap.out (renamed from test/results/flow-info/http_auth.pcap.out)2
-rw-r--r--test/results/flow-info/default/http_connect.pcap.out (renamed from test/results/flow-info/http_connect.pcap.out)1
-rw-r--r--test/results/flow-info/default/http_guessed_host_and_guessed.pcapng.out (renamed from test/results/flow-info/http_guessed_host_and_guessed.pcapng.out)2
-rw-r--r--test/results/flow-info/default/http_ipv6.pcap.out (renamed from test/results/flow-info/http_ipv6.pcap.out)3
-rw-r--r--test/results/flow-info/default/http_on_sip_port.pcap.out (renamed from test/results/flow-info/http_on_sip_port.pcap.out)4
-rw-r--r--test/results/flow-info/default/http_origin_different_than_host.pcap.out8
-rw-r--r--test/results/flow-info/default/http_starting_with_reply.pcapng.out9
-rw-r--r--test/results/flow-info/default/http_ua_splitted_in_two_pkts.pcapng.out18
-rw-r--r--test/results/flow-info/default/i3d.pcap.out (renamed from test/results/flow-info/i3d.pcap.out)8
-rw-r--r--test/results/flow-info/default/iax.pcap.out (renamed from test/results/flow-info/iax.pcap.out)2
-rw-r--r--test/results/flow-info/default/icmp-tunnel.pcap.out (renamed from test/results/flow-info/icmp-tunnel.pcap.out)56
-rw-r--r--test/results/flow-info/default/iec60780-5-104.pcap.out (renamed from test/results/flow-info/iec60780-5-104.pcap.out)0
-rw-r--r--test/results/flow-info/default/imap-starttls.pcap.out (renamed from test/results/flow-info/imap-starttls.pcap.out)0
-rw-r--r--test/results/flow-info/default/imap.pcap.out (renamed from test/results/flow-info/imap.pcap.out)4
-rw-r--r--test/results/flow-info/default/imaps.pcap.out (renamed from test/results/flow-info/imaps.pcap.out)0
-rw-r--r--test/results/flow-info/default/imo.pcap.out (renamed from test/results/flow-info/imo.pcap.out)0
-rw-r--r--test/results/flow-info/default/instagram.pcap.out (renamed from test/results/flow-info/instagram.pcap.out)107
-rw-r--r--test/results/flow-info/default/ip_fragmented_garbage.pcap.out (renamed from test/results/flow-info/ip_fragmented_garbage.pcap.out)0
-rw-r--r--test/results/flow-info/default/iphone.pcap.out (renamed from test/results/flow-info/iphone.pcap.out)29
-rw-r--r--test/results/flow-info/default/ipp.pcap.out (renamed from test/results/flow-info/ipp.pcap.out)12
-rw-r--r--test/results/flow-info/default/ipsec_isakmp_esp.pcap.out (renamed from test/results/flow-info/ipsec_isakmp_esp.pcap.out)97
-rw-r--r--test/results/flow-info/default/ipv6_in_gtp.pcap.out (renamed from test/results/flow-info/ipv6_in_gtp.pcap.out)0
-rw-r--r--test/results/flow-info/default/irc.pcap.out (renamed from test/results/flow-info/irc.pcap.out)4
-rw-r--r--test/results/flow-info/default/ja3_lots_of_cipher_suites.pcap.out (renamed from test/results/flow-info/ja3_lots_of_cipher_suites.pcap.out)0
-rw-r--r--test/results/flow-info/default/ja3_lots_of_cipher_suites_2_anon.pcap.out (renamed from test/results/flow-info/ja3_lots_of_cipher_suites_2_anon.pcap.out)2
-rw-r--r--test/results/flow-info/default/jabber.pcap.out (renamed from test/results/flow-info/jabber.pcap.out)6
-rw-r--r--test/results/flow-info/default/kerberos-error.pcap.out (renamed from test/results/flow-info/kerberos-error.pcap.out)1
-rw-r--r--test/results/flow-info/default/kerberos-login.pcap.out (renamed from test/results/flow-info/kerberos-login.pcap.out)31
-rw-r--r--test/results/flow-info/default/kerberos.pcap.out (renamed from test/results/flow-info/kerberos.pcap.out)11
-rw-r--r--test/results/flow-info/default/kerberos_fuzz.pcapng.out (renamed from test/results/flow-info/kerberos_fuzz.pcapng.out)0
-rw-r--r--test/results/flow-info/default/kismet.pcap.out (renamed from test/results/flow-info/kismet.pcap.out)0
-rw-r--r--test/results/flow-info/default/kontiki.pcap.out (renamed from test/results/flow-info/kontiki.pcap.out)16
-rw-r--r--test/results/flow-info/default/line.pcap.out (renamed from test/results/flow-info/line.pcap.out)1
-rw-r--r--test/results/flow-info/default/linecall_falsepositve.pcap.out36
-rw-r--r--test/results/flow-info/default/lisp_registration.pcap.out (renamed from test/results/flow-info/lisp_registration.pcap.out)4
-rw-r--r--test/results/flow-info/default/log4j-webapp-exploit.pcap.out (renamed from test/results/flow-info/log4j-webapp-exploit.pcap.out)21
-rw-r--r--test/results/flow-info/default/long_tls_certificate.pcap.out (renamed from test/results/flow-info/long_tls_certificate.pcap.out)0
-rw-r--r--test/results/flow-info/default/lru_ipv6_caches.pcapng.out (renamed from test/results/flow-info/lru_ipv6_caches.pcapng.out)32
-rw-r--r--test/results/flow-info/default/malformed_dns.pcap.out (renamed from test/results/flow-info/malformed_dns.pcap.out)5
-rw-r--r--test/results/flow-info/default/malformed_icmp.pcap.out (renamed from test/results/flow-info/malformed_icmp.pcap.out)4
-rw-r--r--test/results/flow-info/default/malware.pcap.out (renamed from test/results/flow-info/malware.pcap.out)5
-rw-r--r--test/results/flow-info/default/memcached.cap.out (renamed from test/results/flow-info/memcached.cap.out)0
-rw-r--r--test/results/flow-info/default/merakicloud.pcapng.out33
-rw-r--r--test/results/flow-info/default/mgcp.pcapng.out (renamed from test/results/flow-info/mgcp.pcapng.out)5
-rw-r--r--test/results/flow-info/default/modbus.pcap.out (renamed from test/results/flow-info/modbus.pcap.out)2
-rw-r--r--test/results/flow-info/default/monero.pcap.out (renamed from test/results/flow-info/monero.pcap.out)0
-rw-r--r--test/results/flow-info/default/mongo_false_positive.pcapng.out (renamed from test/results/flow-info/mongo_false_positive.pcapng.out)0
-rw-r--r--test/results/flow-info/default/mongodb.pcap.out (renamed from test/results/flow-info/mongodb.pcap.out)0
-rw-r--r--test/results/flow-info/default/mpeg-dash.pcap.out (renamed from test/results/flow-info/mpeg-dash.pcap.out)8
-rw-r--r--test/results/flow-info/default/mpeg.pcap.out (renamed from test/results/flow-info/mpeg.pcap.out)0
-rw-r--r--test/results/flow-info/default/mpegts.pcap.out (renamed from test/results/flow-info/mpegts.pcap.out)0
-rw-r--r--test/results/flow-info/default/mqtt.pcap.out (renamed from test/results/flow-info/mqtt.pcap.out)2
-rw-r--r--test/results/flow-info/default/mssql_tds.pcap.out (renamed from test/results/flow-info/mssql_tds.pcap.out)23
-rw-r--r--test/results/flow-info/default/munin.pcap.out (renamed from test/results/flow-info/munin.pcap.out)0
-rw-r--r--test/results/flow-info/default/mysql-8.pcap.out (renamed from test/results/flow-info/mysql-8.pcap.out)5
-rw-r--r--test/results/flow-info/default/natpmp.pcap.out (renamed from test/results/flow-info/natpmp.pcap.out)4
-rw-r--r--test/results/flow-info/default/nats.pcap.out (renamed from test/results/flow-info/nats.pcap.out)0
-rw-r--r--test/results/flow-info/default/ndpi_match_string_subprotocol__error.pcapng.out (renamed from test/results/flow-info/ndpi_match_string_subprotocol__error.pcapng.out)4
-rw-r--r--test/results/flow-info/default/nest_log_sink.pcap.out (renamed from test/results/flow-info/nest_log_sink.pcap.out)4
-rw-r--r--test/results/flow-info/default/netbios.pcap.out (renamed from test/results/flow-info/netbios.pcap.out)10
-rw-r--r--test/results/flow-info/default/netbios_wildcard_dns_query.pcap.out (renamed from test/results/flow-info/netbios_wildcard_dns_query.pcap.out)1
-rw-r--r--test/results/flow-info/default/netflix.pcap.out (renamed from test/results/flow-info/netflix.pcap.out)252
-rw-r--r--test/results/flow-info/default/netflow-fritz.pcap.out (renamed from test/results/flow-info/netflow-fritz.pcap.out)0
-rw-r--r--test/results/flow-info/default/netflowv9.pcap.out (renamed from test/results/flow-info/netflowv9.pcap.out)0
-rw-r--r--test/results/flow-info/default/nfsv2.pcap.out (renamed from test/results/flow-info/nfsv2.pcap.out)24
-rw-r--r--test/results/flow-info/default/nfsv3.pcap.out (renamed from test/results/flow-info/nfsv3.pcap.out)28
-rw-r--r--test/results/flow-info/default/nintendo.pcap.out (renamed from test/results/flow-info/nintendo.pcap.out)36
-rw-r--r--test/results/flow-info/default/nntp.pcap.out (renamed from test/results/flow-info/nntp.pcap.out)0
-rw-r--r--test/results/flow-info/default/no_sni.pcap.out (renamed from test/results/flow-info/no_sni.pcap.out)1
-rw-r--r--test/results/flow-info/default/ocs.pcap.out (renamed from test/results/flow-info/ocs.pcap.out)41
-rw-r--r--test/results/flow-info/default/ocsp.pcapng.out (renamed from test/results/flow-info/ocsp.pcapng.out)8
-rw-r--r--test/results/flow-info/default/oicq.pcap.out203
-rw-r--r--test/results/flow-info/default/ookla.pcap.out30
-rw-r--r--test/results/flow-info/default/openvpn.pcap.out (renamed from test/results/flow-info/openvpn.pcap.out)0
-rw-r--r--test/results/flow-info/default/oracle12.pcapng.out (renamed from test/results/flow-info/oracle12.pcapng.out)0
-rw-r--r--test/results/flow-info/default/os_detected.pcapng.out (renamed from test/results/flow-info/os_detected.pcapng.out)4
-rw-r--r--test/results/flow-info/default/ospfv2_add_new_prefix.pcap.out (renamed from test/results/flow-info/ospfv2_add_new_prefix.pcap.out)2
-rw-r--r--test/results/flow-info/default/ossfuzz_seed_fake_traces_1.pcapng.out63
-rw-r--r--test/results/flow-info/default/ossfuzz_seed_fake_traces_2.pcapng.out18
-rw-r--r--test/results/flow-info/default/ossfuzz_seed_fake_traces_3.pcapng.out7
-rw-r--r--test/results/flow-info/default/ossfuzz_seed_fake_traces_4.pcapng.out7
-rw-r--r--test/results/flow-info/default/pgm.pcap.out (renamed from test/results/flow-info/pgm.pcap.out)0
-rw-r--r--test/results/flow-info/default/pgsql.pcap.out (renamed from test/results/flow-info/pgsql.pcap.out)0
-rw-r--r--test/results/flow-info/default/pim.pcap.out (renamed from test/results/flow-info/pim.pcap.out)0
-rw-r--r--test/results/flow-info/default/pinterest.pcap.out (renamed from test/results/flow-info/pinterest.pcap.out)25
-rw-r--r--test/results/flow-info/default/pluralsight.pcap.out (renamed from test/results/flow-info/pluralsight.pcap.out)0
-rw-r--r--test/results/flow-info/default/pop3.pcap.out44
-rw-r--r--test/results/flow-info/default/pop3_stls.pcap.out (renamed from test/results/flow-info/pop3_stls.pcap.out)14
-rw-r--r--test/results/flow-info/default/pops.pcapng.out (renamed from test/results/flow-info/pops.pcapng.out)0
-rw-r--r--test/results/flow-info/default/pps.pcap.out (renamed from test/results/flow-info/pps.pcap.out)257
-rw-r--r--test/results/flow-info/default/pptp.pcap.out (renamed from test/results/flow-info/pptp.pcap.out)0
-rw-r--r--test/results/flow-info/default/psiphon3.pcap.out (renamed from test/results/flow-info/psiphon3.pcap.out)0
-rw-r--r--test/results/flow-info/default/punycode-idn.pcap.out (renamed from test/results/flow-info/punycode-idn.pcap.out)5
-rw-r--r--test/results/flow-info/default/quic-23.pcap.out (renamed from test/results/flow-info/quic-23.pcap.out)2
-rw-r--r--test/results/flow-info/default/quic-24.pcap.out (renamed from test/results/flow-info/quic-24.pcap.out)2
-rw-r--r--test/results/flow-info/default/quic-27.pcap.out (renamed from test/results/flow-info/quic-27.pcap.out)2
-rw-r--r--test/results/flow-info/default/quic-28.pcap.out (renamed from test/results/flow-info/quic-28.pcap.out)2
-rw-r--r--test/results/flow-info/default/quic-29.pcap.out (renamed from test/results/flow-info/quic-29.pcap.out)2
-rw-r--r--test/results/flow-info/default/quic-33.pcapng.out (renamed from test/results/flow-info/quic-33.pcapng.out)4
-rw-r--r--test/results/flow-info/default/quic-34.pcap.out (renamed from test/results/flow-info/quic-34.pcap.out)4
-rw-r--r--test/results/flow-info/default/quic-fuzz-overflow.pcapng.out (renamed from test/results/flow-info/quic-fuzz-overflow.pcapng.out)0
-rw-r--r--test/results/flow-info/default/quic-mvfst-22.pcap.out (renamed from test/results/flow-info/quic-mvfst-22.pcap.out)3
-rw-r--r--test/results/flow-info/default/quic-mvfst-22_decryption_error.pcap.out9
-rw-r--r--test/results/flow-info/default/quic-mvfst-27.pcapng.out (renamed from test/results/flow-info/quic-mvfst-27.pcapng.out)2
-rw-r--r--test/results/flow-info/default/quic-mvfst-exp.pcap.out (renamed from test/results/flow-info/quic-mvfst-exp.pcap.out)6
-rw-r--r--test/results/flow-info/default/quic-v2-01.pcapng.out (renamed from test/results/flow-info/quic-v2-01.pcapng.out)4
-rw-r--r--test/results/flow-info/default/quic.pcap.out (renamed from test/results/flow-info/quic.pcap.out)20
-rw-r--r--test/results/flow-info/default/quic046.pcap.out (renamed from test/results/flow-info/quic046.pcap.out)2
-rw-r--r--test/results/flow-info/default/quic_0RTT.pcap.out (renamed from test/results/flow-info/quic_0RTT.pcap.out)6
-rw-r--r--test/results/flow-info/default/quic_crypto_aes_auth_size.pcap.out (renamed from test/results/flow-info/quic_crypto_aes_auth_size.pcap.out)4
-rw-r--r--test/results/flow-info/default/quic_frags_ch_in_multiple_packets.pcapng.out (renamed from test/results/flow-info/quic_frags_ch_in_multiple_packets.pcapng.out)6
-rw-r--r--test/results/flow-info/default/quic_frags_ch_out_of_order_same_packet_craziness.pcapng.out (renamed from test/results/flow-info/quic_frags_ch_out_of_order_same_packet_craziness.pcapng.out)356
-rw-r--r--test/results/flow-info/default/quic_interop_V.pcapng.out (renamed from test/results/flow-info/quic_interop_V.pcapng.out)238
-rw-r--r--test/results/flow-info/default/quic_q39.pcap.out (renamed from test/results/flow-info/quic_q39.pcap.out)2
-rw-r--r--test/results/flow-info/default/quic_q43.pcap.out (renamed from test/results/flow-info/quic_q43.pcap.out)2
-rw-r--r--test/results/flow-info/default/quic_q46.pcap.out (renamed from test/results/flow-info/quic_q46.pcap.out)2
-rw-r--r--test/results/flow-info/default/quic_q46_b.pcap.out (renamed from test/results/flow-info/quic_q46_b.pcap.out)2
-rw-r--r--test/results/flow-info/default/quic_q50.pcap.out (renamed from test/results/flow-info/quic_q50.pcap.out)2
-rw-r--r--test/results/flow-info/default/quic_t50.pcap.out (renamed from test/results/flow-info/quic_t50.pcap.out)2
-rw-r--r--test/results/flow-info/default/quic_t51.pcap.out (renamed from test/results/flow-info/quic_t51.pcap.out)2
-rw-r--r--test/results/flow-info/default/quickplay.pcap.out (renamed from test/results/flow-info/quickplay.pcap.out)50
-rw-r--r--test/results/flow-info/default/radius_false_positive.pcapng.out (renamed from test/results/flow-info/radius_false_positive.pcapng.out)1
-rw-r--r--test/results/flow-info/default/raknet.pcap.out (renamed from test/results/flow-info/raknet.pcap.out)33
-rw-r--r--test/results/flow-info/default/rdp.pcap.out (renamed from test/results/flow-info/rdp.pcap.out)0
-rw-r--r--test/results/flow-info/default/reasm_crash_anon.pcapng.out (renamed from test/results/flow-info/reasm_crash_anon.pcapng.out)8
-rw-r--r--test/results/flow-info/default/reasm_segv_anon.pcapng.out (renamed from test/results/flow-info/reasm_segv_anon.pcapng.out)2
-rw-r--r--test/results/flow-info/default/reddit.pcap.out (renamed from test/results/flow-info/reddit.pcap.out)102
-rw-r--r--test/results/flow-info/default/riot.pcapng.out14
-rw-r--r--test/results/flow-info/default/riotgames.pcap.out (renamed from test/results/flow-info/riotgames.pcap.out)18
-rw-r--r--test/results/flow-info/default/rsh-syslog-false-positive.pcap.out (renamed from test/results/flow-info/rsh-syslog-false-positive.pcap.out)2
-rw-r--r--test/results/flow-info/default/rsh.pcap.out (renamed from test/results/flow-info/rsh.pcap.out)8
-rw-r--r--test/results/flow-info/default/rsync.pcap.out (renamed from test/results/flow-info/rsync.pcap.out)0
-rw-r--r--test/results/flow-info/default/rtmp.pcap.out (renamed from test/results/flow-info/rtmp.pcap.out)0
-rw-r--r--test/results/flow-info/default/rtsp.pcap.out (renamed from test/results/flow-info/rtsp.pcap.out)4
-rw-r--r--test/results/flow-info/default/rtsp_setup_http.pcapng.out (renamed from test/results/flow-info/rtsp_setup_http.pcapng.out)4
-rw-r--r--test/results/flow-info/default/rx.pcap.out (renamed from test/results/flow-info/rx.pcap.out)0
-rw-r--r--test/results/flow-info/default/s7comm.pcap.out (renamed from test/results/flow-info/s7comm.pcap.out)2
-rw-r--r--test/results/flow-info/default/safari.pcap.out59
-rw-r--r--test/results/flow-info/default/salesforce.pcap.out (renamed from test/results/flow-info/salesforce.pcap.out)0
-rw-r--r--test/results/flow-info/default/sccp_hw_conf_register.pcapng.out (renamed from test/results/flow-info/sccp_hw_conf_register.pcapng.out)0
-rw-r--r--test/results/flow-info/default/sctp.cap.out (renamed from test/results/flow-info/sctp.cap.out)4
-rw-r--r--test/results/flow-info/default/selfsigned.pcap.out (renamed from test/results/flow-info/selfsigned.pcap.out)0
-rw-r--r--test/results/flow-info/default/sflow.pcap.out (renamed from test/results/flow-info/sflow.pcap.out)0
-rw-r--r--test/results/flow-info/default/signal.pcap.out (renamed from test/results/flow-info/signal.pcap.out)9
-rw-r--r--test/results/flow-info/default/simple-dnscrypt.pcap.out (renamed from test/results/flow-info/simple-dnscrypt.pcap.out)0
-rw-r--r--test/results/flow-info/default/sip.pcap.out (renamed from test/results/flow-info/sip.pcap.out)30
-rw-r--r--test/results/flow-info/default/sip_hello.pcapng.out (renamed from test/results/flow-info/sip_hello.pcapng.out)0
-rw-r--r--test/results/flow-info/default/sites.pcapng.out (renamed from test/results/flow-info/sites.pcapng.out)9
-rw-r--r--test/results/flow-info/default/skinny.pcap.out (renamed from test/results/flow-info/skinny.pcap.out)8
-rw-r--r--test/results/flow-info/default/skype-conference-call.pcap.out (renamed from test/results/flow-info/skype-conference-call.pcap.out)4
-rw-r--r--test/results/flow-info/default/skype.pcap.out (renamed from test/results/flow-info/skype.pcap.out)727
-rw-r--r--test/results/flow-info/default/skype_no_unknown.pcap.out (renamed from test/results/flow-info/skype_no_unknown.pcap.out)438
-rw-r--r--test/results/flow-info/default/skype_udp.pcap.out (renamed from test/results/flow-info/skype_udp.pcap.out)2
-rw-r--r--test/results/flow-info/default/smb_deletefile.pcap.out (renamed from test/results/flow-info/smb_deletefile.pcap.out)2
-rw-r--r--test/results/flow-info/default/smb_frags.pcap.out (renamed from test/results/flow-info/smb_frags.pcap.out)0
-rw-r--r--test/results/flow-info/default/smbv1.pcap.out (renamed from test/results/flow-info/smbv1.pcap.out)0
-rw-r--r--test/results/flow-info/default/smpp_in_general.pcap.out (renamed from test/results/flow-info/smpp_in_general.pcap.out)0
-rw-r--r--test/results/flow-info/default/smtp-starttls.pcap.out (renamed from test/results/flow-info/smtp-starttls.pcap.out)6
-rw-r--r--test/results/flow-info/default/smtp.pcap.out (renamed from test/results/flow-info/smtp.pcap.out)0
-rw-r--r--test/results/flow-info/default/smtps.pcapng.out (renamed from test/results/flow-info/smtps.pcapng.out)0
-rw-r--r--test/results/flow-info/default/snapchat.pcap.out (renamed from test/results/flow-info/snapchat.pcap.out)0
-rw-r--r--test/results/flow-info/default/snapchat_call.pcapng.out (renamed from test/results/flow-info/snapchat_call.pcapng.out)2
-rw-r--r--test/results/flow-info/default/snapchat_call_v1.pcapng.out19
-rw-r--r--test/results/flow-info/default/snmp.pcap.out (renamed from test/results/flow-info/snmp.pcap.out)24
-rw-r--r--test/results/flow-info/default/soap.pcap.out (renamed from test/results/flow-info/soap.pcap.out)2
-rw-r--r--test/results/flow-info/default/socks-http-example.pcap.out (renamed from test/results/flow-info/socks-http-example.pcap.out)0
-rw-r--r--test/results/flow-info/default/softether.pcap.out (renamed from test/results/flow-info/softether.pcap.out)20
-rw-r--r--test/results/flow-info/default/someip-tp.pcap.out (renamed from test/results/flow-info/someip-tp.pcap.out)4
-rw-r--r--test/results/flow-info/default/someip-udp-method-call.pcapng.out (renamed from test/results/flow-info/someip-udp-method-call.pcapng.out)4
-rw-r--r--test/results/flow-info/default/someip_sd_sample.pcap.out (renamed from test/results/flow-info/someip_sd_sample.pcap.out)0
-rw-r--r--test/results/flow-info/default/source_engine.pcap.out117
-rw-r--r--test/results/flow-info/default/sql_injection.pcap.out (renamed from test/results/flow-info/sql_injection.pcap.out)4
-rw-r--r--test/results/flow-info/default/ssdp-m-search-ua.pcap.out (renamed from test/results/flow-info/ssdp-m-search-ua.pcap.out)0
-rw-r--r--test/results/flow-info/default/ssdp-m-search.pcap.out (renamed from test/results/flow-info/ssdp-m-search.pcap.out)0
-rw-r--r--test/results/flow-info/default/ssh.pcap.out (renamed from test/results/flow-info/ssh.pcap.out)0
-rw-r--r--test/results/flow-info/default/ssl-cert-name-mismatch.pcap.out (renamed from test/results/flow-info/ssl-cert-name-mismatch.pcap.out)0
-rw-r--r--test/results/flow-info/default/starcraft_battle.pcap.out (renamed from test/results/flow-info/starcraft_battle.pcap.out)37
-rw-r--r--test/results/flow-info/default/steam.pcap.out (renamed from test/results/flow-info/steam.pcap.out)110
-rw-r--r--test/results/flow-info/default/steam_datagram_relay_ping.pcapng.out (renamed from test/results/flow-info/steam_datagram_relay_ping.pcapng.out)2
-rw-r--r--test/results/flow-info/default/stun.pcap.out (renamed from test/results/flow-info/stun.pcap.out)0
-rw-r--r--test/results/flow-info/default/stun_signal.pcapng.out (renamed from test/results/flow-info/stun_signal.pcapng.out)66
-rw-r--r--test/results/flow-info/default/syncthing.pcap.out (renamed from test/results/flow-info/syncthing.pcap.out)0
-rw-r--r--test/results/flow-info/default/synscan.pcap.out (renamed from test/results/flow-info/synscan.pcap.out)2003
-rw-r--r--test/results/flow-info/default/syslog.pcap.out (renamed from test/results/flow-info/syslog.pcap.out)2
-rw-r--r--test/results/flow-info/default/tailscale.pcap.out19
-rw-r--r--test/results/flow-info/default/targusdataspeed_false_positives.pcap.out (renamed from test/results/flow-info/targusdataspeed_false_positives.pcap.out)4
-rw-r--r--test/results/flow-info/default/tcp_scan.pcapng.out32
-rw-r--r--test/results/flow-info/default/teams.pcap.out (renamed from test/results/flow-info/teams.pcap.out)133
-rw-r--r--test/results/flow-info/default/teamspeak3.pcap.out (renamed from test/results/flow-info/teamspeak3.pcap.out)2
-rw-r--r--test/results/flow-info/default/teamviewer.pcap.out (renamed from test/results/flow-info/teamviewer.pcap.out)2
-rw-r--r--test/results/flow-info/default/telegram.pcap.out (renamed from test/results/flow-info/telegram.pcap.out)57
-rw-r--r--test/results/flow-info/default/telnet.pcap.out (renamed from test/results/flow-info/telnet.pcap.out)0
-rw-r--r--test/results/flow-info/default/teredo.pcap.out (renamed from test/results/flow-info/teredo.pcap.out)10
-rw-r--r--test/results/flow-info/default/tftp.pcap.out (renamed from test/results/flow-info/tftp.pcap.out)14
-rw-r--r--test/results/flow-info/default/threema.pcap.out (renamed from test/results/flow-info/threema.pcap.out)4
-rw-r--r--test/results/flow-info/default/tinc.pcap.out (renamed from test/results/flow-info/tinc.pcap.out)8
-rw-r--r--test/results/flow-info/default/tk.pcap.out (renamed from test/results/flow-info/tk.pcap.out)3
-rw-r--r--test/results/flow-info/default/tls-appdata.pcap.out (renamed from test/results/flow-info/tls-appdata.pcap.out)2
-rw-r--r--test/results/flow-info/default/tls-esni-fuzzed.pcap.out (renamed from test/results/flow-info/tls-esni-fuzzed.pcap.out)4
-rw-r--r--test/results/flow-info/default/tls-rdn-extract.pcap.out (renamed from test/results/flow-info/tls-rdn-extract.pcap.out)2
-rw-r--r--test/results/flow-info/default/tls_2_reasms.pcapng.out (renamed from test/results/flow-info/tls_2_reasms.pcapng.out)0
-rw-r--r--test/results/flow-info/default/tls_2_reasms_b.pcapng.out (renamed from test/results/flow-info/tls_2_reasms_b.pcapng.out)4
-rw-r--r--test/results/flow-info/default/tls_alert.pcap.out (renamed from test/results/flow-info/tls_alert.pcap.out)2
-rw-r--r--test/results/flow-info/default/tls_certificate_too_long.pcap.out (renamed from test/results/flow-info/tls_certificate_too_long.pcap.out)45
-rw-r--r--test/results/flow-info/default/tls_cipher_lens.pcap.out (renamed from test/results/flow-info/tls_cipher_lens.pcap.out)10
-rw-r--r--test/results/flow-info/default/tls_client_certificate_with_missing_server_one.pcapng.out (renamed from test/results/flow-info/tls_client_certificate_with_missing_server_one.pcapng.out)0
-rw-r--r--test/results/flow-info/default/tls_esni_sni_both.pcap.out (renamed from test/results/flow-info/tls_esni_sni_both.pcap.out)8
-rw-r--r--test/results/flow-info/default/tls_false_positives.pcapng.out (renamed from test/results/flow-info/tls_false_positives.pcapng.out)0
-rw-r--r--test/results/flow-info/default/tls_invalid_reads.pcap.out (renamed from test/results/flow-info/tls_invalid_reads.pcap.out)1
-rw-r--r--test/results/flow-info/default/tls_long_cert.pcap.out (renamed from test/results/flow-info/tls_long_cert.pcap.out)0
-rw-r--r--test/results/flow-info/default/tls_missing_ch_frag.pcap.out (renamed from test/results/flow-info/tls_missing_ch_frag.pcap.out)0
-rw-r--r--test/results/flow-info/default/tls_multiple_synack_different_seq.pcapng.out (renamed from test/results/flow-info/tls_multiple_synack_different_seq.pcapng.out)0
-rw-r--r--test/results/flow-info/default/tls_port_80.pcapng.out (renamed from test/results/flow-info/tls_port_80.pcapng.out)0
-rw-r--r--test/results/flow-info/default/tls_torrent.pcapng.out (renamed from test/results/flow-info/tls_torrent.pcapng.out)0
-rw-r--r--test/results/flow-info/default/tls_unidirectional.pcap.out (renamed from test/results/flow-info/tls_unidirectional.pcap.out)6
-rw-r--r--test/results/flow-info/default/tls_verylong_certificate.pcap.out (renamed from test/results/flow-info/tls_verylong_certificate.pcap.out)0
-rw-r--r--test/results/flow-info/default/toca-boca.pcap.out (renamed from test/results/flow-info/toca-boca.pcap.out)43
-rw-r--r--test/results/flow-info/default/tor.pcap.out (renamed from test/results/flow-info/tor.pcap.out)33
-rw-r--r--test/results/flow-info/default/tplink_shp.pcap.out (renamed from test/results/flow-info/tplink_shp.pcap.out)0
-rw-r--r--test/results/flow-info/default/trickbot.pcap.out (renamed from test/results/flow-info/trickbot.pcap.out)6
-rw-r--r--test/results/flow-info/default/tumblr.pcap.out (renamed from test/results/flow-info/tumblr.pcap.out)33
-rw-r--r--test/results/flow-info/default/tunnelbear.pcap.out (renamed from test/results/flow-info/tunnelbear.pcap.out)1
-rw-r--r--test/results/flow-info/default/tuya_lp.pcap.out (renamed from test/results/flow-info/tuya_lp.pcap.out)0
-rw-r--r--test/results/flow-info/default/ubntac2.pcap.out (renamed from test/results/flow-info/ubntac2.pcap.out)0
-rw-r--r--test/results/flow-info/default/ultrasurf.pcap.out (renamed from test/results/flow-info/ultrasurf.pcap.out)8
-rw-r--r--test/results/flow-info/default/upnp.pcap.out (renamed from test/results/flow-info/upnp.pcap.out)0
-rw-r--r--test/results/flow-info/default/viber.pcap.out (renamed from test/results/flow-info/viber.pcap.out)35
-rw-r--r--test/results/flow-info/default/vk.pcapng.out70
-rw-r--r--test/results/flow-info/default/vnc.pcap.out (renamed from test/results/flow-info/vnc.pcap.out)0
-rw-r--r--test/results/flow-info/default/vrrp3.pcapng.out (renamed from test/results/flow-info/vrrp3.pcapng.out)0
-rw-r--r--test/results/flow-info/default/vxlan.pcap.out (renamed from test/results/flow-info/vxlan.pcap.out)18
-rw-r--r--test/results/flow-info/default/wa_video.pcap.out (renamed from test/results/flow-info/wa_video.pcap.out)22
-rw-r--r--test/results/flow-info/default/wa_voice.pcap.out (renamed from test/results/flow-info/wa_voice.pcap.out)28
-rw-r--r--test/results/flow-info/default/waze.pcap.out (renamed from test/results/flow-info/waze.pcap.out)9
-rw-r--r--test/results/flow-info/default/webex.pcap.out (renamed from test/results/flow-info/webex.pcap.out)16
-rw-r--r--test/results/flow-info/default/websocket.pcap.out (renamed from test/results/flow-info/websocket.pcap.out)2
-rw-r--r--test/results/flow-info/default/wechat.pcap.out (renamed from test/results/flow-info/wechat.pcap.out)55
-rw-r--r--test/results/flow-info/default/weibo.pcap.out (renamed from test/results/flow-info/weibo.pcap.out)29
-rw-r--r--test/results/flow-info/default/whatsapp.pcap.out (renamed from test/results/flow-info/whatsapp.pcap.out)172
-rw-r--r--test/results/flow-info/default/whatsapp_login_call.pcap.out (renamed from test/results/flow-info/whatsapp_login_call.pcap.out)94
-rw-r--r--test/results/flow-info/default/whatsapp_login_chat.pcap.out (renamed from test/results/flow-info/whatsapp_login_chat.pcap.out)6
-rw-r--r--test/results/flow-info/default/whatsapp_voice_and_message.pcap.out (renamed from test/results/flow-info/whatsapp_voice_and_message.pcap.out)32
-rw-r--r--test/results/flow-info/default/whatsappfiles.pcap.out (renamed from test/results/flow-info/whatsappfiles.pcap.out)0
-rw-r--r--test/results/flow-info/default/whois.pcapng.out (renamed from test/results/flow-info/whois.pcapng.out)1
-rw-r--r--test/results/flow-info/default/windowsupdate_over_http.pcap.out (renamed from test/results/flow-info/windowsupdate_over_http.pcap.out)6
-rw-r--r--test/results/flow-info/default/wireguard.pcap.out13
-rw-r--r--test/results/flow-info/default/wow.pcap.out (renamed from test/results/flow-info/wow.pcap.out)12
-rw-r--r--test/results/flow-info/default/xdmcp.pcap.out (renamed from test/results/flow-info/xdmcp.pcap.out)2
-rw-r--r--test/results/flow-info/default/xiaomi.pcap.out (renamed from test/results/flow-info/xiaomi.pcap.out)4
-rw-r--r--test/results/flow-info/default/xss.pcap.out (renamed from test/results/flow-info/xss.pcap.out)4
-rw-r--r--test/results/flow-info/default/yandex.pcapng.out47
-rw-r--r--test/results/flow-info/default/youtube_quic.pcap.out (renamed from test/results/flow-info/youtube_quic.pcap.out)6
-rw-r--r--test/results/flow-info/default/youtubeupload.pcap.out (renamed from test/results/flow-info/youtubeupload.pcap.out)4
-rw-r--r--test/results/flow-info/default/z3950.pcapng.out (renamed from test/results/flow-info/z3950.pcapng.out)0
-rw-r--r--test/results/flow-info/default/zabbix.pcap.out (renamed from test/results/flow-info/zabbix.pcap.out)0
-rw-r--r--test/results/flow-info/default/zattoo.pcap.out (renamed from test/results/flow-info/zattoo.pcap.out)2
-rw-r--r--test/results/flow-info/default/zcash.pcap.out (renamed from test/results/flow-info/zcash.pcap.out)0
-rw-r--r--test/results/flow-info/default/zoom.pcap.out (renamed from test/results/flow-info/zoom.pcap.out)31
-rw-r--r--test/results/flow-info/default/zoom2.pcap.out (renamed from test/results/flow-info/zoom2.pcap.out)33
-rw-r--r--test/results/flow-info/default/zoom_p2p.pcapng.out (renamed from test/results/flow-info/zoom_p2p.pcapng.out)45
-rw-r--r--test/results/flow-info/disable_aggressiveness/ookla.pcap.out30
-rw-r--r--test/results/flow-info/disable_protocols/dns_long_domainname.pcap.out11
-rw-r--r--test/results/flow-info/disable_protocols/pluralsight.pcap.out32
-rw-r--r--test/results/flow-info/disable_protocols/quic-mvfst-27.pcapng.out7
-rw-r--r--test/results/flow-info/disable_protocols/soap.pcap.out16
-rw-r--r--test/results/flow-info/firefox.pcap.out92
-rw-r--r--test/results/flow-info/gre_no_options.pcapng.out7
-rw-r--r--test/results/flow-info/http-manipulated.pcap.out26
-rw-r--r--test/results/flow-info/ookla.pcap.out23
-rw-r--r--test/results/flow-info/pop3.pcap.out9
-rw-r--r--test/results/flow-info/quic-mvfst-22_decryption_error.pcap.out17
-rw-r--r--test/results/flow-info/safari.pcap.out110
-rw-r--r--test/results/flow-info/wireguard.pcap.out24
420 files changed, 13028 insertions, 4745 deletions
diff --git a/test/results/flow-info/chrome.pcap.out b/test/results/flow-info/chrome.pcap.out
deleted file mode 100644
index c9904d88b..000000000
--- a/test/results/flow-info/chrome.pcap.out
+++ /dev/null
@@ -1,93 +0,0 @@
- DAEMON-EVENT: init
- DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
- DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
- new: [.....1] [ip4][..tcp] [..192.168.1.178][64393] -> [...146.48.58.18][..443]
- detected: [.....1] [ip4][..tcp] [..192.168.1.178][64393] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- detection-update: [.....1] [ip4][..tcp] [..192.168.1.178][64393] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- new: [.....2] [ip4][..tcp] [..192.168.1.178][64394] -> [...146.48.58.18][..443]
- detected: [.....2] [ip4][..tcp] [..192.168.1.178][64394] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- analyse: [.....1] [ip4][..tcp] [..192.168.1.178][64393] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.629| 0.057| 0.154| 23802.585| 2.400]
- [PKTLEN......: 52.000| 1492.000| 605.400| 632.900| 400560.700| 4.200]
- [BINS(c->s)..: 10,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,1,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 5,0,0,0,0,0,0,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,9,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,1,0,1,0,0,0,1,1,1,1,0,0,1,1,0,1,1,0,1,1,0,0,0,1,1,1]
- [IATS(ms)....: 28.8,28.9,0.3,29.8,7.0,0.2,36.6,0.5,0.5,13.6,0.3,42.3,0.0,0.2,0.0,28.6,0.0,627.9,1.2,629.0,0.1,0.2,0.3,0.1,0.3,0.3,1.1,131.1,160.1,5.6,0.1]
- [PKTLENS.....: 64,60,52,569,52,1492,1492,52,758,52,132,802,52,52,355,355,52,52,1492,1492,52,1492,1492,52,1492,1471,52,52,703,52,1492,1492]
- [ENTROPIES...: 4.4,5.2,4.9,4.4,5.0,7.8,7.9,5.0,7.7,5.1,6.2,7.7,5.1,5.1,7.4,7.4,5.0,5.1,7.9,7.9,5.0,7.9,7.9,5.0,7.9,7.9,5.0,5.0,7.7,5.1,7.9,7.9]
- detection-update: [.....2] [ip4][..tcp] [..192.168.1.178][64394] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- new: [.....3] [ip4][..tcp] [..192.168.1.178][64408] -> [...146.48.58.18][..443]
- new: [.....4] [ip4][..tcp] [..192.168.1.178][64409] -> [...146.48.58.18][..443]
- new: [.....5] [ip4][..tcp] [..192.168.1.178][64410] -> [...146.48.58.18][..443]
- new: [.....6] [ip4][..tcp] [..192.168.1.178][64411] -> [...146.48.58.18][..443]
- detected: [.....4] [ip4][..tcp] [..192.168.1.178][64409] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- detected: [.....3] [ip4][..tcp] [..192.168.1.178][64408] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- detected: [.....5] [ip4][..tcp] [..192.168.1.178][64410] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- detected: [.....6] [ip4][..tcp] [..192.168.1.178][64411] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- analyse: [.....2] [ip4][..tcp] [..192.168.1.178][64394] -> [...146.48.58.18][..443]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.469| 0.038| 0.110| 12173.627| 2.300]
- [PKTLEN......: 52.000| 1492.000| 617.100| 638.000| 407026.800| 4.200]
- [BINS(c->s)..: 11,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 4,0,0,0,0,0,0,0,1,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,10,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,1,0,0,1,1,1,0,1,1,0,1,1,0,1,1,0,1,1,0,0,1,0,0]
- [IATS(ms)....: 28.5,28.6,0.6,28.4,2.8,30.5,2.0,28.4,0.1,26.4,441.8,468.8,1.7,1.4,30.2,0.1,0.1,0.2,0.1,0.1,0.2,0.1,0.1,0.3,0.2,0.3,0.5,0.8,26.0,25.3,1.8]
- [PKTLENS.....: 64,60,52,687,52,312,52,132,52,355,52,769,52,1492,1492,52,1492,1492,52,1492,1492,52,1492,1492,52,1492,1492,52,52,1015,52,756]
- [ENTROPIES...: 4.4,5.3,4.9,7.1,5.1,6.9,5.0,6.3,5.2,7.4,5.1,7.7,5.1,7.9,7.9,5.0,7.9,7.9,5.0,7.9,7.9,4.9,7.9,7.9,5.0,7.9,7.9,5.0,4.9,7.8,5.0,7.7]
- detection-update: [.....2] [ip4][..tcp] [..192.168.1.178][64394] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- detection-update: [.....4] [ip4][..tcp] [..192.168.1.178][64409] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- detection-update: [.....3] [ip4][..tcp] [..192.168.1.178][64408] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- detection-update: [.....6] [ip4][..tcp] [..192.168.1.178][64411] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- detection-update: [.....5] [ip4][..tcp] [..192.168.1.178][64410] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- analyse: [.....6] [ip4][..tcp] [..192.168.1.178][64411] -> [...146.48.58.18][..443]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.035| 0.006| 0.011| 123.618| 3.100]
- [PKTLEN......: 52.000| 1492.000| 528.700| 598.400| 358096.100| 4.100]
- [BINS(c->s)..: 12,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,1,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 4,0,0,0,0,0,0,0,0,2,1,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,8,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,1,1,0,0,0,0,1,1,1,0,1,0,1,1,0,0,1,1,0,1,1,1,0,0,0,0]
- [IATS(ms)....: 26.8,26.8,1.3,28.2,6.8,1.3,0.0,35.0,0.0,0.4,0.3,27.6,0.0,0.0,26.9,1.4,1.4,1.1,0.0,1.1,0.1,0.2,0.2,0.4,0.1,0.1,0.0,0.3,0.0,0.7,1.7]
- [PKTLENS.....: 64,60,52,569,52,1492,1492,758,52,52,132,758,52,355,52,52,355,52,1492,1492,52,52,1492,1492,52,1492,1492,398,52,52,52,806]
- [ENTROPIES...: 4.4,5.3,5.0,4.4,5.1,7.9,7.9,7.7,5.0,5.0,6.2,7.7,5.0,7.4,5.1,5.0,7.3,5.0,7.9,7.9,5.0,4.9,7.9,7.9,5.0,7.9,7.9,7.5,4.9,5.0,4.9,7.8]
- detection-update: [.....6] [ip4][..tcp] [..192.168.1.178][64411] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- analyse: [.....4] [ip4][..tcp] [..192.168.1.178][64409] -> [...146.48.58.18][..443]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.031| 0.008| 0.012| 146.160| 3.400]
- [PKTLEN......: 52.000| 1492.000| 699.600| 675.500| 456346.800| 4.200]
- [BINS(c->s)..: 10,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 4,0,0,0,0,0,0,0,1,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,13,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,0,0,0,1,1,1,0,1,1,0,1,1,0,1,1,0,1,1,0,1,0,1,1,0,1,1]
- [IATS(ms)....: 29.3,29.3,0.9,29.0,2.5,30.7,0.6,0.3,26.2,1.1,2.3,28.7,1.8,0.2,2.0,0.4,0.5,0.9,0.1,0.1,0.2,0.1,0.1,0.3,0.1,0.9,26.9,0.1,26.2,1.5,0.1]
- [PKTLENS.....: 64,60,52,687,52,312,52,132,758,52,52,355,52,1492,1492,52,1492,1492,52,1492,1492,52,1492,1492,52,1492,52,1492,1492,52,1492,1492]
- [ENTROPIES...: 4.5,5.3,5.1,7.1,5.1,7.0,5.0,6.3,7.7,5.1,5.1,7.4,5.1,7.9,7.9,5.1,7.9,7.9,5.1,7.9,7.9,5.1,7.9,7.9,5.1,7.9,4.9,7.9,7.9,5.0,7.9,7.9]
- detection-update: [.....4] [ip4][..tcp] [..192.168.1.178][64409] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- analyse: [.....5] [ip4][..tcp] [..192.168.1.178][64410] -> [...146.48.58.18][..443]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.038| 0.007| 0.012| 150.077| 3.200]
- [PKTLEN......: 52.000| 1492.000| 629.300| 651.900| 424923.800| 4.200]
- [BINS(c->s)..: 11,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 4,0,0,0,0,0,0,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,11,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,1,1,0,0,0,0,1,1,1,1,0,0,1,1,0,1,1,0,1,1,0,1,0,1,0,1]
- [IATS(ms)....: 28.7,28.7,1.3,29.9,9.6,0.1,0.0,38.3,0.0,0.5,0.2,28.0,0.1,0.1,0.0,27.5,0.0,1.2,1.3,2.5,0.1,0.1,0.2,0.1,0.1,0.2,0.2,0.2,0.4,0.4,25.3]
- [PKTLENS.....: 64,60,52,569,52,1492,1492,758,52,52,132,758,52,52,355,355,52,52,1492,1492,52,1492,1492,52,1492,1492,52,1492,52,1492,52,1492]
- [ENTROPIES...: 4.5,5.2,5.1,4.4,5.1,7.8,7.9,7.7,5.0,5.0,6.2,7.7,5.0,5.1,7.4,7.4,5.0,5.0,7.9,7.9,5.1,7.9,7.9,5.1,7.9,7.9,5.1,7.9,4.9,7.9,5.1,7.9]
- detection-update: [.....5] [ip4][..tcp] [..192.168.1.178][64410] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- analyse: [.....3] [ip4][..tcp] [..192.168.1.178][64408] -> [...146.48.58.18][..443]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.032| 0.008| 0.013| 163.814| 3.300]
- [PKTLEN......: 52.000| 1492.000| 609.700| 634.700| 402848.700| 4.200]
- [BINS(c->s)..: 11,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 4,0,0,0,0,0,0,0,1,1,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,10,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,0,0,0,1,1,1,0,1,1,0,1,0,1,0,1,1,0,1,1,0,1,0,1,1,0,0]
- [IATS(ms)....: 29.8,29.8,1.1,30.0,2.5,31.5,0.4,0.2,32.0,0.0,0.0,31.5,1.0,0.1,1.1,0.1,0.2,0.1,0.1,0.1,0.1,0.2,0.5,0.1,0.6,0.1,1.5,27.3,0.1,26.1,4.6]
- [PKTLENS.....: 64,60,52,687,52,312,52,132,758,52,355,52,52,1492,1492,52,1492,52,1492,52,1492,1492,52,1492,1492,52,1492,52,1492,785,52,761]
- [ENTROPIES...: 4.4,5.3,5.0,7.1,5.1,6.9,5.0,6.2,7.7,5.0,7.4,5.1,4.9,7.9,7.9,5.0,7.8,4.9,7.9,5.0,7.9,7.9,5.0,7.9,7.9,5.0,7.9,4.9,7.9,7.7,5.0,7.7]
- detection-update: [.....3] [ip4][..tcp] [..192.168.1.178][64408] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- end: [.....1] [ip4][..tcp] [..192.168.1.178][64393] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
- end: [.....2] [ip4][..tcp] [..192.168.1.178][64394] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
- end: [.....3] [ip4][..tcp] [..192.168.1.178][64408] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
- end: [.....4] [ip4][..tcp] [..192.168.1.178][64409] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
- end: [.....5] [ip4][..tcp] [..192.168.1.178][64410] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
- end: [.....6] [ip4][..tcp] [..192.168.1.178][64411] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
- DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/1kxun.pcap.out b/test/results/flow-info/default/1kxun.pcap.out
index 7ca84c256..10de2bb75 100644
--- a/test/results/flow-info/1kxun.pcap.out
+++ b/test/results/flow-info/default/1kxun.pcap.out
@@ -28,30 +28,36 @@
detected: [....13] [ip4][..udp] [..192.168.115.8][51458] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
new: [....14] [ip4][..udp] [..192.168.115.8][51024] -> [........8.8.8.8][...53]
detected: [....14] [ip4][..udp] [..192.168.115.8][51024] -> [........8.8.8.8][...53] [DNS.1kxun][Google][Network][Fun][jp.kankan.1kxun.mobi]
+ RISK: Unidirectional Traffic
detection-update: [....14] [ip4][..udp] [..192.168.115.8][51024] -> [........8.8.8.8][...53] [DNS.1kxun][Google][Network][Fun][jp.kankan.1kxun.mobi]
new: [....15] [ip4][..tcp] [..192.168.115.8][49597] -> [.106.185.35.110][...80]
detected: [....15] [ip4][..tcp] [..192.168.115.8][49597] -> [.106.185.35.110][...80] [HTTP.1kxun][Unknown][Streaming][Fun][jp.kankan.1kxun.mobi]
new: [....16] [ip4][..udp] [..192.168.115.8][52723] -> [........8.8.8.8][...53]
detected: [....16] [ip4][..udp] [..192.168.115.8][52723] -> [........8.8.8.8][...53] [DNS.1kxun][Google][Network][Fun][kankan.1kxun.com]
+ RISK: Unidirectional Traffic
new: [....17] [ip4][..tcp] [...192.168.5.16][53622] -> [.192.168.115.75][..443] [MIDSTREAM]
new: [....18] [ip4][..udp] [..192.168.115.8][..137] -> [192.168.255.255][..137]
detected: [....18] [ip4][..udp] [..192.168.115.8][..137] -> [192.168.255.255][..137] [NetBIOS][Unknown][System][Acceptable][wpad]
new: [....19] [ip6][..udp] [..............fe80::e98f:bae2:19f7:6b0f][58779] -> [..............................ff02::1:3][.5355]
detected: [....19] [ip6][..udp] [..............fe80::e98f:bae2:19f7:6b0f][58779] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
+ RISK: Text With Non-Printable Chars
new: [....20] [ip4][..udp] [...192.168.3.95][58779] -> [....224.0.0.252][.5355]
detected: [....20] [ip4][..udp] [...192.168.3.95][58779] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
+ RISK: Text With Non-Printable Chars
new: [....21] [ip4][..udp] [...192.168.3.95][59468] -> [239.255.255.250][.1900]
detected: [....21] [ip4][..udp] [...192.168.3.95][59468] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
new: [....22] [ip4][..udp] [.192.168.125.30][62976] -> [255.255.255.255][62976]
new: [....23] [ip6][..udp] [..2001:b030:214:100:c2a0:bbff:fe73:eb47][62976] -> [................................ff02::1][62976]
new: [....24] [ip4][..udp] [..192.168.115.8][52723] -> [.....168.95.1.1][...53]
detected: [....24] [ip4][..udp] [..192.168.115.8][52723] -> [.....168.95.1.1][...53] [DNS.1kxun][Unknown][Network][Fun][kankan.1kxun.com]
+ RISK: Unidirectional Traffic
detection-update: [....24] [ip4][..udp] [..192.168.115.8][52723] -> [.....168.95.1.1][...53] [DNS.1kxun][Unknown][Network][Fun][kankan.1kxun.com]
new: [....25] [ip4][..tcp] [..192.168.115.8][49598] -> [.222.73.254.167][...80]
detection-update: [....16] [ip4][..udp] [..192.168.115.8][52723] -> [........8.8.8.8][...53] [DNS.1kxun][Google][Network][Fun][kankan.1kxun.com]
detected: [....25] [ip4][..tcp] [..192.168.115.8][49598] -> [.222.73.254.167][...80] [HTTP.1kxun][Unknown][Streaming][Fun][kankan.1kxun.com]
new: [....26] [ip4][..udp] [..192.168.115.8][60724] -> [........8.8.8.8][...53]
detected: [....26] [ip4][..udp] [..192.168.115.8][60724] -> [........8.8.8.8][...53] [DNS.1kxun][Google][Network][Fun][pic.1kxun.com]
+ RISK: Unidirectional Traffic
detection-update: [....26] [ip4][..udp] [..192.168.115.8][60724] -> [........8.8.8.8][...53] [DNS.1kxun][Google][Network][Fun][pic.1kxun.com]
new: [....27] [ip4][..tcp] [..192.168.115.8][49599] -> [.106.187.35.246][...80]
new: [....28] [ip4][..tcp] [..192.168.115.8][49600] -> [.106.187.35.246][...80]
@@ -61,8 +67,10 @@
new: [....32] [ip4][..tcp] [..192.168.115.8][49604] -> [.106.187.35.246][...80]
new: [....33] [ip6][..udp] [..............fe80::e98f:bae2:19f7:6b0f][54888] -> [..............................ff02::1:3][.5355]
detected: [....33] [ip6][..udp] [..............fe80::e98f:bae2:19f7:6b0f][54888] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
+ RISK: Text With Non-Printable Chars
new: [....34] [ip4][..udp] [...192.168.3.95][54888] -> [....224.0.0.252][.5355]
detected: [....34] [ip4][..udp] [...192.168.3.95][54888] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
+ RISK: Text With Non-Printable Chars
detected: [....28] [ip4][..tcp] [..192.168.115.8][49600] -> [.106.187.35.246][...80] [HTTP.1kxun][Unknown][Streaming][Fun][pic.1kxun.com]
detected: [....27] [ip4][..tcp] [..192.168.115.8][49599] -> [.106.187.35.246][...80] [HTTP.1kxun][Unknown][Streaming][Fun][pic.1kxun.com]
detected: [....32] [ip4][..tcp] [..192.168.115.8][49604] -> [.106.187.35.246][...80] [HTTP.1kxun][Unknown][Streaming][Fun][pic.1kxun.com]
@@ -125,11 +133,9 @@
new: [....36] [ip4][..tcp] [..192.168.115.8][49605] -> [.106.185.35.110][...80]
new: [....37] [ip4][..tcp] [..192.168.115.8][49606] -> [.106.185.35.110][...80]
detected: [....36] [ip4][..tcp] [..192.168.115.8][49605] -> [.106.185.35.110][...80] [HTTP.1kxun][Unknown][Streaming][Fun][jp.kankan.1kxun.mobi]
+ RISK: HTTP Susp User-Agent
detected: [....37] [ip4][..tcp] [..192.168.115.8][49606] -> [.106.185.35.110][...80] [HTTP.1kxun][Unknown][Streaming][Fun][jp.kankan.1kxun.mobi]
- detection-update: [....36] [ip4][..tcp] [..192.168.115.8][49605] -> [.106.185.35.110][...80] [HTTP.1kxun][Unknown][Streaming][Fun][jp.kankan.1kxun.mobi]
- RISK: HTTP Suspicious User-Agent
- detection-update: [....37] [ip4][..tcp] [..192.168.115.8][49606] -> [.106.185.35.110][...80] [HTTP.1kxun][Unknown][Streaming][Fun][jp.kankan.1kxun.mobi]
- RISK: HTTP Suspicious User-Agent
+ RISK: HTTP Susp User-Agent
analyse: [....37] [ip4][..tcp] [..192.168.115.8][49606] -> [.106.185.35.110][...80] [HTTP.1kxun][Unknown][Streaming][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.147| 0.015| 0.033| 1100.854| 2.600]
@@ -142,34 +148,33 @@
[ENTROPIES...: 4.5,4.5,5.0,4.8,4.8,5.8,5.8,4.3,5.6,5.0,4.8,4.8,4.8,5.3,5.2,5.1,4.7,4.7,6.0,5.1,5.2,4.8,4.8,5.8,5.1,4.7,4.7,4.5,4.7,4.7,5.6,5.2]
new: [....38] [ip4][..tcp] [..192.168.115.8][49607] -> [218.244.135.170][.9099]
detected: [....38] [ip4][..tcp] [..192.168.115.8][49607] -> [218.244.135.170][.9099] [HTTP][Unknown][Web][Acceptable][218.244.135.170]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI
new: [....39] [ip4][..udp] [..192.168.115.8][54420] -> [........8.8.8.8][...53]
detected: [....39] [ip4][..udp] [..192.168.115.8][54420] -> [........8.8.8.8][...53] [DNS.QQ][Google][Network][Fun][vv.video.qq.com]
+ RISK: Unidirectional Traffic
detection-update: [....39] [ip4][..udp] [..192.168.115.8][54420] -> [........8.8.8.8][...53] [DNS.QQ][Google][Network][Fun][vv.video.qq.com]
new: [....40] [ip4][..tcp] [..192.168.115.8][49608] -> [203.205.151.234][...80]
detected: [....40] [ip4][..tcp] [..192.168.115.8][49608] -> [203.205.151.234][...80] [HTTP.QQ][Unknown][Chat][Fun][vv.video.qq.com]
new: [....41] [ip4][..tcp] [..192.168.115.8][49609] -> [..42.120.51.152][.8080]
new: [....42] [ip4][..udp] [.192.168.10.110][60480] -> [255.255.255.255][62976]
detected: [....41] [ip4][..tcp] [..192.168.115.8][49609] -> [..42.120.51.152][.8080] [HTTP][Unknown][Web][Acceptable][42.120.51.152]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI
new: [....43] [ip4][..udp] [...192.168.5.37][56366] -> [....224.0.0.252][.5355]
detected: [....43] [ip4][..udp] [...192.168.5.37][56366] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
new: [....44] [ip4][..udp] [...192.168.5.37][57325] -> [239.255.255.250][.1900]
detected: [....44] [ip4][..udp] [...192.168.5.37][57325] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
new: [....45] [ip4][..tcp] [...192.168.5.16][53623] -> [.192.168.115.75][..443]
detected: [....45] [ip4][..tcp] [...192.168.5.16][53623] -> [.192.168.115.75][..443] [TLS][Unknown][Web][Safe][192.168.115.75]
- RISK: TLS (probably) Not Carrying HTTPS
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, TLS (probably) Not Carrying HTTPS
detection-update: [....45] [ip4][..tcp] [...192.168.5.16][53623] -> [.192.168.115.75][..443] [TLS][Unknown][Web][Safe][192.168.115.75]
- RISK: Weak TLS Cipher, TLS (probably) Not Carrying HTTPS
+ RISK: Weak TLS Cipher, HTTP/TLS/QUIC Numeric Hostname/SNI, TLS (probably) Not Carrying HTTPS
new: [....46] [ip4][..tcp] [..192.168.115.8][49612] -> [.183.131.48.145][...80]
new: [....47] [ip4][..udp] [.192.168.101.33][58456] -> [....224.0.0.252][.5355]
detected: [....47] [ip4][..udp] [.192.168.101.33][58456] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
new: [....48] [ip4][..udp] [....192.168.5.9][58456] -> [....224.0.0.252][.5355]
detected: [....48] [ip4][..udp] [....192.168.5.9][58456] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
detected: [....46] [ip4][..tcp] [..192.168.115.8][49612] -> [.183.131.48.145][...80] [HTTP][Unknown][Web][Acceptable][183.131.48.145]
- RISK: HTTP Numeric IP Address
- detection-update: [....46] [ip4][..tcp] [..192.168.115.8][49612] -> [.183.131.48.145][...80] [HTTP][Unknown][Web][Acceptable][183.131.48.145]
- RISK: HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI
new: [....49] [ip4][..tcp] [..192.168.115.8][49613] -> [.183.131.48.144][...80]
analyse: [....41] [ip4][..tcp] [..192.168.115.8][49609] -> [..42.120.51.152][.8080] [HTTP][Unknown][Web][Acceptable]
min| max| avg| stddev| variance| entropy
@@ -182,9 +187,9 @@
[PKTLENS.....: 52,52,48,40,40,292,292,46,65,485,485,485,485,46,1300,1300,40,40,1300,1300,528,40,40,267,267,46,65,477,477,46,733,40]
[ENTROPIES...: 4.6,4.6,5.0,5.0,5.0,5.8,5.8,4.7,5.4,6.1,6.1,6.1,6.1,4.6,5.3,4.7,4.9,4.9,4.7,5.2,4.9,4.9,4.9,5.8,5.8,4.6,5.4,6.1,6.1,4.7,5.7,4.9]
detected: [....49] [ip4][..tcp] [..192.168.115.8][49613] -> [.183.131.48.144][...80] [HTTP][Unknown][Web][Acceptable][183.131.48.144]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI
detection-update: [....49] [ip4][..tcp] [..192.168.115.8][49613] -> [.183.131.48.144][...80] [HTTP][Unknown][Media][Acceptable][183.131.48.144]
- RISK: HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI
new: [....50] [ip4][..udp] [.192.168.101.33][55485] -> [239.255.255.250][.1900]
detected: [....50] [ip4][..udp] [.192.168.101.33][55485] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
new: [....51] [ip4][..udp] [....192.168.5.9][55484] -> [239.255.255.250][.1900]
@@ -197,16 +202,7 @@
detected: [....54] [ip4][..udp] [...192.168.5.49][51704] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
new: [....55] [ip4][..udp] [...192.168.5.16][...68] -> [..192.168.119.1][...67]
detected: [....55] [ip4][..udp] [...192.168.5.16][...68] -> [..192.168.119.1][...67] [DHCP][Unknown][Network][Acceptable][macbook-air]
- analyse: [....49] [ip4][..tcp] [..192.168.115.8][49613] -> [.183.131.48.144][...80] [HTTP][Unknown][Media][Acceptable]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.863| 0.183| 0.253| 63925.490| 3.600]
- [PKTLEN......: 40.000| 1064.000| 369.300| 452.500| 204736.500| 3.900]
- [BINS(c->s)..: 18,0,0,0,0,0,0,0,0,0,0,0,0,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 2,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,9,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [DIRECTIONS..: 0,0,1,0,0,0,0,1,1,1,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,1,0,0,1,0,0]
- [IATS(ms)....: 0.0,69.3,69.4,0.0,1.9,0.0,67.9,1.4,6.1,0.3,74.0,0.0,665.9,862.8,0.0,408.6,411.0,0.0,251.4,251.8,0.0,336.8,336.0,0.1,329.9,0.2,130.8,0.1,599.5,799.2,0.1]
- [PKTLENS.....: 52,52,46,40,40,543,543,46,321,1064,1064,40,40,1064,40,40,1064,40,40,1064,40,40,1064,40,40,1064,1064,40,40,1064,40,40]
- [ENTROPIES...: 4.5,4.5,4.6,4.8,4.8,5.5,5.5,4.5,5.6,3.4,2.3,4.8,4.8,2.2,4.8,4.8,2.3,4.8,4.8,2.2,4.8,4.8,2.3,4.8,4.8,2.3,2.2,4.8,4.8,2.2,4.8,4.8]
+ RISK: Unidirectional Traffic
new: [....56] [ip4][..udp] [.59.120.208.218][50151] -> [255.255.255.255][.1947]
new: [....57] [ip4][..tcp] [..192.168.115.8][49596] -> [..203.66.182.87][..443] [MIDSTREAM]
new: [....58] [ip4][..tcp] [...192.168.5.16][53613] -> [.68.233.253.133][...80] [MIDSTREAM]
@@ -261,9 +257,9 @@
new: [....86] [ip4][..udp] [.59.120.208.212][32768] -> [255.255.255.255][.1947]
new: [....87] [ip4][..tcp] [...192.168.5.16][53625] -> [.192.168.115.75][..443]
detected: [....87] [ip4][..tcp] [...192.168.5.16][53625] -> [.192.168.115.75][..443] [TLS][Unknown][Web][Safe][192.168.115.75]
- RISK: TLS (probably) Not Carrying HTTPS
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, TLS (probably) Not Carrying HTTPS
detection-update: [....87] [ip4][..tcp] [...192.168.5.16][53625] -> [.192.168.115.75][..443] [TLS][Unknown][Web][Safe][192.168.115.75]
- RISK: Weak TLS Cipher, TLS (probably) Not Carrying HTTPS
+ RISK: Weak TLS Cipher, HTTP/TLS/QUIC Numeric Hostname/SNI, TLS (probably) Not Carrying HTTPS
new: [....88] [ip4][..udp] [..192.168.119.1][56861] -> [255.255.255.255][.5678]
new: [....89] [ip6][..udp] [................fe80::4e5e:cff:feea:365][.5678] -> [................................ff02::1][.5678]
new: [....90] [ip6][..udp] [..............fe80::5d92:62a8:ebde:1319][49735] -> [..............................ff02::1:3][.5355]
@@ -281,8 +277,10 @@
detected: [....96] [ip4][..udp] [...192.168.5.47][53962] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
new: [....97] [ip6][..udp] [..............fe80::e98f:bae2:19f7:6b0f][51451] -> [..............................ff02::1:3][.5355]
detected: [....97] [ip6][..udp] [..............fe80::e98f:bae2:19f7:6b0f][51451] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
+ RISK: Text With Non-Printable Chars
new: [....98] [ip4][..udp] [...192.168.3.95][51451] -> [....224.0.0.252][.5355]
detected: [....98] [ip4][..udp] [...192.168.3.95][51451] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
+ RISK: Text With Non-Printable Chars
new: [....99] [ip6][..udp] [..............fe80::5d92:62a8:ebde:1319][53938] -> [..............................ff02::1:3][.5355]
detected: [....99] [ip6][..udp] [..............fe80::5d92:62a8:ebde:1319][53938] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
new: [...100] [ip4][..udp] [..192.168.3.236][56043] -> [....224.0.0.252][.5355]
@@ -298,13 +296,15 @@
detected: [...105] [ip4][..udp] [...192.168.5.41][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable][kevin-pc]
new: [...106] [ip4][..tcp] [...192.168.5.16][53580] -> [....31.13.87.36][..443] [MIDSTREAM]
detected: [...106] [ip4][..tcp] [...192.168.5.16][53580] -> [....31.13.87.36][..443] [TLS][Facebook][Web][Safe]
+ RISK: Unidirectional Traffic
new: [...107] [ip4][..tcp] [...192.168.5.16][53626] -> [.192.168.115.75][..443]
detected: [...107] [ip4][..tcp] [...192.168.5.16][53626] -> [.192.168.115.75][..443] [TLS][Unknown][Web][Safe][192.168.115.75]
- RISK: TLS (probably) Not Carrying HTTPS
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, TLS (probably) Not Carrying HTTPS
detection-update: [...107] [ip4][..tcp] [...192.168.5.16][53626] -> [.192.168.115.75][..443] [TLS][Unknown][Web][Safe][192.168.115.75]
- RISK: Weak TLS Cipher, TLS (probably) Not Carrying HTTPS
+ RISK: Weak TLS Cipher, HTTP/TLS/QUIC Numeric Hostname/SNI, TLS (probably) Not Carrying HTTPS
new: [...108] [ip4][..udp] [...192.168.5.16][63372] -> [.....168.95.1.1][...53]
detected: [...108] [ip4][..udp] [...192.168.5.16][63372] -> [.....168.95.1.1][...53] [DNS.Line][Unknown][Network][Acceptable][dl-obs.official.line.naver.jp]
+ RISK: Unidirectional Traffic
detection-update: [...108] [ip4][..udp] [...192.168.5.16][63372] -> [.....168.95.1.1][...53] [DNS.Line][Unknown][Network][Acceptable][dl-obs.official.line.naver.jp]
new: [...109] [ip4][..tcp] [...192.168.5.16][53627] -> [...203.69.81.73][...80]
new: [...110] [ip4][..tcp] [...192.168.5.16][53628] -> [...203.69.81.73][...80]
@@ -316,6 +316,7 @@
detected: [...112] [ip4][..udp] [....192.168.5.9][62822] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
new: [...113] [ip4][..tcp] [.....31.13.87.1][..443] -> [...192.168.5.16][53578] [MIDSTREAM]
detected: [...113] [ip4][..tcp] [.....31.13.87.1][..443] -> [...192.168.5.16][53578] [TLS][Facebook][Web][Safe]
+ RISK: Unidirectional Traffic
new: [...114] [ip6][..udp] [..............fe80::5d92:62a8:ebde:1319][61172] -> [..............................ff02::1:3][.5355]
detected: [...114] [ip6][..udp] [..............fe80::5d92:62a8:ebde:1319][61172] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
new: [...115] [ip4][..udp] [..192.168.3.236][59730] -> [....224.0.0.252][.5355]
@@ -324,22 +325,27 @@
detected: [...116] [ip6][..udp] [..............fe80::f65c:89ff:fe89:e607][..546] -> [..............................ff02::1:2][..547] [DHCPV6][Unknown][Network][Acceptable]
new: [...117] [ip4][..tcp] [...192.168.5.16][53629] -> [.192.168.115.75][..443]
detected: [...117] [ip4][..tcp] [...192.168.5.16][53629] -> [.192.168.115.75][..443] [TLS][Unknown][Web][Safe][192.168.115.75]
- RISK: TLS (probably) Not Carrying HTTPS
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, TLS (probably) Not Carrying HTTPS
detection-update: [...117] [ip4][..tcp] [...192.168.5.16][53629] -> [.192.168.115.75][..443] [TLS][Unknown][Web][Safe][192.168.115.75]
- RISK: Weak TLS Cipher, TLS (probably) Not Carrying HTTPS
+ RISK: Weak TLS Cipher, HTTP/TLS/QUIC Numeric Hostname/SNI, TLS (probably) Not Carrying HTTPS
update: [.....7] [ip4][..udp] [...192.168.5.41][55312] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
update: [....14] [ip4][..udp] [..192.168.115.8][51024] -> [........8.8.8.8][...53] [DNS.1kxun][Google][Network][Fun]
update: [....21] [ip4][..udp] [...192.168.3.95][59468] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
update: [.....8] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable]
update: [.....3] [ip4][..udp] [...192.168.5.44][51389] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
+ update: [....23] [ip6][..udp] [..2001:b030:214:100:c2a0:bbff:fe73:eb47][62976] -> [................................ff02::1][62976]
update: [.....4] [ip4][..udp] [..192.168.119.1][...67] -> [255.255.255.255][...68] [DHCP][Unknown][Network][Acceptable]
update: [.....2] [ip4][..udp] [...192.168.5.57][55809] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
update: [....18] [ip4][..udp] [..192.168.115.8][..137] -> [192.168.255.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....12] [ip4][..udp] [...192.168.5.47][60267] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
update: [....20] [ip4][..udp] [...192.168.3.95][58779] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
+ RISK: Text With Non-Printable Chars
update: [.....6] [ip4][..udp] [...192.168.5.50][64674] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
+ update: [....22] [ip4][..udp] [.192.168.125.30][62976] -> [255.255.255.255][62976]
update: [.....9] [ip6][..udp] [...............fe80::406:55a8:6453:25dd][..546] -> [..............................ff02::1:2][..547] [DHCPV6][Unknown][Network][Acceptable]
update: [....19] [ip6][..udp] [..............fe80::e98f:bae2:19f7:6b0f][58779] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
+ RISK: Text With Non-Printable Chars
+ update: [....24] [ip4][..udp] [..192.168.115.8][52723] -> [.....168.95.1.1][...53] [DNS.1kxun][Unknown][Network][Fun]
update: [....16] [ip4][..udp] [..192.168.115.8][52723] -> [........8.8.8.8][...53] [DNS.1kxun][Google][Network][Fun]
update: [....11] [ip4][..udp] [...192.168.5.47][61603] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
update: [.....1] [ip4][..udp] [...192.168.5.44][59571] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
@@ -359,6 +365,7 @@
detected: [...118] [ip4][..udp] [..192.168.0.104][..137] -> [192.168.255.255][..137] [NetBIOS][Unknown][System][Acceptable][sc.arrancar.org]
new: [...119] [ip4][..udp] [...192.168.5.16][..123] -> [..17.253.26.125][..123]
detected: [...119] [ip4][..udp] [...192.168.5.16][..123] -> [..17.253.26.125][..123] [NTP][Apple][System][Acceptable]
+ RISK: Unidirectional Traffic
new: [...120] [ip6][..udp] [..............fe80::4568:efbc:40b1:1346][57148] -> [..............................ff02::1:3][.5355]
detected: [...120] [ip6][..udp] [..............fe80::4568:efbc:40b1:1346][57148] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
new: [...121] [ip4][..udp] [...192.168.5.41][55593] -> [....224.0.0.252][.5355]
@@ -382,8 +389,8 @@
update: [....44] [ip4][..udp] [...192.168.5.37][57325] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
update: [....51] [ip4][..udp] [....192.168.5.9][55484] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
update: [....50] [ip4][..udp] [.192.168.101.33][55485] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
- update: [....23] [ip6][..udp] [..2001:b030:214:100:c2a0:bbff:fe73:eb47][62976] -> [................................ff02::1][62976]
update: [....55] [ip4][..udp] [...192.168.5.16][...68] -> [..192.168.119.1][...67] [DHCP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....54] [ip4][..udp] [...192.168.5.49][51704] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
update: [....35] [ip4][..udp] [...192.168.5.67][..138] -> [192.168.255.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
@@ -392,33 +399,39 @@
update: [....48] [ip4][..udp] [....192.168.5.9][58456] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
update: [....42] [ip4][..udp] [.192.168.10.110][60480] -> [255.255.255.255][62976]
update: [....56] [ip4][..udp] [.59.120.208.218][50151] -> [255.255.255.255][.1947]
- update: [....22] [ip4][..udp] [.192.168.125.30][62976] -> [255.255.255.255][62976]
update: [....34] [ip4][..udp] [...192.168.3.95][54888] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
+ RISK: Text With Non-Printable Chars
update: [....39] [ip4][..udp] [..192.168.115.8][54420] -> [........8.8.8.8][...53] [DNS.QQ][Google][Network][Fun]
update: [....26] [ip4][..udp] [..192.168.115.8][60724] -> [........8.8.8.8][...53] [DNS.1kxun][Google][Network][Fun]
update: [....52] [ip6][..udp] [...............fe80::9bd:81dd:2fdc:5750][61548] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
- update: [....24] [ip4][..udp] [..192.168.115.8][52723] -> [.....168.95.1.1][...53] [DNS.1kxun][Unknown][Network][Fun]
update: [....53] [ip4][..udp] [...192.168.5.49][61548] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
update: [....33] [ip6][..udp] [..............fe80::e98f:bae2:19f7:6b0f][54888] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
- DAEMON-EVENT: [Processed: 1439 pkts][ZLib][compressions: 0|diff: 0 / 0]
- DAEMON-EVENT: [Flows][active: 129 / 129|skipped: 0|!detected: 0|guessed: 0|detection-updates: 14|updates: 38]
+ RISK: Text With Non-Printable Chars
+ DAEMON-EVENT: [Processed: 1032 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 129 / 129|skipped: 0|!detected: 0|guessed: 0|detection-updates: 11|updates: 38]
new: [...130] [ip4][..tcp] [..192.168.2.126][60962] -> [..172.104.93.92][.1234] [MIDSTREAM]
detected: [...130] [ip4][..tcp] [..192.168.2.126][60962] -> [..172.104.93.92][.1234] [HTTP.1kxun][Unknown][Streaming][Fun][ws.1kxun.mobi]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [...131] [ip4][..tcp] [..192.168.2.126][60972] -> [..172.104.93.92][.1234] [MIDSTREAM]
detected: [...131] [ip4][..tcp] [..192.168.2.126][60972] -> [..172.104.93.92][.1234] [HTTP.1kxun][Unknown][Streaming][Fun][ws.1kxun.mobi]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [...132] [ip4][..tcp] [..192.168.2.126][60984] -> [..172.104.93.92][.1234] [MIDSTREAM]
detected: [...132] [ip4][..tcp] [..192.168.2.126][60984] -> [..172.104.93.92][.1234] [HTTP.1kxun][Unknown][Streaming][Fun][ws.1kxun.mobi]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [...133] [ip4][..tcp] [..192.168.2.126][47230] -> [..161.117.13.29][...80] [MIDSTREAM]
detected: [...133] [ip4][..tcp] [..192.168.2.126][47230] -> [..161.117.13.29][...80] [HTTP.1kxun][Unknown][Streaming][Fun][kankan.1kxun.mobi]
+ RISK: Unidirectional Traffic
new: [...134] [ip4][..tcp] [..192.168.2.126][41134] -> [.129.226.107.77][...80] [MIDSTREAM]
detected: [...134] [ip4][..tcp] [..192.168.2.126][41134] -> [.129.226.107.77][...80] [HTTP.QQ][Tencent][Chat][Fun][cgi.connect.qq.com]
+ RISK: Unidirectional Traffic
+ detection-update: [...133] [ip4][..tcp] [..192.168.2.126][47230] -> [..161.117.13.29][...80] [HTTP.1kxun][Unknown][Download][Fun][kankan.1kxun.mobi]
+ RISK: Binary App Transfer
new: [...135] [ip4][..tcp] [..192.168.2.126][47246] -> [..161.117.13.29][...80] [MIDSTREAM]
detected: [...135] [ip4][..tcp] [..192.168.2.126][47246] -> [..161.117.13.29][...80] [HTTP.1kxun][Unknown][Streaming][Fun][kankan.1kxun.com]
+ RISK: Unidirectional Traffic
new: [...136] [ip4][..tcp] [..192.168.2.126][47262] -> [..161.117.13.29][...80] [MIDSTREAM]
detected: [...136] [ip4][..tcp] [..192.168.2.126][47262] -> [..161.117.13.29][...80] [HTTP.1kxun][Unknown][Streaming][Fun][kankan.1kxun.com]
+ RISK: Unidirectional Traffic
idle: [....44] [ip4][..udp] [...192.168.5.37][57325] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [....78] [ip4][..udp] [...192.168.5.48][59797] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
idle: [...108] [ip4][..udp] [...192.168.5.16][63372] -> [.....168.95.1.1][...53] [DNS.Line][Unknown][Network][Acceptable]
@@ -452,16 +465,18 @@
idle: [...100] [ip4][..udp] [..192.168.3.236][56043] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
idle: [....95] [ip6][..udp] [..............fe80::edf5:240a:c8c0:8312][53962] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
idle: [....97] [ip6][..udp] [..............fe80::e98f:bae2:19f7:6b0f][51451] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
+ RISK: Text With Non-Printable Chars
not-detected: [....94] [ip4][..udp] [..192.168.119.2][43786] -> [255.255.255.255][.5678] [Unknown][Unknown][Unrated]
idle: [....94] [ip4][..udp] [..192.168.119.2][43786] -> [255.255.255.255][.5678]
idle: [....85] [ip4][..udp] [...192.168.5.50][50030] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
idle: [....55] [ip4][..udp] [...192.168.5.16][...68] -> [..192.168.119.1][...67] [DHCP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....54] [ip4][..udp] [...192.168.5.49][51704] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [.....2] [ip4][..udp] [...192.168.5.57][55809] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [...103] [ip6][..udp] [...............fe80::9bd:81dd:2fdc:5750][64568] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
idle: [...122] [ip4][..udp] [...192.168.5.57][64428] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
idle: [....41] [ip4][..tcp] [..192.168.115.8][49609] -> [..42.120.51.152][.8080] [HTTP][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI
idle: [...114] [ip6][..udp] [..............fe80::5d92:62a8:ebde:1319][61172] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
idle: [....75] [ip4][..udp] [...192.168.5.48][49701] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [....68] [ip4][..udp] [...192.168.5.45][59461] -> [192.168.255.255][..137] [NetBIOS][Unknown][System][Acceptable]
@@ -476,7 +491,7 @@
idle: [....43] [ip4][..udp] [...192.168.5.37][56366] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
idle: [...104] [ip4][..udp] [...192.168.5.49][64568] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
idle: [....38] [ip4][..tcp] [..192.168.115.8][49607] -> [218.244.135.170][.9099] [HTTP][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI
idle: [....48] [ip4][..udp] [....192.168.5.9][58456] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
idle: [....47] [ip4][..udp] [.192.168.101.33][58456] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
idle: [....81] [ip6][..udp] [...............fe80::e034:7be:d8f9:6197][62756] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
@@ -488,13 +503,16 @@
idle: [....12] [ip4][..udp] [...192.168.5.47][60267] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [....67] [ip4][..udp] [...192.168.5.45][59789] -> [192.168.255.255][..137] [NetBIOS][Unknown][System][Acceptable]
guessed: [.....5] [ip4][..tcp] [...192.168.5.16][53605] -> [.68.233.253.133][...80] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
end: [.....5] [ip4][..tcp] [...192.168.5.16][53605] -> [.68.233.253.133][...80]
idle: [....82] [ip4][..udp] [...192.168.5.50][62756] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
guessed: [....58] [ip4][..tcp] [...192.168.5.16][53613] -> [.68.233.253.133][...80] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
end: [....58] [ip4][..tcp] [...192.168.5.16][53613] -> [.68.233.253.133][...80]
not-detected: [....56] [ip4][..udp] [.59.120.208.218][50151] -> [255.255.255.255][.1947] [Unknown][Unknown][Unrated]
idle: [....56] [ip4][..udp] [.59.120.208.218][50151] -> [255.255.255.255][.1947]
end: [....59] [ip4][..tcp] [...192.168.5.16][53624] -> [.68.233.253.133][...80] [HTTP][Unknown][Web][Acceptable]
+ RISK: Error Code
idle: [....92] [ip4][..udp] [...192.168.5.44][58702] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
idle: [....62] [ip6][..udp] [..............fe80::5d92:62a8:ebde:1319][63659] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
idle: [...112] [ip4][..udp] [....192.168.5.9][62822] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
@@ -502,22 +520,23 @@
guessed: [....61] [ip4][..tcp] [..192.168.115.8][49581] -> [.64.233.189.128][...80] [HTTP][Google][Web][Acceptable][]
idle: [....61] [ip4][..tcp] [..192.168.115.8][49581] -> [.64.233.189.128][...80]
idle: [....20] [ip4][..udp] [...192.168.3.95][58779] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
+ RISK: Text With Non-Printable Chars
idle: [....15] [ip4][..tcp] [..192.168.115.8][49597] -> [.106.185.35.110][...80] [HTTP.1kxun][Unknown][Streaming][Fun]
idle: [....36] [ip4][..tcp] [..192.168.115.8][49605] -> [.106.185.35.110][...80] [HTTP.1kxun][Unknown][Streaming][Fun]
- RISK: HTTP Suspicious User-Agent
+ RISK: HTTP Susp User-Agent
idle: [....37] [ip4][..tcp] [..192.168.115.8][49606] -> [.106.185.35.110][...80] [HTTP.1kxun][Unknown][Streaming][Fun]
- RISK: HTTP Suspicious User-Agent
+ RISK: HTTP Susp User-Agent
idle: [....25] [ip4][..tcp] [..192.168.115.8][49598] -> [.222.73.254.167][...80] [HTTP.1kxun][Unknown][Streaming][Fun]
guessed: [....17] [ip4][..tcp] [...192.168.5.16][53622] -> [.192.168.115.75][..443] [TLS][Unknown][Web][Safe]
end: [....17] [ip4][..tcp] [...192.168.5.16][53622] -> [.192.168.115.75][..443]
end: [....45] [ip4][..tcp] [...192.168.5.16][53623] -> [.192.168.115.75][..443] [TLS][Unknown][Web][Safe]
- RISK: Weak TLS Cipher, TLS (probably) Not Carrying HTTPS
+ RISK: Weak TLS Cipher, HTTP/TLS/QUIC Numeric Hostname/SNI, TLS (probably) Not Carrying HTTPS
end: [....87] [ip4][..tcp] [...192.168.5.16][53625] -> [.192.168.115.75][..443] [TLS][Unknown][Web][Safe]
- RISK: Weak TLS Cipher, TLS (probably) Not Carrying HTTPS
+ RISK: Weak TLS Cipher, HTTP/TLS/QUIC Numeric Hostname/SNI, TLS (probably) Not Carrying HTTPS
end: [...107] [ip4][..tcp] [...192.168.5.16][53626] -> [.192.168.115.75][..443] [TLS][Unknown][Web][Safe]
- RISK: Weak TLS Cipher, TLS (probably) Not Carrying HTTPS
+ RISK: Weak TLS Cipher, HTTP/TLS/QUIC Numeric Hostname/SNI, TLS (probably) Not Carrying HTTPS
end: [...117] [ip4][..tcp] [...192.168.5.16][53629] -> [.192.168.115.75][..443] [TLS][Unknown][Web][Safe]
- RISK: Weak TLS Cipher, TLS (probably) Not Carrying HTTPS
+ RISK: Weak TLS Cipher, HTTP/TLS/QUIC Numeric Hostname/SNI, TLS (probably) Not Carrying HTTPS
idle: [.....6] [ip4][..udp] [...192.168.5.50][64674] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
not-detected: [....65] [ip4][..udp] [192.168.140.140][62976] -> [255.255.255.255][62976] [Unknown][Unknown][Unrated]
idle: [....65] [ip4][..udp] [192.168.140.140][62976] -> [255.255.255.255][62976]
@@ -526,6 +545,7 @@
not-detected: [....22] [ip4][..udp] [.192.168.125.30][62976] -> [255.255.255.255][62976] [Unknown][Unknown][Unrated]
idle: [....22] [ip4][..udp] [.192.168.125.30][62976] -> [255.255.255.255][62976]
idle: [....34] [ip4][..udp] [...192.168.3.95][54888] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
+ RISK: Text With Non-Printable Chars
idle: [...123] [ip6][..udp] [...............fe80::e034:7be:d8f9:6197][57143] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
idle: [....80] [ip4][..udp] [...192.168.5.57][65150] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
not-detected: [....88] [ip4][..udp] [..192.168.119.1][56861] -> [255.255.255.255][.5678] [Unknown][Unknown][Unrated]
@@ -550,18 +570,20 @@
idle: [....52] [ip6][..udp] [...............fe80::9bd:81dd:2fdc:5750][61548] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
idle: [...129] [ip4][..udp] [..192.168.3.236][65496] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
idle: [....19] [ip6][..udp] [..............fe80::e98f:bae2:19f7:6b0f][58779] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
+ RISK: Text With Non-Printable Chars
guessed: [...101] [ip4][..tcp] [.119.235.235.84][..443] -> [...192.168.5.16][53406] [TLS][Line][Web][Safe]
idle: [...101] [ip4][..tcp] [.119.235.235.84][..443] -> [...192.168.5.16][53406]
end: [....46] [ip4][..tcp] [..192.168.115.8][49612] -> [.183.131.48.145][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI
idle: [....49] [ip4][..tcp] [..192.168.115.8][49613] -> [.183.131.48.144][...80] [HTTP][Unknown][Media][Acceptable]
- RISK: HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI
idle: [....24] [ip4][..udp] [..192.168.115.8][52723] -> [.....168.95.1.1][...53] [DNS.1kxun][Unknown][Network][Fun]
not-detected: [....89] [ip6][..udp] [................fe80::4e5e:cff:feea:365][.5678] -> [................................ff02::1][.5678] [Unknown][Unknown][Unrated]
idle: [....89] [ip6][..udp] [................fe80::4e5e:cff:feea:365][.5678] -> [................................ff02::1][.5678]
not-detected: [....60] [ip6][..udp] [...............fe80::4e5e:cff:fe9a:ec54][.5678] -> [................................ff02::1][.5678] [Unknown][Unknown][Unrated]
idle: [....60] [ip6][..udp] [...............fe80::4e5e:cff:fe9a:ec54][.5678] -> [................................ff02::1][.5678]
idle: [...119] [ip4][..udp] [...192.168.5.16][..123] -> [..17.253.26.125][..123] [NTP][Apple][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....16] [ip4][..udp] [..192.168.115.8][52723] -> [........8.8.8.8][...53] [DNS.1kxun][Google][Network][Fun]
guessed: [....57] [ip4][..tcp] [..192.168.115.8][49596] -> [..203.66.182.87][..443] [TLS][Unknown][Web][Safe]
idle: [....57] [ip4][..tcp] [..192.168.115.8][49596] -> [..203.66.182.87][..443]
@@ -569,9 +591,11 @@
idle: [....93] [ip6][..udp] [..............fe80::beee:7bff:fe0c:b3de][..546] -> [..............................ff02::1:2][..547] [DHCPV6][Unknown][Network][Acceptable]
idle: [....11] [ip4][..udp] [...192.168.5.47][61603] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
idle: [....33] [ip6][..udp] [..............fe80::e98f:bae2:19f7:6b0f][54888] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
+ RISK: Text With Non-Printable Chars
idle: [.....1] [ip4][..udp] [...192.168.5.44][59571] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
idle: [....10] [ip6][..udp] [..............fe80::edf5:240a:c8c0:8312][61603] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
idle: [....98] [ip4][..udp] [...192.168.3.95][51451] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
+ RISK: Text With Non-Printable Chars
idle: [....83] [ip4][..udp] [...192.168.5.49][.1900] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [....13] [ip4][..udp] [..192.168.115.8][51458] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
idle: [...128] [ip6][..udp] [..............fe80::5d92:62a8:ebde:1319][58468] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
@@ -582,20 +606,28 @@
idle: [....84] [ip6][..udp] [...............fe80::9bd:81dd:2fdc:5750][.1900] -> [................................ff02::c][.1900] [SSDP][Unknown][System][Acceptable]
new: [...137] [ip4][..tcp] [..192.168.2.126][47272] -> [..161.117.13.29][...80] [MIDSTREAM]
detected: [...137] [ip4][..tcp] [..192.168.2.126][47272] -> [..161.117.13.29][...80] [HTTP.1kxun][Unknown][Streaming][Fun][messages.1kxun.mobi]
+ RISK: Unidirectional Traffic
new: [...138] [ip4][..tcp] [..192.168.2.126][38834] -> [..119.45.78.184][...80] [MIDSTREAM]
detected: [...138] [ip4][..tcp] [..192.168.2.126][38834] -> [..119.45.78.184][...80] [HTTP.QQ][Tencent][Chat][Fun][pingma.qq.com]
+ RISK: HTTP Susp User-Agent, Unidirectional Traffic
new: [...139] [ip4][..tcp] [..192.168.2.126][60148] -> [.172.105.121.82][...80] [MIDSTREAM]
detected: [...139] [ip4][..tcp] [..192.168.2.126][60148] -> [.172.105.121.82][...80] [HTTP.1kxun][Unknown][Streaming][Fun][pic.1kxun.com]
+ RISK: Unidirectional Traffic
new: [...140] [ip4][..tcp] [..192.168.2.126][49242] -> [.172.104.119.80][...80] [MIDSTREAM]
detected: [...140] [ip4][..tcp] [..192.168.2.126][49242] -> [.172.104.119.80][...80] [HTTP.1kxun][Unknown][Streaming][Fun][android.yingshi.tcclick.1kxun.com]
+ RISK: Unidirectional Traffic
new: [...141] [ip4][..tcp] [..192.168.2.126][46184] -> [.172.105.121.82][...80] [MIDSTREAM]
detected: [...141] [ip4][..tcp] [..192.168.2.126][46184] -> [.172.105.121.82][...80] [HTTP.1kxun][Unknown][Streaming][Fun][pic.1kxun.com]
+ RISK: Unidirectional Traffic
new: [...142] [ip4][..tcp] [..192.168.2.126][46170] -> [.172.105.121.82][...80] [MIDSTREAM]
detected: [...142] [ip4][..tcp] [..192.168.2.126][46170] -> [.172.105.121.82][...80] [HTTP.1kxun][Unknown][Streaming][Fun][pic.1kxun.com]
+ RISK: Unidirectional Traffic
new: [...143] [ip4][..tcp] [..192.168.2.126][46200] -> [.172.105.121.82][...80] [MIDSTREAM]
detected: [...143] [ip4][..tcp] [..192.168.2.126][46200] -> [.172.105.121.82][...80] [HTTP.1kxun][Unknown][Streaming][Fun][pic.1kxun.com]
+ RISK: Unidirectional Traffic
new: [...144] [ip4][..tcp] [..192.168.2.126][46212] -> [.172.105.121.82][...80] [MIDSTREAM]
detected: [...144] [ip4][..tcp] [..192.168.2.126][46212] -> [.172.105.121.82][...80] [HTTP.1kxun][Unknown][Streaming][Fun][pic.1kxun.com]
+ RISK: Unidirectional Traffic
analyse: [...142] [ip4][..tcp] [..192.168.2.126][46170] -> [.172.105.121.82][...80] [HTTP.1kxun][Unknown][Streaming][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.895| 0.069| 0.184| 33990.969| 2.200]
@@ -606,45 +638,33 @@
[IATS(ms)....: 356.2,0.1,308.1,0.1,2.4,3.2,0.1,200.2,0.0,0.1,0.0,0.0,0.0,0.0,0.0,1.6,0.1,0.1,0.0,0.0,0.0,0.0,0.0,0.0,895.3,372.0,0.0,1.3,0.1,1.9,0.0]
[PKTLENS.....: 264,373,13012,14452,2932,2932,1492,7252,2932,1492,2932,2932,1492,1492,1492,1492,1492,4372,6324,2932,2932,1492,1492,1492,788,260,373,17332,21652,1492,4372,17332]
[ENTROPIES...: 5.9,5.7,8.0,8.0,7.9,7.9,7.9,8.0,7.9,7.8,7.9,7.9,7.9,7.8,7.8,7.9,7.8,7.9,7.9,7.9,7.9,7.9,7.8,7.8,7.7,5.8,5.8,8.0,8.0,7.9,7.9,8.0]
- analyse: [...139] [ip4][..tcp] [..192.168.2.126][60148] -> [.172.105.121.82][...80] [HTTP.1kxun][Unknown][Streaming][Fun]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 4.661| 0.404| 1.127| 1269819.376| 2.400]
- [PKTLEN......: 254.000|21652.000| 4985.800| 6236.200| 38890032.000| 4.100]
- [BINS(c->s)..: 0,0,0,0,0,0,5,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 0,0,0,0,0,0,0,0,0,2,3,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,5,0,17]
- [DIRECTIONS..: 0,1,1,0,1,1,0,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,0,1,1,1,1,0,1,1,1]
- [IATS(ms)....: 306.1,4.8,325.8,248.8,0.0,4660.9,4604.2,0.4,0.6,0.8,1.0,367.7,0.0,0.1,0.1,2.5,0.0,311.4,0.0,0.1,1.7,0.1,878.3,204.5,0.0,1.6,1.1,216.5,375.5,0.0,1.5]
- [PKTLENS.....: 254,370,6284,254,370,5668,264,372,1492,1492,7252,2932,5812,2932,10132,2932,1492,5812,2932,1492,8692,1492,5754,263,372,20212,21652,15349,264,373,2932,21652]
- [ENTROPIES...: 5.9,5.7,7.9,5.8,5.7,7.9,5.9,5.8,7.5,7.9,8.0,7.9,7.9,7.9,8.0,7.9,7.9,7.9,7.9,7.9,8.0,7.9,7.9,5.9,5.7,8.0,8.0,8.0,5.9,5.7,7.8,8.0]
- analyse: [...143] [ip4][..tcp] [..192.168.2.126][46200] -> [.172.105.121.82][...80] [HTTP.1kxun][Unknown][Streaming][Fun]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.892| 0.080| 0.189| 35725.132| 2.500]
- [PKTLEN......: 264.000|21652.000| 6932.200| 6776.100| 45915728.000| 4.300]
- [BINS(c->s)..: 0,0,0,0,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 0,0,0,0,0,0,0,0,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,8,0,20]
- [DIRECTIONS..: 0,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,0,1,1,1,1,1,1,1,1,1,1,1,1,1,1]
- [IATS(ms)....: 348.4,0.1,2.6,311.3,0.1,1.9,0.1,0.1,200.2,0.0,0.7,0.1,0.0,0.1,0.0,0.0,891.6,375.9,1.6,0.1,2.2,0.0,1.5,332.8,0.1,0.0,1.9,0.0,1.6,0.0,1.6]
- [PKTLENS.....: 264,372,1492,11572,1492,4372,2932,13012,7252,1492,1492,1492,1492,2932,2932,1492,4591,264,374,21652,2932,10132,11572,17332,7252,18772,5812,20212,1492,10132,11572,21652]
- [ENTROPIES...: 5.9,5.7,7.4,8.0,7.8,7.9,7.9,8.0,7.9,7.8,7.8,7.8,7.9,7.9,7.9,7.8,7.9,5.9,5.7,7.2,7.8,8.0,8.0,8.0,7.9,8.0,7.9,8.0,7.8,8.0,8.0,8.0]
new: [...145] [ip4][..tcp] [..192.168.2.126][35200] -> [...103.29.71.30][...80] [MIDSTREAM]
detected: [...145] [ip4][..tcp] [..192.168.2.126][35200] -> [...103.29.71.30][...80] [HTTP.1kxun][Unknown][Streaming][Fun][release.bigdata.1kxun.com]
+ RISK: Unidirectional Traffic
new: [...146] [ip4][..tcp] [..192.168.2.126][45380] -> [..161.117.13.29][...80] [MIDSTREAM]
detected: [...146] [ip4][..tcp] [..192.168.2.126][45380] -> [..161.117.13.29][...80] [HTTP.1kxun][Unknown][Streaming][Fun][mangaweb.1kxun.mobi]
+ RISK: Unidirectional Traffic
new: [...147] [ip4][..tcp] [..192.168.2.126][45388] -> [..161.117.13.29][...80] [MIDSTREAM]
detected: [...147] [ip4][..tcp] [..192.168.2.126][45388] -> [..161.117.13.29][...80] [HTTP.1kxun][Unknown][Streaming][Fun][mangaweb.1kxun.mobi]
+ RISK: Unidirectional Traffic
new: [...148] [ip4][..tcp] [..192.168.2.126][45398] -> [..161.117.13.29][...80] [MIDSTREAM]
detected: [...148] [ip4][..tcp] [..192.168.2.126][45398] -> [..161.117.13.29][...80] [HTTP.1kxun][Unknown][Streaming][Fun][mangaweb.1kxun.mobi]
+ RISK: Unidirectional Traffic
new: [...149] [ip4][..tcp] [..192.168.2.126][45414] -> [..161.117.13.29][...80] [MIDSTREAM]
detected: [...149] [ip4][..tcp] [..192.168.2.126][45414] -> [..161.117.13.29][...80] [HTTP.1kxun][Unknown][Streaming][Fun][mangaweb.1kxun.mobi]
+ RISK: Unidirectional Traffic
new: [...150] [ip4][..tcp] [..192.168.2.126][45416] -> [..161.117.13.29][...80] [MIDSTREAM]
detected: [...150] [ip4][..tcp] [..192.168.2.126][45416] -> [..161.117.13.29][...80] [HTTP.1kxun][Unknown][Streaming][Fun][mangaweb.1kxun.mobi]
+ RISK: Unidirectional Traffic
new: [...151] [ip4][..tcp] [..192.168.2.126][45422] -> [..161.117.13.29][...80] [MIDSTREAM]
detected: [...151] [ip4][..tcp] [..192.168.2.126][45422] -> [..161.117.13.29][...80] [HTTP.1kxun][Unknown][Streaming][Fun][mangaweb.1kxun.mobi]
+ RISK: Unidirectional Traffic
new: [...152] [ip4][..tcp] [..192.168.2.126][45424] -> [..161.117.13.29][...80] [MIDSTREAM]
detected: [...152] [ip4][..tcp] [..192.168.2.126][45424] -> [..161.117.13.29][...80] [HTTP][Unknown][Streaming][Acceptable][tcad.wedolook.com]
- detection-update: [...151] [ip4][..tcp] [..192.168.2.126][45422] -> [..161.117.13.29][...80] [HTTP.1kxun][Unknown][Streaming][Fun][mangaweb.1kxun.mobi]
+ RISK: Unidirectional Traffic
new: [...153] [ip4][..tcp] [..192.168.2.126][41390] -> [....18.64.79.37][...80] [MIDSTREAM]
detected: [...153] [ip4][..tcp] [..192.168.2.126][41390] -> [....18.64.79.37][...80] [HTTP.Google][AmazonAWS][Web][Acceptable][google.open-js.com]
+ RISK: Unidirectional Traffic
analyse: [...146] [ip4][..tcp] [..192.168.2.126][45380] -> [..161.117.13.29][...80] [HTTP.1kxun][Unknown][Streaming][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.409| 0.085| 0.132| 17528.007| 3.300]
@@ -657,45 +677,31 @@
[ENTROPIES...: 5.9,7.7,7.8,5.9,7.6,7.9,8.0,8.0,7.9,7.9,7.9,5.9,7.8,8.0,7.9,7.9,8.0,7.9,7.9,7.9,8.0,7.9,7.8,7.9,7.8,7.8,7.9,7.9,7.9,7.9,7.9,7.9]
new: [...154] [ip4][..tcp] [..192.168.2.126][51888] -> [.119.28.164.143][...80] [MIDSTREAM]
detected: [...154] [ip4][..tcp] [..192.168.2.126][51888] -> [.119.28.164.143][...80] [HTTP][Tencent][Web][Acceptable][qzonestyle.gtimg.cn]
+ RISK: Unidirectional Traffic
new: [...155] [ip4][..tcp] [..192.168.2.126][38354] -> [.142.250.186.34][...80] [MIDSTREAM]
detected: [...155] [ip4][..tcp] [..192.168.2.126][38354] -> [.142.250.186.34][...80] [HTTP.Google][Google][Advertisement][Acceptable][pagead2.googlesyndication.com]
- detection-update: [...155] [ip4][..tcp] [..192.168.2.126][38354] -> [.142.250.186.34][...80] [HTTP.Google][Google][Advertisement][Acceptable][pagead2.googlesyndication.com]
+ RISK: Unidirectional Traffic
new: [...156] [ip4][..tcp] [..192.168.2.126][36732] -> [142.250.186.174][...80] [MIDSTREAM]
detected: [...156] [ip4][..tcp] [..192.168.2.126][36732] -> [142.250.186.174][...80] [HTTP.Google][Google][Advertisement][Acceptable][www.google-analytics.com]
+ RISK: Unidirectional Traffic
new: [...157] [ip4][..tcp] [..192.168.2.126][49354] -> [.14.136.136.108][...80] [MIDSTREAM]
detected: [...157] [ip4][..tcp] [..192.168.2.126][49354] -> [.14.136.136.108][...80] [HTTP.1kxun][Unknown][Streaming][Fun][hkbn.content.1kxun.com]
+ RISK: Unidirectional Traffic
new: [...158] [ip4][..tcp] [..192.168.2.126][49372] -> [.14.136.136.108][...80] [MIDSTREAM]
detected: [...158] [ip4][..tcp] [..192.168.2.126][49372] -> [.14.136.136.108][...80] [HTTP.1kxun][Unknown][Streaming][Fun][hkbn.content.1kxun.com]
+ RISK: Unidirectional Traffic
new: [...159] [ip4][..tcp] [..192.168.2.126][49370] -> [.14.136.136.108][...80] [MIDSTREAM]
detected: [...159] [ip4][..tcp] [..192.168.2.126][49370] -> [.14.136.136.108][...80] [HTTP.1kxun][Unknown][Streaming][Fun][hkbn.content.1kxun.com]
+ RISK: Unidirectional Traffic
new: [...160] [ip4][..tcp] [..192.168.2.126][49380] -> [.14.136.136.108][...80] [MIDSTREAM]
detected: [...160] [ip4][..tcp] [..192.168.2.126][49380] -> [.14.136.136.108][...80] [HTTP.1kxun][Unknown][Streaming][Fun][hkbn.content.1kxun.com]
+ RISK: Unidirectional Traffic
new: [...161] [ip4][..tcp] [..192.168.2.126][49412] -> [.14.136.136.108][...80] [MIDSTREAM]
detected: [...161] [ip4][..tcp] [..192.168.2.126][49412] -> [.14.136.136.108][...80] [HTTP.1kxun][Unknown][Streaming][Fun][hkbn.content.1kxun.com]
+ RISK: Unidirectional Traffic
new: [...162] [ip4][..tcp] [..192.168.2.126][49396] -> [.14.136.136.108][...80] [MIDSTREAM]
detected: [...162] [ip4][..tcp] [..192.168.2.126][49396] -> [.14.136.136.108][...80] [HTTP.1kxun][Unknown][Streaming][Fun][hkbn.content.1kxun.com]
- analyse: [...157] [ip4][..tcp] [..192.168.2.126][49354] -> [.14.136.136.108][...80] [HTTP.1kxun][Unknown][Streaming][Fun]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.832| 0.067| 0.169| 28718.203| 2.400]
- [PKTLEN......: 337.000|10132.000| 3104.200| 2492.500| 6212617.000| 4.600]
- [BINS(c->s)..: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 0,0,0,0,0,0,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,12,0,16]
- [DIRECTIONS..: 0,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,0,1,1,1,1,1,1,1,1,1,1,1,1]
- [IATS(ms)....: 207.0,0.4,1.1,0.7,203.5,0.4,0.5,0.8,0.4,1.2,0.0,0.6,204.0,0.5,1.9,0.0,0.0,0.8,831.8,413.6,0.0,1.5,1.6,0.4,0.9,201.6,0.4,0.6,1.0,0.9,0.4]
- [PKTLENS.....: 578,337,1492,8692,2932,1492,1492,2932,1492,1492,5812,4372,1492,1492,1492,5812,2932,2932,3942,578,337,1492,8692,10132,5812,2932,1492,1492,2932,4372,4372,1492]
- [ENTROPIES...: 5.8,5.8,7.8,8.0,7.9,7.8,7.9,7.9,7.9,7.9,8.0,8.0,7.9,7.9,7.9,8.0,7.9,7.9,8.0,5.9,5.8,7.8,8.0,8.0,8.0,7.9,7.9,7.9,7.9,8.0,8.0,7.9]
- detection-update: [...161] [ip4][..tcp] [..192.168.2.126][49412] -> [.14.136.136.108][...80] [HTTP.1kxun][Unknown][Streaming][Fun][hkbn.content.1kxun.com]
- detection-update: [...160] [ip4][..tcp] [..192.168.2.126][49380] -> [.14.136.136.108][...80] [HTTP.1kxun][Unknown][Streaming][Fun][hkbn.content.1kxun.com]
- analyse: [...159] [ip4][..tcp] [..192.168.2.126][49370] -> [.14.136.136.108][...80] [HTTP.1kxun][Unknown][Streaming][Fun]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.877| 0.070| 0.170| 28741.968| 2.600]
- [PKTLEN......: 337.000|15892.000| 2747.900| 3042.000| 9253907.000| 4.400]
- [BINS(c->s)..: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 0,0,0,0,0,0,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,17,0,10]
- [DIRECTIONS..: 0,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,0,1,1,1,1,1,1]
- [IATS(ms)....: 216.8,0.0,1.3,0.0,1.2,217.6,0.4,0.8,0.0,0.7,0.8,206.4,3.2,0.7,0.0,1.4,202.1,0.5,2.9,0.4,0.4,0.6,0.0,0.7,876.5,236.5,0.0,2.1,0.9,206.1,0.4]
- [PKTLENS.....: 566,337,1492,4372,1492,5812,1492,1492,1492,1492,1492,2932,1492,4372,2932,2932,8692,1492,1492,1492,1492,1492,1492,1492,1190,578,337,7252,15892,4372,1492,1492]
- [ENTROPIES...: 5.9,5.8,7.8,7.9,7.7,7.9,7.8,7.8,7.8,7.8,7.8,7.9,7.9,7.9,7.9,7.8,8.0,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,5.9,5.8,8.0,8.0,8.0,7.9,7.8]
+ RISK: Unidirectional Traffic
analyse: [...160] [ip4][..tcp] [..192.168.2.126][49380] -> [.14.136.136.108][...80] [HTTP.1kxun][Unknown][Streaming][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.887| 0.071| 0.171| 29312.068| 2.600]
@@ -718,16 +724,22 @@
[ENTROPIES...: 5.9,5.9,7.3,7.9,7.9,7.9,7.8,7.8,7.8,7.9,8.0,7.8,7.8,7.8,7.9,7.9,7.9,7.9,5.9,5.8,8.0,8.0,7.9,7.9,8.0,7.9,8.0,7.7,5.9,5.9,7.9,8.0]
new: [...163] [ip4][..tcp] [..192.168.2.126][44368] -> [..172.217.18.98][...80] [MIDSTREAM]
detected: [...163] [ip4][..tcp] [..192.168.2.126][44368] -> [..172.217.18.98][...80] [HTTP.GoogleServices][Google][Web][Acceptable][www.googletagservices.com]
+ RISK: Unidirectional Traffic
new: [...164] [ip4][..tcp] [..192.168.2.126][50140] -> [..161.117.13.29][...80] [MIDSTREAM]
detected: [...164] [ip4][..tcp] [..192.168.2.126][50140] -> [..161.117.13.29][...80] [HTTP.1kxun][Unknown][Streaming][Fun][mangaweb.1kxun.mobi]
+ RISK: Unidirectional Traffic
new: [...165] [ip4][..tcp] [..192.168.2.126][50148] -> [..161.117.13.29][...80] [MIDSTREAM]
detected: [...165] [ip4][..tcp] [..192.168.2.126][50148] -> [..161.117.13.29][...80] [HTTP.1kxun][Unknown][Streaming][Fun][mangaweb.1kxun.mobi]
+ RISK: Unidirectional Traffic
new: [...166] [ip4][..tcp] [..192.168.2.126][50164] -> [..161.117.13.29][...80] [MIDSTREAM]
detected: [...166] [ip4][..tcp] [..192.168.2.126][50164] -> [..161.117.13.29][...80] [HTTP.1kxun][Unknown][Streaming][Fun][mangaweb.1kxun.mobi]
+ RISK: Unidirectional Traffic
new: [...167] [ip4][..tcp] [..192.168.2.126][50166] -> [..161.117.13.29][...80] [MIDSTREAM]
detected: [...167] [ip4][..tcp] [..192.168.2.126][50166] -> [..161.117.13.29][...80] [HTTP.1kxun][Unknown][Streaming][Fun][mangaweb.1kxun.mobi]
+ RISK: Unidirectional Traffic
new: [...168] [ip4][..tcp] [..192.168.2.126][50176] -> [..161.117.13.29][...80] [MIDSTREAM]
detected: [...168] [ip4][..tcp] [..192.168.2.126][50176] -> [..161.117.13.29][...80] [HTTP.1kxun][Unknown][Streaming][Fun][mangaweb.1kxun.mobi]
+ RISK: Unidirectional Traffic
analyse: [...150] [ip4][..tcp] [..192.168.2.126][45416] -> [..161.117.13.29][...80] [HTTP.1kxun][Unknown][Streaming][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 6.045| 1.047| 1.982| 3926937.043| 3.000]
@@ -740,107 +752,95 @@
[ENTROPIES...: 5.9,7.8,7.9,8.0,7.9,8.0,7.9,7.9,8.0,7.9,7.9,7.9,8.0,8.0,8.0,5.9,6.4,5.9,7.5,5.9,6.2,5.9,6.5,5.8,6.5,6.8,5.8,6.4,7.8,7.9,5.8,6.9]
new: [...169] [ip4][..tcp] [..192.168.2.126][38326] -> [.172.105.121.82][...80] [MIDSTREAM]
detected: [...169] [ip4][..tcp] [..192.168.2.126][38326] -> [.172.105.121.82][...80] [HTTP.1kxun][Unknown][Streaming][Fun][pic.1kxun.com]
+ RISK: Unidirectional Traffic
new: [...170] [ip4][..tcp] [..192.168.2.126][38314] -> [.172.105.121.82][...80] [MIDSTREAM]
detected: [...170] [ip4][..tcp] [..192.168.2.126][38314] -> [.172.105.121.82][...80] [HTTP.1kxun][Unknown][Streaming][Fun][pic.1kxun.com]
+ RISK: Unidirectional Traffic
new: [...171] [ip4][..tcp] [..192.168.2.126][38316] -> [.172.105.121.82][...80] [MIDSTREAM]
detected: [...171] [ip4][..tcp] [..192.168.2.126][38316] -> [.172.105.121.82][...80] [HTTP.1kxun][Unknown][Streaming][Fun][pic.1kxun.com]
- analyse: [...141] [ip4][..tcp] [..192.168.2.126][46184] -> [.172.105.121.82][...80] [HTTP.1kxun][Unknown][Streaming][Fun]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 39.120| 2.623| 9.528| 90791657.603| 1.300]
- [PKTLEN......: 259.000|23092.000| 5187.300| 6479.700| 41986280.000| 4.100]
- [BINS(c->s)..: 0,0,0,0,0,0,4,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 0,0,0,0,0,0,0,0,0,0,4,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,7,0,16]
- [DIRECTIONS..: 0,1,1,1,1,1,1,1,1,1,1,0,1,1,1,0,1,1,1,1,1,1,1,1,1,1,0,1,1,1,1,1]
- [IATS(ms)....: 353.7,0.0,3.8,0.1,303.7,4.3,0.1,205.8,0.1,0.0,881.0,368.9,0.0,5.1,392.9,352.2,0.0,1.6,0.1,2.3,0.1,1.5,285.7,0.0,2.1,39119.7,38675.2,0.0,2.9,335.4,3.7]
- [PKTLENS.....: 264,372,1492,1492,10132,2932,2932,23092,1492,1492,1158,259,372,18772,7743,264,373,1492,21652,4372,17332,4372,10132,5812,1492,5145,259,374,1492,11572,2932,2932]
- [ENTROPIES...: 5.8,5.8,7.2,7.6,7.9,7.9,7.9,8.0,7.8,7.8,7.8,5.9,5.7,8.0,8.0,5.9,5.7,7.0,8.0,7.9,8.0,7.9,8.0,7.9,7.9,7.9,5.8,5.8,7.5,7.9,7.9,7.9]
- analyse: [...170] [ip4][..tcp] [..192.168.2.126][38314] -> [.172.105.121.82][...80] [HTTP.1kxun][Unknown][Streaming][Fun]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 1.361| 0.104| 0.261| 68009.685| 2.500]
- [PKTLEN......: 259.000|15892.000| 6030.500| 5319.900| 28301380.000| 4.400]
- [BINS(c->s)..: 0,0,0,0,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 0,0,0,0,0,0,0,0,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,7,0,21]
- [DIRECTIONS..: 0,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,0,1,1,1,1,1,1,1,1,1,1,1,1]
- [IATS(ms)....: 326.1,0.0,0.0,0.0,0.2,328.8,0.2,2.7,0.0,177.6,0.5,1.3,2.9,0.1,0.2,0.8,2.3,401.3,1361.5,293.5,0.0,1.1,2.1,2.8,0.1,0.2,2.8,309.6,0.0,0.0,1.5]
- [PKTLENS.....: 259,374,1492,1492,2932,7252,1492,8692,2932,15892,1492,1492,4372,13012,8692,2932,1492,15892,13186,259,374,1492,5812,15892,11572,10132,4372,14452,2932,2932,13012,4372]
- [ENTROPIES...: 5.9,5.7,7.5,7.9,7.9,7.9,7.8,8.0,7.9,8.0,7.8,7.8,7.9,7.9,7.9,7.9,7.8,8.0,8.0,5.8,5.7,7.5,7.9,8.0,7.9,7.9,7.9,7.9,7.9,7.9,7.9,7.9]
+ RISK: Unidirectional Traffic
new: [...172] [ip4][..tcp] [..192.168.2.126][59324] -> [.104.117.221.10][...80] [MIDSTREAM]
detected: [...172] [ip4][..tcp] [..192.168.2.126][59324] -> [.104.117.221.10][...80] [HTTP][Unknown][Web][Acceptable][m.vpon.com]
+ RISK: Unidirectional Traffic
new: [...173] [ip4][..tcp] [..192.168.2.126][56094] -> [....3.72.69.158][...80] [MIDSTREAM]
detected: [...173] [ip4][..tcp] [..192.168.2.126][56094] -> [....3.72.69.158][...80] [HTTP][AmazonAWS][Web][Acceptable][setting.rayjump.com]
+ RISK: Unidirectional Traffic
new: [...174] [ip4][..tcp] [..192.168.2.126][56098] -> [....3.72.69.158][...80] [MIDSTREAM]
detected: [...174] [ip4][..tcp] [..192.168.2.126][56098] -> [....3.72.69.158][...80] [HTTP][AmazonAWS][Web][Acceptable][setting.rayjump.com]
+ RISK: Unidirectional Traffic
new: [...175] [ip4][..tcp] [..192.168.2.126][56096] -> [....3.72.69.158][...80] [MIDSTREAM]
detected: [...175] [ip4][..tcp] [..192.168.2.126][56096] -> [....3.72.69.158][...80] [HTTP][AmazonAWS][Web][Acceptable][setting.rayjump.com]
+ RISK: Unidirectional Traffic
new: [...176] [ip4][..tcp] [..192.168.2.126][56104] -> [....3.72.69.158][...80] [MIDSTREAM]
detected: [...176] [ip4][..tcp] [..192.168.2.126][56104] -> [....3.72.69.158][...80] [HTTP][AmazonAWS][Web][Acceptable][setting.rayjump.com]
+ RISK: Unidirectional Traffic
new: [...177] [ip4][..tcp] [..192.168.2.126][43266] -> [....18.64.79.58][...80] [MIDSTREAM]
detected: [...177] [ip4][..tcp] [..192.168.2.126][43266] -> [....18.64.79.58][...80] [HTTP][AmazonAWS][Web][Acceptable][net.rayjump.com]
+ RISK: Unidirectional Traffic
new: [...178] [ip4][..tcp] [..192.168.2.126][56826] -> [...8.209.97.107][...80] [MIDSTREAM]
detected: [...178] [ip4][..tcp] [..192.168.2.126][56826] -> [...8.209.97.107][...80] [HTTP][Unknown][Web][Acceptable][analytics.rayjump.com]
+ RISK: Unidirectional Traffic
new: [...179] [ip4][..tcp] [..192.168.2.126][43272] -> [....18.64.79.58][...80] [MIDSTREAM]
detected: [...179] [ip4][..tcp] [..192.168.2.126][43272] -> [....18.64.79.58][...80] [HTTP][AmazonAWS][Web][Acceptable][net.rayjump.com]
+ RISK: Unidirectional Traffic
new: [...180] [ip4][..tcp] [..192.168.2.126][58758] -> [.202.153.196.53][...80] [MIDSTREAM]
detected: [...180] [ip4][..tcp] [..192.168.2.126][58758] -> [.202.153.196.53][...80] [HTTP][Unknown][Web][Acceptable][tw.api.vpon.com]
+ RISK: Unidirectional Traffic
new: [...181] [ip4][..tcp] [..192.168.2.126][58760] -> [.202.153.196.53][...80] [MIDSTREAM]
detected: [...181] [ip4][..tcp] [..192.168.2.126][58760] -> [.202.153.196.53][...80] [HTTP][Unknown][Web][Acceptable][tw.api.vpon.com]
+ RISK: Unidirectional Traffic
new: [...182] [ip4][..tcp] [..192.168.2.126][35664] -> [.....18.66.2.90][...80] [MIDSTREAM]
detected: [...182] [ip4][..tcp] [..192.168.2.126][35664] -> [.....18.66.2.90][...80] [HTTP][AmazonAWS][Web][Acceptable][cdn.liftoff.io]
+ RISK: Unidirectional Traffic
new: [...183] [ip4][..tcp] [..192.168.2.126][35666] -> [.....18.66.2.90][...80] [MIDSTREAM]
detected: [...183] [ip4][..tcp] [..192.168.2.126][35666] -> [.....18.66.2.90][...80] [HTTP.MpegDash][AmazonAWS][Media][Fun][cdn.liftoff.io]
+ RISK: Unidirectional Traffic
new: [...184] [ip4][..tcp] [..192.168.2.126][36636] -> [...18.64.103.30][...80] [MIDSTREAM]
detected: [...184] [ip4][..tcp] [..192.168.2.126][36636] -> [...18.64.103.30][...80] [HTTP][AmazonAWS][Web][Acceptable][hybird.rayjump.com]
+ RISK: Unidirectional Traffic
new: [...185] [ip4][..tcp] [..192.168.2.126][36640] -> [...18.64.103.30][...80] [MIDSTREAM]
detected: [...185] [ip4][..tcp] [..192.168.2.126][36640] -> [...18.64.103.30][...80] [HTTP][AmazonAWS][Web][Acceptable][hybird.rayjump.com]
+ RISK: Unidirectional Traffic
new: [...186] [ip4][..tcp] [..192.168.2.126][36654] -> [...18.64.103.30][...80] [MIDSTREAM]
detected: [...186] [ip4][..tcp] [..192.168.2.126][36654] -> [...18.64.103.30][...80] [HTTP][AmazonAWS][Web][Acceptable][hybird.rayjump.com]
- detection-update: [...184] [ip4][..tcp] [..192.168.2.126][36636] -> [...18.64.103.30][...80] [HTTP][AmazonAWS][Web][Acceptable][hybird.rayjump.com]
- detection-update: [...185] [ip4][..tcp] [..192.168.2.126][36640] -> [...18.64.103.30][...80] [HTTP][AmazonAWS][Web][Acceptable][hybird.rayjump.com]
- detection-update: [...186] [ip4][..tcp] [..192.168.2.126][36654] -> [...18.64.103.30][...80] [HTTP][AmazonAWS][Web][Acceptable][hybird.rayjump.com]
+ RISK: Unidirectional Traffic
new: [...187] [ip4][..tcp] [..192.168.2.126][36660] -> [...18.64.103.30][...80] [MIDSTREAM]
detected: [...187] [ip4][..tcp] [..192.168.2.126][36660] -> [...18.64.103.30][...80] [HTTP][AmazonAWS][Web][Acceptable][hybird.rayjump.com]
- analyse: [...182] [ip4][..tcp] [..192.168.2.126][35664] -> [.....18.66.2.90][...80] [HTTP][AmazonAWS][Web][Acceptable]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.015| 0.002| 0.003| 10.155| 3.800]
- [PKTLEN......: 235.000| 7192.000| 4096.800| 1776.800| 3156934.000| 4.800]
- [BINS(c->s)..: 0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,3,0,0,27]
- [DIRECTIONS..: 0,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1]
- [IATS(ms)....: 14.9,0.6,0.6,2.5,0.0,0.0,3.6,0.1,0.9,0.0,2.5,9.2,0.0,0.1,6.5,0.1,1.6,3.0,1.6,0.1,1.5,0.1,0.1,2.8,6.5,3.1,0.0,2.4,1.8,2.8,0.1]
- [PKTLENS.....: 235,783,1480,2908,4336,4336,4336,4336,2908,1480,4336,4336,2908,4336,4336,2908,4336,5764,5764,5764,5764,4336,5764,1480,5764,4336,2908,7192,4336,7192,7192,2908]
- [ENTROPIES...: 6.0,5.8,7.2,7.3,7.2,7.5,7.7,7.9,7.8,7.9,7.8,7.9,7.9,7.9,7.9,7.9,7.9,7.9,7.9,7.9,7.9,7.9,7.9,7.8,7.8,7.9,7.9,7.9,7.8,7.9,7.8,7.8]
- detection-update: [...187] [ip4][..tcp] [..192.168.2.126][36660] -> [...18.64.103.30][...80] [HTTP][AmazonAWS][Web][Acceptable][hybird.rayjump.com]
- analyse: [...185] [ip4][..tcp] [..192.168.2.126][36640] -> [...18.64.103.30][...80] [HTTP][AmazonAWS][Web][Acceptable]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.021| 0.003| 0.005| 21.513| 3.600]
- [PKTLEN......: 549.000| 5764.000| 3459.000| 1697.900| 2882863.000| 4.800]
- [BINS(c->s)..: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,9,0,1,21]
- [DIRECTIONS..: 0,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1]
- [IATS(ms)....: 21.0,0.2,0.0,0.1,0.0,3.1,0.0,1.7,3.1,15.8,2.2,0.0,2.0,2.7,0.1,1.5,0.6,2.9,1.6,1.5,0.1,0.0,0.1,3.5,1.6,2.8,10.5,1.4,0.1,0.0,1.6]
- [PKTLENS.....: 549,1480,1480,2908,1480,2908,1480,4336,4336,4336,2908,1480,4336,1480,4336,4336,4336,5764,5764,4336,1480,1480,1480,4336,5764,5764,3200,4188,5576,1524,5764,5764]
- [ENTROPIES...: 5.8,7.8,7.8,7.9,7.8,7.9,7.9,7.9,8.0,8.0,7.9,7.9,7.9,7.8,7.9,8.0,7.9,8.0,8.0,7.9,7.8,7.8,7.8,7.9,8.0,8.0,7.9,7.9,8.0,7.9,8.0,8.0]
+ RISK: Unidirectional Traffic
new: [...188] [ip4][..tcp] [..192.168.2.126][37100] -> [..52.29.177.177][...80] [MIDSTREAM]
detected: [...188] [ip4][..tcp] [..192.168.2.126][37100] -> [..52.29.177.177][...80] [HTTP][AmazonAWS][Web][Acceptable][]
+ RISK: HTTP Susp User-Agent, Unidirectional Traffic
new: [...189] [ip4][..tcp] [..192.168.2.126][42554] -> [...35.156.44.13][...80] [MIDSTREAM]
detected: [...189] [ip4][..tcp] [..192.168.2.126][42554] -> [...35.156.44.13][...80] [HTTP][AmazonAWS][Web][Acceptable][de01.rayjump.com]
+ RISK: Unidirectional Traffic
+ detection-update: [...188] [ip4][..tcp] [..192.168.2.126][37100] -> [..52.29.177.177][...80] [HTTP][AmazonAWS][Web][Acceptable][adx-tk.rayjump.com]
+ RISK: Unidirectional Traffic
new: [...190] [ip4][..tcp] [..192.168.2.126][42566] -> [...35.156.44.13][...80] [MIDSTREAM]
detected: [...190] [ip4][..tcp] [..192.168.2.126][42566] -> [...35.156.44.13][...80] [HTTP][AmazonAWS][Web][Acceptable][]
+ RISK: Unidirectional Traffic
new: [...191] [ip4][..tcp] [..192.168.2.126][41940] -> [....18.64.79.50][...80] [MIDSTREAM]
detected: [...191] [ip4][..tcp] [..192.168.2.126][41940] -> [....18.64.79.50][...80] [HTTP][AmazonAWS][Web][Acceptable][tknet-cdn.rayjump.com]
+ RISK: Unidirectional Traffic
detection-update: [...190] [ip4][..tcp] [..192.168.2.126][42566] -> [...35.156.44.13][...80] [HTTP][AmazonAWS][Web][Acceptable][de01.rayjump.com]
+ RISK: Unidirectional Traffic
new: [...192] [ip4][..tcp] [..192.168.2.126][54810] -> [..18.233.123.55][...80] [MIDSTREAM]
detected: [...192] [ip4][..tcp] [..192.168.2.126][54810] -> [..18.233.123.55][...80] [HTTP][AmazonAWS][Web][Acceptable][impression-east.liftoff.io]
+ RISK: Unidirectional Traffic
new: [...193] [ip4][..tcp] [..192.168.2.126][40204] -> [...18.235.204.9][...80] [MIDSTREAM]
detected: [...193] [ip4][..tcp] [..192.168.2.126][40204] -> [...18.235.204.9][...80] [HTTP][AmazonAWS][Web][Acceptable][adexp.liftoff.io]
+ RISK: Unidirectional Traffic
new: [...194] [ip4][..tcp] [..192.168.2.126][53416] -> [.172.217.16.142][...80] [MIDSTREAM]
detected: [...194] [ip4][..tcp] [..192.168.2.126][53416] -> [.172.217.16.142][...80] [HTTP.Google][Google][Web][Acceptable][play.google.com]
+ RISK: Unidirectional Traffic
new: [...195] [ip4][..tcp] [..192.168.2.126][33042] -> [...3.122.190.70][...80] [MIDSTREAM]
detected: [...195] [ip4][..tcp] [..192.168.2.126][33042] -> [...3.122.190.70][...80] [HTTP][AmazonAWS][Web][Acceptable][click.liftoff.io]
+ RISK: Unidirectional Traffic
new: [...196] [ip4][..tcp] [..192.168.2.126][35426] -> [..8.209.112.118][...80] [MIDSTREAM]
detected: [...196] [ip4][..tcp] [..192.168.2.126][35426] -> [..8.209.112.118][...80] [HTTP][Unknown][Web][Acceptable][analytics.rayjump.com]
+ RISK: Unidirectional Traffic
new: [...197] [ip4][..tcp] [..192.168.2.126][51686] -> [....18.64.79.64][...80] [MIDSTREAM]
detected: [...197] [ip4][..tcp] [..192.168.2.126][51686] -> [....18.64.79.64][...80] [HTTP][AmazonAWS][Web][Acceptable][net.rayjump.com]
+ RISK: Unidirectional Traffic
idle: [...147] [ip4][..tcp] [..192.168.2.126][45388] -> [..161.117.13.29][...80] [HTTP.1kxun][Unknown][Streaming][Fun]
idle: [...148] [ip4][..tcp] [..192.168.2.126][45398] -> [..161.117.13.29][...80] [HTTP.1kxun][Unknown][Streaming][Fun]
idle: [...163] [ip4][..tcp] [..192.168.2.126][44368] -> [..172.217.18.98][...80] [HTTP.GoogleServices][Google][Web][Acceptable]
@@ -868,6 +868,7 @@
idle: [...160] [ip4][..tcp] [..192.168.2.126][49380] -> [.14.136.136.108][...80] [HTTP.1kxun][Unknown][Streaming][Fun]
idle: [...162] [ip4][..tcp] [..192.168.2.126][49396] -> [.14.136.136.108][...80] [HTTP.1kxun][Unknown][Streaming][Fun]
idle: [...140] [ip4][..tcp] [..192.168.2.126][49242] -> [.172.104.119.80][...80] [HTTP.1kxun][Unknown][Streaming][Fun]
+ RISK: Error Code
idle: [...161] [ip4][..tcp] [..192.168.2.126][49412] -> [.14.136.136.108][...80] [HTTP.1kxun][Unknown][Streaming][Fun]
idle: [...177] [ip4][..tcp] [..192.168.2.126][43266] -> [....18.64.79.58][...80]
idle: [...179] [ip4][..tcp] [..192.168.2.126][43272] -> [....18.64.79.58][...80] [HTTP][AmazonAWS][Web][Acceptable]
@@ -899,11 +900,13 @@
idle: [...139] [ip4][..tcp] [..192.168.2.126][60148] -> [.172.105.121.82][...80] [HTTP.1kxun][Unknown][Streaming][Fun]
idle: [...172] [ip4][..tcp] [..192.168.2.126][59324] -> [.104.117.221.10][...80] [HTTP][Unknown][Web][Acceptable]
idle: [...138] [ip4][..tcp] [..192.168.2.126][38834] -> [..119.45.78.184][...80] [HTTP.QQ][Tencent][Chat][Fun]
+ RISK: HTTP Susp User-Agent, Error Code
idle: [...182] [ip4][..tcp] [..192.168.2.126][35664] -> [.....18.66.2.90][...80] [HTTP][AmazonAWS][Web][Acceptable]
idle: [...183] [ip4][..tcp] [..192.168.2.126][35666] -> [.....18.66.2.90][...80]
idle: [...142] [ip4][..tcp] [..192.168.2.126][46170] -> [.172.105.121.82][...80] [HTTP.1kxun][Unknown][Streaming][Fun]
idle: [...141] [ip4][..tcp] [..192.168.2.126][46184] -> [.172.105.121.82][...80] [HTTP.1kxun][Unknown][Streaming][Fun]
- idle: [...133] [ip4][..tcp] [..192.168.2.126][47230] -> [..161.117.13.29][...80] [HTTP.1kxun][Unknown][Streaming][Fun]
+ idle: [...133] [ip4][..tcp] [..192.168.2.126][47230] -> [..161.117.13.29][...80] [HTTP.1kxun][Unknown][Download][Fun]
+ RISK: Binary App Transfer
idle: [...188] [ip4][..tcp] [..192.168.2.126][37100] -> [..52.29.177.177][...80] [HTTP][AmazonAWS][Web][Acceptable]
idle: [...143] [ip4][..tcp] [..192.168.2.126][46200] -> [.172.105.121.82][...80] [HTTP.1kxun][Unknown][Streaming][Fun]
idle: [...135] [ip4][..tcp] [..192.168.2.126][47246] -> [..161.117.13.29][...80] [HTTP.1kxun][Unknown][Streaming][Fun]
diff --git a/test/results/flow-info/443-chrome.pcap.out b/test/results/flow-info/default/443-chrome.pcap.out
index 4f99ddf98..b7bd2f569 100644
--- a/test/results/flow-info/443-chrome.pcap.out
+++ b/test/results/flow-info/default/443-chrome.pcap.out
@@ -3,5 +3,6 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [.178.62.197.130][..443] -> [...192.168.1.13][53059] [MIDSTREAM]
guessed: [.....1] [ip4][..tcp] [.178.62.197.130][..443] -> [...192.168.1.13][53059] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..tcp] [.178.62.197.130][..443] -> [...192.168.1.13][53059]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/443-curl.pcap.out b/test/results/flow-info/default/443-curl.pcap.out
index 6d4128d5d..6d4128d5d 100644
--- a/test/results/flow-info/443-curl.pcap.out
+++ b/test/results/flow-info/default/443-curl.pcap.out
diff --git a/test/results/flow-info/443-firefox.pcap.out b/test/results/flow-info/default/443-firefox.pcap.out
index ae545d3f8..ae545d3f8 100644
--- a/test/results/flow-info/443-firefox.pcap.out
+++ b/test/results/flow-info/default/443-firefox.pcap.out
diff --git a/test/results/flow-info/443-git.pcap.out b/test/results/flow-info/default/443-git.pcap.out
index 79111fb10..79111fb10 100644
--- a/test/results/flow-info/443-git.pcap.out
+++ b/test/results/flow-info/default/443-git.pcap.out
diff --git a/test/results/flow-info/443-opvn.pcap.out b/test/results/flow-info/default/443-opvn.pcap.out
index 8cbc8cec5..8cbc8cec5 100644
--- a/test/results/flow-info/443-opvn.pcap.out
+++ b/test/results/flow-info/default/443-opvn.pcap.out
diff --git a/test/results/flow-info/443-safari.pcap.out b/test/results/flow-info/default/443-safari.pcap.out
index e7957f1d6..e7957f1d6 100644
--- a/test/results/flow-info/443-safari.pcap.out
+++ b/test/results/flow-info/default/443-safari.pcap.out
diff --git a/test/results/flow-info/4in4tunnel.pcap.out b/test/results/flow-info/default/4in4tunnel.pcap.out
index fd6213bcf..fd6213bcf 100644
--- a/test/results/flow-info/4in4tunnel.pcap.out
+++ b/test/results/flow-info/default/4in4tunnel.pcap.out
diff --git a/test/results/flow-info/4in6tunnel.pcap.out b/test/results/flow-info/default/4in6tunnel.pcap.out
index 87771d624..63fc5a99b 100644
--- a/test/results/flow-info/4in6tunnel.pcap.out
+++ b/test/results/flow-info/default/4in6tunnel.pcap.out
@@ -3,5 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip6][....4] [22e0:1685:eda7:38cc:58bd:f3f1:aa3f:22d8] -> [................344a:ba94:152a:ac34::2a]
detected: [.....1] [ip6][....4] [22e0:1685:eda7:38cc:58bd:f3f1:aa3f:22d8] -> [................344a:ba94:152a:ac34::2a] [IP_in_IP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip6][....4] [22e0:1685:eda7:38cc:58bd:f3f1:aa3f:22d8] -> [................344a:ba94:152a:ac34::2a] [IP_in_IP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/6in4tunnel.pcap.out b/test/results/flow-info/default/6in4tunnel.pcap.out
index 7882ce469..7882ce469 100644
--- a/test/results/flow-info/6in4tunnel.pcap.out
+++ b/test/results/flow-info/default/6in4tunnel.pcap.out
diff --git a/test/results/flow-info/6in6tunnel.pcap.out b/test/results/flow-info/default/6in6tunnel.pcap.out
index 55e398e68..3a7b7928a 100644
--- a/test/results/flow-info/6in6tunnel.pcap.out
+++ b/test/results/flow-info/default/6in6tunnel.pcap.out
@@ -4,7 +4,9 @@
new: [.....1] [ip6][...41] [........2001:4f8:4:7:2e0:81ff:fe52:ffff] -> [........2001:4f8:4:7:2e0:81ff:fe52:9a6b]
new: [.....2] [ip6][...41] [.............................feed::beef] -> [.............................feed::cafe]
not-detected: [.....1] [ip6][...41] [........2001:4f8:4:7:2e0:81ff:fe52:ffff] -> [........2001:4f8:4:7:2e0:81ff:fe52:9a6b] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip6][...41] [........2001:4f8:4:7:2e0:81ff:fe52:ffff] -> [........2001:4f8:4:7:2e0:81ff:fe52:9a6b]
not-detected: [.....2] [ip6][...41] [.............................feed::beef] -> [.............................feed::cafe] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip6][...41] [.............................feed::beef] -> [.............................feed::cafe]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/BGP_Cisco_hdlc_slarp.pcap.out b/test/results/flow-info/default/BGP_Cisco_hdlc_slarp.pcap.out
index fb752e711..fb752e711 100644
--- a/test/results/flow-info/BGP_Cisco_hdlc_slarp.pcap.out
+++ b/test/results/flow-info/default/BGP_Cisco_hdlc_slarp.pcap.out
diff --git a/test/results/flow-info/BGP_redist.pcap.out b/test/results/flow-info/default/BGP_redist.pcap.out
index 36d92703c..e81281a10 100644
--- a/test/results/flow-info/BGP_redist.pcap.out
+++ b/test/results/flow-info/default/BGP_redist.pcap.out
@@ -4,5 +4,7 @@
ERROR-EVENT: Unknown L3 protocol [1/16]
new: [.....1] [ip4][..tcp] [........2.2.2.2][..179] -> [........5.5.5.5][49433] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [........2.2.2.2][..179] -> [........5.5.5.5][49433] [BGP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..tcp] [........2.2.2.2][..179] -> [........5.5.5.5][49433] [BGP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/EAQ.pcap.out b/test/results/flow-info/default/EAQ.pcap.out
index 4dbef5975..a0e85af3c 100644
--- a/test/results/flow-info/EAQ.pcap.out
+++ b/test/results/flow-info/default/EAQ.pcap.out
@@ -3,10 +3,10 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [.......10.8.0.1][53497] -> [.173.194.119.48][...80]
detected: [.....1] [ip4][..tcp] [.......10.8.0.1][53497] -> [.173.194.119.48][...80] [HTTP.Google][Google][Web][Acceptable][www.google.com]
- RISK: HTTP Suspicious User-Agent
+ RISK: HTTP Susp User-Agent
new: [.....2] [ip4][..tcp] [.......10.8.0.1][40467] -> [.173.194.119.24][...80]
detected: [.....2] [ip4][..tcp] [.......10.8.0.1][40467] -> [.173.194.119.24][...80] [HTTP.Google][Google][Web][Acceptable][www.google.com.br]
- RISK: HTTP Suspicious User-Agent
+ RISK: HTTP Susp User-Agent
new: [.....3] [ip4][..udp] [.......10.8.0.1][52257] -> [200.185.138.146][.6000]
new: [.....4] [ip4][..udp] [.......10.8.0.1][48890] -> [200.185.125.226][.6000]
new: [.....5] [ip4][..udp] [.......10.8.0.1][51569] -> [.200.194.148.67][.6000]
@@ -68,11 +68,17 @@
update: [....16] [ip4][..udp] [.......10.8.0.1][43979] -> [.200.194.132.66][.6000] [EAQ][Unknown][Network][Acceptable]
update: [....13] [ip4][..udp] [.......10.8.0.1][37985] -> [.200.194.129.67][.6000]
detected: [.....6] [ip4][..udp] [.......10.8.0.1][41438] -> [.200.194.141.66][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
detected: [.....9] [ip4][..udp] [.......10.8.0.1][34687] -> [.200.194.141.68][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
detected: [....10] [ip4][..udp] [.......10.8.0.1][39221] -> [.200.194.137.67][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
detected: [....11] [ip4][..udp] [.......10.8.0.1][53354] -> [.200.194.137.66][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
detected: [....12] [ip4][..udp] [.......10.8.0.1][59959] -> [.200.194.137.68][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
detected: [....13] [ip4][..udp] [.......10.8.0.1][37985] -> [.200.194.129.67][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....26] [ip4][..udp] [.......10.8.0.1][59098] -> [.200.194.134.68][.6000]
update: [....28] [ip4][..udp] [.......10.8.0.1][36577] -> [.200.194.149.68][.6000]
update: [....30] [ip4][..udp] [.......10.8.0.1][33356] -> [.200.194.149.66][.6000]
@@ -80,51 +86,87 @@
update: [....27] [ip4][..udp] [.......10.8.0.1][50175] -> [.200.194.149.67][.6000]
update: [....31] [ip4][..udp] [.......10.8.0.1][40058] -> [.200.194.134.67][.6000]
detected: [....14] [ip4][..udp] [.......10.8.0.1][48666] -> [.200.194.129.66][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
detected: [....15] [ip4][..udp] [.......10.8.0.1][47714] -> [.200.194.129.68][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
detected: [....17] [ip4][..udp] [.......10.8.0.1][48563] -> [.200.194.141.67][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
detected: [....20] [ip4][..udp] [.......10.8.0.1][56128] -> [.200.194.133.66][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
detected: [....21] [ip4][..udp] [.......10.8.0.1][57004] -> [.200.194.133.67][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
detected: [....23] [ip4][..udp] [.......10.8.0.1][36552] -> [.200.194.136.66][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
detected: [....22] [ip4][..udp] [.......10.8.0.1][53059] -> [.200.194.133.68][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
detected: [....24] [ip4][..udp] [.......10.8.0.1][43934] -> [.200.194.136.68][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
detected: [....25] [ip4][..udp] [.......10.8.0.1][47346] -> [.200.194.134.66][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
detected: [....26] [ip4][..udp] [.......10.8.0.1][59098] -> [.200.194.134.68][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
detected: [....27] [ip4][..udp] [.......10.8.0.1][50175] -> [.200.194.149.67][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
detected: [....28] [ip4][..udp] [.......10.8.0.1][36577] -> [.200.194.149.68][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
detected: [....29] [ip4][..udp] [.......10.8.0.1][60013] -> [.200.194.136.67][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
detected: [....30] [ip4][..udp] [.......10.8.0.1][33356] -> [.200.194.149.66][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
detected: [....31] [ip4][..udp] [.......10.8.0.1][40058] -> [.200.194.134.67][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....17] [ip4][..udp] [.......10.8.0.1][48563] -> [.200.194.141.67][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....19] [ip4][..udp] [.......10.8.0.1][52726] -> [.200.194.132.68][.6000] [EAQ][Unknown][Network][Acceptable]
idle: [.....4] [ip4][..udp] [.......10.8.0.1][48890] -> [200.185.125.226][.6000] [EAQ][Unknown][Network][Acceptable]
idle: [....14] [ip4][..udp] [.......10.8.0.1][48666] -> [.200.194.129.66][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....7] [ip4][..udp] [.......10.8.0.1][42620] -> [.200.194.148.66][.6000] [EAQ][Unknown][Network][Acceptable]
idle: [....21] [ip4][..udp] [.......10.8.0.1][57004] -> [.200.194.133.67][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....23] [ip4][..udp] [.......10.8.0.1][36552] -> [.200.194.136.66][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
end: [.....2] [ip4][..tcp] [.......10.8.0.1][40467] -> [.173.194.119.24][...80] [HTTP.Google][Google][Web][Acceptable]
- RISK: HTTP Suspicious User-Agent
+ RISK: HTTP Susp User-Agent
idle: [....26] [ip4][..udp] [.......10.8.0.1][59098] -> [.200.194.134.68][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....28] [ip4][..udp] [.......10.8.0.1][36577] -> [.200.194.149.68][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....22] [ip4][..udp] [.......10.8.0.1][53059] -> [.200.194.133.68][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....9] [ip4][..udp] [.......10.8.0.1][34687] -> [.200.194.141.68][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....11] [ip4][..udp] [.......10.8.0.1][53354] -> [.200.194.137.66][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....25] [ip4][..udp] [.......10.8.0.1][47346] -> [.200.194.134.66][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....18] [ip4][..udp] [.......10.8.0.1][39185] -> [.200.194.132.67][.6000] [EAQ][Unknown][Network][Acceptable]
idle: [....10] [ip4][..udp] [.......10.8.0.1][39221] -> [.200.194.137.67][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....5] [ip4][..udp] [.......10.8.0.1][51569] -> [.200.194.148.67][.6000] [EAQ][Unknown][Network][Acceptable]
end: [.....1] [ip4][..tcp] [.......10.8.0.1][53497] -> [.173.194.119.48][...80] [HTTP.Google][Google][Web][Acceptable]
- RISK: HTTP Suspicious User-Agent
+ RISK: HTTP Susp User-Agent
idle: [.....6] [ip4][..udp] [.......10.8.0.1][41438] -> [.200.194.141.66][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....12] [ip4][..udp] [.......10.8.0.1][59959] -> [.200.194.137.68][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....30] [ip4][..udp] [.......10.8.0.1][33356] -> [.200.194.149.66][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....15] [ip4][..udp] [.......10.8.0.1][47714] -> [.200.194.129.68][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....29] [ip4][..udp] [.......10.8.0.1][60013] -> [.200.194.136.67][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....8] [ip4][..udp] [.......10.8.0.1][43641] -> [.200.194.148.68][.6000] [EAQ][Unknown][Network][Acceptable]
idle: [.....3] [ip4][..udp] [.......10.8.0.1][52257] -> [200.185.138.146][.6000] [EAQ][Unknown][Network][Acceptable]
idle: [....20] [ip4][..udp] [.......10.8.0.1][56128] -> [.200.194.133.66][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....24] [ip4][..udp] [.......10.8.0.1][43934] -> [.200.194.136.68][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....16] [ip4][..udp] [.......10.8.0.1][43979] -> [.200.194.132.66][.6000] [EAQ][Unknown][Network][Acceptable]
idle: [....27] [ip4][..udp] [.......10.8.0.1][50175] -> [.200.194.149.67][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....13] [ip4][..udp] [.......10.8.0.1][37985] -> [.200.194.129.67][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....31] [ip4][..udp] [.......10.8.0.1][40058] -> [.200.194.134.67][.6000] [EAQ][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/FAX-Call-t38-CA-TDM-SIP-FB-1.pcap.out b/test/results/flow-info/default/FAX-Call-t38-CA-TDM-SIP-FB-1.pcap.out
index 504a8ca7e..8eea83ba1 100644
--- a/test/results/flow-info/FAX-Call-t38-CA-TDM-SIP-FB-1.pcap.out
+++ b/test/results/flow-info/default/FAX-Call-t38-CA-TDM-SIP-FB-1.pcap.out
@@ -3,12 +3,16 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [....10.35.40.22][.2944] -> [.....10.23.1.42][.2944]
detected: [.....1] [ip4][..udp] [....10.35.40.22][.2944] -> [.....10.23.1.42][.2944] [Megaco][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..udp] [....10.35.60.72][.5060] -> [...10.35.60.100][.5060]
detected: [.....2] [ip4][..udp] [....10.35.60.72][.5060] -> [...10.35.60.100][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..udp] [....10.35.40.25][.5060] -> [...10.35.40.200][.5060]
detected: [.....3] [ip4][..udp] [....10.35.40.25][.5060] -> [...10.35.40.200][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..udp] [138.132.169.101][.5060] -> [192.168.100.219][.5060]
detected: [.....4] [ip4][..udp] [138.132.169.101][.5060] -> [192.168.100.219][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
analyse: [.....1] [ip4][..udp] [....10.35.40.22][.2944] -> [.....10.23.1.42][.2944] [Megaco][Unknown][VoIP][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 4.370| 1.692| 2.031| 4125948.903| 3.700]
@@ -32,6 +36,7 @@
[PKTLENS.....: 200,200,200,200,200,200,200,200,200,200,200,200,200,200,200,200,200,200,200,200,200,200,200,200,200,200,200,200,200,200,200,200]
[ENTROPIES...: 1.7,1.7,1.7,1.7,1.7,1.7,1.7,1.7,1.7,1.7,1.7,2.4,2.4,2.4,2.5,2.4,2.5,2.5,2.5,2.5,2.5,2.4,2.4,2.4,2.4,2.5,2.5,2.5,2.5,2.4,2.4,2.5]
update: [.....1] [ip4][..udp] [....10.35.40.22][.2944] -> [.....10.23.1.42][.2944] [Megaco][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
analyse: [.....3] [ip4][..udp] [....10.35.40.25][.5060] -> [...10.35.40.200][.5060] [SIP][Unknown][VoIP][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 27.628| 2.809| 6.896| 47549159.309| 2.500]
@@ -42,14 +47,22 @@
[IATS(ms)....: 1.4,6.0,0.3,162.7,0.4,6673.1,0.7,6843.3,0.4,2041.5,0.8,2040.7,0.3,12.4,0.7,131.8,0.4,27628.4,0.4,27585.5,0.5,6913.8,0.7,6841.3,0.3,84.0,0.4,88.1,0.4,19.8,1.0]
[PKTLENS.....: 905,905,290,290,474,474,811,811,438,438,880,880,411,411,779,779,479,479,446,446,558,558,832,832,350,350,461,461,438,438,909,909]
[ENTROPIES...: 5.7,5.7,5.6,5.6,5.6,5.6,5.7,5.7,5.6,5.6,5.7,5.7,5.6,5.6,5.8,5.8,5.6,5.6,5.6,5.6,5.7,5.7,5.7,5.7,5.6,5.6,5.6,5.6,5.6,5.6,5.7,5.7]
+ update: [.....5] [ip4][..udp] [...10.35.60.100][15580] -> [.....10.23.1.52][16756] [RTP][Unknown][Media][Acceptable]
update: [.....4] [ip4][..udp] [138.132.169.101][.5060] -> [192.168.100.219][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....2] [ip4][..udp] [....10.35.60.72][.5060] -> [...10.35.60.100][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [....10.35.40.25][.5060] -> [...10.35.40.200][.5060] [SIP][Unknown][VoIP][Acceptable]
- update: [.....5] [ip4][..udp] [...10.35.60.100][15580] -> [.....10.23.1.52][16756] [RTP][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [....10.35.40.22][.2944] -> [.....10.23.1.42][.2944] [Megaco][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....5] [ip4][..udp] [...10.35.60.100][15580] -> [.....10.23.1.52][16756] [RTP][Unknown][Media][Acceptable]
idle: [.....1] [ip4][..udp] [....10.35.40.22][.2944] -> [.....10.23.1.42][.2944] [Megaco][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..udp] [138.132.169.101][.5060] -> [192.168.100.219][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [....10.35.40.25][.5060] -> [...10.35.40.200][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [....10.35.60.72][.5060] -> [...10.35.60.100][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/IEC104.pcap.out b/test/results/flow-info/default/IEC104.pcap.out
index 414e30420..774242ae8 100644
--- a/test/results/flow-info/IEC104.pcap.out
+++ b/test/results/flow-info/default/IEC104.pcap.out
@@ -4,7 +4,11 @@
new: [.....1] [ip4][..tcp] [...10.175.211.1][.2404] -> [..10.119.105.26][54768] [MIDSTREAM]
new: [.....2] [ip4][..tcp] [...10.175.211.3][.2404] -> [..10.119.105.26][54769] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [...10.175.211.1][.2404] -> [..10.119.105.26][54768] [IEC60870][Unknown][IoT-Scada][Acceptable]
+ RISK: Unidirectional Traffic
detected: [.....2] [ip4][..tcp] [...10.175.211.3][.2404] -> [..10.119.105.26][54769] [IEC60870][Unknown][IoT-Scada][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..tcp] [...10.175.211.1][.2404] -> [..10.119.105.26][54768] [IEC60870][Unknown][IoT-Scada][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..tcp] [...10.175.211.3][.2404] -> [..10.119.105.26][54769] [IEC60870][Unknown][IoT-Scada][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/KakaoTalk_chat.pcap.out b/test/results/flow-info/default/KakaoTalk_chat.pcap.out
index 084abe09f..9a3507619 100644
--- a/test/results/flow-info/KakaoTalk_chat.pcap.out
+++ b/test/results/flow-info/default/KakaoTalk_chat.pcap.out
@@ -3,37 +3,49 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [...10.24.82.188][38448] -> [.....10.188.1.1][...53]
detected: [.....1] [ip4][..udp] [...10.24.82.188][38448] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable][auth.kakao.com]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..udp] [...10.24.82.188][35603] -> [.....10.188.1.1][...53]
detected: [.....2] [ip4][..udp] [...10.24.82.188][35603] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable][ac-talk.kakao.com]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..udp] [...10.24.82.188][57816] -> [.....10.188.1.1][...53]
detected: [.....3] [ip4][..udp] [...10.24.82.188][57816] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable][katalk.kakao.com]
+ RISK: Unidirectional Traffic
detection-update: [.....2] [ip4][..udp] [...10.24.82.188][35603] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable][ac-talk.kakao.com]
detection-update: [.....1] [ip4][..udp] [...10.24.82.188][38448] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable][auth.kakao.com]
detection-update: [.....3] [ip4][..udp] [...10.24.82.188][57816] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable][katalk.kakao.com]
new: [.....4] [ip4][..udp] [...10.24.82.188][41909] -> [.....10.188.1.1][...53]
detected: [.....4] [ip4][..udp] [...10.24.82.188][41909] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable][booking.loco.kakao.com]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][..udp] [...10.24.82.188][12908] -> [.....10.188.1.1][...53]
detected: [.....5] [ip4][..udp] [...10.24.82.188][12908] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable][up-m.talk.kakao.com]
+ RISK: Unidirectional Traffic
new: [.....6] [ip4][..udp] [...10.24.82.188][58810] -> [.....10.188.1.1][...53]
detected: [.....6] [ip4][..udp] [...10.24.82.188][58810] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable][item.kakao.com]
+ RISK: Unidirectional Traffic
detection-update: [.....6] [ip4][..udp] [...10.24.82.188][58810] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable][item.kakao.com]
detection-update: [.....5] [ip4][..udp] [...10.24.82.188][12908] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable][up-m.talk.kakao.com]
detection-update: [.....4] [ip4][..udp] [...10.24.82.188][41909] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable][booking.loco.kakao.com]
new: [.....7] [ip4][..udp] [...10.24.82.188][.5929] -> [.....10.188.1.1][...53]
detected: [.....7] [ip4][..udp] [...10.24.82.188][.5929] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable][up-p.talk.kakao.com]
+ RISK: Unidirectional Traffic
new: [.....8] [ip4][..udp] [...10.24.82.188][.9094] -> [.....10.188.1.1][...53]
detected: [.....8] [ip4][..udp] [...10.24.82.188][.9094] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable][up-v.talk.kakao.com]
+ RISK: Unidirectional Traffic
new: [.....9] [ip4][..udp] [...10.24.82.188][56820] -> [.....10.188.1.1][...53]
detected: [.....9] [ip4][..udp] [...10.24.82.188][56820] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable][up-c.talk.kakao.com]
+ RISK: Unidirectional Traffic
detection-update: [.....7] [ip4][..udp] [...10.24.82.188][.5929] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable][up-p.talk.kakao.com]
detection-update: [.....8] [ip4][..udp] [...10.24.82.188][.9094] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable][up-v.talk.kakao.com]
detection-update: [.....9] [ip4][..udp] [...10.24.82.188][56820] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable][up-c.talk.kakao.com]
new: [....10] [ip4][..udp] [...10.24.82.188][29029] -> [.....10.188.1.1][...53]
detected: [....10] [ip4][..udp] [...10.24.82.188][29029] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable][up-a.talk.kakao.com]
+ RISK: Unidirectional Traffic
new: [....11] [ip4][..udp] [...10.24.82.188][25117] -> [.....10.188.1.1][...53]
detected: [....11] [ip4][..udp] [...10.24.82.188][25117] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable][up-gp.talk.kakao.com]
+ RISK: Unidirectional Traffic
new: [....12] [ip4][..udp] [...10.24.82.188][43077] -> [.....10.188.1.1][...53]
detected: [....12] [ip4][..udp] [...10.24.82.188][43077] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable][dn-l.talk.kakao.com]
+ RISK: Unidirectional Traffic
detection-update: [....10] [ip4][..udp] [...10.24.82.188][29029] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable][up-a.talk.kakao.com]
detection-update: [....12] [ip4][..udp] [...10.24.82.188][43077] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable][dn-l.talk.kakao.com]
detection-update: [....11] [ip4][..udp] [...10.24.82.188][25117] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable][up-gp.talk.kakao.com]
@@ -45,12 +57,15 @@
new: [....16] [ip4][..tcp] [..120.28.26.242][...80] -> [...10.24.82.188][34503] [MIDSTREAM]
new: [....17] [ip4][..udp] [...10.24.82.188][61011] -> [.....10.188.1.1][...53]
detected: [....17] [ip4][..udp] [...10.24.82.188][61011] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable][plus-talk.kakao.com]
+ RISK: Unidirectional Traffic
new: [....18] [ip4][..udp] [...10.24.82.188][61011] -> [...10.188.191.1][...53]
detected: [....18] [ip4][..udp] [...10.24.82.188][61011] -> [...10.188.191.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable][plus-talk.kakao.com]
+ RISK: Unidirectional Traffic
detection-update: [....17] [ip4][..udp] [...10.24.82.188][61011] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable][plus-talk.kakao.com]
detection-update: [....18] [ip4][..udp] [...10.24.82.188][61011] -> [...10.188.191.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable][plus-talk.kakao.com]
new: [....19] [ip4][.icmp] [...10.24.82.188] -> [...10.188.191.1]
detected: [....19] [ip4][.icmp] [...10.24.82.188] -> [...10.188.191.1] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....20] [ip4][..tcp] [...10.24.82.188][37821] -> [.210.103.240.15][..443]
detected: [....20] [ip4][..tcp] [...10.24.82.188][37821] -> [.210.103.240.15][..443] [TLS][Unknown][Web][Safe][]
RISK: Obsolete TLS (v1.1 or older)
@@ -61,9 +76,11 @@
new: [....21] [ip4][..tcp] [...10.24.82.188][37553] -> [....31.13.68.84][...80]
new: [....22] [ip4][..tcp] [....31.13.68.73][..443] -> [...10.24.82.188][47007] [MIDSTREAM]
detected: [....22] [ip4][..tcp] [....31.13.68.73][..443] -> [...10.24.82.188][47007] [TLS][Facebook][Web][Safe]
+ RISK: Unidirectional Traffic
detected: [....21] [ip4][..tcp] [...10.24.82.188][37553] -> [....31.13.68.84][...80] [HTTP.Facebook][Facebook][SocialNetwork][Fun][www.facebook.com]
new: [....23] [ip4][..udp] [...10.24.82.188][24596] -> [.....10.188.1.1][...53]
detected: [....23] [ip4][..udp] [...10.24.82.188][24596] -> [.....10.188.1.1][...53] [DNS.Facebook][Unknown][Network][Fun][api.facebook.com]
+ RISK: Unidirectional Traffic
detection-update: [....15] [ip4][..tcp] [...10.24.82.188][35503] -> [...173.252.97.2][..443] [TLS][Facebook][Web][Safe][]
RISK: Obsolete TLS (v1.1 or older)
detection-update: [....15] [ip4][..tcp] [...10.24.82.188][35503] -> [...173.252.97.2][..443] [TLS.Facebook][Facebook][SocialNetwork][Fun][]
@@ -74,6 +91,7 @@
RISK: TLS (probably) Not Carrying HTTPS
new: [....25] [ip4][..udp] [...10.24.82.188][19582] -> [.....10.188.1.1][...53]
detected: [....25] [ip4][..udp] [...10.24.82.188][19582] -> [.....10.188.1.1][...53] [DNS.Facebook][Unknown][Network][Fun][graph.facebook.com]
+ RISK: Unidirectional Traffic
detection-update: [....24] [ip4][..tcp] [...10.24.82.188][45209] -> [....31.13.68.84][..443] [TLS.Facebook][Facebook][SocialNetwork][Fun][api.facebook.com]
RISK: TLS (probably) Not Carrying HTTPS
detection-update: [....24] [ip4][..tcp] [...10.24.82.188][45209] -> [....31.13.68.84][..443] [TLS.Facebook][Facebook][SocialNetwork][Fun][api.facebook.com]
@@ -84,6 +102,7 @@
RISK: TLS (probably) Not Carrying HTTPS
new: [....27] [ip4][..udp] [...10.24.82.188][.4017] -> [.....10.188.1.1][...53]
detected: [....27] [ip4][..udp] [...10.24.82.188][.4017] -> [.....10.188.1.1][...53] [DNS.Facebook][Unknown][Network][Fun][developers.facebook.com]
+ RISK: Unidirectional Traffic
detection-update: [....26] [ip4][..tcp] [...10.24.82.188][43581] -> [....31.13.68.70][..443] [TLS.Facebook][Facebook][SocialNetwork][Fun][graph.facebook.com]
RISK: TLS (probably) Not Carrying HTTPS
detection-update: [....26] [ip4][..tcp] [...10.24.82.188][43581] -> [....31.13.68.70][..443] [TLS.Facebook][Facebook][SocialNetwork][Fun][graph.facebook.com]
@@ -91,6 +110,7 @@
detection-update: [....27] [ip4][..udp] [...10.24.82.188][.4017] -> [.....10.188.1.1][...53] [DNS.Facebook][Unknown][Network][Fun][developers.facebook.com]
new: [....28] [ip4][..udp] [...10.24.82.188][14650] -> [.....10.188.1.1][...53]
detected: [....28] [ip4][..udp] [...10.24.82.188][14650] -> [.....10.188.1.1][...53] [DNS][Unknown][Network][Acceptable][2.97.252.173.in-addr.arpa]
+ RISK: Unidirectional Traffic
new: [....29] [ip4][..tcp] [...10.24.82.188][45211] -> [....31.13.68.84][..443]
detection-update: [....28] [ip4][..udp] [...10.24.82.188][14650] -> [.....10.188.1.1][...53] [DNS][Unknown][Network][Acceptable][2.97.252.173.in-addr.arpa]
detected: [....29] [ip4][..tcp] [...10.24.82.188][45211] -> [....31.13.68.84][..443] [TLS.Facebook][Facebook][SocialNetwork][Fun][developers.facebook.com]
@@ -101,7 +121,7 @@
RISK: TLS (probably) Not Carrying HTTPS
new: [....30] [ip4][..tcp] [...10.24.82.188][58927] -> [.54.255.253.199][.5223] [MIDSTREAM]
detected: [....30] [ip4][..tcp] [...10.24.82.188][58927] -> [.54.255.253.199][.5223] [TLS][AmazonAWS][Web][Safe]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
analyse: [....26] [ip4][..tcp] [...10.24.82.188][43581] -> [....31.13.68.70][..443] [TLS.Facebook][Facebook][SocialNetwork][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.174| 0.038| 0.043| 1891.518| 4.000]
@@ -144,9 +164,10 @@
new: [....35] [ip4][..tcp] [..139.150.0.125][..443] -> [...10.24.82.188][46947] [MIDSTREAM]
new: [....36] [ip4][..tcp] [...10.24.82.188][34686] -> [.173.194.72.188][.5228] [MIDSTREAM]
detected: [....36] [ip4][..tcp] [...10.24.82.188][34686] -> [.173.194.72.188][.5228] [TLS][Google][Web][Safe]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....37] [ip4][..tcp] [...10.24.82.188][49217] -> [.216.58.220.174][..443] [MIDSTREAM]
detected: [....37] [ip4][..tcp] [...10.24.82.188][49217] -> [.216.58.220.174][..443] [TLS][Google][Web][Safe]
+ RISK: Unidirectional Traffic
analyse: [....34] [ip4][..tcp] [...10.24.82.188][35511] -> [...173.252.97.2][..443] [TLS.Facebook][Facebook][SocialNetwork][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 27.031| 1.853| 6.601| 43576507.498| 1.500]
@@ -158,6 +179,7 @@
[PKTLENS.....: 60,44,40,224,44,40,1320,1320,1027,40,40,40,162,40,87,40,562,40,69,40,199,312,40,40,78,40,69,40,67,116,40,40]
[ENTROPIES...: 4.7,5.0,4.9,5.2,4.7,5.0,6.5,7.1,6.7,4.8,4.9,4.9,6.5,4.9,5.9,4.8,7.7,5.0,5.6,4.8,6.9,7.1,5.0,5.0,5.8,4.9,5.5,4.9,5.6,6.3,5.0,5.0]
update: [....19] [ip4][.icmp] [...10.24.82.188] -> [...10.188.191.1] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....38] [ip4][..tcp] [...10.24.82.188][58964] -> [.54.255.253.199][.5223]
detected: [....38] [ip4][..tcp] [...10.24.82.188][58964] -> [.54.255.253.199][.5223] [TLS][AmazonAWS][Web][Safe][]
RISK: Known Proto on Non Std Port, Obsolete TLS (v1.1 or older)
@@ -180,12 +202,15 @@
idle: [....17] [ip4][..udp] [...10.24.82.188][61011] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable]
idle: [.....7] [ip4][..udp] [...10.24.82.188][.5929] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable]
guessed: [....16] [ip4][..tcp] [..120.28.26.242][...80] -> [...10.24.82.188][34503] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic, TCP Connection Issues
end: [....16] [ip4][..tcp] [..120.28.26.242][...80] -> [...10.24.82.188][34503]
idle: [....27] [ip4][..udp] [...10.24.82.188][.4017] -> [.....10.188.1.1][...53] [DNS.Facebook][Unknown][Network][Fun]
idle: [....19] [ip4][.icmp] [...10.24.82.188] -> [...10.188.191.1] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....23] [ip4][..udp] [...10.24.82.188][24596] -> [.....10.188.1.1][...53] [DNS.Facebook][Unknown][Network][Fun]
idle: [....12] [ip4][..udp] [...10.24.82.188][43077] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable]
idle: [....37] [ip4][..tcp] [...10.24.82.188][49217] -> [.216.58.220.174][..443] [TLS][Google][Web][Safe]
+ RISK: Unidirectional Traffic
guessed: [....13] [ip4][..tcp] [...10.24.82.188][51021] -> [.103.246.57.251][.8080] [HTTP_Proxy][Unknown][Web][Acceptable][]
idle: [....13] [ip4][..tcp] [...10.24.82.188][51021] -> [.103.246.57.251][.8080]
end: [....20] [ip4][..tcp] [...10.24.82.188][37821] -> [.210.103.240.15][..443]
@@ -194,6 +219,7 @@
idle: [.....3] [ip4][..udp] [...10.24.82.188][57816] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable]
idle: [....11] [ip4][..udp] [...10.24.82.188][25117] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable]
end: [....22] [ip4][..tcp] [....31.13.68.73][..443] -> [...10.24.82.188][47007] [TLS][Facebook][Web][Safe]
+ RISK: Unidirectional Traffic
idle: [....36] [ip4][..tcp] [...10.24.82.188][34686] -> [.173.194.72.188][.5228]
idle: [.....5] [ip4][..udp] [...10.24.82.188][12908] -> [.....10.188.1.1][...53] [DNS.KakaoTalk][Unknown][Network][Acceptable]
guessed: [....31] [ip4][..tcp] [...10.24.82.188][42332] -> [.210.103.240.15][..443] [TLS][Unknown][Web][Safe]
diff --git a/test/results/flow-info/KakaoTalk_talk.pcap.out b/test/results/flow-info/default/KakaoTalk_talk.pcap.out
index f46e3e244..d4e318097 100644
--- a/test/results/flow-info/KakaoTalk_talk.pcap.out
+++ b/test/results/flow-info/default/KakaoTalk_talk.pcap.out
@@ -8,8 +8,6 @@
new: [.....5] [ip4][..tcp] [.216.58.220.161][..443] -> [...10.24.82.188][56697] [MIDSTREAM]
detected: [.....4] [ip4][..tcp] [...10.24.82.188][48489] -> [203.205.147.215][...80] [HTTP_Proxy.QQ][Tencent][Chat][Fun][hkminorshort.weixin.qq.com]
RISK: Known Proto on Non Std Port
- detection-update: [.....4] [ip4][..tcp] [...10.24.82.188][48489] -> [203.205.147.215][...80] [HTTP_Proxy.QQ][Tencent][Download][Fun][hkminorshort.weixin.qq.com]
- RISK: Binary App Transfer, Known Proto on Non Std Port
new: [.....6] [ip4][..tcp] [...10.24.82.188][32968] -> [..110.76.143.50][.8080]
detected: [.....6] [ip4][..tcp] [...10.24.82.188][32968] -> [..110.76.143.50][.8080] [TLS][Unknown][Web][Safe][]
RISK: Known Proto on Non Std Port, Obsolete TLS (v1.1 or older)
@@ -23,11 +21,13 @@
RISK: Known Proto on Non Std Port, Self-signed Cert, Obsolete TLS (v1.1 or older), Weak TLS Cipher
new: [.....9] [ip4][..tcp] [...10.24.82.188][34686] -> [.173.194.72.188][.5228] [MIDSTREAM]
detected: [.....9] [ip4][..tcp] [...10.24.82.188][34686] -> [.173.194.72.188][.5228] [TLS][Google][Web][Safe]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....10] [ip4][..udp] [...10.24.82.188][11321] -> [....1.201.1.174][23045]
detected: [....10] [ip4][..udp] [...10.24.82.188][11321] -> [....1.201.1.174][23045] [KakaoTalk_Voice][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....11] [ip4][..udp] [...10.24.82.188][10269] -> [....1.201.1.174][23047]
detected: [....11] [ip4][..udp] [...10.24.82.188][10269] -> [....1.201.1.174][23047] [KakaoTalk_Voice][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....12] [ip4][..udp] [...10.24.82.188][11320] -> [....1.201.1.174][23044]
detected: [....12] [ip4][..udp] [...10.24.82.188][11320] -> [....1.201.1.174][23044] [RTP][Unknown][Media][Acceptable]
new: [....13] [ip4][..udp] [...10.24.82.188][10268] -> [....1.201.1.174][23046]
@@ -54,6 +54,7 @@
[ENTROPIES...: 6.2,6.7,6.2,5.8,5.8,5.9,6.0,5.9,5.9,5.9,5.9,6.0,5.9,5.8,5.9,5.9,6.0,6.0,6.0,6.0,5.8,5.9,5.9,5.9,6.0,6.0,5.9,6.0,5.8,6.7,6.3,6.0]
new: [....14] [ip4][..tcp] [...10.24.82.188][49217] -> [.216.58.220.174][..443] [MIDSTREAM]
detected: [....14] [ip4][..tcp] [...10.24.82.188][49217] -> [.216.58.220.174][..443] [TLS][Google][Web][Safe]
+ RISK: Unidirectional Traffic
new: [....15] [ip4][..tcp] [..173.252.122.1][..443] -> [...10.24.82.188][52123] [MIDSTREAM]
new: [....16] [ip4][..tcp] [...10.24.82.188][53974] -> [203.205.151.233][.8080] [MIDSTREAM]
analyse: [.....6] [ip4][..tcp] [...10.24.82.188][32968] -> [..110.76.143.50][.8080] [TLS.KakaoTalk][Unknown][Chat][Acceptable]
@@ -81,34 +82,41 @@
new: [....19] [ip4][..tcp] [...10.24.82.188][59954] -> [.173.252.88.128][..443]
new: [....20] [ip4][..udp] [...10.24.82.188][25223] -> [.....10.188.1.1][...53]
detected: [....20] [ip4][..udp] [...10.24.82.188][25223] -> [.....10.188.1.1][...53] [DNS.Facebook][Unknown][Network][Fun][mqtt.facebook.com]
+ RISK: Unidirectional Traffic
detected: [....19] [ip4][..tcp] [...10.24.82.188][59954] -> [.173.252.88.128][..443] [TLS][Facebook][Web][Safe][]
RISK: Obsolete TLS (v1.1 or older)
detection-update: [....20] [ip4][..udp] [...10.24.82.188][25223] -> [.....10.188.1.1][...53] [DNS.Facebook][Unknown][Network][Fun][mqtt.facebook.com]
detection-update: [....19] [ip4][..tcp] [...10.24.82.188][59954] -> [.173.252.88.128][..443] [TLS][Facebook][Web][Safe][]
RISK: Obsolete TLS (v1.1 or older)
guessed: [....16] [ip4][..tcp] [...10.24.82.188][53974] -> [203.205.151.233][.8080] [HTTP_Proxy][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [....16] [ip4][..tcp] [...10.24.82.188][53974] -> [203.205.151.233][.8080]
guessed: [....18] [ip4][..tcp] [.173.252.88.128][..443] -> [...10.24.82.188][59912] [TLS][Facebook][Web][Safe]
+ RISK: Unidirectional Traffic
end: [....18] [ip4][..tcp] [.173.252.88.128][..443] -> [...10.24.82.188][59912]
idle: [....19] [ip4][..tcp] [...10.24.82.188][59954] -> [.173.252.88.128][..443] [TLS][Facebook][Web][Safe]
RISK: Obsolete TLS (v1.1 or older)
- not-detected: [.....3] [ip4][..tcp] [...10.24.82.188][58916] -> [.54.255.185.236][.5222] [Unknown][AmazonAWS][Unrated]
+ guessed: [.....3] [ip4][..tcp] [...10.24.82.188][58916] -> [.54.255.185.236][.5222] [AmazonAWS][AmazonAWS][Cloud][Acceptable]
idle: [.....3] [ip4][..tcp] [...10.24.82.188][58916] -> [.54.255.185.236][.5222]
guessed: [....15] [ip4][..tcp] [..173.252.122.1][..443] -> [...10.24.82.188][52123] [TLS][Facebook][Web][Safe]
+ RISK: Unidirectional Traffic, TCP Connection Issues
end: [....15] [ip4][..tcp] [..173.252.122.1][..443] -> [...10.24.82.188][52123]
guessed: [.....5] [ip4][..tcp] [.216.58.220.161][..443] -> [...10.24.82.188][56697] [TLS][Google][Web][Safe]
+ RISK: Unidirectional Traffic, TCP Connection Issues
end: [.....5] [ip4][..tcp] [.216.58.220.161][..443] -> [...10.24.82.188][56697]
guessed: [....17] [ip4][..tcp] [173.194.117.229][..443] -> [...10.24.82.188][38380] [TLS][Google][Web][Safe]
+ RISK: Unidirectional Traffic, TCP Connection Issues
end: [....17] [ip4][..tcp] [173.194.117.229][..443] -> [...10.24.82.188][38380]
idle: [....13] [ip4][..udp] [...10.24.82.188][10268] -> [....1.201.1.174][23046] [RTP][Unknown][Media][Acceptable]
idle: [....11] [ip4][..udp] [...10.24.82.188][10269] -> [....1.201.1.174][23047] [KakaoTalk_Voice][Unknown][VoIP][Acceptable]
- end: [.....4] [ip4][..tcp] [...10.24.82.188][48489] -> [203.205.147.215][...80] [HTTP_Proxy.QQ][Tencent][Download][Fun]
- RISK: Binary App Transfer, Known Proto on Non Std Port
+ RISK: Unidirectional Traffic
+ end: [.....4] [ip4][..tcp] [...10.24.82.188][48489] -> [203.205.147.215][...80]
guessed: [.....2] [ip4][..tcp] [..120.28.26.242][...80] -> [...10.24.82.188][34533] [HTTP][Unknown][Web][Acceptable][]
end: [.....2] [ip4][..tcp] [..120.28.26.242][...80] -> [...10.24.82.188][34533]
idle: [.....6] [ip4][..tcp] [...10.24.82.188][32968] -> [..110.76.143.50][.8080] [TLS.KakaoTalk][Unknown][Chat][Acceptable]
RISK: Known Proto on Non Std Port, Self-signed Cert, Obsolete TLS (v1.1 or older), Weak TLS Cipher
idle: [....14] [ip4][..tcp] [...10.24.82.188][49217] -> [.216.58.220.174][..443] [TLS][Google][Web][Safe]
+ RISK: Unidirectional Traffic
guessed: [.....1] [ip4][..tcp] [...10.24.82.188][51021] -> [.103.246.57.251][.8080] [HTTP_Proxy][Unknown][Web][Acceptable][]
idle: [.....1] [ip4][..tcp] [...10.24.82.188][51021] -> [.103.246.57.251][.8080]
idle: [.....8] [ip4][..tcp] [...10.24.82.188][58857] -> [..110.76.143.50][.9001] [TLS.KakaoTalk][Unknown][Chat][Acceptable]
@@ -117,6 +125,7 @@
idle: [....20] [ip4][..udp] [...10.24.82.188][25223] -> [.....10.188.1.1][...53] [DNS.Facebook][Unknown][Network][Fun]
idle: [....12] [ip4][..udp] [...10.24.82.188][11320] -> [....1.201.1.174][23044] [RTP][Unknown][Media][Acceptable]
idle: [....10] [ip4][..udp] [...10.24.82.188][11321] -> [....1.201.1.174][23045] [KakaoTalk_Voice][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [.....7] [ip4][..tcp] [..139.150.0.125][..443] -> [...10.24.82.188][46947] [TLS][Unknown][Web][Safe]
idle: [.....7] [ip4][..tcp] [..139.150.0.125][..443] -> [...10.24.82.188][46947]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/NTPv2.pcap.out b/test/results/flow-info/default/NTPv2.pcap.out
index 022c4bcfd..8f0bbc57a 100644
--- a/test/results/flow-info/NTPv2.pcap.out
+++ b/test/results/flow-info/default/NTPv2.pcap.out
@@ -3,5 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..208.104.95.10][..123] -> [.....78.46.76.2][...80]
detected: [.....1] [ip4][..udp] [..208.104.95.10][..123] -> [.....78.46.76.2][...80] [NTP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [..208.104.95.10][..123] -> [.....78.46.76.2][...80] [NTP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/NTPv3.pcap.out b/test/results/flow-info/default/NTPv3.pcap.out
index e197577a5..da9edc910 100644
--- a/test/results/flow-info/NTPv3.pcap.out
+++ b/test/results/flow-info/default/NTPv3.pcap.out
@@ -3,5 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [.175.144.140.29][..123] -> [.....78.46.76.2][...80]
detected: [.....1] [ip4][..udp] [.175.144.140.29][..123] -> [.....78.46.76.2][...80] [NTP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [.175.144.140.29][..123] -> [.....78.46.76.2][...80] [NTP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/NTPv4.pcap.out b/test/results/flow-info/default/NTPv4.pcap.out
index ddf27f2b0..3a0962543 100644
--- a/test/results/flow-info/NTPv4.pcap.out
+++ b/test/results/flow-info/default/NTPv4.pcap.out
@@ -3,5 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [...85.22.62.120][..123] -> [....78.46.76.11][..123]
detected: [.....1] [ip4][..udp] [...85.22.62.120][..123] -> [....78.46.76.11][..123] [NTP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [...85.22.62.120][..123] -> [....78.46.76.11][..123] [NTP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/Oscar.pcap.out b/test/results/flow-info/default/Oscar.pcap.out
index c86c1a75d..bf180a05d 100644
--- a/test/results/flow-info/Oscar.pcap.out
+++ b/test/results/flow-info/default/Oscar.pcap.out
@@ -13,6 +13,5 @@
[PKTLENS.....: 64,46,40,355,50,40,605,40,92,130,40,56,1400,337,40,66,46,152,497,40,270,40,252,46,335,76,46,78,40,78,46,76]
[ENTROPIES...: 4.4,4.9,4.7,7.1,4.7,4.7,5.2,4.7,4.0,4.3,4.6,4.3,3.8,3.9,4.6,4.3,4.5,3.5,4.2,4.6,3.7,4.6,5.5,4.5,3.4,4.8,4.5,5.0,4.6,4.5,4.5,4.8]
guessed: [.....1] [ip4][..tcp] [.....10.30.29.3][63357] -> [.178.237.24.249][..443] [TLS][Unknown][Web][Safe]
- detected: [.....1] [ip4][..tcp] [.....10.30.29.3][63357] -> [.178.237.24.249][..443] [TLS][Unknown][Web][Safe]
- idle: [.....1] [ip4][..tcp] [.....10.30.29.3][63357] -> [.178.237.24.249][..443] [TLS][Unknown][Web][Safe]
+ idle: [.....1] [ip4][..tcp] [.....10.30.29.3][63357] -> [.178.237.24.249][..443]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/TivoDVR.pcap.out b/test/results/flow-info/default/TivoDVR.pcap.out
index af6875ba9..af6875ba9 100644
--- a/test/results/flow-info/TivoDVR.pcap.out
+++ b/test/results/flow-info/default/TivoDVR.pcap.out
diff --git a/test/results/flow-info/WebattackRCE.pcap.out b/test/results/flow-info/default/WebattackRCE.pcap.out
index aa86ec8f5..5a2023cfe 100644
--- a/test/results/flow-info/WebattackRCE.pcap.out
+++ b/test/results/flow-info/default/WebattackRCE.pcap.out
@@ -3,2395 +3,2395 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [......127.0.0.1][49544] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [......127.0.0.1][49544] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [.....2] [ip4][..tcp] [......127.0.0.1][49546] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [.....2] [ip4][..tcp] [......127.0.0.1][49546] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [.....3] [ip4][..tcp] [......127.0.0.1][49548] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [.....3] [ip4][..tcp] [......127.0.0.1][49548] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [.....4] [ip4][..tcp] [......127.0.0.1][49550] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [.....4] [ip4][..tcp] [......127.0.0.1][49550] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [.....5] [ip4][..tcp] [......127.0.0.1][49552] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [.....5] [ip4][..tcp] [......127.0.0.1][49552] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Possible Exploit, Unidirectional Traffic
new: [.....6] [ip4][..tcp] [......127.0.0.1][49554] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [.....6] [ip4][..tcp] [......127.0.0.1][49554] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [.....7] [ip4][..tcp] [......127.0.0.1][49556] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [.....7] [ip4][..tcp] [......127.0.0.1][49556] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [.....8] [ip4][..tcp] [......127.0.0.1][49558] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [.....8] [ip4][..tcp] [......127.0.0.1][49558] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [.....9] [ip4][..tcp] [......127.0.0.1][49560] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [.....9] [ip4][..tcp] [......127.0.0.1][49560] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....10] [ip4][..tcp] [......127.0.0.1][49562] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....10] [ip4][..tcp] [......127.0.0.1][49562] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....11] [ip4][..tcp] [......127.0.0.1][49564] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....11] [ip4][..tcp] [......127.0.0.1][49564] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....12] [ip4][..tcp] [......127.0.0.1][49566] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....12] [ip4][..tcp] [......127.0.0.1][49566] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....13] [ip4][..tcp] [......127.0.0.1][49568] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....13] [ip4][..tcp] [......127.0.0.1][49568] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....14] [ip4][..tcp] [......127.0.0.1][49570] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....14] [ip4][..tcp] [......127.0.0.1][49570] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....15] [ip4][..tcp] [......127.0.0.1][49572] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....15] [ip4][..tcp] [......127.0.0.1][49572] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....16] [ip4][..tcp] [......127.0.0.1][49574] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....16] [ip4][..tcp] [......127.0.0.1][49574] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....17] [ip4][..tcp] [......127.0.0.1][49576] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....17] [ip4][..tcp] [......127.0.0.1][49576] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....18] [ip4][..tcp] [......127.0.0.1][49578] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....18] [ip4][..tcp] [......127.0.0.1][49578] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....19] [ip4][..tcp] [......127.0.0.1][49580] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....19] [ip4][..tcp] [......127.0.0.1][49580] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....20] [ip4][..tcp] [......127.0.0.1][49582] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....20] [ip4][..tcp] [......127.0.0.1][49582] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....21] [ip4][..tcp] [......127.0.0.1][49584] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....21] [ip4][..tcp] [......127.0.0.1][49584] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....22] [ip4][..tcp] [......127.0.0.1][49586] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....22] [ip4][..tcp] [......127.0.0.1][49586] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....23] [ip4][..tcp] [......127.0.0.1][49588] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....23] [ip4][..tcp] [......127.0.0.1][49588] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....24] [ip4][..tcp] [......127.0.0.1][49590] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....24] [ip4][..tcp] [......127.0.0.1][49590] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....25] [ip4][..tcp] [......127.0.0.1][49592] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....25] [ip4][..tcp] [......127.0.0.1][49592] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....26] [ip4][..tcp] [......127.0.0.1][49594] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....26] [ip4][..tcp] [......127.0.0.1][49594] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....27] [ip4][..tcp] [......127.0.0.1][49596] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....27] [ip4][..tcp] [......127.0.0.1][49596] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....28] [ip4][..tcp] [......127.0.0.1][49598] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....28] [ip4][..tcp] [......127.0.0.1][49598] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....29] [ip4][..tcp] [......127.0.0.1][49600] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....29] [ip4][..tcp] [......127.0.0.1][49600] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....30] [ip4][..tcp] [......127.0.0.1][49602] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....30] [ip4][..tcp] [......127.0.0.1][49602] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....31] [ip4][..tcp] [......127.0.0.1][49604] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....31] [ip4][..tcp] [......127.0.0.1][49604] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....32] [ip4][..tcp] [......127.0.0.1][49606] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....32] [ip4][..tcp] [......127.0.0.1][49606] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....33] [ip4][..tcp] [......127.0.0.1][49608] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....33] [ip4][..tcp] [......127.0.0.1][49608] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....34] [ip4][..tcp] [......127.0.0.1][49610] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....34] [ip4][..tcp] [......127.0.0.1][49610] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....35] [ip4][..tcp] [......127.0.0.1][49612] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....35] [ip4][..tcp] [......127.0.0.1][49612] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....36] [ip4][..tcp] [......127.0.0.1][49614] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....36] [ip4][..tcp] [......127.0.0.1][49614] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....37] [ip4][..tcp] [......127.0.0.1][49616] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....37] [ip4][..tcp] [......127.0.0.1][49616] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....38] [ip4][..tcp] [......127.0.0.1][49618] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....38] [ip4][..tcp] [......127.0.0.1][49618] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....39] [ip4][..tcp] [......127.0.0.1][49620] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....39] [ip4][..tcp] [......127.0.0.1][49620] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....40] [ip4][..tcp] [......127.0.0.1][49622] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....40] [ip4][..tcp] [......127.0.0.1][49622] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....41] [ip4][..tcp] [......127.0.0.1][49624] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....41] [ip4][..tcp] [......127.0.0.1][49624] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....42] [ip4][..tcp] [......127.0.0.1][49626] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....42] [ip4][..tcp] [......127.0.0.1][49626] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....43] [ip4][..tcp] [......127.0.0.1][49628] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....43] [ip4][..tcp] [......127.0.0.1][49628] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....44] [ip4][..tcp] [......127.0.0.1][49630] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....44] [ip4][..tcp] [......127.0.0.1][49630] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....45] [ip4][..tcp] [......127.0.0.1][49632] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....45] [ip4][..tcp] [......127.0.0.1][49632] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....46] [ip4][..tcp] [......127.0.0.1][49634] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....46] [ip4][..tcp] [......127.0.0.1][49634] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....47] [ip4][..tcp] [......127.0.0.1][49636] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....47] [ip4][..tcp] [......127.0.0.1][49636] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....48] [ip4][..tcp] [......127.0.0.1][49638] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....48] [ip4][..tcp] [......127.0.0.1][49638] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....49] [ip4][..tcp] [......127.0.0.1][49640] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....49] [ip4][..tcp] [......127.0.0.1][49640] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....50] [ip4][..tcp] [......127.0.0.1][49642] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....50] [ip4][..tcp] [......127.0.0.1][49642] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....51] [ip4][..tcp] [......127.0.0.1][49644] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....51] [ip4][..tcp] [......127.0.0.1][49644] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....52] [ip4][..tcp] [......127.0.0.1][49646] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....52] [ip4][..tcp] [......127.0.0.1][49646] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....53] [ip4][..tcp] [......127.0.0.1][49648] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....53] [ip4][..tcp] [......127.0.0.1][49648] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Crawler/Bot, Unidirectional Traffic
new: [....54] [ip4][..tcp] [......127.0.0.1][49650] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....54] [ip4][..tcp] [......127.0.0.1][49650] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....55] [ip4][..tcp] [......127.0.0.1][49652] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....55] [ip4][..tcp] [......127.0.0.1][49652] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....56] [ip4][..tcp] [......127.0.0.1][49654] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....56] [ip4][..tcp] [......127.0.0.1][49654] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....57] [ip4][..tcp] [......127.0.0.1][49656] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....57] [ip4][..tcp] [......127.0.0.1][49656] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....58] [ip4][..tcp] [......127.0.0.1][49658] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....58] [ip4][..tcp] [......127.0.0.1][49658] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....59] [ip4][..tcp] [......127.0.0.1][49660] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....59] [ip4][..tcp] [......127.0.0.1][49660] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....60] [ip4][..tcp] [......127.0.0.1][49662] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....60] [ip4][..tcp] [......127.0.0.1][49662] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....61] [ip4][..tcp] [......127.0.0.1][49664] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....61] [ip4][..tcp] [......127.0.0.1][49664] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....62] [ip4][..tcp] [......127.0.0.1][49666] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....62] [ip4][..tcp] [......127.0.0.1][49666] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....63] [ip4][..tcp] [......127.0.0.1][49668] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....63] [ip4][..tcp] [......127.0.0.1][49668] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....64] [ip4][..tcp] [......127.0.0.1][49670] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....64] [ip4][..tcp] [......127.0.0.1][49670] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....65] [ip4][..tcp] [......127.0.0.1][49672] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....65] [ip4][..tcp] [......127.0.0.1][49672] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....66] [ip4][..tcp] [......127.0.0.1][49674] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....66] [ip4][..tcp] [......127.0.0.1][49674] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....67] [ip4][..tcp] [......127.0.0.1][49676] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....67] [ip4][..tcp] [......127.0.0.1][49676] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....68] [ip4][..tcp] [......127.0.0.1][49678] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....68] [ip4][..tcp] [......127.0.0.1][49678] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....69] [ip4][..tcp] [......127.0.0.1][49680] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....69] [ip4][..tcp] [......127.0.0.1][49680] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....70] [ip4][..tcp] [......127.0.0.1][49682] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....70] [ip4][..tcp] [......127.0.0.1][49682] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....71] [ip4][..tcp] [......127.0.0.1][49684] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....71] [ip4][..tcp] [......127.0.0.1][49684] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....72] [ip4][..tcp] [......127.0.0.1][49686] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....72] [ip4][..tcp] [......127.0.0.1][49686] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....73] [ip4][..tcp] [......127.0.0.1][49688] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....73] [ip4][..tcp] [......127.0.0.1][49688] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....74] [ip4][..tcp] [......127.0.0.1][49690] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....74] [ip4][..tcp] [......127.0.0.1][49690] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....75] [ip4][..tcp] [......127.0.0.1][49692] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....75] [ip4][..tcp] [......127.0.0.1][49692] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....76] [ip4][..tcp] [......127.0.0.1][49694] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....76] [ip4][..tcp] [......127.0.0.1][49694] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....77] [ip4][..tcp] [......127.0.0.1][49696] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....77] [ip4][..tcp] [......127.0.0.1][49696] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....78] [ip4][..tcp] [......127.0.0.1][49698] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....78] [ip4][..tcp] [......127.0.0.1][49698] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....79] [ip4][..tcp] [......127.0.0.1][49700] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....79] [ip4][..tcp] [......127.0.0.1][49700] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....80] [ip4][..tcp] [......127.0.0.1][49702] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....80] [ip4][..tcp] [......127.0.0.1][49702] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....81] [ip4][..tcp] [......127.0.0.1][49704] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....81] [ip4][..tcp] [......127.0.0.1][49704] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....82] [ip4][..tcp] [......127.0.0.1][49706] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....82] [ip4][..tcp] [......127.0.0.1][49706] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....83] [ip4][..tcp] [......127.0.0.1][49708] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....83] [ip4][..tcp] [......127.0.0.1][49708] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....84] [ip4][..tcp] [......127.0.0.1][49710] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....84] [ip4][..tcp] [......127.0.0.1][49710] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....85] [ip4][..tcp] [......127.0.0.1][49712] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....85] [ip4][..tcp] [......127.0.0.1][49712] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....86] [ip4][..tcp] [......127.0.0.1][49714] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....86] [ip4][..tcp] [......127.0.0.1][49714] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....87] [ip4][..tcp] [......127.0.0.1][49716] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....87] [ip4][..tcp] [......127.0.0.1][49716] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....88] [ip4][..tcp] [......127.0.0.1][49718] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....88] [ip4][..tcp] [......127.0.0.1][49718] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....89] [ip4][..tcp] [......127.0.0.1][49720] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....89] [ip4][..tcp] [......127.0.0.1][49720] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....90] [ip4][..tcp] [......127.0.0.1][49722] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....90] [ip4][..tcp] [......127.0.0.1][49722] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....91] [ip4][..tcp] [......127.0.0.1][49724] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....91] [ip4][..tcp] [......127.0.0.1][49724] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....92] [ip4][..tcp] [......127.0.0.1][49726] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....92] [ip4][..tcp] [......127.0.0.1][49726] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....93] [ip4][..tcp] [......127.0.0.1][49728] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....93] [ip4][..tcp] [......127.0.0.1][49728] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....94] [ip4][..tcp] [......127.0.0.1][49730] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....94] [ip4][..tcp] [......127.0.0.1][49730] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....95] [ip4][..tcp] [......127.0.0.1][49732] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....95] [ip4][..tcp] [......127.0.0.1][49732] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....96] [ip4][..tcp] [......127.0.0.1][49734] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....96] [ip4][..tcp] [......127.0.0.1][49734] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....97] [ip4][..tcp] [......127.0.0.1][49736] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....97] [ip4][..tcp] [......127.0.0.1][49736] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....98] [ip4][..tcp] [......127.0.0.1][49738] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....98] [ip4][..tcp] [......127.0.0.1][49738] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....99] [ip4][..tcp] [......127.0.0.1][49740] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [....99] [ip4][..tcp] [......127.0.0.1][49740] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...100] [ip4][..tcp] [......127.0.0.1][49742] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...100] [ip4][..tcp] [......127.0.0.1][49742] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...101] [ip4][..tcp] [......127.0.0.1][49744] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...101] [ip4][..tcp] [......127.0.0.1][49744] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...102] [ip4][..tcp] [......127.0.0.1][49746] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...102] [ip4][..tcp] [......127.0.0.1][49746] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...103] [ip4][..tcp] [......127.0.0.1][49748] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...103] [ip4][..tcp] [......127.0.0.1][49748] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...104] [ip4][..tcp] [......127.0.0.1][49750] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...104] [ip4][..tcp] [......127.0.0.1][49750] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...105] [ip4][..tcp] [......127.0.0.1][49752] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...105] [ip4][..tcp] [......127.0.0.1][49752] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...106] [ip4][..tcp] [......127.0.0.1][49754] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...106] [ip4][..tcp] [......127.0.0.1][49754] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...107] [ip4][..tcp] [......127.0.0.1][49756] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...107] [ip4][..tcp] [......127.0.0.1][49756] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...108] [ip4][..tcp] [......127.0.0.1][49758] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...108] [ip4][..tcp] [......127.0.0.1][49758] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...109] [ip4][..tcp] [......127.0.0.1][49760] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...109] [ip4][..tcp] [......127.0.0.1][49760] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...110] [ip4][..tcp] [......127.0.0.1][49764] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...110] [ip4][..tcp] [......127.0.0.1][49764] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...111] [ip4][..tcp] [......127.0.0.1][49766] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...111] [ip4][..tcp] [......127.0.0.1][49766] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...112] [ip4][..tcp] [......127.0.0.1][49768] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...112] [ip4][..tcp] [......127.0.0.1][49768] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...113] [ip4][..tcp] [......127.0.0.1][49770] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...113] [ip4][..tcp] [......127.0.0.1][49770] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...114] [ip4][..tcp] [......127.0.0.1][49772] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...114] [ip4][..tcp] [......127.0.0.1][49772] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...115] [ip4][..tcp] [......127.0.0.1][49774] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...115] [ip4][..tcp] [......127.0.0.1][49774] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...116] [ip4][..tcp] [......127.0.0.1][49776] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...116] [ip4][..tcp] [......127.0.0.1][49776] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...117] [ip4][..tcp] [......127.0.0.1][49778] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...117] [ip4][..tcp] [......127.0.0.1][49778] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...118] [ip4][..tcp] [......127.0.0.1][49780] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...118] [ip4][..tcp] [......127.0.0.1][49780] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...119] [ip4][..tcp] [......127.0.0.1][49782] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...119] [ip4][..tcp] [......127.0.0.1][49782] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...120] [ip4][..tcp] [......127.0.0.1][49784] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...120] [ip4][..tcp] [......127.0.0.1][49784] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...121] [ip4][..tcp] [......127.0.0.1][49786] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...121] [ip4][..tcp] [......127.0.0.1][49786] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...122] [ip4][..tcp] [......127.0.0.1][49788] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...122] [ip4][..tcp] [......127.0.0.1][49788] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...123] [ip4][..tcp] [......127.0.0.1][49790] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...123] [ip4][..tcp] [......127.0.0.1][49790] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...124] [ip4][..tcp] [......127.0.0.1][49792] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...124] [ip4][..tcp] [......127.0.0.1][49792] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...125] [ip4][..tcp] [......127.0.0.1][49794] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...125] [ip4][..tcp] [......127.0.0.1][49794] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...126] [ip4][..tcp] [......127.0.0.1][49796] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...126] [ip4][..tcp] [......127.0.0.1][49796] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...127] [ip4][..tcp] [......127.0.0.1][49798] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...127] [ip4][..tcp] [......127.0.0.1][49798] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...128] [ip4][..tcp] [......127.0.0.1][49800] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...128] [ip4][..tcp] [......127.0.0.1][49800] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...129] [ip4][..tcp] [......127.0.0.1][49802] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...129] [ip4][..tcp] [......127.0.0.1][49802] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...130] [ip4][..tcp] [......127.0.0.1][49804] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...130] [ip4][..tcp] [......127.0.0.1][49804] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...131] [ip4][..tcp] [......127.0.0.1][49806] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...131] [ip4][..tcp] [......127.0.0.1][49806] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...132] [ip4][..tcp] [......127.0.0.1][49808] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...132] [ip4][..tcp] [......127.0.0.1][49808] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...133] [ip4][..tcp] [......127.0.0.1][49810] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...133] [ip4][..tcp] [......127.0.0.1][49810] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...134] [ip4][..tcp] [......127.0.0.1][49812] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...134] [ip4][..tcp] [......127.0.0.1][49812] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...135] [ip4][..tcp] [......127.0.0.1][49814] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...135] [ip4][..tcp] [......127.0.0.1][49814] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...136] [ip4][..tcp] [......127.0.0.1][49816] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...136] [ip4][..tcp] [......127.0.0.1][49816] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...137] [ip4][..tcp] [......127.0.0.1][49818] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...137] [ip4][..tcp] [......127.0.0.1][49818] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...138] [ip4][..tcp] [......127.0.0.1][49820] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...138] [ip4][..tcp] [......127.0.0.1][49820] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...139] [ip4][..tcp] [......127.0.0.1][49822] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...139] [ip4][..tcp] [......127.0.0.1][49822] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...140] [ip4][..tcp] [......127.0.0.1][49824] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...140] [ip4][..tcp] [......127.0.0.1][49824] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...141] [ip4][..tcp] [......127.0.0.1][49826] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...141] [ip4][..tcp] [......127.0.0.1][49826] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...142] [ip4][..tcp] [......127.0.0.1][49828] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...142] [ip4][..tcp] [......127.0.0.1][49828] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...143] [ip4][..tcp] [......127.0.0.1][49830] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...143] [ip4][..tcp] [......127.0.0.1][49830] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...144] [ip4][..tcp] [......127.0.0.1][49832] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...144] [ip4][..tcp] [......127.0.0.1][49832] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...145] [ip4][..tcp] [......127.0.0.1][49834] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...145] [ip4][..tcp] [......127.0.0.1][49834] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...146] [ip4][..tcp] [......127.0.0.1][49836] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...146] [ip4][..tcp] [......127.0.0.1][49836] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...147] [ip4][..tcp] [......127.0.0.1][49838] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...147] [ip4][..tcp] [......127.0.0.1][49838] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...148] [ip4][..tcp] [......127.0.0.1][49840] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...148] [ip4][..tcp] [......127.0.0.1][49840] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...149] [ip4][..tcp] [......127.0.0.1][49842] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...149] [ip4][..tcp] [......127.0.0.1][49842] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...150] [ip4][..tcp] [......127.0.0.1][49844] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...150] [ip4][..tcp] [......127.0.0.1][49844] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...151] [ip4][..tcp] [......127.0.0.1][49846] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...151] [ip4][..tcp] [......127.0.0.1][49846] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...152] [ip4][..tcp] [......127.0.0.1][49848] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...152] [ip4][..tcp] [......127.0.0.1][49848] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...153] [ip4][..tcp] [......127.0.0.1][49850] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...153] [ip4][..tcp] [......127.0.0.1][49850] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...154] [ip4][..tcp] [......127.0.0.1][49852] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...154] [ip4][..tcp] [......127.0.0.1][49852] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...155] [ip4][..tcp] [......127.0.0.1][49854] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...155] [ip4][..tcp] [......127.0.0.1][49854] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...156] [ip4][..tcp] [......127.0.0.1][49856] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...156] [ip4][..tcp] [......127.0.0.1][49856] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...157] [ip4][..tcp] [......127.0.0.1][49858] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...157] [ip4][..tcp] [......127.0.0.1][49858] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...158] [ip4][..tcp] [......127.0.0.1][49860] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...158] [ip4][..tcp] [......127.0.0.1][49860] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...159] [ip4][..tcp] [......127.0.0.1][49862] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...159] [ip4][..tcp] [......127.0.0.1][49862] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...160] [ip4][..tcp] [......127.0.0.1][49864] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...160] [ip4][..tcp] [......127.0.0.1][49864] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...161] [ip4][..tcp] [......127.0.0.1][49866] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...161] [ip4][..tcp] [......127.0.0.1][49866] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...162] [ip4][..tcp] [......127.0.0.1][49868] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...162] [ip4][..tcp] [......127.0.0.1][49868] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...163] [ip4][..tcp] [......127.0.0.1][49870] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...163] [ip4][..tcp] [......127.0.0.1][49870] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...164] [ip4][..tcp] [......127.0.0.1][49872] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...164] [ip4][..tcp] [......127.0.0.1][49872] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...165] [ip4][..tcp] [......127.0.0.1][49874] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...165] [ip4][..tcp] [......127.0.0.1][49874] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...166] [ip4][..tcp] [......127.0.0.1][49876] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...166] [ip4][..tcp] [......127.0.0.1][49876] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...167] [ip4][..tcp] [......127.0.0.1][49878] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...167] [ip4][..tcp] [......127.0.0.1][49878] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...168] [ip4][..tcp] [......127.0.0.1][49880] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...168] [ip4][..tcp] [......127.0.0.1][49880] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...169] [ip4][..tcp] [......127.0.0.1][49882] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...169] [ip4][..tcp] [......127.0.0.1][49882] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...170] [ip4][..tcp] [......127.0.0.1][49884] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...170] [ip4][..tcp] [......127.0.0.1][49884] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...171] [ip4][..tcp] [......127.0.0.1][49886] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...171] [ip4][..tcp] [......127.0.0.1][49886] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...172] [ip4][..tcp] [......127.0.0.1][49888] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...172] [ip4][..tcp] [......127.0.0.1][49888] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...173] [ip4][..tcp] [......127.0.0.1][49890] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...173] [ip4][..tcp] [......127.0.0.1][49890] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...174] [ip4][..tcp] [......127.0.0.1][49892] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...174] [ip4][..tcp] [......127.0.0.1][49892] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...175] [ip4][..tcp] [......127.0.0.1][49894] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...175] [ip4][..tcp] [......127.0.0.1][49894] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...176] [ip4][..tcp] [......127.0.0.1][49896] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...176] [ip4][..tcp] [......127.0.0.1][49896] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...177] [ip4][..tcp] [......127.0.0.1][49898] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...177] [ip4][..tcp] [......127.0.0.1][49898] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...178] [ip4][..tcp] [......127.0.0.1][49900] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...178] [ip4][..tcp] [......127.0.0.1][49900] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...179] [ip4][..tcp] [......127.0.0.1][49902] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...179] [ip4][..tcp] [......127.0.0.1][49902] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...180] [ip4][..tcp] [......127.0.0.1][49904] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...180] [ip4][..tcp] [......127.0.0.1][49904] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...181] [ip4][..tcp] [......127.0.0.1][49906] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...181] [ip4][..tcp] [......127.0.0.1][49906] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...182] [ip4][..tcp] [......127.0.0.1][49908] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...182] [ip4][..tcp] [......127.0.0.1][49908] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...183] [ip4][..tcp] [......127.0.0.1][49910] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...183] [ip4][..tcp] [......127.0.0.1][49910] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...184] [ip4][..tcp] [......127.0.0.1][49912] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...184] [ip4][..tcp] [......127.0.0.1][49912] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...185] [ip4][..tcp] [......127.0.0.1][49914] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...185] [ip4][..tcp] [......127.0.0.1][49914] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...186] [ip4][..tcp] [......127.0.0.1][49916] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...186] [ip4][..tcp] [......127.0.0.1][49916] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...187] [ip4][..tcp] [......127.0.0.1][49918] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...187] [ip4][..tcp] [......127.0.0.1][49918] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...188] [ip4][..tcp] [......127.0.0.1][49920] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...188] [ip4][..tcp] [......127.0.0.1][49920] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...189] [ip4][..tcp] [......127.0.0.1][49922] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...189] [ip4][..tcp] [......127.0.0.1][49922] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...190] [ip4][..tcp] [......127.0.0.1][49924] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...190] [ip4][..tcp] [......127.0.0.1][49924] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...191] [ip4][..tcp] [......127.0.0.1][49926] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...191] [ip4][..tcp] [......127.0.0.1][49926] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...192] [ip4][..tcp] [......127.0.0.1][49928] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...192] [ip4][..tcp] [......127.0.0.1][49928] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...193] [ip4][..tcp] [......127.0.0.1][49930] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...193] [ip4][..tcp] [......127.0.0.1][49930] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...194] [ip4][..tcp] [......127.0.0.1][49932] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...194] [ip4][..tcp] [......127.0.0.1][49932] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...195] [ip4][..tcp] [......127.0.0.1][49934] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...195] [ip4][..tcp] [......127.0.0.1][49934] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...196] [ip4][..tcp] [......127.0.0.1][49936] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...196] [ip4][..tcp] [......127.0.0.1][49936] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...197] [ip4][..tcp] [......127.0.0.1][49938] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...197] [ip4][..tcp] [......127.0.0.1][49938] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...198] [ip4][..tcp] [......127.0.0.1][49940] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...198] [ip4][..tcp] [......127.0.0.1][49940] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...199] [ip4][..tcp] [......127.0.0.1][49942] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...199] [ip4][..tcp] [......127.0.0.1][49942] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...200] [ip4][..tcp] [......127.0.0.1][49944] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...200] [ip4][..tcp] [......127.0.0.1][49944] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...201] [ip4][..tcp] [......127.0.0.1][49946] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...201] [ip4][..tcp] [......127.0.0.1][49946] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...202] [ip4][..tcp] [......127.0.0.1][49948] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...202] [ip4][..tcp] [......127.0.0.1][49948] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...203] [ip4][..tcp] [......127.0.0.1][49950] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...203] [ip4][..tcp] [......127.0.0.1][49950] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...204] [ip4][..tcp] [......127.0.0.1][49952] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...204] [ip4][..tcp] [......127.0.0.1][49952] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...205] [ip4][..tcp] [......127.0.0.1][49954] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...205] [ip4][..tcp] [......127.0.0.1][49954] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...206] [ip4][..tcp] [......127.0.0.1][49956] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...206] [ip4][..tcp] [......127.0.0.1][49956] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...207] [ip4][..tcp] [......127.0.0.1][49958] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...207] [ip4][..tcp] [......127.0.0.1][49958] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...208] [ip4][..tcp] [......127.0.0.1][49960] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...208] [ip4][..tcp] [......127.0.0.1][49960] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...209] [ip4][..tcp] [......127.0.0.1][49962] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...209] [ip4][..tcp] [......127.0.0.1][49962] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...210] [ip4][..tcp] [......127.0.0.1][49964] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...210] [ip4][..tcp] [......127.0.0.1][49964] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...211] [ip4][..tcp] [......127.0.0.1][49966] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...211] [ip4][..tcp] [......127.0.0.1][49966] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...212] [ip4][..tcp] [......127.0.0.1][49968] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...212] [ip4][..tcp] [......127.0.0.1][49968] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...213] [ip4][..tcp] [......127.0.0.1][49970] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...213] [ip4][..tcp] [......127.0.0.1][49970] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...214] [ip4][..tcp] [......127.0.0.1][49972] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...214] [ip4][..tcp] [......127.0.0.1][49972] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...215] [ip4][..tcp] [......127.0.0.1][49974] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...215] [ip4][..tcp] [......127.0.0.1][49974] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...216] [ip4][..tcp] [......127.0.0.1][49976] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...216] [ip4][..tcp] [......127.0.0.1][49976] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...217] [ip4][..tcp] [......127.0.0.1][49978] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...217] [ip4][..tcp] [......127.0.0.1][49978] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...218] [ip4][..tcp] [......127.0.0.1][49980] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...218] [ip4][..tcp] [......127.0.0.1][49980] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...219] [ip4][..tcp] [......127.0.0.1][49982] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...219] [ip4][..tcp] [......127.0.0.1][49982] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...220] [ip4][..tcp] [......127.0.0.1][49984] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...220] [ip4][..tcp] [......127.0.0.1][49984] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...221] [ip4][..tcp] [......127.0.0.1][49986] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...221] [ip4][..tcp] [......127.0.0.1][49986] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...222] [ip4][..tcp] [......127.0.0.1][49988] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...222] [ip4][..tcp] [......127.0.0.1][49988] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...223] [ip4][..tcp] [......127.0.0.1][49990] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...223] [ip4][..tcp] [......127.0.0.1][49990] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...224] [ip4][..tcp] [......127.0.0.1][49992] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...224] [ip4][..tcp] [......127.0.0.1][49992] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...225] [ip4][..tcp] [......127.0.0.1][49994] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...225] [ip4][..tcp] [......127.0.0.1][49994] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...226] [ip4][..tcp] [......127.0.0.1][49996] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...226] [ip4][..tcp] [......127.0.0.1][49996] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...227] [ip4][..tcp] [......127.0.0.1][49998] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...227] [ip4][..tcp] [......127.0.0.1][49998] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...228] [ip4][..tcp] [......127.0.0.1][50000] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...228] [ip4][..tcp] [......127.0.0.1][50000] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...229] [ip4][..tcp] [......127.0.0.1][50002] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...229] [ip4][..tcp] [......127.0.0.1][50002] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...230] [ip4][..tcp] [......127.0.0.1][50004] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...230] [ip4][..tcp] [......127.0.0.1][50004] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...231] [ip4][..tcp] [......127.0.0.1][50006] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...231] [ip4][..tcp] [......127.0.0.1][50006] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...232] [ip4][..tcp] [......127.0.0.1][50008] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...232] [ip4][..tcp] [......127.0.0.1][50008] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...233] [ip4][..tcp] [......127.0.0.1][50010] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...233] [ip4][..tcp] [......127.0.0.1][50010] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...234] [ip4][..tcp] [......127.0.0.1][50012] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...234] [ip4][..tcp] [......127.0.0.1][50012] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...235] [ip4][..tcp] [......127.0.0.1][50014] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...235] [ip4][..tcp] [......127.0.0.1][50014] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...236] [ip4][..tcp] [......127.0.0.1][50016] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...236] [ip4][..tcp] [......127.0.0.1][50016] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...237] [ip4][..tcp] [......127.0.0.1][50018] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...237] [ip4][..tcp] [......127.0.0.1][50018] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...238] [ip4][..tcp] [......127.0.0.1][50020] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...238] [ip4][..tcp] [......127.0.0.1][50020] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...239] [ip4][..tcp] [......127.0.0.1][50022] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...239] [ip4][..tcp] [......127.0.0.1][50022] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...240] [ip4][..tcp] [......127.0.0.1][50024] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...240] [ip4][..tcp] [......127.0.0.1][50024] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...241] [ip4][..tcp] [......127.0.0.1][50026] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...241] [ip4][..tcp] [......127.0.0.1][50026] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...242] [ip4][..tcp] [......127.0.0.1][50028] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...242] [ip4][..tcp] [......127.0.0.1][50028] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...243] [ip4][..tcp] [......127.0.0.1][50030] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...243] [ip4][..tcp] [......127.0.0.1][50030] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...244] [ip4][..tcp] [......127.0.0.1][50032] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...244] [ip4][..tcp] [......127.0.0.1][50032] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...245] [ip4][..tcp] [......127.0.0.1][50034] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...245] [ip4][..tcp] [......127.0.0.1][50034] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...246] [ip4][..tcp] [......127.0.0.1][50036] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...246] [ip4][..tcp] [......127.0.0.1][50036] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...247] [ip4][..tcp] [......127.0.0.1][50038] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...247] [ip4][..tcp] [......127.0.0.1][50038] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...248] [ip4][..tcp] [......127.0.0.1][50040] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...248] [ip4][..tcp] [......127.0.0.1][50040] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...249] [ip4][..tcp] [......127.0.0.1][50042] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...249] [ip4][..tcp] [......127.0.0.1][50042] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...250] [ip4][..tcp] [......127.0.0.1][50044] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...250] [ip4][..tcp] [......127.0.0.1][50044] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...251] [ip4][..tcp] [......127.0.0.1][50046] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...251] [ip4][..tcp] [......127.0.0.1][50046] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...252] [ip4][..tcp] [......127.0.0.1][50048] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...252] [ip4][..tcp] [......127.0.0.1][50048] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...253] [ip4][..tcp] [......127.0.0.1][50050] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...253] [ip4][..tcp] [......127.0.0.1][50050] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...254] [ip4][..tcp] [......127.0.0.1][50052] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...254] [ip4][..tcp] [......127.0.0.1][50052] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...255] [ip4][..tcp] [......127.0.0.1][50054] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...255] [ip4][..tcp] [......127.0.0.1][50054] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...256] [ip4][..tcp] [......127.0.0.1][50056] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...256] [ip4][..tcp] [......127.0.0.1][50056] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...257] [ip4][..tcp] [......127.0.0.1][50058] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...257] [ip4][..tcp] [......127.0.0.1][50058] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...258] [ip4][..tcp] [......127.0.0.1][50060] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...258] [ip4][..tcp] [......127.0.0.1][50060] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...259] [ip4][..tcp] [......127.0.0.1][50062] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...259] [ip4][..tcp] [......127.0.0.1][50062] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...260] [ip4][..tcp] [......127.0.0.1][50064] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...260] [ip4][..tcp] [......127.0.0.1][50064] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...261] [ip4][..tcp] [......127.0.0.1][50066] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...261] [ip4][..tcp] [......127.0.0.1][50066] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...262] [ip4][..tcp] [......127.0.0.1][50068] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...262] [ip4][..tcp] [......127.0.0.1][50068] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...263] [ip4][..tcp] [......127.0.0.1][50070] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...263] [ip4][..tcp] [......127.0.0.1][50070] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...264] [ip4][..tcp] [......127.0.0.1][50072] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...264] [ip4][..tcp] [......127.0.0.1][50072] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...265] [ip4][..tcp] [......127.0.0.1][50074] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...265] [ip4][..tcp] [......127.0.0.1][50074] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...266] [ip4][..tcp] [......127.0.0.1][50076] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...266] [ip4][..tcp] [......127.0.0.1][50076] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...267] [ip4][..tcp] [......127.0.0.1][50078] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...267] [ip4][..tcp] [......127.0.0.1][50078] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...268] [ip4][..tcp] [......127.0.0.1][50080] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...268] [ip4][..tcp] [......127.0.0.1][50080] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...269] [ip4][..tcp] [......127.0.0.1][50082] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...269] [ip4][..tcp] [......127.0.0.1][50082] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...270] [ip4][..tcp] [......127.0.0.1][50084] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...270] [ip4][..tcp] [......127.0.0.1][50084] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...271] [ip4][..tcp] [......127.0.0.1][50086] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...271] [ip4][..tcp] [......127.0.0.1][50086] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...272] [ip4][..tcp] [......127.0.0.1][50088] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...272] [ip4][..tcp] [......127.0.0.1][50088] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...273] [ip4][..tcp] [......127.0.0.1][50090] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...273] [ip4][..tcp] [......127.0.0.1][50090] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...274] [ip4][..tcp] [......127.0.0.1][50092] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...274] [ip4][..tcp] [......127.0.0.1][50092] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...275] [ip4][..tcp] [......127.0.0.1][50094] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...275] [ip4][..tcp] [......127.0.0.1][50094] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...276] [ip4][..tcp] [......127.0.0.1][50096] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...276] [ip4][..tcp] [......127.0.0.1][50096] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...277] [ip4][..tcp] [......127.0.0.1][50098] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...277] [ip4][..tcp] [......127.0.0.1][50098] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...278] [ip4][..tcp] [......127.0.0.1][50100] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...278] [ip4][..tcp] [......127.0.0.1][50100] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...279] [ip4][..tcp] [......127.0.0.1][50102] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...279] [ip4][..tcp] [......127.0.0.1][50102] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...280] [ip4][..tcp] [......127.0.0.1][50104] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...280] [ip4][..tcp] [......127.0.0.1][50104] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...281] [ip4][..tcp] [......127.0.0.1][50106] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...281] [ip4][..tcp] [......127.0.0.1][50106] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...282] [ip4][..tcp] [......127.0.0.1][50108] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...282] [ip4][..tcp] [......127.0.0.1][50108] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...283] [ip4][..tcp] [......127.0.0.1][50110] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...283] [ip4][..tcp] [......127.0.0.1][50110] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...284] [ip4][..tcp] [......127.0.0.1][50112] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...284] [ip4][..tcp] [......127.0.0.1][50112] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...285] [ip4][..tcp] [......127.0.0.1][50114] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...285] [ip4][..tcp] [......127.0.0.1][50114] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...286] [ip4][..tcp] [......127.0.0.1][50116] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...286] [ip4][..tcp] [......127.0.0.1][50116] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...287] [ip4][..tcp] [......127.0.0.1][50118] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...287] [ip4][..tcp] [......127.0.0.1][50118] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...288] [ip4][..tcp] [......127.0.0.1][50120] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...288] [ip4][..tcp] [......127.0.0.1][50120] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...289] [ip4][..tcp] [......127.0.0.1][50122] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...289] [ip4][..tcp] [......127.0.0.1][50122] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...290] [ip4][..tcp] [......127.0.0.1][50124] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...290] [ip4][..tcp] [......127.0.0.1][50124] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...291] [ip4][..tcp] [......127.0.0.1][50126] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...291] [ip4][..tcp] [......127.0.0.1][50126] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...292] [ip4][..tcp] [......127.0.0.1][50128] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...292] [ip4][..tcp] [......127.0.0.1][50128] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...293] [ip4][..tcp] [......127.0.0.1][50130] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...293] [ip4][..tcp] [......127.0.0.1][50130] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...294] [ip4][..tcp] [......127.0.0.1][50132] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...294] [ip4][..tcp] [......127.0.0.1][50132] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...295] [ip4][..tcp] [......127.0.0.1][50134] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...295] [ip4][..tcp] [......127.0.0.1][50134] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...296] [ip4][..tcp] [......127.0.0.1][50136] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...296] [ip4][..tcp] [......127.0.0.1][50136] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...297] [ip4][..tcp] [......127.0.0.1][50138] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...297] [ip4][..tcp] [......127.0.0.1][50138] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...298] [ip4][..tcp] [......127.0.0.1][50140] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...298] [ip4][..tcp] [......127.0.0.1][50140] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...299] [ip4][..tcp] [......127.0.0.1][50142] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...299] [ip4][..tcp] [......127.0.0.1][50142] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...300] [ip4][..tcp] [......127.0.0.1][50144] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...300] [ip4][..tcp] [......127.0.0.1][50144] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...301] [ip4][..tcp] [......127.0.0.1][50146] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...301] [ip4][..tcp] [......127.0.0.1][50146] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...302] [ip4][..tcp] [......127.0.0.1][50148] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...302] [ip4][..tcp] [......127.0.0.1][50148] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...303] [ip4][..tcp] [......127.0.0.1][50150] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...303] [ip4][..tcp] [......127.0.0.1][50150] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...304] [ip4][..tcp] [......127.0.0.1][50152] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...304] [ip4][..tcp] [......127.0.0.1][50152] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...305] [ip4][..tcp] [......127.0.0.1][50154] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...305] [ip4][..tcp] [......127.0.0.1][50154] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...306] [ip4][..tcp] [......127.0.0.1][50156] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...306] [ip4][..tcp] [......127.0.0.1][50156] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...307] [ip4][..tcp] [......127.0.0.1][50158] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...307] [ip4][..tcp] [......127.0.0.1][50158] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...308] [ip4][..tcp] [......127.0.0.1][50160] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...308] [ip4][..tcp] [......127.0.0.1][50160] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...309] [ip4][..tcp] [......127.0.0.1][50162] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...309] [ip4][..tcp] [......127.0.0.1][50162] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...310] [ip4][..tcp] [......127.0.0.1][50164] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...310] [ip4][..tcp] [......127.0.0.1][50164] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...311] [ip4][..tcp] [......127.0.0.1][50166] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...311] [ip4][..tcp] [......127.0.0.1][50166] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...312] [ip4][..tcp] [......127.0.0.1][50168] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...312] [ip4][..tcp] [......127.0.0.1][50168] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...313] [ip4][..tcp] [......127.0.0.1][50170] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...313] [ip4][..tcp] [......127.0.0.1][50170] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...314] [ip4][..tcp] [......127.0.0.1][50172] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...314] [ip4][..tcp] [......127.0.0.1][50172] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...315] [ip4][..tcp] [......127.0.0.1][50174] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...315] [ip4][..tcp] [......127.0.0.1][50174] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...316] [ip4][..tcp] [......127.0.0.1][50176] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...316] [ip4][..tcp] [......127.0.0.1][50176] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...317] [ip4][..tcp] [......127.0.0.1][50178] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...317] [ip4][..tcp] [......127.0.0.1][50178] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...318] [ip4][..tcp] [......127.0.0.1][50180] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...318] [ip4][..tcp] [......127.0.0.1][50180] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...319] [ip4][..tcp] [......127.0.0.1][50182] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...319] [ip4][..tcp] [......127.0.0.1][50182] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...320] [ip4][..tcp] [......127.0.0.1][50184] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...320] [ip4][..tcp] [......127.0.0.1][50184] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...321] [ip4][..tcp] [......127.0.0.1][50186] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...321] [ip4][..tcp] [......127.0.0.1][50186] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...322] [ip4][..tcp] [......127.0.0.1][50188] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...322] [ip4][..tcp] [......127.0.0.1][50188] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...323] [ip4][..tcp] [......127.0.0.1][50190] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...323] [ip4][..tcp] [......127.0.0.1][50190] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...324] [ip4][..tcp] [......127.0.0.1][50192] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...324] [ip4][..tcp] [......127.0.0.1][50192] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...325] [ip4][..tcp] [......127.0.0.1][50194] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...325] [ip4][..tcp] [......127.0.0.1][50194] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...326] [ip4][..tcp] [......127.0.0.1][50196] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...326] [ip4][..tcp] [......127.0.0.1][50196] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...327] [ip4][..tcp] [......127.0.0.1][50198] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...327] [ip4][..tcp] [......127.0.0.1][50198] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...328] [ip4][..tcp] [......127.0.0.1][50200] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...328] [ip4][..tcp] [......127.0.0.1][50200] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...329] [ip4][..tcp] [......127.0.0.1][50202] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...329] [ip4][..tcp] [......127.0.0.1][50202] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...330] [ip4][..tcp] [......127.0.0.1][50204] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...330] [ip4][..tcp] [......127.0.0.1][50204] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...331] [ip4][..tcp] [......127.0.0.1][50206] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...331] [ip4][..tcp] [......127.0.0.1][50206] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...332] [ip4][..tcp] [......127.0.0.1][50208] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...332] [ip4][..tcp] [......127.0.0.1][50208] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...333] [ip4][..tcp] [......127.0.0.1][50210] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...333] [ip4][..tcp] [......127.0.0.1][50210] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...334] [ip4][..tcp] [......127.0.0.1][50212] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...334] [ip4][..tcp] [......127.0.0.1][50212] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...335] [ip4][..tcp] [......127.0.0.1][50214] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...335] [ip4][..tcp] [......127.0.0.1][50214] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...336] [ip4][..tcp] [......127.0.0.1][50216] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...336] [ip4][..tcp] [......127.0.0.1][50216] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...337] [ip4][..tcp] [......127.0.0.1][50218] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...337] [ip4][..tcp] [......127.0.0.1][50218] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...338] [ip4][..tcp] [......127.0.0.1][50220] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...338] [ip4][..tcp] [......127.0.0.1][50220] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...339] [ip4][..tcp] [......127.0.0.1][50222] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...339] [ip4][..tcp] [......127.0.0.1][50222] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...340] [ip4][..tcp] [......127.0.0.1][50224] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...340] [ip4][..tcp] [......127.0.0.1][50224] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...341] [ip4][..tcp] [......127.0.0.1][50226] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...341] [ip4][..tcp] [......127.0.0.1][50226] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...342] [ip4][..tcp] [......127.0.0.1][50228] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...342] [ip4][..tcp] [......127.0.0.1][50228] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...343] [ip4][..tcp] [......127.0.0.1][50230] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...343] [ip4][..tcp] [......127.0.0.1][50230] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...344] [ip4][..tcp] [......127.0.0.1][50232] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...344] [ip4][..tcp] [......127.0.0.1][50232] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...345] [ip4][..tcp] [......127.0.0.1][50234] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...345] [ip4][..tcp] [......127.0.0.1][50234] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...346] [ip4][..tcp] [......127.0.0.1][50236] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...346] [ip4][..tcp] [......127.0.0.1][50236] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...347] [ip4][..tcp] [......127.0.0.1][50238] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...347] [ip4][..tcp] [......127.0.0.1][50238] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...348] [ip4][..tcp] [......127.0.0.1][50240] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...348] [ip4][..tcp] [......127.0.0.1][50240] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...349] [ip4][..tcp] [......127.0.0.1][50242] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...349] [ip4][..tcp] [......127.0.0.1][50242] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...350] [ip4][..tcp] [......127.0.0.1][50244] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...350] [ip4][..tcp] [......127.0.0.1][50244] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...351] [ip4][..tcp] [......127.0.0.1][50246] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...351] [ip4][..tcp] [......127.0.0.1][50246] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...352] [ip4][..tcp] [......127.0.0.1][50248] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...352] [ip4][..tcp] [......127.0.0.1][50248] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...353] [ip4][..tcp] [......127.0.0.1][50250] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...353] [ip4][..tcp] [......127.0.0.1][50250] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...354] [ip4][..tcp] [......127.0.0.1][50252] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...354] [ip4][..tcp] [......127.0.0.1][50252] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...355] [ip4][..tcp] [......127.0.0.1][50254] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...355] [ip4][..tcp] [......127.0.0.1][50254] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...356] [ip4][..tcp] [......127.0.0.1][50256] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...356] [ip4][..tcp] [......127.0.0.1][50256] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...357] [ip4][..tcp] [......127.0.0.1][50258] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...357] [ip4][..tcp] [......127.0.0.1][50258] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...358] [ip4][..tcp] [......127.0.0.1][50260] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...358] [ip4][..tcp] [......127.0.0.1][50260] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...359] [ip4][..tcp] [......127.0.0.1][50262] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...359] [ip4][..tcp] [......127.0.0.1][50262] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...360] [ip4][..tcp] [......127.0.0.1][50264] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...360] [ip4][..tcp] [......127.0.0.1][50264] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...361] [ip4][..tcp] [......127.0.0.1][50266] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...361] [ip4][..tcp] [......127.0.0.1][50266] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...362] [ip4][..tcp] [......127.0.0.1][50268] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...362] [ip4][..tcp] [......127.0.0.1][50268] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...363] [ip4][..tcp] [......127.0.0.1][50270] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...363] [ip4][..tcp] [......127.0.0.1][50270] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...364] [ip4][..tcp] [......127.0.0.1][50272] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...364] [ip4][..tcp] [......127.0.0.1][50272] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...365] [ip4][..tcp] [......127.0.0.1][50274] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...365] [ip4][..tcp] [......127.0.0.1][50274] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...366] [ip4][..tcp] [......127.0.0.1][50276] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...366] [ip4][..tcp] [......127.0.0.1][50276] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...367] [ip4][..tcp] [......127.0.0.1][50278] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...367] [ip4][..tcp] [......127.0.0.1][50278] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...368] [ip4][..tcp] [......127.0.0.1][50280] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...368] [ip4][..tcp] [......127.0.0.1][50280] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...369] [ip4][..tcp] [......127.0.0.1][50282] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...369] [ip4][..tcp] [......127.0.0.1][50282] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...370] [ip4][..tcp] [......127.0.0.1][50284] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...370] [ip4][..tcp] [......127.0.0.1][50284] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...371] [ip4][..tcp] [......127.0.0.1][50286] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...371] [ip4][..tcp] [......127.0.0.1][50286] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...372] [ip4][..tcp] [......127.0.0.1][50288] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...372] [ip4][..tcp] [......127.0.0.1][50288] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...373] [ip4][..tcp] [......127.0.0.1][50290] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...373] [ip4][..tcp] [......127.0.0.1][50290] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...374] [ip4][..tcp] [......127.0.0.1][50292] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...374] [ip4][..tcp] [......127.0.0.1][50292] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...375] [ip4][..tcp] [......127.0.0.1][50294] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...375] [ip4][..tcp] [......127.0.0.1][50294] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...376] [ip4][..tcp] [......127.0.0.1][50296] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...376] [ip4][..tcp] [......127.0.0.1][50296] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...377] [ip4][..tcp] [......127.0.0.1][50298] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...377] [ip4][..tcp] [......127.0.0.1][50298] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...378] [ip4][..tcp] [......127.0.0.1][50300] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...378] [ip4][..tcp] [......127.0.0.1][50300] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...379] [ip4][..tcp] [......127.0.0.1][50302] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...379] [ip4][..tcp] [......127.0.0.1][50302] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...380] [ip4][..tcp] [......127.0.0.1][50304] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...380] [ip4][..tcp] [......127.0.0.1][50304] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...381] [ip4][..tcp] [......127.0.0.1][50306] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...381] [ip4][..tcp] [......127.0.0.1][50306] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...382] [ip4][..tcp] [......127.0.0.1][50308] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...382] [ip4][..tcp] [......127.0.0.1][50308] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...383] [ip4][..tcp] [......127.0.0.1][50310] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...383] [ip4][..tcp] [......127.0.0.1][50310] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...384] [ip4][..tcp] [......127.0.0.1][50312] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...384] [ip4][..tcp] [......127.0.0.1][50312] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...385] [ip4][..tcp] [......127.0.0.1][50314] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...385] [ip4][..tcp] [......127.0.0.1][50314] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...386] [ip4][..tcp] [......127.0.0.1][50316] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...386] [ip4][..tcp] [......127.0.0.1][50316] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...387] [ip4][..tcp] [......127.0.0.1][50318] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...387] [ip4][..tcp] [......127.0.0.1][50318] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...388] [ip4][..tcp] [......127.0.0.1][50320] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...388] [ip4][..tcp] [......127.0.0.1][50320] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...389] [ip4][..tcp] [......127.0.0.1][50322] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...389] [ip4][..tcp] [......127.0.0.1][50322] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...390] [ip4][..tcp] [......127.0.0.1][50324] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...390] [ip4][..tcp] [......127.0.0.1][50324] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...391] [ip4][..tcp] [......127.0.0.1][50326] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...391] [ip4][..tcp] [......127.0.0.1][50326] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...392] [ip4][..tcp] [......127.0.0.1][50328] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...392] [ip4][..tcp] [......127.0.0.1][50328] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...393] [ip4][..tcp] [......127.0.0.1][50330] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...393] [ip4][..tcp] [......127.0.0.1][50330] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...394] [ip4][..tcp] [......127.0.0.1][50332] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...394] [ip4][..tcp] [......127.0.0.1][50332] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...395] [ip4][..tcp] [......127.0.0.1][50334] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...395] [ip4][..tcp] [......127.0.0.1][50334] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...396] [ip4][..tcp] [......127.0.0.1][50336] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...396] [ip4][..tcp] [......127.0.0.1][50336] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...397] [ip4][..tcp] [......127.0.0.1][50338] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...397] [ip4][..tcp] [......127.0.0.1][50338] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...398] [ip4][..tcp] [......127.0.0.1][50340] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...398] [ip4][..tcp] [......127.0.0.1][50340] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...399] [ip4][..tcp] [......127.0.0.1][50342] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...399] [ip4][..tcp] [......127.0.0.1][50342] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...400] [ip4][..tcp] [......127.0.0.1][50344] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...400] [ip4][..tcp] [......127.0.0.1][50344] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...401] [ip4][..tcp] [......127.0.0.1][50346] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...401] [ip4][..tcp] [......127.0.0.1][50346] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...402] [ip4][..tcp] [......127.0.0.1][50348] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...402] [ip4][..tcp] [......127.0.0.1][50348] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...403] [ip4][..tcp] [......127.0.0.1][50350] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...403] [ip4][..tcp] [......127.0.0.1][50350] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...404] [ip4][..tcp] [......127.0.0.1][50352] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...404] [ip4][..tcp] [......127.0.0.1][50352] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...405] [ip4][..tcp] [......127.0.0.1][50354] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...405] [ip4][..tcp] [......127.0.0.1][50354] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...406] [ip4][..tcp] [......127.0.0.1][50356] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...406] [ip4][..tcp] [......127.0.0.1][50356] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...407] [ip4][..tcp] [......127.0.0.1][50358] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...407] [ip4][..tcp] [......127.0.0.1][50358] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...408] [ip4][..tcp] [......127.0.0.1][50360] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...408] [ip4][..tcp] [......127.0.0.1][50360] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...409] [ip4][..tcp] [......127.0.0.1][50362] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...409] [ip4][..tcp] [......127.0.0.1][50362] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...410] [ip4][..tcp] [......127.0.0.1][50364] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...410] [ip4][..tcp] [......127.0.0.1][50364] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...411] [ip4][..tcp] [......127.0.0.1][50366] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...411] [ip4][..tcp] [......127.0.0.1][50366] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...412] [ip4][..tcp] [......127.0.0.1][50368] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...412] [ip4][..tcp] [......127.0.0.1][50368] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...413] [ip4][..tcp] [......127.0.0.1][50370] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...413] [ip4][..tcp] [......127.0.0.1][50370] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...414] [ip4][..tcp] [......127.0.0.1][50372] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...414] [ip4][..tcp] [......127.0.0.1][50372] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...415] [ip4][..tcp] [......127.0.0.1][50374] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...415] [ip4][..tcp] [......127.0.0.1][50374] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...416] [ip4][..tcp] [......127.0.0.1][50376] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...416] [ip4][..tcp] [......127.0.0.1][50376] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...417] [ip4][..tcp] [......127.0.0.1][50378] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...417] [ip4][..tcp] [......127.0.0.1][50378] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...418] [ip4][..tcp] [......127.0.0.1][50380] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...418] [ip4][..tcp] [......127.0.0.1][50380] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...419] [ip4][..tcp] [......127.0.0.1][50382] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...419] [ip4][..tcp] [......127.0.0.1][50382] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...420] [ip4][..tcp] [......127.0.0.1][50384] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...420] [ip4][..tcp] [......127.0.0.1][50384] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...421] [ip4][..tcp] [......127.0.0.1][50386] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...421] [ip4][..tcp] [......127.0.0.1][50386] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...422] [ip4][..tcp] [......127.0.0.1][50388] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...422] [ip4][..tcp] [......127.0.0.1][50388] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...423] [ip4][..tcp] [......127.0.0.1][50390] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...423] [ip4][..tcp] [......127.0.0.1][50390] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...424] [ip4][..tcp] [......127.0.0.1][50392] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...424] [ip4][..tcp] [......127.0.0.1][50392] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...425] [ip4][..tcp] [......127.0.0.1][50394] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...425] [ip4][..tcp] [......127.0.0.1][50394] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...426] [ip4][..tcp] [......127.0.0.1][50396] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...426] [ip4][..tcp] [......127.0.0.1][50396] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...427] [ip4][..tcp] [......127.0.0.1][50398] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...427] [ip4][..tcp] [......127.0.0.1][50398] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...428] [ip4][..tcp] [......127.0.0.1][50400] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...428] [ip4][..tcp] [......127.0.0.1][50400] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...429] [ip4][..tcp] [......127.0.0.1][50402] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...429] [ip4][..tcp] [......127.0.0.1][50402] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...430] [ip4][..tcp] [......127.0.0.1][50404] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...430] [ip4][..tcp] [......127.0.0.1][50404] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...431] [ip4][..tcp] [......127.0.0.1][50406] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...431] [ip4][..tcp] [......127.0.0.1][50406] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...432] [ip4][..tcp] [......127.0.0.1][50408] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...432] [ip4][..tcp] [......127.0.0.1][50408] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...433] [ip4][..tcp] [......127.0.0.1][50410] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...433] [ip4][..tcp] [......127.0.0.1][50410] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...434] [ip4][..tcp] [......127.0.0.1][50412] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...434] [ip4][..tcp] [......127.0.0.1][50412] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...435] [ip4][..tcp] [......127.0.0.1][50414] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...435] [ip4][..tcp] [......127.0.0.1][50414] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...436] [ip4][..tcp] [......127.0.0.1][50416] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...436] [ip4][..tcp] [......127.0.0.1][50416] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...437] [ip4][..tcp] [......127.0.0.1][50418] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...437] [ip4][..tcp] [......127.0.0.1][50418] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...438] [ip4][..tcp] [......127.0.0.1][50438] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...438] [ip4][..tcp] [......127.0.0.1][50438] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...439] [ip4][..tcp] [......127.0.0.1][50440] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...439] [ip4][..tcp] [......127.0.0.1][50440] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...440] [ip4][..tcp] [......127.0.0.1][50442] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...440] [ip4][..tcp] [......127.0.0.1][50442] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...441] [ip4][..tcp] [......127.0.0.1][50444] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...441] [ip4][..tcp] [......127.0.0.1][50444] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...442] [ip4][..tcp] [......127.0.0.1][50446] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...442] [ip4][..tcp] [......127.0.0.1][50446] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...443] [ip4][..tcp] [......127.0.0.1][50448] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...443] [ip4][..tcp] [......127.0.0.1][50448] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...444] [ip4][..tcp] [......127.0.0.1][50450] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...444] [ip4][..tcp] [......127.0.0.1][50450] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...445] [ip4][..tcp] [......127.0.0.1][50452] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...445] [ip4][..tcp] [......127.0.0.1][50452] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...446] [ip4][..tcp] [......127.0.0.1][50454] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...446] [ip4][..tcp] [......127.0.0.1][50454] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...447] [ip4][..tcp] [......127.0.0.1][50456] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...447] [ip4][..tcp] [......127.0.0.1][50456] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...448] [ip4][..tcp] [......127.0.0.1][50458] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...448] [ip4][..tcp] [......127.0.0.1][50458] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...449] [ip4][..tcp] [......127.0.0.1][50460] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...449] [ip4][..tcp] [......127.0.0.1][50460] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...450] [ip4][..tcp] [......127.0.0.1][50462] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...450] [ip4][..tcp] [......127.0.0.1][50462] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...451] [ip4][..tcp] [......127.0.0.1][50464] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...451] [ip4][..tcp] [......127.0.0.1][50464] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...452] [ip4][..tcp] [......127.0.0.1][50466] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...452] [ip4][..tcp] [......127.0.0.1][50466] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...453] [ip4][..tcp] [......127.0.0.1][50468] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...453] [ip4][..tcp] [......127.0.0.1][50468] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...454] [ip4][..tcp] [......127.0.0.1][50470] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...454] [ip4][..tcp] [......127.0.0.1][50470] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...455] [ip4][..tcp] [......127.0.0.1][50472] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...455] [ip4][..tcp] [......127.0.0.1][50472] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...456] [ip4][..tcp] [......127.0.0.1][50474] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...456] [ip4][..tcp] [......127.0.0.1][50474] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...457] [ip4][..tcp] [......127.0.0.1][50476] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...457] [ip4][..tcp] [......127.0.0.1][50476] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...458] [ip4][..tcp] [......127.0.0.1][50478] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...458] [ip4][..tcp] [......127.0.0.1][50478] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...459] [ip4][..tcp] [......127.0.0.1][50480] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...459] [ip4][..tcp] [......127.0.0.1][50480] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...460] [ip4][..tcp] [......127.0.0.1][50482] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...460] [ip4][..tcp] [......127.0.0.1][50482] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...461] [ip4][..tcp] [......127.0.0.1][50484] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...461] [ip4][..tcp] [......127.0.0.1][50484] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...462] [ip4][..tcp] [......127.0.0.1][50486] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...462] [ip4][..tcp] [......127.0.0.1][50486] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...463] [ip4][..tcp] [......127.0.0.1][50488] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...463] [ip4][..tcp] [......127.0.0.1][50488] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...464] [ip4][..tcp] [......127.0.0.1][50490] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...464] [ip4][..tcp] [......127.0.0.1][50490] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...465] [ip4][..tcp] [......127.0.0.1][50492] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...465] [ip4][..tcp] [......127.0.0.1][50492] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...466] [ip4][..tcp] [......127.0.0.1][50494] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...466] [ip4][..tcp] [......127.0.0.1][50494] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...467] [ip4][..tcp] [......127.0.0.1][50496] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...467] [ip4][..tcp] [......127.0.0.1][50496] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...468] [ip4][..tcp] [......127.0.0.1][50498] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...468] [ip4][..tcp] [......127.0.0.1][50498] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...469] [ip4][..tcp] [......127.0.0.1][50500] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...469] [ip4][..tcp] [......127.0.0.1][50500] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...470] [ip4][..tcp] [......127.0.0.1][50502] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...470] [ip4][..tcp] [......127.0.0.1][50502] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...471] [ip4][..tcp] [......127.0.0.1][50504] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...471] [ip4][..tcp] [......127.0.0.1][50504] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...472] [ip4][..tcp] [......127.0.0.1][50506] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...472] [ip4][..tcp] [......127.0.0.1][50506] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...473] [ip4][..tcp] [......127.0.0.1][50508] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...473] [ip4][..tcp] [......127.0.0.1][50508] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...474] [ip4][..tcp] [......127.0.0.1][50510] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...474] [ip4][..tcp] [......127.0.0.1][50510] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...475] [ip4][..tcp] [......127.0.0.1][50512] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...475] [ip4][..tcp] [......127.0.0.1][50512] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...476] [ip4][..tcp] [......127.0.0.1][50514] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...476] [ip4][..tcp] [......127.0.0.1][50514] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...477] [ip4][..tcp] [......127.0.0.1][50516] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...477] [ip4][..tcp] [......127.0.0.1][50516] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...478] [ip4][..tcp] [......127.0.0.1][50518] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...478] [ip4][..tcp] [......127.0.0.1][50518] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...479] [ip4][..tcp] [......127.0.0.1][50520] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...479] [ip4][..tcp] [......127.0.0.1][50520] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...480] [ip4][..tcp] [......127.0.0.1][50522] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...480] [ip4][..tcp] [......127.0.0.1][50522] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...481] [ip4][..tcp] [......127.0.0.1][50524] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...481] [ip4][..tcp] [......127.0.0.1][50524] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...482] [ip4][..tcp] [......127.0.0.1][50526] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...482] [ip4][..tcp] [......127.0.0.1][50526] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...483] [ip4][..tcp] [......127.0.0.1][50528] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...483] [ip4][..tcp] [......127.0.0.1][50528] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...484] [ip4][..tcp] [......127.0.0.1][50530] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...484] [ip4][..tcp] [......127.0.0.1][50530] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...485] [ip4][..tcp] [......127.0.0.1][50532] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...485] [ip4][..tcp] [......127.0.0.1][50532] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...486] [ip4][..tcp] [......127.0.0.1][50534] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...486] [ip4][..tcp] [......127.0.0.1][50534] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...487] [ip4][..tcp] [......127.0.0.1][50536] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...487] [ip4][..tcp] [......127.0.0.1][50536] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...488] [ip4][..tcp] [......127.0.0.1][50538] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...488] [ip4][..tcp] [......127.0.0.1][50538] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...489] [ip4][..tcp] [......127.0.0.1][50540] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...489] [ip4][..tcp] [......127.0.0.1][50540] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...490] [ip4][..tcp] [......127.0.0.1][50542] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...490] [ip4][..tcp] [......127.0.0.1][50542] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...491] [ip4][..tcp] [......127.0.0.1][50544] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...491] [ip4][..tcp] [......127.0.0.1][50544] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...492] [ip4][..tcp] [......127.0.0.1][50546] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...492] [ip4][..tcp] [......127.0.0.1][50546] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...493] [ip4][..tcp] [......127.0.0.1][50548] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...493] [ip4][..tcp] [......127.0.0.1][50548] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...494] [ip4][..tcp] [......127.0.0.1][50550] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...494] [ip4][..tcp] [......127.0.0.1][50550] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...495] [ip4][..tcp] [......127.0.0.1][50552] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...495] [ip4][..tcp] [......127.0.0.1][50552] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...496] [ip4][..tcp] [......127.0.0.1][50554] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...496] [ip4][..tcp] [......127.0.0.1][50554] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...497] [ip4][..tcp] [......127.0.0.1][50556] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...497] [ip4][..tcp] [......127.0.0.1][50556] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...498] [ip4][..tcp] [......127.0.0.1][50558] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...498] [ip4][..tcp] [......127.0.0.1][50558] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...499] [ip4][..tcp] [......127.0.0.1][50560] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...499] [ip4][..tcp] [......127.0.0.1][50560] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...500] [ip4][..tcp] [......127.0.0.1][50562] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...500] [ip4][..tcp] [......127.0.0.1][50562] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Possible Exploit, Unidirectional Traffic
new: [...501] [ip4][..tcp] [......127.0.0.1][50564] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...501] [ip4][..tcp] [......127.0.0.1][50564] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...502] [ip4][..tcp] [......127.0.0.1][50566] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...502] [ip4][..tcp] [......127.0.0.1][50566] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...503] [ip4][..tcp] [......127.0.0.1][50568] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...503] [ip4][..tcp] [......127.0.0.1][50568] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...504] [ip4][..tcp] [......127.0.0.1][50570] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...504] [ip4][..tcp] [......127.0.0.1][50570] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...505] [ip4][..tcp] [......127.0.0.1][50572] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...505] [ip4][..tcp] [......127.0.0.1][50572] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...506] [ip4][..tcp] [......127.0.0.1][50574] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...506] [ip4][..tcp] [......127.0.0.1][50574] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...507] [ip4][..tcp] [......127.0.0.1][50576] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...507] [ip4][..tcp] [......127.0.0.1][50576] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...508] [ip4][..tcp] [......127.0.0.1][50578] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...508] [ip4][..tcp] [......127.0.0.1][50578] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...509] [ip4][..tcp] [......127.0.0.1][50580] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...509] [ip4][..tcp] [......127.0.0.1][50580] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...510] [ip4][..tcp] [......127.0.0.1][50582] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...510] [ip4][..tcp] [......127.0.0.1][50582] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...511] [ip4][..tcp] [......127.0.0.1][50584] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...511] [ip4][..tcp] [......127.0.0.1][50584] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...512] [ip4][..tcp] [......127.0.0.1][50586] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...512] [ip4][..tcp] [......127.0.0.1][50586] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...513] [ip4][..tcp] [......127.0.0.1][50588] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...513] [ip4][..tcp] [......127.0.0.1][50588] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...514] [ip4][..tcp] [......127.0.0.1][50590] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...514] [ip4][..tcp] [......127.0.0.1][50590] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...515] [ip4][..tcp] [......127.0.0.1][50592] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...515] [ip4][..tcp] [......127.0.0.1][50592] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...516] [ip4][..tcp] [......127.0.0.1][50594] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...516] [ip4][..tcp] [......127.0.0.1][50594] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...517] [ip4][..tcp] [......127.0.0.1][50596] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...517] [ip4][..tcp] [......127.0.0.1][50596] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...518] [ip4][..tcp] [......127.0.0.1][50598] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...518] [ip4][..tcp] [......127.0.0.1][50598] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...519] [ip4][..tcp] [......127.0.0.1][50600] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...519] [ip4][..tcp] [......127.0.0.1][50600] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...520] [ip4][..tcp] [......127.0.0.1][50602] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...520] [ip4][..tcp] [......127.0.0.1][50602] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...521] [ip4][..tcp] [......127.0.0.1][50604] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...521] [ip4][..tcp] [......127.0.0.1][50604] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...522] [ip4][..tcp] [......127.0.0.1][50606] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...522] [ip4][..tcp] [......127.0.0.1][50606] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...523] [ip4][..tcp] [......127.0.0.1][50608] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...523] [ip4][..tcp] [......127.0.0.1][50608] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...524] [ip4][..tcp] [......127.0.0.1][50610] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...524] [ip4][..tcp] [......127.0.0.1][50610] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...525] [ip4][..tcp] [......127.0.0.1][50612] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...525] [ip4][..tcp] [......127.0.0.1][50612] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...526] [ip4][..tcp] [......127.0.0.1][50614] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...526] [ip4][..tcp] [......127.0.0.1][50614] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...527] [ip4][..tcp] [......127.0.0.1][50616] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...527] [ip4][..tcp] [......127.0.0.1][50616] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...528] [ip4][..tcp] [......127.0.0.1][50618] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...528] [ip4][..tcp] [......127.0.0.1][50618] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...529] [ip4][..tcp] [......127.0.0.1][50620] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...529] [ip4][..tcp] [......127.0.0.1][50620] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...530] [ip4][..tcp] [......127.0.0.1][50622] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...530] [ip4][..tcp] [......127.0.0.1][50622] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...531] [ip4][..tcp] [......127.0.0.1][50624] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...531] [ip4][..tcp] [......127.0.0.1][50624] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...532] [ip4][..tcp] [......127.0.0.1][50626] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...532] [ip4][..tcp] [......127.0.0.1][50626] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...533] [ip4][..tcp] [......127.0.0.1][50628] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...533] [ip4][..tcp] [......127.0.0.1][50628] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...534] [ip4][..tcp] [......127.0.0.1][50630] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...534] [ip4][..tcp] [......127.0.0.1][50630] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...535] [ip4][..tcp] [......127.0.0.1][50632] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...535] [ip4][..tcp] [......127.0.0.1][50632] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...536] [ip4][..tcp] [......127.0.0.1][50634] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...536] [ip4][..tcp] [......127.0.0.1][50634] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...537] [ip4][..tcp] [......127.0.0.1][50636] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...537] [ip4][..tcp] [......127.0.0.1][50636] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...538] [ip4][..tcp] [......127.0.0.1][50638] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...538] [ip4][..tcp] [......127.0.0.1][50638] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...539] [ip4][..tcp] [......127.0.0.1][50640] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...539] [ip4][..tcp] [......127.0.0.1][50640] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...540] [ip4][..tcp] [......127.0.0.1][50642] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...540] [ip4][..tcp] [......127.0.0.1][50642] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...541] [ip4][..tcp] [......127.0.0.1][50644] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...541] [ip4][..tcp] [......127.0.0.1][50644] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...542] [ip4][..tcp] [......127.0.0.1][50646] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...542] [ip4][..tcp] [......127.0.0.1][50646] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...543] [ip4][..tcp] [......127.0.0.1][50648] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...543] [ip4][..tcp] [......127.0.0.1][50648] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...544] [ip4][..tcp] [......127.0.0.1][50650] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...544] [ip4][..tcp] [......127.0.0.1][50650] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...545] [ip4][..tcp] [......127.0.0.1][50652] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...545] [ip4][..tcp] [......127.0.0.1][50652] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...546] [ip4][..tcp] [......127.0.0.1][50654] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...546] [ip4][..tcp] [......127.0.0.1][50654] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...547] [ip4][..tcp] [......127.0.0.1][50656] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...547] [ip4][..tcp] [......127.0.0.1][50656] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...548] [ip4][..tcp] [......127.0.0.1][50658] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...548] [ip4][..tcp] [......127.0.0.1][50658] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...549] [ip4][..tcp] [......127.0.0.1][50660] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...549] [ip4][..tcp] [......127.0.0.1][50660] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...550] [ip4][..tcp] [......127.0.0.1][50662] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...550] [ip4][..tcp] [......127.0.0.1][50662] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...551] [ip4][..tcp] [......127.0.0.1][50664] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...551] [ip4][..tcp] [......127.0.0.1][50664] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...552] [ip4][..tcp] [......127.0.0.1][50666] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...552] [ip4][..tcp] [......127.0.0.1][50666] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...553] [ip4][..tcp] [......127.0.0.1][50668] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...553] [ip4][..tcp] [......127.0.0.1][50668] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...554] [ip4][..tcp] [......127.0.0.1][50670] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...554] [ip4][..tcp] [......127.0.0.1][50670] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...555] [ip4][..tcp] [......127.0.0.1][50672] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...555] [ip4][..tcp] [......127.0.0.1][50672] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...556] [ip4][..tcp] [......127.0.0.1][50674] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...556] [ip4][..tcp] [......127.0.0.1][50674] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...557] [ip4][..tcp] [......127.0.0.1][50676] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...557] [ip4][..tcp] [......127.0.0.1][50676] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...558] [ip4][..tcp] [......127.0.0.1][50678] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...558] [ip4][..tcp] [......127.0.0.1][50678] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...559] [ip4][..tcp] [......127.0.0.1][50680] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...559] [ip4][..tcp] [......127.0.0.1][50680] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...560] [ip4][..tcp] [......127.0.0.1][50682] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...560] [ip4][..tcp] [......127.0.0.1][50682] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...561] [ip4][..tcp] [......127.0.0.1][50684] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...561] [ip4][..tcp] [......127.0.0.1][50684] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...562] [ip4][..tcp] [......127.0.0.1][50686] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...562] [ip4][..tcp] [......127.0.0.1][50686] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...563] [ip4][..tcp] [......127.0.0.1][50688] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...563] [ip4][..tcp] [......127.0.0.1][50688] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...564] [ip4][..tcp] [......127.0.0.1][50690] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...564] [ip4][..tcp] [......127.0.0.1][50690] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...565] [ip4][..tcp] [......127.0.0.1][50692] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...565] [ip4][..tcp] [......127.0.0.1][50692] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...566] [ip4][..tcp] [......127.0.0.1][50694] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...566] [ip4][..tcp] [......127.0.0.1][50694] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...567] [ip4][..tcp] [......127.0.0.1][50696] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...567] [ip4][..tcp] [......127.0.0.1][50696] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...568] [ip4][..tcp] [......127.0.0.1][50698] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...568] [ip4][..tcp] [......127.0.0.1][50698] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...569] [ip4][..tcp] [......127.0.0.1][50700] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...569] [ip4][..tcp] [......127.0.0.1][50700] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...570] [ip4][..tcp] [......127.0.0.1][50702] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...570] [ip4][..tcp] [......127.0.0.1][50702] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...571] [ip4][..tcp] [......127.0.0.1][50704] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...571] [ip4][..tcp] [......127.0.0.1][50704] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...572] [ip4][..tcp] [......127.0.0.1][50706] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...572] [ip4][..tcp] [......127.0.0.1][50706] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...573] [ip4][..tcp] [......127.0.0.1][50708] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...573] [ip4][..tcp] [......127.0.0.1][50708] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...574] [ip4][..tcp] [......127.0.0.1][50710] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...574] [ip4][..tcp] [......127.0.0.1][50710] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...575] [ip4][..tcp] [......127.0.0.1][50712] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...575] [ip4][..tcp] [......127.0.0.1][50712] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...576] [ip4][..tcp] [......127.0.0.1][50714] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...576] [ip4][..tcp] [......127.0.0.1][50714] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...577] [ip4][..tcp] [......127.0.0.1][50716] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...577] [ip4][..tcp] [......127.0.0.1][50716] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...578] [ip4][..tcp] [......127.0.0.1][50718] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...578] [ip4][..tcp] [......127.0.0.1][50718] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...579] [ip4][..tcp] [......127.0.0.1][50720] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...579] [ip4][..tcp] [......127.0.0.1][50720] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...580] [ip4][..tcp] [......127.0.0.1][50722] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...580] [ip4][..tcp] [......127.0.0.1][50722] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...581] [ip4][..tcp] [......127.0.0.1][50724] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...581] [ip4][..tcp] [......127.0.0.1][50724] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...582] [ip4][..tcp] [......127.0.0.1][50726] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...582] [ip4][..tcp] [......127.0.0.1][50726] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...583] [ip4][..tcp] [......127.0.0.1][50728] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...583] [ip4][..tcp] [......127.0.0.1][50728] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...584] [ip4][..tcp] [......127.0.0.1][50730] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...584] [ip4][..tcp] [......127.0.0.1][50730] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...585] [ip4][..tcp] [......127.0.0.1][50732] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...585] [ip4][..tcp] [......127.0.0.1][50732] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...586] [ip4][..tcp] [......127.0.0.1][50734] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...586] [ip4][..tcp] [......127.0.0.1][50734] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...587] [ip4][..tcp] [......127.0.0.1][50736] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...587] [ip4][..tcp] [......127.0.0.1][50736] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...588] [ip4][..tcp] [......127.0.0.1][50738] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...588] [ip4][..tcp] [......127.0.0.1][50738] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...589] [ip4][..tcp] [......127.0.0.1][50740] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...589] [ip4][..tcp] [......127.0.0.1][50740] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...590] [ip4][..tcp] [......127.0.0.1][50742] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...590] [ip4][..tcp] [......127.0.0.1][50742] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...591] [ip4][..tcp] [......127.0.0.1][50744] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...591] [ip4][..tcp] [......127.0.0.1][50744] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...592] [ip4][..tcp] [......127.0.0.1][50746] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...592] [ip4][..tcp] [......127.0.0.1][50746] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...593] [ip4][..tcp] [......127.0.0.1][50748] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...593] [ip4][..tcp] [......127.0.0.1][50748] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...594] [ip4][..tcp] [......127.0.0.1][50750] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...594] [ip4][..tcp] [......127.0.0.1][50750] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...595] [ip4][..tcp] [......127.0.0.1][50752] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...595] [ip4][..tcp] [......127.0.0.1][50752] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...596] [ip4][..tcp] [......127.0.0.1][50754] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...596] [ip4][..tcp] [......127.0.0.1][50754] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...597] [ip4][..tcp] [......127.0.0.1][50756] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...597] [ip4][..tcp] [......127.0.0.1][50756] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...598] [ip4][..tcp] [......127.0.0.1][50758] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...598] [ip4][..tcp] [......127.0.0.1][50758] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...599] [ip4][..tcp] [......127.0.0.1][50760] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...599] [ip4][..tcp] [......127.0.0.1][50760] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...600] [ip4][..tcp] [......127.0.0.1][50762] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...600] [ip4][..tcp] [......127.0.0.1][50762] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...601] [ip4][..tcp] [......127.0.0.1][50764] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...601] [ip4][..tcp] [......127.0.0.1][50764] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...602] [ip4][..tcp] [......127.0.0.1][50766] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...602] [ip4][..tcp] [......127.0.0.1][50766] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...603] [ip4][..tcp] [......127.0.0.1][50768] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...603] [ip4][..tcp] [......127.0.0.1][50768] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...604] [ip4][..tcp] [......127.0.0.1][50770] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...604] [ip4][..tcp] [......127.0.0.1][50770] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...605] [ip4][..tcp] [......127.0.0.1][50772] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...605] [ip4][..tcp] [......127.0.0.1][50772] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...606] [ip4][..tcp] [......127.0.0.1][50774] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...606] [ip4][..tcp] [......127.0.0.1][50774] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...607] [ip4][..tcp] [......127.0.0.1][50776] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...607] [ip4][..tcp] [......127.0.0.1][50776] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...608] [ip4][..tcp] [......127.0.0.1][50778] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...608] [ip4][..tcp] [......127.0.0.1][50778] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...609] [ip4][..tcp] [......127.0.0.1][50780] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...609] [ip4][..tcp] [......127.0.0.1][50780] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...610] [ip4][..tcp] [......127.0.0.1][50782] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...610] [ip4][..tcp] [......127.0.0.1][50782] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...611] [ip4][..tcp] [......127.0.0.1][50784] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...611] [ip4][..tcp] [......127.0.0.1][50784] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...612] [ip4][..tcp] [......127.0.0.1][50786] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...612] [ip4][..tcp] [......127.0.0.1][50786] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...613] [ip4][..tcp] [......127.0.0.1][50788] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...613] [ip4][..tcp] [......127.0.0.1][50788] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...614] [ip4][..tcp] [......127.0.0.1][50790] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...614] [ip4][..tcp] [......127.0.0.1][50790] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...615] [ip4][..tcp] [......127.0.0.1][50792] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...615] [ip4][..tcp] [......127.0.0.1][50792] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...616] [ip4][..tcp] [......127.0.0.1][50794] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...616] [ip4][..tcp] [......127.0.0.1][50794] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...617] [ip4][..tcp] [......127.0.0.1][50796] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...617] [ip4][..tcp] [......127.0.0.1][50796] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...618] [ip4][..tcp] [......127.0.0.1][50798] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...618] [ip4][..tcp] [......127.0.0.1][50798] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...619] [ip4][..tcp] [......127.0.0.1][50800] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...619] [ip4][..tcp] [......127.0.0.1][50800] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...620] [ip4][..tcp] [......127.0.0.1][50802] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...620] [ip4][..tcp] [......127.0.0.1][50802] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...621] [ip4][..tcp] [......127.0.0.1][50804] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...621] [ip4][..tcp] [......127.0.0.1][50804] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...622] [ip4][..tcp] [......127.0.0.1][50806] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...622] [ip4][..tcp] [......127.0.0.1][50806] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...623] [ip4][..tcp] [......127.0.0.1][50808] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...623] [ip4][..tcp] [......127.0.0.1][50808] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...624] [ip4][..tcp] [......127.0.0.1][50810] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...624] [ip4][..tcp] [......127.0.0.1][50810] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...625] [ip4][..tcp] [......127.0.0.1][50812] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...625] [ip4][..tcp] [......127.0.0.1][50812] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...626] [ip4][..tcp] [......127.0.0.1][50814] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...626] [ip4][..tcp] [......127.0.0.1][50814] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...627] [ip4][..tcp] [......127.0.0.1][50816] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...627] [ip4][..tcp] [......127.0.0.1][50816] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...628] [ip4][..tcp] [......127.0.0.1][50818] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...628] [ip4][..tcp] [......127.0.0.1][50818] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...629] [ip4][..tcp] [......127.0.0.1][50820] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...629] [ip4][..tcp] [......127.0.0.1][50820] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...630] [ip4][..tcp] [......127.0.0.1][50822] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...630] [ip4][..tcp] [......127.0.0.1][50822] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...631] [ip4][..tcp] [......127.0.0.1][50824] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...631] [ip4][..tcp] [......127.0.0.1][50824] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...632] [ip4][..tcp] [......127.0.0.1][50826] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...632] [ip4][..tcp] [......127.0.0.1][50826] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...633] [ip4][..tcp] [......127.0.0.1][50828] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...633] [ip4][..tcp] [......127.0.0.1][50828] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...634] [ip4][..tcp] [......127.0.0.1][50830] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...634] [ip4][..tcp] [......127.0.0.1][50830] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...635] [ip4][..tcp] [......127.0.0.1][50832] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...635] [ip4][..tcp] [......127.0.0.1][50832] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...636] [ip4][..tcp] [......127.0.0.1][50834] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...636] [ip4][..tcp] [......127.0.0.1][50834] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...637] [ip4][..tcp] [......127.0.0.1][50836] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...637] [ip4][..tcp] [......127.0.0.1][50836] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...638] [ip4][..tcp] [......127.0.0.1][50838] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...638] [ip4][..tcp] [......127.0.0.1][50838] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...639] [ip4][..tcp] [......127.0.0.1][50840] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...639] [ip4][..tcp] [......127.0.0.1][50840] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...640] [ip4][..tcp] [......127.0.0.1][50842] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...640] [ip4][..tcp] [......127.0.0.1][50842] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...641] [ip4][..tcp] [......127.0.0.1][50844] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...641] [ip4][..tcp] [......127.0.0.1][50844] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...642] [ip4][..tcp] [......127.0.0.1][50846] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...642] [ip4][..tcp] [......127.0.0.1][50846] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...643] [ip4][..tcp] [......127.0.0.1][50848] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...643] [ip4][..tcp] [......127.0.0.1][50848] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...644] [ip4][..tcp] [......127.0.0.1][50850] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...644] [ip4][..tcp] [......127.0.0.1][50850] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...645] [ip4][..tcp] [......127.0.0.1][50852] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...645] [ip4][..tcp] [......127.0.0.1][50852] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...646] [ip4][..tcp] [......127.0.0.1][50854] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...646] [ip4][..tcp] [......127.0.0.1][50854] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...647] [ip4][..tcp] [......127.0.0.1][50856] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...647] [ip4][..tcp] [......127.0.0.1][50856] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...648] [ip4][..tcp] [......127.0.0.1][50858] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...648] [ip4][..tcp] [......127.0.0.1][50858] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...649] [ip4][..tcp] [......127.0.0.1][50860] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...649] [ip4][..tcp] [......127.0.0.1][50860] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...650] [ip4][..tcp] [......127.0.0.1][50862] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...650] [ip4][..tcp] [......127.0.0.1][50862] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...651] [ip4][..tcp] [......127.0.0.1][50864] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...651] [ip4][..tcp] [......127.0.0.1][50864] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...652] [ip4][..tcp] [......127.0.0.1][50866] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...652] [ip4][..tcp] [......127.0.0.1][50866] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...653] [ip4][..tcp] [......127.0.0.1][50868] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...653] [ip4][..tcp] [......127.0.0.1][50868] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...654] [ip4][..tcp] [......127.0.0.1][50870] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...654] [ip4][..tcp] [......127.0.0.1][50870] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...655] [ip4][..tcp] [......127.0.0.1][50872] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...655] [ip4][..tcp] [......127.0.0.1][50872] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...656] [ip4][..tcp] [......127.0.0.1][50874] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...656] [ip4][..tcp] [......127.0.0.1][50874] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...657] [ip4][..tcp] [......127.0.0.1][50876] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...657] [ip4][..tcp] [......127.0.0.1][50876] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...658] [ip4][..tcp] [......127.0.0.1][50878] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...658] [ip4][..tcp] [......127.0.0.1][50878] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...659] [ip4][..tcp] [......127.0.0.1][50880] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...659] [ip4][..tcp] [......127.0.0.1][50880] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...660] [ip4][..tcp] [......127.0.0.1][50882] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...660] [ip4][..tcp] [......127.0.0.1][50882] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...661] [ip4][..tcp] [......127.0.0.1][50884] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...661] [ip4][..tcp] [......127.0.0.1][50884] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...662] [ip4][..tcp] [......127.0.0.1][50886] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...662] [ip4][..tcp] [......127.0.0.1][50886] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...663] [ip4][..tcp] [......127.0.0.1][50888] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...663] [ip4][..tcp] [......127.0.0.1][50888] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...664] [ip4][..tcp] [......127.0.0.1][50890] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...664] [ip4][..tcp] [......127.0.0.1][50890] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...665] [ip4][..tcp] [......127.0.0.1][50892] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...665] [ip4][..tcp] [......127.0.0.1][50892] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...666] [ip4][..tcp] [......127.0.0.1][50894] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...666] [ip4][..tcp] [......127.0.0.1][50894] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...667] [ip4][..tcp] [......127.0.0.1][50896] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...667] [ip4][..tcp] [......127.0.0.1][50896] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...668] [ip4][..tcp] [......127.0.0.1][50898] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...668] [ip4][..tcp] [......127.0.0.1][50898] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...669] [ip4][..tcp] [......127.0.0.1][50900] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...669] [ip4][..tcp] [......127.0.0.1][50900] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...670] [ip4][..tcp] [......127.0.0.1][50902] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...670] [ip4][..tcp] [......127.0.0.1][50902] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...671] [ip4][..tcp] [......127.0.0.1][50904] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...671] [ip4][..tcp] [......127.0.0.1][50904] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...672] [ip4][..tcp] [......127.0.0.1][50906] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...672] [ip4][..tcp] [......127.0.0.1][50906] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...673] [ip4][..tcp] [......127.0.0.1][50908] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...673] [ip4][..tcp] [......127.0.0.1][50908] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...674] [ip4][..tcp] [......127.0.0.1][50910] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...674] [ip4][..tcp] [......127.0.0.1][50910] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...675] [ip4][..tcp] [......127.0.0.1][50912] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...675] [ip4][..tcp] [......127.0.0.1][50912] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...676] [ip4][..tcp] [......127.0.0.1][50914] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...676] [ip4][..tcp] [......127.0.0.1][50914] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...677] [ip4][..tcp] [......127.0.0.1][50916] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...677] [ip4][..tcp] [......127.0.0.1][50916] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...678] [ip4][..tcp] [......127.0.0.1][50918] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...678] [ip4][..tcp] [......127.0.0.1][50918] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...679] [ip4][..tcp] [......127.0.0.1][50920] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...679] [ip4][..tcp] [......127.0.0.1][50920] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...680] [ip4][..tcp] [......127.0.0.1][50922] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...680] [ip4][..tcp] [......127.0.0.1][50922] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...681] [ip4][..tcp] [......127.0.0.1][50924] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...681] [ip4][..tcp] [......127.0.0.1][50924] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...682] [ip4][..tcp] [......127.0.0.1][50926] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...682] [ip4][..tcp] [......127.0.0.1][50926] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...683] [ip4][..tcp] [......127.0.0.1][50928] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...683] [ip4][..tcp] [......127.0.0.1][50928] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...684] [ip4][..tcp] [......127.0.0.1][50930] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...684] [ip4][..tcp] [......127.0.0.1][50930] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...685] [ip4][..tcp] [......127.0.0.1][50932] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...685] [ip4][..tcp] [......127.0.0.1][50932] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...686] [ip4][..tcp] [......127.0.0.1][50934] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...686] [ip4][..tcp] [......127.0.0.1][50934] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...687] [ip4][..tcp] [......127.0.0.1][50936] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...687] [ip4][..tcp] [......127.0.0.1][50936] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...688] [ip4][..tcp] [......127.0.0.1][50938] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...688] [ip4][..tcp] [......127.0.0.1][50938] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...689] [ip4][..tcp] [......127.0.0.1][50940] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...689] [ip4][..tcp] [......127.0.0.1][50940] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...690] [ip4][..tcp] [......127.0.0.1][50942] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...690] [ip4][..tcp] [......127.0.0.1][50942] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...691] [ip4][..tcp] [......127.0.0.1][50944] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...691] [ip4][..tcp] [......127.0.0.1][50944] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...692] [ip4][..tcp] [......127.0.0.1][50946] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...692] [ip4][..tcp] [......127.0.0.1][50946] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...693] [ip4][..tcp] [......127.0.0.1][50948] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...693] [ip4][..tcp] [......127.0.0.1][50948] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...694] [ip4][..tcp] [......127.0.0.1][50950] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...694] [ip4][..tcp] [......127.0.0.1][50950] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...695] [ip4][..tcp] [......127.0.0.1][50952] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...695] [ip4][..tcp] [......127.0.0.1][50952] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...696] [ip4][..tcp] [......127.0.0.1][50954] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...696] [ip4][..tcp] [......127.0.0.1][50954] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...697] [ip4][..tcp] [......127.0.0.1][50956] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...697] [ip4][..tcp] [......127.0.0.1][50956] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...698] [ip4][..tcp] [......127.0.0.1][50958] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...698] [ip4][..tcp] [......127.0.0.1][50958] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...699] [ip4][..tcp] [......127.0.0.1][50960] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...699] [ip4][..tcp] [......127.0.0.1][50960] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...700] [ip4][..tcp] [......127.0.0.1][50962] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...700] [ip4][..tcp] [......127.0.0.1][50962] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...701] [ip4][..tcp] [......127.0.0.1][50964] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...701] [ip4][..tcp] [......127.0.0.1][50964] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...702] [ip4][..tcp] [......127.0.0.1][50966] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...702] [ip4][..tcp] [......127.0.0.1][50966] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...703] [ip4][..tcp] [......127.0.0.1][50968] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...703] [ip4][..tcp] [......127.0.0.1][50968] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...704] [ip4][..tcp] [......127.0.0.1][50970] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...704] [ip4][..tcp] [......127.0.0.1][50970] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...705] [ip4][..tcp] [......127.0.0.1][50972] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...705] [ip4][..tcp] [......127.0.0.1][50972] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...706] [ip4][..tcp] [......127.0.0.1][50974] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...706] [ip4][..tcp] [......127.0.0.1][50974] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...707] [ip4][..tcp] [......127.0.0.1][50976] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...707] [ip4][..tcp] [......127.0.0.1][50976] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...708] [ip4][..tcp] [......127.0.0.1][50978] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...708] [ip4][..tcp] [......127.0.0.1][50978] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...709] [ip4][..tcp] [......127.0.0.1][50980] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...709] [ip4][..tcp] [......127.0.0.1][50980] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...710] [ip4][..tcp] [......127.0.0.1][50982] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...710] [ip4][..tcp] [......127.0.0.1][50982] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...711] [ip4][..tcp] [......127.0.0.1][50984] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...711] [ip4][..tcp] [......127.0.0.1][50984] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...712] [ip4][..tcp] [......127.0.0.1][50986] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...712] [ip4][..tcp] [......127.0.0.1][50986] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...713] [ip4][..tcp] [......127.0.0.1][50988] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...713] [ip4][..tcp] [......127.0.0.1][50988] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...714] [ip4][..tcp] [......127.0.0.1][50990] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...714] [ip4][..tcp] [......127.0.0.1][50990] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...715] [ip4][..tcp] [......127.0.0.1][50992] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...715] [ip4][..tcp] [......127.0.0.1][50992] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...716] [ip4][..tcp] [......127.0.0.1][50994] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...716] [ip4][..tcp] [......127.0.0.1][50994] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...717] [ip4][..tcp] [......127.0.0.1][50996] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...717] [ip4][..tcp] [......127.0.0.1][50996] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...718] [ip4][..tcp] [......127.0.0.1][50998] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...718] [ip4][..tcp] [......127.0.0.1][50998] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...719] [ip4][..tcp] [......127.0.0.1][51000] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...719] [ip4][..tcp] [......127.0.0.1][51000] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...720] [ip4][..tcp] [......127.0.0.1][51002] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...720] [ip4][..tcp] [......127.0.0.1][51002] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...721] [ip4][..tcp] [......127.0.0.1][51004] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...721] [ip4][..tcp] [......127.0.0.1][51004] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...722] [ip4][..tcp] [......127.0.0.1][51006] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...722] [ip4][..tcp] [......127.0.0.1][51006] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...723] [ip4][..tcp] [......127.0.0.1][51008] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...723] [ip4][..tcp] [......127.0.0.1][51008] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...724] [ip4][..tcp] [......127.0.0.1][51010] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...724] [ip4][..tcp] [......127.0.0.1][51010] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...725] [ip4][..tcp] [......127.0.0.1][51012] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...725] [ip4][..tcp] [......127.0.0.1][51012] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...726] [ip4][..tcp] [......127.0.0.1][51014] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...726] [ip4][..tcp] [......127.0.0.1][51014] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...727] [ip4][..tcp] [......127.0.0.1][51016] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...727] [ip4][..tcp] [......127.0.0.1][51016] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...728] [ip4][..tcp] [......127.0.0.1][51018] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...728] [ip4][..tcp] [......127.0.0.1][51018] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...729] [ip4][..tcp] [......127.0.0.1][51020] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...729] [ip4][..tcp] [......127.0.0.1][51020] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...730] [ip4][..tcp] [......127.0.0.1][51022] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...730] [ip4][..tcp] [......127.0.0.1][51022] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...731] [ip4][..tcp] [......127.0.0.1][51024] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...731] [ip4][..tcp] [......127.0.0.1][51024] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...732] [ip4][..tcp] [......127.0.0.1][51026] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...732] [ip4][..tcp] [......127.0.0.1][51026] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...733] [ip4][..tcp] [......127.0.0.1][51028] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...733] [ip4][..tcp] [......127.0.0.1][51028] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...734] [ip4][..tcp] [......127.0.0.1][51030] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...734] [ip4][..tcp] [......127.0.0.1][51030] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...735] [ip4][..tcp] [......127.0.0.1][51032] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...735] [ip4][..tcp] [......127.0.0.1][51032] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...736] [ip4][..tcp] [......127.0.0.1][51034] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...736] [ip4][..tcp] [......127.0.0.1][51034] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...737] [ip4][..tcp] [......127.0.0.1][51036] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...737] [ip4][..tcp] [......127.0.0.1][51036] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...738] [ip4][..tcp] [......127.0.0.1][51038] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...738] [ip4][..tcp] [......127.0.0.1][51038] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...739] [ip4][..tcp] [......127.0.0.1][51040] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...739] [ip4][..tcp] [......127.0.0.1][51040] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...740] [ip4][..tcp] [......127.0.0.1][51042] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...740] [ip4][..tcp] [......127.0.0.1][51042] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...741] [ip4][..tcp] [......127.0.0.1][51044] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...741] [ip4][..tcp] [......127.0.0.1][51044] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...742] [ip4][..tcp] [......127.0.0.1][51046] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...742] [ip4][..tcp] [......127.0.0.1][51046] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...743] [ip4][..tcp] [......127.0.0.1][51048] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...743] [ip4][..tcp] [......127.0.0.1][51048] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...744] [ip4][..tcp] [......127.0.0.1][51050] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...744] [ip4][..tcp] [......127.0.0.1][51050] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...745] [ip4][..tcp] [......127.0.0.1][51052] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...745] [ip4][..tcp] [......127.0.0.1][51052] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...746] [ip4][..tcp] [......127.0.0.1][51054] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...746] [ip4][..tcp] [......127.0.0.1][51054] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...747] [ip4][..tcp] [......127.0.0.1][51056] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...747] [ip4][..tcp] [......127.0.0.1][51056] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...748] [ip4][..tcp] [......127.0.0.1][51058] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...748] [ip4][..tcp] [......127.0.0.1][51058] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...749] [ip4][..tcp] [......127.0.0.1][51060] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...749] [ip4][..tcp] [......127.0.0.1][51060] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...750] [ip4][..tcp] [......127.0.0.1][51062] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...750] [ip4][..tcp] [......127.0.0.1][51062] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...751] [ip4][..tcp] [......127.0.0.1][51064] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...751] [ip4][..tcp] [......127.0.0.1][51064] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...752] [ip4][..tcp] [......127.0.0.1][51066] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...752] [ip4][..tcp] [......127.0.0.1][51066] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...753] [ip4][..tcp] [......127.0.0.1][51068] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...753] [ip4][..tcp] [......127.0.0.1][51068] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...754] [ip4][..tcp] [......127.0.0.1][51070] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...754] [ip4][..tcp] [......127.0.0.1][51070] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...755] [ip4][..tcp] [......127.0.0.1][51072] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...755] [ip4][..tcp] [......127.0.0.1][51072] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...756] [ip4][..tcp] [......127.0.0.1][51074] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...756] [ip4][..tcp] [......127.0.0.1][51074] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...757] [ip4][..tcp] [......127.0.0.1][51076] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...757] [ip4][..tcp] [......127.0.0.1][51076] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...758] [ip4][..tcp] [......127.0.0.1][51078] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...758] [ip4][..tcp] [......127.0.0.1][51078] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...759] [ip4][..tcp] [......127.0.0.1][51080] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...759] [ip4][..tcp] [......127.0.0.1][51080] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...760] [ip4][..tcp] [......127.0.0.1][51082] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...760] [ip4][..tcp] [......127.0.0.1][51082] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...761] [ip4][..tcp] [......127.0.0.1][51084] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...761] [ip4][..tcp] [......127.0.0.1][51084] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...762] [ip4][..tcp] [......127.0.0.1][51086] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...762] [ip4][..tcp] [......127.0.0.1][51086] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...763] [ip4][..tcp] [......127.0.0.1][51088] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...763] [ip4][..tcp] [......127.0.0.1][51088] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...764] [ip4][..tcp] [......127.0.0.1][51090] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...764] [ip4][..tcp] [......127.0.0.1][51090] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...765] [ip4][..tcp] [......127.0.0.1][51092] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...765] [ip4][..tcp] [......127.0.0.1][51092] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...766] [ip4][..tcp] [......127.0.0.1][51094] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...766] [ip4][..tcp] [......127.0.0.1][51094] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...767] [ip4][..tcp] [......127.0.0.1][51096] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...767] [ip4][..tcp] [......127.0.0.1][51096] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...768] [ip4][..tcp] [......127.0.0.1][51098] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...768] [ip4][..tcp] [......127.0.0.1][51098] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...769] [ip4][..tcp] [......127.0.0.1][51100] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...769] [ip4][..tcp] [......127.0.0.1][51100] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...770] [ip4][..tcp] [......127.0.0.1][51148] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...770] [ip4][..tcp] [......127.0.0.1][51148] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...771] [ip4][..tcp] [......127.0.0.1][51150] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...771] [ip4][..tcp] [......127.0.0.1][51150] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...772] [ip4][..tcp] [......127.0.0.1][51152] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...772] [ip4][..tcp] [......127.0.0.1][51152] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...773] [ip4][..tcp] [......127.0.0.1][51154] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...773] [ip4][..tcp] [......127.0.0.1][51154] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...774] [ip4][..tcp] [......127.0.0.1][51156] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...774] [ip4][..tcp] [......127.0.0.1][51156] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...775] [ip4][..tcp] [......127.0.0.1][51158] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...775] [ip4][..tcp] [......127.0.0.1][51158] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...776] [ip4][..tcp] [......127.0.0.1][51160] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...776] [ip4][..tcp] [......127.0.0.1][51160] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...777] [ip4][..tcp] [......127.0.0.1][51162] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...777] [ip4][..tcp] [......127.0.0.1][51162] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...778] [ip4][..tcp] [......127.0.0.1][51164] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...778] [ip4][..tcp] [......127.0.0.1][51164] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...779] [ip4][..tcp] [......127.0.0.1][51166] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...779] [ip4][..tcp] [......127.0.0.1][51166] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...780] [ip4][..tcp] [......127.0.0.1][51168] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...780] [ip4][..tcp] [......127.0.0.1][51168] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...781] [ip4][..tcp] [......127.0.0.1][51170] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...781] [ip4][..tcp] [......127.0.0.1][51170] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...782] [ip4][..tcp] [......127.0.0.1][51172] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...782] [ip4][..tcp] [......127.0.0.1][51172] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...783] [ip4][..tcp] [......127.0.0.1][51174] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...783] [ip4][..tcp] [......127.0.0.1][51174] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...784] [ip4][..tcp] [......127.0.0.1][51176] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...784] [ip4][..tcp] [......127.0.0.1][51176] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...785] [ip4][..tcp] [......127.0.0.1][51178] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...785] [ip4][..tcp] [......127.0.0.1][51178] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...786] [ip4][..tcp] [......127.0.0.1][51182] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...786] [ip4][..tcp] [......127.0.0.1][51182] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...787] [ip4][..tcp] [......127.0.0.1][51184] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...787] [ip4][..tcp] [......127.0.0.1][51184] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...788] [ip4][..tcp] [......127.0.0.1][51186] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...788] [ip4][..tcp] [......127.0.0.1][51186] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: RCE Injection, Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: RCE Injection, Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...789] [ip4][..tcp] [......127.0.0.1][51188] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...789] [ip4][..tcp] [......127.0.0.1][51188] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...790] [ip4][..tcp] [......127.0.0.1][51190] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...790] [ip4][..tcp] [......127.0.0.1][51190] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...791] [ip4][..tcp] [......127.0.0.1][51192] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...791] [ip4][..tcp] [......127.0.0.1][51192] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...792] [ip4][..tcp] [......127.0.0.1][51194] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...792] [ip4][..tcp] [......127.0.0.1][51194] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...793] [ip4][..tcp] [......127.0.0.1][51196] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...793] [ip4][..tcp] [......127.0.0.1][51196] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...794] [ip4][..tcp] [......127.0.0.1][51198] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...794] [ip4][..tcp] [......127.0.0.1][51198] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...795] [ip4][..tcp] [......127.0.0.1][51200] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...795] [ip4][..tcp] [......127.0.0.1][51200] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...796] [ip4][..tcp] [......127.0.0.1][51202] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...796] [ip4][..tcp] [......127.0.0.1][51202] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [...797] [ip4][..tcp] [......127.0.0.1][51204] -> [......127.0.0.1][.8080] [MIDSTREAM]
detected: [...797] [ip4][..tcp] [......127.0.0.1][51204] -> [......127.0.0.1][.8080] [HTTP][Unknown][Web][Acceptable][127.0.0.1]
- RISK: RCE Injection, Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: RCE Injection, Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
idle: [...745] [ip4][..tcp] [......127.0.0.1][51052] -> [......127.0.0.1][.8080]
idle: [...746] [ip4][..tcp] [......127.0.0.1][51054] -> [......127.0.0.1][.8080]
idle: [...747] [ip4][..tcp] [......127.0.0.1][51056] -> [......127.0.0.1][.8080]
diff --git a/test/results/flow-info/WebattackSQLinj.pcap.out b/test/results/flow-info/default/WebattackSQLinj.pcap.out
index 4bc7f3830..92722f5fe 100644
--- a/test/results/flow-info/WebattackSQLinj.pcap.out
+++ b/test/results/flow-info/default/WebattackSQLinj.pcap.out
@@ -3,47 +3,47 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [.....172.16.0.1][36196] -> [..192.168.10.50][...80]
detected: [.....1] [ip4][..tcp] [.....172.16.0.1][36196] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [.....2] [ip4][..tcp] [.....172.16.0.1][36198] -> [..192.168.10.50][...80]
detected: [.....2] [ip4][..tcp] [.....172.16.0.1][36198] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [.....3] [ip4][..tcp] [.....172.16.0.1][36200] -> [..192.168.10.50][...80]
detected: [.....3] [ip4][..tcp] [.....172.16.0.1][36200] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [.....4] [ip4][..tcp] [.....172.16.0.1][36202] -> [..192.168.10.50][...80]
detected: [.....4] [ip4][..tcp] [.....172.16.0.1][36202] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [.....5] [ip4][..tcp] [.....172.16.0.1][36204] -> [..192.168.10.50][...80]
detected: [.....5] [ip4][..tcp] [.....172.16.0.1][36204] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [.....6] [ip4][..tcp] [.....172.16.0.1][36206] -> [..192.168.10.50][...80]
detected: [.....6] [ip4][..tcp] [.....172.16.0.1][36206] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [.....7] [ip4][..tcp] [.....172.16.0.1][36208] -> [..192.168.10.50][...80]
detected: [.....7] [ip4][..tcp] [.....172.16.0.1][36208] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [.....8] [ip4][..tcp] [.....172.16.0.1][36210] -> [..192.168.10.50][...80]
detected: [.....8] [ip4][..tcp] [.....172.16.0.1][36210] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [.....9] [ip4][..tcp] [.....172.16.0.1][36212] -> [..192.168.10.50][...80]
detected: [.....9] [ip4][..tcp] [.....172.16.0.1][36212] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
end: [.....1] [ip4][..tcp] [.....172.16.0.1][36196] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
end: [.....2] [ip4][..tcp] [.....172.16.0.1][36198] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: SQL Injection, HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: SQL Injection, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
end: [.....3] [ip4][..tcp] [.....172.16.0.1][36200] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: SQL Injection, HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: SQL Injection, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
end: [.....4] [ip4][..tcp] [.....172.16.0.1][36202] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: SQL Injection, HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: SQL Injection, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
end: [.....5] [ip4][..tcp] [.....172.16.0.1][36204] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: SQL Injection, HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: SQL Injection, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
end: [.....6] [ip4][..tcp] [.....172.16.0.1][36206] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
end: [.....7] [ip4][..tcp] [.....172.16.0.1][36208] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: SQL Injection, HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: SQL Injection, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
end: [.....8] [ip4][..tcp] [.....172.16.0.1][36210] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: SQL Injection, HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: SQL Injection, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
end: [.....9] [ip4][..tcp] [.....172.16.0.1][36212] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: SQL Injection, HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: SQL Injection, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/WebattackXSS.pcap.out b/test/results/flow-info/default/WebattackXSS.pcap.out
index 45eb25526..f00bc3c91 100644
--- a/test/results/flow-info/WebattackXSS.pcap.out
+++ b/test/results/flow-info/default/WebattackXSS.pcap.out
@@ -3,13 +3,13 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [.....172.16.0.1][52098] -> [..192.168.10.50][...80]
detected: [.....1] [ip4][..tcp] [.....172.16.0.1][52098] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [.....2] [ip4][..tcp] [.....172.16.0.1][52100] -> [..192.168.10.50][...80]
new: [.....3] [ip4][..tcp] [.....172.16.0.1][52118] -> [..192.168.10.50][...80]
new: [.....4] [ip4][..tcp] [.....172.16.0.1][52120] -> [..192.168.10.50][...80]
new: [.....5] [ip4][..tcp] [.....172.16.0.1][52200] -> [..192.168.10.50][...80]
detected: [.....5] [ip4][..tcp] [.....172.16.0.1][52200] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [.....6] [ip4][..tcp] [.....172.16.0.1][52202] -> [..192.168.10.50][...80]
new: [.....7] [ip4][..tcp] [.....172.16.0.1][52220] -> [..192.168.10.50][...80]
new: [.....8] [ip4][..tcp] [.....172.16.0.1][52222] -> [..192.168.10.50][...80]
@@ -25,7 +25,7 @@
[ENTROPIES...: 4.6,5.1,4.9,5.9,4.9,5.8,4.9,6.0,7.5,6.0,7.3,5.9,7.6,8.0,4.9,4.9,4.9,4.9,6.0,5.8,5.0,6.0,5.8,4.9,5.9,5.7,4.9,6.0,5.8,5.0,5.1,4.9]
new: [.....9] [ip4][..tcp] [.....172.16.0.1][52298] -> [..192.168.10.50][...80]
detected: [.....9] [ip4][..tcp] [.....172.16.0.1][52298] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [....10] [ip4][..tcp] [.....172.16.0.1][52300] -> [..192.168.10.50][...80]
new: [....11] [ip4][..tcp] [.....172.16.0.1][52318] -> [..192.168.10.50][...80]
new: [....12] [ip4][..tcp] [.....172.16.0.1][52320] -> [..192.168.10.50][...80]
@@ -40,9 +40,9 @@
[PKTLENS.....: 60,60,52,361,52,564,52,394,1186,52,417,793,52,440,4396,4396,738,52,52,52,363,557,52,393,557,52,611,415,52,435,1856,52]
[ENTROPIES...: 4.6,5.1,4.9,5.9,4.8,5.7,4.9,5.9,7.4,4.9,5.9,7.2,4.9,5.9,7.9,7.9,7.7,4.9,4.9,4.8,5.9,5.8,4.8,5.9,5.8,4.8,5.9,5.7,4.9,5.9,7.8,5.0]
detected: [....10] [ip4][..tcp] [.....172.16.0.1][52300] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
detected: [....11] [ip4][..tcp] [.....172.16.0.1][52318] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [....13] [ip4][..tcp] [.....172.16.0.1][52386] -> [..192.168.10.50][...80]
new: [....14] [ip4][..tcp] [.....172.16.0.1][52400] -> [..192.168.10.50][...80]
new: [....15] [ip4][..tcp] [.....172.16.0.1][52414] -> [..192.168.10.50][...80]
@@ -75,7 +75,7 @@
new: [....42] [ip4][..tcp] [.....172.16.0.1][52924] -> [..192.168.10.50][...80]
new: [....43] [ip4][..tcp] [.....172.16.0.1][52938] -> [..192.168.10.50][...80]
detected: [....41] [ip4][..tcp] [.....172.16.0.1][52910] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [....44] [ip4][..tcp] [.....172.16.0.1][52964] -> [..192.168.10.50][...80]
new: [....45] [ip4][..tcp] [.....172.16.0.1][52978] -> [..192.168.10.50][...80]
new: [....46] [ip4][..tcp] [.....172.16.0.1][53004] -> [..192.168.10.50][...80]
@@ -104,7 +104,7 @@
new: [....59] [ip4][..tcp] [.....172.16.0.1][53246] -> [..192.168.10.50][...80]
new: [....60] [ip4][..tcp] [.....172.16.0.1][53260] -> [..192.168.10.50][...80]
end: [.....1] [ip4][..tcp] [.....172.16.0.1][52098] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
guessed: [.....2] [ip4][..tcp] [.....172.16.0.1][52100] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
end: [.....2] [ip4][..tcp] [.....172.16.0.1][52100] -> [..192.168.10.50][...80]
guessed: [.....3] [ip4][..tcp] [.....172.16.0.1][52118] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
@@ -125,7 +125,7 @@
new: [....72] [ip4][..tcp] [.....172.16.0.1][53476] -> [..192.168.10.50][...80]
new: [....73] [ip4][..tcp] [.....172.16.0.1][53490] -> [..192.168.10.50][...80]
end: [.....5] [ip4][..tcp] [.....172.16.0.1][52200] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
guessed: [.....6] [ip4][..tcp] [.....172.16.0.1][52202] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
end: [.....6] [ip4][..tcp] [.....172.16.0.1][52202] -> [..192.168.10.50][...80]
guessed: [.....7] [ip4][..tcp] [.....172.16.0.1][52220] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
@@ -140,7 +140,7 @@
new: [....79] [ip4][..tcp] [.....172.16.0.1][53598] -> [..192.168.10.50][...80]
new: [....80] [ip4][..tcp] [.....172.16.0.1][53624] -> [..192.168.10.50][...80]
detected: [....78] [ip4][..tcp] [.....172.16.0.1][53584] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [....81] [ip4][..tcp] [.....172.16.0.1][53638] -> [..192.168.10.50][...80]
new: [....82] [ip4][..tcp] [.....172.16.0.1][53664] -> [..192.168.10.50][...80]
new: [....83] [ip4][..tcp] [.....172.16.0.1][53678] -> [..192.168.10.50][...80]
@@ -156,9 +156,9 @@
[PKTLENS.....: 60,60,52,435,52,1823,52,637,1919,52,435,1822,52,637,1920,52,435,1822,52,637,1918,52,435,1822,52,637,1919,52,435,1822,52,637]
[ENTROPIES...: 4.6,5.1,4.9,5.9,4.9,7.7,4.9,6.0,7.8,5.0,5.9,7.7,4.9,6.0,7.8,4.9,5.9,7.7,4.9,6.0,7.8,4.9,5.9,7.7,4.9,6.0,7.8,4.9,5.9,7.7,4.9,6.0]
end: [....10] [ip4][..tcp] [.....172.16.0.1][52300] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
end: [....11] [ip4][..tcp] [.....172.16.0.1][52318] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
guessed: [....12] [ip4][..tcp] [.....172.16.0.1][52320] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
end: [....12] [ip4][..tcp] [.....172.16.0.1][52320] -> [..192.168.10.50][...80]
guessed: [....13] [ip4][..tcp] [.....172.16.0.1][52386] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
@@ -249,12 +249,12 @@
guessed: [....42] [ip4][..tcp] [.....172.16.0.1][52924] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
end: [....42] [ip4][..tcp] [.....172.16.0.1][52924] -> [..192.168.10.50][...80]
end: [.....9] [ip4][..tcp] [.....172.16.0.1][52298] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [...114] [ip4][..tcp] [.....172.16.0.1][54268] -> [..192.168.10.50][...80]
new: [...115] [ip4][..tcp] [.....172.16.0.1][54282] -> [..192.168.10.50][...80]
new: [...116] [ip4][..tcp] [.....172.16.0.1][54296] -> [..192.168.10.50][...80]
detected: [...114] [ip4][..tcp] [.....172.16.0.1][54268] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [...117] [ip4][..tcp] [.....172.16.0.1][54322] -> [..192.168.10.50][...80]
new: [...118] [ip4][..tcp] [.....172.16.0.1][54336] -> [..192.168.10.50][...80]
guessed: [....43] [ip4][..tcp] [.....172.16.0.1][52938] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
@@ -357,7 +357,7 @@
new: [...148] [ip4][..tcp] [.....172.16.0.1][54876] -> [..192.168.10.50][...80]
new: [...149] [ip4][..tcp] [.....172.16.0.1][54890] -> [..192.168.10.50][...80]
end: [....41] [ip4][..tcp] [.....172.16.0.1][52910] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: XSS Attack, HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: XSS Attack, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
guessed: [....72] [ip4][..tcp] [.....172.16.0.1][53476] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
end: [....72] [ip4][..tcp] [.....172.16.0.1][53476] -> [..192.168.10.50][...80]
guessed: [....73] [ip4][..tcp] [.....172.16.0.1][53490] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
@@ -376,7 +376,7 @@
new: [...153] [ip4][..tcp] [.....172.16.0.1][54970] -> [..192.168.10.50][...80]
new: [...154] [ip4][..tcp] [.....172.16.0.1][54984] -> [..192.168.10.50][...80]
detected: [...152] [ip4][..tcp] [.....172.16.0.1][54956] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
guessed: [....79] [ip4][..tcp] [.....172.16.0.1][53598] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
end: [....79] [ip4][..tcp] [.....172.16.0.1][53598] -> [..192.168.10.50][...80]
guessed: [....80] [ip4][..tcp] [.....172.16.0.1][53624] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
@@ -491,7 +491,7 @@
new: [...190] [ip4][..tcp] [.....172.16.0.1][55632] -> [..192.168.10.50][...80]
new: [...191] [ip4][..tcp] [.....172.16.0.1][55646] -> [..192.168.10.50][...80]
end: [....78] [ip4][..tcp] [.....172.16.0.1][53584] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
guessed: [...112] [ip4][..tcp] [.....172.16.0.1][54228] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
end: [...112] [ip4][..tcp] [.....172.16.0.1][54228] -> [..192.168.10.50][...80]
guessed: [...113] [ip4][..tcp] [.....172.16.0.1][54242] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
@@ -502,7 +502,7 @@
end: [...116] [ip4][..tcp] [.....172.16.0.1][54296] -> [..192.168.10.50][...80]
new: [...192] [ip4][..tcp] [.....172.16.0.1][55672] -> [..192.168.10.50][...80]
detected: [...190] [ip4][..tcp] [.....172.16.0.1][55632] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [...193] [ip4][..tcp] [.....172.16.0.1][55686] -> [..192.168.10.50][...80]
new: [...194] [ip4][..tcp] [.....172.16.0.1][55700] -> [..192.168.10.50][...80]
new: [...195] [ip4][..tcp] [.....172.16.0.1][55726] -> [..192.168.10.50][...80]
@@ -618,12 +618,12 @@
guessed: [...151] [ip4][..tcp] [.....172.16.0.1][54930] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
end: [...151] [ip4][..tcp] [.....172.16.0.1][54930] -> [..192.168.10.50][...80]
end: [...114] [ip4][..tcp] [.....172.16.0.1][54268] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: XSS Attack, HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: XSS Attack, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [...227] [ip4][..tcp] [.....172.16.0.1][56306] -> [..192.168.10.50][...80]
new: [...228] [ip4][..tcp] [.....172.16.0.1][56320] -> [..192.168.10.50][...80]
new: [...229] [ip4][..tcp] [.....172.16.0.1][56334] -> [..192.168.10.50][...80]
detected: [...227] [ip4][..tcp] [.....172.16.0.1][56306] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [...230] [ip4][..tcp] [.....172.16.0.1][56360] -> [..192.168.10.50][...80]
new: [...231] [ip4][..tcp] [.....172.16.0.1][56374] -> [..192.168.10.50][...80]
new: [...232] [ip4][..tcp] [.....172.16.0.1][56400] -> [..192.168.10.50][...80]
@@ -746,9 +746,9 @@
new: [...267] [ip4][..tcp] [.....172.16.0.1][57022] -> [..192.168.10.50][...80]
new: [...268] [ip4][..tcp] [.....172.16.0.1][57036] -> [..192.168.10.50][...80]
detected: [...265] [ip4][..tcp] [.....172.16.0.1][56994] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
end: [...152] [ip4][..tcp] [.....172.16.0.1][54956] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
guessed: [...189] [ip4][..tcp] [.....172.16.0.1][55618] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
end: [...189] [ip4][..tcp] [.....172.16.0.1][55618] -> [..192.168.10.50][...80]
guessed: [...191] [ip4][..tcp] [.....172.16.0.1][55646] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
@@ -867,7 +867,7 @@
new: [...304] [ip4][..tcp] [.....172.16.0.1][57684] -> [..192.168.10.50][...80]
new: [...305] [ip4][..tcp] [.....172.16.0.1][57698] -> [..192.168.10.50][...80]
end: [...190] [ip4][..tcp] [.....172.16.0.1][55632] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: XSS Attack, HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: XSS Attack, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
guessed: [...225] [ip4][..tcp] [.....172.16.0.1][56266] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
end: [...225] [ip4][..tcp] [.....172.16.0.1][56266] -> [..192.168.10.50][...80]
guessed: [...226] [ip4][..tcp] [.....172.16.0.1][56280] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
@@ -880,7 +880,7 @@
end: [...230] [ip4][..tcp] [.....172.16.0.1][56360] -> [..192.168.10.50][...80]
new: [...306] [ip4][..tcp] [.....172.16.0.1][57712] -> [..192.168.10.50][...80]
detected: [...304] [ip4][..tcp] [.....172.16.0.1][57684] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [...307] [ip4][..tcp] [.....172.16.0.1][57738] -> [..192.168.10.50][...80]
new: [...308] [ip4][..tcp] [.....172.16.0.1][57752] -> [..192.168.10.50][...80]
new: [...309] [ip4][..tcp] [.....172.16.0.1][57778] -> [..192.168.10.50][...80]
@@ -999,12 +999,12 @@
guessed: [...266] [ip4][..tcp] [.....172.16.0.1][57008] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
end: [...266] [ip4][..tcp] [.....172.16.0.1][57008] -> [..192.168.10.50][...80]
end: [...227] [ip4][..tcp] [.....172.16.0.1][56306] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [...342] [ip4][..tcp] [.....172.16.0.1][58360] -> [..192.168.10.50][...80]
new: [...343] [ip4][..tcp] [.....172.16.0.1][58386] -> [..192.168.10.50][...80]
new: [...344] [ip4][..tcp] [.....172.16.0.1][58400] -> [..192.168.10.50][...80]
detected: [...342] [ip4][..tcp] [.....172.16.0.1][58360] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [...345] [ip4][..tcp] [.....172.16.0.1][58414] -> [..192.168.10.50][...80]
new: [...346] [ip4][..tcp] [.....172.16.0.1][58440] -> [..192.168.10.50][...80]
new: [...347] [ip4][..tcp] [.....172.16.0.1][58454] -> [..192.168.10.50][...80]
@@ -1112,7 +1112,7 @@
new: [...377] [ip4][..tcp] [.....172.16.0.1][58988] -> [..192.168.10.50][...80]
new: [...378] [ip4][..tcp] [.....172.16.0.1][59002] -> [..192.168.10.50][...80]
end: [...265] [ip4][..tcp] [.....172.16.0.1][56994] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: XSS Attack, HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: XSS Attack, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
guessed: [...298] [ip4][..tcp] [.....172.16.0.1][57576] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
end: [...298] [ip4][..tcp] [.....172.16.0.1][57576] -> [..192.168.10.50][...80]
guessed: [...299] [ip4][..tcp] [.....172.16.0.1][57590] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
@@ -1130,7 +1130,7 @@
new: [...381] [ip4][..tcp] [.....172.16.0.1][59056] -> [..192.168.10.50][...80]
new: [...382] [ip4][..tcp] [.....172.16.0.1][59070] -> [..192.168.10.50][...80]
detected: [...380] [ip4][..tcp] [.....172.16.0.1][59042] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [...383] [ip4][..tcp] [.....172.16.0.1][59096] -> [..192.168.10.50][...80]
new: [...384] [ip4][..tcp] [.....172.16.0.1][59110] -> [..192.168.10.50][...80]
guessed: [...305] [ip4][..tcp] [.....172.16.0.1][57698] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
@@ -1250,7 +1250,7 @@
new: [...419] [ip4][..tcp] [.....172.16.0.1][59732] -> [..192.168.10.50][...80]
new: [...420] [ip4][..tcp] [.....172.16.0.1][59758] -> [..192.168.10.50][...80]
end: [...304] [ip4][..tcp] [.....172.16.0.1][57684] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
guessed: [...340] [ip4][..tcp] [.....172.16.0.1][58332] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
end: [...340] [ip4][..tcp] [.....172.16.0.1][58332] -> [..192.168.10.50][...80]
guessed: [...341] [ip4][..tcp] [.....172.16.0.1][58346] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
@@ -1263,7 +1263,7 @@
end: [...345] [ip4][..tcp] [.....172.16.0.1][58414] -> [..192.168.10.50][...80]
new: [...421] [ip4][..tcp] [.....172.16.0.1][59772] -> [..192.168.10.50][...80]
detected: [...419] [ip4][..tcp] [.....172.16.0.1][59732] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [...422] [ip4][..tcp] [.....172.16.0.1][59786] -> [..192.168.10.50][...80]
new: [...423] [ip4][..tcp] [.....172.16.0.1][59812] -> [..192.168.10.50][...80]
new: [...424] [ip4][..tcp] [.....172.16.0.1][59826] -> [..192.168.10.50][...80]
@@ -1383,11 +1383,11 @@
guessed: [...382] [ip4][..tcp] [.....172.16.0.1][59070] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
end: [...382] [ip4][..tcp] [.....172.16.0.1][59070] -> [..192.168.10.50][...80]
end: [...342] [ip4][..tcp] [.....172.16.0.1][58360] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: XSS Attack, HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: XSS Attack, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [...458] [ip4][..tcp] [.....172.16.0.1][60464] -> [..192.168.10.50][...80]
new: [...459] [ip4][..tcp] [.....172.16.0.1][60478] -> [..192.168.10.50][...80]
detected: [...458] [ip4][..tcp] [.....172.16.0.1][60464] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [...460] [ip4][..tcp] [.....172.16.0.1][60504] -> [..192.168.10.50][...80]
new: [...461] [ip4][..tcp] [.....172.16.0.1][60518] -> [..192.168.10.50][...80]
new: [...462] [ip4][..tcp] [.....172.16.0.1][60532] -> [..192.168.10.50][...80]
@@ -1494,7 +1494,7 @@
new: [...491] [ip4][..tcp] [.....172.16.0.1][32838] -> [..192.168.10.50][...80]
new: [...492] [ip4][..tcp] [.....172.16.0.1][32852] -> [..192.168.10.50][...80]
end: [...380] [ip4][..tcp] [.....172.16.0.1][59042] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
guessed: [...414] [ip4][..tcp] [.....172.16.0.1][59650] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
end: [...414] [ip4][..tcp] [.....172.16.0.1][59650] -> [..192.168.10.50][...80]
guessed: [...415] [ip4][..tcp] [.....172.16.0.1][59664] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
@@ -1511,7 +1511,7 @@
new: [...496] [ip4][..tcp] [.....172.16.0.1][32932] -> [..192.168.10.50][...80]
new: [...497] [ip4][..tcp] [.....172.16.0.1][32946] -> [..192.168.10.50][...80]
detected: [...495] [ip4][..tcp] [.....172.16.0.1][32906] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [...498] [ip4][..tcp] [.....172.16.0.1][32960] -> [..192.168.10.50][...80]
guessed: [...420] [ip4][..tcp] [.....172.16.0.1][59758] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
end: [...420] [ip4][..tcp] [.....172.16.0.1][59758] -> [..192.168.10.50][...80]
@@ -1634,7 +1634,7 @@
new: [...533] [ip4][..tcp] [.....172.16.0.1][33594] -> [..192.168.10.50][...80]
new: [...534] [ip4][..tcp] [.....172.16.0.1][33608] -> [..192.168.10.50][...80]
end: [...419] [ip4][..tcp] [.....172.16.0.1][59732] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: XSS Attack, HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: XSS Attack, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
guessed: [...457] [ip4][..tcp] [.....172.16.0.1][60438] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
end: [...457] [ip4][..tcp] [.....172.16.0.1][60438] -> [..192.168.10.50][...80]
guessed: [...459] [ip4][..tcp] [.....172.16.0.1][60478] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
@@ -1646,7 +1646,7 @@
guessed: [...462] [ip4][..tcp] [.....172.16.0.1][60532] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
end: [...462] [ip4][..tcp] [.....172.16.0.1][60532] -> [..192.168.10.50][...80]
detected: [...532] [ip4][..tcp] [.....172.16.0.1][33580] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [...535] [ip4][..tcp] [.....172.16.0.1][33634] -> [..192.168.10.50][...80]
new: [...536] [ip4][..tcp] [.....172.16.0.1][33648] -> [..192.168.10.50][...80]
new: [...537] [ip4][..tcp] [.....172.16.0.1][33674] -> [..192.168.10.50][...80]
@@ -1760,11 +1760,11 @@
guessed: [...497] [ip4][..tcp] [.....172.16.0.1][32946] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
end: [...497] [ip4][..tcp] [.....172.16.0.1][32946] -> [..192.168.10.50][...80]
end: [...458] [ip4][..tcp] [.....172.16.0.1][60464] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [...569] [ip4][..tcp] [.....172.16.0.1][34278] -> [..192.168.10.50][...80]
new: [...570] [ip4][..tcp] [.....172.16.0.1][34292] -> [..192.168.10.50][...80]
detected: [...569] [ip4][..tcp] [.....172.16.0.1][34278] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [...571] [ip4][..tcp] [.....172.16.0.1][34318] -> [..192.168.10.50][...80]
new: [...572] [ip4][..tcp] [.....172.16.0.1][34332] -> [..192.168.10.50][...80]
new: [...573] [ip4][..tcp] [.....172.16.0.1][34346] -> [..192.168.10.50][...80]
@@ -1870,7 +1870,7 @@
new: [...603] [ip4][..tcp] [.....172.16.0.1][34886] -> [..192.168.10.50][...80]
new: [...604] [ip4][..tcp] [.....172.16.0.1][34900] -> [..192.168.10.50][...80]
end: [...495] [ip4][..tcp] [.....172.16.0.1][32906] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: XSS Attack, HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: XSS Attack, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
guessed: [...528] [ip4][..tcp] [.....172.16.0.1][33500] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
end: [...528] [ip4][..tcp] [.....172.16.0.1][33500] -> [..192.168.10.50][...80]
guessed: [...529] [ip4][..tcp] [.....172.16.0.1][33526] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
@@ -1886,7 +1886,7 @@
new: [...607] [ip4][..tcp] [.....172.16.0.1][34954] -> [..192.168.10.50][...80]
new: [...608] [ip4][..tcp] [.....172.16.0.1][34980] -> [..192.168.10.50][...80]
detected: [...606] [ip4][..tcp] [.....172.16.0.1][34940] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [...609] [ip4][..tcp] [.....172.16.0.1][34994] -> [..192.168.10.50][...80]
guessed: [...534] [ip4][..tcp] [.....172.16.0.1][33608] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
end: [...534] [ip4][..tcp] [.....172.16.0.1][33608] -> [..192.168.10.50][...80]
@@ -2003,7 +2003,7 @@
new: [...644] [ip4][..tcp] [.....172.16.0.1][35640] -> [..192.168.10.50][...80]
new: [...645] [ip4][..tcp] [.....172.16.0.1][35654] -> [..192.168.10.50][...80]
end: [...532] [ip4][..tcp] [.....172.16.0.1][33580] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
guessed: [...568] [ip4][..tcp] [.....172.16.0.1][34252] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
end: [...568] [ip4][..tcp] [.....172.16.0.1][34252] -> [..192.168.10.50][...80]
guessed: [...570] [ip4][..tcp] [.....172.16.0.1][34292] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
@@ -2016,7 +2016,7 @@
end: [...573] [ip4][..tcp] [.....172.16.0.1][34346] -> [..192.168.10.50][...80]
new: [...646] [ip4][..tcp] [.....172.16.0.1][35668] -> [..192.168.10.50][...80]
detected: [...643] [ip4][..tcp] [.....172.16.0.1][35626] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
new: [...647] [ip4][..tcp] [.....172.16.0.1][35682] -> [..192.168.10.50][...80]
new: [...648] [ip4][..tcp] [.....172.16.0.1][35696] -> [..192.168.10.50][...80]
new: [...649] [ip4][..tcp] [.....172.16.0.1][35722] -> [..192.168.10.50][...80]
@@ -2107,7 +2107,7 @@
guessed: [...605] [ip4][..tcp] [.....172.16.0.1][34926] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
end: [...605] [ip4][..tcp] [.....172.16.0.1][34926] -> [..192.168.10.50][...80]
end: [...606] [ip4][..tcp] [.....172.16.0.1][34940] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
guessed: [...607] [ip4][..tcp] [.....172.16.0.1][34954] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
end: [...607] [ip4][..tcp] [.....172.16.0.1][34954] -> [..192.168.10.50][...80]
guessed: [...608] [ip4][..tcp] [.....172.16.0.1][34980] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
@@ -2181,7 +2181,7 @@
guessed: [...642] [ip4][..tcp] [.....172.16.0.1][35600] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
end: [...642] [ip4][..tcp] [.....172.16.0.1][35600] -> [..192.168.10.50][...80]
idle: [...643] [ip4][..tcp] [.....172.16.0.1][35626] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: XSS Attack, HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: XSS Attack, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
guessed: [...644] [ip4][..tcp] [.....172.16.0.1][35640] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
end: [...644] [ip4][..tcp] [.....172.16.0.1][35640] -> [..192.168.10.50][...80]
guessed: [...645] [ip4][..tcp] [.....172.16.0.1][35654] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
@@ -2219,5 +2219,5 @@
guessed: [...661] [ip4][..tcp] [.....172.16.0.1][35950] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][]
idle: [...661] [ip4][..tcp] [.....172.16.0.1][35950] -> [..192.168.10.50][...80]
end: [...569] [ip4][..tcp] [.....172.16.0.1][34278] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: XSS Attack, HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: XSS Attack, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/activision.pcap.out b/test/results/flow-info/default/activision.pcap.out
index 1ae6f6b68..156415ceb 100644
--- a/test/results/flow-info/activision.pcap.out
+++ b/test/results/flow-info/default/activision.pcap.out
@@ -3,19 +3,28 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..192.168.2.100][.3074] -> [..108.61.235.31][33441]
detected: [.....1] [ip4][..udp] [..192.168.2.100][.3074] -> [..108.61.235.31][33441] [Activision][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..udp] [..192.168.2.100][.3074] -> [...45.63.112.54][34741]
detected: [.....2] [ip4][..udp] [..192.168.2.100][.3074] -> [...45.63.112.54][34741] [Activision][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [..192.168.2.100][.3074] -> [..108.61.235.31][33441] [Activision][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 30 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 2|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 1]
new: [.....3] [ip4][..udp] [..192.168.2.100][.3074] -> [.148.72.173.162][34311]
detected: [.....3] [ip4][..udp] [..192.168.2.100][.3074] -> [.148.72.173.162][34311] [Activision][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [..192.168.2.100][.3074] -> [...45.63.112.54][34741] [Activision][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [..192.168.2.100][.3074] -> [..108.61.235.31][33441] [Activision][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 45 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 3|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 1]
new: [.....4] [ip4][..udp] [..192.168.2.100][.3074] -> [...173.199.67.5][37081]
detected: [.....4] [ip4][..udp] [..192.168.2.100][.3074] -> [...173.199.67.5][37081] [Activision][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [..192.168.2.100][.3074] -> [.148.72.173.162][34311] [Activision][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..udp] [..192.168.2.100][.3074] -> [...173.199.67.5][37081] [Activision][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/default/adult_content.pcap.out b/test/results/flow-info/default/adult_content.pcap.out
new file mode 100644
index 000000000..6be4bf51d
--- /dev/null
+++ b/test/results/flow-info/default/adult_content.pcap.out
@@ -0,0 +1,9 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..udp] [..192.168.1.199][42759] -> [...31.220.27.69][...80]
+ detected: [.....1] [ip4][..udp] [..192.168.1.199][42759] -> [...31.220.27.69][...80] [STUN.AdultContent][Unknown][AdultContent][Acceptable][b-eu14.stripcdn.com]
+ RISK: Known Proto on Non Std Port
+ idle: [.....1] [ip4][..udp] [..192.168.1.199][42759] -> [...31.220.27.69][...80] [STUN.AdultContent][Unknown][AdultContent][Acceptable]
+ RISK: Known Proto on Non Std Port
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/afp.pcap.out b/test/results/flow-info/default/afp.pcap.out
index e950969bb..e44670927 100644
--- a/test/results/flow-info/afp.pcap.out
+++ b/test/results/flow-info/default/afp.pcap.out
@@ -3,5 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [..192.168.27.57][64987] -> [.192.168.27.139][..548] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [..192.168.27.57][64987] -> [.192.168.27.139][..548] [AFP][Unknown][DataTransfer][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..tcp] [..192.168.27.57][64987] -> [.192.168.27.139][..548] [AFP][Unknown][DataTransfer][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/agora-sd-rtn.pcap.out b/test/results/flow-info/default/agora-sd-rtn.pcap.out
index 469460414..18e8c1a88 100644
--- a/test/results/flow-info/agora-sd-rtn.pcap.out
+++ b/test/results/flow-info/default/agora-sd-rtn.pcap.out
@@ -3,111 +3,186 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..192.168.2.100][35778] -> [.23.248.186.179][.8130]
detected: [.....1] [ip4][..udp] [..192.168.2.100][35778] -> [.23.248.186.179][.8130] [SD-RTN][Unknown][Media][Acceptable][23-248-186-179.edge.agora.io]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..udp] [..192.168.2.100][35778] -> [.104.166.161.75][.8130]
detected: [.....2] [ip4][..udp] [..192.168.2.100][35778] -> [.104.166.161.75][.8130] [SD-RTN][Unknown][Media][Acceptable][104-166-161-75.edge.agora.io]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..udp] [..192.168.2.100][44131] -> [.104.166.161.75][.8130]
detected: [.....3] [ip4][..udp] [..192.168.2.100][44131] -> [.104.166.161.75][.8130] [SD-RTN][Unknown][Media][Acceptable][104-166-161-75.edge.agora.io]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..udp] [..192.168.2.100][44131] -> [.104.166.161.19][.8130]
detected: [.....4] [ip4][..udp] [..192.168.2.100][44131] -> [.104.166.161.19][.8130] [SD-RTN][Unknown][Media][Acceptable][104-166-161-19.edge.agora.io]
+ RISK: Unidirectional Traffic
update: [.....2] [ip4][..udp] [..192.168.2.100][35778] -> [.104.166.161.75][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [..192.168.2.100][35778] -> [.23.248.186.179][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][..udp] [..192.168.2.100][44131] -> [....128.1.77.66][.8130]
detected: [.....5] [ip4][..udp] [..192.168.2.100][44131] -> [....128.1.77.66][.8130] [SD-RTN][Unknown][Media][Acceptable][128-1-77-66.edge.agora.io]
+ RISK: Unidirectional Traffic
new: [.....6] [ip4][..udp] [..192.168.2.100][44131] -> [.23.248.186.179][.8130]
detected: [.....6] [ip4][..udp] [..192.168.2.100][44131] -> [.23.248.186.179][.8130] [SD-RTN][Unknown][Media][Acceptable][23-248-186-179.edge.agora.io]
+ RISK: Unidirectional Traffic
new: [.....7] [ip4][..udp] [..192.168.2.100][46798] -> [.23.248.186.179][.8130]
detected: [.....7] [ip4][..udp] [..192.168.2.100][46798] -> [.23.248.186.179][.8130] [SD-RTN][Unknown][Media][Acceptable][23-248-186-179.edge.agora.io]
+ RISK: Unidirectional Traffic
update: [.....2] [ip4][..udp] [..192.168.2.100][35778] -> [.104.166.161.75][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [..192.168.2.100][44131] -> [.104.166.161.75][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....4] [ip4][..udp] [..192.168.2.100][44131] -> [.104.166.161.19][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [..192.168.2.100][35778] -> [.23.248.186.179][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....5] [ip4][..udp] [..192.168.2.100][44131] -> [....128.1.77.66][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....8] [ip4][..udp] [..192.168.2.100][44131] -> [.23.248.186.180][.8130]
detected: [.....8] [ip4][..udp] [..192.168.2.100][44131] -> [.23.248.186.180][.8130] [SD-RTN][Unknown][Media][Acceptable][23-248-186-180.edge.agora.io]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [..192.168.2.100][35778] -> [.104.166.161.75][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [..192.168.2.100][35778] -> [.23.248.186.179][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [..192.168.2.100][44131] -> [.104.166.161.75][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....4] [ip4][..udp] [..192.168.2.100][44131] -> [.104.166.161.19][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....6] [ip4][..udp] [..192.168.2.100][44131] -> [.23.248.186.179][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....5] [ip4][..udp] [..192.168.2.100][44131] -> [....128.1.77.66][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....7] [ip4][..udp] [..192.168.2.100][46798] -> [.23.248.186.179][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 120 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 6 / 8|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 12]
new: [.....9] [ip4][..udp] [..192.168.2.100][40393] -> [.23.248.186.179][.8130]
detected: [.....9] [ip4][..udp] [..192.168.2.100][40393] -> [.23.248.186.179][.8130] [SD-RTN][Unknown][Media][Acceptable][23-248-186-179.edge.agora.io]
+ RISK: Unidirectional Traffic
new: [....10] [ip4][..udp] [..192.168.2.100][47453] -> [.23.248.186.179][.8130]
detected: [....10] [ip4][..udp] [..192.168.2.100][47453] -> [.23.248.186.179][.8130] [SD-RTN][Unknown][Media][Acceptable][23-248-186-179.edge.agora.io]
+ RISK: Unidirectional Traffic
new: [....11] [ip4][..udp] [..192.168.2.100][40393] -> [.104.166.161.75][.8130]
detected: [....11] [ip4][..udp] [..192.168.2.100][40393] -> [.104.166.161.75][.8130] [SD-RTN][Unknown][Media][Acceptable][104-166-161-75.edge.agora.io]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..udp] [..192.168.2.100][44131] -> [.104.166.161.19][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [..192.168.2.100][44131] -> [.104.166.161.75][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....8] [ip4][..udp] [..192.168.2.100][44131] -> [.23.248.186.180][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][..udp] [..192.168.2.100][44131] -> [.23.248.186.179][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....5] [ip4][..udp] [..192.168.2.100][44131] -> [....128.1.77.66][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....7] [ip4][..udp] [..192.168.2.100][46798] -> [.23.248.186.179][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
new: [....12] [ip4][..udp] [..192.168.2.100][55322] -> [.104.166.161.75][.8130]
detected: [....12] [ip4][..udp] [..192.168.2.100][55322] -> [.104.166.161.75][.8130] [SD-RTN][Unknown][Media][Acceptable][104-166-161-75.edge.agora.io]
+ RISK: Unidirectional Traffic
new: [....13] [ip4][..udp] [..192.168.2.100][55322] -> [..128.1.233.218][.8130]
detected: [....13] [ip4][..udp] [..192.168.2.100][55322] -> [..128.1.233.218][.8130] [SD-RTN][Unknown][Media][Acceptable][128-1-233-218.edge.agora.io]
+ RISK: Unidirectional Traffic
new: [....14] [ip4][..udp] [..192.168.2.100][55322] -> [.193.118.52.182][.8130]
detected: [....14] [ip4][..udp] [..192.168.2.100][55322] -> [.193.118.52.182][.8130] [SD-RTN][Unknown][Media][Acceptable][193-118-52-182.edge.agora.io]
+ RISK: Unidirectional Traffic
update: [....10] [ip4][..udp] [..192.168.2.100][47453] -> [.23.248.186.179][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
update: [....11] [ip4][..udp] [..192.168.2.100][40393] -> [.104.166.161.75][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....9] [ip4][..udp] [..192.168.2.100][40393] -> [.23.248.186.179][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 210 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 6 / 14|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 15]
idle: [....10] [ip4][..udp] [..192.168.2.100][47453] -> [.23.248.186.179][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....13] [ip4][..udp] [..192.168.2.100][55322] -> [..128.1.233.218][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....11] [ip4][..udp] [..192.168.2.100][40393] -> [.104.166.161.75][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....9] [ip4][..udp] [..192.168.2.100][40393] -> [.23.248.186.179][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....14] [ip4][..udp] [..192.168.2.100][55322] -> [.193.118.52.182][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
update: [....12] [ip4][..udp] [..192.168.2.100][55322] -> [.104.166.161.75][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
new: [....15] [ip4][..udp] [..192.168.2.100][55322] -> [..128.1.193.223][.8130]
detected: [....15] [ip4][..udp] [..192.168.2.100][55322] -> [..128.1.193.223][.8130] [SD-RTN][Unknown][Media][Acceptable][128-1-193-223.edge.agora.io]
+ RISK: Unidirectional Traffic
new: [....16] [ip4][..udp] [..192.168.2.100][55322] -> [.23.248.186.180][.8130]
detected: [....16] [ip4][..udp] [..192.168.2.100][55322] -> [.23.248.186.180][.8130] [SD-RTN][Unknown][Media][Acceptable][23-248-186-180.edge.agora.io]
+ RISK: Unidirectional Traffic
update: [....12] [ip4][..udp] [..192.168.2.100][55322] -> [.104.166.161.75][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
new: [....17] [ip4][..udp] [..192.168.2.100][55322] -> [..128.1.193.224][.8130]
detected: [....17] [ip4][..udp] [..192.168.2.100][55322] -> [..128.1.193.224][.8130] [SD-RTN][Unknown][Media][Acceptable][128-1-193-224.edge.agora.io]
+ RISK: Unidirectional Traffic
update: [....15] [ip4][..udp] [..192.168.2.100][55322] -> [..128.1.193.223][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
new: [....18] [ip4][..udp] [..192.168.2.100][55322] -> [.23.248.186.179][.8130]
detected: [....18] [ip4][..udp] [..192.168.2.100][55322] -> [.23.248.186.179][.8130] [SD-RTN][Unknown][Media][Acceptable][23-248-186-179.edge.agora.io]
+ RISK: Unidirectional Traffic
idle: [....16] [ip4][..udp] [..192.168.2.100][55322] -> [.23.248.186.180][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....15] [ip4][..udp] [..192.168.2.100][55322] -> [..128.1.193.223][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....12] [ip4][..udp] [..192.168.2.100][55322] -> [.104.166.161.75][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
update: [....17] [ip4][..udp] [..192.168.2.100][55322] -> [..128.1.193.224][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 285 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 18|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 19]
new: [....19] [ip4][..udp] [..192.168.2.100][47805] -> [..128.1.193.223][.8130]
detected: [....19] [ip4][..udp] [..192.168.2.100][47805] -> [..128.1.193.223][.8130] [SD-RTN][Unknown][Media][Acceptable][128-1-193-223.edge.agora.io]
+ RISK: Unidirectional Traffic
new: [....20] [ip4][..udp] [..192.168.2.100][47805] -> [.202.226.25.166][.8130]
detected: [....20] [ip4][..udp] [..192.168.2.100][47805] -> [.202.226.25.166][.8130] [SD-RTN][Unknown][Media][Acceptable][202-226-25-166.edge.agora.io]
+ RISK: Unidirectional Traffic
idle: [....18] [ip4][..udp] [..192.168.2.100][55322] -> [.23.248.186.179][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....17] [ip4][..udp] [..192.168.2.100][55322] -> [..128.1.193.224][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
new: [....21] [ip4][..udp] [..192.168.2.100][47805] -> [103.104.168.244][.8130]
detected: [....21] [ip4][..udp] [..192.168.2.100][47805] -> [103.104.168.244][.8130] [SD-RTN][Unknown][Media][Acceptable][103-104-168-244.edge.agora.io]
+ RISK: Unidirectional Traffic
new: [....22] [ip4][..udp] [..192.168.2.100][47805] -> [.199.190.44.135][.8130]
detected: [....22] [ip4][..udp] [..192.168.2.100][47805] -> [.199.190.44.135][.8130] [SD-RTN][Unknown][Media][Acceptable][199-190-44-135.edge.agora.io]
+ RISK: Unidirectional Traffic
new: [....23] [ip4][..udp] [..192.168.2.100][47805] -> [..128.1.193.224][.8130]
detected: [....23] [ip4][..udp] [..192.168.2.100][47805] -> [..128.1.193.224][.8130] [SD-RTN][Unknown][Media][Acceptable][128-1-193-224.edge.agora.io]
+ RISK: Unidirectional Traffic
new: [....24] [ip4][..udp] [..192.168.2.100][47805] -> [.23.248.186.179][.8130]
detected: [....24] [ip4][..udp] [..192.168.2.100][47805] -> [.23.248.186.179][.8130] [SD-RTN][Unknown][Media][Acceptable][23-248-186-179.edge.agora.io]
+ RISK: Unidirectional Traffic
new: [....25] [ip4][..udp] [..192.168.2.100][55094] -> [..128.1.193.223][.8130]
detected: [....25] [ip4][..udp] [..192.168.2.100][55094] -> [..128.1.193.223][.8130] [SD-RTN][Unknown][Media][Acceptable][128-1-193-223.edge.agora.io]
+ RISK: Unidirectional Traffic
update: [....22] [ip4][..udp] [..192.168.2.100][47805] -> [.199.190.44.135][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
update: [....21] [ip4][..udp] [..192.168.2.100][47805] -> [103.104.168.244][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
update: [....19] [ip4][..udp] [..192.168.2.100][47805] -> [..128.1.193.223][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
update: [....20] [ip4][..udp] [..192.168.2.100][47805] -> [.202.226.25.166][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
new: [....26] [ip4][..udp] [..192.168.2.100][47805] -> [.23.248.186.180][.8130]
detected: [....26] [ip4][..udp] [..192.168.2.100][47805] -> [.23.248.186.180][.8130] [SD-RTN][Unknown][Media][Acceptable][23-248-186-180.edge.agora.io]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 400 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 8 / 26|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 23]
idle: [....25] [ip4][..udp] [..192.168.2.100][55094] -> [..128.1.193.223][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....22] [ip4][..udp] [..192.168.2.100][47805] -> [.199.190.44.135][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....26] [ip4][..udp] [..192.168.2.100][47805] -> [.23.248.186.180][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....24] [ip4][..udp] [..192.168.2.100][47805] -> [.23.248.186.179][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....21] [ip4][..udp] [..192.168.2.100][47805] -> [103.104.168.244][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....23] [ip4][..udp] [..192.168.2.100][47805] -> [..128.1.193.224][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....19] [ip4][..udp] [..192.168.2.100][47805] -> [..128.1.193.223][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....20] [ip4][..udp] [..192.168.2.100][47805] -> [.202.226.25.166][.8130] [SD-RTN][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/ah.pcapng.out b/test/results/flow-info/default/ah.pcapng.out
index 3da67bba6..24662408f 100644
--- a/test/results/flow-info/ah.pcapng.out
+++ b/test/results/flow-info/default/ah.pcapng.out
@@ -3,8 +3,12 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [.......10.2.3.2][..500] -> [.......10.3.4.4][..500]
detected: [.....1] [ip4][..udp] [.......10.2.3.2][..500] -> [.......10.3.4.4][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][...51] [.......10.2.3.2] -> [.......10.3.4.4]
detected: [.....2] [ip4][...51] [.......10.2.3.2] -> [.......10.3.4.4] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [.......10.2.3.2][..500] -> [.......10.3.4.4][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][...51] [.......10.2.3.2] -> [.......10.3.4.4] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/ajp.pcap.out b/test/results/flow-info/default/ajp.pcap.out
index 7adb8cb22..7adb8cb22 100644
--- a/test/results/flow-info/ajp.pcap.out
+++ b/test/results/flow-info/default/ajp.pcap.out
diff --git a/test/results/flow-info/alexa-app.pcapng.out b/test/results/flow-info/default/alexa-app.pcapng.out
index 753decbd9..f58d692d0 100644
--- a/test/results/flow-info/alexa-app.pcapng.out
+++ b/test/results/flow-info/default/alexa-app.pcapng.out
@@ -11,20 +11,25 @@
detected: [.....3] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable][android-1c1335ec95a27318]
new: [.....4] [ip4][..udp] [....172.16.42.1][...67] -> [..172.16.42.216][...68]
detected: [.....4] [ip4][..udp] [....172.16.42.1][...67] -> [..172.16.42.216][...68] [DHCP][Unknown][Network][Acceptable][]
+ RISK: Unidirectional Traffic
new: [.....5] [ip6][icmp6] [..............fe80::7af8:82ff:fed3:fbc2] -> [................................ff02::2]
detected: [.....5] [ip6][icmp6] [..............fe80::7af8:82ff:fed3:fbc2] -> [................................ff02::2] [ICMPV6][Unknown][Network][Acceptable]
new: [.....6] [ip4][..udp] [..172.16.42.216][.3440] -> [....172.16.42.1][...53]
detected: [.....6] [ip4][..udp] [..172.16.42.216][.3440] -> [....172.16.42.1][...53] [DNS.Google][Unknown][Network][Acceptable][connectivitycheck.android.com]
+ RISK: Unidirectional Traffic
detection-update: [.....6] [ip4][..udp] [..172.16.42.216][.3440] -> [....172.16.42.1][...53] [DNS.Google][Unknown][Network][Acceptable][connectivitycheck.android.com]
new: [.....7] [ip4][..udp] [..172.16.42.216][55619] -> [....172.16.42.1][...53]
detected: [.....7] [ip4][..udp] [..172.16.42.216][55619] -> [....172.16.42.1][...53] [DNS.Google][Unknown][Network][Acceptable][connectivitycheck.android.com]
+ RISK: Unidirectional Traffic
detection-update: [.....7] [ip4][..udp] [..172.16.42.216][55619] -> [....172.16.42.1][...53] [DNS.Google][Unknown][Network][Acceptable][connectivitycheck.android.com]
new: [.....8] [ip4][..tcp] [..172.16.42.216][60246] -> [..172.217.9.142][...80]
detected: [.....8] [ip4][..tcp] [..172.16.42.216][60246] -> [..172.217.9.142][...80] [HTTP.Google][Google][ConnCheck][Acceptable][connectivitycheck.android.com]
new: [.....9] [ip4][..udp] [..172.16.42.216][53188] -> [....172.16.42.1][...53]
detected: [.....9] [ip4][..udp] [..172.16.42.216][53188] -> [....172.16.42.1][...53] [DNS.GoogleServices][Unknown][Network][Acceptable][mtalk.google.com]
+ RISK: Unidirectional Traffic
new: [....10] [ip4][..udp] [..172.16.42.216][52603] -> [....172.16.42.1][...53]
detected: [....10] [ip4][..udp] [..172.16.42.216][52603] -> [....172.16.42.1][...53] [DNS.Google][Unknown][Network][Acceptable][www.google.com]
+ RISK: Unidirectional Traffic
detection-update: [....10] [ip4][..udp] [..172.16.42.216][52603] -> [....172.16.42.1][...53] [DNS.Google][Unknown][Network][Acceptable][www.google.com]
detection-update: [.....9] [ip4][..udp] [..172.16.42.216][53188] -> [....172.16.42.1][...53] [DNS.GoogleServices][Unknown][Network][Acceptable][mtalk.google.com]
new: [....11] [ip4][..tcp] [..172.16.42.216][42878] -> [173.194.223.188][.5228]
@@ -34,13 +39,16 @@
RISK: Known Proto on Non Std Port, TLS (probably) Not Carrying HTTPS
new: [....12] [ip4][..udp] [..172.16.42.216][10462] -> [....172.16.42.1][...53]
detected: [....12] [ip4][..udp] [..172.16.42.216][10462] -> [....172.16.42.1][...53] [DNS.Google][Unknown][Network][Acceptable][www.google.com]
+ RISK: Unidirectional Traffic
detection-update: [....12] [ip4][..udp] [..172.16.42.216][10462] -> [....172.16.42.1][...53] [DNS.Google][Unknown][Network][Acceptable][www.google.com]
new: [....13] [ip4][..tcp] [..172.16.42.216][35540] -> [..172.217.9.142][...80]
detected: [....13] [ip4][..tcp] [..172.16.42.216][35540] -> [..172.217.9.142][...80] [HTTP.Google][Google][ConnCheck][Acceptable][connectivitycheck.android.com]
new: [....14] [ip4][.icmp] [....172.16.42.1] -> [..172.16.42.216]
detected: [....14] [ip4][.icmp] [....172.16.42.1] -> [..172.16.42.216] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....15] [ip4][..udp] [..172.16.42.216][48155] -> [....172.16.42.1][...53]
detected: [....15] [ip4][..udp] [..172.16.42.216][48155] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][www.amazon.com]
+ RISK: Unidirectional Traffic
detection-update: [....15] [ip4][..udp] [..172.16.42.216][48155] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][www.amazon.com]
new: [....16] [ip4][..tcp] [..172.16.42.216][55242] -> [..52.85.209.197][..443]
detected: [....16] [ip4][..tcp] [..172.16.42.216][55242] -> [..52.85.209.197][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][www.amazon.com]
@@ -51,6 +59,7 @@
RISK: TLS (probably) Not Carrying HTTPS
new: [....17] [ip4][..udp] [..172.16.42.216][19967] -> [....172.16.42.1][...53]
detected: [....17] [ip4][..udp] [..172.16.42.216][19967] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][mads.amazon-adsystem.com]
+ RISK: Unidirectional Traffic
detection-update: [....17] [ip4][..udp] [..172.16.42.216][19967] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][mads.amazon-adsystem.com]
new: [....18] [ip4][..tcp] [..172.16.42.216][33556] -> [....52.94.232.0][..443]
detected: [....18] [ip4][..tcp] [..172.16.42.216][33556] -> [....52.94.232.0][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][mads.amazon-adsystem.com]
@@ -61,6 +70,7 @@
RISK: TLS (probably) Not Carrying HTTPS
new: [....19] [ip4][..udp] [..172.16.42.216][.7358] -> [....172.16.42.1][...53]
detected: [....19] [ip4][..udp] [..172.16.42.216][.7358] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][firs-ta-g7g.amazon.com]
+ RISK: Unidirectional Traffic
detection-update: [....19] [ip4][..udp] [..172.16.42.216][.7358] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][firs-ta-g7g.amazon.com]
new: [....20] [ip4][..tcp] [..172.16.42.216][53682] -> [..54.239.22.185][..443]
detected: [....20] [ip4][..tcp] [..172.16.42.216][53682] -> [..54.239.22.185][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][firs-ta-g7g.amazon.com]
@@ -71,6 +81,7 @@
RISK: TLS (probably) Not Carrying HTTPS
new: [....21] [ip4][..udp] [..172.16.42.216][41030] -> [....172.16.42.1][...53]
detected: [....21] [ip4][..udp] [..172.16.42.216][41030] -> [....172.16.42.1][...53] [DNS.AmazonAlexa][Unknown][Network][Acceptable][alexa.amazon.com]
+ RISK: Unidirectional Traffic
detection-update: [....21] [ip4][..udp] [..172.16.42.216][41030] -> [....172.16.42.1][...53] [DNS.AmazonAlexa][Unknown][Network][Acceptable][alexa.amazon.com]
new: [....22] [ip4][..tcp] [..172.16.42.216][49572] -> [..52.94.232.134][...80]
detected: [....22] [ip4][..tcp] [..172.16.42.216][49572] -> [..52.94.232.134][...80] [HTTP.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][alexa.amazon.com]
@@ -78,6 +89,7 @@
detected: [....23] [ip6][icmp6] [..............fe80::7af8:82ff:fed3:fbc2] -> [...............................ff02::16] [ICMPV6][Unknown][Network][Acceptable]
new: [....24] [ip4][..udp] [..172.16.42.216][23559] -> [....172.16.42.1][...53]
detected: [....24] [ip4][..udp] [..172.16.42.216][23559] -> [....172.16.42.1][...53] [DNS.AmazonAWS][Unknown][Network][Acceptable][cognito-identity.us-east-1.amazonaws.com]
+ RISK: Unidirectional Traffic
detection-update: [....24] [ip4][..udp] [..172.16.42.216][23559] -> [....172.16.42.1][...53] [DNS.AmazonAWS][Unknown][Network][Acceptable][cognito-identity.us-east-1.amazonaws.com]
new: [....25] [ip4][..tcp] [..172.16.42.216][38363] -> [..34.199.52.240][..443]
detected: [....25] [ip4][..tcp] [..172.16.42.216][38363] -> [..34.199.52.240][..443] [TLS.AmazonAWS][AmazonAWS][Cloud][Acceptable][cognito-identity.us-east-1.amazonaws.com]
@@ -88,6 +100,7 @@
detection-update: [....26] [ip4][..tcp] [..172.16.42.216][38364] -> [..34.199.52.240][..443] [TLS.AmazonAWS][AmazonAWS][Cloud][Acceptable][cognito-identity.us-east-1.amazonaws.com]
new: [....27] [ip4][..udp] [..172.16.42.216][54886] -> [....172.16.42.1][...53]
detected: [....27] [ip4][..udp] [..172.16.42.216][54886] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][pitangui.amazon.com]
+ RISK: Unidirectional Traffic
detection-update: [....27] [ip4][..udp] [..172.16.42.216][54886] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][pitangui.amazon.com]
new: [....28] [ip4][..tcp] [..172.16.42.216][45661] -> [..52.94.232.134][..443]
detected: [....28] [ip4][..tcp] [..172.16.42.216][45661] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
@@ -106,8 +119,10 @@
new: [....33] [ip4][..tcp] [..172.16.42.216][40202] -> [.10.201.126.241][.8080]
new: [....34] [ip4][..udp] [..172.16.42.216][21391] -> [....172.16.42.1][...53]
detected: [....34] [ip4][..udp] [..172.16.42.216][21391] -> [....172.16.42.1][...53] [DNS.AmazonAWS][Unknown][Network][Acceptable][mobileanalytics.us-east-1.amazonaws.com]
+ RISK: Unidirectional Traffic
new: [....35] [ip4][..udp] [..172.16.42.216][52077] -> [....172.16.42.1][...53]
detected: [....35] [ip4][..udp] [..172.16.42.216][52077] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][www.amazon.com]
+ RISK: Unidirectional Traffic
detection-update: [....34] [ip4][..udp] [..172.16.42.216][21391] -> [....172.16.42.1][...53] [DNS.AmazonAWS][Unknown][Network][Acceptable][mobileanalytics.us-east-1.amazonaws.com]
new: [....36] [ip4][..tcp] [..172.16.42.216][34019] -> [..54.239.24.186][..443]
detection-update: [....35] [ip4][..udp] [..172.16.42.216][52077] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][www.amazon.com]
@@ -136,6 +151,7 @@
detection-update: [....36] [ip4][..tcp] [..172.16.42.216][34019] -> [..54.239.24.186][..443] [TLS.AmazonAWS][AmazonAWS][Cloud][Acceptable][mobileanalytics.us-east-1.amazonaws.com]
new: [....40] [ip4][..udp] [..172.16.42.216][43350] -> [....172.16.42.1][...53]
detected: [....40] [ip4][..udp] [..172.16.42.216][43350] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][fls-na.amazon.com]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
analyse: [....28] [ip4][..tcp] [..172.16.42.216][45661] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
min| max| avg| stddev| variance| entropy
@@ -241,12 +257,14 @@
detected: [....60] [ip4][..tcp] [..172.16.42.216][34041] -> [..54.239.24.186][..443] [TLS.AmazonAWS][AmazonAWS][Cloud][Acceptable][mobileanalytics.us-east-1.amazonaws.com]
detection-update: [....60] [ip4][..tcp] [..172.16.42.216][34041] -> [..54.239.24.186][..443] [TLS.AmazonAWS][AmazonAWS][Cloud][Acceptable][mobileanalytics.us-east-1.amazonaws.com]
update: [....14] [ip4][.icmp] [....172.16.42.1] -> [..172.16.42.216] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip6][icmp6] [.....................................::] -> [......................ff02::1:ffd3:fbc2] [ICMPV6][Unknown][Network][Acceptable]
update: [.....2] [ip6][icmp6] [.....................................::] -> [...............................ff02::16] [ICMPV6][Unknown][Network][Acceptable]
update: [.....5] [ip6][icmp6] [..............fe80::7af8:82ff:fed3:fbc2] -> [................................ff02::2] [ICMPV6][Unknown][Network][Acceptable]
new: [....61] [ip4][..tcp] [..172.16.42.216][42148] -> [..72.21.206.135][..443]
new: [....62] [ip4][..udp] [..172.16.42.216][44475] -> [....172.16.42.1][...53]
detected: [....62] [ip4][..udp] [..172.16.42.216][44475] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][www.amazon.com]
+ RISK: Unidirectional Traffic
detected: [....61] [ip4][..tcp] [..172.16.42.216][42148] -> [..72.21.206.135][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][fls-na.amazon.com]
detection-update: [....62] [ip4][..udp] [..172.16.42.216][44475] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][www.amazon.com]
new: [....63] [ip4][..tcp] [..172.16.42.216][54434] -> [..52.85.209.216][..443]
@@ -255,6 +273,7 @@
detection-update: [....63] [ip4][..tcp] [..172.16.42.216][54434] -> [..52.85.209.216][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][www.amazon.com]
new: [....64] [ip4][..udp] [..172.16.42.216][60804] -> [....172.16.42.1][...53]
detected: [....64] [ip4][..udp] [..172.16.42.216][60804] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][api.amazon.com]
+ RISK: Unidirectional Traffic
detection-update: [....64] [ip4][..udp] [..172.16.42.216][60804] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][api.amazon.com]
new: [....65] [ip4][..tcp] [..172.16.42.216][41691] -> [..54.239.29.146][..443]
detected: [....65] [ip4][..tcp] [..172.16.42.216][41691] -> [..54.239.29.146][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][api.amazon.com]
@@ -290,6 +309,7 @@
new: [....68] [ip4][..tcp] [..172.16.42.216][45694] -> [..52.94.232.134][..443]
new: [....69] [ip4][..udp] [..172.16.42.216][25081] -> [....172.16.42.1][...53]
detected: [....69] [ip4][..udp] [..172.16.42.216][25081] -> [....172.16.42.1][...53] [DNS.AmazonAlexa][Unknown][Network][Acceptable][alexa.amazon.com]
+ RISK: Unidirectional Traffic
detected: [....66] [ip4][..tcp] [..172.16.42.216][49606] -> [..52.94.232.134][...80] [HTTP.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][alexa.amazon.com]
new: [....70] [ip4][..tcp] [..172.16.42.216][45695] -> [..52.94.232.134][..443]
detected: [....68] [ip4][..tcp] [..172.16.42.216][45694] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
@@ -322,6 +342,7 @@
update: [.....3] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable]
update: [.....9] [ip4][..udp] [..172.16.42.216][53188] -> [....172.16.42.1][...53] [DNS.GoogleServices][Unknown][Network][Acceptable]
update: [.....4] [ip4][..udp] [....172.16.42.1][...67] -> [..172.16.42.216][...68] [DHCP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....12] [ip4][..udp] [..172.16.42.216][10462] -> [....172.16.42.1][...53] [DNS.Google][Unknown][Network][Acceptable]
update: [.....7] [ip4][..udp] [..172.16.42.216][55619] -> [....172.16.42.1][...53] [DNS.Google][Unknown][Network][Acceptable]
update: [....23] [ip6][icmp6] [..............fe80::7af8:82ff:fed3:fbc2] -> [...............................ff02::16] [ICMPV6][Unknown][Network][Acceptable]
@@ -401,6 +422,7 @@
detected: [....94] [ip4][..tcp] [..172.16.42.216][34069] -> [..54.239.24.186][..443] [TLS.AmazonAWS][AmazonAWS][Cloud][Acceptable][mobileanalytics.us-east-1.amazonaws.com]
new: [....95] [ip4][..udp] [..172.16.42.216][35726] -> [....172.16.42.1][...53]
detected: [....95] [ip4][..udp] [..172.16.42.216][35726] -> [....172.16.42.1][...53] [DNS.AmazonAWS][Unknown][Network][Acceptable][s3-external-2.amazonaws.com]
+ RISK: Unidirectional Traffic
detection-update: [....94] [ip4][..tcp] [..172.16.42.216][34069] -> [..54.239.24.186][..443] [TLS.AmazonAWS][AmazonAWS][Cloud][Acceptable][mobileanalytics.us-east-1.amazonaws.com]
detection-update: [....95] [ip4][..udp] [..172.16.42.216][35726] -> [....172.16.42.1][...53] [DNS.AmazonAWS][Unknown][Network][Acceptable][s3-external-2.amazonaws.com]
new: [....96] [ip4][..tcp] [..172.16.42.216][41820] -> [...54.231.72.88][..443]
@@ -430,6 +452,7 @@
[ENTROPIES...: 4.7,4.6,5.1,4.8,5.9,5.1,4.9,6.0,6.1,4.8,4.9,5.8,7.9,7.2,4.7,4.6,4.6,7.6,7.9,7.0,4.7,7.7,7.9,7.1,4.6,7.6,4.9,7.9,6.9,4.5,7.9,4.5]
new: [....98] [ip4][..udp] [..172.16.42.216][41639] -> [....172.16.42.1][...53]
detected: [....98] [ip4][..udp] [..172.16.42.216][41639] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][dp-gw-na-js.amazon.com]
+ RISK: Unidirectional Traffic
detection-update: [....98] [ip4][..udp] [..172.16.42.216][41639] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][dp-gw-na-js.amazon.com]
new: [....99] [ip4][..tcp] [..172.16.42.216][44001] -> [..176.32.101.52][..443]
detected: [....99] [ip4][..tcp] [..172.16.42.216][44001] -> [..176.32.101.52][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][dp-gw-na-js.amazon.com]
@@ -439,6 +462,7 @@
ERROR-EVENT: Unknown packet type [1/16]
update: [....27] [ip4][..udp] [..172.16.42.216][54886] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable]
update: [....14] [ip4][.icmp] [....172.16.42.1] -> [..172.16.42.216] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....40] [ip4][..udp] [..172.16.42.216][43350] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable]
update: [.....1] [ip6][icmp6] [.....................................::] -> [......................ff02::1:ffd3:fbc2] [ICMPV6][Unknown][Network][Acceptable]
update: [.....2] [ip6][icmp6] [.....................................::] -> [...............................ff02::16] [ICMPV6][Unknown][Network][Acceptable]
@@ -458,6 +482,7 @@
update: [....23] [ip6][icmp6] [..............fe80::7af8:82ff:fed3:fbc2] -> [...............................ff02::16] [ICMPV6][Unknown][Network][Acceptable]
new: [...103] [ip4][..udp] [..172.16.42.216][14476] -> [....172.16.42.1][...53]
detected: [...103] [ip4][..udp] [..172.16.42.216][14476] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][skills-store.amazon.com]
+ RISK: Unidirectional Traffic
detection-update: [...103] [ip4][..udp] [..172.16.42.216][14476] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][skills-store.amazon.com]
new: [...104] [ip4][..tcp] [..172.16.42.216][40853] -> [..54.239.29.253][..443]
new: [...105] [ip4][..tcp] [..172.16.42.216][40854] -> [..54.239.29.253][..443]
@@ -516,6 +541,7 @@
RISK: TLS (probably) Not Carrying HTTPS
new: [...108] [ip4][..udp] [..172.16.42.216][20922] -> [....172.16.42.1][...53]
detected: [...108] [ip4][..udp] [..172.16.42.216][20922] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][pitangui.amazon.com]
+ RISK: Unidirectional Traffic
detection-update: [...108] [ip4][..udp] [..172.16.42.216][20922] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][pitangui.amazon.com]
new: [...109] [ip4][..tcp] [..172.16.42.216][45728] -> [..52.94.232.134][..443]
new: [...110] [ip4][..tcp] [..172.16.42.216][45729] -> [..52.94.232.134][..443]
@@ -539,6 +565,7 @@
RISK: Weak TLS Cipher
new: [...114] [ip4][..udp] [..172.16.42.216][28614] -> [....172.16.42.1][...53]
detected: [...114] [ip4][..udp] [..172.16.42.216][28614] -> [....172.16.42.1][...53] [DNS.AmazonAWS][Unknown][Network][Acceptable][mobileanalytics.us-east-1.amazonaws.com]
+ RISK: Unidirectional Traffic
detection-update: [...114] [ip4][..udp] [..172.16.42.216][28614] -> [....172.16.42.1][...53] [DNS.AmazonAWS][Unknown][Network][Acceptable][mobileanalytics.us-east-1.amazonaws.com]
new: [...115] [ip4][..tcp] [..172.16.42.216][37551] -> [..54.239.24.180][..443]
new: [...116] [ip4][..tcp] [..172.16.42.216][37552] -> [..54.239.24.180][..443]
@@ -550,6 +577,7 @@
update: [.....3] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable]
update: [.....9] [ip4][..udp] [..172.16.42.216][53188] -> [....172.16.42.1][...53] [DNS.GoogleServices][Unknown][Network][Acceptable]
update: [.....4] [ip4][..udp] [....172.16.42.1][...67] -> [..172.16.42.216][...68] [DHCP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....12] [ip4][..udp] [..172.16.42.216][10462] -> [....172.16.42.1][...53] [DNS.Google][Unknown][Network][Acceptable]
update: [.....7] [ip4][..udp] [..172.16.42.216][55619] -> [....172.16.42.1][...53] [DNS.Google][Unknown][Network][Acceptable]
update: [.....6] [ip4][..udp] [..172.16.42.216][.3440] -> [....172.16.42.1][...53] [DNS.Google][Unknown][Network][Acceptable]
@@ -560,6 +588,7 @@
RISK: Weak TLS Cipher
new: [...118] [ip4][..udp] [..172.16.42.216][.4920] -> [....172.16.42.1][...53]
detected: [...118] [ip4][..udp] [..172.16.42.216][.4920] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][ecx.images-amazon.com]
+ RISK: Unidirectional Traffic
detection-update: [...118] [ip4][..udp] [..172.16.42.216][.4920] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][ecx.images-amazon.com]
new: [...119] [ip4][..tcp] [..172.16.42.216][51985] -> [....52.84.63.56][...80]
new: [...120] [ip4][..tcp] [..172.16.42.216][51986] -> [....52.84.63.56][...80]
@@ -621,6 +650,7 @@
[ENTROPIES...: 4.7,5.3,4.8,6.0,5.0,7.1,7.7,7.6,7.6,7.7,7.7,7.7,7.5,7.5,5.1,5.0,5.1,5.1,5.1,5.1,5.1,5.1,5.2,6.0,7.1,7.8,5.1,7.8,7.8,7.8,7.8,5.0]
update: [....27] [ip4][..udp] [..172.16.42.216][54886] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable]
update: [....14] [ip4][.icmp] [....172.16.42.1] -> [..172.16.42.216] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....21] [ip4][..udp] [..172.16.42.216][41030] -> [....172.16.42.1][...53] [DNS.AmazonAlexa][Unknown][Network][Acceptable]
update: [....40] [ip4][..udp] [..172.16.42.216][43350] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable]
update: [.....1] [ip6][icmp6] [.....................................::] -> [......................ff02::1:ffd3:fbc2] [ICMPV6][Unknown][Network][Acceptable]
@@ -673,6 +703,7 @@
RISK: Weak TLS Cipher
end: [....22] [ip4][..tcp] [..172.16.42.216][49572] -> [..52.94.232.134][...80] [HTTP.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
idle: [....14] [ip4][.icmp] [....172.16.42.1] -> [..172.16.42.216] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....23] [ip6][icmp6] [..............fe80::7af8:82ff:fed3:fbc2] -> [...............................ff02::16] [ICMPV6][Unknown][Network][Acceptable]
idle: [.....5] [ip6][icmp6] [..............fe80::7af8:82ff:fed3:fbc2] -> [................................ff02::2] [ICMPV6][Unknown][Network][Acceptable]
end: [....25] [ip4][..tcp] [..172.16.42.216][38363] -> [..34.199.52.240][..443]
@@ -680,6 +711,7 @@
update: [...108] [ip4][..udp] [..172.16.42.216][20922] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable]
new: [...135] [ip4][..udp] [..172.16.42.216][64073] -> [....172.16.42.1][...53]
detected: [...135] [ip4][..udp] [..172.16.42.216][64073] -> [....172.16.42.1][...53] [DNS.AmazonAlexa][Unknown][Network][Acceptable][alexa.amazon.com]
+ RISK: Unidirectional Traffic
detection-update: [...135] [ip4][..udp] [..172.16.42.216][64073] -> [....172.16.42.1][...53] [DNS.AmazonAlexa][Unknown][Network][Acceptable][alexa.amazon.com]
new: [...136] [ip4][..tcp] [..172.16.42.216][39750] -> [..52.94.232.134][..443]
detected: [...136] [ip4][..tcp] [..172.16.42.216][39750] -> [..52.94.232.134][..443] [TLS][AmazonAWS][Web][Safe][]
@@ -691,6 +723,7 @@
detection-update: [...137] [ip4][..tcp] [..172.16.42.216][45752] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
end: [....45] [ip4][..tcp] [..172.16.42.216][49589] -> [..52.94.232.134][...80] [HTTP.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
+ RISK: Error Code
end: [....28] [ip4][..tcp] [..172.16.42.216][45661] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
RISK: Weak TLS Cipher
end: [....29] [ip4][..tcp] [..172.16.42.216][45662] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
@@ -726,12 +759,14 @@
end: [....51] [ip4][..tcp] [..172.16.42.216][34033] -> [..54.239.24.186][..443] [TLS.AmazonAWS][AmazonAWS][Cloud][Acceptable]
end: [....52] [ip4][..tcp] [..172.16.42.216][34034] -> [..54.239.24.186][..443] [TLS.AmazonAWS][AmazonAWS][Cloud][Acceptable]
guessed: [....32] [ip4][..tcp] [..172.16.42.216][38391] -> [...192.168.11.1][.8080] [HTTP_Proxy][Unknown][Web][Acceptable][]
+ RISK: TCP Connection Issues
end: [....32] [ip4][..tcp] [..172.16.42.216][38391] -> [...192.168.11.1][.8080]
end: [....26] [ip4][..tcp] [..172.16.42.216][38364] -> [..34.199.52.240][..443] [TLS.AmazonAWS][AmazonAWS][Cloud][Acceptable]
update: [.....3] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable]
update: [.....9] [ip4][..udp] [..172.16.42.216][53188] -> [....172.16.42.1][...53] [DNS.GoogleServices][Unknown][Network][Acceptable]
update: [...114] [ip4][..udp] [..172.16.42.216][28614] -> [....172.16.42.1][...53] [DNS.AmazonAWS][Unknown][Network][Acceptable]
update: [.....4] [ip4][..udp] [....172.16.42.1][...67] -> [..172.16.42.216][...68] [DHCP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....12] [ip4][..udp] [..172.16.42.216][10462] -> [....172.16.42.1][...53] [DNS.Google][Unknown][Network][Acceptable]
update: [.....7] [ip4][..udp] [..172.16.42.216][55619] -> [....172.16.42.1][...53] [DNS.Google][Unknown][Network][Acceptable]
update: [....69] [ip4][..udp] [..172.16.42.216][25081] -> [....172.16.42.1][...53] [DNS.AmazonAlexa][Unknown][Network][Acceptable]
@@ -741,6 +776,7 @@
update: [....62] [ip4][..udp] [..172.16.42.216][44475] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable]
new: [...138] [ip4][..udp] [..172.16.42.216][.4312] -> [....172.16.42.1][...53]
detected: [...138] [ip4][..udp] [..172.16.42.216][.4312] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][pitangui.amazon.com]
+ RISK: Unidirectional Traffic
detection-update: [...138] [ip4][..udp] [..172.16.42.216][.4312] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][pitangui.amazon.com]
new: [...139] [ip4][..tcp] [..172.16.42.216][50796] -> [..54.239.28.178][..443]
new: [...140] [ip4][..tcp] [..172.16.42.216][50797] -> [..54.239.28.178][..443]
@@ -767,6 +803,7 @@
RISK: Weak TLS Cipher
new: [...144] [ip4][..udp] [..172.16.42.216][.8669] -> [....172.16.42.1][...53]
detected: [...144] [ip4][..udp] [..172.16.42.216][.8669] -> [....172.16.42.1][...53] [DNS.AmazonAWS][Unknown][Network][Acceptable][mobileanalytics.us-east-1.amazonaws.com]
+ RISK: Unidirectional Traffic
detection-update: [...144] [ip4][..udp] [..172.16.42.216][.8669] -> [....172.16.42.1][...53] [DNS.AmazonAWS][Unknown][Network][Acceptable][mobileanalytics.us-east-1.amazonaws.com]
new: [...145] [ip4][..tcp] [..172.16.42.216][44912] -> [...54.239.23.94][..443]
detected: [...145] [ip4][..tcp] [..172.16.42.216][44912] -> [...54.239.23.94][..443] [TLS.AmazonAWS][AmazonAWS][Cloud][Acceptable][mobileanalytics.us-east-1.amazonaws.com]
@@ -774,6 +811,7 @@
detection-update: [...145] [ip4][..tcp] [..172.16.42.216][44912] -> [...54.239.23.94][..443] [TLS.AmazonAWS][AmazonAWS][Cloud][Acceptable][mobileanalytics.us-east-1.amazonaws.com]
new: [...146] [ip4][..udp] [..172.16.42.216][59908] -> [....172.16.42.1][...53]
detected: [...146] [ip4][..udp] [..172.16.42.216][59908] -> [....172.16.42.1][...53] [DNS.AmazonAlexa][Unknown][Network][Acceptable][alexa.amazon.com]
+ RISK: Unidirectional Traffic
detection-update: [...146] [ip4][..udp] [..172.16.42.216][59908] -> [....172.16.42.1][...53] [DNS.AmazonAlexa][Unknown][Network][Acceptable][alexa.amazon.com]
new: [...147] [ip4][..tcp] [..172.16.42.216][38757] -> [..54.239.28.178][..443]
analyse: [...142] [ip4][..tcp] [..172.16.42.216][50799] -> [..54.239.28.178][..443]
@@ -794,10 +832,12 @@
RISK: Obsolete TLS (v1.1 or older), Weak TLS Cipher
new: [...148] [ip4][..udp] [..172.16.42.216][14934] -> [....172.16.42.1][...53]
detected: [...148] [ip4][..udp] [..172.16.42.216][14934] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][www.amazon.com]
+ RISK: Unidirectional Traffic
detection-update: [...148] [ip4][..udp] [..172.16.42.216][14934] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][www.amazon.com]
new: [...149] [ip4][..tcp] [..172.16.42.216][41828] -> [..52.85.209.143][..443]
new: [...150] [ip4][..udp] [..172.16.42.216][40425] -> [....172.16.42.1][...53]
detected: [...150] [ip4][..udp] [..172.16.42.216][40425] -> [....172.16.42.1][...53] [DNS.PlayStore][Unknown][Network][Safe][android.clients.google.com]
+ RISK: Unidirectional Traffic
detected: [...149] [ip4][..tcp] [..172.16.42.216][41828] -> [..52.85.209.143][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][www.amazon.com]
detection-update: [...149] [ip4][..tcp] [..172.16.42.216][41828] -> [..52.85.209.143][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][www.amazon.com]
detection-update: [...149] [ip4][..tcp] [..172.16.42.216][41828] -> [..52.85.209.143][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][www.amazon.com]
@@ -822,6 +862,7 @@
detection-update: [...149] [ip4][..tcp] [..172.16.42.216][41828] -> [..52.85.209.143][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][www.amazon.com]
new: [...152] [ip4][..udp] [..172.16.42.216][.4612] -> [....172.16.42.1][...53]
detected: [...152] [ip4][..udp] [..172.16.42.216][.4612] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][images-na.ssl-images-amazon.com]
+ RISK: Unidirectional Traffic
detection-update: [...152] [ip4][..udp] [..172.16.42.216][.4612] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][images-na.ssl-images-amazon.com]
new: [...153] [ip4][..tcp] [..172.16.42.216][41912] -> [...52.84.62.115][..443]
new: [...154] [ip4][..tcp] [..172.16.42.216][41913] -> [...52.84.62.115][..443]
@@ -884,6 +925,7 @@
[ENTROPIES...: 4.7,5.2,5.1,5.4,5.2,7.0,7.3,7.7,5.0,5.1,5.1,6.6,6.1,7.7,7.7,6.1,5.1,5.2,7.8,7.4,7.1,7.7,7.8,7.5,7.9,6.8,7.6,7.9,7.9,7.9,7.9,7.9]
new: [...158] [ip4][..udp] [..172.16.42.216][.2707] -> [....172.16.42.1][...53]
detected: [...158] [ip4][..udp] [..172.16.42.216][.2707] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable][fls-na.amazon.com]
+ RISK: Unidirectional Traffic
analyse: [...155] [ip4][..tcp] [..172.16.42.216][41914] -> [...52.84.62.115][..443]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.264| 0.057| 0.086| 7393.244| 3.600]
@@ -943,6 +985,7 @@
end: [....90] [ip4][..tcp] [..172.16.42.216][49627] -> [..52.94.232.134][...80]
end: [...145] [ip4][..tcp] [..172.16.42.216][44912] -> [...54.239.23.94][..443] [TLS.AmazonAWS][AmazonAWS][Cloud][Acceptable]
end: [....93] [ip4][..tcp] [..172.16.42.216][49630] -> [..52.94.232.134][...80] [HTTP.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
+ RISK: Error Code
end: [...104] [ip4][..tcp] [..172.16.42.216][40853] -> [..54.239.29.253][..443]
end: [...105] [ip4][..tcp] [..172.16.42.216][40854] -> [..54.239.29.253][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
RISK: Weak TLS Cipher
@@ -965,6 +1008,7 @@
end: [....73] [ip4][..tcp] [..172.16.42.216][59698] -> [..52.94.232.134][..443]
idle: [....21] [ip4][..udp] [..172.16.42.216][41030] -> [....172.16.42.1][...53] [DNS.AmazonAlexa][Unknown][Network][Acceptable]
idle: [.....4] [ip4][..udp] [....172.16.42.1][...67] -> [..172.16.42.216][...68] [DHCP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...103] [ip4][..udp] [..172.16.42.216][14476] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable]
idle: [...153] [ip4][..tcp] [..172.16.42.216][41912] -> [...52.84.62.115][..443]
idle: [...154] [ip4][..tcp] [..172.16.42.216][41913] -> [...52.84.62.115][..443]
@@ -1046,11 +1090,14 @@
RISK: TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn
idle: [.....8] [ip4][..tcp] [..172.16.42.216][60246] -> [..172.217.9.142][...80] [HTTP.Google][Google][ConnCheck][Acceptable]
guessed: [....31] [ip4][..tcp] [..172.16.42.216][40200] -> [.10.201.126.241][.8080] [HTTP_Proxy][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic, TCP Connection Issues
end: [....31] [ip4][..tcp] [..172.16.42.216][40200] -> [.10.201.126.241][.8080]
guessed: [....33] [ip4][..tcp] [..172.16.42.216][40202] -> [.10.201.126.241][.8080] [HTTP_Proxy][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic, TCP Connection Issues
end: [....33] [ip4][..tcp] [..172.16.42.216][40202] -> [.10.201.126.241][.8080]
idle: [....19] [ip4][..udp] [..172.16.42.216][.7358] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable]
guessed: [....83] [ip4][..tcp] [..172.16.42.216][40242] -> [.10.201.126.241][.8080] [HTTP_Proxy][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [....83] [ip4][..tcp] [..172.16.42.216][40242] -> [.10.201.126.241][.8080]
end: [....78] [ip4][..tcp] [..172.16.42.216][34053] -> [..54.239.24.186][..443] [TLS.AmazonAWS][AmazonAWS][Cloud][Acceptable]
guessed: [....79] [ip4][..tcp] [..172.16.42.216][34054] -> [..54.239.24.186][..443] [TLS][AmazonAWS][Web][Safe]
@@ -1065,6 +1112,7 @@
idle: [....10] [ip4][..udp] [..172.16.42.216][52603] -> [....172.16.42.1][...53] [DNS.Google][Unknown][Network][Acceptable]
idle: [....64] [ip4][..udp] [..172.16.42.216][60804] -> [....172.16.42.1][...53] [DNS.Amazon][Unknown][Network][Acceptable]
guessed: [....85] [ip4][..tcp] [..172.16.42.216][38434] -> [...192.168.11.1][.8080] [HTTP_Proxy][Unknown][Web][Acceptable][]
+ RISK: TCP Connection Issues
end: [....85] [ip4][..tcp] [..172.16.42.216][38434] -> [...192.168.11.1][.8080]
idle: [....11] [ip4][..tcp] [..172.16.42.216][42878] -> [173.194.223.188][.5228] [TLS.GoogleServices][Google][Web][Acceptable]
RISK: Known Proto on Non Std Port, TLS (probably) Not Carrying HTTPS
diff --git a/test/results/flow-info/alicloud.pcap.out b/test/results/flow-info/default/alicloud.pcap.out
index d819fe99d..d819fe99d 100644
--- a/test/results/flow-info/alicloud.pcap.out
+++ b/test/results/flow-info/default/alicloud.pcap.out
diff --git a/test/results/flow-info/among_us.pcap.out b/test/results/flow-info/default/among_us.pcap.out
index c7fde65a8..cf0a1a5d6 100644
--- a/test/results/flow-info/among_us.pcap.out
+++ b/test/results/flow-info/default/among_us.pcap.out
@@ -3,5 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [.......10.0.0.1][64260] -> [172.105.251.170][22023]
detected: [.....1] [ip4][..udp] [.......10.0.0.1][64260] -> [172.105.251.170][22023] [AmongUs][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [.......10.0.0.1][64260] -> [172.105.251.170][22023] [AmongUs][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/amqp.pcap.out b/test/results/flow-info/default/amqp.pcap.out
index 197291127..5f03e65ce 100644
--- a/test/results/flow-info/amqp.pcap.out
+++ b/test/results/flow-info/default/amqp.pcap.out
@@ -3,9 +3,11 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [......127.0.0.1][44205] -> [......127.0.1.1][.5672] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [......127.0.0.1][44205] -> [......127.0.1.1][.5672] [AMQP][Unknown][RPC][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..tcp] [......127.0.1.1][.5672] -> [......127.0.0.1][44204] [MIDSTREAM]
new: [.....3] [ip4][..tcp] [......127.0.0.1][44206] -> [......127.0.1.1][.5672] [MIDSTREAM]
detected: [.....3] [ip4][..tcp] [......127.0.0.1][44206] -> [......127.0.1.1][.5672] [AMQP][Unknown][RPC][Acceptable]
+ RISK: Unidirectional Traffic
detected: [.....2] [ip4][..tcp] [......127.0.1.1][.5672] -> [......127.0.0.1][44204] [AMQP][Unknown][RPC][Acceptable]
analyse: [.....1] [ip4][..tcp] [......127.0.0.1][44205] -> [......127.0.1.1][.5672] [AMQP][Unknown][RPC][Acceptable]
min| max| avg| stddev| variance| entropy
@@ -19,5 +21,7 @@
[ENTROPIES...: 4.9,4.6,5.1,4.6,5.4,4.6,4.9,4.6,5.2,4.6,5.4,4.6,4.9,4.6,5.1,4.5,5.4,4.6,4.9,4.6,5.1,4.6,5.5,4.5,4.8,4.5,5.1,4.6,5.5,4.6,4.9,4.6]
idle: [.....2] [ip4][..tcp] [......127.0.1.1][.5672] -> [......127.0.0.1][44204] [AMQP][Unknown][RPC][Acceptable]
idle: [.....1] [ip4][..tcp] [......127.0.0.1][44205] -> [......127.0.1.1][.5672] [AMQP][Unknown][RPC][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..tcp] [......127.0.0.1][44206] -> [......127.0.1.1][.5672] [AMQP][Unknown][RPC][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/android.pcap.out b/test/results/flow-info/default/android.pcap.out
index b969a28b0..feaed873b 100644
--- a/test/results/flow-info/android.pcap.out
+++ b/test/results/flow-info/default/android.pcap.out
@@ -3,14 +3,18 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [...95.101.24.53][..443] -> [...192.168.2.17][50677] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [...95.101.24.53][..443] -> [...192.168.2.17][50677] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..tcp] [..17.248.176.75][..443] -> [...192.168.2.17][50584] [MIDSTREAM]
detected: [.....2] [ip4][..tcp] [..17.248.176.75][..443] -> [...192.168.2.17][50584] [TLS][Apple][Web][Safe]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..tcp] [..17.248.176.75][..443] -> [...192.168.2.17][50580] [MIDSTREAM]
detected: [.....3] [ip4][..tcp] [..17.248.176.75][..443] -> [...192.168.2.17][50580] [TLS][Apple][Web][Safe]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67]
detected: [.....4] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable][lucas-imac]
new: [.....5] [ip4][..tcp] [..17.248.185.10][..443] -> [...192.168.2.17][50702] [MIDSTREAM]
detected: [.....5] [ip4][..tcp] [..17.248.185.10][..443] -> [...192.168.2.17][50702] [TLS][Apple][Web][Safe]
+ RISK: Unidirectional Traffic
new: [.....6] [ip4][..udp] [....192.168.2.1][17500] -> [..192.168.2.255][17500]
detected: [.....6] [ip4][..udp] [....192.168.2.1][17500] -> [..192.168.2.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
new: [.....7] [ip4][..udp] [....192.168.2.1][57621] -> [..192.168.2.255][57621]
@@ -32,6 +36,7 @@
detected: [....13] [ip6][icmp6] [.....................................::] -> [...............................ff02::16] [ICMPV6][Unknown][Network][Acceptable]
new: [....14] [ip4][..udp] [....192.168.2.1][...67] -> [...192.168.2.16][...68]
detected: [....14] [ip4][..udp] [....192.168.2.1][...67] -> [...192.168.2.16][...68] [DHCP][Unknown][Network][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....15] [ip6][..udp] [..............fe80::4e6a:f6ff:fe9f:f627][..546] -> [..............................ff02::1:2][..547]
detected: [....15] [ip6][..udp] [..............fe80::4e6a:f6ff:fe9f:f627][..546] -> [..............................ff02::1:2][..547] [DHCPV6][Unknown][Network][Acceptable]
new: [....16] [ip6][icmp6] [..............fe80::4e6a:f6ff:fe9f:f627] -> [...............................ff02::16]
@@ -40,20 +45,25 @@
detected: [....17] [ip6][icmp6] [..............fe80::4e6a:f6ff:fe9f:f627] -> [................................ff02::2] [ICMPV6][Unknown][Network][Acceptable]
new: [....18] [ip4][..udp] [...192.168.2.16][52953] -> [....192.168.2.1][...53]
detected: [....18] [ip4][..udp] [...192.168.2.16][52953] -> [....192.168.2.1][...53] [DNS.Apple][Unknown][Network][Safe][captive.apple.com]
+ RISK: Unidirectional Traffic
detection-update: [....18] [ip4][..udp] [...192.168.2.16][52953] -> [....192.168.2.1][...53] [DNS.Apple][Unknown][Network][Safe][captive.apple.com]
new: [....19] [ip4][..tcp] [...192.168.2.16][58338] -> [..17.253.53.201][...80]
detected: [....19] [ip4][..tcp] [...192.168.2.16][58338] -> [..17.253.53.201][...80] [HTTP.Apple][Apple][ConnCheck][Safe][captive.apple.com]
new: [....20] [ip4][..udp] [...192.168.2.16][35825] -> [....192.168.2.1][...53]
detected: [....20] [ip4][..udp] [...192.168.2.16][35825] -> [....192.168.2.1][...53] [DNS][Unknown][Network][Acceptable][time.android.com]
+ RISK: Unidirectional Traffic
detection-update: [....20] [ip4][..udp] [...192.168.2.16][35825] -> [....192.168.2.1][...53] [DNS][Unknown][Network][Acceptable][time.android.com]
new: [....21] [ip4][..udp] [...192.168.2.16][45863] -> [...216.239.35.8][..123]
detected: [....21] [ip4][..udp] [...192.168.2.16][45863] -> [...216.239.35.8][..123] [NTP][Google][System][Acceptable]
+ RISK: Unidirectional Traffic
new: [....22] [ip4][..udp] [...192.168.2.16][34540] -> [....192.168.2.1][...53]
detected: [....22] [ip4][..udp] [...192.168.2.16][34540] -> [....192.168.2.1][...53] [DNS.Google][Unknown][Network][Acceptable][clients1.google.com]
+ RISK: Unidirectional Traffic
detection-update: [....22] [ip4][..udp] [...192.168.2.16][34540] -> [....192.168.2.1][...53] [DNS.Google][Unknown][Network][Acceptable][clients1.google.com]
new: [....23] [ip4][..tcp] [...192.168.2.16][32974] -> [.216.239.38.120][..443]
new: [....24] [ip4][..udp] [...192.168.2.16][54837] -> [....192.168.2.1][...53]
detected: [....24] [ip4][..udp] [...192.168.2.16][54837] -> [....192.168.2.1][...53] [DNS.GoogleServices][Unknown][Network][Acceptable][play.googleapis.com]
+ RISK: Unidirectional Traffic
detected: [....23] [ip4][..tcp] [...192.168.2.16][32974] -> [.216.239.38.120][..443] [TLS.Google][Google][Web][Acceptable][clients1.google.com]
RISK: TLS (probably) Not Carrying HTTPS
detection-update: [....24] [ip4][..udp] [...192.168.2.16][54837] -> [....192.168.2.1][...53] [DNS.GoogleServices][Unknown][Network][Acceptable][play.googleapis.com]
@@ -65,6 +75,7 @@
detected: [....25] [ip4][..tcp] [...192.168.2.16][52486] -> [..172.217.20.74][..443] [TLS.GoogleServices][Google][Web][Acceptable][play.googleapis.com]
new: [....26] [ip4][..udp] [...192.168.2.16][47081] -> [....192.168.2.1][...53]
detected: [....26] [ip4][..udp] [...192.168.2.16][47081] -> [....192.168.2.1][...53] [DNS.Google][Unknown][Network][Acceptable][connectivitycheck.gstatic.com]
+ RISK: Unidirectional Traffic
detection-update: [....25] [ip4][..tcp] [...192.168.2.16][52486] -> [..172.217.20.74][..443] [TLS.GoogleServices][Google][Web][Acceptable][play.googleapis.com]
detection-update: [....25] [ip4][..tcp] [...192.168.2.16][52486] -> [..172.217.20.74][..443] [TLS.GoogleServices][Google][Web][Acceptable][play.googleapis.com]
detection-update: [....26] [ip4][..udp] [...192.168.2.16][47081] -> [....192.168.2.1][...53] [DNS.Google][Unknown][Network][Acceptable][connectivitycheck.gstatic.com]
@@ -73,6 +84,7 @@
detected: [....28] [ip4][..tcp] [...192.168.2.16][36890] -> [...172.217.18.3][..443] [TLS.Google][Google][ConnCheck][Acceptable][connectivitycheck.gstatic.com]
new: [....29] [ip4][..udp] [...192.168.2.16][51430] -> [....192.168.2.1][...53]
detected: [....29] [ip4][..udp] [...192.168.2.16][51430] -> [....192.168.2.1][...53] [DNS.Google][Unknown][Network][Acceptable][app-measurement.com]
+ RISK: Unidirectional Traffic
detection-update: [....29] [ip4][..udp] [...192.168.2.16][51430] -> [....192.168.2.1][...53] [DNS.Google][Unknown][Network][Acceptable][app-measurement.com]
detection-update: [....28] [ip4][..tcp] [...192.168.2.16][36890] -> [...172.217.18.3][..443] [TLS.Google][Google][ConnCheck][Acceptable][connectivitycheck.gstatic.com]
detection-update: [....28] [ip4][..tcp] [...192.168.2.16][36890] -> [...172.217.18.3][..443] [TLS.Google][Google][ConnCheck][Acceptable][connectivitycheck.gstatic.com]
@@ -80,6 +92,7 @@
detection-update: [....27] [ip4][..tcp] [...192.168.2.16][36888] -> [...172.217.18.3][..443] [TLS.Google][Google][ConnCheck][Acceptable][connectivitycheck.gstatic.com]
new: [....30] [ip4][..udp] [...192.168.2.16][39008] -> [....192.168.2.1][...53]
detected: [....30] [ip4][..udp] [...192.168.2.16][39008] -> [....192.168.2.1][...53] [DNS.GoogleServices][Unknown][Network][Acceptable][mtalk.google.com]
+ RISK: Unidirectional Traffic
detection-update: [....30] [ip4][..udp] [...192.168.2.16][39008] -> [....192.168.2.1][...53] [DNS.GoogleServices][Unknown][Network][Acceptable][mtalk.google.com]
new: [....31] [ip4][..tcp] [...192.168.2.16][50384] -> [172.217.168.206][..443]
detected: [....31] [ip4][..tcp] [...192.168.2.16][50384] -> [172.217.168.206][..443] [TLS.Google][Google][Web][Acceptable][app-measurement.com]
@@ -88,12 +101,15 @@
detection-update: [....31] [ip4][..tcp] [...192.168.2.16][50384] -> [172.217.168.206][..443] [TLS.Google][Google][Web][Acceptable][app-measurement.com]
new: [....33] [ip4][..udp] [...192.168.2.16][36613] -> [....192.168.2.1][...53]
detected: [....33] [ip4][..udp] [...192.168.2.16][36613] -> [....192.168.2.1][...53] [DNS.PlayStore][Unknown][Network][Safe][android.clients.google.com]
+ RISK: Unidirectional Traffic
detection-update: [....33] [ip4][..udp] [...192.168.2.16][36613] -> [....192.168.2.1][...53] [DNS.PlayStore][Unknown][Network][Safe][android.clients.google.com]
new: [....34] [ip4][..tcp] [...192.168.2.16][32986] -> [.216.239.38.120][..443]
new: [....35] [ip4][..udp] [...192.168.2.16][32412] -> [....192.168.2.1][...53]
detected: [....35] [ip4][..udp] [...192.168.2.16][32412] -> [....192.168.2.1][...53] [DNS.DataSaver][Unknown][Network][Fun][check.googlezip.net]
+ RISK: Unidirectional Traffic
new: [....36] [ip4][..udp] [...192.168.2.16][.7660] -> [....192.168.2.1][...53]
detected: [....36] [ip4][..udp] [...192.168.2.16][.7660] -> [....192.168.2.1][...53] [DNS.DataSaver][Unknown][Network][Fun][datasaver.googleapis.com]
+ RISK: Unidirectional Traffic
new: [....37] [ip4][..tcp] [...192.168.2.16][32988] -> [.216.239.38.120][..443]
new: [....38] [ip4][..tcp] [...192.168.2.16][32990] -> [.216.239.38.120][..443]
detection-update: [....35] [ip4][..udp] [...192.168.2.16][32412] -> [....192.168.2.1][...53] [DNS.DataSaver][Unknown][Network][Fun][check.googlezip.net]
@@ -106,6 +122,7 @@
RISK: TLS (probably) Not Carrying HTTPS
new: [....41] [ip4][..udp] [...192.168.2.16][40580] -> [....192.168.2.1][...53]
detected: [....41] [ip4][..udp] [...192.168.2.16][40580] -> [....192.168.2.1][...53] [DNS.Google][Unknown][Network][Acceptable][www.google.com]
+ RISK: Unidirectional Traffic
detection-update: [....41] [ip4][..udp] [...192.168.2.16][40580] -> [....192.168.2.1][...53] [DNS.Google][Unknown][Network][Acceptable][www.google.com]
detected: [....39] [ip4][..tcp] [...192.168.2.16][36834] -> [.173.194.79.114][...80] [HTTP.DataSaver][Google][Web][Fun][check.googlezip.net]
detection-update: [....38] [ip4][..tcp] [...192.168.2.16][32990] -> [.216.239.38.120][..443] [TLS.PlayStore][Google][SoftwareUpdate][Safe][android.clients.google.com]
@@ -124,19 +141,23 @@
RISK: TLS (probably) Not Carrying HTTPS
new: [....43] [ip4][..udp] [...192.168.2.16][46359] -> [....192.168.2.1][...53]
detected: [....43] [ip4][..udp] [...192.168.2.16][46359] -> [....192.168.2.1][...53] [DNS.Google][Unknown][Network][Acceptable][accounts.google.com]
+ RISK: Unidirectional Traffic
detection-update: [....43] [ip4][..udp] [...192.168.2.16][46359] -> [....192.168.2.1][...53] [DNS.Google][Unknown][Network][Acceptable][accounts.google.com]
new: [....44] [ip4][..tcp] [...192.168.2.16][32998] -> [.216.239.38.120][..443]
detected: [....44] [ip4][..tcp] [...192.168.2.16][32998] -> [.216.239.38.120][..443] [TLS.Google][Google][Web][Acceptable][accounts.google.com]
new: [....45] [ip4][..udp] [...192.168.2.16][35689] -> [....192.168.2.1][...53]
detected: [....45] [ip4][..udp] [...192.168.2.16][35689] -> [....192.168.2.1][...53] [DNS.GoogleServices][Unknown][Network][Acceptable][semanticlocation-pa.googleapis.com]
+ RISK: Unidirectional Traffic
detection-update: [....44] [ip4][..tcp] [...192.168.2.16][32998] -> [.216.239.38.120][..443] [TLS.Google][Google][Web][Acceptable][accounts.google.com]
detection-update: [....45] [ip4][..udp] [...192.168.2.16][35689] -> [....192.168.2.1][...53] [DNS.GoogleServices][Unknown][Network][Acceptable][semanticlocation-pa.googleapis.com]
new: [....46] [ip4][..udp] [...192.168.2.16][22850] -> [....192.168.2.1][...53]
detected: [....46] [ip4][..udp] [...192.168.2.16][22850] -> [....192.168.2.1][...53] [DNS.DataSaver][Unknown][Network][Fun][proxy.googlezip.net]
+ RISK: Unidirectional Traffic
detection-update: [....46] [ip4][..udp] [...192.168.2.16][22850] -> [....192.168.2.1][...53] [DNS.DataSaver][Unknown][Network][Fun][proxy.googlezip.net]
new: [....47] [ip4][..tcp] [...192.168.2.16][43634] -> [..172.217.20.76][..443]
new: [....48] [ip4][..udp] [...192.168.2.16][58892] -> [....192.168.2.1][...53]
detected: [....48] [ip4][..udp] [...192.168.2.16][58892] -> [....192.168.2.1][...53] [DNS.Google][Unknown][Network][Acceptable][accounts.google.com]
+ RISK: Unidirectional Traffic
detection-update: [....48] [ip4][..udp] [...192.168.2.16][58892] -> [....192.168.2.1][...53] [DNS.Google][Unknown][Network][Acceptable][accounts.google.com]
detected: [....47] [ip4][..tcp] [...192.168.2.16][43634] -> [..172.217.20.76][..443] [TLS.DataSaver][Google][Web][Fun][proxy.googlezip.net]
new: [....49] [ip4][..tcp] [...192.168.2.16][33002] -> [.216.239.38.120][..443]
@@ -144,6 +165,7 @@
detected: [....49] [ip4][..tcp] [...192.168.2.16][33002] -> [.216.239.38.120][..443] [TLS.Google][Google][Web][Acceptable][accounts.google.com]
new: [....50] [ip4][..udp] [...192.168.2.16][33240] -> [....192.168.2.1][...53]
detected: [....50] [ip4][..udp] [...192.168.2.16][33240] -> [....192.168.2.1][...53] [DNS.DataSaver][Unknown][Network][Fun][check.googlezip.net]
+ RISK: Unidirectional Traffic
detection-update: [....50] [ip4][..udp] [...192.168.2.16][33240] -> [....192.168.2.1][...53] [DNS.DataSaver][Unknown][Network][Fun][check.googlezip.net]
detection-update: [....49] [ip4][..tcp] [...192.168.2.16][33002] -> [.216.239.38.120][..443] [TLS.Google][Google][Web][Acceptable][accounts.google.com]
new: [....51] [ip4][..tcp] [...192.168.2.16][52514] -> [..172.217.20.74][..443]
@@ -151,14 +173,17 @@
new: [....53] [ip4][..tcp] [...192.168.2.16][36850] -> [.173.194.79.114][...80]
new: [....54] [ip4][..udp] [...192.168.2.16][18379] -> [....192.168.2.1][...53]
detected: [....54] [ip4][..udp] [...192.168.2.16][18379] -> [....192.168.2.1][...53] [DNS.DataSaver][Unknown][Network][Fun][datasaver.googleapis.com]
+ RISK: Unidirectional Traffic
detection-update: [....54] [ip4][..udp] [...192.168.2.16][18379] -> [....192.168.2.1][...53] [DNS.DataSaver][Unknown][Network][Fun][datasaver.googleapis.com]
new: [....55] [ip4][..tcp] [...192.168.2.16][51944] -> [.172.217.21.202][..443]
detected: [....52] [ip4][..tcp] [...192.168.2.16][36848] -> [.173.194.79.114][...80] [HTTP.DataSaver][Google][Web][Fun][check.googlezip.net]
new: [....56] [ip4][..udp] [...192.168.2.16][10677] -> [....192.168.2.1][...53]
detected: [....56] [ip4][..udp] [...192.168.2.16][10677] -> [....192.168.2.1][...53] [DNS.DataSaver][Unknown][Network][Fun][proxy.googlezip.net]
+ RISK: Unidirectional Traffic
detection-update: [....56] [ip4][..udp] [...192.168.2.16][10677] -> [....192.168.2.1][...53] [DNS.DataSaver][Unknown][Network][Fun][proxy.googlezip.net]
new: [....57] [ip4][..udp] [...192.168.2.16][32832] -> [....192.168.2.1][...53]
detected: [....57] [ip4][..udp] [...192.168.2.16][32832] -> [....192.168.2.1][...53] [DNS.Google][Unknown][Network][Acceptable][www.google.com]
+ RISK: Unidirectional Traffic
detection-update: [....57] [ip4][..udp] [...192.168.2.16][32832] -> [....192.168.2.1][...53] [DNS.Google][Unknown][Network][Acceptable][www.google.com]
new: [....58] [ip4][..tcp] [...192.168.2.16][43646] -> [..172.217.20.76][..443]
new: [....59] [ip4][..tcp] [...192.168.2.16][33014] -> [.216.239.38.120][..443]
@@ -166,6 +191,7 @@
detected: [....59] [ip4][..tcp] [...192.168.2.16][33014] -> [.216.239.38.120][..443] [TLS.Google][Google][Web][Acceptable][www.google.com]
new: [....60] [ip4][..udp] [...192.168.2.16][39760] -> [....192.168.2.1][...53]
detected: [....60] [ip4][..udp] [...192.168.2.16][39760] -> [....192.168.2.1][...53] [DNS.GoogleServices][Unknown][Network][Acceptable][android.googleapis.com]
+ RISK: Unidirectional Traffic
detected: [....58] [ip4][..tcp] [...192.168.2.16][43646] -> [..172.217.20.76][..443] [TLS.DataSaver][Google][Web][Fun][proxy.googlezip.net]
analyse: [....42] [ip4][..tcp] [...192.168.2.16][32996] -> [.216.239.38.120][..443] [TLS.Google][Google][Web][Acceptable]
min| max| avg| stddev| variance| entropy
@@ -187,17 +213,21 @@
detected: [....51] [ip4][..tcp] [...192.168.2.16][52514] -> [..172.217.20.74][..443] [TLS.GoogleServices][Google][Web][Acceptable][semanticlocation-pa.googleapis.com]
new: [....62] [ip4][..udp] [...192.168.2.16][56312] -> [....192.168.2.1][...53]
detected: [....62] [ip4][..udp] [...192.168.2.16][56312] -> [....192.168.2.1][...53] [DNS.DataSaver][Unknown][Network][Fun][proxy.googlezip.net]
+ RISK: Unidirectional Traffic
detection-update: [....62] [ip4][..udp] [...192.168.2.16][56312] -> [....192.168.2.1][...53] [DNS.DataSaver][Unknown][Network][Fun][proxy.googlezip.net]
new: [....63] [ip4][..tcp] [...192.168.2.16][43652] -> [..172.217.20.76][..443]
detection-update: [....61] [ip4][..tcp] [...192.168.2.16][44374] -> [..172.217.22.10][..443] [TLS.GoogleServices][Google][Web][Acceptable][android.googleapis.com]
RISK: TLS (probably) Not Carrying HTTPS
end: [.....3] [ip4][..tcp] [..17.248.176.75][..443] -> [...192.168.2.17][50580] [TLS][Apple][Web][Safe]
+ RISK: Unidirectional Traffic
end: [.....2] [ip4][..tcp] [..17.248.176.75][..443] -> [...192.168.2.17][50584] [TLS][Apple][Web][Safe]
+ RISK: Unidirectional Traffic
idle: [....41] [ip4][..udp] [...192.168.2.16][40580] -> [....192.168.2.1][...53] [DNS.Google][Unknown][Network][Acceptable]
idle: [....35] [ip4][..udp] [...192.168.2.16][32412] -> [....192.168.2.1][...53] [DNS.DataSaver][Unknown][Network][Fun]
idle: [.....4] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable]
idle: [....18] [ip4][..udp] [...192.168.2.16][52953] -> [....192.168.2.1][...53] [DNS.Apple][Unknown][Network][Safe]
end: [.....5] [ip4][..tcp] [..17.248.185.10][..443] -> [...192.168.2.17][50702] [TLS][Apple][Web][Safe]
+ RISK: Unidirectional Traffic
idle: [....22] [ip4][..udp] [...192.168.2.16][34540] -> [....192.168.2.1][...53] [DNS.Google][Unknown][Network][Acceptable]
idle: [....33] [ip4][..udp] [...192.168.2.16][36613] -> [....192.168.2.1][...53] [DNS.PlayStore][Unknown][Network][Safe]
idle: [....31] [ip4][..tcp] [...192.168.2.16][50384] -> [172.217.168.206][..443]
@@ -211,6 +241,7 @@
idle: [....57] [ip4][..udp] [...192.168.2.16][32832] -> [....192.168.2.1][...53] [DNS.Google][Unknown][Network][Acceptable]
end: [....19] [ip4][..tcp] [...192.168.2.16][58338] -> [..17.253.53.201][...80] [HTTP.Apple][Apple][ConnCheck][Safe]
idle: [....14] [ip4][..udp] [....192.168.2.1][...67] -> [...192.168.2.16][...68] [DHCP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....30] [ip4][..udp] [...192.168.2.16][39008] -> [....192.168.2.1][...53] [DNS.GoogleServices][Unknown][Network][Acceptable]
idle: [.....6] [ip4][..udp] [....192.168.2.1][17500] -> [..192.168.2.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
idle: [....10] [ip4][..udp] [169.254.225.216][60538] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
@@ -238,18 +269,21 @@
idle: [....27] [ip4][..tcp] [...192.168.2.16][36888] -> [...172.217.18.3][..443] [TLS.Google][Google][ConnCheck][Acceptable]
idle: [....28] [ip4][..tcp] [...192.168.2.16][36890] -> [...172.217.18.3][..443]
idle: [....21] [ip4][..udp] [...192.168.2.16][45863] -> [...216.239.35.8][..123] [NTP][Google][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....60] [ip4][..udp] [...192.168.2.16][39760] -> [....192.168.2.1][...53] [DNS.GoogleServices][Unknown][Network][Acceptable]
idle: [....45] [ip4][..udp] [...192.168.2.16][35689] -> [....192.168.2.1][...53] [DNS.GoogleServices][Unknown][Network][Acceptable]
idle: [....20] [ip4][..udp] [...192.168.2.16][35825] -> [....192.168.2.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [....62] [ip4][..udp] [...192.168.2.16][56312] -> [....192.168.2.1][...53] [DNS.DataSaver][Unknown][Network][Fun]
idle: [.....1] [ip4][..tcp] [...95.101.24.53][..443] -> [...192.168.2.17][50677]
- not-detected: [....32] [ip4][..tcp] [...192.168.2.16][49510] -> [.216.239.38.120][.5228] [Unknown][Google][Unrated]
+ guessed: [....32] [ip4][..tcp] [...192.168.2.16][49510] -> [.216.239.38.120][.5228] [Google][Google][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....32] [ip4][..tcp] [...192.168.2.16][49510] -> [.216.239.38.120][.5228]
idle: [....17] [ip6][icmp6] [..............fe80::4e6a:f6ff:fe9f:f627] -> [................................ff02::2] [ICMPV6][Unknown][Network][Acceptable]
idle: [....16] [ip6][icmp6] [..............fe80::4e6a:f6ff:fe9f:f627] -> [...............................ff02::16] [ICMPV6][Unknown][Network][Acceptable]
end: [....47] [ip4][..tcp] [...192.168.2.16][43634] -> [..172.217.20.76][..443]
end: [....58] [ip4][..tcp] [...192.168.2.16][43646] -> [..172.217.20.76][..443]
guessed: [....63] [ip4][..tcp] [...192.168.2.16][43652] -> [..172.217.20.76][..443] [TLS][Google][Web][Safe]
+ RISK: Unidirectional Traffic
idle: [....63] [ip4][..tcp] [...192.168.2.16][43652] -> [..172.217.20.76][..443]
idle: [....43] [ip4][..udp] [...192.168.2.16][46359] -> [....192.168.2.1][...53] [DNS.Google][Unknown][Network][Acceptable]
idle: [....40] [ip4][..tcp] [...192.168.2.16][51928] -> [.172.217.21.202][..443] [TLS.DataSaver][Google][Web][Fun]
diff --git a/test/results/flow-info/anyconnect-vpn.pcap.out b/test/results/flow-info/default/anyconnect-vpn.pcap.out
index 04145b9ee..048596c86 100644
--- a/test/results/flow-info/anyconnect-vpn.pcap.out
+++ b/test/results/flow-info/default/anyconnect-vpn.pcap.out
@@ -5,7 +5,7 @@
new: [.....2] [ip4][..tcp] [.....10.0.0.227][56916] -> [.....10.0.0.151][.8009]
new: [.....3] [ip4][..tcp] [.....10.0.0.227][56320] -> [.....10.0.0.149][.8009] [MIDSTREAM]
detected: [.....3] [ip4][..tcp] [.....10.0.0.227][56320] -> [.....10.0.0.149][.8009] [TLS][Unknown][Web][Safe]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [.....4] [ip4][....2] [.......10.0.0.1] -> [......224.0.0.1]
detected: [.....4] [ip4][....2] [.......10.0.0.1] -> [......224.0.0.1] [IGMP][Unknown][Network][Acceptable]
new: [.....5] [ip6][icmp6] [..............fe80::2e7e:81ff:feb0:4aa1] -> [................................ff02::1]
@@ -18,12 +18,15 @@
detected: [.....8] [ip4][....2] [.....10.0.0.149] -> [239.255.255.250] [IGMP][Unknown][Network][Acceptable]
new: [.....9] [ip4][..udp] [.....10.0.0.227][52879] -> [....75.75.76.76][...53]
detected: [.....9] [ip4][..udp] [.....10.0.0.227][52879] -> [....75.75.76.76][...53] [DNS][Unknown][Network][Acceptable][vco.pandion.viasat.com]
+ RISK: Unidirectional Traffic
detection-update: [.....9] [ip4][..udp] [.....10.0.0.227][52879] -> [....75.75.76.76][...53] [DNS][Unknown][Network][Acceptable][vco.pandion.viasat.com]
new: [....10] [ip4][..udp] [.....10.0.0.227][61387] -> [....75.75.75.75][...53]
detected: [....10] [ip4][..udp] [.....10.0.0.227][61387] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable][vco.pandion.viasat.com]
+ RISK: Unidirectional Traffic
detection-update: [....10] [ip4][..udp] [.....10.0.0.227][61387] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable][vco.pandion.viasat.com]
new: [....11] [ip4][..udp] [.....10.0.0.227][62322] -> [....75.75.76.76][...53]
detected: [....11] [ip4][..udp] [.....10.0.0.227][62322] -> [....75.75.76.76][...53] [DNS][Unknown][Network][Acceptable][vco.pandion.viasat.com]
+ RISK: Unidirectional Traffic
detection-update: [....11] [ip4][..udp] [.....10.0.0.227][62322] -> [....75.75.76.76][...53] [DNS][Unknown][Network][Acceptable][vco.pandion.viasat.com]
new: [....12] [ip4][..tcp] [.....10.0.0.227][56918] -> [....8.37.102.91][..443]
detected: [....12] [ip4][..tcp] [.....10.0.0.227][56918] -> [....8.37.102.91][..443] [TLS][Unknown][Web][Safe][]
@@ -34,8 +37,10 @@
RISK: Weak TLS Cipher, Missing SNI TLS Extn
new: [....13] [ip4][..tcp] [.....10.0.0.227][56915] -> [..52.37.243.173][..443] [MIDSTREAM]
detected: [....13] [ip4][..tcp] [.....10.0.0.227][56915] -> [..52.37.243.173][..443] [TLS][AmazonAWS][Web][Safe]
+ RISK: Unidirectional Traffic
new: [....14] [ip4][..tcp] [.....10.0.0.227][56914] -> [..52.37.243.173][..443] [MIDSTREAM]
detected: [....14] [ip4][..tcp] [.....10.0.0.227][56914] -> [..52.37.243.173][..443] [TLS][AmazonAWS][Web][Safe]
+ RISK: Unidirectional Traffic
new: [....15] [ip4][..tcp] [.....10.0.0.227][56919] -> [....8.37.102.91][..443]
detected: [....15] [ip4][..tcp] [.....10.0.0.227][56919] -> [....8.37.102.91][..443] [TLS][Unknown][Web][Safe][]
RISK: Missing SNI TLS Extn
@@ -57,9 +62,12 @@
RISK: Weak TLS Cipher, Missing SNI TLS Extn
new: [....16] [ip4][..udp] [.....10.0.0.227][63107] -> [....75.75.76.76][...53]
detected: [....16] [ip4][..udp] [.....10.0.0.227][63107] -> [....75.75.76.76][...53] [DNS][Unknown][Network][Acceptable][local]
+ RISK: Unidirectional Traffic
detection-update: [....16] [ip4][..udp] [.....10.0.0.227][63107] -> [....75.75.76.76][...53] [DNS][Unknown][Network][Acceptable][local]
+ RISK: Error Code
new: [....17] [ip4][.icmp] [.....10.0.0.227] -> [....75.75.76.76]
detected: [....17] [ip4][.icmp] [.....10.0.0.227] -> [....75.75.76.76] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....18] [ip4][..udp] [.....10.0.0.213][.5353] -> [....224.0.0.251][.5353]
detected: [....18] [ip4][..udp] [.....10.0.0.213][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable][_companion-link._tcp.local]
new: [....19] [ip6][..udp] [...............fe80::408:3e45:3abc:1552][.5353] -> [...............................ff02::fb][.5353]
@@ -70,46 +78,63 @@
detected: [....21] [ip4][....2] [.....10.0.0.213] -> [....224.0.0.251] [IGMP][Unknown][Network][Acceptable]
new: [....22] [ip4][..udp] [.....10.0.0.227][.5353] -> [.....10.0.0.213][.5353]
detected: [....22] [ip4][..udp] [.....10.0.0.227][.5353] -> [.....10.0.0.213][.5353] [MDNS][Unknown][Network][Acceptable][_companion-link._tcp.local]
+ RISK: Unidirectional Traffic
new: [....23] [ip6][icmp6] [...............fe80::408:3e45:3abc:1552] -> [...............................ff02::16]
detected: [....23] [ip6][icmp6] [...............fe80::408:3e45:3abc:1552] -> [...............................ff02::16] [ICMPV6][Unknown][Network][Acceptable]
new: [....24] [ip4][..tcp] [.....10.0.0.227][56917] -> [...184.25.56.77][...80] [MIDSTREAM]
new: [....25] [ip4][..tcp] [.....10.0.0.227][56884] -> [...184.25.56.77][...80] [MIDSTREAM]
new: [....26] [ip4][..udp] [.....10.0.0.227][54851] -> [....75.75.76.76][...53]
detected: [....26] [ip4][..udp] [.....10.0.0.227][54851] -> [....75.75.76.76][...53] [DNS][Unknown][Network][Acceptable][print.viasat.com]
+ RISK: Unidirectional Traffic
detection-update: [....26] [ip4][..udp] [.....10.0.0.227][54851] -> [....75.75.76.76][...53] [DNS][Unknown][Network][Acceptable][print.viasat.com]
+ RISK: Error Code
new: [....27] [ip4][..udp] [.....10.0.0.227][58155] -> [....75.75.76.76][...53]
detected: [....27] [ip4][..udp] [.....10.0.0.227][58155] -> [....75.75.76.76][...53] [DNS.Slack][Unknown][Network][Acceptable][slack.com]
+ RISK: Unidirectional Traffic
detection-update: [....27] [ip4][..udp] [.....10.0.0.227][58155] -> [....75.75.76.76][...53] [DNS.Slack][Unknown][Network][Acceptable][slack.com]
new: [....28] [ip4][..tcp] [.....10.0.0.227][56920] -> [...99.86.34.156][..443]
detected: [....28] [ip4][..tcp] [.....10.0.0.227][56920] -> [...99.86.34.156][..443] [TLS.Slack][AmazonAWS][Collaborative][Acceptable][slack.com]
detection-update: [....28] [ip4][..tcp] [.....10.0.0.227][56920] -> [...99.86.34.156][..443] [TLS.Slack][AmazonAWS][Collaborative][Acceptable][slack.com]
new: [....29] [ip4][..tcp] [.....10.0.0.227][56910] -> [...35.201.124.9][..443] [MIDSTREAM]
detected: [....29] [ip4][..tcp] [.....10.0.0.227][56910] -> [...35.201.124.9][..443] [TLS][GoogleCloud][Web][Safe]
+ RISK: Unidirectional Traffic
new: [....30] [ip4][..tcp] [.....10.0.0.227][56921] -> [....8.37.96.194][.4287]
detected: [....30] [ip4][..tcp] [.....10.0.0.227][56921] -> [....8.37.96.194][.4287] [TLS][Unknown][Web][Safe][]
RISK: Known Proto on Non Std Port, TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn
detection-update: [....30] [ip4][..tcp] [.....10.0.0.227][56921] -> [....8.37.96.194][.4287] [TLS][Unknown][Web][Safe][]
- RISK: Known Proto on Non Std Port, Self-signed Cert, TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn
+ RISK: Known Proto on Non Std Port, Self-signed Cert, TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn, TLS Cert About To Expire
new: [....31] [ip4][..udp] [.....10.0.0.227][64972] -> [....75.75.75.75][...53]
detected: [....31] [ip4][..udp] [.....10.0.0.227][64972] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable][lb._dns-sd._udp.0.128.28.172.in-addr.arpa]
+ RISK: Unidirectional Traffic
new: [....32] [ip4][..udp] [.....10.0.0.227][61613] -> [....75.75.75.75][...53]
detected: [....32] [ip4][..udp] [.....10.0.0.227][61613] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable][lb._dns-sd._udp.0.0.0.10.in-addr.arpa]
+ RISK: Unidirectional Traffic
detection-update: [....31] [ip4][..udp] [.....10.0.0.227][64972] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable][lb._dns-sd._udp.0.128.28.172.in-addr.arpa]
+ RISK: Error Code
detection-update: [....32] [ip4][..udp] [.....10.0.0.227][61613] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable][lb._dns-sd._udp.0.0.0.10.in-addr.arpa]
+ RISK: Error Code
new: [....33] [ip4][..udp] [.....10.0.0.227][57261] -> [....75.75.75.75][...53]
detected: [....33] [ip4][..udp] [.....10.0.0.227][57261] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable][vcacrashplan01.hq.corp.viasat.com]
+ RISK: Unidirectional Traffic
new: [....34] [ip4][..udp] [.....10.0.0.227][52879] -> [....75.75.75.75][...53]
detected: [....34] [ip4][..udp] [.....10.0.0.227][52879] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable][vcacrashplan01.hq.corp.viasat.com]
+ RISK: Unidirectional Traffic
detection-update: [....33] [ip4][..udp] [.....10.0.0.227][57261] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable][vcacrashplan01.hq.corp.viasat.com]
+ RISK: Error Code
detection-update: [....34] [ip4][..udp] [.....10.0.0.227][52879] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable][vcacrashplan01.hq.corp.viasat.com]
+ RISK: Error Code
detection-update: [....18] [ip4][..udp] [.....10.0.0.213][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable][_raop._tcp.local]
detection-update: [....19] [ip6][..udp] [...............fe80::408:3e45:3abc:1552][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable][_raop._tcp.local]
new: [....35] [ip4][..udp] [.....10.0.0.227][59222] -> [....75.75.75.75][...53]
detected: [....35] [ip4][..udp] [.....10.0.0.227][59222] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable][lp-rkerur-osx.hsd1.ca.comcast.net]
+ RISK: Unidirectional Traffic
new: [....36] [ip4][..udp] [.....10.0.0.227][57017] -> [....75.75.75.75][...53]
detected: [....36] [ip4][..udp] [.....10.0.0.227][57017] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable][lp-rkerur-osx.hsd1.ca.comcast.net]
+ RISK: Unidirectional Traffic
detection-update: [....35] [ip4][..udp] [.....10.0.0.227][59222] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable][lp-rkerur-osx.hsd1.ca.comcast.net]
+ RISK: Error Code
detection-update: [....36] [ip4][..udp] [.....10.0.0.227][57017] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable][lp-rkerur-osx.hsd1.ca.comcast.net]
+ RISK: Error Code
analyse: [....30] [ip4][..tcp] [.....10.0.0.227][56921] -> [....8.37.96.194][.4287] [TLS][Unknown][Web][Safe]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.385| 0.079| 0.122| 14784.686| 3.700]
@@ -144,25 +169,33 @@
new: [....40] [ip4][..tcp] [.....10.0.0.227][56866] -> [.....10.0.0.151][.8060] [MIDSTREAM]
new: [....41] [ip4][..udp] [.....10.0.0.227][57253] -> [....75.75.75.75][...53]
detected: [....41] [ip4][..udp] [.....10.0.0.227][57253] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable][mozilla.org]
+ RISK: Unidirectional Traffic
new: [....42] [ip4][..udp] [.....10.0.0.227][62427] -> [....75.75.75.75][...53]
detected: [....42] [ip4][..udp] [.....10.0.0.227][62427] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable][detectportal.firefox.com]
+ RISK: Unidirectional Traffic
detected: [....25] [ip4][..tcp] [.....10.0.0.227][56884] -> [...184.25.56.77][...80] [HTTP][Unknown][ConnCheck][Acceptable][detectportal.firefox.com]
detected: [....24] [ip4][..tcp] [.....10.0.0.227][56917] -> [...184.25.56.77][...80] [HTTP][Unknown][ConnCheck][Acceptable][detectportal.firefox.com]
detection-update: [....41] [ip4][..udp] [.....10.0.0.227][57253] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable][mozilla.org]
detection-update: [....42] [ip4][..udp] [.....10.0.0.227][62427] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable][detectportal.firefox.com]
new: [....43] [ip4][..tcp] [.....10.0.0.227][56879] -> [..52.10.115.210][..443] [MIDSTREAM]
detected: [....43] [ip4][..tcp] [.....10.0.0.227][56879] -> [..52.10.115.210][..443] [TLS][AmazonAWS][Web][Safe]
+ RISK: Unidirectional Traffic
new: [....44] [ip4][..tcp] [.....10.0.0.227][56886] -> [..17.57.144.116][.5223] [MIDSTREAM]
new: [....45] [ip4][..udp] [.....10.0.0.227][60341] -> [....75.75.75.75][...53]
detected: [....45] [ip4][..udp] [.....10.0.0.227][60341] -> [....75.75.75.75][...53] [DNS.Apple][Unknown][Network][Safe][www.apple.com]
+ RISK: Unidirectional Traffic
new: [....46] [ip4][..udp] [.....10.0.0.227][51060] -> [....75.75.75.75][...53]
detected: [....46] [ip4][..udp] [.....10.0.0.227][51060] -> [....75.75.75.75][...53] [DNS.ApplePush][Unknown][Network][Acceptable][1-courier.push.apple.com]
+ RISK: Unidirectional Traffic
new: [....47] [ip4][..udp] [.....10.0.0.227][59582] -> [....75.75.75.75][...53]
detected: [....47] [ip4][..udp] [.....10.0.0.227][59582] -> [....75.75.75.75][...53] [DNS.ApplePush][Unknown][Network][Acceptable][1-courier.sandbox.push.apple.com]
+ RISK: Unidirectional Traffic
new: [....48] [ip4][..udp] [.....10.0.0.227][64193] -> [....75.75.75.75][...53]
detected: [....48] [ip4][..udp] [.....10.0.0.227][64193] -> [....75.75.75.75][...53] [DNS.ApplePush][Unknown][Network][Acceptable][24-courier.push.apple.com]
+ RISK: Unidirectional Traffic
new: [....49] [ip4][..udp] [.....10.0.0.227][51990] -> [....75.75.75.75][...53]
detected: [....49] [ip4][..udp] [.....10.0.0.227][51990] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable][mail.viasat.com]
+ RISK: Unidirectional Traffic
detection-update: [....45] [ip4][..udp] [.....10.0.0.227][60341] -> [....75.75.75.75][...53] [DNS.Apple][Unknown][Network][Safe][www.apple.com]
detection-update: [....47] [ip4][..udp] [.....10.0.0.227][59582] -> [....75.75.75.75][...53] [DNS.ApplePush][Unknown][Network][Acceptable][1-courier.sandbox.push.apple.com]
detection-update: [....46] [ip4][..udp] [.....10.0.0.227][51060] -> [....75.75.75.75][...53] [DNS.ApplePush][Unknown][Network][Acceptable][1-courier.push.apple.com]
@@ -171,57 +204,57 @@
detection-update: [....48] [ip4][..udp] [.....10.0.0.227][64193] -> [....75.75.75.75][...53] [DNS.ApplePush][Unknown][Network][Acceptable][24-courier.push.apple.com]
new: [....50] [ip4][..udp] [.....10.0.0.227][49781] -> [....75.75.75.75][...53]
detected: [....50] [ip4][..udp] [.....10.0.0.227][49781] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable][apple.com]
+ RISK: Unidirectional Traffic
new: [....51] [ip4][..tcp] [.....10.0.0.227][56871] -> [...8.37.103.196][..443] [MIDSTREAM]
detection-update: [....50] [ip4][..udp] [.....10.0.0.227][49781] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable][apple.com]
detection-update: [....49] [ip4][..udp] [.....10.0.0.227][51990] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable][mail.viasat.com]
new: [....52] [ip4][..udp] [.....10.0.0.227][58074] -> [....75.75.75.75][...53]
detected: [....52] [ip4][..udp] [.....10.0.0.227][58074] -> [....75.75.75.75][...53] [DNS.Outlook][Unknown][Network][Acceptable][www.outlook.com]
+ RISK: Unidirectional Traffic
detection-update: [....52] [ip4][..udp] [.....10.0.0.227][58074] -> [....75.75.75.75][...53] [DNS.Outlook][Unknown][Network][Acceptable][www.outlook.com]
new: [....53] [ip4][..tcp] [.....10.0.0.227][56874] -> [.74.125.197.188][..443] [MIDSTREAM]
new: [....54] [ip4][..udp] [.....10.0.0.227][61328] -> [239.255.255.250][.1900]
detected: [....54] [ip4][..udp] [.....10.0.0.227][61328] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
new: [....55] [ip4][..udp] [.....10.0.0.149][38616] -> [.....10.0.0.227][61328]
detected: [....55] [ip4][..udp] [.....10.0.0.149][38616] -> [.....10.0.0.227][61328] [SSDP][Unknown][System][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....56] [ip4][..udp] [.....10.0.0.151][.1900] -> [.....10.0.0.227][61328]
detected: [....56] [ip4][..udp] [.....10.0.0.151][.1900] -> [.....10.0.0.227][61328] [SSDP][Unknown][System][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....57] [ip4][..udp] [.....10.0.0.227][57547] -> [239.255.255.250][.1900]
detected: [....57] [ip4][..udp] [.....10.0.0.227][57547] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
new: [....58] [ip4][..udp] [.....10.0.0.227][54107] -> [....8.37.102.91][..443]
detected: [....58] [ip4][..udp] [.....10.0.0.227][54107] -> [....8.37.102.91][..443] [DTLS][Unknown][Web][Safe]
- RISK: Obsolete TLS (v1.1 or older)
+ RISK: Obsolete TLS (v1.1 or older), Unidirectional Traffic
new: [....59] [ip4][..udp] [.....10.0.0.149][50081] -> [.....10.0.0.227][57547]
detected: [....59] [ip4][..udp] [.....10.0.0.149][50081] -> [.....10.0.0.227][57547] [SSDP][Unknown][System][Acceptable][]
+ RISK: Unidirectional Traffic
detection-update: [....58] [ip4][..udp] [.....10.0.0.227][54107] -> [....8.37.102.91][..443] [DTLS][Unknown][Web][Safe]
RISK: Obsolete TLS (v1.1 or older)
- analyse: [....58] [ip4][..udp] [.....10.0.0.227][54107] -> [....8.37.102.91][..443] [DTLS][Unknown][Web][Safe]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.047| 0.016| 0.019| 352.973| 3.900]
- [PKTLEN......: 76.000| 393.000| 199.100| 70.700| 5001.800| 4.900]
- [BINS(c->s)..: 0,0,1,11,4,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 0,1,0,0,2,5,1,2,2,2,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [DIRECTIONS..: 0,1,0,1,0,0,0,0,1,1,1,1,1,0,0,1,1,1,1,0,0,1,0,1,0,1,0,1,0,0,0,1]
- [IATS(ms)....: 43.5,43.9,46.6,47.0,13.8,22.4,0.1,45.4,0.0,0.0,0.2,0.0,8.9,0.2,3.2,0.0,34.6,0.0,41.1,0.5,5.7,3.7,11.8,10.0,4.2,4.6,47.0,47.1,0.2,0.4,3.8]
- [PKTLENS.....: 127,76,147,216,121,153,153,153,249,201,201,201,185,137,153,345,297,169,217,153,153,297,153,265,185,393,185,265,153,169,169,329]
- [ENTROPIES...: 5.5,4.4,5.9,6.0,5.5,6.4,6.3,6.4,7.0,6.7,6.7,6.7,6.5,6.2,6.4,7.3,7.1,6.5,6.8,6.4,6.3,7.1,6.4,7.1,6.6,7.3,6.7,7.1,6.5,6.6,6.5,7.3]
new: [....60] [ip4][..udp] [.....10.0.0.227][52595] -> [.......10.0.0.1][..192]
new: [....61] [ip4][..udp] [.....10.0.0.151][.1900] -> [.....10.0.0.227][57547]
detected: [....61] [ip4][..udp] [.....10.0.0.151][.1900] -> [.....10.0.0.227][57547] [SSDP][Unknown][System][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....62] [ip4][..tcp] [.....10.0.0.227][56954] -> [.....10.0.0.149][.8008]
new: [....63] [ip4][..tcp] [.....10.0.0.227][56955] -> [.....10.0.0.151][.8060]
detected: [....62] [ip4][..tcp] [.....10.0.0.227][56954] -> [.....10.0.0.149][.8008] [HTTP][Unknown][Web][Acceptable][10.0.0.149]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI
detected: [....63] [ip4][..tcp] [.....10.0.0.227][56955] -> [.....10.0.0.151][.8060] [HTTP][Unknown][Web][Acceptable][10.0.0.151]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI
new: [....64] [ip4][..udp] [.....10.0.0.149][49816] -> [.....10.0.0.227][57547]
detected: [....64] [ip4][..udp] [.....10.0.0.149][49816] -> [.....10.0.0.227][57547] [SSDP][Unknown][System][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....65] [ip4][..udp] [.....10.0.0.149][48166] -> [.....10.0.0.227][57547]
detected: [....65] [ip4][..udp] [.....10.0.0.149][48166] -> [.....10.0.0.227][57547] [SSDP][Unknown][System][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....66] [ip4][..udp] [.....10.0.0.149][51382] -> [.....10.0.0.227][57547]
detected: [....66] [ip4][..udp] [.....10.0.0.149][51382] -> [.....10.0.0.227][57547] [SSDP][Unknown][System][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....67] [ip4][..udp] [.....10.0.0.227][..137] -> [.....10.0.0.255][..137]
detected: [....67] [ip4][..udp] [.....10.0.0.227][..137] -> [.....10.0.0.255][..137] [NetBIOS][Unknown][System][Acceptable][lp-rkerur-osx]
update: [.....5] [ip6][icmp6] [..............fe80::2e7e:81ff:feb0:4aa1] -> [................................ff02::1] [ICMPV6][Unknown][Network][Acceptable]
update: [....17] [ip4][.icmp] [.....10.0.0.227] -> [....75.75.76.76] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....23] [ip6][icmp6] [...............fe80::408:3e45:3abc:1552] -> [...............................ff02::16] [ICMPV6][Unknown][Network][Acceptable]
new: [....68] [ip4][..udp] [.....10.0.0.149][.5353] -> [....224.0.0.251][.5353]
detected: [....68] [ip4][..udp] [.....10.0.0.149][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable][_googlezone._tcp.local]
@@ -234,6 +267,7 @@
guessed: [.....1] [ip4][..tcp] [.....10.0.0.227][56885] -> [...184.25.56.53][...80] [HTTP][Unknown][Web][Acceptable][]
end: [.....1] [ip4][..tcp] [.....10.0.0.227][56885] -> [...184.25.56.53][...80]
idle: [....61] [ip4][..udp] [.....10.0.0.151][.1900] -> [.....10.0.0.227][57547] [SSDP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....24] [ip4][..tcp] [.....10.0.0.227][56917] -> [...184.25.56.77][...80] [HTTP][Unknown][ConnCheck][Acceptable]
idle: [....69] [ip4][.icmp] [.......10.0.0.1] -> [......224.0.0.1] [ICMP][Unknown][Network][Acceptable]
idle: [....21] [ip4][....2] [.....10.0.0.213] -> [....224.0.0.251] [IGMP][Unknown][Network][Acceptable]
@@ -244,38 +278,50 @@
idle: [....29] [ip4][..tcp] [.....10.0.0.227][56910] -> [...35.201.124.9][..443]
idle: [....31] [ip4][..udp] [.....10.0.0.227][64972] -> [....75.75.75.75][...53]
idle: [....66] [ip4][..udp] [.....10.0.0.149][51382] -> [.....10.0.0.227][57547] [SSDP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....26] [ip4][..udp] [.....10.0.0.227][54851] -> [....75.75.76.76][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Error Code
idle: [....22] [ip4][..udp] [.....10.0.0.227][.5353] -> [.....10.0.0.213][.5353] [MDNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....16] [ip4][..udp] [.....10.0.0.227][63107] -> [....75.75.76.76][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Error Code
idle: [....34] [ip4][..udp] [.....10.0.0.227][52879] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Error Code
idle: [.....9] [ip4][..udp] [.....10.0.0.227][52879] -> [....75.75.76.76][...53] [DNS][Unknown][Network][Acceptable]
idle: [....43] [ip4][..tcp] [.....10.0.0.227][56879] -> [..52.10.115.210][..443]
idle: [....58] [ip4][..udp] [.....10.0.0.227][54107] -> [....8.37.102.91][..443] [DTLS][Unknown][Web][Safe]
RISK: Obsolete TLS (v1.1 or older)
idle: [....36] [ip4][..udp] [.....10.0.0.227][57017] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Error Code
idle: [.....5] [ip6][icmp6] [..............fe80::2e7e:81ff:feb0:4aa1] -> [................................ff02::1] [ICMPV6][Unknown][Network][Acceptable]
idle: [....68] [ip4][..udp] [.....10.0.0.149][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable]
idle: [....18] [ip4][..udp] [.....10.0.0.213][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable]
idle: [....35] [ip4][..udp] [.....10.0.0.227][59222] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Error Code
idle: [....46] [ip4][..udp] [.....10.0.0.227][51060] -> [....75.75.75.75][...53] [DNS.ApplePush][Unknown][Network][Acceptable]
idle: [....41] [ip4][..udp] [.....10.0.0.227][57253] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable]
idle: [....33] [ip4][..udp] [.....10.0.0.227][57261] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Error Code
idle: [....17] [ip4][.icmp] [.....10.0.0.227] -> [....75.75.76.76] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..tcp] [.....10.0.0.227][56320] -> [.....10.0.0.149][.8009] [TLS][Unknown][Web][Safe]
RISK: Known Proto on Non Std Port
idle: [....10] [ip4][..udp] [.....10.0.0.227][61387] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable]
idle: [....64] [ip4][..udp] [.....10.0.0.149][49816] -> [.....10.0.0.227][57547] [SSDP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
end: [....44] [ip4][..tcp] [.....10.0.0.227][56886] -> [..17.57.144.116][.5223] [TLS][Apple][Web][Safe]
RISK: Known Proto on Non Std Port
idle: [....30] [ip4][..tcp] [.....10.0.0.227][56921] -> [....8.37.96.194][.4287] [TLS][Unknown][Web][Safe]
- RISK: Known Proto on Non Std Port, Self-signed Cert, TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn
+ RISK: Known Proto on Non Std Port, Self-signed Cert, TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn, TLS Cert About To Expire
idle: [....23] [ip6][icmp6] [...............fe80::408:3e45:3abc:1552] -> [...............................ff02::16] [ICMPV6][Unknown][Network][Acceptable]
idle: [....32] [ip4][..udp] [.....10.0.0.227][61613] -> [....75.75.75.75][...53]
idle: [....47] [ip4][..udp] [.....10.0.0.227][59582] -> [....75.75.75.75][...53] [DNS.ApplePush][Unknown][Network][Acceptable]
idle: [....59] [ip4][..udp] [.....10.0.0.149][50081] -> [.....10.0.0.227][57547] [SSDP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [....51] [ip4][..tcp] [.....10.0.0.227][56871] -> [...8.37.103.196][..443] [TLS][Unknown][Web][Safe]
end: [....51] [ip4][..tcp] [.....10.0.0.227][56871] -> [...8.37.103.196][..443]
idle: [....65] [ip4][..udp] [.....10.0.0.149][48166] -> [.....10.0.0.227][57547] [SSDP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
end: [....12] [ip4][..tcp] [.....10.0.0.227][56918] -> [....8.37.102.91][..443]
end: [....15] [ip4][..tcp] [.....10.0.0.227][56919] -> [....8.37.102.91][..443] [TLS][Unknown][Web][Safe]
RISK: Weak TLS Cipher, Missing SNI TLS Extn
@@ -288,21 +334,25 @@
guessed: [....39] [ip4][..tcp] [.....10.0.0.227][56865] -> [.....10.0.0.149][.8008] [CiscoVPN][Unknown][VPN][Acceptable]
end: [....39] [ip4][..tcp] [.....10.0.0.227][56865] -> [.....10.0.0.149][.8008]
guessed: [.....2] [ip4][..tcp] [.....10.0.0.227][56916] -> [.....10.0.0.151][.8009] [AJP][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..tcp] [.....10.0.0.227][56916] -> [.....10.0.0.151][.8009]
not-detected: [....40] [ip4][..tcp] [.....10.0.0.227][56866] -> [.....10.0.0.151][.8060] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
end: [....40] [ip4][..tcp] [.....10.0.0.227][56866] -> [.....10.0.0.151][.8060]
idle: [....62] [ip4][..tcp] [.....10.0.0.227][56954] -> [.....10.0.0.149][.8008] [HTTP][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI
idle: [....19] [ip6][..udp] [...............fe80::408:3e45:3abc:1552][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable]
idle: [....50] [ip4][..udp] [.....10.0.0.227][49781] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable]
end: [....63] [ip4][..tcp] [.....10.0.0.227][56955] -> [.....10.0.0.151][.8060] [HTTP][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI
not-detected: [....60] [ip4][..udp] [.....10.0.0.227][52595] -> [.......10.0.0.1][..192] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....60] [ip4][..udp] [.....10.0.0.227][52595] -> [.......10.0.0.1][..192]
idle: [....48] [ip4][..udp] [.....10.0.0.227][64193] -> [....75.75.75.75][...53] [DNS.ApplePush][Unknown][Network][Acceptable]
idle: [....52] [ip4][..udp] [.....10.0.0.227][58074] -> [....75.75.75.75][...53] [DNS.Outlook][Unknown][Network][Acceptable]
end: [....28] [ip4][..tcp] [.....10.0.0.227][56920] -> [...99.86.34.156][..443] [TLS.Slack][AmazonAWS][Collaborative][Acceptable]
idle: [....55] [ip4][..udp] [.....10.0.0.149][38616] -> [.....10.0.0.227][61328] [SSDP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [....37] [ip4][..tcp] [.....10.0.0.227][56881] -> [.162.222.43.153][..443] [TLS][Unknown][Web][Safe]
idle: [....37] [ip4][..tcp] [.....10.0.0.227][56881] -> [.162.222.43.153][..443]
idle: [....49] [ip4][..udp] [.....10.0.0.227][51990] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable]
@@ -310,6 +360,7 @@
idle: [....54] [ip4][..udp] [.....10.0.0.227][61328] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [....11] [ip4][..udp] [.....10.0.0.227][62322] -> [....75.75.76.76][...53] [DNS][Unknown][Network][Acceptable]
idle: [....56] [ip4][..udp] [.....10.0.0.151][.1900] -> [.....10.0.0.227][61328] [SSDP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....45] [ip4][..udp] [.....10.0.0.227][60341] -> [....75.75.75.75][...53] [DNS.Apple][Unknown][Network][Safe]
idle: [....42] [ip4][..udp] [.....10.0.0.227][62427] -> [....75.75.75.75][...53] [DNS][Unknown][Network][Acceptable]
idle: [.....8] [ip4][....2] [.....10.0.0.149] -> [239.255.255.250] [IGMP][Unknown][Network][Acceptable]
diff --git a/test/results/flow-info/anydesk.pcapng.out b/test/results/flow-info/default/anydesk.pcapng.out
index f50c23da8..f131d8062 100644
--- a/test/results/flow-info/anydesk.pcapng.out
+++ b/test/results/flow-info/default/anydesk.pcapng.out
@@ -3,7 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [192.168.149.129][36351] -> [..51.83.239.144][...80] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [192.168.149.129][36351] -> [..51.83.239.144][...80] [TLS][AnyDesk][Web][Safe]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [.....2] [ip4][..tcp] [192.168.149.129][43535] -> [..51.83.238.219][...80]
detected: [.....2] [ip4][..tcp] [192.168.149.129][43535] -> [..51.83.238.219][...80] [TLS][AnyDesk][Web][Safe][]
RISK: Known Proto on Non Std Port, TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn
@@ -27,9 +27,11 @@
DAEMON-EVENT: [Flows][active: 2 / 2|skipped: 0|!detected: 0|guessed: 0|detection-updates: 3|updates: 0]
new: [.....3] [ip4][..udp] [..192.168.1.187][59511] -> [....192.168.1.1][...53]
detected: [.....3] [ip4][..udp] [..192.168.1.187][59511] -> [....192.168.1.1][...53] [DNS.AnyDesk][Unknown][Network][Acceptable][relay-3185a847.net.anydesk.com]
+ RISK: Unidirectional Traffic
detection-update: [.....3] [ip4][..udp] [..192.168.1.187][59511] -> [....192.168.1.1][...53] [DNS.AnyDesk][Unknown][Network][Acceptable][relay-3185a847.net.anydesk.com]
new: [.....4] [ip4][..udp] [..192.168.1.187][55376] -> [....192.168.1.1][...53]
detected: [.....4] [ip4][..udp] [..192.168.1.187][55376] -> [....192.168.1.1][...53] [DNS.AnyDesk][Unknown][Network][Acceptable][relay-9b6827f2.net.anydesk.com]
+ RISK: Unidirectional Traffic
detection-update: [.....4] [ip4][..udp] [..192.168.1.187][55376] -> [....192.168.1.1][...53] [DNS.AnyDesk][Unknown][Network][Acceptable][relay-9b6827f2.net.anydesk.com]
idle: [.....1] [ip4][..tcp] [192.168.149.129][36351] -> [..51.83.239.144][...80] [TLS][AnyDesk][Web][Safe]
RISK: Known Proto on Non Std Port
@@ -55,7 +57,7 @@
[IATS(ms)....: 0.5,0.5,0.3,0.4,0.3,10.5,0.0,10.9,39.6,40.3,8.7,0.0,9.5,516.9,517.5,1.6,27.8,26.2,2.4,56.3,902.9,957.3,0.0,0.0,1754.2,1753.7,16.4,71.2,2966.8,3021.8,4.0]
[PKTLENS.....: 52,52,40,285,46,46,1500,183,40,1326,46,954,80,40,87,46,75,74,46,74,40,3966,46,46,46,79,46,141,40,99,46,116]
[ENTROPIES...: 4.5,4.7,4.7,5.4,4.2,4.3,7.7,6.2,4.7,7.7,4.3,7.8,5.6,4.6,5.7,4.2,5.5,5.6,4.3,5.6,4.7,8.0,4.2,4.3,4.2,5.7,4.3,6.5,4.6,6.0,4.3,6.2]
- DAEMON-EVENT: [Processed: 2582 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Processed: 120 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 4 / 6|skipped: 0|!detected: 0|guessed: 0|detection-updates: 7|updates: 0]
new: [.....7] [ip4][..tcp] [..192.168.1.128][48260] -> [195.181.174.176][..443]
detected: [.....7] [ip4][..tcp] [..192.168.1.128][48260] -> [195.181.174.176][..443] [TLS.AnyDesk][Unknown][RemoteAccess][Acceptable][]
diff --git a/test/results/flow-info/avast.pcap.out b/test/results/flow-info/default/avast.pcap.out
index 33954e2e5..33954e2e5 100644
--- a/test/results/flow-info/avast.pcap.out
+++ b/test/results/flow-info/default/avast.pcap.out
diff --git a/test/results/flow-info/avast_securedns.pcapng.out b/test/results/flow-info/default/avast_securedns.pcapng.out
index e5e016a7d..42496ba4a 100644
--- a/test/results/flow-info/avast_securedns.pcapng.out
+++ b/test/results/flow-info/default/avast_securedns.pcapng.out
@@ -3,152 +3,239 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..192.168.2.100][57970] -> [.181.214.35.149][..443]
detected: [.....1] [ip4][..udp] [..192.168.2.100][57970] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 2 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....2] [ip4][..udp] [..192.168.2.100][61201] -> [.181.214.35.149][..443]
detected: [.....2] [ip4][..udp] [..192.168.2.100][61201] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..udp] [..192.168.2.100][60835] -> [.181.214.35.149][..443]
detected: [.....3] [ip4][..udp] [..192.168.2.100][60835] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [..192.168.2.100][57970] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..udp] [..192.168.2.100][62775] -> [.181.214.35.149][..443]
detected: [.....4] [ip4][..udp] [..192.168.2.100][62775] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 8 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 3 / 4|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....5] [ip4][..udp] [..192.168.2.100][56581] -> [.181.214.35.149][..443]
detected: [.....5] [ip4][..udp] [..192.168.2.100][56581] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
new: [.....6] [ip4][..udp] [..192.168.2.100][56765] -> [.181.214.35.149][..443]
detected: [.....6] [ip4][..udp] [..192.168.2.100][56765] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [..192.168.2.100][61201] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..udp] [..192.168.2.100][62775] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [..192.168.2.100][60835] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 12 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 6|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....7] [ip4][..udp] [..192.168.2.100][50581] -> [.181.214.35.149][..443]
detected: [.....7] [ip4][..udp] [..192.168.2.100][50581] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
new: [.....8] [ip4][..udp] [..192.168.2.100][61107] -> [.181.214.35.149][..443]
detected: [.....8] [ip4][..udp] [..192.168.2.100][61107] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [.....5] [ip4][..udp] [..192.168.2.100][56581] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][..udp] [..192.168.2.100][56765] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 16 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 8|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....9] [ip4][..udp] [..192.168.2.100][64954] -> [.181.214.35.149][..443]
detected: [.....9] [ip4][..udp] [..192.168.2.100][64954] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
new: [....10] [ip4][..udp] [..192.168.2.100][59621] -> [.181.214.35.149][..443]
detected: [....10] [ip4][..udp] [..192.168.2.100][59621] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [.....7] [ip4][..udp] [..192.168.2.100][50581] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [.....8] [ip4][..udp] [..192.168.2.100][61107] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 20 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 10|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....11] [ip4][..udp] [..192.168.2.100][52485] -> [.181.214.35.149][..443]
detected: [....11] [ip4][..udp] [..192.168.2.100][52485] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
new: [....12] [ip4][..udp] [..192.168.2.100][54938] -> [.181.214.35.149][..443]
detected: [....12] [ip4][..udp] [..192.168.2.100][54938] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....10] [ip4][..udp] [..192.168.2.100][59621] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [.....9] [ip4][..udp] [..192.168.2.100][64954] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 24 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 12|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....13] [ip4][..udp] [..192.168.2.100][56839] -> [.181.214.35.149][..443]
detected: [....13] [ip4][..udp] [..192.168.2.100][56839] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....11] [ip4][..udp] [..192.168.2.100][52485] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....12] [ip4][..udp] [..192.168.2.100][54938] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 26 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 13|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....14] [ip4][..udp] [..192.168.2.100][58155] -> [.181.214.35.149][..443]
detected: [....14] [ip4][..udp] [..192.168.2.100][58155] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
new: [....15] [ip4][..udp] [..192.168.2.100][64487] -> [.181.214.35.149][..443]
detected: [....15] [ip4][..udp] [..192.168.2.100][64487] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
new: [....16] [ip4][..udp] [..192.168.2.100][49704] -> [.181.214.35.149][..443]
detected: [....16] [ip4][..udp] [..192.168.2.100][49704] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....13] [ip4][..udp] [..192.168.2.100][56839] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
new: [....17] [ip4][..udp] [..192.168.2.100][55311] -> [.181.214.35.149][..443]
detected: [....17] [ip4][..udp] [..192.168.2.100][55311] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
new: [....18] [ip4][..udp] [..192.168.2.100][56111] -> [.181.214.35.149][..443]
detected: [....18] [ip4][..udp] [..192.168.2.100][56111] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 36 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 5 / 18|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....19] [ip4][..udp] [..192.168.2.100][64494] -> [.181.214.35.149][..443]
detected: [....19] [ip4][..udp] [..192.168.2.100][64494] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
new: [....20] [ip4][..udp] [..192.168.2.100][51415] -> [.181.214.35.149][..443]
detected: [....20] [ip4][..udp] [..192.168.2.100][51415] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....17] [ip4][..udp] [..192.168.2.100][55311] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....16] [ip4][..udp] [..192.168.2.100][49704] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....14] [ip4][..udp] [..192.168.2.100][58155] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....18] [ip4][..udp] [..192.168.2.100][56111] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....15] [ip4][..udp] [..192.168.2.100][64487] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
new: [....21] [ip4][..udp] [..192.168.2.100][63776] -> [.181.214.35.149][..443]
detected: [....21] [ip4][..udp] [..192.168.2.100][63776] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
new: [....22] [ip4][..udp] [..192.168.2.100][50008] -> [.181.214.35.149][..443]
detected: [....22] [ip4][..udp] [..192.168.2.100][50008] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
new: [....23] [ip4][..udp] [..192.168.2.100][49737] -> [.181.214.35.149][..443]
detected: [....23] [ip4][..udp] [..192.168.2.100][49737] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
update: [....20] [ip4][..udp] [..192.168.2.100][51415] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
update: [....19] [ip4][..udp] [..192.168.2.100][64494] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
new: [....24] [ip4][..udp] [..192.168.2.100][51887] -> [.181.214.35.149][..443]
detected: [....24] [ip4][..udp] [..192.168.2.100][51887] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
new: [....25] [ip4][..udp] [..192.168.2.100][60127] -> [.181.214.35.149][..443]
detected: [....25] [ip4][..udp] [..192.168.2.100][60127] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
new: [....26] [ip4][..udp] [..192.168.2.100][54546] -> [.181.214.35.149][..443]
detected: [....26] [ip4][..udp] [..192.168.2.100][54546] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
update: [....20] [ip4][..udp] [..192.168.2.100][51415] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
update: [....21] [ip4][..udp] [..192.168.2.100][63776] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
update: [....23] [ip4][..udp] [..192.168.2.100][49737] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
update: [....22] [ip4][..udp] [..192.168.2.100][50008] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
update: [....19] [ip4][..udp] [..192.168.2.100][64494] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 52 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 8 / 26|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 7]
new: [....27] [ip4][..udp] [..192.168.2.100][64432] -> [.181.214.35.149][..443]
detected: [....27] [ip4][..udp] [..192.168.2.100][64432] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....20] [ip4][..udp] [..192.168.2.100][51415] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....21] [ip4][..udp] [..192.168.2.100][63776] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....23] [ip4][..udp] [..192.168.2.100][49737] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....24] [ip4][..udp] [..192.168.2.100][51887] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....25] [ip4][..udp] [..192.168.2.100][60127] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....22] [ip4][..udp] [..192.168.2.100][50008] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....19] [ip4][..udp] [..192.168.2.100][64494] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....26] [ip4][..udp] [..192.168.2.100][54546] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
new: [....28] [ip4][..udp] [..192.168.2.100][59613] -> [.181.214.35.149][..443]
detected: [....28] [ip4][..udp] [..192.168.2.100][59613] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
new: [....29] [ip4][..udp] [..192.168.2.100][65063] -> [.181.214.35.149][..443]
detected: [....29] [ip4][..udp] [..192.168.2.100][65063] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
new: [....30] [ip4][..udp] [..192.168.2.100][51929] -> [.181.214.35.149][..443]
detected: [....30] [ip4][..udp] [..192.168.2.100][51929] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
new: [....31] [ip4][..udp] [..192.168.2.100][52417] -> [.181.214.35.149][..443]
detected: [....31] [ip4][..udp] [..192.168.2.100][52417] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
update: [....28] [ip4][..udp] [..192.168.2.100][59613] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
update: [....27] [ip4][..udp] [..192.168.2.100][64432] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 62 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 5 / 31|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 9]
new: [....32] [ip4][..udp] [..192.168.2.100][59474] -> [.181.214.35.149][..443]
detected: [....32] [ip4][..udp] [..192.168.2.100][59474] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
new: [....33] [ip4][..udp] [..192.168.2.100][53839] -> [.181.214.35.149][..443]
detected: [....33] [ip4][..udp] [..192.168.2.100][53839] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....28] [ip4][..udp] [..192.168.2.100][59613] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....30] [ip4][..udp] [..192.168.2.100][51929] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....27] [ip4][..udp] [..192.168.2.100][64432] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....31] [ip4][..udp] [..192.168.2.100][52417] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....29] [ip4][..udp] [..192.168.2.100][65063] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 66 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 33|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 9]
new: [....34] [ip4][..udp] [..192.168.2.100][55948] -> [.181.214.35.149][..443]
detected: [....34] [ip4][..udp] [..192.168.2.100][55948] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
new: [....35] [ip4][..udp] [..192.168.2.100][51383] -> [.181.214.35.149][..443]
detected: [....35] [ip4][..udp] [..192.168.2.100][51383] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....32] [ip4][..udp] [..192.168.2.100][59474] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....33] [ip4][..udp] [..192.168.2.100][53839] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
new: [....36] [ip4][..udp] [..192.168.2.100][64700] -> [.181.214.35.149][..443]
detected: [....36] [ip4][..udp] [..192.168.2.100][64700] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
new: [....37] [ip4][..udp] [..192.168.2.100][54549] -> [.181.214.35.149][..443]
detected: [....37] [ip4][..udp] [..192.168.2.100][54549] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 73 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 4 / 37|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 9]
new: [....38] [ip4][..udp] [..192.168.2.100][54760] -> [.181.214.35.149][..443]
detected: [....38] [ip4][..udp] [..192.168.2.100][54760] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
new: [....39] [ip4][..udp] [..192.168.2.100][49152] -> [.181.214.35.149][..443]
detected: [....39] [ip4][..udp] [..192.168.2.100][49152] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....39] [ip4][..udp] [..192.168.2.100][49152] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....35] [ip4][..udp] [..192.168.2.100][51383] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....34] [ip4][..udp] [..192.168.2.100][55948] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....36] [ip4][..udp] [..192.168.2.100][64700] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....37] [ip4][..udp] [..192.168.2.100][54549] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [....38] [ip4][..udp] [..192.168.2.100][54760] -> [.181.214.35.149][..443] [AVASTSecureDNS][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/default/bacnet.pcap.out b/test/results/flow-info/default/bacnet.pcap.out
new file mode 100644
index 000000000..4880c731c
--- /dev/null
+++ b/test/results/flow-info/default/bacnet.pcap.out
@@ -0,0 +1,74 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..udp] [....65.49.20.98][53234] -> [..90.147.69.219][47808]
+ detected: [.....1] [ip4][..udp] [....65.49.20.98][53234] -> [..90.147.69.219][47808] [BACnet][Unknown][IoT-Scada][Safe]
+ RISK: Unidirectional Traffic
+ new: [.....2] [ip4][..udp] [.198.235.24.166][56883] -> [..90.147.69.222][47808]
+ detected: [.....2] [ip4][..udp] [.198.235.24.166][56883] -> [..90.147.69.222][47808] [BACnet][Unknown][IoT-Scada][Safe]
+ RISK: Unidirectional Traffic
+ idle: [.....1] [ip4][..udp] [....65.49.20.98][53234] -> [..90.147.69.219][47808] [BACnet][Unknown][IoT-Scada][Safe]
+ RISK: Unidirectional Traffic
+ new: [.....3] [ip4][..udp] [...64.62.197.26][36992] -> [..90.147.69.221][47808]
+ detected: [.....3] [ip4][..udp] [...64.62.197.26][36992] -> [..90.147.69.221][47808] [BACnet][Unknown][IoT-Scada][Safe]
+ RISK: Unidirectional Traffic
+ new: [.....4] [ip4][..udp] [..64.62.197.166][36664] -> [..90.147.69.213][47808]
+ detected: [.....4] [ip4][..udp] [..64.62.197.166][36664] -> [..90.147.69.213][47808] [BACnet][Unknown][IoT-Scada][Safe]
+ RISK: Unidirectional Traffic
+ update: [.....2] [ip4][..udp] [.198.235.24.166][56883] -> [..90.147.69.222][47808] [BACnet][Unknown][IoT-Scada][Safe]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 4 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 3 / 4|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 1]
+ new: [.....5] [ip4][..udp] [..198.235.24.39][54587] -> [..90.147.69.210][47808]
+ detected: [.....5] [ip4][..udp] [..198.235.24.39][54587] -> [..90.147.69.210][47808] [BACnet][Unknown][IoT-Scada][Safe]
+ RISK: Unidirectional Traffic
+ idle: [.....2] [ip4][..udp] [.198.235.24.166][56883] -> [..90.147.69.222][47808] [BACnet][Unknown][IoT-Scada][Safe]
+ RISK: Unidirectional Traffic
+ idle: [.....4] [ip4][..udp] [..64.62.197.166][36664] -> [..90.147.69.213][47808] [BACnet][Unknown][IoT-Scada][Safe]
+ RISK: Unidirectional Traffic
+ idle: [.....3] [ip4][..udp] [...64.62.197.26][36992] -> [..90.147.69.221][47808] [BACnet][Unknown][IoT-Scada][Safe]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 5 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 5|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 1]
+ new: [.....6] [ip4][..udp] [.167.94.138.111][27041] -> [..90.147.69.212][47808]
+ detected: [.....6] [ip4][..udp] [.167.94.138.111][27041] -> [..90.147.69.212][47808] [BACnet][Unknown][IoT-Scada][Safe]
+ RISK: Unidirectional Traffic
+ idle: [.....5] [ip4][..udp] [..198.235.24.39][54587] -> [..90.147.69.210][47808] [BACnet][Unknown][IoT-Scada][Safe]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 6 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 6|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 1]
+ new: [.....7] [ip4][..udp] [162.142.125.140][63852] -> [..90.147.69.217][47808]
+ detected: [.....7] [ip4][..udp] [162.142.125.140][63852] -> [..90.147.69.217][47808] [BACnet][Unknown][IoT-Scada][Safe]
+ RISK: Unidirectional Traffic
+ idle: [.....6] [ip4][..udp] [.167.94.138.111][27041] -> [..90.147.69.212][47808] [BACnet][Unknown][IoT-Scada][Safe]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 7 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 7|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 1]
+ new: [.....8] [ip4][..udp] [..198.235.24.45][51922] -> [..90.147.69.219][47808]
+ detected: [.....8] [ip4][..udp] [..198.235.24.45][51922] -> [..90.147.69.219][47808] [BACnet][Unknown][IoT-Scada][Safe]
+ RISK: Unidirectional Traffic
+ idle: [.....7] [ip4][..udp] [162.142.125.140][63852] -> [..90.147.69.217][47808] [BACnet][Unknown][IoT-Scada][Safe]
+ RISK: Unidirectional Traffic
+ new: [.....9] [ip4][..udp] [162.142.125.132][29782] -> [..90.147.69.219][47808]
+ detected: [.....9] [ip4][..udp] [162.142.125.132][29782] -> [..90.147.69.219][47808] [BACnet][Unknown][IoT-Scada][Safe]
+ RISK: Unidirectional Traffic
+ update: [.....8] [ip4][..udp] [..198.235.24.45][51922] -> [..90.147.69.219][47808] [BACnet][Unknown][IoT-Scada][Safe]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 9 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 2 / 9|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 2]
+ new: [....10] [ip4][..udp] [204.172.177.255][47808] -> [204.172.177.159][47808]
+ detected: [....10] [ip4][..udp] [204.172.177.255][47808] -> [204.172.177.159][47808] [BACnet][Unknown][IoT-Scada][Safe]
+ RISK: Unidirectional Traffic
+ idle: [.....9] [ip4][..udp] [162.142.125.132][29782] -> [..90.147.69.219][47808] [BACnet][Unknown][IoT-Scada][Safe]
+ RISK: Unidirectional Traffic
+ idle: [.....8] [ip4][..udp] [..198.235.24.45][51922] -> [..90.147.69.219][47808] [BACnet][Unknown][IoT-Scada][Safe]
+ RISK: Unidirectional Traffic
+ update: [....10] [ip4][..udp] [204.172.177.255][47808] -> [204.172.177.159][47808] [BACnet][Unknown][IoT-Scada][Safe]
+ RISK: Unidirectional Traffic
+ update: [....10] [ip4][..udp] [204.172.177.255][47808] -> [204.172.177.159][47808] [BACnet][Unknown][IoT-Scada][Safe]
+ RISK: Unidirectional Traffic
+ update: [....10] [ip4][..udp] [204.172.177.255][47808] -> [204.172.177.159][47808] [BACnet][Unknown][IoT-Scada][Safe]
+ RISK: Unidirectional Traffic
+ idle: [....10] [ip4][..udp] [204.172.177.255][47808] -> [204.172.177.159][47808] [BACnet][Unknown][IoT-Scada][Safe]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/bad-dns-traffic.pcap.out b/test/results/flow-info/default/bad-dns-traffic.pcap.out
index 85c100dbf..03459e53e 100644
--- a/test/results/flow-info/bad-dns-traffic.pcap.out
+++ b/test/results/flow-info/default/bad-dns-traffic.pcap.out
@@ -3,24 +3,24 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..192.168.43.91][35966] -> [........4.2.2.4][...53]
detected: [.....1] [ip4][..udp] [..192.168.43.91][35966] -> [........4.2.2.4][...53] [DNS][Unknown][Network][Acceptable][05e100a621c3620001636f6e736f6c65202873697276696d65732900.skullseclabs.org]
- RISK: Suspicious DGA Domain name
+ RISK: Susp DGA Domain name, Unidirectional Traffic
detection-update: [.....1] [ip4][..udp] [..192.168.43.91][35966] -> [........4.2.2.4][...53] [DNS][Unknown][Network][Acceptable][958700a621c3620001636f6e736f6c65202873697276696d65732900.skullseclabs.org]
- RISK: Suspicious DGA Domain name
+ RISK: Susp DGA Domain name, Unidirectional Traffic
detection-update: [.....1] [ip4][..udp] [..192.168.43.91][35966] -> [........4.2.2.4][...53] [DNS][Unknown][Network][Acceptable][958700a621c3620001636f6e736f6c65202873697276696d65732900.skullseclabs.org]
- RISK: Suspicious DGA Domain name, Risky Domain Name
+ RISK: Susp DGA Domain name, Risky Domain Name
new: [.....2] [ip4][..udp] [..192.168.43.91][56354] -> [........4.2.2.4][...53]
detected: [.....2] [ip4][..udp] [..192.168.43.91][56354] -> [........4.2.2.4][...53] [DNS][Unknown][Network][Acceptable][244300fdf525320021636f6d6d616e64202873697276696d65732900.skullseclabs.org]
- RISK: Suspicious DGA Domain name
+ RISK: Susp DGA Domain name, Unidirectional Traffic
detection-update: [.....2] [ip4][..udp] [..192.168.43.91][56354] -> [........4.2.2.4][...53] [DNS][Unknown][Network][Acceptable][6b5000fdf525320021636f6d6d616e64202873697276696d65732900.skullseclabs.org]
- RISK: Suspicious DGA Domain name
+ RISK: Susp DGA Domain name, Unidirectional Traffic
detection-update: [.....2] [ip4][..udp] [..192.168.43.91][56354] -> [........4.2.2.4][...53] [DNS][Unknown][Network][Acceptable][e18f00fdf525320021636f6d6d616e64202873697276696d65732900.skullseclabs.org]
- RISK: Suspicious DGA Domain name
+ RISK: Susp DGA Domain name, Unidirectional Traffic
detection-update: [.....2] [ip4][..udp] [..192.168.43.91][56354] -> [........4.2.2.4][...53] [DNS][Unknown][Network][Acceptable][46b100fdf525320021636f6d6d616e64202873697276696d65732900.skullseclabs.org]
- RISK: Suspicious DGA Domain name
+ RISK: Susp DGA Domain name, Unidirectional Traffic
detection-update: [.....2] [ip4][..udp] [..192.168.43.91][56354] -> [........4.2.2.4][...53] [DNS][Unknown][Network][Acceptable][c75900fdf525320021636f6d6d616e64202873697276696d65732900.skullseclabs.org]
- RISK: Suspicious DGA Domain name
+ RISK: Susp DGA Domain name, Unidirectional Traffic
detection-update: [.....2] [ip4][..udp] [..192.168.43.91][56354] -> [........4.2.2.4][...53] [DNS][Unknown][Network][Acceptable][c75900fdf525320021636f6d6d616e64202873697276696d65732900.skullseclabs.org]
- RISK: Suspicious DGA Domain name, Risky Domain Name
+ RISK: Susp DGA Domain name, Risky Domain Name
analyse: [.....2] [ip4][..udp] [..192.168.43.91][56354] -> [........4.2.2.4][...53] [DNS][Unknown][Network][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.063| 4.102| 1.074| 0.689| 474850.951| 4.700]
@@ -32,20 +32,20 @@
[PKTLENS.....: 119,119,119,119,119,150,81,116,81,81,112,81,114,81,116,81,114,81,114,81,112,81,114,81,116,81,114,81,81,160,276,309]
[ENTROPIES...: 4.9,5.0,5.0,5.0,5.0,4.9,5.0,5.0,5.0,5.1,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,4.9,5.0,4.9,5.0,5.0,5.0,5.0,5.0,4.9,4.2,4.3]
update: [.....1] [ip4][..udp] [..192.168.43.91][35966] -> [........4.2.2.4][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Suspicious DGA Domain name, Risky Domain Name
+ RISK: Susp DGA Domain name, Risky Domain Name
update: [.....2] [ip4][..udp] [..192.168.43.91][56354] -> [........4.2.2.4][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Suspicious DGA Domain name, Risky Domain Name
+ RISK: Susp DGA Domain name, Risky Domain Name
update: [.....1] [ip4][..udp] [..192.168.43.91][35966] -> [........4.2.2.4][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Suspicious DGA Domain name, Risky Domain Name
+ RISK: Susp DGA Domain name, Risky Domain Name
new: [.....3] [ip4][..udp] [..192.168.43.91][46961] -> [........4.2.2.4][...53]
detected: [.....3] [ip4][..udp] [..192.168.43.91][46961] -> [........4.2.2.4][...53] [DNS][Unknown][Network][Acceptable][a05700e6da83510001636f6e736f6c65202873697276696d65732900.skullseclabs.org]
- RISK: Suspicious DGA Domain name
+ RISK: Susp DGA Domain name, Unidirectional Traffic
detection-update: [.....3] [ip4][..udp] [..192.168.43.91][46961] -> [........4.2.2.4][...53] [DNS][Unknown][Network][Acceptable][a05700e6da83510001636f6e736f6c65202873697276696d65732900.skullseclabs.org]
- RISK: Suspicious DGA Domain name, Risky Domain Name
+ RISK: Susp DGA Domain name, Risky Domain Name
idle: [.....3] [ip4][..udp] [..192.168.43.91][46961] -> [........4.2.2.4][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Suspicious DGA Domain name, Risky Domain Name
+ RISK: Susp DGA Domain name, Risky Domain Name
idle: [.....2] [ip4][..udp] [..192.168.43.91][56354] -> [........4.2.2.4][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Suspicious DGA Domain name, Risky Domain Name
+ RISK: Susp DGA Domain name, Risky Domain Name
idle: [.....1] [ip4][..udp] [..192.168.43.91][35966] -> [........4.2.2.4][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Suspicious DGA Domain name, Risky Domain Name
+ RISK: Susp DGA Domain name, Risky Domain Name
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/badpackets.pcap.out b/test/results/flow-info/default/badpackets.pcap.out
index 7f6345b25..7f6345b25 100644
--- a/test/results/flow-info/badpackets.pcap.out
+++ b/test/results/flow-info/default/badpackets.pcap.out
diff --git a/test/results/flow-info/bitcoin.pcap.out b/test/results/flow-info/default/bitcoin.pcap.out
index f7f988a30..8126a14d5 100644
--- a/test/results/flow-info/bitcoin.pcap.out
+++ b/test/results/flow-info/default/bitcoin.pcap.out
@@ -3,10 +3,10 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [..192.168.1.142][55317] -> [188.165.213.169][.8333] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [..192.168.1.142][55317] -> [188.165.213.169][.8333] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [.....2] [ip4][..tcp] [..192.168.1.142][55328] -> [..69.118.54.122][.8333] [MIDSTREAM]
detected: [.....2] [ip4][..tcp] [..192.168.1.142][55328] -> [..69.118.54.122][.8333] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
analyse: [.....2] [ip4][..tcp] [..192.168.1.142][55328] -> [..69.118.54.122][.8333] [Mining][Unknown][Mining][Unsafe]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 141.657| 9.231| 28.185| 794377756.606| 1.900]
@@ -19,7 +19,7 @@
[ENTROPIES...: 4.3,4.4,4.9,5.2,4.7,5.6,4.9,7.4,7.5,7.5,7.5,7.4,3.6,3.4,3.5,3.5,3.5,3.4,3.5,3.5,3.5,3.5,3.5,3.5,3.5,3.5,3.5,3.5,3.5,3.5,3.5,3.5]
new: [.....3] [ip4][..tcp] [..192.168.1.142][55348] -> [..74.89.181.229][.8333] [MIDSTREAM]
detected: [.....3] [ip4][..tcp] [..192.168.1.142][55348] -> [..74.89.181.229][.8333] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
analyse: [.....3] [ip4][..tcp] [..192.168.1.142][55348] -> [..74.89.181.229][.8333] [Mining][Unknown][Mining][Unsafe]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 100.111| 6.495| 19.445| 378100231.700| 2.000]
@@ -32,7 +32,7 @@
[ENTROPIES...: 4.5,4.5,5.1,5.3,4.9,4.9,5.1,4.8,3.6,3.5,3.6,3.5,3.5,3.5,3.5,3.5,3.5,3.5,3.5,3.5,3.5,3.5,3.5,3.5,3.5,3.5,3.5,3.5,3.5,3.5,3.5,3.5]
new: [.....4] [ip4][..tcp] [..192.168.1.142][55383] -> [....66.68.83.22][.8333] [MIDSTREAM]
detected: [.....4] [ip4][..tcp] [..192.168.1.142][55383] -> [....66.68.83.22][.8333] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
DAEMON-EVENT: [Processed: 214 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 4 / 4|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
analyse: [.....4] [ip4][..tcp] [..192.168.1.142][55383] -> [....66.68.83.22][.8333] [Mining][Unknown][Mining][Unsafe]
@@ -47,7 +47,7 @@
[ENTROPIES...: 4.3,4.5,5.2,5.6,5.6,5.4,5.2,5.5,5.0,6.6,6.6,6.6,6.6,6.7,6.7,6.2,3.5,3.4,3.5,3.5,3.5,3.5,3.5,3.5,3.4,3.4,3.5,3.5,3.5,3.5,3.5,3.5]
new: [.....5] [ip4][..tcp] [..192.168.1.142][55400] -> [.195.218.16.178][.8333] [MIDSTREAM]
detected: [.....5] [ip4][..tcp] [..192.168.1.142][55400] -> [.195.218.16.178][.8333] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
analyse: [.....5] [ip4][..tcp] [..192.168.1.142][55400] -> [.195.218.16.178][.8333] [Mining][Unknown][Mining][Unsafe]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 41.186| 2.780| 7.976| 63609669.419| 2.200]
@@ -62,19 +62,19 @@
DAEMON-EVENT: [Flows][active: 5 / 5|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....6] [ip4][..tcp] [..192.168.1.142][55487] -> [.184.58.165.119][.8333] [MIDSTREAM]
detected: [.....6] [ip4][..tcp] [..192.168.1.142][55487] -> [.184.58.165.119][.8333] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
DAEMON-EVENT: [Processed: 621 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 6 / 6|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
idle: [.....3] [ip4][..tcp] [..192.168.1.142][55348] -> [..74.89.181.229][.8333] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [.....5] [ip4][..tcp] [..192.168.1.142][55400] -> [.195.218.16.178][.8333] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [.....6] [ip4][..tcp] [..192.168.1.142][55487] -> [.184.58.165.119][.8333] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [.....4] [ip4][..tcp] [..192.168.1.142][55383] -> [....66.68.83.22][.8333] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [.....1] [ip4][..tcp] [..192.168.1.142][55317] -> [188.165.213.169][.8333] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [.....2] [ip4][..tcp] [..192.168.1.142][55328] -> [..69.118.54.122][.8333] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/bittorrent.pcap.out b/test/results/flow-info/default/bittorrent.pcap.out
index 79ba624ea..c9cd5b620 100644
--- a/test/results/flow-info/bittorrent.pcap.out
+++ b/test/results/flow-info/default/bittorrent.pcap.out
@@ -3,66 +3,67 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [....192.168.1.3][52888] -> [..82.58.216.115][38305] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [....192.168.1.3][52888] -> [..82.58.216.115][38305] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [.....2] [ip4][..tcp] [....192.168.1.3][52887] -> [....82.57.97.83][53137] [MIDSTREAM]
detected: [.....2] [ip4][..tcp] [....192.168.1.3][52887] -> [....82.57.97.83][53137] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [.....3] [ip4][..tcp] [....192.168.1.3][52895] -> [.83.216.184.241][51413] [MIDSTREAM]
detected: [.....3] [ip4][..tcp] [....192.168.1.3][52895] -> [.83.216.184.241][51413] [BitTorrent][Unknown][Download][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..tcp] [....192.168.1.3][52896] -> [....79.53.228.2][14627] [MIDSTREAM]
detected: [.....4] [ip4][..tcp] [....192.168.1.3][52896] -> [....79.53.228.2][14627] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [.....5] [ip4][..tcp] [....192.168.1.3][52894] -> [..120.62.33.241][39332] [MIDSTREAM]
detected: [.....5] [ip4][..tcp] [....192.168.1.3][52894] -> [..120.62.33.241][39332] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [.....6] [ip4][..tcp] [....192.168.1.3][52897] -> [...151.26.95.30][22673] [MIDSTREAM]
detected: [.....6] [ip4][..tcp] [....192.168.1.3][52897] -> [...151.26.95.30][22673] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [.....7] [ip4][..tcp] [....192.168.1.3][52893] -> [...79.55.129.22][12097] [MIDSTREAM]
detected: [.....7] [ip4][..tcp] [....192.168.1.3][52893] -> [...79.55.129.22][12097] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [.....8] [ip4][..tcp] [....192.168.1.3][52903] -> [..198.100.146.9][60163] [MIDSTREAM]
detected: [.....8] [ip4][..tcp] [....192.168.1.3][52903] -> [..198.100.146.9][60163] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [.....9] [ip4][..tcp] [....192.168.1.3][52902] -> [.190.103.195.56][46633] [MIDSTREAM]
detected: [.....9] [ip4][..tcp] [....192.168.1.3][52902] -> [.190.103.195.56][46633] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....10] [ip4][..tcp] [....192.168.1.3][52907] -> [..82.58.216.115][38305] [MIDSTREAM]
detected: [....10] [ip4][..tcp] [....192.168.1.3][52907] -> [..82.58.216.115][38305] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....11] [ip4][..tcp] [....192.168.1.3][52906] -> [....82.57.97.83][53137] [MIDSTREAM]
detected: [....11] [ip4][..tcp] [....192.168.1.3][52906] -> [....82.57.97.83][53137] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....12] [ip4][..tcp] [....192.168.1.3][52911] -> [...151.26.95.30][22673] [MIDSTREAM]
detected: [....12] [ip4][..tcp] [....192.168.1.3][52911] -> [...151.26.95.30][22673] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....13] [ip4][..tcp] [....192.168.1.3][52912] -> [.151.72.255.163][59928] [MIDSTREAM]
detected: [....13] [ip4][..tcp] [....192.168.1.3][52912] -> [.151.72.255.163][59928] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....14] [ip4][..tcp] [....192.168.1.3][52909] -> [....79.53.228.2][14627] [MIDSTREAM]
detected: [....14] [ip4][..tcp] [....192.168.1.3][52909] -> [....79.53.228.2][14627] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....15] [ip4][..tcp] [....192.168.1.3][52910] -> [..120.62.33.241][39332] [MIDSTREAM]
detected: [....15] [ip4][..tcp] [....192.168.1.3][52910] -> [..120.62.33.241][39332] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....16] [ip4][..tcp] [....192.168.1.3][52908] -> [...79.55.129.22][12097] [MIDSTREAM]
detected: [....16] [ip4][..tcp] [....192.168.1.3][52908] -> [...79.55.129.22][12097] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....17] [ip4][..tcp] [....192.168.1.3][52915] -> [..198.100.146.9][60163] [MIDSTREAM]
detected: [....17] [ip4][..tcp] [....192.168.1.3][52915] -> [..198.100.146.9][60163] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....18] [ip4][..tcp] [....192.168.1.3][52914] -> [.190.103.195.56][46633] [MIDSTREAM]
detected: [....18] [ip4][..tcp] [....192.168.1.3][52914] -> [.190.103.195.56][46633] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....19] [ip4][..tcp] [....192.168.1.3][52917] -> [..151.15.48.189][47001] [MIDSTREAM]
detected: [....19] [ip4][..tcp] [....192.168.1.3][52917] -> [..151.15.48.189][47001] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....20] [ip4][..tcp] [....192.168.1.3][52921] -> [..95.234.159.16][41205] [MIDSTREAM]
detected: [....20] [ip4][..tcp] [....192.168.1.3][52921] -> [..95.234.159.16][41205] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....21] [ip4][..tcp] [....192.168.1.3][52922] -> [..95.237.193.34][11321] [MIDSTREAM]
detected: [....21] [ip4][..tcp] [....192.168.1.3][52922] -> [..95.237.193.34][11321] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
analyse: [....17] [ip4][..tcp] [....192.168.1.3][52915] -> [..198.100.146.9][60163] [BitTorrent][Unknown][Download][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.012| 0.920| 0.247| 0.229| 52345.696| 4.400]
@@ -75,56 +76,59 @@
[ENTROPIES...: 6.0,6.1,4.9,5.5,4.8,3.9,5.4,4.3,7.8,4.5,7.7,4.6,7.6,4.7,4.6,7.4,4.6,2.9,7.6,4.9,7.7,7.7,7.8,7.8,3.1,7.7,7.8,7.8,7.8,3.1,7.8,7.9]
new: [....22] [ip4][..tcp] [....192.168.1.3][52927] -> [.83.216.184.241][51413] [MIDSTREAM]
detected: [....22] [ip4][..tcp] [....192.168.1.3][52927] -> [.83.216.184.241][51413] [BitTorrent][Unknown][Download][Acceptable]
+ RISK: Unidirectional Traffic
new: [....23] [ip4][..tcp] [....192.168.1.3][52926] -> [..93.65.249.100][31336] [MIDSTREAM]
detected: [....23] [ip4][..tcp] [....192.168.1.3][52926] -> [..93.65.249.100][31336] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....24] [ip4][..tcp] [....192.168.1.3][52925] -> [..93.65.227.100][19116] [MIDSTREAM]
detected: [....24] [ip4][..tcp] [....192.168.1.3][52925] -> [..93.65.227.100][19116] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
end: [.....2] [ip4][..tcp] [....192.168.1.3][52887] -> [....82.57.97.83][53137] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
end: [....11] [ip4][..tcp] [....192.168.1.3][52906] -> [....82.57.97.83][53137] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
end: [.....3] [ip4][..tcp] [....192.168.1.3][52895] -> [.83.216.184.241][51413] [BitTorrent][Unknown][Download][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....22] [ip4][..tcp] [....192.168.1.3][52927] -> [.83.216.184.241][51413] [BitTorrent][Unknown][Download][Acceptable]
+ RISK: Unidirectional Traffic
end: [....21] [ip4][..tcp] [....192.168.1.3][52922] -> [..95.237.193.34][11321] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
end: [....13] [ip4][..tcp] [....192.168.1.3][52912] -> [.151.72.255.163][59928] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....6] [ip4][..tcp] [....192.168.1.3][52897] -> [...151.26.95.30][22673] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....12] [ip4][..tcp] [....192.168.1.3][52911] -> [...151.26.95.30][22673] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
end: [....20] [ip4][..tcp] [....192.168.1.3][52921] -> [..95.234.159.16][41205] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
end: [....23] [ip4][..tcp] [....192.168.1.3][52926] -> [..93.65.249.100][31336] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....24] [ip4][..tcp] [....192.168.1.3][52925] -> [..93.65.227.100][19116] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
end: [.....9] [ip4][..tcp] [....192.168.1.3][52902] -> [.190.103.195.56][46633] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....18] [ip4][..tcp] [....192.168.1.3][52914] -> [.190.103.195.56][46633] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
end: [.....4] [ip4][..tcp] [....192.168.1.3][52896] -> [....79.53.228.2][14627] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....14] [ip4][..tcp] [....192.168.1.3][52909] -> [....79.53.228.2][14627] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....7] [ip4][..tcp] [....192.168.1.3][52893] -> [...79.55.129.22][12097] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....16] [ip4][..tcp] [....192.168.1.3][52908] -> [...79.55.129.22][12097] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
end: [....19] [ip4][..tcp] [....192.168.1.3][52917] -> [..151.15.48.189][47001] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....8] [ip4][..tcp] [....192.168.1.3][52903] -> [..198.100.146.9][60163] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....17] [ip4][..tcp] [....192.168.1.3][52915] -> [..198.100.146.9][60163] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
end: [.....1] [ip4][..tcp] [....192.168.1.3][52888] -> [..82.58.216.115][38305] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....10] [ip4][..tcp] [....192.168.1.3][52907] -> [..82.58.216.115][38305] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....5] [ip4][..tcp] [....192.168.1.3][52894] -> [..120.62.33.241][39332] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....15] [ip4][..tcp] [....192.168.1.3][52910] -> [..120.62.33.241][39332] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/default/bittorrent_tcp_miss.pcapng.out b/test/results/flow-info/default/bittorrent_tcp_miss.pcapng.out
new file mode 100644
index 000000000..c4a0e9f3d
--- /dev/null
+++ b/test/results/flow-info/default/bittorrent_tcp_miss.pcapng.out
@@ -0,0 +1,19 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..tcp] [.192.168.122.34][48987] -> [...178.71.206.1][.6881]
+ detected: [.....1] [ip4][..tcp] [.192.168.122.34][48987] -> [...178.71.206.1][.6881] [BitTorrent][Unknown][Download][Acceptable]
+ RISK: Known Proto on Non Std Port
+ analyse: [.....1] [ip4][..tcp] [.192.168.122.34][48987] -> [...178.71.206.1][.6881] [BitTorrent][Unknown][Download][Acceptable]
+ min| max| avg| stddev| variance| entropy
+ [IAT.........: 0.000| 0.065| 0.014| 0.017| 294.673| 3.800]
+ [PKTLEN......: 40.000| 1480.000| 782.200| 666.400| 444053.700| 4.400]
+ [BINS(c->s)..: 8,0,1,0,0,0,1,0,0,1,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+ [BINS(s->c)..: 1,1,0,0,0,0,0,1,0,0,0,1,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,15,0,0]
+ [DIRECTIONS..: 0,1,0,0,1,0,0,1,0,1,0,1,1,1,1,1,1,1,1,1,1,1,0,0,1,1,1,1,1,0,0,0]
+ [IATS(ms)....: 18.7,26.9,29.9,65.0,29.3,33.9,54.9,20.6,19.6,22.0,21.0,6.9,0.3,0.2,0.2,0.2,0.2,0.3,0.6,0.1,0.5,33.9,0.0,24.5,0.4,0.1,0.4,0.4,18.5,0.0,0.0]
+ [PKTLENS.....: 60,52,40,238,464,40,511,280,108,419,328,90,1480,1480,1480,1480,1480,1480,1480,1480,1480,1480,40,40,1480,1480,1480,1480,1480,40,40,40]
+ [ENTROPIES...: 4.7,5.1,4.8,7.1,7.5,4.9,7.5,7.2,6.2,5.6,5.1,4.1,7.8,7.9,7.9,7.9,7.9,7.9,7.9,7.9,7.9,7.9,4.9,4.8,7.9,7.9,7.9,7.9,7.9,4.9,4.9,4.9]
+ idle: [.....1] [ip4][..tcp] [.192.168.122.34][48987] -> [...178.71.206.1][.6881] [BitTorrent][Unknown][Download][Acceptable]
+ RISK: Known Proto on Non Std Port
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/bittorrent_utp.pcap.out b/test/results/flow-info/default/bittorrent_utp.pcap.out
index 1d60b693a..d4f3b0662 100644
--- a/test/results/flow-info/bittorrent_utp.pcap.out
+++ b/test/results/flow-info/default/bittorrent_utp.pcap.out
@@ -3,7 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..82.243.113.43][64969] -> [....192.168.1.5][40959]
detected: [.....1] [ip4][..udp] [..82.243.113.43][64969] -> [....192.168.1.5][40959] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
analyse: [.....1] [ip4][..udp] [..82.243.113.43][64969] -> [....192.168.1.5][40959] [BitTorrent][Unknown][Download][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.001| 5.430| 0.412| 1.202| 1445669.503| 2.400]
diff --git a/test/results/flow-info/bjnp.pcap.out b/test/results/flow-info/default/bjnp.pcap.out
index a711f01c9..3adb8cb11 100644
--- a/test/results/flow-info/bjnp.pcap.out
+++ b/test/results/flow-info/default/bjnp.pcap.out
@@ -3,32 +3,52 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [192.168.185.141][50087] -> [...192.168.1.17][.8612]
detected: [.....1] [ip4][..udp] [192.168.185.141][50087] -> [...192.168.1.17][.8612] [BJNP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..udp] [192.168.185.141][50089] -> [....192.168.1.1][.8612]
detected: [.....2] [ip4][..udp] [192.168.185.141][50089] -> [....192.168.1.1][.8612] [BJNP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..udp] [192.168.185.141][50089] -> [....192.168.1.2][.8612]
detected: [.....3] [ip4][..udp] [192.168.185.141][50089] -> [....192.168.1.2][.8612] [BJNP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..udp] [192.168.185.141][50089] -> [....192.168.1.3][.8612]
detected: [.....4] [ip4][..udp] [192.168.185.141][50089] -> [....192.168.1.3][.8612] [BJNP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][..udp] [192.168.185.141][50089] -> [....192.168.1.4][.8612]
detected: [.....5] [ip4][..udp] [192.168.185.141][50089] -> [....192.168.1.4][.8612] [BJNP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....6] [ip4][..udp] [192.168.185.141][50089] -> [....192.168.1.5][.8612]
detected: [.....6] [ip4][..udp] [192.168.185.141][50089] -> [....192.168.1.5][.8612] [BJNP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....7] [ip4][..udp] [192.168.185.141][50089] -> [....192.168.1.6][.8612]
detected: [.....7] [ip4][..udp] [192.168.185.141][50089] -> [....192.168.1.6][.8612] [BJNP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....8] [ip4][..udp] [192.168.185.141][50089] -> [....192.168.1.7][.8612]
detected: [.....8] [ip4][..udp] [192.168.185.141][50089] -> [....192.168.1.7][.8612] [BJNP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....9] [ip4][..udp] [192.168.185.141][50089] -> [....192.168.1.8][.8612]
detected: [.....9] [ip4][..udp] [192.168.185.141][50089] -> [....192.168.1.8][.8612] [BJNP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
new: [....10] [ip4][..udp] [192.168.185.141][50089] -> [....192.168.1.9][.8612]
detected: [....10] [ip4][..udp] [192.168.185.141][50089] -> [....192.168.1.9][.8612] [BJNP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [192.168.185.141][50087] -> [...192.168.1.17][.8612] [BJNP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....10] [ip4][..udp] [192.168.185.141][50089] -> [....192.168.1.9][.8612] [BJNP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....9] [ip4][..udp] [192.168.185.141][50089] -> [....192.168.1.8][.8612] [BJNP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....8] [ip4][..udp] [192.168.185.141][50089] -> [....192.168.1.7][.8612] [BJNP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....7] [ip4][..udp] [192.168.185.141][50089] -> [....192.168.1.6][.8612] [BJNP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][..udp] [192.168.185.141][50089] -> [....192.168.1.5][.8612] [BJNP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....5] [ip4][..udp] [192.168.185.141][50089] -> [....192.168.1.4][.8612] [BJNP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..udp] [192.168.185.141][50089] -> [....192.168.1.3][.8612] [BJNP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [192.168.185.141][50089] -> [....192.168.1.2][.8612] [BJNP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [192.168.185.141][50089] -> [....192.168.1.1][.8612] [BJNP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/bot.pcap.out b/test/results/flow-info/default/bot.pcap.out
index 8d34e93fc..e92fba3b5 100644
--- a/test/results/flow-info/bot.pcap.out
+++ b/test/results/flow-info/default/bot.pcap.out
@@ -3,6 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [...40.77.167.36][64768] -> [...89.31.72.220][...80]
detected: [.....1] [ip4][..tcp] [...40.77.167.36][64768] -> [...89.31.72.220][...80] [HTTP][Azure][Web][Acceptable][atlanteditorino.it]
+ RISK: Crawler/Bot
analyse: [.....1] [ip4][..tcp] [...40.77.167.36][64768] -> [...89.31.72.220][...80] [HTTP][Azure][Web][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.114| 0.014| 0.036| 1309.010| 2.200]
@@ -14,4 +15,5 @@
[PKTLENS.....: 48,48,46,356,46,1480,1480,1480,1480,1480,1480,1480,1480,1480,1480,46,46,1480,1480,1480,1480,1480,1480,1480,1480,1480,1480,1480,1480,46,46,1480]
[ENTROPIES...: 4.7,4.8,4.7,5.6,4.7,6.4,7.5,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.1,4.7,4.6,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.4,5.9,7.9,5.5,4.9,4.7,4.7,5.1]
end: [.....1] [ip4][..tcp] [...40.77.167.36][64768] -> [...89.31.72.220][...80] [HTTP][Azure][Web][Acceptable]
+ RISK: Crawler/Bot
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/default/bt-dns.pcap.out b/test/results/flow-info/default/bt-dns.pcap.out
new file mode 100644
index 000000000..8ceb5b6be
--- /dev/null
+++ b/test/results/flow-info/default/bt-dns.pcap.out
@@ -0,0 +1,7 @@
+ DAEMON-EVENT: init
+ new: [.....1] [ip4][..udp] [......10.0.2.15][59751] -> [.......10.0.2.3][...53]
+ detected: [.....1] [ip4][..udp] [......10.0.2.15][59751] -> [.......10.0.2.3][...53] [DNS.BitTorrent][Unknown][Network][Acceptable][utorrent.com]
+ RISK: Unidirectional Traffic
+ detection-update: [.....1] [ip4][..udp] [......10.0.2.15][59751] -> [.......10.0.2.3][...53] [DNS.BitTorrent][Unknown][Network][Acceptable][utorrent.com]
+ idle: [.....1] [ip4][..udp] [......10.0.2.15][59751] -> [.......10.0.2.3][...53] [DNS.BitTorrent][Unknown][Network][Acceptable]
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/default/bt-http.pcapng.out b/test/results/flow-info/default/bt-http.pcapng.out
new file mode 100644
index 000000000..992632ee1
--- /dev/null
+++ b/test/results/flow-info/default/bt-http.pcapng.out
@@ -0,0 +1,7 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..tcp] [..192.168.1.128][46882] -> [.176.31.225.118][...80]
+ detected: [.....1] [ip4][..tcp] [..192.168.1.128][46882] -> [.176.31.225.118][...80] [HTTP.BitTorrent][Unknown][Download][Acceptable][tracker.trackerfix.com]
+ end: [.....1] [ip4][..tcp] [..192.168.1.128][46882] -> [.176.31.225.118][...80] [HTTP.BitTorrent][Unknown][Download][Acceptable]
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/bt_search.pcap.out b/test/results/flow-info/default/bt_search.pcap.out
index ce44bb95e..ce44bb95e 100644
--- a/test/results/flow-info/bt_search.pcap.out
+++ b/test/results/flow-info/default/bt_search.pcap.out
diff --git a/test/results/flow-info/cachefly.pcapng.out b/test/results/flow-info/default/cachefly.pcapng.out
index 60bc5684e..60bc5684e 100644
--- a/test/results/flow-info/cachefly.pcapng.out
+++ b/test/results/flow-info/default/cachefly.pcapng.out
diff --git a/test/results/flow-info/capwap.pcap.out b/test/results/flow-info/default/capwap.pcap.out
index 8d56bac80..189988f2c 100644
--- a/test/results/flow-info/capwap.pcap.out
+++ b/test/results/flow-info/default/capwap.pcap.out
@@ -3,6 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [...192.168.10.9][.5246] -> [..192.168.10.10][12379]
detected: [.....1] [ip4][..udp] [...192.168.10.9][.5246] -> [..192.168.10.10][12379] [CAPWAP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..udp] [..192.168.10.10][49259] -> [255.255.255.255][...53]
detected: [.....2] [ip4][..udp] [..192.168.10.10][49259] -> [255.255.255.255][...53] [DNS][Unknown][Network][Acceptable][cisco-capwap-controller]
ERROR-EVENT: Unknown packet type [1/16]
@@ -15,7 +16,9 @@
detected: [.....3] [ip4][..udp] [..192.168.10.10][12380] -> [255.255.255.255][.5246] [CAPWAP][Unknown][Network][Acceptable]
new: [.....4] [ip4][..udp] [...192.168.10.9][.5246] -> [..192.168.10.10][12380]
detected: [.....4] [ip4][..udp] [...192.168.10.9][.5246] -> [..192.168.10.10][12380] [CAPWAP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [...192.168.10.9][.5246] -> [..192.168.10.10][12379] [CAPWAP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
analyse: [.....4] [ip4][..udp] [...192.168.10.9][.5246] -> [..192.168.10.10][12380] [CAPWAP][Unknown][Network][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 10.093| 0.703| 2.456| 6029719.372| 1.600]
@@ -28,6 +31,7 @@
[ENTROPIES...: 3.9,3.9,4.8,4.6,5.4,6.6,6.9,6.4,6.9,6.8,6.4,7.1,7.1,5.5,7.9,7.9,7.9,7.9,7.8,7.8,7.5,6.3,5.8,6.0,6.3,6.0,5.8,7.8,6.3,5.8,6.1,7.7]
new: [.....5] [ip4][..udp] [..192.168.10.10][12380] -> [...192.168.10.9][.5247]
detected: [.....5] [ip4][..udp] [..192.168.10.10][12380] -> [...192.168.10.9][.5247] [CAPWAP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....2] [ip4][..udp] [..192.168.10.10][49259] -> [255.255.255.255][...53]
ERROR-EVENT: Unknown packet type [1/16]
analyse: [.....5] [ip4][..udp] [..192.168.10.10][12380] -> [...192.168.10.9][.5247] [CAPWAP][Unknown][Network][Acceptable]
@@ -42,22 +46,33 @@
[ENTROPIES...: 4.3,4.8,5.2,4.7,4.9,4.8,4.4,5.0,5.1,4.6,4.4,4.4,4.8,5.0,4.6,4.9,4.9,5.0,4.6,4.9,4.4,4.9,4.8,5.1,4.9,4.8,5.0,4.7,4.3,4.9,4.9,4.7]
update: [.....3] [ip4][..udp] [..192.168.10.10][12380] -> [255.255.255.255][.5246] [CAPWAP][Unknown][Network][Acceptable]
update: [.....1] [ip4][..udp] [...192.168.10.9][.5246] -> [..192.168.10.10][12379] [CAPWAP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....4] [ip4][..udp] [...192.168.10.9][.5246] -> [..192.168.10.10][12380] [CAPWAP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....5] [ip4][..udp] [..192.168.10.10][12380] -> [...192.168.10.9][.5247] [CAPWAP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....2] [ip4][..udp] [..192.168.10.10][49259] -> [255.255.255.255][...53]
ERROR-EVENT: Unknown packet type [1/16]
update: [.....3] [ip4][..udp] [..192.168.10.10][12380] -> [255.255.255.255][.5246] [CAPWAP][Unknown][Network][Acceptable]
update: [.....1] [ip4][..udp] [...192.168.10.9][.5246] -> [..192.168.10.10][12379] [CAPWAP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....4] [ip4][..udp] [...192.168.10.9][.5246] -> [..192.168.10.10][12380] [CAPWAP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....5] [ip4][..udp] [..192.168.10.10][12380] -> [...192.168.10.9][.5247] [CAPWAP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....2] [ip4][..udp] [..192.168.10.10][49259] -> [255.255.255.255][...53]
ERROR-EVENT: Unknown packet type [1/16]
idle: [.....1] [ip4][..udp] [...192.168.10.9][.5246] -> [..192.168.10.10][12379] [CAPWAP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [..192.168.10.10][49259] -> [255.255.255.255][...53]
update: [.....3] [ip4][..udp] [..192.168.10.10][12380] -> [255.255.255.255][.5246] [CAPWAP][Unknown][Network][Acceptable]
update: [.....4] [ip4][..udp] [...192.168.10.9][.5246] -> [..192.168.10.10][12380] [CAPWAP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....5] [ip4][..udp] [..192.168.10.10][12380] -> [...192.168.10.9][.5247] [CAPWAP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [..192.168.10.10][12380] -> [255.255.255.255][.5246] [CAPWAP][Unknown][Network][Acceptable]
idle: [.....4] [ip4][..udp] [...192.168.10.9][.5246] -> [..192.168.10.10][12380] [CAPWAP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....5] [ip4][..udp] [..192.168.10.10][12380] -> [...192.168.10.9][.5247] [CAPWAP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/default/capwap_data.pcapng.out b/test/results/flow-info/default/capwap_data.pcapng.out
new file mode 100644
index 000000000..5c6648a10
--- /dev/null
+++ b/test/results/flow-info/default/capwap_data.pcapng.out
@@ -0,0 +1,18 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ ERROR-EVENT: Unknown packet type [1/16]
+ ERROR-EVENT: Unknown packet type [2/16]
+ ERROR-EVENT: Unknown packet type [3/16]
+ ERROR-EVENT: Unknown packet type [4/16]
+ ERROR-EVENT: Unknown packet type [5/16]
+ ERROR-EVENT: Unknown packet type [6/16]
+ ERROR-EVENT: Unknown packet type [7/16]
+ ERROR-EVENT: Unknown packet type [8/16]
+ ERROR-EVENT: Unknown packet type [9/16]
+ ERROR-EVENT: Unknown packet type [10/16]
+ ERROR-EVENT: Unknown packet type [11/16]
+ ERROR-EVENT: Unknown packet type [12/16]
+ ERROR-EVENT: Unknown packet type [13/16]
+ ERROR-EVENT: Unknown packet type [14/16]
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/cassandra.pcap.out b/test/results/flow-info/default/cassandra.pcap.out
index 48d881b11..48d881b11 100644
--- a/test/results/flow-info/cassandra.pcap.out
+++ b/test/results/flow-info/default/cassandra.pcap.out
diff --git a/test/results/flow-info/check_mk_new.pcap.out b/test/results/flow-info/default/check_mk_new.pcap.out
index 1fa1f4b91..1fa1f4b91 100644
--- a/test/results/flow-info/check_mk_new.pcap.out
+++ b/test/results/flow-info/default/check_mk_new.pcap.out
diff --git a/test/results/flow-info/default/chrome.pcap.out b/test/results/flow-info/default/chrome.pcap.out
new file mode 100644
index 000000000..6e7d531ef
--- /dev/null
+++ b/test/results/flow-info/default/chrome.pcap.out
@@ -0,0 +1,28 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..tcp] [..192.168.1.178][64393] -> [...146.48.58.18][..443]
+ detected: [.....1] [ip4][..tcp] [..192.168.1.178][64393] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ detection-update: [.....1] [ip4][..tcp] [..192.168.1.178][64393] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ new: [.....2] [ip4][..tcp] [..192.168.1.178][64394] -> [...146.48.58.18][..443]
+ detected: [.....2] [ip4][..tcp] [..192.168.1.178][64394] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ detection-update: [.....2] [ip4][..tcp] [..192.168.1.178][64394] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ new: [.....3] [ip4][..tcp] [..192.168.1.178][64408] -> [...146.48.58.18][..443]
+ new: [.....4] [ip4][..tcp] [..192.168.1.178][64409] -> [...146.48.58.18][..443]
+ new: [.....5] [ip4][..tcp] [..192.168.1.178][64410] -> [...146.48.58.18][..443]
+ new: [.....6] [ip4][..tcp] [..192.168.1.178][64411] -> [...146.48.58.18][..443]
+ detected: [.....4] [ip4][..tcp] [..192.168.1.178][64409] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ detected: [.....3] [ip4][..tcp] [..192.168.1.178][64408] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ detected: [.....5] [ip4][..tcp] [..192.168.1.178][64410] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ detected: [.....6] [ip4][..tcp] [..192.168.1.178][64411] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ detection-update: [.....4] [ip4][..tcp] [..192.168.1.178][64409] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ detection-update: [.....3] [ip4][..tcp] [..192.168.1.178][64408] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ detection-update: [.....6] [ip4][..tcp] [..192.168.1.178][64411] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ detection-update: [.....5] [ip4][..tcp] [..192.168.1.178][64410] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ idle: [.....1] [ip4][..tcp] [..192.168.1.178][64393] -> [...146.48.58.18][..443]
+ idle: [.....2] [ip4][..tcp] [..192.168.1.178][64394] -> [...146.48.58.18][..443]
+ idle: [.....3] [ip4][..tcp] [..192.168.1.178][64408] -> [...146.48.58.18][..443]
+ idle: [.....4] [ip4][..tcp] [..192.168.1.178][64409] -> [...146.48.58.18][..443]
+ idle: [.....5] [ip4][..tcp] [..192.168.1.178][64410] -> [...146.48.58.18][..443]
+ idle: [.....6] [ip4][..tcp] [..192.168.1.178][64411] -> [...146.48.58.18][..443]
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/citrix.pcap.out b/test/results/flow-info/default/citrix.pcap.out
index 532c45f9e..532c45f9e 100644
--- a/test/results/flow-info/citrix.pcap.out
+++ b/test/results/flow-info/default/citrix.pcap.out
diff --git a/test/results/flow-info/cloudflare-warp.pcap.out b/test/results/flow-info/default/cloudflare-warp.pcap.out
index 4b5c31b33..6178405f4 100644
--- a/test/results/flow-info/cloudflare-warp.pcap.out
+++ b/test/results/flow-info/default/cloudflare-warp.pcap.out
@@ -19,11 +19,12 @@
detected: [.....7] [ip4][..tcp] [.......10.8.0.1][51296] -> [142.250.183.163][..443] [TLS.GoogleServices][Google][Web][Acceptable][crashlyticsreports-pa.googleapis.com]
detection-update: [.....6] [ip4][..tcp] [.......10.8.0.1][45610] -> [..104.18.47.234][..443] [TLS.CloudflareWarp][Cloudflare][VPN][Acceptable][api.cloudflareclient.com]
new: [.....8] [ip4][..tcp] [.......10.8.0.1][43600] -> [172.217.194.188][.5228]
- not-detected: [.....8] [ip4][..tcp] [.......10.8.0.1][43600] -> [172.217.194.188][.5228] [Unknown][Google][Unrated]
+ guessed: [.....8] [ip4][..tcp] [.......10.8.0.1][43600] -> [172.217.194.188][.5228] [Google][Google][Web][Acceptable]
idle: [.....8] [ip4][..tcp] [.......10.8.0.1][43600] -> [172.217.194.188][.5228]
guessed: [.....4] [ip4][..tcp] [..10.158.134.93][40454] -> [..216.58.196.68][..443] [TLS][Google][Web][Safe]
end: [.....4] [ip4][..tcp] [..10.158.134.93][40454] -> [..216.58.196.68][..443]
guessed: [.....1] [ip4][..tcp] [..10.158.134.93][55512] -> [.142.251.42.106][..443] [TLS][Google][Web][Safe]
+ RISK: Unidirectional Traffic
end: [.....1] [ip4][..tcp] [..10.158.134.93][55512] -> [.142.251.42.106][..443]
idle: [.....2] [ip4][..tcp] [.......10.8.0.1][42344] -> [..159.138.85.48][.5223] [Jabber][Unknown][Web][Acceptable]
idle: [.....7] [ip4][..tcp] [.......10.8.0.1][51296] -> [142.250.183.163][..443]
diff --git a/test/results/flow-info/coap_mqtt.pcap.out b/test/results/flow-info/default/coap_mqtt.pcap.out
index 18f71a3ca..569ff5342 100644
--- a/test/results/flow-info/coap_mqtt.pcap.out
+++ b/test/results/flow-info/default/coap_mqtt.pcap.out
@@ -3,48 +3,67 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip6][..udp] [..2001:da8:215:1171:a10b:cb48:8f83:57f6][61043] -> [....................2001:620:8:35d9::10][.5683]
detected: [.....1] [ip6][..udp] [..2001:da8:215:1171:a10b:cb48:8f83:57f6][61043] -> [....................2001:620:8:35d9::10][.5683] [COAP][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
new: [.....2] [ip6][..udp] [..2001:da8:215:1171:a10b:cb48:8f83:57f6][61044] -> [....................2001:620:8:35d9::10][.5683]
detected: [.....2] [ip6][..udp] [..2001:da8:215:1171:a10b:cb48:8f83:57f6][61044] -> [....................2001:620:8:35d9::10][.5683] [COAP][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
new: [.....3] [ip6][..udp] [..2001:da8:215:1171:a10b:cb48:8f83:57f6][61045] -> [....................2001:620:8:35d9::10][.5683]
detected: [.....3] [ip6][..udp] [..2001:da8:215:1171:a10b:cb48:8f83:57f6][61045] -> [....................2001:620:8:35d9::10][.5683] [COAP][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
new: [.....4] [ip6][..udp] [..2001:da8:215:1171:a10b:cb48:8f83:57f6][61046] -> [....................2001:620:8:35d9::10][.5683]
detected: [.....4] [ip6][..udp] [..2001:da8:215:1171:a10b:cb48:8f83:57f6][61046] -> [....................2001:620:8:35d9::10][.5683] [COAP][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
new: [.....5] [ip6][..udp] [..2001:da8:215:1171:a10b:cb48:8f83:57f6][61047] -> [....................2001:620:8:35d9::10][.5683]
detected: [.....5] [ip6][..udp] [..2001:da8:215:1171:a10b:cb48:8f83:57f6][61047] -> [....................2001:620:8:35d9::10][.5683] [COAP][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 5 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 5 / 5|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....6] [ip6][..udp] [................................bbbb::1][33499] -> [................................bbbb::3][.5683]
detected: [.....6] [ip6][..udp] [................................bbbb::1][33499] -> [................................bbbb::3][.5683] [COAP][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip6][..udp] [..2001:da8:215:1171:a10b:cb48:8f83:57f6][61043] -> [....................2001:620:8:35d9::10][.5683] [COAP][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip6][..udp] [..2001:da8:215:1171:a10b:cb48:8f83:57f6][61044] -> [....................2001:620:8:35d9::10][.5683] [COAP][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip6][..udp] [..2001:da8:215:1171:a10b:cb48:8f83:57f6][61045] -> [....................2001:620:8:35d9::10][.5683] [COAP][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip6][..udp] [..2001:da8:215:1171:a10b:cb48:8f83:57f6][61046] -> [....................2001:620:8:35d9::10][.5683] [COAP][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
idle: [.....5] [ip6][..udp] [..2001:da8:215:1171:a10b:cb48:8f83:57f6][61047] -> [....................2001:620:8:35d9::10][.5683] [COAP][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
new: [.....7] [ip6][..udp] [................................bbbb::1][50250] -> [................................bbbb::3][.5683]
detected: [.....7] [ip6][..udp] [................................bbbb::1][50250] -> [................................bbbb::3][.5683] [COAP][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
new: [.....8] [ip6][..udp] [................................bbbb::1][46819] -> [................................bbbb::3][.5683]
detected: [.....8] [ip6][..udp] [................................bbbb::1][46819] -> [................................bbbb::3][.5683] [COAP][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip6][..udp] [................................bbbb::1][33499] -> [................................bbbb::3][.5683] [COAP][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
update: [.....7] [ip6][..udp] [................................bbbb::1][50250] -> [................................bbbb::3][.5683] [COAP][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
update: [.....8] [ip6][..udp] [................................bbbb::1][46819] -> [................................bbbb::3][.5683] [COAP][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 19 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 8|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 2]
new: [.....9] [ip4][..tcp] [...192.168.56.1][53522] -> [.192.168.56.101][17501] [MIDSTREAM]
detected: [.....9] [ip4][..tcp] [...192.168.56.1][53522] -> [.192.168.56.101][17501] [MQTT][Unknown][RPC][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....7] [ip6][..udp] [................................bbbb::1][50250] -> [................................bbbb::3][.5683] [COAP][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
idle: [.....8] [ip6][..udp] [................................bbbb::1][46819] -> [................................bbbb::3][.5683] [COAP][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
new: [....10] [ip4][..tcp] [...192.168.56.1][53523] -> [.192.168.56.101][17501] [MIDSTREAM]
detected: [....10] [ip4][..tcp] [...192.168.56.1][53523] -> [.192.168.56.101][17501] [MQTT][Unknown][RPC][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....11] [ip4][..tcp] [...192.168.56.1][53528] -> [.192.168.56.101][17501]
detected: [....11] [ip4][..tcp] [...192.168.56.1][53528] -> [.192.168.56.101][17501] [MQTT][Unknown][RPC][Acceptable]
RISK: Known Proto on Non Std Port
new: [....12] [ip4][..udp] [...192.168.56.1][50311] -> [.192.168.56.101][17500]
detected: [....12] [ip4][..udp] [...192.168.56.1][50311] -> [.192.168.56.101][17500] [Dropbox][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
new: [....13] [ip4][..tcp] [.192.168.56.101][17501] -> [...192.168.56.1][53524] [MIDSTREAM]
detected: [....13] [ip4][..tcp] [.192.168.56.101][17501] -> [...192.168.56.1][53524] [MQTT][Unknown][RPC][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
analyse: [....11] [ip4][..tcp] [...192.168.56.1][53528] -> [.192.168.56.101][17501] [MQTT][Unknown][RPC][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 4.439| 0.304| 1.061| 1125807.423| 1.600]
@@ -87,6 +106,7 @@
[ENTROPIES...: 5.6,4.6,4.6,5.5,4.6,4.7,5.6,4.3,4.6,4.6,5.5,4.5,4.6,5.6,4.3,4.6,4.7,5.5,4.6,4.6,5.6,4.4,4.7,4.6,5.5,4.7,4.8,5.6,4.4,4.6,4.7,5.5]
new: [....14] [ip4][..udp] [...192.168.56.1][50318] -> [.192.168.56.101][17500]
detected: [....14] [ip4][..udp] [...192.168.56.1][50318] -> [.192.168.56.101][17500] [Dropbox][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
analyse: [....12] [ip4][..udp] [...192.168.56.1][50311] -> [.192.168.56.101][17500] [Dropbox][Unknown][Cloud][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.002| 0.118| 0.106| 0.019| 373.406| 4.900]
@@ -99,6 +119,7 @@
[ENTROPIES...: 5.5,5.0,5.5,5.1,5.5,5.0,5.7,5.2,5.6,5.1,5.5,5.0,5.6,5.0,5.5,5.0,5.6,5.1,5.5,5.0,5.5,5.0,5.5,5.0,5.5,5.1,5.5,5.1,5.7,5.3,5.6,5.0]
new: [....15] [ip4][..udp] [...192.168.56.1][50312] -> [.192.168.56.101][17500]
detected: [....15] [ip4][..udp] [...192.168.56.1][50312] -> [.192.168.56.101][17500] [Dropbox][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
analyse: [....14] [ip4][..udp] [...192.168.56.1][50318] -> [.192.168.56.101][17500] [Dropbox][Unknown][Cloud][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.002| 0.128| 0.112| 0.021| 434.412| 4.900]
@@ -111,6 +132,7 @@
[ENTROPIES...: 5.5,5.0,5.6,5.1,5.6,5.0,5.7,5.2,5.5,5.0,5.5,5.0,5.6,5.1,5.6,5.1,5.5,5.1,5.6,5.1,5.6,5.1,5.5,4.9,5.5,5.1,5.5,5.0,5.5,5.1,5.7,5.2]
new: [....16] [ip4][..udp] [...192.168.56.1][50319] -> [.192.168.56.101][17500]
detected: [....16] [ip4][..udp] [...192.168.56.1][50319] -> [.192.168.56.101][17500] [Dropbox][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
analyse: [....15] [ip4][..udp] [...192.168.56.1][50312] -> [.192.168.56.101][17500] [Dropbox][Unknown][Cloud][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.001| 0.131| 0.117| 0.022| 500.202| 4.900]
@@ -132,15 +154,19 @@
[PKTLENS.....: 127,50,128,51,123,46,123,46,126,49,123,46,122,45,127,50,125,48,129,52,126,49,124,47,125,48,129,52,124,47,128,51]
[ENTROPIES...: 5.6,5.1,5.6,5.1,5.5,5.1,5.5,5.1,5.6,5.1,5.5,5.1,5.5,5.0,5.6,5.2,5.6,5.1,5.7,5.3,5.6,5.1,5.6,5.1,5.5,5.1,5.6,5.2,5.5,5.0,5.6,5.2]
idle: [....12] [ip4][..udp] [...192.168.56.1][50311] -> [.192.168.56.101][17500] [Dropbox][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....15] [ip4][..udp] [...192.168.56.1][50312] -> [.192.168.56.101][17500] [Dropbox][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....14] [ip4][..udp] [...192.168.56.1][50318] -> [.192.168.56.101][17500] [Dropbox][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....16] [ip4][..udp] [...192.168.56.1][50319] -> [.192.168.56.101][17500] [Dropbox][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....9] [ip4][..tcp] [...192.168.56.1][53522] -> [.192.168.56.101][17501] [MQTT][Unknown][RPC][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....10] [ip4][..tcp] [...192.168.56.1][53523] -> [.192.168.56.101][17501] [MQTT][Unknown][RPC][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....13] [ip4][..tcp] [.192.168.56.101][17501] -> [...192.168.56.1][53524] [MQTT][Unknown][RPC][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....11] [ip4][..tcp] [...192.168.56.1][53528] -> [.192.168.56.101][17501] [MQTT][Unknown][RPC][Acceptable]
RISK: Known Proto on Non Std Port
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/collectd.pcap.out b/test/results/flow-info/default/collectd.pcap.out
index 9c766565a..9c766565a 100644
--- a/test/results/flow-info/collectd.pcap.out
+++ b/test/results/flow-info/default/collectd.pcap.out
diff --git a/test/results/flow-info/corba.pcap.out b/test/results/flow-info/default/corba.pcap.out
index e3d830343..e3d830343 100644
--- a/test/results/flow-info/corba.pcap.out
+++ b/test/results/flow-info/default/corba.pcap.out
diff --git a/test/results/flow-info/cpha.pcap.out b/test/results/flow-info/default/cpha.pcap.out
index 02dd55f00..02dd55f00 100644
--- a/test/results/flow-info/cpha.pcap.out
+++ b/test/results/flow-info/default/cpha.pcap.out
diff --git a/test/results/flow-info/default/crawler_false_positive.pcapng.out b/test/results/flow-info/default/crawler_false_positive.pcapng.out
new file mode 100644
index 000000000..e4ea2b812
--- /dev/null
+++ b/test/results/flow-info/default/crawler_false_positive.pcapng.out
@@ -0,0 +1,9 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..tcp] [.192.168.12.156][38291] -> [..93.184.220.29][...80]
+ detected: [.....1] [ip4][..tcp] [.192.168.12.156][38291] -> [..93.184.220.29][...80] [HTTP][Edgecast][Web][Acceptable][]
+ RISK: HTTP Susp User-Agent
+ detection-update: [.....1] [ip4][..tcp] [.192.168.12.156][38291] -> [..93.184.220.29][...80] [HTTP.OCSP][Edgecast][Web][Safe][ocsp.digicert.com]
+ end: [.....1] [ip4][..tcp] [.192.168.12.156][38291] -> [..93.184.220.29][...80] [HTTP.OCSP][Edgecast][Web][Safe]
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/crynet.pcap.out b/test/results/flow-info/default/crynet.pcap.out
index c03cdbe56..28e0863bc 100644
--- a/test/results/flow-info/crynet.pcap.out
+++ b/test/results/flow-info/default/crynet.pcap.out
@@ -3,20 +3,28 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..192.168.2.100][61837] -> [..78.159.118.97][25383]
detected: [.....1] [ip4][..udp] [..192.168.2.100][61837] -> [..78.159.118.97][25383] [CryNetwork][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 15 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....2] [ip4][..udp] [..192.168.2.100][56333] -> [...37.58.56.245][20250]
detected: [.....2] [ip4][..udp] [..192.168.2.100][56333] -> [...37.58.56.245][20250] [CryNetwork][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [..192.168.2.100][61837] -> [..78.159.118.97][25383] [CryNetwork][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 30 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 2|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....3] [ip4][..udp] [..192.168.2.100][56970] -> [..84.16.230.222][28665]
detected: [.....3] [ip4][..udp] [..192.168.2.100][56970] -> [..84.16.230.222][28665] [CryNetwork][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [..192.168.2.100][56333] -> [...37.58.56.245][20250] [CryNetwork][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 45 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 3|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....4] [ip4][..udp] [..192.168.2.100][55645] -> [...78.159.98.94][28375]
detected: [.....4] [ip4][..udp] [..192.168.2.100][55645] -> [...78.159.98.94][28375] [CryNetwork][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..udp] [..192.168.2.100][55645] -> [...78.159.98.94][28375] [CryNetwork][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [..192.168.2.100][56970] -> [..84.16.230.222][28665] [CryNetwork][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/default/custom_rules_same-ip_multiple_ports.pcapng.out b/test/results/flow-info/default/custom_rules_same-ip_multiple_ports.pcapng.out
new file mode 100644
index 000000000..60c0f1c51
--- /dev/null
+++ b/test/results/flow-info/default/custom_rules_same-ip_multiple_ports.pcapng.out
@@ -0,0 +1,12 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..tcp] [..192.168.1.245][56866] -> [........3.3.3.3][..443]
+ new: [.....2] [ip4][..tcp] [..192.168.1.245][59682] -> [........3.3.3.3][..444]
+ guessed: [.....1] [ip4][..tcp] [..192.168.1.245][56866] -> [........3.3.3.3][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
+ idle: [.....1] [ip4][..tcp] [..192.168.1.245][56866] -> [........3.3.3.3][..443]
+ not-detected: [.....2] [ip4][..tcp] [..192.168.1.245][59682] -> [........3.3.3.3][..444] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [.....2] [ip4][..tcp] [..192.168.1.245][59682] -> [........3.3.3.3][..444]
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/dazn.pcapng.out b/test/results/flow-info/default/dazn.pcapng.out
index 381d39f52..381d39f52 100644
--- a/test/results/flow-info/dazn.pcapng.out
+++ b/test/results/flow-info/default/dazn.pcapng.out
diff --git a/test/results/flow-info/dcerpc.pcap.out b/test/results/flow-info/default/dcerpc.pcap.out
index 42f948870..2b13cee00 100644
--- a/test/results/flow-info/dcerpc.pcap.out
+++ b/test/results/flow-info/default/dcerpc.pcap.out
@@ -3,14 +3,22 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [...192.168.1.11][49155] -> [...192.168.1.20][34964]
detected: [.....1] [ip4][..udp] [...192.168.1.11][49155] -> [...192.168.1.20][34964] [RPC][Unknown][RPC][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..udp] [...192.168.1.20][49161] -> [...192.168.1.11][49155]
detected: [.....2] [ip4][..udp] [...192.168.1.20][49161] -> [...192.168.1.11][49155] [RPC][Unknown][RPC][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..udp] [...192.168.1.20][49162] -> [...192.168.1.11][34964]
detected: [.....3] [ip4][..udp] [...192.168.1.20][49162] -> [...192.168.1.11][34964] [RPC][Unknown][RPC][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..udp] [...192.168.1.11][49154] -> [...192.168.1.20][49162]
detected: [.....4] [ip4][..udp] [...192.168.1.11][49154] -> [...192.168.1.20][49162] [RPC][Unknown][RPC][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..udp] [...192.168.1.11][49154] -> [...192.168.1.20][49162] [RPC][Unknown][RPC][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [...192.168.1.20][49161] -> [...192.168.1.11][49155] [RPC][Unknown][RPC][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [...192.168.1.11][49155] -> [...192.168.1.20][34964] [RPC][Unknown][RPC][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [...192.168.1.20][49162] -> [...192.168.1.11][34964] [RPC][Unknown][RPC][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/dhcp-fuzz.pcapng.out b/test/results/flow-info/default/dhcp-fuzz.pcapng.out
index 58eff89e7..58eff89e7 100644
--- a/test/results/flow-info/dhcp-fuzz.pcapng.out
+++ b/test/results/flow-info/default/dhcp-fuzz.pcapng.out
diff --git a/test/results/flow-info/diameter.pcap.out b/test/results/flow-info/default/diameter.pcap.out
index a84f3eb15..98d38fe25 100644
--- a/test/results/flow-info/diameter.pcap.out
+++ b/test/results/flow-info/default/diameter.pcap.out
@@ -3,5 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [...10.201.9.245][50957] -> [....10.201.9.11][.3868] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [...10.201.9.245][50957] -> [....10.201.9.11][.3868] [Diameter][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..tcp] [...10.201.9.245][50957] -> [....10.201.9.11][.3868] [Diameter][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/discord.pcap.out b/test/results/flow-info/default/discord.pcap.out
index 8bd3fde87..faff579ed 100644
--- a/test/results/flow-info/discord.pcap.out
+++ b/test/results/flow-info/default/discord.pcap.out
@@ -8,27 +8,39 @@
DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 2|updates: 0]
new: [.....2] [ip4][..udp] [..192.168.2.100][56271] -> [..66.22.244.154][50004]
detected: [.....2] [ip4][..udp] [..192.168.2.100][56271] -> [..66.22.244.154][50004] [Discord][Discord][Collaborative][Fun]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..udp] [..192.168.2.100][56271] -> [..66.22.244.139][50004]
detected: [.....3] [ip4][..udp] [..192.168.2.100][56271] -> [..66.22.244.139][50004] [Discord][Discord][Collaborative][Fun]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..udp] [..192.168.2.100][56271] -> [..66.22.237.138][50004]
detected: [.....4] [ip4][..udp] [..192.168.2.100][56271] -> [..66.22.237.138][50004] [Discord][Discord][Collaborative][Fun]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][..udp] [..192.168.2.100][56271] -> [....66.22.241.7][50004]
detected: [.....5] [ip4][..udp] [..192.168.2.100][56271] -> [....66.22.241.7][50004] [Discord][Discord][Collaborative][Fun]
+ RISK: Unidirectional Traffic
new: [.....6] [ip4][..udp] [..192.168.2.100][56271] -> [....66.22.241.5][50004]
detected: [.....6] [ip4][..udp] [..192.168.2.100][56271] -> [....66.22.241.5][50004] [Discord][Discord][Collaborative][Fun]
+ RISK: Unidirectional Traffic
new: [.....7] [ip4][..udp] [..192.168.2.100][56271] -> [...66.22.237.11][50004]
detected: [.....7] [ip4][..udp] [..192.168.2.100][56271] -> [...66.22.237.11][50004] [Discord][Discord][Collaborative][Fun]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..tcp] [......10.0.2.15][42834] -> [162.159.128.233][..443]
DAEMON-EVENT: [Processed: 19 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 6 / 7|skipped: 0|!detected: 0|guessed: 0|detection-updates: 2|updates: 0]
new: [.....8] [ip4][..udp] [..192.168.2.100][57955] -> [..66.22.196.173][50004]
detected: [.....8] [ip4][..udp] [..192.168.2.100][57955] -> [..66.22.196.173][50004] [Discord][Discord][Collaborative][Fun]
idle: [.....7] [ip4][..udp] [..192.168.2.100][56271] -> [...66.22.237.11][50004] [Discord][Discord][Collaborative][Fun]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][..udp] [..192.168.2.100][56271] -> [....66.22.241.5][50004] [Discord][Discord][Collaborative][Fun]
+ RISK: Unidirectional Traffic
idle: [.....5] [ip4][..udp] [..192.168.2.100][56271] -> [....66.22.241.7][50004] [Discord][Discord][Collaborative][Fun]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..udp] [..192.168.2.100][56271] -> [..66.22.237.138][50004] [Discord][Discord][Collaborative][Fun]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [..192.168.2.100][56271] -> [..66.22.244.139][50004] [Discord][Discord][Collaborative][Fun]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [..192.168.2.100][56271] -> [..66.22.244.154][50004] [Discord][Discord][Collaborative][Fun]
+ RISK: Unidirectional Traffic
new: [.....9] [ip4][..udp] [..192.168.2.100][64837] -> [.35.214.238.161][50001]
detected: [.....9] [ip4][..udp] [..192.168.2.100][64837] -> [.35.214.238.161][50001] [Discord][GoogleCloud][Collaborative][Fun]
new: [....10] [ip4][..udp] [..192.168.2.100][55085] -> [..66.22.196.173][50004]
diff --git a/test/results/flow-info/default/discord_mid_flow.pcap.out b/test/results/flow-info/default/discord_mid_flow.pcap.out
new file mode 100644
index 000000000..a70e74b26
--- /dev/null
+++ b/test/results/flow-info/default/discord_mid_flow.pcap.out
@@ -0,0 +1,20 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ ERROR-EVENT: Unknown packet type [1/16]
+ ERROR-EVENT: Unknown packet type [2/16]
+ ERROR-EVENT: Unknown packet type [3/16]
+ ERROR-EVENT: Unknown packet type [4/16]
+ ERROR-EVENT: Unknown packet type [5/16]
+ ERROR-EVENT: Unknown packet type [6/16]
+ ERROR-EVENT: Unknown packet type [7/16]
+ ERROR-EVENT: Unknown packet type [8/16]
+ ERROR-EVENT: Unknown packet type [9/16]
+ ERROR-EVENT: Unknown packet type [10/16]
+ ERROR-EVENT: Unknown packet type [11/16]
+ ERROR-EVENT: Unknown packet type [12/16]
+ ERROR-EVENT: Unknown packet type [13/16]
+ ERROR-EVENT: Unknown packet type [14/16]
+ ERROR-EVENT: Unknown packet type [15/16]
+ ERROR-EVENT: Unknown packet type [16/16]
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/dlt_ppp.pcap.out b/test/results/flow-info/default/dlt_ppp.pcap.out
index 1d69a8341..1d69a8341 100644
--- a/test/results/flow-info/dlt_ppp.pcap.out
+++ b/test/results/flow-info/default/dlt_ppp.pcap.out
diff --git a/test/results/flow-info/dnp3.pcap.out b/test/results/flow-info/default/dnp3.pcap.out
index ed2f7b69b..ed2f7b69b 100644
--- a/test/results/flow-info/dnp3.pcap.out
+++ b/test/results/flow-info/default/dnp3.pcap.out
diff --git a/test/results/flow-info/dns-invalid-chars.pcap.out b/test/results/flow-info/default/dns-invalid-chars.pcap.out
index 1c0c3a017..9316b3e24 100644
--- a/test/results/flow-info/dns-invalid-chars.pcap.out
+++ b/test/results/flow-info/default/dns-invalid-chars.pcap.out
@@ -3,6 +3,9 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [......127.0.0.1][35980] -> [......127.0.0.1][...53]
detected: [.....1] [ip4][..udp] [......127.0.0.1][35980] -> [......127.0.0.1][...53] [DNS][Unknown][Network][Acceptable][www.allyourba???arebelongto.cn]
+ RISK: Text With Non-Printable Chars, Unidirectional Traffic
detection-update: [.....1] [ip4][..udp] [......127.0.0.1][35980] -> [......127.0.0.1][...53] [DNS][Unknown][Network][Acceptable][www.allyourbasesare???ongto.cn]
+ RISK: Text With Non-Printable Chars
idle: [.....1] [ip4][..udp] [......127.0.0.1][35980] -> [......127.0.0.1][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Text With Non-Printable Chars
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/dns-tunnel-iodine.pcap.out b/test/results/flow-info/default/dns-tunnel-iodine.pcap.out
index 3a0d95182..15af7bfb1 100644
--- a/test/results/flow-info/dns-tunnel-iodine.pcap.out
+++ b/test/results/flow-info/default/dns-tunnel-iodine.pcap.out
@@ -3,8 +3,9 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [......10.0.2.30][44639] -> [......10.0.2.20][...53]
detected: [.....1] [ip4][..udp] [......10.0.2.30][44639] -> [......10.0.2.20][...53] [DNS][Unknown][Network][Acceptable][vaaaakardli.pirate.sea]
+ RISK: Unidirectional Traffic
detection-update: [.....1] [ip4][..udp] [......10.0.2.30][44639] -> [......10.0.2.20][...53] [DNS][Unknown][Network][Acceptable][vaaaakardli.pirate.sea]
- RISK: Suspicious DNS Traffic
+ RISK: Susp DNS Traffic, Minor Issues
analyse: [.....1] [ip4][..udp] [......10.0.2.30][44639] -> [......10.0.2.20][...53] [DNS][Unknown][Network][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 1.003| 0.162| 0.368| 135658.824| 2.400]
@@ -16,5 +17,5 @@
[PKTLENS.....: 68,89,89,130,74,123,109,152,118,170,124,182,104,142,120,174,74,82,74,81,74,79,309,1078,309,1462,309,309,309,309,309,309]
[ENTROPIES...: 4.2,4.5,4.8,4.9,4.0,5.1,4.6,4.8,4.7,4.8,5.5,5.9,5.1,5.4,5.6,5.9,4.1,4.4,4.1,4.3,4.0,4.3,4.1,7.5,3.3,7.6,4.1,4.1,4.1,4.1,4.1,4.1]
idle: [.....1] [ip4][..udp] [......10.0.2.30][44639] -> [......10.0.2.20][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Suspicious DNS Traffic
+ RISK: Susp DNS Traffic, Minor Issues
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/dns_ambiguous_names.pcap.out b/test/results/flow-info/default/dns_ambiguous_names.pcap.out
index a67b7577d..f647da8c5 100644
--- a/test/results/flow-info/dns_ambiguous_names.pcap.out
+++ b/test/results/flow-info/default/dns_ambiguous_names.pcap.out
@@ -3,33 +3,44 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [....10.200.2.11][48375] -> [........8.8.8.8][...53]
detected: [.....1] [ip4][..udp] [....10.200.2.11][48375] -> [........8.8.8.8][...53] [DNS.ApplePush][Google][Network][Acceptable][41-courier.push.apple.com]
+ RISK: Unidirectional Traffic
detection-update: [.....1] [ip4][..udp] [....10.200.2.11][48375] -> [........8.8.8.8][...53] [DNS.ApplePush][Google][Network][Acceptable][41-courier.push.apple.com]
new: [.....2] [ip4][..udp] [....10.200.2.11][57290] -> [........8.8.8.8][...53]
detected: [.....2] [ip4][..udp] [....10.200.2.11][57290] -> [........8.8.8.8][...53] [DNS.Teams][Google][Network][Safe][teams.skype.com]
+ RISK: Unidirectional Traffic
detection-update: [.....2] [ip4][..udp] [....10.200.2.11][57290] -> [........8.8.8.8][...53] [DNS.Teams][Google][Network][Safe][teams.skype.com]
new: [.....3] [ip4][..udp] [....10.200.2.11][57051] -> [........8.8.8.8][...53]
detected: [.....3] [ip4][..udp] [....10.200.2.11][57051] -> [........8.8.8.8][...53] [DNS.Teams][Google][Network][Safe][api.teams.skype.com]
+ RISK: Unidirectional Traffic
detection-update: [.....3] [ip4][..udp] [....10.200.2.11][57051] -> [........8.8.8.8][...53] [DNS.Teams][Google][Network][Safe][api.teams.skype.com]
new: [.....4] [ip4][..udp] [....10.200.2.11][46134] -> [........8.8.8.8][...53]
detected: [.....4] [ip4][..udp] [....10.200.2.11][46134] -> [........8.8.8.8][...53] [DNS.GoogleServices][Google][Network][Acceptable][alt2-mtalk.google.com]
+ RISK: Unidirectional Traffic
detection-update: [.....4] [ip4][..udp] [....10.200.2.11][46134] -> [........8.8.8.8][...53] [DNS.GoogleServices][Google][Network][Acceptable][alt2-mtalk.google.com]
new: [.....5] [ip4][..udp] [....10.200.2.11][57632] -> [........8.8.8.8][...53]
detected: [.....5] [ip4][..udp] [....10.200.2.11][57632] -> [........8.8.8.8][...53] [DNS.PlayStore][Google][Network][Safe][android.clients.google.com]
+ RISK: Unidirectional Traffic
detection-update: [.....5] [ip4][..udp] [....10.200.2.11][57632] -> [........8.8.8.8][...53] [DNS.PlayStore][Google][Network][Safe][android.clients.google.com]
new: [.....6] [ip4][..udp] [....10.200.2.11][42790] -> [........8.8.8.8][...53]
detected: [.....6] [ip4][..udp] [....10.200.2.11][42790] -> [........8.8.8.8][...53] [DNS.Teams][Google][Network][Safe][_.teams.microsoft.com]
+ RISK: Unidirectional Traffic
detection-update: [.....6] [ip4][..udp] [....10.200.2.11][42790] -> [........8.8.8.8][...53] [DNS.Teams][Google][Network][Safe][_.teams.microsoft.com]
+ RISK: Error Code
new: [.....7] [ip4][..udp] [....10.200.2.11][44198] -> [........8.8.8.8][...53]
detected: [.....7] [ip4][..udp] [....10.200.2.11][44198] -> [........8.8.8.8][...53] [DNS.Google][Google][Network][Acceptable][wide-youtube.l.google.com]
+ RISK: Unidirectional Traffic
detection-update: [.....7] [ip4][..udp] [....10.200.2.11][44198] -> [........8.8.8.8][...53] [DNS.Google][Google][Network][Acceptable][wide-youtube.l.google.com]
new: [.....8] [ip4][..udp] [....10.200.2.11][52541] -> [........8.8.8.8][...53]
detected: [.....8] [ip4][..udp] [....10.200.2.11][52541] -> [........8.8.8.8][...53] [DNS.AppleSiri][Google][Network][Acceptable][guzzoni.apple.com]
+ RISK: Unidirectional Traffic
detection-update: [.....8] [ip4][..udp] [....10.200.2.11][52541] -> [........8.8.8.8][...53] [DNS.AppleSiri][Google][Network][Acceptable][guzzoni.apple.com]
new: [.....9] [ip4][..udp] [....10.200.2.11][53951] -> [........8.8.8.8][...53]
detected: [.....9] [ip4][..udp] [....10.200.2.11][53951] -> [........8.8.8.8][...53] [DNS.QQ][Google][Network][Fun][short.weixin.qq.com]
+ RISK: Unidirectional Traffic
detection-update: [.....9] [ip4][..udp] [....10.200.2.11][53951] -> [........8.8.8.8][...53] [DNS.QQ][Google][Network][Fun][short.weixin.qq.com]
new: [....10] [ip4][..udp] [....10.200.2.11][44883] -> [........8.8.8.8][...53]
detected: [....10] [ip4][..udp] [....10.200.2.11][44883] -> [........8.8.8.8][...53] [DNS.Instagram][Google][Network][Fun][instagram.faae1-1.fna.fbcdn.net]
+ RISK: Unidirectional Traffic
detection-update: [....10] [ip4][..udp] [....10.200.2.11][44883] -> [........8.8.8.8][...53] [DNS.Instagram][Google][Network][Fun][instagram.faae1-1.fna.fbcdn.net]
idle: [.....2] [ip4][..udp] [....10.200.2.11][57290] -> [........8.8.8.8][...53] [DNS.Teams][Google][Network][Safe]
idle: [.....5] [ip4][..udp] [....10.200.2.11][57632] -> [........8.8.8.8][...53] [DNS.PlayStore][Google][Network][Safe]
@@ -40,5 +51,6 @@
idle: [.....8] [ip4][..udp] [....10.200.2.11][52541] -> [........8.8.8.8][...53] [DNS.AppleSiri][Google][Network][Acceptable]
idle: [.....3] [ip4][..udp] [....10.200.2.11][57051] -> [........8.8.8.8][...53] [DNS.Teams][Google][Network][Safe]
idle: [.....6] [ip4][..udp] [....10.200.2.11][42790] -> [........8.8.8.8][...53] [DNS.Teams][Google][Network][Safe]
+ RISK: Error Code
idle: [....10] [ip4][..udp] [....10.200.2.11][44883] -> [........8.8.8.8][...53] [DNS.Instagram][Google][Network][Fun]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/dns_doh.pcap.out b/test/results/flow-info/default/dns_doh.pcap.out
index d933c7425..d933c7425 100644
--- a/test/results/flow-info/dns_doh.pcap.out
+++ b/test/results/flow-info/default/dns_doh.pcap.out
diff --git a/test/results/flow-info/dns_dot.pcap.out b/test/results/flow-info/default/dns_dot.pcap.out
index 66468fa6c..66468fa6c 100644
--- a/test/results/flow-info/dns_dot.pcap.out
+++ b/test/results/flow-info/default/dns_dot.pcap.out
diff --git a/test/results/flow-info/dns_exfiltration.pcap.out b/test/results/flow-info/default/dns_exfiltration.pcap.out
index 267f5d2a8..40fc5320a 100644
--- a/test/results/flow-info/dns_exfiltration.pcap.out
+++ b/test/results/flow-info/default/dns_exfiltration.pcap.out
@@ -3,9 +3,9 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [.192.168.220.56][56373] -> [192.168.203.167][...53]
detected: [.....1] [ip4][..udp] [.192.168.220.56][56373] -> [192.168.203.167][...53] [DNS][Unknown][Network][Acceptable][e1aa8f8fdb1bbe8d5e04952141f7d4f82c7e3b06dcc8b87fad7a.19e4d098dc8c618f8d81cfeb02]
- RISK: Suspicious DGA Domain name
+ RISK: Susp DGA Domain name, Unidirectional Traffic
detection-update: [.....1] [ip4][..udp] [.192.168.220.56][56373] -> [192.168.203.167][...53] [DNS][Unknown][Network][Acceptable][e1aa8f8fdb1bbe8d5e04952141f7d4f82c7e3b06dcc8b87fad7a.19e4d098dc8c618f8d81cfeb02]
- RISK: Suspicious DGA Domain name, Risky Domain Name
+ RISK: Susp DGA Domain name, Risky Domain Name
analyse: [.....1] [ip4][..udp] [.192.168.220.56][56373] -> [192.168.203.167][...53] [DNS][Unknown][Network][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.004| 1.036| 0.914| 0.282| 79410.348| 4.800]
@@ -17,7 +17,7 @@
[PKTLENS.....: 201,372,152,272,122,179,87,134,87,134,87,142,87,134,87,144,87,144,87,142,87,134,87,144,87,144,87,144,87,134,87,134]
[ENTROPIES...: 4.7,4.7,4.8,4.8,4.7,4.9,4.7,4.9,4.6,4.8,4.6,4.9,4.6,4.8,4.6,4.9,4.6,4.8,4.6,4.8,4.6,4.8,4.7,4.9,4.6,4.9,4.6,4.9,4.7,4.8,4.5,4.9]
update: [.....1] [ip4][..udp] [.192.168.220.56][56373] -> [192.168.203.167][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Suspicious DGA Domain name, Risky Domain Name
+ RISK: Susp DGA Domain name, Risky Domain Name
idle: [.....1] [ip4][..udp] [.192.168.220.56][56373] -> [192.168.203.167][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Suspicious DGA Domain name, Risky Domain Name
+ RISK: Susp DGA Domain name, Risky Domain Name
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/dns_fragmented.pcap.out b/test/results/flow-info/default/dns_fragmented.pcap.out
index 8fc1fe14c..9fc59a981 100644
--- a/test/results/flow-info/dns_fragmented.pcap.out
+++ b/test/results/flow-info/default/dns_fragmented.pcap.out
@@ -3,61 +3,90 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..172.217.40.76][56680] -> [.193.24.227.238][...53]
detected: [.....1] [ip4][..udp] [..172.217.40.76][56680] -> [.193.24.227.238][...53] [DNS][Google][Network][Acceptable][weberlab.de]
+ RISK: Unidirectional Traffic
detection-update: [.....1] [ip4][..udp] [..172.217.40.76][56680] -> [.193.24.227.238][...53] [DNS][Google][Network][Acceptable][weberlab.de]
+ RISK: Large DNS Packet (512+ bytes), Fragmented DNS Message
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
new: [.....2] [ip6][..udp] [................2a00:1450:4013:c03::10a][46433] -> [..................2001:470:765b::a25:53][...53]
detected: [.....2] [ip6][..udp] [................2a00:1450:4013:c03::10a][46433] -> [..................2001:470:765b::a25:53][...53] [DNS][Unknown][Network][Acceptable][pa.weberlab.de]
+ RISK: Unidirectional Traffic
detection-update: [.....2] [ip6][..udp] [................2a00:1450:4013:c03::10a][46433] -> [..................2001:470:765b::a25:53][...53] [DNS][Unknown][Network][Acceptable][pa.weberlab.de]
+ RISK: Large DNS Packet (512+ bytes), Fragmented DNS Message
ERROR-EVENT: nDPI IPv6/L4 payload detection failed [2/16]
new: [.....3] [ip6][..udp] [................2a00:1450:4013:c06::105][63369] -> [..................2001:470:765b::a25:53][...53]
detected: [.....3] [ip6][..udp] [................2a00:1450:4013:c06::105][63369] -> [..................2001:470:765b::a25:53][...53] [DNS][Unknown][Network][Acceptable][fg2.weberlab.de]
+ RISK: Unidirectional Traffic
detection-update: [.....3] [ip6][..udp] [................2a00:1450:4013:c06::105][63369] -> [..................2001:470:765b::a25:53][...53] [DNS][Unknown][Network][Acceptable][fg2.weberlab.de]
+ RISK: Large DNS Packet (512+ bytes), Fragmented DNS Message
ERROR-EVENT: nDPI IPv6/L4 payload detection failed [3/16]
new: [.....4] [ip4][..udp] [173.194.169.104][59464] -> [.193.24.227.238][...53]
detected: [.....4] [ip4][..udp] [173.194.169.104][59464] -> [.193.24.227.238][...53] [DNS][Google][Network][Acceptable][fg2.weberlab.de]
+ RISK: Unidirectional Traffic
detection-update: [.....4] [ip4][..udp] [173.194.169.104][59464] -> [.193.24.227.238][...53] [DNS][Google][Network][Acceptable][fg2.weberlab.de]
+ RISK: Large DNS Packet (512+ bytes), Fragmented DNS Message
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [4/16]
new: [.....5] [ip6][..udp] [................2a00:1450:400c:c00::106][54430] -> [..................2001:470:765b::a25:53][...53]
detected: [.....5] [ip6][..udp] [................2a00:1450:400c:c00::106][54430] -> [..................2001:470:765b::a25:53][...53] [DNS][Unknown][Network][Acceptable][fg2.weberlab.de]
+ RISK: Unidirectional Traffic
detection-update: [.....5] [ip6][..udp] [................2a00:1450:400c:c00::106][54430] -> [..................2001:470:765b::a25:53][...53] [DNS][Unknown][Network][Acceptable][fg2.weberlab.de]
+ RISK: Large DNS Packet (512+ bytes)
new: [.....6] [ip4][..udp] [..74.125.47.136][59330] -> [.193.24.227.238][...53]
detected: [.....6] [ip4][..udp] [..74.125.47.136][59330] -> [.193.24.227.238][...53] [DNS][Google][Network][Acceptable][weberlab.de]
+ RISK: Unidirectional Traffic
detection-update: [.....6] [ip4][..udp] [..74.125.47.136][59330] -> [.193.24.227.238][...53] [DNS][Google][Network][Acceptable][weberlab.de]
+ RISK: Large DNS Packet (512+ bytes), Fragmented DNS Message
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [5/16]
new: [.....7] [ip6][..udp] [................2a00:1450:4013:c05::10e][34944] -> [..................2001:470:765b::a25:53][...53]
detected: [.....7] [ip6][..udp] [................2a00:1450:4013:c05::10e][34944] -> [..................2001:470:765b::a25:53][...53] [DNS][Unknown][Network][Acceptable][fg2.weberlab.de]
+ RISK: Unidirectional Traffic
detection-update: [.....7] [ip6][..udp] [................2a00:1450:4013:c05::10e][34944] -> [..................2001:470:765b::a25:53][...53] [DNS][Unknown][Network][Acceptable][fg2.weberlab.de]
+ RISK: Large DNS Packet (512+ bytes)
DAEMON-EVENT: [Processed: 14 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 7 / 7|skipped: 0|!detected: 0|guessed: 0|detection-updates: 7|updates: 0]
new: [.....8] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][47634] -> [..................2001:470:765b::a25:53][...53]
detected: [.....8] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][47634] -> [..................2001:470:765b::a25:53][...53] [DNS][Unknown][Network][Acceptable][fg2-mgmt.weberlab.de]
+ RISK: Unidirectional Traffic
detection-update: [.....8] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][47634] -> [..................2001:470:765b::a25:53][...53] [DNS][Unknown][Network][Acceptable][fg2-mgmt.weberlab.de]
new: [.....9] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][33592] -> [..................2001:470:765b::a25:53][...53]
detected: [.....9] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][33592] -> [..................2001:470:765b::a25:53][...53] [DNS][Unknown][Network][Acceptable][fg2-mgmt.weberlab.de]
+ RISK: Unidirectional Traffic
detection-update: [.....9] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][33592] -> [..................2001:470:765b::a25:53][...53] [DNS][Unknown][Network][Acceptable][fg2-mgmt.weberlab.de]
new: [....10] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][46316] -> [..................2001:470:765b::a25:53][...53]
detected: [....10] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][46316] -> [..................2001:470:765b::a25:53][...53] [DNS][Unknown][Network][Acceptable][fg2-mgmt.weberlab.de]
+ RISK: Unidirectional Traffic
detection-update: [....10] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][46316] -> [..................2001:470:765b::a25:53][...53] [DNS][Unknown][Network][Acceptable][fg2-mgmt.weberlab.de]
new: [....11] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][46440] -> [..................2001:470:765b::a25:53][...53]
detected: [....11] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][46440] -> [..................2001:470:765b::a25:53][...53] [DNS][Unknown][Network][Acceptable][fg2-mgmt.weberlab.de]
+ RISK: Unidirectional Traffic
detection-update: [....11] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][46440] -> [..................2001:470:765b::a25:53][...53] [DNS][Unknown][Network][Acceptable][fg2-mgmt.weberlab.de]
idle: [.....1] [ip4][..udp] [..172.217.40.76][56680] -> [.193.24.227.238][...53] [DNS][Google][Network][Acceptable]
+ RISK: Large DNS Packet (512+ bytes), Fragmented DNS Message
idle: [.....3] [ip6][..udp] [................2a00:1450:4013:c06::105][63369] -> [..................2001:470:765b::a25:53][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Large DNS Packet (512+ bytes), Fragmented DNS Message
idle: [.....7] [ip6][..udp] [................2a00:1450:4013:c05::10e][34944] -> [..................2001:470:765b::a25:53][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Large DNS Packet (512+ bytes)
idle: [.....4] [ip4][..udp] [173.194.169.104][59464] -> [.193.24.227.238][...53] [DNS][Google][Network][Acceptable]
+ RISK: Large DNS Packet (512+ bytes), Fragmented DNS Message
idle: [.....6] [ip4][..udp] [..74.125.47.136][59330] -> [.193.24.227.238][...53] [DNS][Google][Network][Acceptable]
+ RISK: Large DNS Packet (512+ bytes), Fragmented DNS Message
idle: [.....5] [ip6][..udp] [................2a00:1450:400c:c00::106][54430] -> [..................2001:470:765b::a25:53][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Large DNS Packet (512+ bytes)
idle: [.....2] [ip6][..udp] [................2a00:1450:4013:c03::10a][46433] -> [..................2001:470:765b::a25:53][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Large DNS Packet (512+ bytes), Fragmented DNS Message
DAEMON-EVENT: [Processed: 22 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 4 / 11|skipped: 0|!detected: 0|guessed: 0|detection-updates: 11|updates: 0]
new: [....12] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][48758] -> [...................2606:4700:4700::1111][...53]
detected: [....12] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][48758] -> [...................2606:4700:4700::1111][...53] [DNS][Unknown][Network][Acceptable][sigok.verteiltesysteme.net]
+ RISK: Unidirectional Traffic
detection-update: [....12] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][48758] -> [...................2606:4700:4700::1111][...53] [DNS][Unknown][Network][Acceptable][sigok.verteiltesysteme.net]
new: [....13] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][52814] -> [...................2606:4700:4700::1111][...53]
detected: [....13] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][52814] -> [...................2606:4700:4700::1111][...53] [DNS][Unknown][Network][Acceptable][sigfail.verteiltesysteme.net]
+ RISK: Unidirectional Traffic
detection-update: [....13] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][52814] -> [...................2606:4700:4700::1111][...53] [DNS][Unknown][Network][Acceptable][sigfail.verteiltesysteme.net]
+ RISK: Error Code
new: [....14] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][42344] -> [............................2620:fe::fe][...53]
detected: [....14] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][42344] -> [............................2620:fe::fe][...53] [DNS][Unknown][Network][Acceptable][formel1.de]
+ RISK: Unidirectional Traffic
detection-update: [....14] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][42344] -> [............................2620:fe::fe][...53] [DNS][Unknown][Network][Acceptable][formel1.de]
idle: [.....8] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][47634] -> [..................2001:470:765b::a25:53][...53] [DNS][Unknown][Network][Acceptable]
idle: [.....9] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][33592] -> [..................2001:470:765b::a25:53][...53] [DNS][Unknown][Network][Acceptable]
@@ -65,23 +94,30 @@
idle: [....11] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][46440] -> [..................2001:470:765b::a25:53][...53] [DNS][Unknown][Network][Acceptable]
new: [....15] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][46709] -> [............................2620:fe::fe][...53]
detected: [....15] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][46709] -> [............................2620:fe::fe][...53] [DNS][Unknown][Network][Acceptable][erfpop.de]
+ RISK: Unidirectional Traffic
detection-update: [....15] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][46709] -> [............................2620:fe::fe][...53] [DNS][Unknown][Network][Acceptable][erfpop.de]
new: [....16] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][55729] -> [..................2001:470:765b::a25:53][...53]
detected: [....16] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][55729] -> [..................2001:470:765b::a25:53][...53] [DNS][Unknown][Network][Acceptable][weberlab.de]
+ RISK: Unidirectional Traffic
detection-update: [....16] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][55729] -> [..................2001:470:765b::a25:53][...53] [DNS][Unknown][Network][Acceptable][weberlab.de]
+ RISK: Large DNS Packet (512+ bytes), Fragmented DNS Message
ERROR-EVENT: nDPI IPv6/L4 payload detection failed [1/16]
new: [....17] [ip4][..udp] [....194.247.5.6][51791] -> [.193.24.227.238][...53]
detected: [....17] [ip4][..udp] [....194.247.5.6][51791] -> [.193.24.227.238][...53] [DNS][Unknown][Network][Acceptable][weberlab.de]
+ RISK: Unidirectional Traffic
detection-update: [....17] [ip4][..udp] [....194.247.5.6][51791] -> [.193.24.227.238][...53] [DNS][Unknown][Network][Acceptable][weberlab.de]
+ RISK: Large DNS Packet (512+ bytes), Fragmented DNS Message
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
new: [....18] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][60550] -> [...................2606:4700:4700::1111][...53]
detected: [....18] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][60550] -> [...................2606:4700:4700::1111][...53] [DNS][Unknown][Network][Acceptable][ns2.weberdns.de]
+ RISK: Unidirectional Traffic
detection-update: [....18] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][60550] -> [...................2606:4700:4700::1111][...53] [DNS][Unknown][Network][Acceptable][ns2.weberdns.de]
new: [....19] [ip6][..tcp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][57089] -> [.............2001:470:1f0b:16b0::a26:53][...53]
detected: [....19] [ip6][..tcp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][57089] -> [.............2001:470:1f0b:16b0::a26:53][...53] [DNS][Unknown][Network][Acceptable][weberlab.de]
detection-update: [....19] [ip6][..tcp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][57089] -> [.............2001:470:1f0b:16b0::a26:53][...53] [DNS][Unknown][Network][Acceptable][weberlab.de]
new: [....20] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][54590] -> [...................2606:4700:4700::1111][...53]
detected: [....20] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][54590] -> [...................2606:4700:4700::1111][...53] [DNS][Unknown][Network][Acceptable][ns2.weberdns.de]
+ RISK: Unidirectional Traffic
detection-update: [....20] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][54590] -> [...................2606:4700:4700::1111][...53] [DNS][Unknown][Network][Acceptable][ns2.weberdns.de]
new: [....21] [ip4][..tcp] [....194.247.5.6][39005] -> [...194.247.5.14][...53]
detected: [....21] [ip4][..tcp] [....194.247.5.6][39005] -> [...194.247.5.14][...53] [DNS][Unknown][Network][Acceptable][weberlab.de]
@@ -89,11 +125,13 @@
idle: [....18] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][60550] -> [...................2606:4700:4700::1111][...53] [DNS][Unknown][Network][Acceptable]
end: [....21] [ip4][..tcp] [....194.247.5.6][39005] -> [...194.247.5.14][...53] [DNS][Unknown][Network][Acceptable]
idle: [....16] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][55729] -> [..................2001:470:765b::a25:53][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Large DNS Packet (512+ bytes), Fragmented DNS Message
idle: [....20] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][54590] -> [...................2606:4700:4700::1111][...53] [DNS][Unknown][Network][Acceptable]
idle: [....13] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][52814] -> [...................2606:4700:4700::1111][...53]
idle: [....12] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][48758] -> [...................2606:4700:4700::1111][...53] [DNS][Unknown][Network][Acceptable]
idle: [....14] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][42344] -> [............................2620:fe::fe][...53] [DNS][Unknown][Network][Acceptable]
idle: [....17] [ip4][..udp] [....194.247.5.6][51791] -> [.193.24.227.238][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Large DNS Packet (512+ bytes), Fragmented DNS Message
idle: [....15] [ip6][..udp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][46709] -> [............................2620:fe::fe][...53] [DNS][Unknown][Network][Acceptable]
end: [....19] [ip6][..tcp] [..2001:470:1f0b:16b0:20c:29ff:fe7c:a4cb][57089] -> [.............2001:470:1f0b:16b0::a26:53][...53] [DNS][Unknown][Network][Acceptable]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/dns_invert_query.pcapng.out b/test/results/flow-info/default/dns_invert_query.pcapng.out
index f5414bcb1..f5414bcb1 100644
--- a/test/results/flow-info/dns_invert_query.pcapng.out
+++ b/test/results/flow-info/default/dns_invert_query.pcapng.out
diff --git a/test/results/flow-info/dns_long_domainname.pcap.out b/test/results/flow-info/default/dns_long_domainname.pcap.out
index c55e540be..6f90e08d6 100644
--- a/test/results/flow-info/dns_long_domainname.pcap.out
+++ b/test/results/flow-info/default/dns_long_domainname.pcap.out
@@ -3,6 +3,9 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..192.168.1.168][65311] -> [........8.8.8.8][...53]
detected: [.....1] [ip4][..udp] [..192.168.1.168][65311] -> [........8.8.8.8][...53] [DNS][Google][Network][Acceptable][gmr02c.16.0.fhkfhsdkfhsk.tunnel.example.com]
+ RISK: Unidirectional Traffic
detection-update: [.....1] [ip4][..udp] [..192.168.1.168][65311] -> [........8.8.8.8][...53] [DNS][Google][Network][Acceptable][gmr02c.16.0.fhkfhsdkfhsk.tunnel.example.com]
+ RISK: Error Code
idle: [.....1] [ip4][..udp] [..192.168.1.168][65311] -> [........8.8.8.8][...53] [DNS][Google][Network][Acceptable]
+ RISK: Error Code
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/dnscrypt-v1-and-resolver-pings.pcap.out b/test/results/flow-info/default/dnscrypt-v1-and-resolver-pings.pcap.out
index 6669ed8b2..525a2c35a 100644
--- a/test/results/flow-info/dnscrypt-v1-and-resolver-pings.pcap.out
+++ b/test/results/flow-info/default/dnscrypt-v1-and-resolver-pings.pcap.out
@@ -3,722 +3,1148 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [.......10.0.0.1][38388] -> [..149.56.228.45][..443]
detected: [.....1] [ip4][..udp] [.......10.0.0.1][38388] -> [..149.56.228.45][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..udp] [.......10.0.0.1][45722] -> [..149.56.228.45][..443]
detected: [.....2] [ip4][..udp] [.......10.0.0.1][45722] -> [..149.56.228.45][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
new: [.....3] [ip4][..udp] [.......10.0.0.1][35495] -> [..149.56.228.45][..443]
detected: [.....3] [ip4][..udp] [.......10.0.0.1][35495] -> [..149.56.228.45][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
new: [.....4] [ip4][..udp] [.......10.0.0.1][33565] -> [..149.56.228.45][..443]
detected: [.....4] [ip4][..udp] [.......10.0.0.1][33565] -> [..149.56.228.45][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][..udp] [.......10.0.0.1][35228] -> [..149.56.228.45][..443]
detected: [.....5] [ip4][..udp] [.......10.0.0.1][35228] -> [..149.56.228.45][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [3/16]
new: [.....6] [ip4][..udp] [.......10.0.0.1][60301] -> [..149.56.228.45][..443]
detected: [.....6] [ip4][..udp] [.......10.0.0.1][60301] -> [..149.56.228.45][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 12 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 6 / 6|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....7] [ip4][..udp] [.......10.0.0.1][51004] -> [..62.210.180.71][.1053]
detected: [.....7] [ip4][..udp] [.......10.0.0.1][51004] -> [..62.210.180.71][.1053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....8] [ip4][..udp] [.......10.0.0.1][52636] -> [..62.210.180.71][.1053]
detected: [.....8] [ip4][..udp] [.......10.0.0.1][52636] -> [..62.210.180.71][.1053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....9] [ip4][..udp] [.......10.0.0.1][49518] -> [..62.210.180.71][.1053]
detected: [.....9] [ip4][..udp] [.......10.0.0.1][49518] -> [..62.210.180.71][.1053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....10] [ip4][..udp] [.......10.0.0.1][43748] -> [..62.210.180.71][.1053]
detected: [....10] [ip4][..udp] [.......10.0.0.1][43748] -> [..62.210.180.71][.1053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
new: [....11] [ip4][..udp] [.......10.0.0.1][57395] -> [..62.210.180.71][.1053]
detected: [....11] [ip4][..udp] [.......10.0.0.1][57395] -> [..62.210.180.71][.1053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
new: [....12] [ip4][..udp] [.......10.0.0.1][53299] -> [..62.210.180.71][.1053]
detected: [....12] [ip4][..udp] [.......10.0.0.1][53299] -> [..62.210.180.71][.1053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [3/16]
new: [....13] [ip4][..udp] [.......10.0.0.1][53697] -> [.185.134.196.55][.8443]
detected: [....13] [ip4][..udp] [.......10.0.0.1][53697] -> [.185.134.196.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....14] [ip4][..udp] [.......10.0.0.1][37413] -> [.185.134.196.55][.8443]
detected: [....14] [ip4][..udp] [.......10.0.0.1][37413] -> [.185.134.196.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [4/16]
new: [....15] [ip4][..udp] [.......10.0.0.1][35005] -> [.185.134.196.55][.8443]
detected: [....15] [ip4][..udp] [.......10.0.0.1][35005] -> [.185.134.196.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [5/16]
new: [....16] [ip4][..udp] [.......10.0.0.1][59405] -> [.185.134.196.55][.8443]
detected: [....16] [ip4][..udp] [.......10.0.0.1][59405] -> [.185.134.196.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....17] [ip4][..udp] [.......10.0.0.1][50435] -> [.185.134.196.55][.8443]
detected: [....17] [ip4][..udp] [.......10.0.0.1][50435] -> [.185.134.196.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....18] [ip4][..udp] [.......10.0.0.1][55123] -> [.185.134.196.55][.8443]
detected: [....18] [ip4][..udp] [.......10.0.0.1][55123] -> [.185.134.196.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [6/16]
new: [....19] [ip4][..udp] [.......10.0.0.1][44712] -> [104.238.186.192][..443]
detected: [....19] [ip4][..udp] [.......10.0.0.1][44712] -> [104.238.186.192][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....20] [ip4][..udp] [.......10.0.0.1][56997] -> [104.238.186.192][..443]
detected: [....20] [ip4][..udp] [.......10.0.0.1][56997] -> [104.238.186.192][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [7/16]
new: [....21] [ip4][..udp] [.......10.0.0.1][39655] -> [104.238.186.192][..443]
detected: [....21] [ip4][..udp] [.......10.0.0.1][39655] -> [104.238.186.192][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....22] [ip4][..udp] [.......10.0.0.1][59261] -> [104.238.186.192][..443]
detected: [....22] [ip4][..udp] [.......10.0.0.1][59261] -> [104.238.186.192][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....23] [ip4][..udp] [.......10.0.0.1][59641] -> [104.238.186.192][..443]
detected: [....23] [ip4][..udp] [.......10.0.0.1][59641] -> [104.238.186.192][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....24] [ip4][..udp] [.......10.0.0.1][44491] -> [104.238.186.192][..443]
detected: [....24] [ip4][..udp] [.......10.0.0.1][44491] -> [104.238.186.192][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [8/16]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [9/16]
new: [....25] [ip4][..udp] [.......10.0.0.1][32793] -> [.209.250.241.25][..443]
detected: [....25] [ip4][..udp] [.......10.0.0.1][32793] -> [.209.250.241.25][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....26] [ip4][..udp] [.......10.0.0.1][56035] -> [.209.250.241.25][..443]
detected: [....26] [ip4][..udp] [.......10.0.0.1][56035] -> [.209.250.241.25][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [10/16]
new: [....27] [ip4][..udp] [.......10.0.0.1][37123] -> [.209.250.241.25][..443]
detected: [....27] [ip4][..udp] [.......10.0.0.1][37123] -> [.209.250.241.25][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [11/16]
new: [....28] [ip4][..udp] [.......10.0.0.1][37950] -> [.209.250.241.25][..443]
detected: [....28] [ip4][..udp] [.......10.0.0.1][37950] -> [.209.250.241.25][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....29] [ip4][..udp] [.......10.0.0.1][34324] -> [.209.250.241.25][..443]
detected: [....29] [ip4][..udp] [.......10.0.0.1][34324] -> [.209.250.241.25][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....30] [ip4][..udp] [.......10.0.0.1][59367] -> [.209.250.241.25][..443]
detected: [....30] [ip4][..udp] [.......10.0.0.1][59367] -> [.209.250.241.25][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [12/16]
new: [....31] [ip4][..udp] [.......10.0.0.1][43609] -> [....41.79.69.13][..443]
detected: [....31] [ip4][..udp] [.......10.0.0.1][43609] -> [....41.79.69.13][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....32] [ip4][..udp] [.......10.0.0.1][46229] -> [....41.79.69.13][..443]
detected: [....32] [ip4][..udp] [.......10.0.0.1][46229] -> [....41.79.69.13][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [13/16]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [14/16]
new: [....33] [ip4][..udp] [.......10.0.0.1][56043] -> [....41.79.69.13][..443]
detected: [....33] [ip4][..udp] [.......10.0.0.1][56043] -> [....41.79.69.13][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....34] [ip4][..udp] [.......10.0.0.1][38136] -> [....41.79.69.13][..443]
detected: [....34] [ip4][..udp] [.......10.0.0.1][38136] -> [....41.79.69.13][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [15/16]
new: [....35] [ip4][..udp] [.......10.0.0.1][56177] -> [....41.79.69.13][..443]
detected: [....35] [ip4][..udp] [.......10.0.0.1][56177] -> [....41.79.69.13][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....36] [ip4][..udp] [.......10.0.0.1][43365] -> [....41.79.69.13][..443]
detected: [....36] [ip4][..udp] [.......10.0.0.1][43365] -> [....41.79.69.13][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....37] [ip4][..udp] [.......10.0.0.1][45767] -> [..51.15.122.250][..443]
detected: [....37] [ip4][..udp] [.......10.0.0.1][45767] -> [..51.15.122.250][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....38] [ip4][..udp] [.......10.0.0.1][38867] -> [..51.15.122.250][..443]
detected: [....38] [ip4][..udp] [.......10.0.0.1][38867] -> [..51.15.122.250][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [16/16]
new: [....39] [ip4][..udp] [.......10.0.0.1][59709] -> [..51.15.122.250][..443]
detected: [....39] [ip4][..udp] [.......10.0.0.1][59709] -> [..51.15.122.250][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....40] [ip4][..udp] [.......10.0.0.1][36668] -> [..51.15.122.250][..443]
detected: [....40] [ip4][..udp] [.......10.0.0.1][36668] -> [..51.15.122.250][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....41] [ip4][..udp] [.......10.0.0.1][39007] -> [..51.15.122.250][..443]
detected: [....41] [ip4][..udp] [.......10.0.0.1][39007] -> [..51.15.122.250][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....42] [ip4][..udp] [.......10.0.0.1][38362] -> [..51.15.122.250][..443]
detected: [....42] [ip4][..udp] [.......10.0.0.1][38362] -> [..51.15.122.250][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....43] [ip4][..udp] [.......10.0.0.1][59476] -> [.139.59.200.116][..443]
detected: [....43] [ip4][..udp] [.......10.0.0.1][59476] -> [.139.59.200.116][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....44] [ip4][..udp] [.......10.0.0.1][47341] -> [.139.59.200.116][..443]
detected: [....44] [ip4][..udp] [.......10.0.0.1][47341] -> [.139.59.200.116][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....45] [ip4][..udp] [.......10.0.0.1][50335] -> [.139.59.200.116][..443]
detected: [....45] [ip4][..udp] [.......10.0.0.1][50335] -> [.139.59.200.116][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....46] [ip4][..udp] [.......10.0.0.1][43633] -> [.139.59.200.116][..443]
detected: [....46] [ip4][..udp] [.......10.0.0.1][43633] -> [.139.59.200.116][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....47] [ip4][..udp] [.......10.0.0.1][37595] -> [.139.59.200.116][..443]
detected: [....47] [ip4][..udp] [.......10.0.0.1][37595] -> [.139.59.200.116][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....48] [ip4][..udp] [.......10.0.0.1][59194] -> [.139.59.200.116][..443]
detected: [....48] [ip4][..udp] [.......10.0.0.1][59194] -> [.139.59.200.116][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....49] [ip4][..udp] [.......10.0.0.1][47865] -> [...195.30.94.28][.8443]
detected: [....49] [ip4][..udp] [.......10.0.0.1][47865] -> [...195.30.94.28][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....50] [ip4][..udp] [.......10.0.0.1][33369] -> [...195.30.94.28][.8443]
detected: [....50] [ip4][..udp] [.......10.0.0.1][33369] -> [...195.30.94.28][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....51] [ip4][..udp] [.......10.0.0.1][34885] -> [...195.30.94.28][.8443]
detected: [....51] [ip4][..udp] [.......10.0.0.1][34885] -> [...195.30.94.28][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....52] [ip4][..udp] [.......10.0.0.1][44093] -> [...195.30.94.28][.8443]
detected: [....52] [ip4][..udp] [.......10.0.0.1][44093] -> [...195.30.94.28][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....53] [ip4][..udp] [.......10.0.0.1][53811] -> [...195.30.94.28][.8443]
detected: [....53] [ip4][..udp] [.......10.0.0.1][53811] -> [...195.30.94.28][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....54] [ip4][..udp] [.......10.0.0.1][44282] -> [...195.30.94.28][.8443]
detected: [....54] [ip4][..udp] [.......10.0.0.1][44282] -> [...195.30.94.28][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....55] [ip4][..udp] [.......10.0.0.1][32970] -> [..142.4.204.111][..443]
detected: [....55] [ip4][..udp] [.......10.0.0.1][32970] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....56] [ip4][..udp] [.......10.0.0.1][60962] -> [..142.4.204.111][..443]
detected: [....56] [ip4][..udp] [.......10.0.0.1][60962] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....57] [ip4][..udp] [.......10.0.0.1][33071] -> [..142.4.204.111][..443]
detected: [....57] [ip4][..udp] [.......10.0.0.1][33071] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....58] [ip4][..udp] [.......10.0.0.1][43505] -> [..142.4.204.111][..443]
detected: [....58] [ip4][..udp] [.......10.0.0.1][43505] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....59] [ip4][..udp] [.......10.0.0.1][52284] -> [..142.4.204.111][..443]
detected: [....59] [ip4][..udp] [.......10.0.0.1][52284] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....60] [ip4][..udp] [.......10.0.0.1][46856] -> [..142.4.204.111][..443]
detected: [....60] [ip4][..udp] [.......10.0.0.1][46856] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....61] [ip4][..udp] [.......10.0.0.1][50035] -> [.149.112.112.10][.8443]
detected: [....61] [ip4][..udp] [.......10.0.0.1][50035] -> [.149.112.112.10][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....62] [ip4][..udp] [.......10.0.0.1][40009] -> [.149.112.112.10][.8443]
detected: [....62] [ip4][..udp] [.......10.0.0.1][40009] -> [.149.112.112.10][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....63] [ip4][..udp] [.......10.0.0.1][56022] -> [.149.112.112.10][.8443]
detected: [....63] [ip4][..udp] [.......10.0.0.1][56022] -> [.149.112.112.10][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....64] [ip4][..udp] [.......10.0.0.1][42570] -> [.149.112.112.10][.8443]
detected: [....64] [ip4][..udp] [.......10.0.0.1][42570] -> [.149.112.112.10][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....65] [ip4][..udp] [.......10.0.0.1][57465] -> [.149.112.112.10][.8443]
detected: [....65] [ip4][..udp] [.......10.0.0.1][57465] -> [.149.112.112.10][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....66] [ip4][..udp] [.......10.0.0.1][55482] -> [.149.112.112.10][.8443]
detected: [....66] [ip4][..udp] [.......10.0.0.1][55482] -> [.149.112.112.10][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....67] [ip4][..udp] [.......10.0.0.1][49512] -> [..172.104.93.80][.1443]
detected: [....67] [ip4][..udp] [.......10.0.0.1][49512] -> [..172.104.93.80][.1443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....68] [ip4][..udp] [.......10.0.0.1][50913] -> [..172.104.93.80][.1443]
detected: [....68] [ip4][..udp] [.......10.0.0.1][50913] -> [..172.104.93.80][.1443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....69] [ip4][..udp] [.......10.0.0.1][41800] -> [..172.104.93.80][.1443]
detected: [....69] [ip4][..udp] [.......10.0.0.1][41800] -> [..172.104.93.80][.1443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....70] [ip4][..udp] [.......10.0.0.1][38283] -> [..172.104.93.80][.1443]
detected: [....70] [ip4][..udp] [.......10.0.0.1][38283] -> [..172.104.93.80][.1443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....71] [ip4][..udp] [.......10.0.0.1][59489] -> [..172.104.93.80][.1443]
detected: [....71] [ip4][..udp] [.......10.0.0.1][59489] -> [..172.104.93.80][.1443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....72] [ip4][..udp] [.......10.0.0.1][56902] -> [..172.104.93.80][.1443]
detected: [....72] [ip4][..udp] [.......10.0.0.1][56902] -> [..172.104.93.80][.1443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [.......10.0.0.1][38388] -> [..149.56.228.45][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....5] [ip4][..udp] [.......10.0.0.1][35228] -> [..149.56.228.45][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....2] [ip4][..udp] [.......10.0.0.1][45722] -> [..149.56.228.45][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [.......10.0.0.1][35495] -> [..149.56.228.45][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....4] [ip4][..udp] [.......10.0.0.1][33565] -> [..149.56.228.45][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....6] [ip4][..udp] [.......10.0.0.1][60301] -> [..149.56.228.45][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....73] [ip4][..udp] [.......10.0.0.1][38349] -> [205.185.116.116][..553]
detected: [....73] [ip4][..udp] [.......10.0.0.1][38349] -> [205.185.116.116][..553] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....74] [ip4][..udp] [.......10.0.0.1][38879] -> [205.185.116.116][..553]
detected: [....74] [ip4][..udp] [.......10.0.0.1][38879] -> [205.185.116.116][..553] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....75] [ip4][..udp] [.......10.0.0.1][43528] -> [205.185.116.116][..553]
detected: [....75] [ip4][..udp] [.......10.0.0.1][43528] -> [205.185.116.116][..553] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....76] [ip4][..udp] [.......10.0.0.1][51770] -> [205.185.116.116][..553]
detected: [....76] [ip4][..udp] [.......10.0.0.1][51770] -> [205.185.116.116][..553] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....77] [ip4][..udp] [.......10.0.0.1][38278] -> [205.185.116.116][..553]
detected: [....77] [ip4][..udp] [.......10.0.0.1][38278] -> [205.185.116.116][..553] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....78] [ip4][..udp] [.......10.0.0.1][55822] -> [205.185.116.116][..553]
detected: [....78] [ip4][..udp] [.......10.0.0.1][55822] -> [205.185.116.116][..553] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....79] [ip4][..udp] [.......10.0.0.1][55834] -> [..52.65.235.129][..443]
detected: [....79] [ip4][..udp] [.......10.0.0.1][55834] -> [..52.65.235.129][..443] [DNScrypt][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....80] [ip4][..udp] [.......10.0.0.1][46313] -> [..52.65.235.129][..443]
detected: [....80] [ip4][..udp] [.......10.0.0.1][46313] -> [..52.65.235.129][..443] [DNScrypt][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....81] [ip4][..udp] [.......10.0.0.1][52911] -> [..52.65.235.129][..443]
detected: [....81] [ip4][..udp] [.......10.0.0.1][52911] -> [..52.65.235.129][..443] [DNScrypt][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....82] [ip4][..udp] [.......10.0.0.1][47685] -> [..52.65.235.129][..443]
detected: [....82] [ip4][..udp] [.......10.0.0.1][47685] -> [..52.65.235.129][..443] [DNScrypt][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....83] [ip4][..udp] [.......10.0.0.1][55979] -> [..52.65.235.129][..443]
detected: [....83] [ip4][..udp] [.......10.0.0.1][55979] -> [..52.65.235.129][..443] [DNScrypt][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....84] [ip4][..udp] [.......10.0.0.1][55409] -> [..52.65.235.129][..443]
detected: [....84] [ip4][..udp] [.......10.0.0.1][55409] -> [..52.65.235.129][..443] [DNScrypt][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....85] [ip4][..udp] [.......10.0.0.1][38812] -> [....51.15.62.65][..443]
detected: [....85] [ip4][..udp] [.......10.0.0.1][38812] -> [....51.15.62.65][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....86] [ip4][..udp] [.......10.0.0.1][45993] -> [....51.15.62.65][..443]
detected: [....86] [ip4][..udp] [.......10.0.0.1][45993] -> [....51.15.62.65][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....87] [ip4][..udp] [.......10.0.0.1][56688] -> [....51.15.62.65][..443]
detected: [....87] [ip4][..udp] [.......10.0.0.1][56688] -> [....51.15.62.65][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....88] [ip4][..udp] [.......10.0.0.1][33521] -> [....51.15.62.65][..443]
detected: [....88] [ip4][..udp] [.......10.0.0.1][33521] -> [....51.15.62.65][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....89] [ip4][..udp] [.......10.0.0.1][43714] -> [....51.15.62.65][..443]
detected: [....89] [ip4][..udp] [.......10.0.0.1][43714] -> [....51.15.62.65][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....90] [ip4][..udp] [.......10.0.0.1][60735] -> [....51.15.62.65][..443]
detected: [....90] [ip4][..udp] [.......10.0.0.1][60735] -> [....51.15.62.65][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....91] [ip4][..udp] [.......10.0.0.1][41913] -> [..45.153.187.96][.4343]
detected: [....91] [ip4][..udp] [.......10.0.0.1][41913] -> [..45.153.187.96][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....92] [ip4][..udp] [.......10.0.0.1][37890] -> [..45.153.187.96][.4343]
detected: [....92] [ip4][..udp] [.......10.0.0.1][37890] -> [..45.153.187.96][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....93] [ip4][..udp] [.......10.0.0.1][45987] -> [..45.153.187.96][.4343]
detected: [....93] [ip4][..udp] [.......10.0.0.1][45987] -> [..45.153.187.96][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....94] [ip4][..udp] [.......10.0.0.1][46063] -> [..45.153.187.96][.4343]
detected: [....94] [ip4][..udp] [.......10.0.0.1][46063] -> [..45.153.187.96][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....95] [ip4][..udp] [.......10.0.0.1][43129] -> [..45.153.187.96][.4343]
detected: [....95] [ip4][..udp] [.......10.0.0.1][43129] -> [..45.153.187.96][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....96] [ip4][..udp] [.......10.0.0.1][40451] -> [..45.153.187.96][.4343]
detected: [....96] [ip4][..udp] [.......10.0.0.1][40451] -> [..45.153.187.96][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....97] [ip4][..udp] [.......10.0.0.1][55896] -> [...66.85.30.115][..443]
detected: [....97] [ip4][..udp] [.......10.0.0.1][55896] -> [...66.85.30.115][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....98] [ip4][..udp] [.......10.0.0.1][48448] -> [...66.85.30.115][..443]
detected: [....98] [ip4][..udp] [.......10.0.0.1][48448] -> [...66.85.30.115][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....99] [ip4][..udp] [.......10.0.0.1][40099] -> [...66.85.30.115][..443]
detected: [....99] [ip4][..udp] [.......10.0.0.1][40099] -> [...66.85.30.115][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...100] [ip4][..udp] [.......10.0.0.1][47432] -> [...66.85.30.115][..443]
detected: [...100] [ip4][..udp] [.......10.0.0.1][47432] -> [...66.85.30.115][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...101] [ip4][..udp] [.......10.0.0.1][54112] -> [...66.85.30.115][..443]
detected: [...101] [ip4][..udp] [.......10.0.0.1][54112] -> [...66.85.30.115][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...102] [ip4][..udp] [.......10.0.0.1][35634] -> [...66.85.30.115][..443]
detected: [...102] [ip4][..udp] [.......10.0.0.1][35634] -> [...66.85.30.115][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...103] [ip4][..udp] [.......10.0.0.1][46255] -> [..93.95.226.165][..443]
detected: [...103] [ip4][..udp] [.......10.0.0.1][46255] -> [..93.95.226.165][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...104] [ip4][..udp] [.......10.0.0.1][49186] -> [..93.95.226.165][..443]
detected: [...104] [ip4][..udp] [.......10.0.0.1][49186] -> [..93.95.226.165][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...105] [ip4][..udp] [.......10.0.0.1][58113] -> [..93.95.226.165][..443]
detected: [...105] [ip4][..udp] [.......10.0.0.1][58113] -> [..93.95.226.165][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...106] [ip4][..udp] [.......10.0.0.1][42156] -> [..93.95.226.165][..443]
detected: [...106] [ip4][..udp] [.......10.0.0.1][42156] -> [..93.95.226.165][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...107] [ip4][..udp] [.......10.0.0.1][58936] -> [..93.95.226.165][..443]
detected: [...107] [ip4][..udp] [.......10.0.0.1][58936] -> [..93.95.226.165][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...108] [ip4][..udp] [.......10.0.0.1][40595] -> [..93.95.226.165][..443]
detected: [...108] [ip4][..udp] [.......10.0.0.1][40595] -> [..93.95.226.165][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...109] [ip4][..udp] [.......10.0.0.1][37035] -> [..51.158.166.97][..443]
detected: [...109] [ip4][..udp] [.......10.0.0.1][37035] -> [..51.158.166.97][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...110] [ip4][..udp] [.......10.0.0.1][47257] -> [..51.158.166.97][..443]
detected: [...110] [ip4][..udp] [.......10.0.0.1][47257] -> [..51.158.166.97][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...111] [ip4][..udp] [.......10.0.0.1][46066] -> [..51.158.166.97][..443]
detected: [...111] [ip4][..udp] [.......10.0.0.1][46066] -> [..51.158.166.97][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...112] [ip4][..udp] [.......10.0.0.1][56494] -> [..51.158.166.97][..443]
detected: [...112] [ip4][..udp] [.......10.0.0.1][56494] -> [..51.158.166.97][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...113] [ip4][..udp] [.......10.0.0.1][60334] -> [..51.158.166.97][..443]
detected: [...113] [ip4][..udp] [.......10.0.0.1][60334] -> [..51.158.166.97][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...114] [ip4][..udp] [.......10.0.0.1][48065] -> [..51.158.166.97][..443]
detected: [...114] [ip4][..udp] [.......10.0.0.1][48065] -> [..51.158.166.97][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...115] [ip4][..udp] [.......10.0.0.1][41717] -> [.176.56.237.171][..443]
detected: [...115] [ip4][..udp] [.......10.0.0.1][41717] -> [.176.56.237.171][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...116] [ip4][..udp] [.......10.0.0.1][55046] -> [.176.56.237.171][..443]
detected: [...116] [ip4][..udp] [.......10.0.0.1][55046] -> [.176.56.237.171][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...117] [ip4][..udp] [.......10.0.0.1][51363] -> [.176.56.237.171][..443]
detected: [...117] [ip4][..udp] [.......10.0.0.1][51363] -> [.176.56.237.171][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...118] [ip4][..udp] [.......10.0.0.1][36676] -> [.176.56.237.171][..443]
detected: [...118] [ip4][..udp] [.......10.0.0.1][36676] -> [.176.56.237.171][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...119] [ip4][..udp] [.......10.0.0.1][49008] -> [.176.56.237.171][..443]
detected: [...119] [ip4][..udp] [.......10.0.0.1][49008] -> [.176.56.237.171][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...120] [ip4][..udp] [.......10.0.0.1][48325] -> [.176.56.237.171][..443]
detected: [...120] [ip4][..udp] [.......10.0.0.1][48325] -> [.176.56.237.171][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...121] [ip4][..udp] [.......10.0.0.1][60091] -> [178.216.201.222][.2053]
detected: [...121] [ip4][..udp] [.......10.0.0.1][60091] -> [178.216.201.222][.2053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...122] [ip4][..udp] [.......10.0.0.1][52356] -> [178.216.201.222][.2053]
detected: [...122] [ip4][..udp] [.......10.0.0.1][52356] -> [178.216.201.222][.2053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...123] [ip4][..udp] [.......10.0.0.1][53117] -> [178.216.201.222][.2053]
detected: [...123] [ip4][..udp] [.......10.0.0.1][53117] -> [178.216.201.222][.2053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...124] [ip4][..udp] [.......10.0.0.1][52221] -> [178.216.201.222][.2053]
detected: [...124] [ip4][..udp] [.......10.0.0.1][52221] -> [178.216.201.222][.2053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...125] [ip4][..udp] [.......10.0.0.1][38594] -> [178.216.201.222][.2053]
detected: [...125] [ip4][..udp] [.......10.0.0.1][38594] -> [178.216.201.222][.2053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...126] [ip4][..udp] [.......10.0.0.1][58740] -> [178.216.201.222][.2053]
detected: [...126] [ip4][..udp] [.......10.0.0.1][58740] -> [178.216.201.222][.2053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...127] [ip4][..udp] [.......10.0.0.1][43224] -> [...45.76.113.31][..443]
detected: [...127] [ip4][..udp] [.......10.0.0.1][43224] -> [...45.76.113.31][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...128] [ip4][..udp] [.......10.0.0.1][55267] -> [...45.76.113.31][..443]
detected: [...128] [ip4][..udp] [.......10.0.0.1][55267] -> [...45.76.113.31][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...129] [ip4][..udp] [.......10.0.0.1][51589] -> [...45.76.113.31][..443]
detected: [...129] [ip4][..udp] [.......10.0.0.1][51589] -> [...45.76.113.31][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...130] [ip4][..udp] [.......10.0.0.1][43776] -> [...45.76.113.31][..443]
detected: [...130] [ip4][..udp] [.......10.0.0.1][43776] -> [...45.76.113.31][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...131] [ip4][..udp] [.......10.0.0.1][59707] -> [...45.76.113.31][..443]
detected: [...131] [ip4][..udp] [.......10.0.0.1][59707] -> [...45.76.113.31][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...132] [ip4][..udp] [.......10.0.0.1][52069] -> [...45.76.113.31][..443]
detected: [...132] [ip4][..udp] [.......10.0.0.1][52069] -> [...45.76.113.31][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...133] [ip4][..udp] [.......10.0.0.1][53876] -> [..151.80.222.79][..443]
detected: [...133] [ip4][..udp] [.......10.0.0.1][53876] -> [..151.80.222.79][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...134] [ip4][..udp] [.......10.0.0.1][45497] -> [..151.80.222.79][..443]
detected: [...134] [ip4][..udp] [.......10.0.0.1][45497] -> [..151.80.222.79][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...135] [ip4][..udp] [.......10.0.0.1][47729] -> [..151.80.222.79][..443]
detected: [...135] [ip4][..udp] [.......10.0.0.1][47729] -> [..151.80.222.79][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...136] [ip4][..udp] [.......10.0.0.1][52040] -> [..151.80.222.79][..443]
detected: [...136] [ip4][..udp] [.......10.0.0.1][52040] -> [..151.80.222.79][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...137] [ip4][..udp] [.......10.0.0.1][57636] -> [..151.80.222.79][..443]
detected: [...137] [ip4][..udp] [.......10.0.0.1][57636] -> [..151.80.222.79][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...138] [ip4][..udp] [.......10.0.0.1][38511] -> [..151.80.222.79][..443]
detected: [...138] [ip4][..udp] [.......10.0.0.1][38511] -> [..151.80.222.79][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...139] [ip4][..udp] [.......10.0.0.1][59011] -> [...142.4.205.47][..443]
detected: [...139] [ip4][..udp] [.......10.0.0.1][59011] -> [...142.4.205.47][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...140] [ip4][..udp] [.......10.0.0.1][50387] -> [...142.4.205.47][..443]
detected: [...140] [ip4][..udp] [.......10.0.0.1][50387] -> [...142.4.205.47][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...141] [ip4][..udp] [.......10.0.0.1][40138] -> [...142.4.205.47][..443]
detected: [...141] [ip4][..udp] [.......10.0.0.1][40138] -> [...142.4.205.47][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...142] [ip4][..udp] [.......10.0.0.1][51935] -> [...142.4.205.47][..443]
detected: [...142] [ip4][..udp] [.......10.0.0.1][51935] -> [...142.4.205.47][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...143] [ip4][..udp] [.......10.0.0.1][54096] -> [...142.4.205.47][..443]
detected: [...143] [ip4][..udp] [.......10.0.0.1][54096] -> [...142.4.205.47][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...144] [ip4][..udp] [.......10.0.0.1][35903] -> [...142.4.205.47][..443]
detected: [...144] [ip4][..udp] [.......10.0.0.1][35903] -> [...142.4.205.47][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...145] [ip4][..udp] [.......10.0.0.1][37328] -> [193.191.187.107][..443]
detected: [...145] [ip4][..udp] [.......10.0.0.1][37328] -> [193.191.187.107][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...146] [ip4][..udp] [.......10.0.0.1][35885] -> [193.191.187.107][..443]
detected: [...146] [ip4][..udp] [.......10.0.0.1][35885] -> [193.191.187.107][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...147] [ip4][..udp] [.......10.0.0.1][33279] -> [193.191.187.107][..443]
detected: [...147] [ip4][..udp] [.......10.0.0.1][33279] -> [193.191.187.107][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...148] [ip4][..udp] [.......10.0.0.1][54215] -> [193.191.187.107][..443]
detected: [...148] [ip4][..udp] [.......10.0.0.1][54215] -> [193.191.187.107][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...149] [ip4][..udp] [.......10.0.0.1][49040] -> [193.191.187.107][..443]
detected: [...149] [ip4][..udp] [.......10.0.0.1][49040] -> [193.191.187.107][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...150] [ip4][..udp] [.......10.0.0.1][49115] -> [193.191.187.107][..443]
detected: [...150] [ip4][..udp] [.......10.0.0.1][49115] -> [193.191.187.107][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...151] [ip4][..udp] [.......10.0.0.1][45375] -> [..51.15.124.208][.4343]
detected: [...151] [ip4][..udp] [.......10.0.0.1][45375] -> [..51.15.124.208][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...152] [ip4][..udp] [.......10.0.0.1][49975] -> [..51.15.124.208][.4343]
detected: [...152] [ip4][..udp] [.......10.0.0.1][49975] -> [..51.15.124.208][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
new: [...153] [ip4][..udp] [.......10.0.0.1][38310] -> [..51.15.124.208][.4343]
detected: [...153] [ip4][..udp] [.......10.0.0.1][38310] -> [..51.15.124.208][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...154] [ip4][..udp] [.......10.0.0.1][55768] -> [..51.15.124.208][.4343]
detected: [...154] [ip4][..udp] [.......10.0.0.1][55768] -> [..51.15.124.208][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
new: [...155] [ip4][..udp] [.......10.0.0.1][39910] -> [..51.15.124.208][.4343]
detected: [...155] [ip4][..udp] [.......10.0.0.1][39910] -> [..51.15.124.208][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [3/16]
new: [...156] [ip4][..udp] [.......10.0.0.1][53887] -> [..51.15.124.208][.4343]
detected: [...156] [ip4][..udp] [.......10.0.0.1][53887] -> [..51.15.124.208][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...157] [ip4][..udp] [.......10.0.0.1][36930] -> [167.114.220.125][..443]
detected: [...157] [ip4][..udp] [.......10.0.0.1][36930] -> [167.114.220.125][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...158] [ip4][..udp] [.......10.0.0.1][38508] -> [167.114.220.125][..443]
detected: [...158] [ip4][..udp] [.......10.0.0.1][38508] -> [167.114.220.125][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [4/16]
new: [...159] [ip4][..udp] [.......10.0.0.1][39816] -> [167.114.220.125][..443]
detected: [...159] [ip4][..udp] [.......10.0.0.1][39816] -> [167.114.220.125][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...160] [ip4][..udp] [.......10.0.0.1][45613] -> [167.114.220.125][..443]
detected: [...160] [ip4][..udp] [.......10.0.0.1][45613] -> [167.114.220.125][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [5/16]
new: [...161] [ip4][..udp] [.......10.0.0.1][59589] -> [167.114.220.125][..443]
detected: [...161] [ip4][..udp] [.......10.0.0.1][59589] -> [167.114.220.125][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [6/16]
new: [...162] [ip4][..udp] [.......10.0.0.1][45747] -> [167.114.220.125][..443]
detected: [...162] [ip4][..udp] [.......10.0.0.1][45747] -> [167.114.220.125][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...163] [ip4][..udp] [.......10.0.0.1][35734] -> [..5.189.170.196][..465]
detected: [...163] [ip4][..udp] [.......10.0.0.1][35734] -> [..5.189.170.196][..465] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...164] [ip4][..udp] [.......10.0.0.1][44496] -> [..5.189.170.196][..465]
detected: [...164] [ip4][..udp] [.......10.0.0.1][44496] -> [..5.189.170.196][..465] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...165] [ip4][..udp] [.......10.0.0.1][58104] -> [..5.189.170.196][..465]
detected: [...165] [ip4][..udp] [.......10.0.0.1][58104] -> [..5.189.170.196][..465] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [7/16]
new: [...166] [ip4][..udp] [.......10.0.0.1][40748] -> [..5.189.170.196][..465]
detected: [...166] [ip4][..udp] [.......10.0.0.1][40748] -> [..5.189.170.196][..465] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...167] [ip4][..udp] [.......10.0.0.1][58650] -> [..5.189.170.196][..465]
detected: [...167] [ip4][..udp] [.......10.0.0.1][58650] -> [..5.189.170.196][..465] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...168] [ip4][..udp] [.......10.0.0.1][59749] -> [..5.189.170.196][..465]
detected: [...168] [ip4][..udp] [.......10.0.0.1][59749] -> [..5.189.170.196][..465] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [8/16]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [9/16]
new: [...169] [ip4][..udp] [.......10.0.0.1][38709] -> [.185.253.154.66][.4343]
detected: [...169] [ip4][..udp] [.......10.0.0.1][38709] -> [.185.253.154.66][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...170] [ip4][..udp] [.......10.0.0.1][44469] -> [.185.253.154.66][.4343]
detected: [...170] [ip4][..udp] [.......10.0.0.1][44469] -> [.185.253.154.66][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...171] [ip4][..udp] [.......10.0.0.1][45815] -> [.185.253.154.66][.4343]
detected: [...171] [ip4][..udp] [.......10.0.0.1][45815] -> [.185.253.154.66][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
new: [...172] [ip4][..udp] [.......10.0.0.1][43540] -> [.185.253.154.66][.4343]
detected: [...172] [ip4][..udp] [.......10.0.0.1][43540] -> [.185.253.154.66][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...173] [ip4][..udp] [.......10.0.0.1][48159] -> [.185.253.154.66][.4343]
detected: [...173] [ip4][..udp] [.......10.0.0.1][48159] -> [.185.253.154.66][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
new: [...174] [ip4][..udp] [.......10.0.0.1][38482] -> [.185.253.154.66][.4343]
detected: [...174] [ip4][..udp] [.......10.0.0.1][38482] -> [.185.253.154.66][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [3/16]
new: [...175] [ip4][..udp] [.......10.0.0.1][51647] -> [..142.4.204.111][..443]
detected: [...175] [ip4][..udp] [.......10.0.0.1][51647] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...176] [ip4][..udp] [.......10.0.0.1][59224] -> [..142.4.204.111][..443]
detected: [...176] [ip4][..udp] [.......10.0.0.1][59224] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...177] [ip4][..udp] [.......10.0.0.1][41895] -> [..142.4.204.111][..443]
detected: [...177] [ip4][..udp] [.......10.0.0.1][41895] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [4/16]
new: [...178] [ip4][..udp] [.......10.0.0.1][46363] -> [..142.4.204.111][..443]
detected: [...178] [ip4][..udp] [.......10.0.0.1][46363] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...179] [ip4][..udp] [.......10.0.0.1][57180] -> [..142.4.204.111][..443]
detected: [...179] [ip4][..udp] [.......10.0.0.1][57180] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [5/16]
new: [...180] [ip4][..udp] [.......10.0.0.1][47621] -> [..142.4.204.111][..443]
detected: [...180] [ip4][..udp] [.......10.0.0.1][47621] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [6/16]
update: [....10] [ip4][..udp] [.......10.0.0.1][43748] -> [..62.210.180.71][.1053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....8] [ip4][..udp] [.......10.0.0.1][52636] -> [..62.210.180.71][.1053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....7] [ip4][..udp] [.......10.0.0.1][51004] -> [..62.210.180.71][.1053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....11] [ip4][..udp] [.......10.0.0.1][57395] -> [..62.210.180.71][.1053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....12] [ip4][..udp] [.......10.0.0.1][53299] -> [..62.210.180.71][.1053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....9] [ip4][..udp] [.......10.0.0.1][49518] -> [..62.210.180.71][.1053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...181] [ip4][..udp] [.......10.0.0.1][38371] -> [.212.47.228.136][..443]
detected: [...181] [ip4][..udp] [.......10.0.0.1][38371] -> [.212.47.228.136][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...182] [ip4][..udp] [.......10.0.0.1][34228] -> [.212.47.228.136][..443]
detected: [...182] [ip4][..udp] [.......10.0.0.1][34228] -> [.212.47.228.136][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...183] [ip4][..udp] [.......10.0.0.1][52056] -> [.212.47.228.136][..443]
detected: [...183] [ip4][..udp] [.......10.0.0.1][52056] -> [.212.47.228.136][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
new: [...184] [ip4][..udp] [.......10.0.0.1][40775] -> [.212.47.228.136][..443]
detected: [...184] [ip4][..udp] [.......10.0.0.1][40775] -> [.212.47.228.136][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...185] [ip4][..udp] [.......10.0.0.1][56335] -> [.212.47.228.136][..443]
detected: [...185] [ip4][..udp] [.......10.0.0.1][56335] -> [.212.47.228.136][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
new: [...186] [ip4][..udp] [.......10.0.0.1][60885] -> [.212.47.228.136][..443]
detected: [...186] [ip4][..udp] [.......10.0.0.1][60885] -> [.212.47.228.136][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [3/16]
new: [...187] [ip4][..udp] [.......10.0.0.1][58948] -> [....85.5.93.230][.8443]
detected: [...187] [ip4][..udp] [.......10.0.0.1][58948] -> [....85.5.93.230][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...188] [ip4][..udp] [.......10.0.0.1][50403] -> [....85.5.93.230][.8443]
detected: [...188] [ip4][..udp] [.......10.0.0.1][50403] -> [....85.5.93.230][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...189] [ip4][..udp] [.......10.0.0.1][46646] -> [....85.5.93.230][.8443]
detected: [...189] [ip4][..udp] [.......10.0.0.1][46646] -> [....85.5.93.230][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...190] [ip4][..udp] [.......10.0.0.1][57090] -> [....85.5.93.230][.8443]
detected: [...190] [ip4][..udp] [.......10.0.0.1][57090] -> [....85.5.93.230][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [4/16]
new: [...191] [ip4][..udp] [.......10.0.0.1][51826] -> [....85.5.93.230][.8443]
detected: [...191] [ip4][..udp] [.......10.0.0.1][51826] -> [....85.5.93.230][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...192] [ip4][..udp] [.......10.0.0.1][39259] -> [....85.5.93.230][.8443]
detected: [...192] [ip4][..udp] [.......10.0.0.1][39259] -> [....85.5.93.230][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [5/16]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [6/16]
update: [....51] [ip4][..udp] [.......10.0.0.1][34885] -> [...195.30.94.28][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....47] [ip4][..udp] [.......10.0.0.1][37595] -> [.139.59.200.116][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....96] [ip4][..udp] [.......10.0.0.1][40451] -> [..45.153.187.96][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....40] [ip4][..udp] [.......10.0.0.1][36668] -> [..51.15.122.250][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...123] [ip4][..udp] [.......10.0.0.1][53117] -> [178.216.201.222][.2053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....58] [ip4][..udp] [.......10.0.0.1][43505] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [.......10.0.0.1][38388] -> [..149.56.228.45][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...100] [ip4][..udp] [.......10.0.0.1][47432] -> [...66.85.30.115][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....15] [ip4][..udp] [.......10.0.0.1][35005] -> [.185.134.196.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...110] [ip4][..udp] [.......10.0.0.1][47257] -> [..51.158.166.97][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....85] [ip4][..udp] [.......10.0.0.1][38812] -> [....51.15.62.65][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...109] [ip4][..udp] [.......10.0.0.1][37035] -> [..51.158.166.97][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....38] [ip4][..udp] [.......10.0.0.1][38867] -> [..51.15.122.250][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...138] [ip4][..udp] [.......10.0.0.1][38511] -> [..151.80.222.79][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....28] [ip4][..udp] [.......10.0.0.1][37950] -> [.209.250.241.25][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...130] [ip4][..udp] [.......10.0.0.1][43776] -> [...45.76.113.31][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...149] [ip4][..udp] [.......10.0.0.1][49040] -> [193.191.187.107][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....23] [ip4][..udp] [.......10.0.0.1][59641] -> [104.238.186.192][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...142] [ip4][..udp] [.......10.0.0.1][51935] -> [...142.4.205.47][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...104] [ip4][..udp] [.......10.0.0.1][49186] -> [..93.95.226.165][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....41] [ip4][..udp] [.......10.0.0.1][39007] -> [..51.15.122.250][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...132] [ip4][..udp] [.......10.0.0.1][52069] -> [...45.76.113.31][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....97] [ip4][..udp] [.......10.0.0.1][55896] -> [...66.85.30.115][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...150] [ip4][..udp] [.......10.0.0.1][49115] -> [193.191.187.107][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...116] [ip4][..udp] [.......10.0.0.1][55046] -> [.176.56.237.171][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....13] [ip4][..udp] [.......10.0.0.1][53697] -> [.185.134.196.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....77] [ip4][..udp] [.......10.0.0.1][38278] -> [205.185.116.116][..553] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....69] [ip4][..udp] [.......10.0.0.1][41800] -> [..172.104.93.80][.1443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...143] [ip4][..udp] [.......10.0.0.1][54096] -> [...142.4.205.47][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....81] [ip4][..udp] [.......10.0.0.1][52911] -> [..52.65.235.129][..443] [DNScrypt][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...118] [ip4][..udp] [.......10.0.0.1][36676] -> [.176.56.237.171][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....73] [ip4][..udp] [.......10.0.0.1][38349] -> [205.185.116.116][..553] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....14] [ip4][..udp] [.......10.0.0.1][37413] -> [.185.134.196.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...119] [ip4][..udp] [.......10.0.0.1][49008] -> [.176.56.237.171][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....45] [ip4][..udp] [.......10.0.0.1][50335] -> [.139.59.200.116][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....53] [ip4][..udp] [.......10.0.0.1][53811] -> [...195.30.94.28][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....65] [ip4][..udp] [.......10.0.0.1][57465] -> [.149.112.112.10][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....50] [ip4][..udp] [.......10.0.0.1][33369] -> [...195.30.94.28][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....39] [ip4][..udp] [.......10.0.0.1][59709] -> [..51.15.122.250][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...102] [ip4][..udp] [.......10.0.0.1][35634] -> [...66.85.30.115][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....36] [ip4][..udp] [.......10.0.0.1][43365] -> [....41.79.69.13][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....66] [ip4][..udp] [.......10.0.0.1][55482] -> [.149.112.112.10][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...101] [ip4][..udp] [.......10.0.0.1][54112] -> [...66.85.30.115][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....59] [ip4][..udp] [.......10.0.0.1][52284] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...144] [ip4][..udp] [.......10.0.0.1][35903] -> [...142.4.205.47][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....95] [ip4][..udp] [.......10.0.0.1][43129] -> [..45.153.187.96][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....29] [ip4][..udp] [.......10.0.0.1][34324] -> [.209.250.241.25][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....49] [ip4][..udp] [.......10.0.0.1][47865] -> [...195.30.94.28][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....21] [ip4][..udp] [.......10.0.0.1][39655] -> [104.238.186.192][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...117] [ip4][..udp] [.......10.0.0.1][51363] -> [.176.56.237.171][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...141] [ip4][..udp] [.......10.0.0.1][40138] -> [...142.4.205.47][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...140] [ip4][..udp] [.......10.0.0.1][50387] -> [...142.4.205.47][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....31] [ip4][..udp] [.......10.0.0.1][43609] -> [....41.79.69.13][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...145] [ip4][..udp] [.......10.0.0.1][37328] -> [193.191.187.107][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....84] [ip4][..udp] [.......10.0.0.1][55409] -> [..52.65.235.129][..443] [DNScrypt][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...121] [ip4][..udp] [.......10.0.0.1][60091] -> [178.216.201.222][.2053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...137] [ip4][..udp] [.......10.0.0.1][57636] -> [..151.80.222.79][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...147] [ip4][..udp] [.......10.0.0.1][33279] -> [193.191.187.107][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...113] [ip4][..udp] [.......10.0.0.1][60334] -> [..51.158.166.97][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....99] [ip4][..udp] [.......10.0.0.1][40099] -> [...66.85.30.115][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...114] [ip4][..udp] [.......10.0.0.1][48065] -> [..51.158.166.97][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....89] [ip4][..udp] [.......10.0.0.1][43714] -> [....51.15.62.65][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....37] [ip4][..udp] [.......10.0.0.1][45767] -> [..51.15.122.250][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....33] [ip4][..udp] [.......10.0.0.1][56043] -> [....41.79.69.13][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....74] [ip4][..udp] [.......10.0.0.1][38879] -> [205.185.116.116][..553] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....70] [ip4][..udp] [.......10.0.0.1][38283] -> [..172.104.93.80][.1443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....88] [ip4][..udp] [.......10.0.0.1][33521] -> [....51.15.62.65][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...111] [ip4][..udp] [.......10.0.0.1][46066] -> [..51.158.166.97][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....5] [ip4][..udp] [.......10.0.0.1][35228] -> [..149.56.228.45][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....52] [ip4][..udp] [.......10.0.0.1][44093] -> [...195.30.94.28][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...134] [ip4][..udp] [.......10.0.0.1][45497] -> [..151.80.222.79][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...105] [ip4][..udp] [.......10.0.0.1][58113] -> [..93.95.226.165][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....98] [ip4][..udp] [.......10.0.0.1][48448] -> [...66.85.30.115][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....35] [ip4][..udp] [.......10.0.0.1][56177] -> [....41.79.69.13][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....63] [ip4][..udp] [.......10.0.0.1][56022] -> [.149.112.112.10][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....56] [ip4][..udp] [.......10.0.0.1][60962] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....30] [ip4][..udp] [.......10.0.0.1][59367] -> [.209.250.241.25][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....48] [ip4][..udp] [.......10.0.0.1][59194] -> [.139.59.200.116][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....72] [ip4][..udp] [.......10.0.0.1][56902] -> [..172.104.93.80][.1443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....86] [ip4][..udp] [.......10.0.0.1][45993] -> [....51.15.62.65][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...112] [ip4][..udp] [.......10.0.0.1][56494] -> [..51.158.166.97][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....25] [ip4][..udp] [.......10.0.0.1][32793] -> [.209.250.241.25][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...124] [ip4][..udp] [.......10.0.0.1][52221] -> [178.216.201.222][.2053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....17] [ip4][..udp] [.......10.0.0.1][50435] -> [.185.134.196.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....54] [ip4][..udp] [.......10.0.0.1][44282] -> [...195.30.94.28][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...135] [ip4][..udp] [.......10.0.0.1][47729] -> [..151.80.222.79][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...133] [ip4][..udp] [.......10.0.0.1][53876] -> [..151.80.222.79][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...139] [ip4][..udp] [.......10.0.0.1][59011] -> [...142.4.205.47][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....2] [ip4][..udp] [.......10.0.0.1][45722] -> [..149.56.228.45][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [.......10.0.0.1][35495] -> [..149.56.228.45][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....61] [ip4][..udp] [.......10.0.0.1][50035] -> [.149.112.112.10][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....79] [ip4][..udp] [.......10.0.0.1][55834] -> [..52.65.235.129][..443] [DNScrypt][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....68] [ip4][..udp] [.......10.0.0.1][50913] -> [..172.104.93.80][.1443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....82] [ip4][..udp] [.......10.0.0.1][47685] -> [..52.65.235.129][..443] [DNScrypt][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...122] [ip4][..udp] [.......10.0.0.1][52356] -> [178.216.201.222][.2053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...148] [ip4][..udp] [.......10.0.0.1][54215] -> [193.191.187.107][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....60] [ip4][..udp] [.......10.0.0.1][46856] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...115] [ip4][..udp] [.......10.0.0.1][41717] -> [.176.56.237.171][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....4] [ip4][..udp] [.......10.0.0.1][33565] -> [..149.56.228.45][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....32] [ip4][..udp] [.......10.0.0.1][46229] -> [....41.79.69.13][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....27] [ip4][..udp] [.......10.0.0.1][37123] -> [.209.250.241.25][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....43] [ip4][..udp] [.......10.0.0.1][59476] -> [.139.59.200.116][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...136] [ip4][..udp] [.......10.0.0.1][52040] -> [..151.80.222.79][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....83] [ip4][..udp] [.......10.0.0.1][55979] -> [..52.65.235.129][..443] [DNScrypt][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...146] [ip4][..udp] [.......10.0.0.1][35885] -> [193.191.187.107][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...106] [ip4][..udp] [.......10.0.0.1][42156] -> [..93.95.226.165][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....93] [ip4][..udp] [.......10.0.0.1][45987] -> [..45.153.187.96][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...103] [ip4][..udp] [.......10.0.0.1][46255] -> [..93.95.226.165][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...128] [ip4][..udp] [.......10.0.0.1][55267] -> [...45.76.113.31][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....62] [ip4][..udp] [.......10.0.0.1][40009] -> [.149.112.112.10][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....34] [ip4][..udp] [.......10.0.0.1][38136] -> [....41.79.69.13][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....6] [ip4][..udp] [.......10.0.0.1][60301] -> [..149.56.228.45][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....91] [ip4][..udp] [.......10.0.0.1][41913] -> [..45.153.187.96][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....24] [ip4][..udp] [.......10.0.0.1][44491] -> [104.238.186.192][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....75] [ip4][..udp] [.......10.0.0.1][43528] -> [205.185.116.116][..553] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....78] [ip4][..udp] [.......10.0.0.1][55822] -> [205.185.116.116][..553] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....94] [ip4][..udp] [.......10.0.0.1][46063] -> [..45.153.187.96][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....92] [ip4][..udp] [.......10.0.0.1][37890] -> [..45.153.187.96][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...126] [ip4][..udp] [.......10.0.0.1][58740] -> [178.216.201.222][.2053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....90] [ip4][..udp] [.......10.0.0.1][60735] -> [....51.15.62.65][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....76] [ip4][..udp] [.......10.0.0.1][51770] -> [205.185.116.116][..553] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....44] [ip4][..udp] [.......10.0.0.1][47341] -> [.139.59.200.116][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....87] [ip4][..udp] [.......10.0.0.1][56688] -> [....51.15.62.65][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....71] [ip4][..udp] [.......10.0.0.1][59489] -> [..172.104.93.80][.1443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...127] [ip4][..udp] [.......10.0.0.1][43224] -> [...45.76.113.31][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....20] [ip4][..udp] [.......10.0.0.1][56997] -> [104.238.186.192][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....42] [ip4][..udp] [.......10.0.0.1][38362] -> [..51.15.122.250][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....19] [ip4][..udp] [.......10.0.0.1][44712] -> [104.238.186.192][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....18] [ip4][..udp] [.......10.0.0.1][55123] -> [.185.134.196.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....55] [ip4][..udp] [.......10.0.0.1][32970] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...131] [ip4][..udp] [.......10.0.0.1][59707] -> [...45.76.113.31][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...120] [ip4][..udp] [.......10.0.0.1][48325] -> [.176.56.237.171][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...107] [ip4][..udp] [.......10.0.0.1][58936] -> [..93.95.226.165][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...129] [ip4][..udp] [.......10.0.0.1][51589] -> [...45.76.113.31][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....26] [ip4][..udp] [.......10.0.0.1][56035] -> [.209.250.241.25][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....57] [ip4][..udp] [.......10.0.0.1][33071] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...125] [ip4][..udp] [.......10.0.0.1][38594] -> [178.216.201.222][.2053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....22] [ip4][..udp] [.......10.0.0.1][59261] -> [104.238.186.192][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...108] [ip4][..udp] [.......10.0.0.1][40595] -> [..93.95.226.165][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....46] [ip4][..udp] [.......10.0.0.1][43633] -> [.139.59.200.116][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....67] [ip4][..udp] [.......10.0.0.1][49512] -> [..172.104.93.80][.1443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....16] [ip4][..udp] [.......10.0.0.1][59405] -> [.185.134.196.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....80] [ip4][..udp] [.......10.0.0.1][46313] -> [..52.65.235.129][..443] [DNScrypt][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....64] [ip4][..udp] [.......10.0.0.1][42570] -> [.149.112.112.10][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...193] [ip4][..udp] [.......10.0.0.1][50601] -> [..139.99.222.72][.8443]
detected: [...193] [ip4][..udp] [.......10.0.0.1][50601] -> [..139.99.222.72][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...194] [ip4][..udp] [.......10.0.0.1][40374] -> [..139.99.222.72][.8443]
detected: [...194] [ip4][..udp] [.......10.0.0.1][40374] -> [..139.99.222.72][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...195] [ip4][..udp] [.......10.0.0.1][51509] -> [..139.99.222.72][.8443]
detected: [...195] [ip4][..udp] [.......10.0.0.1][51509] -> [..139.99.222.72][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
new: [...196] [ip4][..udp] [.......10.0.0.1][45682] -> [..139.99.222.72][.8443]
detected: [...196] [ip4][..udp] [.......10.0.0.1][45682] -> [..139.99.222.72][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
new: [...197] [ip4][..udp] [.......10.0.0.1][59400] -> [..139.99.222.72][.8443]
detected: [...197] [ip4][..udp] [.......10.0.0.1][59400] -> [..139.99.222.72][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...198] [ip4][..udp] [.......10.0.0.1][49796] -> [..139.99.222.72][.8443]
detected: [...198] [ip4][..udp] [.......10.0.0.1][49796] -> [..139.99.222.72][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [3/16]
new: [...199] [ip4][..udp] [.......10.0.0.1][48300] -> [.144.91.106.227][..443]
detected: [...199] [ip4][..udp] [.......10.0.0.1][48300] -> [.144.91.106.227][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...200] [ip4][..udp] [.......10.0.0.1][41108] -> [.144.91.106.227][..443]
detected: [...200] [ip4][..udp] [.......10.0.0.1][41108] -> [.144.91.106.227][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [4/16]
new: [...201] [ip4][..udp] [.......10.0.0.1][48237] -> [.144.91.106.227][..443]
detected: [...201] [ip4][..udp] [.......10.0.0.1][48237] -> [.144.91.106.227][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [5/16]
new: [...202] [ip4][..udp] [.......10.0.0.1][54305] -> [.144.91.106.227][..443]
detected: [...202] [ip4][..udp] [.......10.0.0.1][54305] -> [.144.91.106.227][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...203] [ip4][..udp] [.......10.0.0.1][55469] -> [.144.91.106.227][..443]
detected: [...203] [ip4][..udp] [.......10.0.0.1][55469] -> [.144.91.106.227][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...204] [ip4][..udp] [.......10.0.0.1][54204] -> [.144.91.106.227][..443]
detected: [...204] [ip4][..udp] [.......10.0.0.1][54204] -> [.144.91.106.227][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [6/16]
new: [...205] [ip4][..udp] [.......10.0.0.1][33293] -> [..46.227.200.55][.8443]
detected: [...205] [ip4][..udp] [.......10.0.0.1][33293] -> [..46.227.200.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...206] [ip4][..udp] [.......10.0.0.1][38242] -> [..46.227.200.55][.8443]
detected: [...206] [ip4][..udp] [.......10.0.0.1][38242] -> [..46.227.200.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...207] [ip4][..udp] [.......10.0.0.1][33246] -> [..46.227.200.55][.8443]
detected: [...207] [ip4][..udp] [.......10.0.0.1][33246] -> [..46.227.200.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [7/16]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [8/16]
new: [...208] [ip4][..udp] [.......10.0.0.1][50277] -> [..46.227.200.55][.8443]
detected: [...208] [ip4][..udp] [.......10.0.0.1][50277] -> [..46.227.200.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...209] [ip4][..udp] [.......10.0.0.1][44161] -> [..46.227.200.55][.8443]
detected: [...209] [ip4][..udp] [.......10.0.0.1][44161] -> [..46.227.200.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [9/16]
new: [...210] [ip4][..udp] [.......10.0.0.1][49177] -> [..46.227.200.55][.8443]
detected: [...210] [ip4][..udp] [.......10.0.0.1][49177] -> [..46.227.200.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...211] [ip4][..udp] [.......10.0.0.1][54375] -> [..107.170.57.34][..443]
detected: [...211] [ip4][..udp] [.......10.0.0.1][54375] -> [..107.170.57.34][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...212] [ip4][..udp] [.......10.0.0.1][55185] -> [..107.170.57.34][..443]
detected: [...212] [ip4][..udp] [.......10.0.0.1][55185] -> [..107.170.57.34][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [10/16]
new: [...213] [ip4][..udp] [.......10.0.0.1][36335] -> [..107.170.57.34][..443]
detected: [...213] [ip4][..udp] [.......10.0.0.1][36335] -> [..107.170.57.34][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...214] [ip4][..udp] [.......10.0.0.1][37287] -> [..107.170.57.34][..443]
detected: [...214] [ip4][..udp] [.......10.0.0.1][37287] -> [..107.170.57.34][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...215] [ip4][..udp] [.......10.0.0.1][33143] -> [..107.170.57.34][..443]
detected: [...215] [ip4][..udp] [.......10.0.0.1][33143] -> [..107.170.57.34][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...216] [ip4][..udp] [.......10.0.0.1][42141] -> [..107.170.57.34][..443]
detected: [...216] [ip4][..udp] [.......10.0.0.1][42141] -> [..107.170.57.34][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [11/16]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [12/16]
new: [...217] [ip4][..udp] [.......10.0.0.1][56988] -> [185.193.127.244][..443]
detected: [...217] [ip4][..udp] [.......10.0.0.1][56988] -> [185.193.127.244][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...218] [ip4][..udp] [.......10.0.0.1][50062] -> [185.193.127.244][..443]
detected: [...218] [ip4][..udp] [.......10.0.0.1][50062] -> [185.193.127.244][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...219] [ip4][..udp] [.......10.0.0.1][59354] -> [185.193.127.244][..443]
detected: [...219] [ip4][..udp] [.......10.0.0.1][59354] -> [185.193.127.244][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...220] [ip4][..udp] [.......10.0.0.1][54920] -> [185.193.127.244][..443]
detected: [...220] [ip4][..udp] [.......10.0.0.1][54920] -> [185.193.127.244][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [13/16]
new: [...221] [ip4][..udp] [.......10.0.0.1][46314] -> [185.193.127.244][..443]
detected: [...221] [ip4][..udp] [.......10.0.0.1][46314] -> [185.193.127.244][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...222] [ip4][..udp] [.......10.0.0.1][47971] -> [185.193.127.244][..443]
detected: [...222] [ip4][..udp] [.......10.0.0.1][47971] -> [185.193.127.244][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [14/16]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [15/16]
new: [...223] [ip4][..udp] [.......10.0.0.1][49568] -> [...77.66.84.233][..443]
detected: [...223] [ip4][..udp] [.......10.0.0.1][49568] -> [...77.66.84.233][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...224] [ip4][..udp] [.......10.0.0.1][46140] -> [...77.66.84.233][..443]
detected: [...224] [ip4][..udp] [.......10.0.0.1][46140] -> [...77.66.84.233][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...225] [ip4][..udp] [.......10.0.0.1][40209] -> [...77.66.84.233][..443]
detected: [...225] [ip4][..udp] [.......10.0.0.1][40209] -> [...77.66.84.233][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...226] [ip4][..udp] [.......10.0.0.1][49732] -> [...77.66.84.233][..443]
detected: [...226] [ip4][..udp] [.......10.0.0.1][49732] -> [...77.66.84.233][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [16/16]
new: [...227] [ip4][..udp] [.......10.0.0.1][50757] -> [...77.66.84.233][..443]
detected: [...227] [ip4][..udp] [.......10.0.0.1][50757] -> [...77.66.84.233][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...228] [ip4][..udp] [.......10.0.0.1][57109] -> [...77.66.84.233][..443]
detected: [...228] [ip4][..udp] [.......10.0.0.1][57109] -> [...77.66.84.233][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...159] [ip4][..udp] [.......10.0.0.1][39816] -> [167.114.220.125][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...175] [ip4][..udp] [.......10.0.0.1][51647] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...168] [ip4][..udp] [.......10.0.0.1][59749] -> [..5.189.170.196][..465] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...180] [ip4][..udp] [.......10.0.0.1][47621] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...172] [ip4][..udp] [.......10.0.0.1][43540] -> [.185.253.154.66][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....10] [ip4][..udp] [.......10.0.0.1][43748] -> [..62.210.180.71][.1053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...151] [ip4][..udp] [.......10.0.0.1][45375] -> [..51.15.124.208][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...171] [ip4][..udp] [.......10.0.0.1][45815] -> [.185.253.154.66][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...165] [ip4][..udp] [.......10.0.0.1][58104] -> [..5.189.170.196][..465] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...177] [ip4][..udp] [.......10.0.0.1][41895] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...154] [ip4][..udp] [.......10.0.0.1][55768] -> [..51.15.124.208][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...163] [ip4][..udp] [.......10.0.0.1][35734] -> [..5.189.170.196][..465] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...156] [ip4][..udp] [.......10.0.0.1][53887] -> [..51.15.124.208][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...158] [ip4][..udp] [.......10.0.0.1][38508] -> [167.114.220.125][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...173] [ip4][..udp] [.......10.0.0.1][48159] -> [.185.253.154.66][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...152] [ip4][..udp] [.......10.0.0.1][49975] -> [..51.15.124.208][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...178] [ip4][..udp] [.......10.0.0.1][46363] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...167] [ip4][..udp] [.......10.0.0.1][58650] -> [..5.189.170.196][..465] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....8] [ip4][..udp] [.......10.0.0.1][52636] -> [..62.210.180.71][.1053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...155] [ip4][..udp] [.......10.0.0.1][39910] -> [..51.15.124.208][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...170] [ip4][..udp] [.......10.0.0.1][44469] -> [.185.253.154.66][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...157] [ip4][..udp] [.......10.0.0.1][36930] -> [167.114.220.125][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...164] [ip4][..udp] [.......10.0.0.1][44496] -> [..5.189.170.196][..465] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...174] [ip4][..udp] [.......10.0.0.1][38482] -> [.185.253.154.66][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...161] [ip4][..udp] [.......10.0.0.1][59589] -> [167.114.220.125][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....7] [ip4][..udp] [.......10.0.0.1][51004] -> [..62.210.180.71][.1053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...176] [ip4][..udp] [.......10.0.0.1][59224] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...179] [ip4][..udp] [.......10.0.0.1][57180] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...153] [ip4][..udp] [.......10.0.0.1][38310] -> [..51.15.124.208][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...169] [ip4][..udp] [.......10.0.0.1][38709] -> [.185.253.154.66][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...166] [ip4][..udp] [.......10.0.0.1][40748] -> [..5.189.170.196][..465] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....11] [ip4][..udp] [.......10.0.0.1][57395] -> [..62.210.180.71][.1053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....12] [ip4][..udp] [.......10.0.0.1][53299] -> [..62.210.180.71][.1053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...160] [ip4][..udp] [.......10.0.0.1][45613] -> [167.114.220.125][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...162] [ip4][..udp] [.......10.0.0.1][45747] -> [167.114.220.125][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....9] [ip4][..udp] [.......10.0.0.1][49518] -> [..62.210.180.71][.1053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...229] [ip4][..udp] [.......10.0.0.1][59587] -> [..23.111.74.205][..443]
detected: [...229] [ip4][..udp] [.......10.0.0.1][59587] -> [..23.111.74.205][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...230] [ip4][..udp] [.......10.0.0.1][60852] -> [..23.111.74.205][..443]
detected: [...230] [ip4][..udp] [.......10.0.0.1][60852] -> [..23.111.74.205][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...231] [ip4][..udp] [.......10.0.0.1][44793] -> [..23.111.74.205][..443]
detected: [...231] [ip4][..udp] [.......10.0.0.1][44793] -> [..23.111.74.205][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...232] [ip4][..udp] [.......10.0.0.1][53045] -> [..23.111.74.205][..443]
detected: [...232] [ip4][..udp] [.......10.0.0.1][53045] -> [..23.111.74.205][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...233] [ip4][..udp] [.......10.0.0.1][34024] -> [..23.111.74.205][..443]
detected: [...233] [ip4][..udp] [.......10.0.0.1][34024] -> [..23.111.74.205][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...234] [ip4][..udp] [.......10.0.0.1][60113] -> [..23.111.74.205][..443]
detected: [...234] [ip4][..udp] [.......10.0.0.1][60113] -> [..23.111.74.205][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...235] [ip4][..udp] [.......10.0.0.1][47545] -> [..151.80.222.79][..443]
detected: [...235] [ip4][..udp] [.......10.0.0.1][47545] -> [..151.80.222.79][..443] [DNScrypt][Unknown][Network][Acceptable]
new: [...236] [ip4][..udp] [.......10.0.0.1][38660] -> [.144.91.106.227][..443]
@@ -730,239 +1156,473 @@
new: [...239] [ip4][..udp] [.......10.0.0.1][37711] -> [.144.91.106.227][..443]
detected: [...239] [ip4][..udp] [.......10.0.0.1][37711] -> [.144.91.106.227][..443] [DNScrypt][Unknown][Network][Acceptable]
idle: [...159] [ip4][..udp] [.......10.0.0.1][39816] -> [167.114.220.125][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....51] [ip4][..udp] [.......10.0.0.1][34885] -> [...195.30.94.28][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...232] [ip4][..udp] [.......10.0.0.1][53045] -> [..23.111.74.205][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...175] [ip4][..udp] [.......10.0.0.1][51647] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....47] [ip4][..udp] [.......10.0.0.1][37595] -> [.139.59.200.116][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....96] [ip4][..udp] [.......10.0.0.1][40451] -> [..45.153.187.96][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....40] [ip4][..udp] [.......10.0.0.1][36668] -> [..51.15.122.250][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...123] [ip4][..udp] [.......10.0.0.1][53117] -> [178.216.201.222][.2053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....58] [ip4][..udp] [.......10.0.0.1][43505] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...168] [ip4][..udp] [.......10.0.0.1][59749] -> [..5.189.170.196][..465] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...224] [ip4][..udp] [.......10.0.0.1][46140] -> [...77.66.84.233][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [.......10.0.0.1][38388] -> [..149.56.228.45][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...100] [ip4][..udp] [.......10.0.0.1][47432] -> [...66.85.30.115][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...180] [ip4][..udp] [.......10.0.0.1][47621] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...221] [ip4][..udp] [.......10.0.0.1][46314] -> [185.193.127.244][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....15] [ip4][..udp] [.......10.0.0.1][35005] -> [.185.134.196.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...110] [ip4][..udp] [.......10.0.0.1][47257] -> [..51.158.166.97][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....85] [ip4][..udp] [.......10.0.0.1][38812] -> [....51.15.62.65][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...211] [ip4][..udp] [.......10.0.0.1][54375] -> [..107.170.57.34][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...208] [ip4][..udp] [.......10.0.0.1][50277] -> [..46.227.200.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...109] [ip4][..udp] [.......10.0.0.1][37035] -> [..51.158.166.97][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...209] [ip4][..udp] [.......10.0.0.1][44161] -> [..46.227.200.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...138] [ip4][..udp] [.......10.0.0.1][38511] -> [..151.80.222.79][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....38] [ip4][..udp] [.......10.0.0.1][38867] -> [..51.15.122.250][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...191] [ip4][..udp] [.......10.0.0.1][51826] -> [....85.5.93.230][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...216] [ip4][..udp] [.......10.0.0.1][42141] -> [..107.170.57.34][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...172] [ip4][..udp] [.......10.0.0.1][43540] -> [.185.253.154.66][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....28] [ip4][..udp] [.......10.0.0.1][37950] -> [.209.250.241.25][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...184] [ip4][..udp] [.......10.0.0.1][40775] -> [.212.47.228.136][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...130] [ip4][..udp] [.......10.0.0.1][43776] -> [...45.76.113.31][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...204] [ip4][..udp] [.......10.0.0.1][54204] -> [.144.91.106.227][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...149] [ip4][..udp] [.......10.0.0.1][49040] -> [193.191.187.107][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...225] [ip4][..udp] [.......10.0.0.1][40209] -> [...77.66.84.233][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....23] [ip4][..udp] [.......10.0.0.1][59641] -> [104.238.186.192][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...142] [ip4][..udp] [.......10.0.0.1][51935] -> [...142.4.205.47][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...104] [ip4][..udp] [.......10.0.0.1][49186] -> [..93.95.226.165][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....10] [ip4][..udp] [.......10.0.0.1][43748] -> [..62.210.180.71][.1053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...132] [ip4][..udp] [.......10.0.0.1][52069] -> [...45.76.113.31][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....41] [ip4][..udp] [.......10.0.0.1][39007] -> [..51.15.122.250][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....97] [ip4][..udp] [.......10.0.0.1][55896] -> [...66.85.30.115][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...150] [ip4][..udp] [.......10.0.0.1][49115] -> [193.191.187.107][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...151] [ip4][..udp] [.......10.0.0.1][45375] -> [..51.15.124.208][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...202] [ip4][..udp] [.......10.0.0.1][54305] -> [.144.91.106.227][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...116] [ip4][..udp] [.......10.0.0.1][55046] -> [.176.56.237.171][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....13] [ip4][..udp] [.......10.0.0.1][53697] -> [.185.134.196.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....77] [ip4][..udp] [.......10.0.0.1][38278] -> [205.185.116.116][..553] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...206] [ip4][..udp] [.......10.0.0.1][38242] -> [..46.227.200.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...229] [ip4][..udp] [.......10.0.0.1][59587] -> [..23.111.74.205][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....69] [ip4][..udp] [.......10.0.0.1][41800] -> [..172.104.93.80][.1443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...143] [ip4][..udp] [.......10.0.0.1][54096] -> [...142.4.205.47][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....81] [ip4][..udp] [.......10.0.0.1][52911] -> [..52.65.235.129][..443] [DNScrypt][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...171] [ip4][..udp] [.......10.0.0.1][45815] -> [.185.253.154.66][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...118] [ip4][..udp] [.......10.0.0.1][36676] -> [.176.56.237.171][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...201] [ip4][..udp] [.......10.0.0.1][48237] -> [.144.91.106.227][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....73] [ip4][..udp] [.......10.0.0.1][38349] -> [205.185.116.116][..553] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...165] [ip4][..udp] [.......10.0.0.1][58104] -> [..5.189.170.196][..465] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....14] [ip4][..udp] [.......10.0.0.1][37413] -> [.185.134.196.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...119] [ip4][..udp] [.......10.0.0.1][49008] -> [.176.56.237.171][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....45] [ip4][..udp] [.......10.0.0.1][50335] -> [.139.59.200.116][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...177] [ip4][..udp] [.......10.0.0.1][41895] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....53] [ip4][..udp] [.......10.0.0.1][53811] -> [...195.30.94.28][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...199] [ip4][..udp] [.......10.0.0.1][48300] -> [.144.91.106.227][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...220] [ip4][..udp] [.......10.0.0.1][54920] -> [185.193.127.244][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...154] [ip4][..udp] [.......10.0.0.1][55768] -> [..51.15.124.208][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....65] [ip4][..udp] [.......10.0.0.1][57465] -> [.149.112.112.10][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...217] [ip4][..udp] [.......10.0.0.1][56988] -> [185.193.127.244][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...213] [ip4][..udp] [.......10.0.0.1][36335] -> [..107.170.57.34][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....50] [ip4][..udp] [.......10.0.0.1][33369] -> [...195.30.94.28][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....39] [ip4][..udp] [.......10.0.0.1][59709] -> [..51.15.122.250][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...193] [ip4][..udp] [.......10.0.0.1][50601] -> [..139.99.222.72][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...102] [ip4][..udp] [.......10.0.0.1][35634] -> [...66.85.30.115][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...194] [ip4][..udp] [.......10.0.0.1][40374] -> [..139.99.222.72][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....36] [ip4][..udp] [.......10.0.0.1][43365] -> [....41.79.69.13][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....66] [ip4][..udp] [.......10.0.0.1][55482] -> [.149.112.112.10][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...227] [ip4][..udp] [.......10.0.0.1][50757] -> [...77.66.84.233][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...101] [ip4][..udp] [.......10.0.0.1][54112] -> [...66.85.30.115][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...163] [ip4][..udp] [.......10.0.0.1][35734] -> [..5.189.170.196][..465] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....59] [ip4][..udp] [.......10.0.0.1][52284] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...144] [ip4][..udp] [.......10.0.0.1][35903] -> [...142.4.205.47][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....95] [ip4][..udp] [.......10.0.0.1][43129] -> [..45.153.187.96][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....29] [ip4][..udp] [.......10.0.0.1][34324] -> [.209.250.241.25][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...156] [ip4][..udp] [.......10.0.0.1][53887] -> [..51.15.124.208][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....49] [ip4][..udp] [.......10.0.0.1][47865] -> [...195.30.94.28][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...158] [ip4][..udp] [.......10.0.0.1][38508] -> [167.114.220.125][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...173] [ip4][..udp] [.......10.0.0.1][48159] -> [.185.253.154.66][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....21] [ip4][..udp] [.......10.0.0.1][39655] -> [104.238.186.192][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...117] [ip4][..udp] [.......10.0.0.1][51363] -> [.176.56.237.171][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...141] [ip4][..udp] [.......10.0.0.1][40138] -> [...142.4.205.47][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...140] [ip4][..udp] [.......10.0.0.1][50387] -> [...142.4.205.47][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...228] [ip4][..udp] [.......10.0.0.1][57109] -> [...77.66.84.233][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...188] [ip4][..udp] [.......10.0.0.1][50403] -> [....85.5.93.230][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....31] [ip4][..udp] [.......10.0.0.1][43609] -> [....41.79.69.13][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...145] [ip4][..udp] [.......10.0.0.1][37328] -> [193.191.187.107][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...219] [ip4][..udp] [.......10.0.0.1][59354] -> [185.193.127.244][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....84] [ip4][..udp] [.......10.0.0.1][55409] -> [..52.65.235.129][..443] [DNScrypt][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...152] [ip4][..udp] [.......10.0.0.1][49975] -> [..51.15.124.208][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...178] [ip4][..udp] [.......10.0.0.1][46363] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...121] [ip4][..udp] [.......10.0.0.1][60091] -> [178.216.201.222][.2053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...137] [ip4][..udp] [.......10.0.0.1][57636] -> [..151.80.222.79][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...147] [ip4][..udp] [.......10.0.0.1][33279] -> [193.191.187.107][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...113] [ip4][..udp] [.......10.0.0.1][60334] -> [..51.158.166.97][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....99] [ip4][..udp] [.......10.0.0.1][40099] -> [...66.85.30.115][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...234] [ip4][..udp] [.......10.0.0.1][60113] -> [..23.111.74.205][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...114] [ip4][..udp] [.......10.0.0.1][48065] -> [..51.158.166.97][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....89] [ip4][..udp] [.......10.0.0.1][43714] -> [....51.15.62.65][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....37] [ip4][..udp] [.......10.0.0.1][45767] -> [..51.15.122.250][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...212] [ip4][..udp] [.......10.0.0.1][55185] -> [..107.170.57.34][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....33] [ip4][..udp] [.......10.0.0.1][56043] -> [....41.79.69.13][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....74] [ip4][..udp] [.......10.0.0.1][38879] -> [205.185.116.116][..553] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....70] [ip4][..udp] [.......10.0.0.1][38283] -> [..172.104.93.80][.1443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....88] [ip4][..udp] [.......10.0.0.1][33521] -> [....51.15.62.65][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...111] [ip4][..udp] [.......10.0.0.1][46066] -> [..51.158.166.97][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....5] [ip4][..udp] [.......10.0.0.1][35228] -> [..149.56.228.45][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...167] [ip4][..udp] [.......10.0.0.1][58650] -> [..5.189.170.196][..465] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....8] [ip4][..udp] [.......10.0.0.1][52636] -> [..62.210.180.71][.1053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....52] [ip4][..udp] [.......10.0.0.1][44093] -> [...195.30.94.28][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...134] [ip4][..udp] [.......10.0.0.1][45497] -> [..151.80.222.79][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...155] [ip4][..udp] [.......10.0.0.1][39910] -> [..51.15.124.208][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...105] [ip4][..udp] [.......10.0.0.1][58113] -> [..93.95.226.165][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....98] [ip4][..udp] [.......10.0.0.1][48448] -> [...66.85.30.115][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...210] [ip4][..udp] [.......10.0.0.1][49177] -> [..46.227.200.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....35] [ip4][..udp] [.......10.0.0.1][56177] -> [....41.79.69.13][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...170] [ip4][..udp] [.......10.0.0.1][44469] -> [.185.253.154.66][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....63] [ip4][..udp] [.......10.0.0.1][56022] -> [.149.112.112.10][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....56] [ip4][..udp] [.......10.0.0.1][60962] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....30] [ip4][..udp] [.......10.0.0.1][59367] -> [.209.250.241.25][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....48] [ip4][..udp] [.......10.0.0.1][59194] -> [.139.59.200.116][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...189] [ip4][..udp] [.......10.0.0.1][46646] -> [....85.5.93.230][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...197] [ip4][..udp] [.......10.0.0.1][59400] -> [..139.99.222.72][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...187] [ip4][..udp] [.......10.0.0.1][58948] -> [....85.5.93.230][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....72] [ip4][..udp] [.......10.0.0.1][56902] -> [..172.104.93.80][.1443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....86] [ip4][..udp] [.......10.0.0.1][45993] -> [....51.15.62.65][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...112] [ip4][..udp] [.......10.0.0.1][56494] -> [..51.158.166.97][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...157] [ip4][..udp] [.......10.0.0.1][36930] -> [167.114.220.125][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....25] [ip4][..udp] [.......10.0.0.1][32793] -> [.209.250.241.25][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...164] [ip4][..udp] [.......10.0.0.1][44496] -> [..5.189.170.196][..465] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...124] [ip4][..udp] [.......10.0.0.1][52221] -> [178.216.201.222][.2053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....17] [ip4][..udp] [.......10.0.0.1][50435] -> [.185.134.196.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....54] [ip4][..udp] [.......10.0.0.1][44282] -> [...195.30.94.28][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...135] [ip4][..udp] [.......10.0.0.1][47729] -> [..151.80.222.79][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...133] [ip4][..udp] [.......10.0.0.1][53876] -> [..151.80.222.79][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...139] [ip4][..udp] [.......10.0.0.1][59011] -> [...142.4.205.47][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...183] [ip4][..udp] [.......10.0.0.1][52056] -> [.212.47.228.136][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [.......10.0.0.1][45722] -> [..149.56.228.45][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [.......10.0.0.1][35495] -> [..149.56.228.45][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...174] [ip4][..udp] [.......10.0.0.1][38482] -> [.185.253.154.66][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....61] [ip4][..udp] [.......10.0.0.1][50035] -> [.149.112.112.10][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....79] [ip4][..udp] [.......10.0.0.1][55834] -> [..52.65.235.129][..443] [DNScrypt][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...161] [ip4][..udp] [.......10.0.0.1][59589] -> [167.114.220.125][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....68] [ip4][..udp] [.......10.0.0.1][50913] -> [..172.104.93.80][.1443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....82] [ip4][..udp] [.......10.0.0.1][47685] -> [..52.65.235.129][..443] [DNScrypt][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...122] [ip4][..udp] [.......10.0.0.1][52356] -> [178.216.201.222][.2053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...148] [ip4][..udp] [.......10.0.0.1][54215] -> [193.191.187.107][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....60] [ip4][..udp] [.......10.0.0.1][46856] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...190] [ip4][..udp] [.......10.0.0.1][57090] -> [....85.5.93.230][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...115] [ip4][..udp] [.......10.0.0.1][41717] -> [.176.56.237.171][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..udp] [.......10.0.0.1][33565] -> [..149.56.228.45][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....32] [ip4][..udp] [.......10.0.0.1][46229] -> [....41.79.69.13][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....27] [ip4][..udp] [.......10.0.0.1][37123] -> [.209.250.241.25][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....7] [ip4][..udp] [.......10.0.0.1][51004] -> [..62.210.180.71][.1053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....83] [ip4][..udp] [.......10.0.0.1][55979] -> [..52.65.235.129][..443] [DNScrypt][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...136] [ip4][..udp] [.......10.0.0.1][52040] -> [..151.80.222.79][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....43] [ip4][..udp] [.......10.0.0.1][59476] -> [.139.59.200.116][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...215] [ip4][..udp] [.......10.0.0.1][33143] -> [..107.170.57.34][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...185] [ip4][..udp] [.......10.0.0.1][56335] -> [.212.47.228.136][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...176] [ip4][..udp] [.......10.0.0.1][59224] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...179] [ip4][..udp] [.......10.0.0.1][57180] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...223] [ip4][..udp] [.......10.0.0.1][49568] -> [...77.66.84.233][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...146] [ip4][..udp] [.......10.0.0.1][35885] -> [193.191.187.107][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...233] [ip4][..udp] [.......10.0.0.1][34024] -> [..23.111.74.205][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...195] [ip4][..udp] [.......10.0.0.1][51509] -> [..139.99.222.72][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...106] [ip4][..udp] [.......10.0.0.1][42156] -> [..93.95.226.165][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...103] [ip4][..udp] [.......10.0.0.1][46255] -> [..93.95.226.165][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....93] [ip4][..udp] [.......10.0.0.1][45987] -> [..45.153.187.96][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...128] [ip4][..udp] [.......10.0.0.1][55267] -> [...45.76.113.31][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...214] [ip4][..udp] [.......10.0.0.1][37287] -> [..107.170.57.34][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...153] [ip4][..udp] [.......10.0.0.1][38310] -> [..51.15.124.208][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....62] [ip4][..udp] [.......10.0.0.1][40009] -> [.149.112.112.10][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....34] [ip4][..udp] [.......10.0.0.1][38136] -> [....41.79.69.13][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....91] [ip4][..udp] [.......10.0.0.1][41913] -> [..45.153.187.96][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][..udp] [.......10.0.0.1][60301] -> [..149.56.228.45][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...200] [ip4][..udp] [.......10.0.0.1][41108] -> [.144.91.106.227][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...169] [ip4][..udp] [.......10.0.0.1][38709] -> [.185.253.154.66][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....24] [ip4][..udp] [.......10.0.0.1][44491] -> [104.238.186.192][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...203] [ip4][..udp] [.......10.0.0.1][55469] -> [.144.91.106.227][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....75] [ip4][..udp] [.......10.0.0.1][43528] -> [205.185.116.116][..553] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...166] [ip4][..udp] [.......10.0.0.1][40748] -> [..5.189.170.196][..465] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....78] [ip4][..udp] [.......10.0.0.1][55822] -> [205.185.116.116][..553] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...207] [ip4][..udp] [.......10.0.0.1][33246] -> [..46.227.200.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....94] [ip4][..udp] [.......10.0.0.1][46063] -> [..45.153.187.96][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....92] [ip4][..udp] [.......10.0.0.1][37890] -> [..45.153.187.96][.4343] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...126] [ip4][..udp] [.......10.0.0.1][58740] -> [178.216.201.222][.2053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....90] [ip4][..udp] [.......10.0.0.1][60735] -> [....51.15.62.65][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....76] [ip4][..udp] [.......10.0.0.1][51770] -> [205.185.116.116][..553] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....44] [ip4][..udp] [.......10.0.0.1][47341] -> [.139.59.200.116][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...205] [ip4][..udp] [.......10.0.0.1][33293] -> [..46.227.200.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...226] [ip4][..udp] [.......10.0.0.1][49732] -> [...77.66.84.233][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....87] [ip4][..udp] [.......10.0.0.1][56688] -> [....51.15.62.65][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...230] [ip4][..udp] [.......10.0.0.1][60852] -> [..23.111.74.205][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....12] [ip4][..udp] [.......10.0.0.1][53299] -> [..62.210.180.71][.1053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....11] [ip4][..udp] [.......10.0.0.1][57395] -> [..62.210.180.71][.1053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...160] [ip4][..udp] [.......10.0.0.1][45613] -> [167.114.220.125][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....71] [ip4][..udp] [.......10.0.0.1][59489] -> [..172.104.93.80][.1443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...127] [ip4][..udp] [.......10.0.0.1][43224] -> [...45.76.113.31][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....42] [ip4][..udp] [.......10.0.0.1][38362] -> [..51.15.122.250][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....20] [ip4][..udp] [.......10.0.0.1][56997] -> [104.238.186.192][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....19] [ip4][..udp] [.......10.0.0.1][44712] -> [104.238.186.192][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...222] [ip4][..udp] [.......10.0.0.1][47971] -> [185.193.127.244][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...196] [ip4][..udp] [.......10.0.0.1][45682] -> [..139.99.222.72][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...218] [ip4][..udp] [.......10.0.0.1][50062] -> [185.193.127.244][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....18] [ip4][..udp] [.......10.0.0.1][55123] -> [.185.134.196.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...198] [ip4][..udp] [.......10.0.0.1][49796] -> [..139.99.222.72][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....55] [ip4][..udp] [.......10.0.0.1][32970] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...162] [ip4][..udp] [.......10.0.0.1][45747] -> [167.114.220.125][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...131] [ip4][..udp] [.......10.0.0.1][59707] -> [...45.76.113.31][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...120] [ip4][..udp] [.......10.0.0.1][48325] -> [.176.56.237.171][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...182] [ip4][..udp] [.......10.0.0.1][34228] -> [.212.47.228.136][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...107] [ip4][..udp] [.......10.0.0.1][58936] -> [..93.95.226.165][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...186] [ip4][..udp] [.......10.0.0.1][60885] -> [.212.47.228.136][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...129] [ip4][..udp] [.......10.0.0.1][51589] -> [...45.76.113.31][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....26] [ip4][..udp] [.......10.0.0.1][56035] -> [.209.250.241.25][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...181] [ip4][..udp] [.......10.0.0.1][38371] -> [.212.47.228.136][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....57] [ip4][..udp] [.......10.0.0.1][33071] -> [..142.4.204.111][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...125] [ip4][..udp] [.......10.0.0.1][38594] -> [178.216.201.222][.2053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....22] [ip4][..udp] [.......10.0.0.1][59261] -> [104.238.186.192][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...192] [ip4][..udp] [.......10.0.0.1][39259] -> [....85.5.93.230][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...108] [ip4][..udp] [.......10.0.0.1][40595] -> [..93.95.226.165][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....67] [ip4][..udp] [.......10.0.0.1][49512] -> [..172.104.93.80][.1443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....46] [ip4][..udp] [.......10.0.0.1][43633] -> [.139.59.200.116][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....16] [ip4][..udp] [.......10.0.0.1][59405] -> [.185.134.196.55][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....9] [ip4][..udp] [.......10.0.0.1][49518] -> [..62.210.180.71][.1053] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...231] [ip4][..udp] [.......10.0.0.1][44793] -> [..23.111.74.205][..443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....80] [ip4][..udp] [.......10.0.0.1][46313] -> [..52.65.235.129][..443] [DNScrypt][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....64] [ip4][..udp] [.......10.0.0.1][42570] -> [.149.112.112.10][.8443] [DNScrypt][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...240] [ip4][..udp] [.......10.0.0.1][40958] -> [...195.30.94.28][.8443]
detected: [...240] [ip4][..udp] [.......10.0.0.1][40958] -> [...195.30.94.28][.8443] [DNScrypt][Unknown][Network][Acceptable]
update: [...235] [ip4][..udp] [.......10.0.0.1][47545] -> [..151.80.222.79][..443] [DNScrypt][Unknown][Network][Acceptable]
diff --git a/test/results/flow-info/dnscrypt-v2-doh.pcap.out b/test/results/flow-info/default/dnscrypt-v2-doh.pcap.out
index c6d8b5a4d..b945dd465 100644
--- a/test/results/flow-info/dnscrypt-v2-doh.pcap.out
+++ b/test/results/flow-info/default/dnscrypt-v2-doh.pcap.out
@@ -3,114 +3,144 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [.......10.0.0.1][53674] -> [..139.99.222.72][..443] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [.......10.0.0.1][53674] -> [..139.99.222.72][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][doh-2.seby.io]
+ RISK: Unidirectional Traffic
detection-update: [.....1] [ip4][..tcp] [.......10.0.0.1][53674] -> [..139.99.222.72][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][doh-2.seby.io]
new: [.....2] [ip4][..tcp] [.......10.0.0.1][53676] -> [..139.99.222.72][..443] [MIDSTREAM]
detected: [.....2] [ip4][..tcp] [.......10.0.0.1][53676] -> [..139.99.222.72][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][doh-2.seby.io]
+ RISK: Unidirectional Traffic
detection-update: [.....2] [ip4][..tcp] [.......10.0.0.1][53676] -> [..139.99.222.72][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][doh-2.seby.io]
new: [.....3] [ip4][..tcp] [.......10.0.0.1][50614] -> [..185.95.218.42][..443] [MIDSTREAM]
detected: [.....3] [ip4][..tcp] [.......10.0.0.1][50614] -> [..185.95.218.42][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][dns.digitale-gesellschaft.ch]
+ RISK: Unidirectional Traffic
detection-update: [.....3] [ip4][..tcp] [.......10.0.0.1][50614] -> [..185.95.218.42][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][dns.digitale-gesellschaft.ch]
new: [.....4] [ip4][..tcp] [.......10.0.0.1][55962] -> [..51.158.147.50][..443] [MIDSTREAM]
detected: [.....4] [ip4][..tcp] [.......10.0.0.1][55962] -> [..51.158.147.50][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][resolver-eu.lelux.fi]
+ RISK: Unidirectional Traffic
detection-update: [.....4] [ip4][..tcp] [.......10.0.0.1][55962] -> [..51.158.147.50][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][resolver-eu.lelux.fi]
new: [.....5] [ip4][..tcp] [.......10.0.0.1][59404] -> [.185.253.154.66][..443] [MIDSTREAM]
detected: [.....5] [ip4][..tcp] [.......10.0.0.1][59404] -> [.185.253.154.66][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][dnses.alekberg.net]
+ RISK: Unidirectional Traffic
detection-update: [.....5] [ip4][..tcp] [.......10.0.0.1][59404] -> [.185.253.154.66][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][dnses.alekberg.net]
new: [.....6] [ip4][..tcp] [.......10.0.0.1][40938] -> [..172.104.93.80][..443] [MIDSTREAM]
detected: [.....6] [ip4][..tcp] [.......10.0.0.1][40938] -> [..172.104.93.80][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][jp.tiar.app]
+ RISK: Unidirectional Traffic
detection-update: [.....6] [ip4][..tcp] [.......10.0.0.1][40938] -> [..172.104.93.80][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][jp.tiar.app]
new: [.....7] [ip4][..tcp] [.......10.0.0.1][37530] -> [167.114.220.125][..453] [MIDSTREAM]
detected: [.....7] [ip4][..tcp] [.......10.0.0.1][37530] -> [167.114.220.125][..453] [TLS.DoH_DoT][Unknown][Network][Acceptable][dns1.dnscrypt.ca]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
detection-update: [.....7] [ip4][..tcp] [.......10.0.0.1][37530] -> [167.114.220.125][..453] [TLS.DoH_DoT][Unknown][Network][Acceptable][dns1.dnscrypt.ca]
RISK: Known Proto on Non Std Port
new: [.....8] [ip4][..tcp] [.......10.0.0.1][38186] -> [...185.43.135.1][..443] [MIDSTREAM]
detected: [.....8] [ip4][..tcp] [.......10.0.0.1][38186] -> [...185.43.135.1][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][odvr.nic.cz]
+ RISK: Unidirectional Traffic
detection-update: [.....8] [ip4][..tcp] [.......10.0.0.1][38186] -> [...185.43.135.1][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][odvr.nic.cz]
RISK: TLS Cert Expired
new: [.....9] [ip4][..tcp] [.......10.0.0.1][51770] -> [.......9.9.9.10][..443] [MIDSTREAM]
detected: [.....9] [ip4][..tcp] [.......10.0.0.1][51770] -> [.......9.9.9.10][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][dns10.quad9.net]
+ RISK: Unidirectional Traffic
detection-update: [.....9] [ip4][..tcp] [.......10.0.0.1][51770] -> [.......9.9.9.10][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][dns10.quad9.net]
new: [....10] [ip4][..tcp] [.......10.0.0.1][55322] -> [.185.134.196.55][..443] [MIDSTREAM]
detected: [....10] [ip4][..tcp] [.......10.0.0.1][55322] -> [.185.134.196.55][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][rdns.faelix.net]
+ RISK: Unidirectional Traffic
detection-update: [....10] [ip4][..tcp] [.......10.0.0.1][55322] -> [.185.134.196.55][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][rdns.faelix.net]
new: [....11] [ip4][..tcp] [.......10.0.0.1][52386] -> [..51.15.124.208][..443] [MIDSTREAM]
detected: [....11] [ip4][..tcp] [.......10.0.0.1][52386] -> [..51.15.124.208][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][dnsnl.alekberg.net]
+ RISK: Unidirectional Traffic
detection-update: [....11] [ip4][..tcp] [.......10.0.0.1][52386] -> [..51.15.124.208][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][dnsnl.alekberg.net]
new: [....12] [ip4][..tcp] [.......10.0.0.1][41720] -> [116.203.179.248][..443] [MIDSTREAM]
detected: [....12] [ip4][..tcp] [.......10.0.0.1][41720] -> [116.203.179.248][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][rumpelsepp.org]
+ RISK: Unidirectional Traffic
detection-update: [....12] [ip4][..tcp] [.......10.0.0.1][41720] -> [116.203.179.248][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][rumpelsepp.org]
new: [....13] [ip4][..tcp] [.......10.0.0.1][60026] -> [...195.30.94.28][..443] [MIDSTREAM]
detected: [....13] [ip4][..tcp] [.......10.0.0.1][60026] -> [...195.30.94.28][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][doh.ffmuc.net]
+ RISK: Unidirectional Traffic
detection-update: [....13] [ip4][..tcp] [.......10.0.0.1][60026] -> [...195.30.94.28][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][doh.ffmuc.net]
new: [....14] [ip4][..tcp] [.......10.0.0.1][46658] -> [185.233.106.232][..443] [MIDSTREAM]
detected: [....14] [ip4][..tcp] [.......10.0.0.1][46658] -> [185.233.106.232][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][dns.dnshome.de]
+ RISK: Unidirectional Traffic
detection-update: [....14] [ip4][..tcp] [.......10.0.0.1][46658] -> [185.233.106.232][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][dns.dnshome.de]
new: [....15] [ip4][..tcp] [.......10.0.0.1][36012] -> [..149.56.228.45][..453] [MIDSTREAM]
detected: [....15] [ip4][..tcp] [.......10.0.0.1][36012] -> [..149.56.228.45][..453] [TLS.DoH_DoT][Unknown][Network][Acceptable][dns2.dnscrypt.ca]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
detection-update: [....15] [ip4][..tcp] [.......10.0.0.1][36012] -> [..149.56.228.45][..453] [TLS.DoH_DoT][Unknown][Network][Acceptable][dns2.dnscrypt.ca]
RISK: Known Proto on Non Std Port
new: [....16] [ip4][..tcp] [.......10.0.0.1][38018] -> [..45.153.187.96][..443] [MIDSTREAM]
detected: [....16] [ip4][..tcp] [.......10.0.0.1][38018] -> [..45.153.187.96][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][dnsse.alekberg.net]
+ RISK: Unidirectional Traffic
detection-update: [....16] [ip4][..tcp] [.......10.0.0.1][38018] -> [..45.153.187.96][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][dnsse.alekberg.net]
new: [....17] [ip4][..tcp] [.......10.0.0.1][44640] -> [...185.235.81.1][..443] [MIDSTREAM]
detected: [....17] [ip4][..tcp] [.......10.0.0.1][44640] -> [...185.235.81.1][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][doh.dnslify.com]
+ RISK: Unidirectional Traffic
detection-update: [....17] [ip4][..tcp] [.......10.0.0.1][44640] -> [...185.235.81.1][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][doh.dnslify.com]
new: [....18] [ip4][..tcp] [.......10.0.0.1][43106] -> [.116.202.176.26][..443] [MIDSTREAM]
detected: [....18] [ip4][..tcp] [.......10.0.0.1][43106] -> [.116.202.176.26][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][doh.libredns.gr]
+ RISK: Unidirectional Traffic
detection-update: [....18] [ip4][..tcp] [.......10.0.0.1][43106] -> [.116.202.176.26][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][doh.libredns.gr]
new: [....19] [ip4][..tcp] [.......10.0.0.1][59026] -> [....85.5.93.230][..443] [MIDSTREAM]
detected: [....19] [ip4][..tcp] [.......10.0.0.1][59026] -> [....85.5.93.230][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][ibksturm.synology.me]
+ RISK: Unidirectional Traffic
detection-update: [....19] [ip4][..tcp] [.......10.0.0.1][59026] -> [....85.5.93.230][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][ibksturm.synology.me]
new: [....20] [ip4][..tcp] [.......10.0.0.1][33724] -> [...104.28.28.34][..443] [MIDSTREAM]
detected: [....20] [ip4][..tcp] [.......10.0.0.1][33724] -> [...104.28.28.34][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][jp.tiarap.org]
+ RISK: Unidirectional Traffic
detection-update: [....20] [ip4][..tcp] [.......10.0.0.1][33724] -> [...104.28.28.34][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][jp.tiarap.org]
new: [....21] [ip4][..tcp] [.......10.0.0.1][53802] -> [........1.0.0.1][..443] [MIDSTREAM]
detected: [....21] [ip4][..tcp] [.......10.0.0.1][53802] -> [........1.0.0.1][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][dns.cloudflare.com]
+ RISK: Unidirectional Traffic
detection-update: [....21] [ip4][..tcp] [.......10.0.0.1][53802] -> [........1.0.0.1][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][dns.cloudflare.com]
new: [....22] [ip4][..tcp] [.......10.0.0.1][33338] -> [.....45.90.28.0][..443] [MIDSTREAM]
detected: [....22] [ip4][..tcp] [.......10.0.0.1][33338] -> [.....45.90.28.0][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][dns.nextdns.io]
detection-update: [....22] [ip4][..tcp] [.......10.0.0.1][33338] -> [.....45.90.28.0][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][dns.nextdns.io]
new: [....23] [ip4][..tcp] [.......10.0.0.1][52176] -> [136.144.215.158][..443] [MIDSTREAM]
detected: [....23] [ip4][..tcp] [.......10.0.0.1][52176] -> [136.144.215.158][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][doh.powerdns.org]
+ RISK: Unidirectional Traffic
detection-update: [....23] [ip4][..tcp] [.......10.0.0.1][52176] -> [136.144.215.158][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][doh.powerdns.org]
new: [....24] [ip4][..tcp] [.......10.0.0.1][39214] -> [...104.28.0.106][..443] [MIDSTREAM]
detected: [....24] [ip4][..tcp] [.......10.0.0.1][39214] -> [...104.28.0.106][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][doh.crypto.sx]
+ RISK: Unidirectional Traffic
detection-update: [....24] [ip4][..tcp] [.......10.0.0.1][39214] -> [...104.28.0.106][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][doh.crypto.sx]
new: [....25] [ip4][..tcp] [.......10.0.0.1][52028] -> [...45.76.113.31][.8443] [MIDSTREAM]
detected: [....25] [ip4][..tcp] [.......10.0.0.1][52028] -> [...45.76.113.31][.8443] [TLS.DoH_DoT][Unknown][Network][Acceptable][doh.seby.io]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
detection-update: [....25] [ip4][..tcp] [.......10.0.0.1][52028] -> [...45.76.113.31][.8443] [TLS.DoH_DoT][Unknown][Network][Acceptable][doh.seby.io]
RISK: Known Proto on Non Std Port
new: [....26] [ip4][..tcp] [.......10.0.0.1][34036] -> [..217.169.20.23][..443] [MIDSTREAM]
detected: [....26] [ip4][..tcp] [.......10.0.0.1][34036] -> [..217.169.20.23][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][dns.aa.net.uk]
+ RISK: Unidirectional Traffic
detection-update: [....26] [ip4][..tcp] [.......10.0.0.1][34036] -> [..217.169.20.23][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][dns.aa.net.uk]
new: [....27] [ip4][..tcp] [.......10.0.0.1][43718] -> [..146.255.56.98][..443] [MIDSTREAM]
detected: [....27] [ip4][..tcp] [.......10.0.0.1][43718] -> [..146.255.56.98][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][doh.appliedprivacy.net]
+ RISK: Unidirectional Traffic
detection-update: [....27] [ip4][..tcp] [.......10.0.0.1][43718] -> [..146.255.56.98][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][doh.appliedprivacy.net]
new: [....28] [ip4][..tcp] [.......10.0.0.1][54164] -> [...193.70.85.11][..443] [MIDSTREAM]
detected: [....28] [ip4][..tcp] [.......10.0.0.1][54164] -> [...193.70.85.11][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][doh.bortzmeyer.fr]
+ RISK: Unidirectional Traffic
detection-update: [....28] [ip4][..tcp] [.......10.0.0.1][54164] -> [...193.70.85.11][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][doh.bortzmeyer.fr]
new: [....29] [ip4][..tcp] [.......10.0.0.1][35714] -> [.209.250.241.25][..443] [MIDSTREAM]
detected: [....29] [ip4][..tcp] [.......10.0.0.1][35714] -> [.209.250.241.25][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][jarjar.meganerd.nl]
+ RISK: Unidirectional Traffic
detection-update: [....29] [ip4][..tcp] [.......10.0.0.1][35714] -> [.209.250.241.25][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][jarjar.meganerd.nl]
detection-update: [....29] [ip4][..tcp] [.......10.0.0.1][35714] -> [.209.250.241.25][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][jarjar.meganerd.nl]
RISK: TLS Cert Expired
new: [....30] [ip4][..tcp] [.......10.0.0.1][43888] -> [.95.216.229.153][..443] [MIDSTREAM]
detected: [....30] [ip4][..tcp] [.......10.0.0.1][43888] -> [.95.216.229.153][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][fi.doh.dns.snopyta.org]
+ RISK: Unidirectional Traffic
detection-update: [....30] [ip4][..tcp] [.......10.0.0.1][43888] -> [.95.216.229.153][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][fi.doh.dns.snopyta.org]
new: [....31] [ip4][..tcp] [.......10.0.0.1][57058] -> [..46.227.200.54][..443] [MIDSTREAM]
detected: [....31] [ip4][..tcp] [.......10.0.0.1][57058] -> [..46.227.200.54][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][rdns.faelix.net]
+ RISK: Unidirectional Traffic
detection-update: [....31] [ip4][..tcp] [.......10.0.0.1][57058] -> [..46.227.200.54][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][rdns.faelix.net]
new: [....32] [ip4][..tcp] [.......10.0.0.1][51846] -> [.......9.9.9.10][..443] [MIDSTREAM]
detected: [....32] [ip4][..tcp] [.......10.0.0.1][51846] -> [.......9.9.9.10][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][dns10.quad9.net]
+ RISK: Unidirectional Traffic
detection-update: [....32] [ip4][..tcp] [.......10.0.0.1][51846] -> [.......9.9.9.10][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][dns10.quad9.net]
new: [....33] [ip4][..tcp] [.......10.0.0.1][44704] -> [...185.235.81.1][..443] [MIDSTREAM]
detected: [....33] [ip4][..tcp] [.......10.0.0.1][44704] -> [...185.235.81.1][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][doh.dnslify.com]
+ RISK: Unidirectional Traffic
detection-update: [....33] [ip4][..tcp] [.......10.0.0.1][44704] -> [...185.235.81.1][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][doh.dnslify.com]
new: [....34] [ip4][..tcp] [.......10.0.0.1][35742] -> [.209.250.241.25][..443] [MIDSTREAM]
detected: [....34] [ip4][..tcp] [.......10.0.0.1][35742] -> [.209.250.241.25][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][jarjar.meganerd.nl]
+ RISK: Unidirectional Traffic
detection-update: [....34] [ip4][..tcp] [.......10.0.0.1][35742] -> [.209.250.241.25][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][jarjar.meganerd.nl]
detection-update: [....34] [ip4][..tcp] [.......10.0.0.1][35742] -> [.209.250.241.25][..443] [TLS.DoH_DoT][Unknown][Network][Acceptable][jarjar.meganerd.nl]
RISK: TLS Cert Expired
diff --git a/test/results/flow-info/dnscrypt-v2.pcap.out b/test/results/flow-info/default/dnscrypt-v2.pcap.out
index 928e5e146..928e5e146 100644
--- a/test/results/flow-info/dnscrypt-v2.pcap.out
+++ b/test/results/flow-info/default/dnscrypt-v2.pcap.out
diff --git a/test/results/flow-info/dnscrypt_skype_false_positive.pcapng.out b/test/results/flow-info/default/dnscrypt_skype_false_positive.pcapng.out
index 6c011b6e5..6c011b6e5 100644
--- a/test/results/flow-info/dnscrypt_skype_false_positive.pcapng.out
+++ b/test/results/flow-info/default/dnscrypt_skype_false_positive.pcapng.out
diff --git a/test/results/flow-info/doq.pcapng.out b/test/results/flow-info/default/doq.pcapng.out
index eeeb8d2f2..68d4ff5e2 100644
--- a/test/results/flow-info/doq.pcapng.out
+++ b/test/results/flow-info/default/doq.pcapng.out
@@ -3,10 +3,12 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip6][..udp] [....................................::1][47826] -> [....................................::1][..784]
detected: [.....1] [ip6][..udp] [....................................::1][47826] -> [....................................::1][..784] [QUIC.DoH_DoT][Unknown][Network][Acceptable][]
- RISK: Missing SNI TLS Extn
+ RISK: Missing SNI TLS Extn, Unidirectional Traffic
new: [.....2] [ip6][icmp6] [....................................::1] -> [....................................::1]
detected: [.....2] [ip6][icmp6] [....................................::1] -> [....................................::1] [ICMPV6][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip6][icmp6] [....................................::1] -> [....................................::1] [ICMPV6][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip6][..udp] [....................................::1][47826] -> [....................................::1][..784] [QUIC.DoH_DoT][Unknown][Network][Acceptable]
- RISK: Missing SNI TLS Extn
+ RISK: Missing SNI TLS Extn, Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/doq_adguard.pcapng.out b/test/results/flow-info/default/doq_adguard.pcapng.out
index 98eba0ec2..36e9f24ca 100644
--- a/test/results/flow-info/doq_adguard.pcapng.out
+++ b/test/results/flow-info/default/doq_adguard.pcapng.out
@@ -3,6 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [.192.168.12.169][41070] -> [...94.140.14.14][..784]
detected: [.....1] [ip4][..udp] [.192.168.12.169][41070] -> [...94.140.14.14][..784] [QUIC.DoH_DoT][Unknown][Network][Acceptable][dns.adguard.com]
+ RISK: Unidirectional Traffic
analyse: [.....1] [ip4][..udp] [.192.168.12.169][41070] -> [...94.140.14.14][..784] [QUIC.DoH_DoT][Unknown][Network][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 1.885| 0.161| 0.453| 205274.628| 2.400]
@@ -14,4 +15,5 @@
[PKTLENS.....: 1260,168,1260,1280,1280,1270,83,84,184,81,1270,1270,1270,1270,255,59,83,84,69,292,140,86,59,69,423,59,70,59,87,89,89,69]
[ENTROPIES...: 7.8,6.7,7.9,7.8,7.8,7.8,5.8,5.7,6.8,5.8,7.8,7.8,7.8,7.8,7.2,5.6,5.8,5.8,5.7,7.2,6.7,6.0,5.6,5.7,7.4,5.5,5.7,5.4,6.0,6.1,6.1,5.6]
idle: [.....1] [ip4][..udp] [.192.168.12.169][41070] -> [...94.140.14.14][..784] [QUIC.DoH_DoT][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/dos_win98_smb_netbeui.pcap.out b/test/results/flow-info/default/dos_win98_smb_netbeui.pcap.out
index d8b433147..256d51760 100644
--- a/test/results/flow-info/dos_win98_smb_netbeui.pcap.out
+++ b/test/results/flow-info/default/dos_win98_smb_netbeui.pcap.out
@@ -11,6 +11,7 @@
ERROR-EVENT: Unknown packet type [8/16]
new: [.....1] [ip4][..udp] [192.168.239.129][..137] -> [..192.168.239.2][..137]
detected: [.....1] [ip4][..udp] [192.168.239.129][..137] -> [..192.168.239.2][..137] [NetBIOS][Unknown][System][Acceptable][mdjr98]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][.icmp] [192.168.239.129] -> [......224.0.0.2]
detected: [.....2] [ip4][.icmp] [192.168.239.129] -> [......224.0.0.2] [ICMP][Unknown][Network][Acceptable]
ERROR-EVENT: Unknown packet type [9/16]
@@ -28,6 +29,7 @@
ERROR-EVENT: Unknown packet type [16/16]
update: [.....2] [ip4][.icmp] [192.168.239.129] -> [......224.0.0.2] [ICMP][Unknown][Network][Acceptable]
update: [.....1] [ip4][..udp] [192.168.239.129][..137] -> [..192.168.239.2][..137] [NetBIOS][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [192.168.239.129][..137] -> [192.168.239.255][..137] [NetBIOS][Unknown][System][Acceptable]
ERROR-EVENT: Unknown packet type [1/16]
ERROR-EVENT: Unknown packet type [2/16]
@@ -49,6 +51,7 @@
RISK: Unsafe Protocol
update: [.....2] [ip4][.icmp] [192.168.239.129] -> [......224.0.0.2] [ICMP][Unknown][Network][Acceptable]
update: [.....1] [ip4][..udp] [192.168.239.129][..137] -> [..192.168.239.2][..137] [NetBIOS][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [192.168.239.129][..137] -> [192.168.239.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [.....4] [ip4][..udp] [192.168.239.129][..138] -> [192.168.239.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
@@ -68,6 +71,7 @@
idle: [.....2] [ip4][.icmp] [192.168.239.129] -> [......224.0.0.2] [ICMP][Unknown][Network][Acceptable]
idle: [.....3] [ip4][..udp] [192.168.239.129][..137] -> [192.168.239.255][..137] [NetBIOS][Unknown][System][Acceptable]
idle: [.....1] [ip4][..udp] [192.168.239.129][..137] -> [..192.168.239.2][..137] [NetBIOS][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..udp] [192.168.239.129][..138] -> [192.168.239.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/drda_db2.pcap.out b/test/results/flow-info/default/drda_db2.pcap.out
index 38c80585c..38c80585c 100644
--- a/test/results/flow-info/drda_db2.pcap.out
+++ b/test/results/flow-info/default/drda_db2.pcap.out
diff --git a/test/results/flow-info/dropbox.pcap.out b/test/results/flow-info/default/dropbox.pcap.out
index 13c035d37..bf603ed34 100644
--- a/test/results/flow-info/dropbox.pcap.out
+++ b/test/results/flow-info/default/dropbox.pcap.out
@@ -3,8 +3,10 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [...192.168.56.1][50311] -> [.192.168.56.101][17500]
detected: [.....1] [ip4][..udp] [...192.168.56.1][50311] -> [.192.168.56.101][17500] [Dropbox][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..udp] [...192.168.56.1][50318] -> [.192.168.56.101][17500]
detected: [.....2] [ip4][..udp] [...192.168.56.1][50318] -> [.192.168.56.101][17500] [Dropbox][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
analyse: [.....1] [ip4][..udp] [...192.168.56.1][50311] -> [.192.168.56.101][17500] [Dropbox][Unknown][Cloud][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.002| 0.118| 0.106| 0.019| 373.406| 4.900]
@@ -17,6 +19,7 @@
[ENTROPIES...: 5.5,5.0,5.5,5.1,5.5,5.0,5.7,5.2,5.6,5.1,5.5,5.0,5.6,5.0,5.5,5.0,5.6,5.1,5.5,5.0,5.5,5.0,5.5,5.0,5.5,5.1,5.5,5.1,5.7,5.3,5.6,5.0]
new: [.....3] [ip4][..udp] [...192.168.56.1][50312] -> [.192.168.56.101][17500]
detected: [.....3] [ip4][..udp] [...192.168.56.1][50312] -> [.192.168.56.101][17500] [Dropbox][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
analyse: [.....2] [ip4][..udp] [...192.168.56.1][50318] -> [.192.168.56.101][17500] [Dropbox][Unknown][Cloud][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.002| 0.128| 0.112| 0.021| 434.412| 4.900]
@@ -29,6 +32,7 @@
[ENTROPIES...: 5.5,5.0,5.6,5.1,5.6,5.0,5.7,5.2,5.5,5.0,5.5,5.0,5.6,5.1,5.6,5.1,5.5,5.1,5.6,5.1,5.6,5.1,5.5,4.9,5.5,5.1,5.5,5.0,5.5,5.1,5.7,5.2]
new: [.....4] [ip4][..udp] [...192.168.56.1][50319] -> [.192.168.56.101][17500]
detected: [.....4] [ip4][..udp] [...192.168.56.1][50319] -> [.192.168.56.101][17500] [Dropbox][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
analyse: [.....3] [ip4][..udp] [...192.168.56.1][50312] -> [.192.168.56.101][17500] [Dropbox][Unknown][Cloud][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.001| 0.131| 0.117| 0.022| 500.202| 4.900]
@@ -53,20 +57,29 @@
DAEMON-EVENT: [Flows][active: 4 / 4|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....5] [ip4][..udp] [..192.168.1.105][55407] -> [..192.168.1.254][...53]
detected: [.....5] [ip4][..udp] [..192.168.1.105][55407] -> [..192.168.1.254][...53] [DNS.Dropbox][Unknown][Network][Acceptable][client.dropbox.com]
+ RISK: Unidirectional Traffic
detection-update: [.....5] [ip4][..udp] [..192.168.1.105][55407] -> [..192.168.1.254][...53] [DNS.Dropbox][Unknown][Network][Acceptable][client.dropbox.com]
new: [.....6] [ip4][..udp] [..192.168.1.105][49112] -> [..192.168.1.254][...53]
detected: [.....6] [ip4][..udp] [..192.168.1.105][49112] -> [..192.168.1.254][...53] [DNS.Dropbox][Unknown][Network][Acceptable][client-cf.dropbox.com]
+ RISK: Unidirectional Traffic
new: [.....7] [ip4][..udp] [..192.168.1.105][50789] -> [..192.168.1.254][...53]
detected: [.....7] [ip4][..udp] [..192.168.1.105][50789] -> [..192.168.1.254][...53] [DNS.Dropbox][Unknown][Network][Acceptable][d.dropbox.com]
+ RISK: Unidirectional Traffic
detection-update: [.....6] [ip4][..udp] [..192.168.1.105][49112] -> [..192.168.1.254][...53] [DNS.Dropbox][Unknown][Network][Acceptable][client-cf.dropbox.com]
detection-update: [.....7] [ip4][..udp] [..192.168.1.105][50789] -> [..192.168.1.254][...53] [DNS.Dropbox][Unknown][Network][Acceptable][d.dropbox.com]
idle: [.....1] [ip4][..udp] [...192.168.56.1][50311] -> [.192.168.56.101][17500] [Dropbox][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [...192.168.56.1][50312] -> [.192.168.56.101][17500] [Dropbox][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [...192.168.56.1][50318] -> [.192.168.56.101][17500] [Dropbox][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..udp] [...192.168.56.1][50319] -> [.192.168.56.101][17500] [Dropbox][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....8] [ip4][..udp] [..192.168.1.105][36173] -> [..192.168.1.254][...53]
detected: [.....8] [ip4][..udp] [..192.168.1.105][36173] -> [..192.168.1.254][...53] [DNS.Dropbox][Unknown][Network][Acceptable][log.getdropbox.com]
+ RISK: Unidirectional Traffic
detection-update: [.....8] [ip4][..udp] [..192.168.1.105][36173] -> [..192.168.1.254][...53] [DNS.Dropbox][Unknown][Network][Acceptable][log.getdropbox.com]
+ RISK: Unidirectional Traffic
detection-update: [.....8] [ip4][..udp] [..192.168.1.105][36173] -> [..192.168.1.254][...53] [DNS.Dropbox][Unknown][Network][Acceptable][log.getdropbox.com]
new: [.....9] [ip4][..udp] [..192.168.1.105][17500] -> [255.255.255.255][17500]
detected: [.....9] [ip4][..udp] [..192.168.1.105][17500] -> [255.255.255.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
@@ -74,6 +87,7 @@
detected: [....10] [ip4][..udp] [..192.168.1.105][17500] -> [..192.168.1.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
new: [....11] [ip4][..udp] [..192.168.1.105][33189] -> [..192.168.1.254][...53]
detected: [....11] [ip4][..udp] [..192.168.1.105][33189] -> [..192.168.1.254][...53] [DNS.Dropbox][Unknown][Network][Acceptable][notify.dropbox.com]
+ RISK: Unidirectional Traffic
detection-update: [....11] [ip4][..udp] [..192.168.1.105][33189] -> [..192.168.1.254][...53] [DNS.Dropbox][Unknown][Network][Acceptable][notify.dropbox.com]
DAEMON-EVENT: [Processed: 836 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 7 / 11|skipped: 0|!detected: 0|guessed: 0|detection-updates: 6|updates: 0]
diff --git a/test/results/flow-info/dtls.pcap.out b/test/results/flow-info/default/dtls.pcap.out
index 2f79a18c8..9510d4bdb 100644
--- a/test/results/flow-info/dtls.pcap.out
+++ b/test/results/flow-info/default/dtls.pcap.out
@@ -3,6 +3,6 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [.192.168.13.203][40739] -> [..192.168.13.57][56515]
detected: [.....1] [ip4][..udp] [.192.168.13.203][40739] -> [..192.168.13.57][56515] [DTLS][Unknown][Web][Safe]
- RISK: TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn
+ RISK: TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn, Unidirectional Traffic
idle: [.....1] [ip4][..udp] [.192.168.13.203][40739] -> [..192.168.13.57][56515]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/dtls2.pcap.out b/test/results/flow-info/default/dtls2.pcap.out
index 2cb907eeb..80a02cb40 100644
--- a/test/results/flow-info/dtls2.pcap.out
+++ b/test/results/flow-info/default/dtls2.pcap.out
@@ -3,7 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..61.68.110.153][53045] -> [..212.32.214.39][61457]
detected: [.....1] [ip4][..udp] [..61.68.110.153][53045] -> [..212.32.214.39][61457] [DTLS][Unknown][Web][Safe]
- RISK: TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn
+ RISK: TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn, Unidirectional Traffic
detection-update: [.....1] [ip4][..udp] [..61.68.110.153][53045] -> [..212.32.214.39][61457] [DTLS][Unknown][Web][Safe]
RISK: Weak TLS Cipher, TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn
update: [.....1] [ip4][..udp] [..61.68.110.153][53045] -> [..212.32.214.39][61457] [DTLS][Unknown][Web][Safe]
diff --git a/test/results/flow-info/dtls_certificate.pcapng.out b/test/results/flow-info/default/dtls_certificate.pcapng.out
index 452724a3f..a0d317f64 100644
--- a/test/results/flow-info/dtls_certificate.pcapng.out
+++ b/test/results/flow-info/default/dtls_certificate.pcapng.out
@@ -3,7 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..191.62.60.190][..443] -> [.163.205.15.180][38876]
detected: [.....1] [ip4][..udp] [..191.62.60.190][..443] -> [.163.205.15.180][38876] [DTLS.WindowsUpdate][Unknown][SoftwareUpdate][Safe]
- RISK: TLS Cert Expired
+ RISK: TLS Cert Expired, Unidirectional Traffic
idle: [.....1] [ip4][..udp] [..191.62.60.190][..443] -> [.163.205.15.180][38876] [DTLS.WindowsUpdate][Unknown][SoftwareUpdate][Safe]
- RISK: TLS Cert Expired
+ RISK: TLS Cert Expired, Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/dtls_certificate_fragments.pcap.out b/test/results/flow-info/default/dtls_certificate_fragments.pcap.out
index 5e931b30f..c7b50a736 100644
--- a/test/results/flow-info/dtls_certificate_fragments.pcap.out
+++ b/test/results/flow-info/default/dtls_certificate_fragments.pcap.out
@@ -3,22 +3,22 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [.10.186.198.149][39347] -> [..35.210.59.134][44443]
detected: [.....1] [ip4][..udp] [.10.186.198.149][39347] -> [..35.210.59.134][44443] [DTLS][GoogleCloud][Web][Safe]
- RISK: TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn
+ RISK: TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn, Unidirectional Traffic
detection-update: [.....1] [ip4][..udp] [.10.186.198.149][39347] -> [..35.210.59.134][44443] [DTLS][GoogleCloud][Web][Safe]
RISK: Weak TLS Cipher, TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn
detection-update: [.....1] [ip4][..udp] [.10.186.198.149][39347] -> [..35.210.59.134][44443] [DTLS][GoogleCloud][Web][Safe]
- RISK: Weak TLS Cipher, TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn
+ RISK: Weak TLS Cipher, TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn, TLS Cert About To Expire
DAEMON-EVENT: [Processed: 20 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 2|updates: 0]
new: [.....2] [ip4][..udp] [...192.168.1.26][43594] -> [.104.153.87.149][50001]
detected: [.....2] [ip4][..udp] [...192.168.1.26][43594] -> [.104.153.87.149][50001] [DTLS][Discord][Web][Safe]
- RISK: TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn
+ RISK: TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn, Unidirectional Traffic
detection-update: [.....2] [ip4][..udp] [...192.168.1.26][43594] -> [.104.153.87.149][50001] [DTLS][Discord][Web][Safe]
RISK: TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn
detection-update: [.....2] [ip4][..udp] [...192.168.1.26][43594] -> [.104.153.87.149][50001] [DTLS.Discord][Discord][Collaborative][Fun]
RISK: TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn
idle: [.....1] [ip4][..udp] [.10.186.198.149][39347] -> [..35.210.59.134][44443] [DTLS][GoogleCloud][Web][Safe]
- RISK: Weak TLS Cipher, TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn
+ RISK: Weak TLS Cipher, TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn, TLS Cert About To Expire
idle: [.....2] [ip4][..udp] [...192.168.1.26][43594] -> [.104.153.87.149][50001] [DTLS.Discord][Discord][Collaborative][Fun]
RISK: TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/dtls_mid_sessions.pcapng.out b/test/results/flow-info/default/dtls_mid_sessions.pcapng.out
index dd24e8233..d81990976 100644
--- a/test/results/flow-info/dtls_mid_sessions.pcapng.out
+++ b/test/results/flow-info/default/dtls_mid_sessions.pcapng.out
@@ -3,14 +3,22 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..53.214.238.65][53558] -> [199.186.151.155][..443]
detected: [.....1] [ip4][..udp] [..53.214.238.65][53558] -> [199.186.151.155][..443] [DTLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..udp] [.135.215.56.198][..443] -> [..124.73.140.89][61189]
detected: [.....2] [ip4][..udp] [.135.215.56.198][..443] -> [..124.73.140.89][61189] [DTLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..udp] [170.151.105.215][..443] -> [121.152.255.238][.8460]
detected: [.....3] [ip4][..udp] [170.151.105.215][..443] -> [121.152.255.238][.8460] [DTLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..udp] [170.151.105.215][..443] -> [.72.102.179.218][62811]
detected: [.....4] [ip4][..udp] [170.151.105.215][..443] -> [.72.102.179.218][62811] [DTLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [.135.215.56.198][..443] -> [..124.73.140.89][61189] [DTLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [170.151.105.215][..443] -> [121.152.255.238][.8460] [DTLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [..53.214.238.65][53558] -> [199.186.151.155][..443] [DTLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..udp] [170.151.105.215][..443] -> [.72.102.179.218][62811] [DTLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/dtls_old_version.pcapng.out b/test/results/flow-info/default/dtls_old_version.pcapng.out
index 979f4c4a4..692940192 100644
--- a/test/results/flow-info/dtls_old_version.pcapng.out
+++ b/test/results/flow-info/default/dtls_old_version.pcapng.out
@@ -3,7 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [...37.188.4.115][56453] -> [....70.66.6.128][..443]
detected: [.....1] [ip4][..udp] [...37.188.4.115][56453] -> [....70.66.6.128][..443] [DTLS][Unknown][Web][Safe]
- RISK: Obsolete TLS (v1.1 or older)
+ RISK: Obsolete TLS (v1.1 or older), Unidirectional Traffic
detection-update: [.....1] [ip4][..udp] [...37.188.4.115][56453] -> [....70.66.6.128][..443] [DTLS][Unknown][Web][Safe]
RISK: Obsolete TLS (v1.1 or older), Weak TLS Cipher
idle: [.....1] [ip4][..udp] [...37.188.4.115][56453] -> [....70.66.6.128][..443] [DTLS][Unknown][Web][Safe]
diff --git a/test/results/flow-info/dtls_session_id_and_coockie_both.pcap.out b/test/results/flow-info/default/dtls_session_id_and_coockie_both.pcap.out
index c46812398..1d1b644ac 100644
--- a/test/results/flow-info/dtls_session_id_and_coockie_both.pcap.out
+++ b/test/results/flow-info/default/dtls_session_id_and_coockie_both.pcap.out
@@ -3,7 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [185.196.113.239][50257] -> [223.116.105.247][44443]
detected: [.....1] [ip4][..udp] [185.196.113.239][50257] -> [223.116.105.247][44443] [DTLS][Unknown][Web][Safe]
- RISK: TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn
+ RISK: TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn, Unidirectional Traffic
detection-update: [.....1] [ip4][..udp] [185.196.113.239][50257] -> [223.116.105.247][44443] [DTLS][Unknown][Web][Safe]
RISK: TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn
idle: [.....1] [ip4][..udp] [185.196.113.239][50257] -> [223.116.105.247][44443] [DTLS][Unknown][Web][Safe]
diff --git a/test/results/flow-info/elasticsearch.pcap.out b/test/results/flow-info/default/elasticsearch.pcap.out
index de330a283..3079c7b4f 100644
--- a/test/results/flow-info/elasticsearch.pcap.out
+++ b/test/results/flow-info/default/elasticsearch.pcap.out
@@ -8,20 +8,28 @@
new: [.....3] [ip4][..tcp] [..172.16.16.107][33288] -> [..172.16.17.102][.9300]
new: [.....4] [ip4][..tcp] [..172.16.16.107][.9300] -> [..172.16.17.102][40342] [MIDSTREAM]
detected: [.....4] [ip4][..tcp] [..172.16.16.107][.9300] -> [..172.16.17.102][40342] [Elasticsearch][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
detected: [.....3] [ip4][..tcp] [..172.16.16.107][33288] -> [..172.16.17.102][.9300] [Elasticsearch][Unknown][System][Acceptable]
new: [.....5] [ip4][..tcp] [..172.16.16.107][.9300] -> [..172.16.17.102][40298] [MIDSTREAM]
detected: [.....5] [ip4][..tcp] [..172.16.16.107][.9300] -> [..172.16.17.102][40298] [Elasticsearch][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 37 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 5 / 5|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
end: [.....1] [ip4][..tcp] [..172.16.17.102][40282] -> [..172.16.16.107][.9300] [Elasticsearch][Unknown][System][Acceptable]
new: [.....6] [ip4][..tcp] [..172.16.17.102][48028] -> [..172.16.16.106][.9300] [MIDSTREAM]
detected: [.....6] [ip4][..tcp] [..172.16.17.102][48028] -> [..172.16.16.106][.9300] [Elasticsearch][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....7] [ip4][..tcp] [..172.16.17.102][47980] -> [..172.16.16.106][.9300] [MIDSTREAM]
detected: [.....7] [ip4][..tcp] [..172.16.17.102][47980] -> [..172.16.16.106][.9300] [Elasticsearch][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....7] [ip4][..tcp] [..172.16.17.102][47980] -> [..172.16.16.106][.9300] [Elasticsearch][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][..tcp] [..172.16.17.102][48028] -> [..172.16.16.106][.9300] [Elasticsearch][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..tcp] [..172.16.17.102][48038] -> [..172.16.16.106][.9300] [Elasticsearch][Unknown][System][Acceptable]
idle: [.....5] [ip4][..tcp] [..172.16.16.107][.9300] -> [..172.16.17.102][40298] [Elasticsearch][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..tcp] [..172.16.16.107][.9300] -> [..172.16.17.102][40342] [Elasticsearch][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..tcp] [..172.16.16.107][33288] -> [..172.16.17.102][.9300] [Elasticsearch][Unknown][System][Acceptable]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/emotet.pcap.out b/test/results/flow-info/default/emotet.pcap.out
index ba82e05ec..956e185a0 100644
--- a/test/results/flow-info/emotet.pcap.out
+++ b/test/results/flow-info/default/emotet.pcap.out
@@ -32,9 +32,9 @@
DAEMON-EVENT: [Flows][active: 1 / 2|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....3] [ip4][..tcp] [....10.4.20.102][54319] -> [107.161.178.210][...80]
detected: [.....3] [ip4][..tcp] [....10.4.20.102][54319] -> [107.161.178.210][...80] [HTTP][Unknown][Web][Acceptable][gandhitoday.org]
- detection-update: [.....3] [ip4][..tcp] [....10.4.20.102][54319] -> [107.161.178.210][...80] [HTTP][Unknown][Web][Acceptable][gandhitoday.org]
+ detection-update: [.....3] [ip4][..tcp] [....10.4.20.102][54319] -> [107.161.178.210][...80] [HTTP][Unknown][Download][Acceptable][gandhitoday.org]
RISK: Binary App Transfer
- analyse: [.....3] [ip4][..tcp] [....10.4.20.102][54319] -> [107.161.178.210][...80] [HTTP][Unknown][Web][Acceptable]
+ analyse: [.....3] [ip4][..tcp] [....10.4.20.102][54319] -> [107.161.178.210][...80] [HTTP][Unknown][Download][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.261| 0.031| 0.066| 4320.020| 3.000]
[PKTLEN......: 46.000| 1428.000| 657.700| 680.400| 462891.900| 4.100]
@@ -49,9 +49,9 @@
DAEMON-EVENT: [Flows][active: 1 / 3|skipped: 0|!detected: 0|guessed: 0|detection-updates: 1|updates: 0]
new: [.....4] [ip4][..tcp] [....10.4.25.101][49797] -> [..77.105.36.156][...80]
detected: [.....4] [ip4][..tcp] [....10.4.25.101][49797] -> [..77.105.36.156][...80] [HTTP][Unknown][Web][Acceptable][filmmogzivota.rs]
- RISK: HTTP Suspicious User-Agent
+ RISK: HTTP Susp User-Agent
detection-update: [.....4] [ip4][..tcp] [....10.4.25.101][49797] -> [..77.105.36.156][...80] [HTTP][Unknown][Download][Acceptable][filmmogzivota.rs]
- RISK: Binary App Transfer, HTTP Suspicious User-Agent
+ RISK: Binary App Transfer, HTTP Susp User-Agent
analyse: [.....4] [ip4][..tcp] [....10.4.25.101][49797] -> [..77.105.36.156][...80] [HTTP][Unknown][Download][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.292| 0.042| 0.080| 6342.811| 2.900]
@@ -62,7 +62,7 @@
[IATS(ms)....: 184.2,184.5,0.2,171.8,120.6,0.1,0.1,292.2,2.7,0.1,0.1,0.1,2.9,2.7,0.1,0.1,3.0,164.7,0.1,0.1,164.8,2.8,0.1,0.1,3.0,2.9,0.1,0.1,0.2,3.2,0.1]
[PKTLENS.....: 52,52,46,192,46,612,1428,1428,46,1428,1428,1428,1100,46,1428,1428,1428,46,1428,1428,1428,46,1428,1428,1428,46,1428,1428,1428,1428,46,46]
[ENTROPIES...: 4.7,4.8,4.5,5.7,4.4,5.6,4.0,5.1,4.5,5.1,5.0,5.3,5.5,4.5,5.1,5.2,5.5,4.5,5.2,5.1,5.3,4.5,5.4,5.1,5.1,4.4,5.2,5.4,5.4,4.9,4.5,4.4]
- end: [.....3] [ip4][..tcp] [....10.4.20.102][54319] -> [107.161.178.210][...80] [HTTP][Unknown][Web][Acceptable]
+ end: [.....3] [ip4][..tcp] [....10.4.20.102][54319] -> [107.161.178.210][...80] [HTTP][Unknown][Download][Acceptable]
RISK: Binary App Transfer
new: [.....5] [ip4][..tcp] [....10.4.25.101][49803] -> [138.197.147.101][..443]
detected: [.....5] [ip4][..tcp] [....10.4.25.101][49803] -> [138.197.147.101][..443] [TLS][Unknown][Web][Safe][]
@@ -87,7 +87,7 @@
detection-update: [.....6] [ip4][..tcp] [....10.4.25.101][49804] -> [138.197.147.101][..443] [TLS][Unknown][Web][Safe][]
RISK: TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn
end: [.....4] [ip4][..tcp] [....10.4.25.101][49797] -> [..77.105.36.156][...80] [HTTP][Unknown][Download][Acceptable]
- RISK: Binary App Transfer, HTTP Suspicious User-Agent
+ RISK: Binary App Transfer, HTTP Susp User-Agent
end: [.....5] [ip4][..tcp] [....10.4.25.101][49803] -> [138.197.147.101][..443] [TLS][Unknown][Web][Safe]
RISK: Self-signed Cert, TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn
end: [.....6] [ip4][..tcp] [....10.4.25.101][49804] -> [138.197.147.101][..443] [TLS][Unknown][Web][Safe]
diff --git a/test/results/flow-info/encrypted_sni.pcap.out b/test/results/flow-info/default/encrypted_sni.pcap.out
index c2a327e20..028795d15 100644
--- a/test/results/flow-info/encrypted_sni.pcap.out
+++ b/test/results/flow-info/default/encrypted_sni.pcap.out
@@ -3,10 +3,13 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [...192.168.1.12][49886] -> [..104.27.129.77][..443] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [...192.168.1.12][49886] -> [..104.27.129.77][..443] [TLS][Cloudflare][Web][Safe][]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..tcp] [...192.168.1.12][49887] -> [.104.16.125.175][..443] [MIDSTREAM]
detected: [.....2] [ip4][..tcp] [...192.168.1.12][49887] -> [.104.16.125.175][..443] [TLS][Cloudflare][Web][Safe][]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..tcp] [...192.168.1.12][49897] -> [..104.22.71.197][..443] [MIDSTREAM]
detected: [.....3] [ip4][..tcp] [...192.168.1.12][49897] -> [..104.22.71.197][..443] [TLS][Cloudflare][Web][Safe][]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..tcp] [...192.168.1.12][49886] -> [..104.27.129.77][..443]
idle: [.....3] [ip4][..tcp] [...192.168.1.12][49897] -> [..104.22.71.197][..443]
idle: [.....2] [ip4][..tcp] [...192.168.1.12][49887] -> [.104.16.125.175][..443]
diff --git a/test/results/flow-info/esp.pcapng.out b/test/results/flow-info/default/esp.pcapng.out
index a614afcbd..08aa2cba5 100644
--- a/test/results/flow-info/esp.pcapng.out
+++ b/test/results/flow-info/default/esp.pcapng.out
@@ -3,8 +3,12 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [.......10.2.3.2][..500] -> [.......10.3.4.4][..500]
detected: [.....1] [ip4][..udp] [.......10.2.3.2][..500] -> [.......10.3.4.4][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][...50] [.......10.2.3.2] -> [.......10.3.4.4]
detected: [.....2] [ip4][...50] [.......10.2.3.2] -> [.......10.3.4.4] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [.......10.2.3.2][..500] -> [.......10.3.4.4][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][...50] [.......10.2.3.2] -> [.......10.3.4.4] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/ethereum.pcap.out b/test/results/flow-info/default/ethereum.pcap.out
index 3c1cf5f55..768434d96 100644
--- a/test/results/flow-info/ethereum.pcap.out
+++ b/test/results/flow-info/default/ethereum.pcap.out
@@ -3,28 +3,28 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [...87.14.222.25][56693] -> [..192.168.1.184][30303]
detected: [.....1] [ip4][..udp] [...87.14.222.25][56693] -> [..192.168.1.184][30303] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [.....2] [ip4][..udp] [...60.191.32.71][30303] -> [..192.168.1.184][30303]
detected: [.....2] [ip4][..udp] [...60.191.32.71][30303] -> [..192.168.1.184][30303] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [.....3] [ip4][..udp] [...3.112.138.57][25516] -> [..192.168.1.184][30303]
detected: [.....3] [ip4][..udp] [...3.112.138.57][25516] -> [..192.168.1.184][30303] [Mining][AmazonAWS][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [.....4] [ip4][..udp] [..192.168.1.184][30303] -> [....3.209.45.79][30303]
detected: [.....4] [ip4][..udp] [..192.168.1.184][30303] -> [....3.209.45.79][30303] [Mining][Mining][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [.....5] [ip4][..udp] [..192.168.1.184][30303] -> [.52.231.165.108][30303]
- detected: [.....5] [ip4][..udp] [..192.168.1.184][30303] -> [.52.231.165.108][30303] [Mining][Mining][Mining][Unsafe]
- RISK: Unsafe Protocol
+ detected: [.....5] [ip4][..udp] [..192.168.1.184][30303] -> [.52.231.165.108][30303] [Mining][Azure][Mining][Unsafe]
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [.....6] [ip4][..udp] [..192.168.1.184][30303] -> [..18.138.108.67][30303]
detected: [.....6] [ip4][..udp] [..192.168.1.184][30303] -> [..18.138.108.67][30303] [Mining][Mining][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [.....7] [ip4][..udp] [..192.168.1.184][30303] -> [...34.97.172.22][30303]
detected: [.....7] [ip4][..udp] [..192.168.1.184][30303] -> [...34.97.172.22][30303] [Mining][GoogleCloud][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [.....8] [ip4][..udp] [..192.168.1.184][30303] -> [...66.42.82.246][30303]
detected: [.....8] [ip4][..udp] [..192.168.1.184][30303] -> [...66.42.82.246][30303] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [.....9] [ip4][..tcp] [..192.168.1.184][56612] -> [...66.42.82.246][30303]
new: [....10] [ip4][..tcp] [..192.168.1.184][56610] -> [..165.22.107.33][30303]
new: [....11] [ip4][..tcp] [..192.168.1.184][56611] -> [..104.42.217.25][30303]
@@ -54,7 +54,7 @@
RISK: Unsafe Protocol
new: [....26] [ip4][..udp] [..192.168.1.184][30303] -> [...128.0.51.140][30303]
detected: [....26] [ip4][..udp] [..192.168.1.184][30303] -> [...128.0.51.140][30303] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
analyse: [....13] [ip4][..tcp] [..192.168.1.184][56615] -> [.35.158.244.151][30303] [Mining][AmazonAWS][Mining][Unsafe]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.063| 0.008| 0.018| 335.828| 2.400]
@@ -85,9 +85,9 @@
new: [....28] [ip4][..tcp] [..192.168.1.184][56632] -> [...51.38.81.180][30303]
new: [....29] [ip4][..udp] [..192.168.1.184][30303] -> [..54.36.160.211][30303]
detected: [....29] [ip4][..udp] [..192.168.1.184][30303] -> [..54.36.160.211][30303] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [....30] [ip4][..tcp] [..192.168.1.184][56633] -> [.82.145.220.249][30303]
- detected: [....11] [ip4][..tcp] [..192.168.1.184][56611] -> [..104.42.217.25][30303] [Mining][Mining][Mining][Unsafe]
+ detected: [....11] [ip4][..tcp] [..192.168.1.184][56611] -> [..104.42.217.25][30303] [Mining][Azure][Mining][Unsafe]
RISK: Unsafe Protocol
analyse: [....23] [ip4][..tcp] [..192.168.1.184][56627] -> [..34.255.23.113][30303] [Mining][AmazonAWS][Mining][Unsafe]
min| max| avg| stddev| variance| entropy
@@ -101,13 +101,13 @@
[ENTROPIES...: 4.4,5.3,5.0,7.6,5.2,7.6,5.9,5.3,5.3,5.5,5.6,5.1,5.0,5.0,5.0,5.1,5.1,5.3,5.1,6.0,5.2,6.7,5.2,5.5,5.8,5.1,5.2,5.5,5.6,5.1,3.6,3.6]
new: [....31] [ip4][..udp] [..192.168.1.184][30303] -> [..111.229.0.180][20182]
detected: [....31] [ip4][..udp] [..192.168.1.184][30303] -> [..111.229.0.180][20182] [Mining][Tencent][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
detected: [....28] [ip4][..tcp] [..192.168.1.184][56632] -> [...51.38.81.180][30303] [Mining][Unknown][Mining][Unsafe]
RISK: Unsafe Protocol
new: [....32] [ip4][..udp] [..192.168.1.184][30303] -> [...209.97.143.1][50000]
detected: [....32] [ip4][..udp] [..192.168.1.184][30303] -> [...209.97.143.1][50000] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
- detected: [....15] [ip4][..tcp] [..192.168.1.184][56618] -> [.52.231.165.108][30303] [Mining][Mining][Mining][Unsafe]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ detected: [....15] [ip4][..tcp] [..192.168.1.184][56618] -> [.52.231.165.108][30303] [Mining][Azure][Mining][Unsafe]
RISK: Unsafe Protocol
analyse: [....25] [ip4][..tcp] [..192.168.1.184][56629] -> [....51.38.60.79][30303] [Mining][Unknown][Mining][Unsafe]
min| max| avg| stddev| variance| entropy
@@ -119,7 +119,7 @@
[IATS(ms)....: 36.4,36.5,1.5,44.0,0.5,0.0,0.1,0.0,0.0,43.1,0.0,0.0,0.0,0.0,0.7,0.0,0.1,0.0,0.0,0.1,0.1,0.1,0.0,0.0,0.0,72.9,0.0,0.0,0.7,0.0,0.0]
[PKTLENS.....: 64,60,52,473,52,392,84,53,54,81,52,52,52,52,52,84,53,176,55,68,84,53,54,65,68,52,52,46,46,46,46,46]
[ENTROPIES...: 4.4,5.4,5.1,7.5,5.3,7.4,6.0,5.2,5.3,5.9,5.1,5.1,5.1,5.0,5.1,5.9,5.1,6.7,5.2,5.6,5.9,5.2,5.2,5.5,5.6,5.1,5.3,4.0,3.9,4.0,4.0,4.0]
- detected: [....16] [ip4][..tcp] [..192.168.1.184][56620] -> [191.234.162.198][30303] [Mining][Mining][Mining][Unsafe]
+ detected: [....16] [ip4][..tcp] [..192.168.1.184][56620] -> [191.234.162.198][30303] [Mining][Azure][Mining][Unsafe]
RISK: Unsafe Protocol
detected: [....30] [ip4][..tcp] [..192.168.1.184][56633] -> [.82.145.220.249][30303] [Mining][Unknown][Mining][Unsafe]
RISK: Unsafe Protocol
@@ -135,7 +135,7 @@
RISK: Unsafe Protocol
detected: [....10] [ip4][..tcp] [..192.168.1.184][56610] -> [..165.22.107.33][30303] [Mining][Unknown][Mining][Unsafe]
RISK: Unsafe Protocol
- detected: [....17] [ip4][..tcp] [..192.168.1.184][56621] -> [..52.187.207.27][30303] [Mining][Mining][Mining][Unsafe]
+ detected: [....17] [ip4][..tcp] [..192.168.1.184][56621] -> [..52.187.207.27][30303] [Mining][Azure][Mining][Unsafe]
RISK: Unsafe Protocol
analyse: [....28] [ip4][..tcp] [..192.168.1.184][56632] -> [...51.38.81.180][30303] [Mining][Unknown][Mining][Unsafe]
min| max| avg| stddev| variance| entropy
@@ -161,7 +161,7 @@
new: [....36] [ip4][..tcp] [..192.168.1.184][56638] -> [209.250.240.205][30303]
new: [....37] [ip4][..udp] [..192.168.1.184][30303] -> [.35.180.246.169][30301]
detected: [....37] [ip4][..udp] [..192.168.1.184][30303] -> [.35.180.246.169][30301] [Mining][AmazonAWS][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [....38] [ip4][..tcp] [..192.168.1.184][56639] -> [.18.219.167.159][30303]
detected: [....33] [ip4][..tcp] [..192.168.1.184][56634] -> [..159.203.84.31][30303] [Mining][Unknown][Mining][Unsafe]
RISK: Unsafe Protocol
@@ -216,7 +216,7 @@
detected: [....43] [ip4][..tcp] [..192.168.1.184][56645] -> [.185.219.133.62][30303] [Mining][Unknown][Mining][Unsafe]
RISK: Unsafe Protocol
new: [....45] [ip4][..tcp] [..192.168.1.184][56647] -> [.182.162.161.61][30303]
- analyse: [....11] [ip4][..tcp] [..192.168.1.184][56611] -> [..104.42.217.25][30303] [Mining][Mining][Mining][Unsafe]
+ analyse: [....11] [ip4][..tcp] [..192.168.1.184][56611] -> [..104.42.217.25][30303] [Mining][Azure][Mining][Unsafe]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.202| 0.031| 0.071| 5088.628| 2.400]
[PKTLEN......: 46.000| 542.000| 91.800| 115.500| 13350.200| 4.400]
@@ -256,7 +256,7 @@
new: [....49] [ip4][..tcp] [..192.168.1.184][56654] -> [..85.214.108.52][30303]
new: [....50] [ip4][..udp] [..192.168.1.184][30303] -> [.18.219.167.159][30303]
detected: [....50] [ip4][..udp] [..192.168.1.184][30303] -> [.18.219.167.159][30303] [Mining][AmazonAWS][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
analyse: [....43] [ip4][..tcp] [..192.168.1.184][56645] -> [.185.219.133.62][30303] [Mining][Unknown][Mining][Unsafe]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.052| 0.010| 0.019| 354.234| 2.800]
@@ -272,7 +272,7 @@
RISK: Unsafe Protocol
detected: [....46] [ip4][..tcp] [..192.168.1.184][56650] -> [.35.228.250.140][30303] [Mining][GoogleCloud][Mining][Unsafe]
RISK: Unsafe Protocol
- analyse: [....15] [ip4][..tcp] [..192.168.1.184][56618] -> [.52.231.165.108][30303] [Mining][Mining][Mining][Unsafe]
+ analyse: [....15] [ip4][..tcp] [..192.168.1.184][56618] -> [.52.231.165.108][30303] [Mining][Azure][Mining][Unsafe]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.262| 0.038| 0.087| 7588.779| 2.300]
[PKTLEN......: 46.000| 505.000| 90.200| 109.100| 11904.300| 4.400]
@@ -282,7 +282,7 @@
[IATS(ms)....: 261.7,261.8,1.5,222.8,0.1,0.0,0.0,221.3,0.0,0.0,0.2,0.0,0.2,0.0,0.1,0.0,0.1,0.0,0.6,0.0,0.1,0.0,0.1,0.1,0.0,0.1,0.0,0.0,0.0,211.4,0.0]
[PKTLENS.....: 64,60,52,502,52,505,84,53,52,52,52,54,65,52,52,68,52,52,52,84,53,176,55,68,84,53,54,65,68,52,52,46]
[ENTROPIES...: 4.5,5.3,5.0,7.6,5.2,7.6,5.8,5.2,5.1,5.1,5.1,5.3,5.6,5.1,5.1,5.7,5.2,5.1,5.1,5.7,5.1,6.9,5.1,5.5,5.8,5.1,5.2,5.5,5.5,5.0,5.2,3.8]
- analyse: [....16] [ip4][..tcp] [..192.168.1.184][56620] -> [191.234.162.198][30303] [Mining][Mining][Mining][Unsafe]
+ analyse: [....16] [ip4][..tcp] [..192.168.1.184][56620] -> [191.234.162.198][30303] [Mining][Azure][Mining][Unsafe]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.263| 0.038| 0.087| 7624.721| 2.300]
[PKTLEN......: 46.000| 564.000| 92.100| 117.400| 13788.700| 4.400]
@@ -382,7 +382,7 @@
[ENTROPIES...: 4.5,5.4,5.1,7.6,5.2,7.5,5.1,5.9,5.0,5.2,5.2,5.0,5.0,5.6,5.6,5.0,5.0,5.8,5.0,6.7,5.2,5.4,5.9,5.1,5.1,5.5,5.5,5.0,5.2,5.1,5.2,3.8]
new: [....58] [ip4][..udp] [183.129.242.164][.1024] -> [..192.168.1.184][30303]
detected: [....58] [ip4][..udp] [183.129.242.164][.1024] -> [..192.168.1.184][30303] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
detected: [....54] [ip4][..tcp] [..192.168.1.184][56660] -> [...51.161.23.12][30303] [Mining][Unknown][Mining][Unsafe]
RISK: Unsafe Protocol
detected: [....53] [ip4][..tcp] [..192.168.1.184][56658] -> [.157.230.152.87][30303] [Mining][Unknown][Mining][Unsafe]
@@ -401,12 +401,12 @@
RISK: Unsafe Protocol
new: [....59] [ip4][..udp] [..192.168.1.184][30303] -> [.202.112.28.106][30303]
detected: [....59] [ip4][..udp] [..192.168.1.184][30303] -> [.202.112.28.106][30303] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
detected: [....45] [ip4][..tcp] [..192.168.1.184][56647] -> [.182.162.161.61][30303] [Mining][Unknown][Mining][Unsafe]
RISK: Unsafe Protocol
detected: [....52] [ip4][..tcp] [..192.168.1.184][56657] -> [.138.75.171.190][30303] [Mining][Unknown][Mining][Unsafe]
RISK: Unsafe Protocol
- analyse: [....17] [ip4][..tcp] [..192.168.1.184][56621] -> [..52.187.207.27][30303] [Mining][Mining][Mining][Unsafe]
+ analyse: [....17] [ip4][..tcp] [..192.168.1.184][56621] -> [..52.187.207.27][30303] [Mining][Azure][Mining][Unsafe]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.355| 0.054| 0.122| 14890.530| 2.400]
[PKTLEN......: 46.000| 577.000| 92.400| 118.100| 13953.700| 4.400]
@@ -418,7 +418,7 @@
[ENTROPIES...: 4.5,5.4,5.1,7.6,5.2,7.6,5.1,5.9,5.1,5.3,5.1,5.3,5.1,5.5,5.7,5.0,5.1,5.1,5.0,5.7,5.0,6.9,5.1,5.4,5.8,5.0,5.0,5.4,5.4,5.0,5.1,3.7]
new: [....60] [ip4][..udp] [..192.168.1.184][30303] -> [..106.12.39.168][30333]
detected: [....60] [ip4][..udp] [..192.168.1.184][30303] -> [..106.12.39.168][30333] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [....61] [ip4][..tcp] [..192.168.1.184][56670] -> [..167.86.122.50][30303]
new: [....62] [ip4][..tcp] [..192.168.1.184][56671] -> [..86.107.243.62][30303]
detected: [....56] [ip4][..tcp] [..192.168.1.184][56662] -> [..35.229.232.19][30303] [Mining][GoogleCloud][Mining][Unsafe]
@@ -501,7 +501,7 @@
RISK: Unsafe Protocol
new: [....71] [ip4][..udp] [..192.168.1.184][30303] -> [..167.86.122.50][30303]
detected: [....71] [ip4][..udp] [..192.168.1.184][30303] -> [..167.86.122.50][30303] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
detected: [....70] [ip4][..tcp] [..192.168.1.184][56681] -> [207.180.206.216][30303] [Mining][Unknown][Mining][Unsafe]
RISK: Unsafe Protocol
analyse: [....65] [ip4][..tcp] [..192.168.1.184][56674] -> [...94.68.55.162][30303] [Mining][Unknown][Mining][Unsafe]
@@ -556,7 +556,7 @@
end: [....46] [ip4][..tcp] [..192.168.1.184][56650] -> [.35.228.250.140][30303] [Mining][GoogleCloud][Mining][Unsafe]
RISK: Unsafe Protocol
idle: [....50] [ip4][..udp] [..192.168.1.184][30303] -> [.18.219.167.159][30303] [Mining][AmazonAWS][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
end: [....68] [ip4][..tcp] [..192.168.1.184][56679] -> [..35.228.158.52][30303] [Mining][GoogleCloud][Mining][Unsafe]
RISK: Unsafe Protocol
end: [....65] [ip4][..tcp] [..192.168.1.184][56674] -> [...94.68.55.162][30303] [Mining][Unknown][Mining][Unsafe]
@@ -568,17 +568,17 @@
end: [....56] [ip4][..tcp] [..192.168.1.184][56662] -> [..35.229.232.19][30303] [Mining][GoogleCloud][Mining][Unsafe]
RISK: Unsafe Protocol
idle: [....37] [ip4][..udp] [..192.168.1.184][30303] -> [.35.180.246.169][30301] [Mining][AmazonAWS][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....29] [ip4][..udp] [..192.168.1.184][30303] -> [..54.36.160.211][30303] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....60] [ip4][..udp] [..192.168.1.184][30303] -> [..106.12.39.168][30333] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....74] [ip4][..tcp] [..192.168.1.184][56686] -> [.206.189.107.35][30303] [Mining][Unknown][Mining][Unsafe]
RISK: Unsafe Protocol
end: [....13] [ip4][..tcp] [..192.168.1.184][56615] -> [.35.158.244.151][30303] [Mining][AmazonAWS][Mining][Unsafe]
RISK: Unsafe Protocol
guessed: [....42] [ip4][..tcp] [..192.168.1.184][56644] -> [..13.230.108.42][30303] [Mining][AmazonAWS][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....42] [ip4][..tcp] [..192.168.1.184][56644] -> [..13.230.108.42][30303]
end: [....25] [ip4][..tcp] [..192.168.1.184][56629] -> [....51.38.60.79][30303] [Mining][Unknown][Mining][Unsafe]
RISK: Unsafe Protocol
@@ -589,11 +589,11 @@
end: [....49] [ip4][..tcp] [..192.168.1.184][56654] -> [..85.214.108.52][30303] [Mining][Unknown][Mining][Unsafe]
RISK: Unsafe Protocol
idle: [.....3] [ip4][..udp] [...3.112.138.57][25516] -> [..192.168.1.184][30303] [Mining][AmazonAWS][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
end: [....10] [ip4][..tcp] [..192.168.1.184][56610] -> [..165.22.107.33][30303] [Mining][Unknown][Mining][Unsafe]
RISK: Unsafe Protocol
idle: [.....1] [ip4][..udp] [...87.14.222.25][56693] -> [..192.168.1.184][30303] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
end: [....53] [ip4][..tcp] [..192.168.1.184][56658] -> [.157.230.152.87][30303] [Mining][Unknown][Mining][Unsafe]
RISK: Unsafe Protocol
end: [....40] [ip4][..tcp] [..192.168.1.184][56642] -> [..178.62.10.218][30303] [Mining][Unknown][Mining][Unsafe]
@@ -603,36 +603,36 @@
end: [....61] [ip4][..tcp] [..192.168.1.184][56670] -> [..167.86.122.50][30303] [Mining][Unknown][Mining][Unsafe]
RISK: Unsafe Protocol
idle: [....31] [ip4][..udp] [..192.168.1.184][30303] -> [..111.229.0.180][20182] [Mining][Tencent][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
end: [....23] [ip4][..tcp] [..192.168.1.184][56627] -> [..34.255.23.113][30303] [Mining][AmazonAWS][Mining][Unsafe]
RISK: Unsafe Protocol
- end: [....15] [ip4][..tcp] [..192.168.1.184][56618] -> [.52.231.165.108][30303] [Mining][Mining][Mining][Unsafe]
+ end: [....15] [ip4][..tcp] [..192.168.1.184][56618] -> [.52.231.165.108][30303] [Mining][Azure][Mining][Unsafe]
RISK: Unsafe Protocol
end: [....64] [ip4][..tcp] [..192.168.1.184][56673] -> [..78.47.147.155][30303] [Mining][Unknown][Mining][Unsafe]
RISK: Unsafe Protocol
idle: [....71] [ip4][..udp] [..192.168.1.184][30303] -> [..167.86.122.50][30303] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....32] [ip4][..udp] [..192.168.1.184][30303] -> [...209.97.143.1][50000] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
- idle: [.....5] [ip4][..udp] [..192.168.1.184][30303] -> [.52.231.165.108][30303] [Mining][Mining][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ idle: [.....5] [ip4][..udp] [..192.168.1.184][30303] -> [.52.231.165.108][30303] [Mining][Azure][Mining][Unsafe]
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [.....2] [ip4][..udp] [...60.191.32.71][30303] -> [..192.168.1.184][30303] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....58] [ip4][..udp] [183.129.242.164][.1024] -> [..192.168.1.184][30303] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
end: [....22] [ip4][..tcp] [..192.168.1.184][56626] -> [178.128.195.220][30303] [Mining][Unknown][Mining][Unsafe]
RISK: Unsafe Protocol
idle: [....51] [ip4][..tcp] [..192.168.1.184][56655] -> [.202.112.28.106][30303] [Mining][Unknown][Mining][Unsafe]
RISK: Unsafe Protocol
guessed: [....21] [ip4][..tcp] [..192.168.1.184][56625] -> [.....5.1.83.226][30303] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....21] [ip4][..tcp] [..192.168.1.184][56625] -> [.....5.1.83.226][30303]
end: [....24] [ip4][..tcp] [..192.168.1.184][56628] -> [....3.209.45.79][30303] [Mining][Mining][Mining][Unsafe]
RISK: Unsafe Protocol
end: [....14] [ip4][..tcp] [..192.168.1.184][56617] -> [...34.97.172.22][30303] [Mining][GoogleCloud][Mining][Unsafe]
RISK: Unsafe Protocol
guessed: [....35] [ip4][..tcp] [..192.168.1.184][56637] -> [.35.233.197.131][30303] [Mining][GoogleCloud][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....35] [ip4][..tcp] [..192.168.1.184][56637] -> [.35.233.197.131][30303]
end: [....54] [ip4][..tcp] [..192.168.1.184][56660] -> [...51.161.23.12][30303] [Mining][Unknown][Mining][Unsafe]
RISK: Unsafe Protocol
@@ -645,13 +645,13 @@
end: [....47] [ip4][..tcp] [..192.168.1.184][56651] -> [..138.201.12.87][30303] [Mining][Unknown][Mining][Unsafe]
RISK: Unsafe Protocol
idle: [....26] [ip4][..udp] [..192.168.1.184][30303] -> [...128.0.51.140][30303] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
end: [....44] [ip4][..tcp] [..192.168.1.184][56646] -> [..172.105.94.62][30303] [Mining][Unknown][Mining][Unsafe]
RISK: Unsafe Protocol
end: [....48] [ip4][..tcp] [..192.168.1.184][56652] -> [..176.9.136.209][30303] [Mining][Unknown][Mining][Unsafe]
RISK: Unsafe Protocol
idle: [....59] [ip4][..udp] [..192.168.1.184][30303] -> [.202.112.28.106][30303] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
end: [....18] [ip4][..tcp] [..192.168.1.184][56622] -> [..18.138.108.67][30303] [Mining][Mining][Mining][Unsafe]
RISK: Unsafe Protocol
end: [....19] [ip4][..tcp] [..192.168.1.184][56623] -> [...18.138.81.28][30303] [Mining][AmazonAWS][Mining][Unsafe]
@@ -659,14 +659,14 @@
idle: [.....9] [ip4][..tcp] [..192.168.1.184][56612] -> [...66.42.82.246][30303] [Mining][Unknown][Mining][Unsafe]
RISK: Unsafe Protocol
idle: [.....4] [ip4][..udp] [..192.168.1.184][30303] -> [....3.209.45.79][30303] [Mining][Mining][Mining][Unsafe]
- RISK: Unsafe Protocol
- end: [....11] [ip4][..tcp] [..192.168.1.184][56611] -> [..104.42.217.25][30303] [Mining][Mining][Mining][Unsafe]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ end: [....11] [ip4][..tcp] [..192.168.1.184][56611] -> [..104.42.217.25][30303] [Mining][Azure][Mining][Unsafe]
RISK: Unsafe Protocol
idle: [.....7] [ip4][..udp] [..192.168.1.184][30303] -> [...34.97.172.22][30303] [Mining][GoogleCloud][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
end: [....63] [ip4][..tcp] [..192.168.1.184][56672] -> [139.162.255.210][30303] [Mining][Unknown][Mining][Unsafe]
RISK: Unsafe Protocol
- end: [....16] [ip4][..tcp] [..192.168.1.184][56620] -> [191.234.162.198][30303] [Mining][Mining][Mining][Unsafe]
+ end: [....16] [ip4][..tcp] [..192.168.1.184][56620] -> [191.234.162.198][30303] [Mining][Azure][Mining][Unsafe]
RISK: Unsafe Protocol
end: [....45] [ip4][..tcp] [..192.168.1.184][56647] -> [.182.162.161.61][30303] [Mining][Unknown][Mining][Unsafe]
RISK: Unsafe Protocol
@@ -676,18 +676,18 @@
RISK: Unsafe Protocol
end: [....27] [ip4][..tcp] [..192.168.1.184][56630] -> [..40.67.144.128][30303] [Mining][Azure][Mining][Unsafe]
RISK: Unsafe Protocol
- end: [....17] [ip4][..tcp] [..192.168.1.184][56621] -> [..52.187.207.27][30303] [Mining][Mining][Mining][Unsafe]
+ end: [....17] [ip4][..tcp] [..192.168.1.184][56621] -> [..52.187.207.27][30303] [Mining][Azure][Mining][Unsafe]
RISK: Unsafe Protocol
idle: [....67] [ip4][..tcp] [..192.168.1.184][56678] -> [..13.251.14.199][30303] [Mining][AmazonAWS][Mining][Unsafe]
RISK: Unsafe Protocol
idle: [.....6] [ip4][..udp] [..192.168.1.184][30303] -> [..18.138.108.67][30303] [Mining][Mining][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
end: [....66] [ip4][..tcp] [..192.168.1.184][56675] -> [..35.235.37.216][30303] [Mining][GoogleCloud][Mining][Unsafe]
RISK: Unsafe Protocol
end: [....72] [ip4][..tcp] [..192.168.1.184][56684] -> [...51.83.237.44][30303] [Mining][Unknown][Mining][Unsafe]
RISK: Unsafe Protocol
idle: [.....8] [ip4][..udp] [..192.168.1.184][30303] -> [...66.42.82.246][30303] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
end: [....62] [ip4][..tcp] [..192.168.1.184][56671] -> [..86.107.243.62][30303] [Mining][Unknown][Mining][Unsafe]
RISK: Unsafe Protocol
idle: [....73] [ip4][..tcp] [..192.168.1.184][56685] -> [...88.99.93.219][30303] [Mining][Unknown][Mining][Unsafe]
diff --git a/test/results/flow-info/ethernetIP.pcap.out b/test/results/flow-info/default/ethernetIP.pcap.out
index bbe57c8cb..d147e1a1c 100644
--- a/test/results/flow-info/ethernetIP.pcap.out
+++ b/test/results/flow-info/default/ethernetIP.pcap.out
@@ -3,14 +3,22 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [....141.81.0.10][50275] -> [....141.81.0.83][44818] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [....141.81.0.10][50275] -> [....141.81.0.83][44818] [EthernetIP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..tcp] [....141.81.0.63][44818] -> [....141.81.0.10][52593] [MIDSTREAM]
detected: [.....2] [ip4][..tcp] [....141.81.0.63][44818] -> [....141.81.0.10][52593] [EthernetIP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..tcp] [....141.81.0.10][52594] -> [....141.81.0.43][44818] [MIDSTREAM]
detected: [.....3] [ip4][..tcp] [....141.81.0.10][52594] -> [....141.81.0.43][44818] [EthernetIP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..tcp] [....141.81.0.10][62717] -> [....141.81.0.23][44818] [MIDSTREAM]
detected: [.....4] [ip4][..tcp] [....141.81.0.10][62717] -> [....141.81.0.23][44818] [EthernetIP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..tcp] [....141.81.0.10][50275] -> [....141.81.0.83][44818] [EthernetIP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..tcp] [....141.81.0.10][62717] -> [....141.81.0.23][44818] [EthernetIP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..tcp] [....141.81.0.63][44818] -> [....141.81.0.10][52593] [EthernetIP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..tcp] [....141.81.0.10][52594] -> [....141.81.0.43][44818] [EthernetIP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/exe_download.pcap.out b/test/results/flow-info/default/exe_download.pcap.out
index 1130d703e..4b7dfbc3d 100644
--- a/test/results/flow-info/exe_download.pcap.out
+++ b/test/results/flow-info/default/exe_download.pcap.out
@@ -3,9 +3,9 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [....10.9.25.101][49165] -> [..144.91.69.195][...80]
detected: [.....1] [ip4][..tcp] [....10.9.25.101][49165] -> [..144.91.69.195][...80] [HTTP][Unknown][Web][Acceptable][144.91.69.195]
- RISK: HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI
detection-update: [.....1] [ip4][..tcp] [....10.9.25.101][49165] -> [..144.91.69.195][...80] [HTTP][Unknown][Download][Acceptable][144.91.69.195]
- RISK: Binary App Transfer, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Binary App Transfer, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Obsolete Server
analyse: [.....1] [ip4][..tcp] [....10.9.25.101][49165] -> [..144.91.69.195][...80] [HTTP][Unknown][Download][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.320| 0.062| 0.115| 13236.602| 3.000]
@@ -17,5 +17,5 @@
[PKTLENS.....: 52,44,40,193,40,1500,1308,40,1404,1404,40,1404,1500,1288,40,1404,1404,1404,40,40,1500,1500,1212,1404,40,1404,40,1500,1500,1500,1116,40]
[ENTROPIES...: 4.4,4.9,4.6,5.8,4.7,3.7,0.3,4.6,0.3,4.4,4.6,5.7,5.5,5.4,4.5,5.9,5.8,5.7,4.6,4.6,5.4,5.4,5.4,5.7,4.6,5.6,4.5,5.7,5.8,5.6,5.7,4.6]
end: [.....1] [ip4][..tcp] [....10.9.25.101][49165] -> [..144.91.69.195][...80] [HTTP][Unknown][Download][Acceptable]
- RISK: Binary App Transfer, HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: Binary App Transfer, HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Obsolete Server
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/exe_download_as_png.pcap.out b/test/results/flow-info/default/exe_download_as_png.pcap.out
index febe17d92..7dde9ff64 100644
--- a/test/results/flow-info/exe_download_as_png.pcap.out
+++ b/test/results/flow-info/default/exe_download_as_png.pcap.out
@@ -3,9 +3,9 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [....10.9.25.101][49197] -> [..185.98.87.185][...80]
detected: [.....1] [ip4][..tcp] [....10.9.25.101][49197] -> [..185.98.87.185][...80] [HTTP][Unknown][Web][Acceptable][185.98.87.185]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
detection-update: [.....1] [ip4][..tcp] [....10.9.25.101][49197] -> [..185.98.87.185][...80] [HTTP][Unknown][Web][Acceptable][185.98.87.185]
- RISK: Binary App Transfer, HTTP Numeric IP Address
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Obsolete Server
analyse: [.....1] [ip4][..tcp] [....10.9.25.101][49197] -> [..185.98.87.185][...80] [HTTP][Unknown][Web][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.613| 0.094| 0.193| 37090.865| 2.700]
@@ -17,5 +17,5 @@
[PKTLENS.....: 52,44,40,189,40,1500,1308,40,1404,1404,40,1404,1404,40,1404,1404,40,1404,1404,40,1404,1404,1404,40,1404,1404,40,1404,1404,40,1404,1404]
[ENTROPIES...: 4.6,4.9,4.7,5.5,4.6,3.4,0.3,4.8,0.3,4.6,4.8,4.5,3.4,4.7,3.3,3.5,4.7,4.1,5.3,4.7,5.5,4.6,5.0,4.7,4.4,2.7,4.7,6.3,4.4,4.7,4.0,2.8]
end: [.....1] [ip4][..tcp] [....10.9.25.101][49197] -> [..185.98.87.185][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: Binary App Transfer, HTTP Numeric IP Address
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Obsolete Server
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/facebook.pcap.out b/test/results/flow-info/default/facebook.pcap.out
index 8c0a6aa82..8c0a6aa82 100644
--- a/test/results/flow-info/facebook.pcap.out
+++ b/test/results/flow-info/default/facebook.pcap.out
diff --git a/test/results/flow-info/fastcgi.pcap.out b/test/results/flow-info/default/fastcgi.pcap.out
index fe0696146..fe0696146 100644
--- a/test/results/flow-info/fastcgi.pcap.out
+++ b/test/results/flow-info/default/fastcgi.pcap.out
diff --git a/test/results/flow-info/default/firefox.pcap.out b/test/results/flow-info/default/firefox.pcap.out
new file mode 100644
index 000000000..9484e04bb
--- /dev/null
+++ b/test/results/flow-info/default/firefox.pcap.out
@@ -0,0 +1,28 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..tcp] [..192.168.1.178][51577] -> [...146.48.58.18][..443]
+ detected: [.....1] [ip4][..tcp] [..192.168.1.178][51577] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ detection-update: [.....1] [ip4][..tcp] [..192.168.1.178][51577] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ new: [.....2] [ip4][..tcp] [..192.168.1.178][51583] -> [...146.48.58.18][..443]
+ new: [.....3] [ip4][..tcp] [..192.168.1.178][51588] -> [...146.48.58.18][..443]
+ detected: [.....2] [ip4][..tcp] [..192.168.1.178][51583] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ detected: [.....3] [ip4][..tcp] [..192.168.1.178][51588] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ detection-update: [.....2] [ip4][..tcp] [..192.168.1.178][51583] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ detection-update: [.....3] [ip4][..tcp] [..192.168.1.178][51588] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ new: [.....4] [ip4][..tcp] [..192.168.1.178][51599] -> [...146.48.58.18][..443]
+ new: [.....5] [ip4][..tcp] [..192.168.1.178][51600] -> [...146.48.58.18][..443]
+ new: [.....6] [ip4][..tcp] [..192.168.1.178][51601] -> [...146.48.58.18][..443]
+ detected: [.....5] [ip4][..tcp] [..192.168.1.178][51600] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ detected: [.....4] [ip4][..tcp] [..192.168.1.178][51599] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ detected: [.....6] [ip4][..tcp] [..192.168.1.178][51601] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ detection-update: [.....5] [ip4][..tcp] [..192.168.1.178][51600] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ detection-update: [.....4] [ip4][..tcp] [..192.168.1.178][51599] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ detection-update: [.....6] [ip4][..tcp] [..192.168.1.178][51601] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ idle: [.....1] [ip4][..tcp] [..192.168.1.178][51577] -> [...146.48.58.18][..443]
+ idle: [.....2] [ip4][..tcp] [..192.168.1.178][51583] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
+ idle: [.....3] [ip4][..tcp] [..192.168.1.178][51588] -> [...146.48.58.18][..443]
+ idle: [.....4] [ip4][..tcp] [..192.168.1.178][51599] -> [...146.48.58.18][..443]
+ idle: [.....5] [ip4][..tcp] [..192.168.1.178][51600] -> [...146.48.58.18][..443]
+ idle: [.....6] [ip4][..tcp] [..192.168.1.178][51601] -> [...146.48.58.18][..443]
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/fix.pcap.out b/test/results/flow-info/default/fix.pcap.out
index 1644b6a8f..0e34a4da0 100644
--- a/test/results/flow-info/fix.pcap.out
+++ b/test/results/flow-info/default/fix.pcap.out
@@ -3,16 +3,22 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [.....8.17.22.31][.4000] -> [...192.168.0.20][43594] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [.....8.17.22.31][.4000] -> [...192.168.0.20][43594] [FIX][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..tcp] [.....8.17.22.31][.4000] -> [...192.168.0.20][47968] [MIDSTREAM]
detected: [.....2] [ip4][..tcp] [.....8.17.22.31][.4000] -> [...192.168.0.20][47968] [FIX][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..tcp] [..208.245.107.3][.4000] -> [...192.168.0.20][45578] [MIDSTREAM]
detected: [.....3] [ip4][..tcp] [..208.245.107.3][.4000] -> [...192.168.0.20][45578] [FIX][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..tcp] [.....8.17.22.31][.4000] -> [...192.168.0.20][47952] [MIDSTREAM]
detected: [.....4] [ip4][..tcp] [.....8.17.22.31][.4000] -> [...192.168.0.20][47952] [FIX][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][..tcp] [..208.245.107.3][.4000] -> [...192.168.0.20][45584] [MIDSTREAM]
detected: [.....5] [ip4][..tcp] [..208.245.107.3][.4000] -> [...192.168.0.20][45584] [FIX][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
new: [.....6] [ip4][..tcp] [.....8.17.22.31][.4000] -> [...192.168.0.20][47962] [MIDSTREAM]
detected: [.....6] [ip4][..tcp] [.....8.17.22.31][.4000] -> [...192.168.0.20][47962] [FIX][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
analyse: [.....3] [ip4][..tcp] [..208.245.107.3][.4000] -> [...192.168.0.20][45578] [FIX][Unknown][RPC][Safe]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.315| 0.065| 0.068| 4636.039| 4.400]
@@ -25,8 +31,10 @@
[ENTROPIES...: 5.2,4.4,6.4,5.1,4.8,4.5,5.2,4.4,5.0,4.5,5.2,4.4,5.1,4.5,5.1,4.5,5.1,4.4,5.1,4.3,5.1,4.5,5.0,4.4,5.1,4.4,5.2,4.5,4.9,4.5,5.1,4.4]
new: [.....7] [ip4][..tcp] [..208.245.107.3][.4000] -> [...192.168.0.20][38652] [MIDSTREAM]
detected: [.....7] [ip4][..tcp] [..208.245.107.3][.4000] -> [...192.168.0.20][38652] [FIX][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
new: [.....8] [ip4][..tcp] [.....8.17.22.31][.4000] -> [...192.168.0.20][40918] [MIDSTREAM]
detected: [.....8] [ip4][..tcp] [.....8.17.22.31][.4000] -> [...192.168.0.20][40918] [FIX][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
analyse: [.....2] [ip4][..tcp] [.....8.17.22.31][.4000] -> [...192.168.0.20][47968] [FIX][Unknown][RPC][Safe]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.300| 0.091| 0.084| 7079.807| 4.200]
@@ -39,6 +47,7 @@
[ENTROPIES...: 5.4,5.2,5.4,5.4,5.1,5.2,5.4,5.4,5.1,5.2,5.3,5.1,5.6,5.2,5.5,5.2,5.4,5.2,5.1,5.1,6.5,5.1,5.5,5.2,5.5,5.2,5.2,5.2,5.2,5.2,5.4,5.1]
new: [.....9] [ip4][..tcp] [..208.245.107.3][.4000] -> [...192.168.0.20][38646] [MIDSTREAM]
detected: [.....9] [ip4][..tcp] [..208.245.107.3][.4000] -> [...192.168.0.20][38646] [FIX][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
analyse: [.....1] [ip4][..tcp] [.....8.17.22.31][.4000] -> [...192.168.0.20][43594] [FIX][Unknown][RPC][Safe]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.291| 0.178| 0.113| 12753.578| 4.500]
@@ -51,10 +60,13 @@
[ENTROPIES...: 5.5,5.2,5.3,5.1,5.4,5.4,5.2,5.1,6.4,5.1,5.4,5.2,5.5,5.2,5.6,5.2,5.4,5.2,5.5,5.2,5.4,5.2,5.6,5.6,5.2,5.2,5.5,5.2,5.4,5.2,5.5,5.2]
new: [....10] [ip4][..tcp] [..208.245.107.3][.4000] -> [...192.168.0.20][39094] [MIDSTREAM]
detected: [....10] [ip4][..tcp] [..208.245.107.3][.4000] -> [...192.168.0.20][39094] [FIX][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
new: [....11] [ip4][..tcp] [..217.192.86.32][.4000] -> [...192.168.0.20][53330] [MIDSTREAM]
detected: [....11] [ip4][..tcp] [..217.192.86.32][.4000] -> [...192.168.0.20][53330] [FIX][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
new: [....12] [ip4][..tcp] [.....8.17.22.31][.4000] -> [...192.168.0.20][40928] [MIDSTREAM]
detected: [....12] [ip4][..tcp] [.....8.17.22.31][.4000] -> [...192.168.0.20][40928] [FIX][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
analyse: [.....5] [ip4][..tcp] [..208.245.107.3][.4000] -> [...192.168.0.20][45584] [FIX][Unknown][RPC][Safe]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 5.507| 0.699| 1.281| 1640706.605| 3.700]
@@ -76,15 +88,27 @@
[PKTLENS.....: 91,52,112,52,91,52,91,52,137,52,91,52,91,52,112,52,91,52,112,52,91,52,91,52,137,52,91,52,133,52,91,52]
[ENTROPIES...: 5.6,5.1,5.5,5.1,5.5,5.1,5.4,5.1,6.3,5.1,5.4,5.2,5.5,5.2,5.4,5.2,5.4,5.1,5.6,5.2,5.4,5.2,5.4,5.1,6.5,5.2,5.5,5.1,5.5,5.2,5.5,5.2]
idle: [.....3] [ip4][..tcp] [..208.245.107.3][.4000] -> [...192.168.0.20][45578] [FIX][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
idle: [.....5] [ip4][..tcp] [..208.245.107.3][.4000] -> [...192.168.0.20][45584] [FIX][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
idle: [.....8] [ip4][..tcp] [.....8.17.22.31][.4000] -> [...192.168.0.20][40918] [FIX][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
idle: [....12] [ip4][..tcp] [.....8.17.22.31][.4000] -> [...192.168.0.20][40928] [FIX][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
idle: [....11] [ip4][..tcp] [..217.192.86.32][.4000] -> [...192.168.0.20][53330] [FIX][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..tcp] [.....8.17.22.31][.4000] -> [...192.168.0.20][43594] [FIX][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..tcp] [.....8.17.22.31][.4000] -> [...192.168.0.20][47952] [FIX][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][..tcp] [.....8.17.22.31][.4000] -> [...192.168.0.20][47962] [FIX][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..tcp] [.....8.17.22.31][.4000] -> [...192.168.0.20][47968] [FIX][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
idle: [.....9] [ip4][..tcp] [..208.245.107.3][.4000] -> [...192.168.0.20][38646] [FIX][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
idle: [.....7] [ip4][..tcp] [..208.245.107.3][.4000] -> [...192.168.0.20][38652] [FIX][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
idle: [....10] [ip4][..tcp] [..208.245.107.3][.4000] -> [...192.168.0.20][39094] [FIX][Unknown][RPC][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/fix2.pcap.out b/test/results/flow-info/default/fix2.pcap.out
index dca353080..dca353080 100644
--- a/test/results/flow-info/fix2.pcap.out
+++ b/test/results/flow-info/default/fix2.pcap.out
diff --git a/test/results/flow-info/forticlient.pcap.out b/test/results/flow-info/default/forticlient.pcap.out
index 3ec466444..a62055aa9 100644
--- a/test/results/flow-info/forticlient.pcap.out
+++ b/test/results/flow-info/default/forticlient.pcap.out
@@ -3,9 +3,9 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [..192.168.1.178][61805] -> [....82.81.46.13][10443]
detected: [.....1] [ip4][..tcp] [..192.168.1.178][61805] -> [....82.81.46.13][10443] [TLS][Unknown][Web][Safe][82.81.46.13]
- RISK: Known Proto on Non Std Port, TLS (probably) Not Carrying HTTPS
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, TLS (probably) Not Carrying HTTPS
detection-update: [.....1] [ip4][..tcp] [..192.168.1.178][61805] -> [....82.81.46.13][10443] [TLS][Unknown][Web][Safe][82.81.46.13]
- RISK: Known Proto on Non Std Port, TLS (probably) Not Carrying HTTPS
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, TLS (probably) Not Carrying HTTPS
detection-update: [.....1] [ip4][..tcp] [..192.168.1.178][61805] -> [....82.81.46.13][10443] [TLS.FortiClient][Unknown][VPN][Safe][82.81.46.13]
RISK: Known Proto on Non Std Port, TLS (probably) Not Carrying HTTPS
new: [.....2] [ip4][..tcp] [..192.168.1.178][61806] -> [....82.81.46.13][10443]
diff --git a/test/results/flow-info/ftp-start-tls.pcap.out b/test/results/flow-info/default/ftp-start-tls.pcap.out
index ca589c1ed..ca589c1ed 100644
--- a/test/results/flow-info/ftp-start-tls.pcap.out
+++ b/test/results/flow-info/default/ftp-start-tls.pcap.out
diff --git a/test/results/flow-info/ftp.pcap.out b/test/results/flow-info/default/ftp.pcap.out
index 5d28ef4f3..6e18aa82b 100644
--- a/test/results/flow-info/ftp.pcap.out
+++ b/test/results/flow-info/default/ftp.pcap.out
@@ -3,7 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [..192.168.1.212][50694] -> [...90.130.70.73][...21]
detected: [.....1] [ip4][..tcp] [..192.168.1.212][50694] -> [...90.130.70.73][...21] [FTP_CONTROL][Unknown][Download][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Clear-Text Credentials
analyse: [.....1] [ip4][..tcp] [..192.168.1.212][50694] -> [...90.130.70.73][...21] [FTP_CONTROL][Unknown][Download][Unsafe]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.090| 0.019| 0.021| 426.190| 4.100]
@@ -29,9 +29,9 @@
[PKTLENS.....: 64,60,52,1492,64,1492,52,1492,52,1492,1492,52,1492,52,1492,1492,1492,52,52,1492,1492,52,1492,52,1492,1492,52,52,1492,52,1492,1492]
[ENTROPIES...: 4.3,5.3,4.9,0.4,5.0,0.4,5.0,0.4,4.8,0.4,0.4,4.9,0.4,4.8,0.4,0.4,0.4,4.9,4.8,0.4,0.4,4.9,0.4,4.8,0.4,0.4,5.2,5.0,0.4,4.8,0.4,0.4]
not-detected: [.....3] [ip4][..tcp] [..192.168.1.212][50696] -> [...90.130.70.73][24523] [Unknown][Unknown][Unrated]
- end: [.....3] [ip4][..tcp] [..192.168.1.212][50696] -> [...90.130.70.73][24523] [Unknown][Unknown][Unrated]
+ end: [.....3] [ip4][..tcp] [..192.168.1.212][50696] -> [...90.130.70.73][24523]
end: [.....1] [ip4][..tcp] [..192.168.1.212][50694] -> [...90.130.70.73][...21] [FTP_CONTROL][Unknown][Download][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Clear-Text Credentials
end: [.....2] [ip4][..tcp] [..192.168.1.212][50695] -> [...90.130.70.73][25685] [FTP_DATA][Unknown][Download][Acceptable]
RISK: Known Proto on Non Std Port
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/ftp_failed.pcap.out b/test/results/flow-info/default/ftp_failed.pcap.out
index 2c35ab49b..43b78d438 100644
--- a/test/results/flow-info/ftp_failed.pcap.out
+++ b/test/results/flow-info/default/ftp_failed.pcap.out
@@ -3,7 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip6][..tcp] [.............2a00:d40:1:3:192:12:193:11][44724] -> [.......................2a00:800:1010::1][...21]
detected: [.....1] [ip6][..tcp] [.............2a00:d40:1:3:192:12:193:11][44724] -> [.......................2a00:800:1010::1][...21] [FTP_CONTROL][Unknown][Download][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Clear-Text Credentials
end: [.....1] [ip6][..tcp] [.............2a00:d40:1:3:192:12:193:11][44724] -> [.......................2a00:800:1010::1][...21] [FTP_CONTROL][Unknown][Download][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Clear-Text Credentials
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/fuzz-2006-06-26-2594.pcap.out b/test/results/flow-info/default/fuzz-2006-06-26-2594.pcap.out
index fec2ef630..b59a44667 100644
--- a/test/results/flow-info/fuzz-2006-06-26-2594.pcap.out
+++ b/test/results/flow-info/default/fuzz-2006-06-26-2594.pcap.out
@@ -6,41 +6,53 @@
new: [.....2] [ip4][..udp] [....217.168.1.2][..137] -> [..192.168.1.255][..137]
new: [.....3] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][...53]
detected: [.....3] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..udp] [....192.168.1.2][.2712] -> [...192.37.115.0][...53]
detected: [.....4] [ip4][..udp] [....192.168.1.2][.2712] -> [...192.37.115.0][...53] [DNS][Unknown][Network][Acceptable][sip.cybercrty.dk]
new: [.....5] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][49973]
new: [.....6] [ip4][..udp] [....192.168.1.3][...53] -> [....192.168.1.2][.2712]
detected: [.....6] [ip4][..udp] [....192.168.1.3][...53] -> [....192.168.1.2][.2712] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
+ RISK: Unidirectional Traffic
new: [.....7] [ip4][..udp] [....192.168.1.2][.2713] -> [....192.168.1.1][...53]
detected: [.....7] [ip4][..udp] [....192.168.1.2][.2713] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
+ RISK: Unidirectional Traffic
new: [.....8] [ip4][..udp] [..192.168.1.110][.2713] -> [....192.168.1.1][...53]
detected: [.....8] [ip4][..udp] [..192.168.1.110][.2713] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
new: [.....9] [ip4][..udp] [....192.168.1.2][.2597] -> [....192.168.1.1][29440]
detection-update: [.....7] [ip4][..udp] [....192.168.1.2][.2713] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
new: [....10] [ip4][..udp] [....192.168.1.2][.2714] -> [....192.168.1.1][...53]
detected: [....10] [ip4][..udp] [....192.168.1.2][.2714] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
detection-update: [....10] [ip4][..udp] [....192.168.1.2][.2714] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
new: [....11] [ip4][..udp] [...192.168.1.52][.5060] -> [..212.242.33.35][.5060]
detected: [....11] [ip4][..udp] [...192.168.1.52][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060]
detected: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....13] [ip4][..udp] [....192.168.1.2][.2715] -> [....192.168.1.1][...53]
detected: [....13] [ip4][..udp] [....192.168.1.2][.2715] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
detection-update: [....13] [ip4][..udp] [....192.168.1.2][.2715] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
detection-update: [....13] [ip4][..udp] [....192.168.1.2][.2715] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cyber?ity.dk]
+ RISK: Text With Non-Printable Chars, Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
new: [....14] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53]
detected: [....14] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
new: [....15] [ip4][..udp] [....192.168.1.1][.9587] -> [....192.168.1.2][..156]
ERROR-EVENT: Unknown packet type [3/16]
new: [....16] [ip4][..udp] [..208.242.33.35][.5060] -> [....192.168.1.2][.5060]
detected: [....16] [ip4][..udp] [..208.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....17] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.251][..138]
detected: [....17] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.251][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous][]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [.....2] [ip4][..udp] [....217.168.1.2][..137] -> [..192.168.1.255][..137]
new: [....18] [ip4][..tcp] [....192.168.1.2][.2717] -> [..147.137.21.94][..445]
@@ -48,9 +60,12 @@
new: [....20] [ip4][..tcp] [...192.168.1.71][.2718] -> [.147.137.21.122][..139]
update: [.....4] [ip4][..udp] [....192.168.1.2][.2712] -> [...192.37.115.0][...53]
update: [....11] [ip4][..udp] [...192.168.1.52][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][...53]
update: [.....6] [ip4][..udp] [....192.168.1.3][...53] -> [....192.168.1.2][.2712] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....7] [ip4][..udp] [....192.168.1.2][.2713] -> [....192.168.1.1][...53]
update: [.....8] [ip4][..udp] [..192.168.1.110][.2713] -> [....192.168.1.1][...53]
update: [....10] [ip4][..udp] [....192.168.1.2][.2714] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -59,8 +74,10 @@
update: [.....5] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][49973]
new: [....21] [ip4][..udp] [....192.114.1.2][.2719] -> [....192.168.1.1][...53]
detected: [....21] [ip4][..udp] [....192.114.1.2][.2719] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][ftp.ecite?e.com]
+ RISK: Text With Non-Printable Chars, Unidirectional Traffic
new: [....22] [ip4][..udp] [....192.168.1.2][.2719] -> [....192.168.1.1][...53]
detected: [....22] [ip4][..udp] [....192.168.1.2][.2719] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][ftp.ecitele.com]
+ RISK: Unidirectional Traffic
detection-update: [....22] [ip4][..udp] [....192.168.1.2][.2719] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet
new: [....23] [ip4][..tcp] [....192.168.1.2][.2720] -> [..147.234.1.253][...21]
@@ -91,22 +108,28 @@
new: [....43] [ip4][..tcp] [.....37.115.0.2][.2639] -> [..147.234.1.253][...21] [MIDSTREAM]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [6/16]
update: [....16] [ip4][..udp] [..208.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....14] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53]
update: [....15] [ip4][..udp] [....192.168.1.1][.9587] -> [....192.168.1.2][..156]
new: [....44] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.136.1.1][...53]
detected: [....44] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.136.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
new: [....45] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.168.1.1][...53]
detected: [....45] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
update: [.....4] [ip4][..udp] [....192.168.1.2][.2712] -> [...192.37.115.0][...53]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....17] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.251][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [.....2] [ip4][..udp] [....217.168.1.2][..137] -> [..192.168.1.255][..137]
update: [....11] [ip4][..udp] [...192.168.1.52][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][...53]
update: [.....6] [ip4][..udp] [....192.168.1.3][...53] -> [....192.168.1.2][.2712] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....7] [ip4][..udp] [....192.168.1.2][.2713] -> [....192.168.1.1][...53]
update: [.....8] [ip4][..udp] [..192.168.1.110][.2713] -> [....192.168.1.1][...53]
update: [....10] [ip4][..udp] [....192.168.1.2][.2714] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -114,17 +137,22 @@
update: [.....9] [ip4][..udp] [....192.168.1.2][.2597] -> [....192.168.1.1][29440]
update: [.....5] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][49973]
detection-update: [....45] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
new: [....46] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2723]
detected: [....46] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2723] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-adds.arpa]
+ RISK: Unidirectional Traffic
new: [....47] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][.9587]
new: [....48] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][...53]
detected: [....48] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp._s?.cybercity.dk]
+ RISK: Text With Non-Printable Chars, Unidirectional Traffic
detection-update: [....48] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars, Unidirectional Traffic
new: [....49] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][25481]
new: [....50] [ip4][..udp] [....192.168.1.2][.2724] -> [...192.168.17.1][...53]
detected: [....50] [ip4][..udp] [....192.168.1.2][.2724] -> [...192.168.17.1][...53] [DNS][Unknown][Network][Acceptable][_zip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
update: [....16] [ip4][..udp] [..208.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....14] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53]
update: [....22] [ip4][..udp] [....192.168.1.2][.2719] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
@@ -132,9 +160,11 @@
update: [....15] [ip4][..udp] [....192.168.1.1][.9587] -> [....192.168.1.2][..156]
new: [....51] [ip4][..udp] [....192.168.1.2][.2725] -> [....192.168.1.1][...53]
detected: [....51] [ip4][..udp] [....192.168.1.2][.2725] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
detection-update: [....51] [ip4][..udp] [....192.168.1.2][.2725] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
new: [....52] [ip4][..udp] [...192.168.1.46][...53] -> [....192.168.1.2][.2726]
detected: [....52] [ip4][..udp] [...192.168.1.46][...53] -> [....192.168.1.2][.2726] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
idle: [.....4] [ip4][..udp] [....192.168.1.2][.2712] -> [...192.37.115.0][...53]
guessed: [.....2] [ip4][..udp] [....217.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][]
@@ -143,10 +173,13 @@
update: [....47] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][.9587]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....17] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.251][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [....11] [ip4][..udp] [...192.168.1.52][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....6] [ip4][..udp] [....192.168.1.3][...53] -> [....192.168.1.2][.2712] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....7] [ip4][..udp] [....192.168.1.2][.2713] -> [....192.168.1.1][...53]
update: [.....8] [ip4][..udp] [..192.168.1.110][.2713] -> [....192.168.1.1][...53]
update: [....10] [ip4][..udp] [....192.168.1.2][.2714] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -154,44 +187,55 @@
update: [....44] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.136.1.1][...53]
update: [....45] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.168.1.1][...53]
update: [....46] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2723] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....48] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][...53]
update: [....50] [ip4][..udp] [....192.168.1.2][.2724] -> [...192.168.17.1][...53]
update: [....49] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][25481]
update: [.....9] [ip4][..udp] [....192.168.1.2][.2597] -> [....192.168.1.1][29440]
update: [.....5] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][49973]
idle: [....17] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.251][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....16] [ip4][..udp] [..208.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....11] [ip4][..udp] [...192.168.1.52][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][..udp] [....192.168.1.3][...53] -> [....192.168.1.2][.2712] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....8] [ip4][..udp] [..192.168.1.110][.2713] -> [....192.168.1.1][...53]
idle: [.....7] [ip4][..udp] [....192.168.1.2][.2713] -> [....192.168.1.1][...53]
idle: [....10] [ip4][..udp] [....192.168.1.2][.2714] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [....13] [ip4][..udp] [....192.168.1.2][.2715] -> [....192.168.1.1][...53]
idle: [....14] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53]
not-detected: [....41] [ip4][..tcp] [....192.168.1.2][.2721] -> [..147.234.1.253][58999] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
end: [....41] [ip4][..tcp] [....192.168.1.2][.2721] -> [..147.234.1.253][58999]
guessed: [....23] [ip4][..tcp] [....192.168.1.2][.2720] -> [..147.234.1.253][...21] [FTP_CONTROL][Unknown][Download][Unsafe]
RISK: Unsafe Protocol
end: [....23] [ip4][..tcp] [....192.168.1.2][.2720] -> [..147.234.1.253][...21]
not-detected: [.....9] [ip4][..udp] [....192.168.1.2][.2597] -> [....192.168.1.1][29440] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [.....9] [ip4][..udp] [....192.168.1.2][.2597] -> [....192.168.1.1][29440]
not-detected: [.....5] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][49973] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [.....5] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][49973]
not-detected: [....15] [ip4][..udp] [....192.168.1.1][.9587] -> [....192.168.1.2][..156] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....15] [ip4][..udp] [....192.168.1.1][.9587] -> [....192.168.1.2][..156]
update: [....47] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][.9587]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....22] [ip4][..udp] [....192.168.1.2][.2719] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [....44] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.136.1.1][...53]
update: [....45] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.168.1.1][...53]
update: [....46] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2723] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....48] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][...53]
update: [....50] [ip4][..udp] [....192.168.1.2][.2724] -> [...192.168.17.1][...53]
update: [....51] [ip4][..udp] [....192.168.1.2][.2725] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....52] [ip4][..udp] [...192.168.1.46][...53] -> [....192.168.1.2][.2726] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....49] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][25481]
update: [....21] [ip4][..udp] [....192.114.1.2][.2719] -> [....192.168.1.1][...53]
new: [....53] [ip4][..udp] [..192.168.1.202][..137] -> [..192.168.1.255][..137]
@@ -199,6 +243,7 @@
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
new: [....54] [ip4][..udp] [....192.168.1.2][.2732] -> [....192.168.1.1][...53]
detected: [....54] [ip4][..udp] [....192.168.1.2][.2732] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
idle: [....22] [ip4][..udp] [....192.168.1.2][.2719] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
@@ -206,36 +251,49 @@
update: [....47] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][.9587]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....44] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.136.1.1][...53]
update: [....45] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.168.1.1][...53]
update: [....46] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2723] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....48] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][...53]
update: [....50] [ip4][..udp] [....192.168.1.2][.2724] -> [...192.168.17.1][...53]
update: [....51] [ip4][..udp] [....192.168.1.2][.2725] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....52] [ip4][..udp] [...192.168.1.46][...53] -> [....192.168.1.2][.2726] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....49] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][25481]
update: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
new: [....55] [ip4][..udp] [....192.168.1.2][43690] -> [192.170.170.170][43690]
new: [....56] [ip4][..udp] [....192.168.1.2][.2733] -> [..192.168.115.1][...53]
detected: [....56] [ip4][..udp] [....192.168.1.2][.2733] -> [..192.168.115.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arqa]
+ RISK: Unidirectional Traffic
new: [....57] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2733]
detected: [....57] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2733] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
new: [....58] [ip4][..120] [....192.168.1.2] -> [..212.242.33.35]
new: [....59] [ip4][..udp] [....192.168.1.2][.2734] -> [....192.168.1.1][...53]
detected: [....59] [ip4][..udp] [....192.168.1.2][.2734] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
new: [....60] [ip4][..udp] [....172.168.1.2][.2734] -> [....192.168.1.1][...53]
- detected: [....60] [ip4][..udp] [....172.168.1.2][.2734] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ detected: [....60] [ip4][..udp] [....172.168.1.2][.2734] -> [....192.168.1.1][...53] [DNS][Azure][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
idle: [....44] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.136.1.1][...53]
detection-update: [....59] [ip4][..udp] [....192.168.1.2][.2734] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cyberxity.dk]
+ RISK: Unidirectional Traffic
detection-update: [....59] [ip4][..udp] [....192.168.1.2][.2734] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
new: [....61] [ip4][..udp] [....200.168.1.2][.2735] -> [....192.168.1.1][...53]
detected: [....61] [ip4][..udp] [....200.168.1.2][.2735] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-adds.arpa]
+ RISK: Unidirectional Traffic
new: [....62] [ip4][..udp] [....253.168.1.1][...53] -> [....192.168.1.2][.2735]
detected: [....62] [ip4][..udp] [....253.168.1.1][...53] -> [....192.168.1.2][.2735] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
not-detected: [....47] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][.9587] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....47] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][.9587]
idle: [....45] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.168.1.1][...53]
idle: [....46] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2723] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [....49] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][25481] [NetBIOS][Unknown][System][Acceptable][]
idle: [....49] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][25481]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
@@ -246,90 +304,117 @@
update: [....54] [ip4][..udp] [....192.168.1.2][.2732] -> [....192.168.1.1][...53]
new: [....64] [ip4][..udp] [....192.168.1.2][.2736] -> [....192.168.1.1][...53]
detected: [....64] [ip4][..udp] [....192.168.1.2][.2736] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
new: [....65] [ip4][..udp] [....192.168.1.2][.2684] -> [....192.168.1.1][...53]
detected: [....65] [ip4][..udp] [....192.168.1.2][.2684] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.dybercity.dk]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
new: [....66] [ip4][..udp] [....192.168.1.2][.2736] -> [...192.168.1.17][...53]
detected: [....66] [ip4][..udp] [....192.168.1.2][.2736] -> [...192.168.1.17][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
detection-update: [....64] [ip4][..udp] [....192.168.1.2][.2736] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
idle: [....51] [ip4][..udp] [....192.168.1.2][.2725] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [....52] [ip4][..udp] [...192.168.1.46][...53] -> [....192.168.1.2][.2726] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....55] [ip4][..udp] [....192.168.1.2][43690] -> [192.170.170.170][43690]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....53] [ip4][..udp] [..192.168.1.202][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....63] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..169]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....60] [ip4][..udp] [....172.168.1.2][.2734] -> [....192.168.1.1][...53]
update: [....54] [ip4][..udp] [....192.168.1.2][.2732] -> [....192.168.1.1][...53]
update: [....56] [ip4][..udp] [....192.168.1.2][.2733] -> [..192.168.115.1][...53]
update: [....57] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2733] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....59] [ip4][..udp] [....192.168.1.2][.2734] -> [....192.168.1.1][...53]
update: [....61] [ip4][..udp] [....200.168.1.2][.2735] -> [....192.168.1.1][...53]
update: [....62] [ip4][..udp] [....253.168.1.1][...53] -> [....192.168.1.2][.2735] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....67] [ip4][..udp] [....192.168.1.2][.2737] -> [....192.168.1.1][...53]
detected: [....67] [ip4][..udp] [....192.168.1.2][.2737] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
detection-update: [....67] [ip4][..udp] [....192.168.1.2][.2737] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
new: [....68] [ip4][..udp] [....192.168.1.2][20932] -> [..212.242.33.35][.5060]
detected: [....68] [ip4][..udp] [....192.168.1.2][20932] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....69] [ip4][..udp] [....192.168.1.2][.2738] -> [...192.168.84.1][...53]
detected: [....69] [ip4][..udp] [....192.168.1.2][.2738] -> [...192.168.84.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercitu.dk]
+ RISK: Unidirectional Traffic
new: [....70] [ip4][..udp] [....192.168.1.2][.2738] -> [....192.168.1.1][...53]
detected: [....70] [ip4][..udp] [....192.168.1.2][.2738] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
new: [....71] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53]
detected: [....71] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
new: [....72] [ip4][..udp] [....192.168.1.2][.2739] -> [....192.168.1.1][...53]
detected: [....72] [ip4][..udp] [....192.168.1.2][.2739] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
detection-update: [....72] [ip4][..udp] [....192.168.1.2][.2739] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
new: [....73] [ip4][..udp] [....192.168.1.2][.2740] -> [....192.168.1.1][...53]
detected: [....73] [ip4][..udp] [....192.168.1.2][.2740] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cyberci_s]
+ RISK: Unidirectional Traffic
detection-update: [....73] [ip4][..udp] [....192.168.1.2][.2740] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
detection-update: [....73] [ip4][..udp] [....192.168.1.2][.2740] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
new: [....74] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][.8329]
new: [....75] [ip4][..udp] [....192.168.1.2][.2741] -> [....192.168.1.1][...53]
detected: [....75] [ip4][..udp] [....192.168.1.2][.2741] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
new: [....76] [ip4][..udp] [..192.168.130.1][...53] -> [....192.168.1.2][.2741]
detected: [....76] [ip4][..udp] [..192.168.130.1][...53] -> [....192.168.1.2][.2741] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
update: [....65] [ip4][..udp] [....192.168.1.2][.2684] -> [....192.168.1.1][...53]
update: [....64] [ip4][..udp] [....192.168.1.2][.2736] -> [....192.168.1.1][...53]
update: [....66] [ip4][..udp] [....192.168.1.2][.2736] -> [...192.168.1.17][...53]
new: [....77] [ip4][..udp] [....192.168.1.2][.2742] -> [....192.168.1.1][...53]
detected: [....77] [ip4][..udp] [....192.168.1.2][.2742] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
new: [....78] [ip4][..udp] [....192.168.1.2][.2730] -> [....192.168.1.1][43690]
detection-update: [....77] [ip4][..udp] [....192.168.1.2][.2742] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
detection-update: [....77] [ip4][..udp] [....192.168.1.2][.2742] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
update: [....55] [ip4][..udp] [....192.168.1.2][43690] -> [192.170.170.170][43690]
update: [....68] [ip4][..udp] [....192.168.1.2][20932] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....53] [ip4][..udp] [..192.168.1.202][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....63] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..169]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....60] [ip4][..udp] [....172.168.1.2][.2734] -> [....192.168.1.1][...53]
update: [....71] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53]
update: [....54] [ip4][..udp] [....192.168.1.2][.2732] -> [....192.168.1.1][...53]
update: [....56] [ip4][..udp] [....192.168.1.2][.2733] -> [..192.168.115.1][...53]
update: [....57] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2733] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....59] [ip4][..udp] [....192.168.1.2][.2734] -> [....192.168.1.1][...53]
update: [....67] [ip4][..udp] [....192.168.1.2][.2737] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....69] [ip4][..udp] [....192.168.1.2][.2738] -> [...192.168.84.1][...53]
update: [....70] [ip4][..udp] [....192.168.1.2][.2738] -> [....192.168.1.1][...53]
update: [....61] [ip4][..udp] [....200.168.1.2][.2735] -> [....192.168.1.1][...53]
update: [....62] [ip4][..udp] [....253.168.1.1][...53] -> [....192.168.1.2][.2735] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
ERROR-EVENT: Unknown packet type [1/16]
new: [....79] [ip4][..udp] [....192.168.1.2][.2743] -> [....192.168.1.1][...53]
detected: [....79] [ip4][..udp] [....192.168.1.2][.2743] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
detection-update: [....79] [ip4][..udp] [....192.168.1.2][.2743] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [....58] [ip4][..120] [....192.168.1.2] -> [..212.242.33.35]
update: [....72] [ip4][..udp] [....192.168.1.2][.2739] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....73] [ip4][..udp] [....192.168.1.2][.2740] -> [....192.168.1.1][...53]
new: [....80] [ip4][..udp] [....192.168.1.2][.2744] -> [....192.168.1.1][...53]
detected: [....80] [ip4][..udp] [....192.168.1.2][.2744] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
new: [....81] [ip4][..udp] [....192.168.1.2][...88] -> [..192.168.1.255][..137]
detected: [....81] [ip4][..udp] [....192.168.1.2][...88] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
not-detected: [....55] [ip4][..udp] [....192.168.1.2][43690] -> [192.170.170.170][43690] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....55] [ip4][..udp] [....192.168.1.2][43690] -> [192.170.170.170][43690]
idle: [....53] [ip4][..udp] [..192.168.1.202][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
idle: [....54] [ip4][..udp] [....192.168.1.2][.2732] -> [....192.168.1.1][...53]
@@ -339,22 +424,29 @@
update: [....66] [ip4][..udp] [....192.168.1.2][.2736] -> [...192.168.1.17][...53]
update: [....75] [ip4][..udp] [....192.168.1.2][.2741] -> [....192.168.1.1][...53]
update: [....76] [ip4][..udp] [..192.168.130.1][...53] -> [....192.168.1.2][.2741] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....82] [ip4][..udp] [..192.168.1.170][43690] -> [170.170.170.170][43690]
new: [....83] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2745]
detected: [....83] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2745] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
new: [....84] [ip4][..udp] [....192.168.1.2][.2746] -> [....192.168.1.1][...53]
detected: [....84] [ip4][..udp] [....192.168.1.2][.2746] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.voip.brujula.net]
+ RISK: Unidirectional Traffic
new: [....85] [ip4][..240] [....192.168.1.2] -> [....192.168.1.1]
new: [....86] [ip4][..udp] [...192.168.1.34][.2746] -> [....192.168.1.1][...53]
detected: [....86] [ip4][..udp] [...192.168.1.34][.2746] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp._s?p.brvjula.net]
+ RISK: Text With Non-Printable Chars, Unidirectional Traffic
idle: [....60] [ip4][..udp] [....172.168.1.2][.2734] -> [....192.168.1.1][...53]
idle: [....57] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2733] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....56] [ip4][..udp] [....192.168.1.2][.2733] -> [..192.168.115.1][...53]
idle: [....59] [ip4][..udp] [....192.168.1.2][.2734] -> [....192.168.1.1][...53]
update: [....68] [ip4][..udp] [....192.168.1.2][20932] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....63] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..169]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....71] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53]
update: [....67] [ip4][..udp] [....192.168.1.2][.2737] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....69] [ip4][..udp] [....192.168.1.2][.2738] -> [...192.168.84.1][...53]
@@ -362,42 +454,54 @@
update: [....77] [ip4][..udp] [....192.168.1.2][.2742] -> [....192.168.1.1][...53]
update: [....61] [ip4][..udp] [....200.168.1.2][.2735] -> [....192.168.1.1][...53]
update: [....62] [ip4][..udp] [....253.168.1.1][...53] -> [....192.168.1.2][.2735] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....78] [ip4][..udp] [....192.168.1.2][.2730] -> [....192.168.1.1][43690]
new: [....87] [ip4][..udp] [....192.168.1.2][.2747] -> [.....67.168.1.1][...53]
detected: [....87] [ip4][..udp] [....192.168.1.2][.2747] -> [.....67.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
new: [....88] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2747]
detected: [....88] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2747] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
new: [....89] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.4932]
detected: [....89] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.4932] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....90] [ip4][..udp] [....192.168.1.2][.2748] -> [....192.168.1.1][...53]
detected: [....90] [ip4][..udp] [....192.168.1.2][.2748] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
new: [....91] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.5060]
detection-update: [....90] [ip4][..udp] [....192.168.1.2][.2748] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
detected: [....91] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
detection-update: [....90] [ip4][..udp] [....192.168.1.2][.2748] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
detection-update: [....90] [ip4][..udp] [....192.168.1.2][.2748] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars, Unidirectional Traffic
guessed: [....63] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..169] [NetBIOS][Unknown][System][Acceptable][]
idle: [....63] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..169]
idle: [....61] [ip4][..udp] [....200.168.1.2][.2735] -> [....192.168.1.1][...53]
idle: [....62] [ip4][..udp] [....253.168.1.1][...53] -> [....192.168.1.2][.2735] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....72] [ip4][..udp] [....192.168.1.2][.2739] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....73] [ip4][..udp] [....192.168.1.2][.2740] -> [....192.168.1.1][...53]
update: [....79] [ip4][..udp] [....192.168.1.2][.2743] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
new: [....92] [ip4][..udp] [....192.168.1.2][.2749] -> [....192.168.1.1][...53]
detected: [....92] [ip4][..udp] [....192.168.1.2][.2749] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
new: [....93] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2733]
detected: [....93] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2733] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
new: [....94] [ip4][..udp] [....192.168.1.2][.2750] -> [....192.168.1.1][...53]
detected: [....94] [ip4][..udp] [....192.168.1.2][.2750] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.voip.brujula.net]
+ RISK: Unidirectional Traffic
new: [....95] [ip4][..udp] [....192.168.1.2][10942] -> [....192.168.1.1][...53]
detected: [....95] [ip4][..udp] [....192.168.1.2][10942] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.voip.brujula.net]
+ RISK: Unidirectional Traffic
detection-update: [....94] [ip4][..udp] [....192.168.1.2][.2750] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.voip.brujula.net]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
detection-update: [....94] [ip4][..udp] [....192.168.1.2][.2750] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.vo_s]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [....81] [ip4][..udp] [....192.168.1.2][...88] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....74] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][.8329]
update: [....65] [ip4][..udp] [....192.168.1.2][.2684] -> [....192.168.1.1][...53]
@@ -405,57 +509,71 @@
update: [....66] [ip4][..udp] [....192.168.1.2][.2736] -> [...192.168.1.17][...53]
update: [....75] [ip4][..udp] [....192.168.1.2][.2741] -> [....192.168.1.1][...53]
update: [....76] [ip4][..udp] [..192.168.130.1][...53] -> [....192.168.1.2][.2741] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....80] [ip4][..udp] [....192.168.1.2][.2744] -> [....192.168.1.1][...53]
new: [....96] [ip4][..udp] [...192.168.1.18][.2751] -> [....192.168.1.1][...53]
detected: [....96] [ip4][..udp] [...192.168.1.18][.2751] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
new: [....97] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2751]
detected: [....97] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2751] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars, Unidirectional Traffic
new: [....98] [ip4][..udp] [....192.168.1.2][.2752] -> [....192.168.1.1][...53]
detected: [....98] [ip4][..udp] [....192.168.1.2][.2752] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
new: [....99] [ip4][..udp] [....192.168.1.2][.4292] -> [..200.68.37.115][.5060]
detected: [....99] [ip4][..udp] [....192.168.1.2][.4292] -> [..200.68.37.115][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...100] [ip4][..udp] [....192.168.1.2][.4901] -> [..200.68.120.81][29440]
detected: [...100] [ip4][..udp] [....192.168.1.2][.4901] -> [..200.68.120.81][29440] [SIP][Unknown][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [...101] [ip4][..udp] [....192.168.1.2][.2752] -> [....102.168.1.1][...53]
detected: [...101] [ip4][..udp] [....192.168.1.2][.2752] -> [....102.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
new: [...102] [ip4][..udp] [.....192.98.1.2][.2752] -> [.....25.168.1.1][...53]
detected: [...102] [ip4][..udp] [.....192.98.1.2][.2752] -> [.....25.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
update: [....82] [ip4][..udp] [..192.168.1.170][43690] -> [170.170.170.170][43690]
update: [....68] [ip4][..udp] [....192.168.1.2][20932] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....71] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53]
update: [....67] [ip4][..udp] [....192.168.1.2][.2737] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....69] [ip4][..udp] [....192.168.1.2][.2738] -> [...192.168.84.1][...53]
update: [....70] [ip4][..udp] [....192.168.1.2][.2738] -> [....192.168.1.1][...53]
update: [....77] [ip4][..udp] [....192.168.1.2][.2742] -> [....192.168.1.1][...53]
update: [....83] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2745] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....84] [ip4][..udp] [....192.168.1.2][.2746] -> [....192.168.1.1][...53]
update: [....86] [ip4][..udp] [...192.168.1.34][.2746] -> [....192.168.1.1][...53]
update: [....78] [ip4][..udp] [....192.168.1.2][.2730] -> [....192.168.1.1][43690]
new: [...103] [ip4][..udp] [....192.169.1.2][.5060] -> [..200.68.120.81][.5060]
detected: [...103] [ip4][..udp] [....192.169.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...104] [ip4][..udp] [....192.168.1.2][.2753] -> [....192.168.1.1][...53]
detected: [...104] [ip4][..udp] [....192.168.1.2][.2753] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.tn-addr.arpa]
+ RISK: Unidirectional Traffic
detection-update: [...104] [ip4][..udp] [....192.168.1.2][.2753] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.527.in-addr.arpa]
new: [...105] [ip4][..udp] [.....192.86.1.2][.5060] -> [..200.68.120.99][.5060]
update: [....87] [ip4][..udp] [....192.168.1.2][.2747] -> [.....67.168.1.1][...53]
update: [....88] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2747] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....90] [ip4][..udp] [....192.168.1.2][.2748] -> [....192.168.1.1][...53]
update: [....89] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.4932] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....91] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
new: [...106] [ip4][..udp] [....192.168.1.2][.2754] -> [....192.168.1.1][...53]
new: [...107] [ip4][..118] [....192.168.1.2] -> [..200.68.120.81]
detected: [...106] [ip4][..udp] [....192.168.1.2][.2754] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cyberciwy.dk]
+ RISK: Unidirectional Traffic
idle: [....65] [ip4][..udp] [....192.168.1.2][.2684] -> [....192.168.1.1][...53]
idle: [....66] [ip4][..udp] [....192.168.1.2][.2736] -> [...192.168.1.17][...53]
idle: [....64] [ip4][..udp] [....192.168.1.2][.2736] -> [....192.168.1.1][...53]
update: [....93] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2733] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....72] [ip4][..udp] [....192.168.1.2][.2739] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....73] [ip4][..udp] [....192.168.1.2][.2740] -> [....192.168.1.1][...53]
update: [....79] [ip4][..udp] [....192.168.1.2][.2743] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -464,58 +582,74 @@
update: [....95] [ip4][..udp] [....192.168.1.2][10942] -> [....192.168.1.1][...53]
new: [...108] [ip4][..udp] [.....14.168.1.2][.2754] -> [....192.168.1.1][...53]
detected: [...108] [ip4][..udp] [.....14.168.1.2][.2754] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
detection-update: [...106] [ip4][..udp] [....192.168.1.2][.2754] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
idle: [....68] [ip4][..udp] [....192.168.1.2][20932] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....67] [ip4][..udp] [....192.168.1.2][.2737] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [....69] [ip4][..udp] [....192.168.1.2][.2738] -> [...192.168.84.1][...53]
update: [....81] [ip4][..udp] [....192.168.1.2][...88] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....74] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][.8329]
update: [....75] [ip4][..udp] [....192.168.1.2][.2741] -> [....192.168.1.1][...53]
update: [....76] [ip4][..udp] [..192.168.130.1][...53] -> [....192.168.1.2][.2741] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....80] [ip4][..udp] [....192.168.1.2][.2744] -> [....192.168.1.1][...53]
new: [...109] [ip4][..udp] [....192.168.1.2][.2755] -> [....192.168.1.1][...53]
detected: [...109] [ip4][..udp] [....192.168.1.2][.2755] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
+ RISK: Unidirectional Traffic
detection-update: [...109] [ip4][..udp] [....192.168.1.2][.2755] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
idle: [....71] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53]
idle: [....70] [ip4][..udp] [....192.168.1.2][.2738] -> [....192.168.1.1][...53]
update: [....96] [ip4][..udp] [...192.168.1.18][.2751] -> [....192.168.1.1][...53]
update: [....97] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2751] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars, Unidirectional Traffic
update: [....98] [ip4][..udp] [....192.168.1.2][.2752] -> [....192.168.1.1][...53]
DAEMON-EVENT: [Processed: 241 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 63 / 109|skipped: 0|!detected: 6|guessed: 4|detection-updates: 26|updates: 178]
new: [...110] [ip4][..udp] [....192.168.1.2][.2756] -> [....192.168.1.1][...53]
detected: [...110] [ip4][..udp] [....192.168.1.2][.2756] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
detection-update: [...110] [ip4][..udp] [....192.168.1.2][.2756] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_?ip._udp.sip.cybercit?.dk]
+ RISK: Text With Non-Printable Chars, Unidirectional Traffic
detection-update: [...110] [ip4][..udp] [....192.168.1.2][.2756] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Text With Non-Printable Chars, Unidirectional Traffic
guessed: [....74] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][.8329] [NetBIOS][Unknown][System][Acceptable][]
idle: [....74] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][.8329]
idle: [....72] [ip4][..udp] [....192.168.1.2][.2739] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [....73] [ip4][..udp] [....192.168.1.2][.2740] -> [....192.168.1.1][...53]
update: [....82] [ip4][..udp] [..192.168.1.170][43690] -> [170.170.170.170][43690]
update: [....99] [ip4][..udp] [....192.168.1.2][.4292] -> [..200.68.37.115][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...105] [ip4][..udp] [.....192.86.1.2][.5060] -> [..200.68.120.99][.5060]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...100] [ip4][..udp] [....192.168.1.2][.4901] -> [..200.68.120.81][29440] [SIP][Unknown][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
update: [....87] [ip4][..udp] [....192.168.1.2][.2747] -> [.....67.168.1.1][...53]
update: [...101] [ip4][..udp] [....192.168.1.2][.2752] -> [....102.168.1.1][...53]
update: [....77] [ip4][..udp] [....192.168.1.2][.2742] -> [....192.168.1.1][...53]
update: [....83] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2745] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....84] [ip4][..udp] [....192.168.1.2][.2746] -> [....192.168.1.1][...53]
update: [....86] [ip4][..udp] [...192.168.1.34][.2746] -> [....192.168.1.1][...53]
update: [....88] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2747] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....90] [ip4][..udp] [....192.168.1.2][.2748] -> [....192.168.1.1][...53]
update: [...104] [ip4][..udp] [....192.168.1.2][.2753] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....89] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.4932] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....91] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...102] [ip4][..udp] [.....192.98.1.2][.2752] -> [.....25.168.1.1][...53]
update: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
update: [...103] [ip4][..udp] [....192.169.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....78] [ip4][..udp] [....192.168.1.2][.2730] -> [....192.168.1.1][43690]
new: [...111] [ip4][..udp] [....192.168.1.2][.2757] -> [....192.168.1.1][...53]
detected: [...111] [ip4][..udp] [....192.168.1.2][.2757] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.v.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
detection-update: [...111] [ip4][..udp] [....192.168.1.2][.2757] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet
analyse: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
@@ -529,9 +663,11 @@
[PKTLENS.....: 78,78,78,78,78,78,78,78,78,78,78,78,78,78,78,78,78,78,78,78,78,78,78,78,78,78,78,78,78,78,78,78]
[ENTROPIES...: 4.3,4.2,4.2,4.3,4.2,4.2,4.2,4.3,4.3,4.3,4.3,4.3,4.3,4.2,4.2,4.2,4.3,4.2,4.2,4.3,4.2,4.2,4.2,4.3,4.2,4.2,4.3,4.3,4.3,4.3,4.2,3.2]
idle: [....76] [ip4][..udp] [..192.168.130.1][...53] -> [....192.168.1.2][.2741] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....75] [ip4][..udp] [....192.168.1.2][.2741] -> [....192.168.1.1][...53]
update: [....58] [ip4][..120] [....192.168.1.2] -> [..212.242.33.35]
update: [....93] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2733] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....79] [ip4][..udp] [....192.168.1.2][.2743] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....92] [ip4][..udp] [....192.168.1.2][.2749] -> [....192.168.1.1][...53]
update: [....94] [ip4][..udp] [....192.168.1.2][.2750] -> [....192.168.1.1][...53]
@@ -539,26 +675,31 @@
update: [...106] [ip4][..udp] [....192.168.1.2][.2754] -> [....192.168.1.1][...53]
new: [...112] [ip4][..udp] [....192.168.1.2][.2640] -> [....192.168.1.1][...53]
detected: [...112] [ip4][..udp] [....192.168.1.2][.2640] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars, Unidirectional Traffic
new: [...113] [ip4][..udp] [....192.168.1.2][.2785] -> [....192.168.1.1][...53]
detected: [...113] [ip4][..udp] [....192.168.1.2][.2785] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._tdp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
new: [...114] [ip4][..udp] [.192.168.37.115][.2758] -> [....128.168.1.1][...53]
new: [...115] [ip4][..udp] [....192.168.1.2][.2758] -> [....192.168.1.1][...53]
detected: [...115] [ip4][..udp] [....192.168.1.2][.2758] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
detection-update: [...115] [ip4][..udp] [....192.168.1.2][.2758] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.gybercity.dk]
+ RISK: Unidirectional Traffic
idle: [....77] [ip4][..udp] [....192.168.1.2][.2742] -> [....192.168.1.1][...53]
not-detected: [....78] [ip4][..udp] [....192.168.1.2][.2730] -> [....192.168.1.1][43690] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....78] [ip4][..udp] [....192.168.1.2][.2730] -> [....192.168.1.1][43690]
update: [....81] [ip4][..udp] [....192.168.1.2][...88] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...108] [ip4][..udp] [.....14.168.1.2][.2754] -> [....192.168.1.1][...53]
update: [....80] [ip4][..udp] [....192.168.1.2][.2744] -> [....192.168.1.1][...53]
update: [....96] [ip4][..udp] [...192.168.1.18][.2751] -> [....192.168.1.1][...53]
update: [....97] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2751] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars, Unidirectional Traffic
update: [....98] [ip4][..udp] [....192.168.1.2][.2752] -> [....192.168.1.1][...53]
update: [...109] [ip4][..udp] [....192.168.1.2][.2755] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
new: [...116] [ip4][..udp] [....192.168.1.2][.2759] -> [....192.168.1.1][...53]
detected: [...116] [ip4][..udp] [....192.168.1.2][.2759] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.sn-addr.arpa]
+ RISK: Unidirectional Traffic
new: [...117] [ip4][...37] [....192.168.1.1] -> [....192.168.1.2]
idle: [....79] [ip4][..udp] [....192.168.1.2][.2743] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....85] [ip4][..240] [....192.168.1.2] -> [....192.168.1.1]
@@ -567,26 +708,33 @@
new: [...118] [ip4][..udp] [.....192.22.1.2][.2760] -> [....192.168.1.1][...53]
new: [...119] [ip4][..udp] [....192.168.1.2][.2760] -> [....192.168.1.1][...53]
detected: [...119] [ip4][..udp] [....192.168.1.2][.2760] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip.eudp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [2/16]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [3/16]
ERROR-EVENT: Unknown packet type [4/16]
detection-update: [...119] [ip4][..udp] [....192.168.1.2][.2760] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
idle: [....81] [ip4][..udp] [....192.168.1.2][...88] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
idle: [....80] [ip4][..udp] [....192.168.1.2][.2744] -> [....192.168.1.1][...53]
update: [....82] [ip4][..udp] [..192.168.1.170][43690] -> [170.170.170.170][43690]
update: [....99] [ip4][..udp] [....192.168.1.2][.4292] -> [..200.68.37.115][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...105] [ip4][..udp] [.....192.86.1.2][.5060] -> [..200.68.120.99][.5060]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...100] [ip4][..udp] [....192.168.1.2][.4901] -> [..200.68.120.81][29440] [SIP][Unknown][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
update: [....87] [ip4][..udp] [....192.168.1.2][.2747] -> [.....67.168.1.1][...53]
update: [...101] [ip4][..udp] [....192.168.1.2][.2752] -> [....102.168.1.1][...53]
update: [....93] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2733] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....83] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2745] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....84] [ip4][..udp] [....192.168.1.2][.2746] -> [....192.168.1.1][...53]
update: [....86] [ip4][..udp] [...192.168.1.34][.2746] -> [....192.168.1.1][...53]
update: [....88] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2747] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....90] [ip4][..udp] [....192.168.1.2][.2748] -> [....192.168.1.1][...53]
update: [....92] [ip4][..udp] [....192.168.1.2][.2749] -> [....192.168.1.1][...53]
update: [....94] [ip4][..udp] [....192.168.1.2][.2750] -> [....192.168.1.1][...53]
@@ -596,22 +744,28 @@
update: [...111] [ip4][..udp] [....192.168.1.2][.2757] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [....89] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.4932] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....91] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...102] [ip4][..udp] [.....192.98.1.2][.2752] -> [.....25.168.1.1][...53]
update: [...103] [ip4][..udp] [....192.169.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...120] [ip4][..udp] [....192.168.1.2][.2761] -> [....192.168.1.1][...53]
detected: [...120] [ip4][..udp] [....192.168.1.2][.2761] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
new: [...121] [ip4][..udp] [....192.168.1.2][.2762] -> [....192.168.1.1][...53]
detected: [...121] [ip4][..udp] [....192.168.1.2][.2762] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
detection-update: [...121] [ip4][..udp] [....192.168.1.2][.2762] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
detection-update: [...121] [ip4][..udp] [....192.168.1.2][.2762] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.sk]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
ERROR-EVENT: Unknown L3 protocol [2/16]
not-detected: [....82] [ip4][..udp] [..192.168.1.170][43690] -> [170.170.170.170][43690] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....82] [ip4][..udp] [..192.168.1.170][43690] -> [170.170.170.170][43690]
idle: [....83] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2745] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....86] [ip4][..udp] [...192.168.1.34][.2746] -> [....192.168.1.1][...53]
update: [...112] [ip4][..udp] [....192.168.1.2][.2640] -> [....192.168.1.1][...53]
update: [...114] [ip4][..udp] [.192.168.37.115][.2758] -> [....128.168.1.1][...53]
@@ -619,24 +773,28 @@
ERROR-EVENT: Unknown packet type [3/16]
new: [...122] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2763]
detected: [...122] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2763] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
ERROR-EVENT: Unknown packet type [4/16]
new: [...123] [ip4][..udp] [....192.168.1.2][.2764] -> [....192.168.1.1][...53]
detected: [...123] [ip4][..udp] [....192.168.1.2][.2764] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [5/16]
new: [...124] [ip4][..udp] [....192.168.1.2][43690] -> [170.170.170.170][43690]
detection-update: [...123] [ip4][..udp] [....192.168.1.2][.2764] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.s?p.cibercity.dk]
+ RISK: Text With Non-Printable Chars, Unidirectional Traffic
detection-update: [...123] [ip4][..udp] [....192.168.1.2][.2764] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars, Error Code, Unidirectional Traffic
idle: [....87] [ip4][..udp] [....192.168.1.2][.2747] -> [.....67.168.1.1][...53]
idle: [....84] [ip4][..udp] [....192.168.1.2][.2746] -> [....192.168.1.1][...53]
idle: [....88] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2747] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....90] [ip4][..udp] [....192.168.1.2][.2748] -> [....192.168.1.1][...53]
idle: [....89] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.4932] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...108] [ip4][..udp] [.....14.168.1.2][.2754] -> [....192.168.1.1][...53]
update: [....96] [ip4][..udp] [...192.168.1.18][.2751] -> [....192.168.1.1][...53]
update: [....97] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2751] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars, Unidirectional Traffic
update: [....98] [ip4][..udp] [....192.168.1.2][.2752] -> [....192.168.1.1][...53]
update: [...109] [ip4][..udp] [....192.168.1.2][.2755] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...110] [ip4][..udp] [....192.168.1.2][.2756] -> [....192.168.1.1][...53]
@@ -644,28 +802,36 @@
update: [...116] [ip4][..udp] [....192.168.1.2][.2759] -> [....192.168.1.1][...53]
new: [...125] [ip4][..udp] [..192.168.1.110][.2765] -> [....192.168.1.1][...53]
detected: [...125] [ip4][..udp] [..192.168.1.110][.2765] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
new: [...126] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2765]
detected: [...126] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2765] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
new: [...127] [ip4][..udp] [..192.168.1.172][.2766] -> [....192.168.1.1][...53]
detected: [...127] [ip4][..udp] [..192.168.1.172][.2766] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
new: [...128] [ip4][..udp] [....192.168.1.2][.2766] -> [....192.168.1.1][...53]
detected: [...128] [ip4][..udp] [....192.168.1.2][.2766] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
detection-update: [...128] [ip4][..udp] [....192.168.1.2][.2766] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybe0city.dk]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
new: [...129] [ip4][..udp] [....192.168.1.2][14798] -> [....192.168.1.1][...53]
detected: [...129] [ip4][..udp] [....192.168.1.2][14798] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
idle: [....93] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2733] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....92] [ip4][..udp] [....192.168.1.2][.2749] -> [....192.168.1.1][...53]
idle: [....95] [ip4][..udp] [....192.168.1.2][10942] -> [....192.168.1.1][...53]
idle: [....94] [ip4][..udp] [....192.168.1.2][.2750] -> [....192.168.1.1][...53]
update: [....99] [ip4][..udp] [....192.168.1.2][.4292] -> [..200.68.37.115][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...118] [ip4][..udp] [.....192.22.1.2][.2760] -> [....192.168.1.1][...53]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...105] [ip4][..udp] [.....192.86.1.2][.5060] -> [..200.68.120.99][.5060]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...100] [ip4][..udp] [....192.168.1.2][.4901] -> [..200.68.120.81][29440] [SIP][Unknown][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
update: [...101] [ip4][..udp] [....192.168.1.2][.2752] -> [....102.168.1.1][...53]
update: [...104] [ip4][..udp] [....192.168.1.2][.2753] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...106] [ip4][..udp] [....192.168.1.2][.2754] -> [....192.168.1.1][...53]
@@ -673,25 +839,31 @@
RISK: Malformed Packet
update: [...119] [ip4][..udp] [....192.168.1.2][.2760] -> [....192.168.1.1][...53]
update: [....91] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...102] [ip4][..udp] [.....192.98.1.2][.2752] -> [.....25.168.1.1][...53]
update: [...103] [ip4][..udp] [....192.169.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...130] [ip4][..udp] [....192.168.1.2][.2767] -> [....192.168.1.1][...53]
detected: [...130] [ip4][..udp] [....192.168.1.2][.2767] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
detection-update: [...130] [ip4][..udp] [....192.168.1.2][.2767] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
new: [...131] [ip4][..udp] [....192.168.1.2][.2768] -> [....192.168.1.1][...53]
detected: [...131] [ip4][..udp] [....192.168.1.2][.2768] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
new: [...132] [ip4][..udp] [....192.168.1.2][35536] -> [....192.168.1.1][...53]
detected: [...132] [ip4][..udp] [....192.168.1.2][35536] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
new: [...133] [ip4][..udp] [.....94.168.1.2][.2768] -> [....192.168.1.1][....4]
detection-update: [...131] [ip4][..udp] [....192.168.1.2][.2768] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
idle: [....99] [ip4][..udp] [....192.168.1.2][.4292] -> [..200.68.37.115][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...100] [ip4][..udp] [....192.168.1.2][.4901] -> [..200.68.120.81][29440] [SIP][Unknown][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [...101] [ip4][..udp] [....192.168.1.2][.2752] -> [....102.168.1.1][...53]
idle: [....97] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2751] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars, Unidirectional Traffic
idle: [....96] [ip4][..udp] [...192.168.1.18][.2751] -> [....192.168.1.1][...53]
idle: [....98] [ip4][..udp] [....192.168.1.2][.2752] -> [....192.168.1.1][...53]
idle: [...102] [ip4][..udp] [.....192.98.1.2][.2752] -> [.....25.168.1.1][...53]
@@ -703,34 +875,39 @@
update: [...107] [ip4][..118] [....192.168.1.2] -> [..200.68.120.81]
new: [...134] [ip4][..udp] [....192.168.1.2][.2769] -> [....192.168.1.1][...53]
detected: [...134] [ip4][..udp] [....192.168.1.2][.2769] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
new: [...135] [ip4][..udp] [....192.168.1.1][..117] -> [....192.168.1.2][.2769]
guessed: [...105] [ip4][..udp] [.....192.86.1.2][.5060] -> [..200.68.120.99][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...105] [ip4][..udp] [.....192.86.1.2][.5060] -> [..200.68.120.99][.5060]
idle: [...104] [ip4][..udp] [....192.168.1.2][.2753] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...103] [ip4][..udp] [....192.169.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...124] [ip4][..udp] [....192.168.1.2][43690] -> [170.170.170.170][43690]
update: [...122] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2763] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [...123] [ip4][..udp] [....192.168.1.2][.2764] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars, Error Code, Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
ERROR-EVENT: Unknown packet type [2/16]
new: [...136] [ip4][..127] [....192.168.1.2] -> [....192.168.1.1]
new: [...137] [ip4][..udp] [....192.168.1.2][.2770] -> [....192.168.1.1][...53]
detected: [...137] [ip4][..udp] [....192.168.1.2][.2770] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [3/16]
new: [...138] [ip4][..udp] [....192.168.1.2][..137] -> [..120.168.1.255][..137]
detected: [...138] [ip4][..udp] [....192.168.1.2][..137] -> [..120.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_doma]
ERROR-EVENT: Unknown packet type [4/16]
detection-update: [...137] [ip4][..udp] [....192.168.1.2][.2770] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
idle: [...108] [ip4][..udp] [.....14.168.1.2][.2754] -> [....192.168.1.1][...53]
idle: [...106] [ip4][..udp] [....192.168.1.2][.2754] -> [....192.168.1.1][...53]
idle: [....91] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...118] [ip4][..udp] [.....192.22.1.2][.2760] -> [....192.168.1.1][...53]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...129] [ip4][..udp] [....192.168.1.2][14798] -> [....192.168.1.1][...53]
update: [...109] [ip4][..udp] [....192.168.1.2][.2755] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...110] [ip4][..udp] [....192.168.1.2][.2756] -> [....192.168.1.1][...53]
@@ -741,14 +918,16 @@
update: [...119] [ip4][..udp] [....192.168.1.2][.2760] -> [....192.168.1.1][...53]
update: [...125] [ip4][..udp] [..192.168.1.110][.2765] -> [....192.168.1.1][...53]
update: [...126] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2765] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [...127] [ip4][..udp] [..192.168.1.172][.2766] -> [....192.168.1.1][...53]
update: [...128] [ip4][..udp] [....192.168.1.2][.2766] -> [....192.168.1.1][...53]
update: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
new: [...139] [ip4][..udp] [...192.168.1.57][.2771] -> [....192.168.1.1][...53]
detected: [...139] [ip4][..udp] [...192.168.1.57][.2771] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
+ RISK: Unidirectional Traffic
new: [...140] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2771]
detected: [...140] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2771] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
new: [...141] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.255][..138]
detected: [...141] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous][d002465]
@@ -759,15 +938,16 @@
update: [...131] [ip4][..udp] [....192.168.1.2][.2768] -> [....192.168.1.1][...53]
new: [...142] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.168.1.1][...53]
detected: [...142] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars, Unidirectional Traffic
detection-update: [...142] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars, Unidirectional Traffic
detection-update: [...142] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars, Unidirectional Traffic
new: [...143] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.184.1.1][...53]
detected: [...143] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.184.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
detection-update: [...142] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars, Unidirectional Traffic
idle: [...110] [ip4][..udp] [....192.168.1.2][.2756] -> [....192.168.1.1][...53]
update: [...124] [ip4][..udp] [....192.168.1.2][43690] -> [170.170.170.170][43690]
update: [...133] [ip4][..udp] [.....94.168.1.2][.2768] -> [....192.168.1.1][....4]
@@ -776,15 +956,16 @@
update: [...120] [ip4][..udp] [....192.168.1.2][.2761] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...121] [ip4][..udp] [....192.168.1.2][.2762] -> [....192.168.1.1][...53]
update: [...122] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2763] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [...123] [ip4][..udp] [....192.168.1.2][.2764] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars, Error Code, Unidirectional Traffic
update: [...132] [ip4][..udp] [....192.168.1.2][35536] -> [....192.168.1.1][...53]
update: [...134] [ip4][..udp] [....192.168.1.2][.2769] -> [....192.168.1.1][...53]
update: [...113] [ip4][..udp] [....192.168.1.2][.2785] -> [....192.168.1.1][...53]
update: [...135] [ip4][..udp] [....192.168.1.1][..117] -> [....192.168.1.2][.2769]
new: [...144] [ip4][..udp] [....192.168.1.2][.2773] -> [....192.168.1.1][...53]
detected: [...144] [ip4][..udp] [....192.168.1.2][.2773] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.il-addr.arpa]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
idle: [...112] [ip4][..udp] [....192.168.1.2][.2640] -> [....192.168.1.1][...53]
idle: [...111] [ip4][..udp] [....192.168.1.2][.2757] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -796,29 +977,31 @@
update: [...118] [ip4][..udp] [.....192.22.1.2][.2760] -> [....192.168.1.1][...53]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...129] [ip4][..udp] [....192.168.1.2][14798] -> [....192.168.1.1][...53]
update: [...115] [ip4][..udp] [....192.168.1.2][.2758] -> [....192.168.1.1][...53]
update: [...116] [ip4][..udp] [....192.168.1.2][.2759] -> [....192.168.1.1][...53]
update: [...119] [ip4][..udp] [....192.168.1.2][.2760] -> [....192.168.1.1][...53]
update: [...125] [ip4][..udp] [..192.168.1.110][.2765] -> [....192.168.1.1][...53]
update: [...126] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2765] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [...127] [ip4][..udp] [..192.168.1.172][.2766] -> [....192.168.1.1][...53]
update: [...128] [ip4][..udp] [....192.168.1.2][.2766] -> [....192.168.1.1][...53]
update: [...137] [ip4][..udp] [....192.168.1.2][.2770] -> [....192.168.1.1][...53]
new: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53]
detected: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
detection-update: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
detection-update: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars, Unidirectional Traffic
new: [...146] [ip4][..udp] [....192.168.9.2][.2774] -> [....192.168.1.1][...53]
detected: [...146] [ip4][..udp] [....192.168.9.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
detection-update: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars, Unidirectional Traffic
guessed: [...114] [ip4][..udp] [.192.168.37.115][.2758] -> [....128.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
idle: [...114] [ip4][..udp] [.192.168.37.115][.2758] -> [....128.168.1.1][...53]
idle: [...115] [ip4][..udp] [....192.168.1.2][.2758] -> [....192.168.1.1][...53]
update: [...141] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
@@ -827,20 +1010,24 @@
update: [...131] [ip4][..udp] [....192.168.1.2][.2768] -> [....192.168.1.1][...53]
update: [...139] [ip4][..udp] [...192.168.1.57][.2771] -> [....192.168.1.1][...53]
update: [...140] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2771] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...147] [ip4][..udp] [....192.168.1.2][.2775] -> [....192.168.1.1][...53]
detected: [...147] [ip4][..udp] [....192.168.1.2][.2775] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-aqd?.arpa]
+ RISK: Text With Non-Printable Chars, Unidirectional Traffic
detection-update: [...147] [ip4][..udp] [....192.168.1.2][.2775] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Text With Non-Printable Chars
idle: [...116] [ip4][..udp] [....192.168.1.2][.2759] -> [....192.168.1.1][...53]
update: [...142] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.168.1.1][...53]
new: [...148] [ip4][..udp] [....192.168.1.2][.2776] -> [....192.168.1.1][...53]
detected: [...148] [ip4][..udp] [....192.168.1.2][.2776] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
detection-update: [...148] [ip4][..udp] [....192.168.1.2][.2776] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars, Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
detection-update: [...148] [ip4][..udp] [....192.168.1.2][.2776] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars, Unidirectional Traffic
guessed: [...118] [ip4][..udp] [.....192.22.1.2][.2760] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
idle: [...118] [ip4][..udp] [.....192.22.1.2][.2760] -> [....192.168.1.1][...53]
idle: [...119] [ip4][..udp] [....192.168.1.2][.2760] -> [....192.168.1.1][...53]
update: [...124] [ip4][..udp] [....192.168.1.2][43690] -> [170.170.170.170][43690]
@@ -848,9 +1035,9 @@
update: [...120] [ip4][..udp] [....192.168.1.2][.2761] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...121] [ip4][..udp] [....192.168.1.2][.2762] -> [....192.168.1.1][...53]
update: [...122] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2763] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [...123] [ip4][..udp] [....192.168.1.2][.2764] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars, Error Code, Unidirectional Traffic
update: [...132] [ip4][..udp] [....192.168.1.2][35536] -> [....192.168.1.1][...53]
update: [...134] [ip4][..udp] [....192.168.1.2][.2769] -> [....192.168.1.1][...53]
update: [...143] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.184.1.1][...53]
@@ -859,9 +1046,10 @@
new: [...149] [ip4][....0] [....192.168.1.2] -> [..192.168.1.255]
new: [...150] [ip4][..udp] [...192.168.33.2][.2782] -> [....192.168.1.1][...53]
detected: [...150] [ip4][..udp] [...192.168.33.2][.2782] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
new: [...151] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2782]
detected: [...151] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2782] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
new: [...152] [ip4][..udp] [....192.168.1.6][.5060] -> [..212.242.33.35][.5060]
ERROR-EVENT: Unknown packet type [1/16]
idle: [...120] [ip4][..udp] [....192.168.1.2][.2761] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -869,46 +1057,54 @@
update: [...138] [ip4][..udp] [....192.168.1.2][..137] -> [..120.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...129] [ip4][..udp] [....192.168.1.2][14798] -> [....192.168.1.1][...53]
update: [...125] [ip4][..udp] [..192.168.1.110][.2765] -> [....192.168.1.1][...53]
update: [...126] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2765] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [...127] [ip4][..udp] [..192.168.1.172][.2766] -> [....192.168.1.1][...53]
update: [...128] [ip4][..udp] [....192.168.1.2][.2766] -> [....192.168.1.1][...53]
update: [...137] [ip4][..udp] [....192.168.1.2][.2770] -> [....192.168.1.1][...53]
update: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53]
new: [...153] [ip4][..udp] [....192.168.1.2][.2783] -> [....192.168.1.1][...53]
detected: [...153] [ip4][..udp] [....192.168.1.2][.2783] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
detection-update: [...153] [ip4][..udp] [....192.168.1.2][.2783] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
new: [...154] [ip4][..udp] [......0.168.1.2][.2783] -> [....192.168.1.1][...53]
detected: [...154] [ip4][..udp] [......0.168.1.2][.2783] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
detection-update: [...153] [ip4][..udp] [....192.168.1.2][.2783] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
not-detected: [...124] [ip4][..udp] [....192.168.1.2][43690] -> [170.170.170.170][43690] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...124] [ip4][..udp] [....192.168.1.2][43690] -> [170.170.170.170][43690]
idle: [...122] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2763] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
idle: [...123] [ip4][..udp] [....192.168.1.2][.2764] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars, Error Code, Unidirectional Traffic
update: [...141] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
update: [...130] [ip4][..udp] [....192.168.1.2][.2767] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...131] [ip4][..udp] [....192.168.1.2][.2768] -> [....192.168.1.1][...53]
update: [...139] [ip4][..udp] [...192.168.1.57][.2771] -> [....192.168.1.1][...53]
update: [...140] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2771] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...142] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.168.1.1][...53]
update: [...146] [ip4][..udp] [....192.168.9.2][.2774] -> [....192.168.1.1][...53]
update: [...147] [ip4][..udp] [....192.168.1.2][.2775] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Text With Non-Printable Chars
new: [...155] [ip4][..udp] [....192.168.1.2][.2784] -> [....192.168.1.1][...53]
detected: [...155] [ip4][..udp] [....192.168.1.2][.2784] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
new: [...156] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.5.2][.2784]
detected: [...156] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.5.2][.2784] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.aspa]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
idle: [...129] [ip4][..udp] [....192.168.1.2][14798] -> [....192.168.1.1][...53]
idle: [...126] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2765] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
idle: [...125] [ip4][..udp] [..192.168.1.110][.2765] -> [....192.168.1.1][...53]
idle: [...128] [ip4][..udp] [....192.168.1.2][.2766] -> [....192.168.1.1][...53]
idle: [...127] [ip4][..udp] [..192.168.1.172][.2766] -> [....192.168.1.1][...53]
@@ -923,36 +1119,48 @@
new: [...157] [ip4][...19] [....192.168.1.2] -> [....192.168.1.1]
new: [...158] [ip4][..udp] [....200.168.1.2][.2785] -> [....192.168.1.1][...53]
detected: [...158] [ip4][..udp] [....200.168.1.2][.2785] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
new: [...159] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][35721]
new: [...160] [ip4][..udp] [....192.168.1.2][.2785] -> [....192.168.1.1][...53]
detected: [...160] [ip4][..udp] [....192.168.1.2][.2785] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybevcity.dk]
+ RISK: Unidirectional Traffic
not-detected: [....58] [ip4][..120] [....192.168.1.2] -> [..212.242.33.35] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....58] [ip4][..120] [....192.168.1.2] -> [..212.242.33.35]
idle: [...130] [ip4][..udp] [....192.168.1.2][.2767] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...138] [ip4][..udp] [....192.168.1.2][..137] -> [..120.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...152] [ip4][..udp] [....192.168.1.6][.5060] -> [..212.242.33.35][.5060]
update: [...137] [ip4][..udp] [....192.168.1.2][.2770] -> [....192.168.1.1][...53]
update: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53]
update: [...150] [ip4][..udp] [...192.168.33.2][.2782] -> [....192.168.1.1][...53]
update: [...151] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2782] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...161] [ip4][..udp] [....192.168.1.2][.2786] -> [....192.168.1.3][...53]
detected: [...161] [ip4][..udp] [....192.168.1.2][.2786] -> [....192.168.1.3][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-ad?r.arpa]
+ RISK: Text With Non-Printable Chars, Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
new: [...162] [ip4][..udp] [..212.242.33.35][.9587] -> [....192.168.1.2][..196]
new: [...163] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.3.1][...53]
detected: [...163] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.3.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
new: [...164] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.1.1][...53]
detected: [...164] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
detection-update: [...164] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.?ip.kybermity.dk]
+ RISK: Text With Non-Printable Chars, Unidirectional Traffic
detection-update: [...164] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Text With Non-Printable Chars, Unidirectional Traffic
not-detected: [...133] [ip4][..udp] [.....94.168.1.2][.2768] -> [....192.168.1.1][....4] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...133] [ip4][..udp] [.....94.168.1.2][.2768] -> [....192.168.1.1][....4]
idle: [...132] [ip4][..udp] [....192.168.1.2][35536] -> [....192.168.1.1][...53]
idle: [...131] [ip4][..udp] [....192.168.1.2][.2768] -> [....192.168.1.1][...53]
idle: [...134] [ip4][..udp] [....192.168.1.2][.2769] -> [....192.168.1.1][...53]
not-detected: [...135] [ip4][..udp] [....192.168.1.1][..117] -> [....192.168.1.2][.2769] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...135] [ip4][..udp] [....192.168.1.1][..117] -> [....192.168.1.2][.2769]
update: [...136] [ip4][..127] [....192.168.1.2] -> [....192.168.1.1]
update: [...154] [ip4][..udp] [......0.168.1.2][.2783] -> [....192.168.1.1][...53]
@@ -960,6 +1168,7 @@
update: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
new: [...165] [ip4][..udp] [....192.168.1.2][.2788] -> [....192.168.1.1][...53]
detected: [...165] [ip4][..udp] [....192.168.1.2][.2788] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
new: [...166] [ip4][....0] [....192.168.1.1] -> [....192.168.1.2]
analyse: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
min| max| avg| stddev| variance| entropy
@@ -975,44 +1184,54 @@
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
new: [...167] [ip4][..udp] [....192.168.1.2][.2789] -> [....192.168.1.1][...53]
detected: [...167] [ip4][..udp] [....192.168.1.2][.2789] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
detection-update: [...167] [ip4][..udp] [....192.168.1.2][.2789] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
detection-update: [...167] [ip4][..udp] [....192.168.1.2][.2789] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
detection-update: [...167] [ip4][..udp] [....192.168.1.2][.2789] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [...141] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
update: [...139] [ip4][..udp] [...192.168.1.57][.2771] -> [....192.168.1.1][...53]
update: [...140] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2771] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...142] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.168.1.1][...53]
update: [...146] [ip4][..udp] [....192.168.9.2][.2774] -> [....192.168.1.1][...53]
update: [...147] [ip4][..udp] [....192.168.1.2][.2775] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Text With Non-Printable Chars
update: [...155] [ip4][..udp] [....192.168.1.2][.2784] -> [....192.168.1.1][...53]
update: [...156] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.5.2][.2784] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...168] [ip4][..udp] [....192.168.1.2][.2790] -> [....192.168.1.1][...53]
detected: [...168] [ip4][..udp] [....192.168.1.2][.2790] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
new: [...169] [ip4][..udp] [..212.242.33.35][.5060] -> [...192.37.115.0][.5060]
detected: [...169] [ip4][..udp] [..212.242.33.35][.5060] -> [...192.37.115.0][.5060] [SIP][Unknown][VoIP][Acceptable]
new: [...170] [ip4][..udp] [...192.168.79.2][.2791] -> [....192.168.1.1][...53]
detected: [...170] [ip4][..udp] [...192.168.79.2][.2791] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
new: [...171] [ip4][..udp] [...192.168.1.53][.2791] -> [....192.168.1.1][...53]
detected: [...171] [ip4][..udp] [...192.168.1.53][.2791] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
new: [...172] [ip4][..udp] [....192.168.1.2][..137] -> [..192.194.1.255][..137]
detected: [...172] [ip4][..udp] [....192.168.1.2][..137] -> [..192.194.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
new: [...173] [ip4][..udp] [170.170.170.170][43690] -> [170.170.170.170][43690]
new: [...174] [ip4][..udp] [....192.168.1.2][.2791] -> [....192.168.1.1][...53]
detected: [...174] [ip4][..udp] [....192.168.1.2][.2791] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
idle: [...138] [ip4][..udp] [....192.168.1.2][..137] -> [..120.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
idle: [...141] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
idle: [...137] [ip4][..udp] [....192.168.1.2][.2770] -> [....192.168.1.1][...53]
idle: [...140] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2771] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...139] [ip4][..udp] [...192.168.1.57][.2771] -> [....192.168.1.1][...53]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...152] [ip4][..udp] [....192.168.1.6][.5060] -> [..212.242.33.35][.5060]
update: [...143] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.184.1.1][...53]
update: [...144] [ip4][..udp] [....192.168.1.2][.2773] -> [....192.168.1.1][...53]
@@ -1020,17 +1239,19 @@
update: [...148] [ip4][..udp] [....192.168.1.2][.2776] -> [....192.168.1.1][...53]
update: [...150] [ip4][..udp] [...192.168.33.2][.2782] -> [....192.168.1.1][...53]
update: [...151] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2782] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...160] [ip4][..udp] [....192.168.1.2][.2785] -> [....192.168.1.1][...53]
update: [...158] [ip4][..udp] [....200.168.1.2][.2785] -> [....192.168.1.1][...53]
update: [...159] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][35721]
new: [...175] [ip4][..udp] [....192.168.1.2][.2791] -> [...192.168.67.1][...53]
detected: [...175] [ip4][..udp] [....192.168.1.2][.2791] -> [...192.168.67.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
new: [...176] [ip4][..udp] [....192.168.1.2][.2792] -> [....192.168.1.1][...53]
detected: [...176] [ip4][..udp] [....192.168.1.2][.2792] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
new: [...177] [ip4][..udp] [....192.168.1.1][...53] -> [....240.168.1.2][.2792]
detected: [...177] [ip4][..udp] [....192.168.1.1][...53] -> [....240.168.1.2][.2792] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-a?dr.arpa]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
update: [...117] [ip4][...37] [....192.168.1.1] -> [....192.168.1.2]
update: [...162] [ip4][..udp] [..212.242.33.35][.9587] -> [....192.168.1.2][..196]
@@ -1046,17 +1267,21 @@
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...173] [ip4][..udp] [170.170.170.170][43690] -> [170.170.170.170][43690]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...152] [ip4][..udp] [....192.168.1.6][.5060] -> [..212.242.33.35][.5060]
update: [...154] [ip4][..udp] [......0.168.1.2][.2783] -> [....192.168.1.1][...53]
update: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53]
update: [...147] [ip4][..udp] [....192.168.1.2][.2775] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Text With Non-Printable Chars
update: [...148] [ip4][..udp] [....192.168.1.2][.2776] -> [....192.168.1.1][...53]
update: [...172] [ip4][..udp] [....192.168.1.2][..137] -> [..192.194.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...150] [ip4][..udp] [...192.168.33.2][.2782] -> [....192.168.1.1][...53]
update: [...151] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2782] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...153] [ip4][..udp] [....192.168.1.2][.2783] -> [....192.168.1.1][...53]
update: [...155] [ip4][..udp] [....192.168.1.2][.2784] -> [....192.168.1.1][...53]
update: [...156] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.5.2][.2784] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...160] [ip4][..udp] [....192.168.1.2][.2785] -> [....192.168.1.1][...53]
update: [...165] [ip4][..udp] [....192.168.1.2][.2788] -> [....192.168.1.1][...53]
update: [...167] [ip4][..udp] [....192.168.1.2][.2789] -> [....192.168.1.1][...53]
@@ -1068,14 +1293,18 @@
update: [...159] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][35721]
new: [...178] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.112][..137]
detected: [...178] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.112][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
+ RISK: Unidirectional Traffic
new: [...179] [ip4][..udp] [....192.136.1.2][..137] -> [..192.168.1.255][..137]
detected: [...179] [ip4][..udp] [....192.136.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][5ci_dombin]
guessed: [...152] [ip4][..udp] [....192.168.1.6][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...152] [ip4][..udp] [....192.168.1.6][.5060] -> [..212.242.33.35][.5060]
idle: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53]
idle: [...147] [ip4][..udp] [....192.168.1.2][.2775] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Text With Non-Printable Chars
idle: [...148] [ip4][..udp] [....192.168.1.2][.2776] -> [....192.168.1.1][...53]
idle: [...151] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2782] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...150] [ip4][..udp] [...192.168.33.2][.2782] -> [....192.168.1.1][...53]
update: [...169] [ip4][..udp] [..212.242.33.35][.5060] -> [...192.37.115.0][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [...149] [ip4][....0] [....192.168.1.2] -> [..192.168.1.255]
@@ -1083,11 +1312,13 @@
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...173] [ip4][..udp] [170.170.170.170][43690] -> [170.170.170.170][43690]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...154] [ip4][..udp] [......0.168.1.2][.2783] -> [....192.168.1.1][...53]
update: [...172] [ip4][..udp] [....192.168.1.2][..137] -> [..192.194.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...153] [ip4][..udp] [....192.168.1.2][.2783] -> [....192.168.1.1][...53]
update: [...155] [ip4][..udp] [....192.168.1.2][.2784] -> [....192.168.1.1][...53]
update: [...156] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.5.2][.2784] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...160] [ip4][..udp] [....192.168.1.2][.2785] -> [....192.168.1.1][...53]
update: [...161] [ip4][..udp] [....192.168.1.2][.2786] -> [....192.168.1.3][...53]
update: [...163] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.3.1][...53]
@@ -1102,17 +1333,20 @@
update: [...176] [ip4][..udp] [....192.168.1.2][.2792] -> [....192.168.1.1][...53]
update: [...158] [ip4][..udp] [....200.168.1.2][.2785] -> [....192.168.1.1][...53]
update: [...177] [ip4][..udp] [....192.168.1.1][...53] -> [....240.168.1.2][.2792] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars
update: [...159] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][35721]
update: [...107] [ip4][..118] [....192.168.1.2] -> [..200.68.120.81]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
not-detected: [...162] [ip4][..udp] [..212.242.33.35][.9587] -> [....192.168.1.2][..196] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...162] [ip4][..udp] [..212.242.33.35][.9587] -> [....192.168.1.2][..196]
not-detected: [....85] [ip4][..240] [....192.168.1.2] -> [....192.168.1.1] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....85] [ip4][..240] [....192.168.1.2] -> [....192.168.1.1]
idle: [...154] [ip4][..udp] [......0.168.1.2][.2783] -> [....192.168.1.1][...53]
idle: [...153] [ip4][..udp] [....192.168.1.2][.2783] -> [....192.168.1.1][...53]
idle: [...156] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.5.2][.2784] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...155] [ip4][..udp] [....192.168.1.2][.2784] -> [....192.168.1.1][...53]
idle: [...160] [ip4][..udp] [....192.168.1.2][.2785] -> [....192.168.1.1][...53]
idle: [...161] [ip4][..udp] [....192.168.1.2][.2786] -> [....192.168.1.3][...53]
@@ -1127,8 +1361,10 @@
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...179] [ip4][..udp] [....192.136.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...178] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.112][..137] [NetBIOS][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
update: [...173] [ip4][..udp] [170.170.170.170][43690] -> [170.170.170.170][43690]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...172] [ip4][..udp] [....192.168.1.2][..137] -> [..192.194.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...164] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.1.1][...53]
update: [...165] [ip4][..udp] [....192.168.1.2][.2788] -> [....192.168.1.1][...53]
@@ -1140,7 +1376,7 @@
update: [...171] [ip4][..udp] [...192.168.1.53][.2791] -> [....192.168.1.1][...53]
update: [...176] [ip4][..udp] [....192.168.1.2][.2792] -> [....192.168.1.1][...53]
update: [...177] [ip4][..udp] [....192.168.1.1][...53] -> [....240.168.1.2][.2792] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars
update: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
new: [...180] [ip4][..udp] [...192.168.1.41][..138] -> [..192.168.1.255][..138]
detected: [...180] [ip4][..udp] [...192.168.1.41][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous][lab111]
@@ -1160,6 +1396,7 @@
update: [...117] [ip4][...37] [....192.168.1.1] -> [....192.168.1.2]
new: [...185] [ip4][..udp] [...192.168.1.41][..137] -> [.192.168.37.115][..137]
detected: [...185] [ip4][..udp] [...192.168.1.41][..137] -> [.192.168.37.115][..137] [NetBIOS][Unknown][System][Acceptable][workgroup]
+ RISK: Unidirectional Traffic
idle: [...169] [ip4][..udp] [..212.242.33.35][.5060] -> [...192.37.115.0][.5060] [SIP][Unknown][VoIP][Acceptable]
idle: [...168] [ip4][..udp] [....192.168.1.2][.2790] -> [....192.168.1.1][...53]
idle: [...171] [ip4][..udp] [...192.168.1.53][.2791] -> [....192.168.1.1][...53]
@@ -1168,6 +1405,7 @@
new: [...187] [ip4][..udp] [....192.168.1.2][..137] -> [..200.168.1.255][..137]
detected: [...187] [ip4][..udp] [....192.168.1.2][..137] -> [..200.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
not-detected: [...173] [ip4][..udp] [170.170.170.170][43690] -> [170.170.170.170][43690] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...173] [ip4][..udp] [170.170.170.170][43690] -> [170.170.170.170][43690]
idle: [...172] [ip4][..udp] [....192.168.1.2][..137] -> [..192.194.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
idle: [...175] [ip4][..udp] [....192.168.1.2][.2791] -> [...192.168.67.1][...53]
@@ -1175,47 +1413,61 @@
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...179] [ip4][..udp] [....192.136.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...178] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.112][..137] [NetBIOS][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...176] [ip4][..udp] [....192.168.1.2][.2792] -> [....192.168.1.1][...53]
update: [...177] [ip4][..udp] [....192.168.1.1][...53] -> [....240.168.1.2][.2792] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars
new: [...188] [ip4][..udp] [....192.168.1.2][...68] -> [....192.168.1.1][...67]
detected: [...188] [ip4][..udp] [....192.168.1.2][...68] -> [....192.168.1.1][...67] [DHCP][Unknown][Network][Acceptable][d002465]
+ RISK: Unidirectional Traffic
new: [...189] [ip4][..udp] [...192.168.1.41][..138] -> [..192.168.1.255][..394]
idle: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...176] [ip4][..udp] [....192.168.1.2][.2792] -> [....192.168.1.1][...53]
idle: [...177] [ip4][..udp] [....192.168.1.1][...53] -> [....240.168.1.2][.2792] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars
not-detected: [...107] [ip4][..118] [....192.168.1.2] -> [..200.68.120.81] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...107] [ip4][..118] [....192.168.1.2] -> [..200.68.120.81]
update: [...183] [ip4][..udp] [...192.168.1.41][..137] -> [..107.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...184] [ip4][..udp] [.....115.0.1.41][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...181] [ip4][..udp] [.192.184.189.41][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...182] [ip4][..udp] [...192.168.1.41][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...185] [ip4][..udp] [...192.168.1.41][..137] -> [.192.168.37.115][..137] [NetBIOS][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
update: [...180] [ip4][..udp] [...192.168.1.41][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...179] [ip4][..udp] [....192.136.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...178] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.112][..137] [NetBIOS][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
update: [...187] [ip4][..udp] [....192.168.1.2][..137] -> [..200.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...186] [ip4][..udp] [....192.168.1.2][43690] -> [192.168.170.170][43690]
DAEMON-EVENT: [Processed: 409 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 40 / 189|skipped: 0|!detected: 16|guessed: 10|detection-updates: 55|updates: 489]
new: [...190] [ip4][..udp] [....192.168.1.2][.2793] -> [....192.168.1.1][...53]
detected: [...190] [ip4][..udp] [....192.168.1.2][.2793] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][re-.sippstar.com]
+ RISK: Unidirectional Traffic
detection-update: [...190] [ip4][..udp] [....192.168.1.2][.2793] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][reg.sip?star.com]
+ RISK: Text With Non-Printable Chars, Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
detection-update: [...190] [ip4][..udp] [....192.168.1.2][.2793] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][reg.sippstar.com]
+ RISK: Text With Non-Printable Chars
new: [...191] [ip4][..udp] [....192.168.1.2][.2794] -> [..192.168.108.1][...53]
detected: [...191] [ip4][..udp] [....192.168.1.2][.2794] -> [..192.168.108.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
+ RISK: Unidirectional Traffic
idle: [...178] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.112][..137] [NetBIOS][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...179] [ip4][..udp] [....192.136.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...149] [ip4][....0] [....192.168.1.2] -> [..192.168.1.255]
update: [...188] [ip4][..udp] [....192.168.1.2][...68] -> [....192.168.1.1][...67] [DHCP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...183] [ip4][..udp] [...192.168.1.41][..137] -> [..107.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...184] [ip4][..udp] [.....115.0.1.41][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...185] [ip4][..udp] [...192.168.1.41][..137] -> [.192.168.37.115][..137] [NetBIOS][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
update: [...181] [ip4][..udp] [.192.184.189.41][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...182] [ip4][..udp] [...192.168.1.41][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...180] [ip4][..udp] [...192.168.1.41][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
@@ -1223,33 +1475,39 @@
update: [...189] [ip4][..udp] [...192.168.1.41][..138] -> [..192.168.1.255][..394]
new: [...192] [ip4][..udp] [....192.168.1.2][.2795] -> [....192.168.1.1][...53]
detected: [...192] [ip4][..udp] [....192.168.1.2][.2795] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
+ RISK: Unidirectional Traffic
new: [...193] [ip4][..udp] [....192.168.1.2][.2794] -> [....192.168.1.1][...53]
detected: [...193] [ip4][..udp] [....192.168.1.2][.2794] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
detection-update: [...192] [ip4][..udp] [....192.168.1.2][.2795] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
detection-update: [...193] [ip4][..udp] [....192.168.1.2][.2794] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
new: [...194] [ip4][..udp] [....192.168.1.2][.2796] -> [....192.168.1.1][...53]
detected: [...194] [ip4][..udp] [....192.168.1.2][.2796] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.ak]
+ RISK: Unidirectional Traffic
detection-update: [...194] [ip4][..udp] [....192.168.1.2][.2796] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars, Unidirectional Traffic
new: [...195] [ip4][..udp] [192.168.170.170][43690] -> [170.170.170.170][43690]
detection-update: [...194] [ip4][..udp] [....192.168.1.2][.2796] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars, Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...187] [ip4][..udp] [....192.168.1.2][..137] -> [..200.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...186] [ip4][..udp] [....192.168.1.2][43690] -> [192.168.170.170][43690]
new: [...196] [ip4][..udp] [....192.168.1.2][.2796] -> [..192.168.1.129][...53]
detected: [...196] [ip4][..udp] [....192.168.1.2][.2796] -> [..192.168.1.129][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
new: [...197] [ip4][..udp] [....192.168.1.2][.2797] -> [....192.168.1.1][...53]
detected: [...197] [ip4][..udp] [....192.168.1.2][.2797] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arp_]
+ RISK: Unidirectional Traffic
detection-update: [...197] [ip4][..udp] [....192.168.1.2][.2797] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
new: [...198] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060]
detected: [...198] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
new: [...199] [ip4][..udp] [....192.168.1.2][.2798] -> [....192.168.1.1][...53]
detected: [...199] [ip4][..udp] [....192.168.1.2][.2798] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
update: [...166] [ip4][....0] [....192.168.1.1] -> [....192.168.1.2]
update: [...157] [ip4][...19] [....192.168.1.2] -> [....192.168.1.1]
update: [...136] [ip4][..127] [....192.168.1.2] -> [....192.168.1.1]
@@ -1257,36 +1515,47 @@
ERROR-EVENT: Unknown packet type [2/16]
new: [...200] [ip4][..udp] [....192.168.1.2][.2799] -> [....192.168.1.1][...53]
detected: [...200] [ip4][..udp] [....192.168.1.2][.2799] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
new: [...201] [ip4][..udp] [....192.168.1.1][...53] -> [..192.168.119.2][.2799]
detected: [...201] [ip4][..udp] [....192.168.1.1][...53] -> [..192.168.119.2][.2799] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
new: [...202] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...53]
detected: [...202] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_s?p._udp.sip.cybercity.dk]
+ RISK: Text With Non-Printable Chars, Unidirectional Traffic
detection-update: [...202] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Text With Non-Printable Chars, Unidirectional Traffic
new: [...203] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...21]
ERROR-EVENT: Unknown packet type [1/16]
update: [...117] [ip4][...37] [....192.168.1.1] -> [....192.168.1.2]
update: [...188] [ip4][..udp] [....192.168.1.2][...68] -> [....192.168.1.1][...67] [DHCP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...183] [ip4][..udp] [...192.168.1.41][..137] -> [..107.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...184] [ip4][..udp] [.....115.0.1.41][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...185] [ip4][..udp] [...192.168.1.41][..137] -> [.192.168.37.115][..137] [NetBIOS][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
update: [...181] [ip4][..udp] [.192.184.189.41][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...182] [ip4][..udp] [...192.168.1.41][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...180] [ip4][..udp] [...192.168.1.41][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
update: [...189] [ip4][..udp] [...192.168.1.41][..138] -> [..192.168.1.255][..394]
update: [...190] [ip4][..udp] [....192.168.1.2][.2793] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Text With Non-Printable Chars
update: [...191] [ip4][..udp] [....192.168.1.2][.2794] -> [..192.168.108.1][...53]
new: [...204] [ip4][..udp] [....192.168.1.2][.2801] -> [....192.168.1.1][...53]
detected: [...204] [ip4][..udp] [....192.168.1.2][.2801] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
detection-update: [...204] [ip4][..udp] [....192.168.1.2][.2801] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars
new: [...205] [ip4][....0] [....192.168.1.2] -> [..212.242.33.35]
new: [...206] [ip4][..udp] [....192.168.1.2][.2568] -> [....192.168.1.1][...53]
detected: [...206] [ip4][..udp] [....192.168.1.2][.2568] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
new: [...207] [ip4][..udp] [....192.168.1.2][.2802] -> [....192.168.1.1][...53]
detected: [...207] [ip4][..udp] [....192.168.1.2][.2802] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
new: [...208] [ip4][..udp] [....192.168.1.2][18162] -> [....192.168.1.1][...53]
detected: [...208] [ip4][..udp] [....192.168.1.2][18162] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cyhercity.dk]
+ RISK: Unidirectional Traffic
update: [...195] [ip4][..udp] [192.168.170.170][43690] -> [170.170.170.170][43690]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...187] [ip4][..udp] [....192.168.1.2][..137] -> [..200.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
@@ -1297,52 +1566,70 @@
update: [...186] [ip4][..udp] [....192.168.1.2][43690] -> [192.168.170.170][43690]
new: [...209] [ip4][..udp] [....192.168.1.2][.2803] -> [....192.168.1.1][...53]
detected: [...209] [ip4][..udp] [....192.168.1.2][.2803] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
detection-update: [...209] [ip4][..udp] [....192.168.1.2][.2803] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
new: [...210] [ip4][..udp] [....192.168.1.2][.2804] -> [....192.168.1.1][...53]
detected: [...210] [ip4][..udp] [....192.168.1.2][.2804] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown L3 protocol [1/16]
detection-update: [...210] [ip4][..udp] [....192.168.1.2][.2804] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cyberc?ty.dk]
+ RISK: Text With Non-Printable Chars, Unidirectional Traffic
idle: [...183] [ip4][..udp] [...192.168.1.41][..137] -> [..107.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
idle: [...184] [ip4][..udp] [.....115.0.1.41][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
idle: [...181] [ip4][..udp] [.192.184.189.41][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
idle: [...180] [ip4][..udp] [...192.168.1.41][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
update: [...198] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...197] [ip4][..udp] [....192.168.1.2][.2797] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...199] [ip4][..udp] [....192.168.1.2][.2798] -> [....192.168.1.1][...53]
detection-update: [...210] [ip4][..udp] [....192.168.1.2][.2804] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Text With Non-Printable Chars, Unidirectional Traffic
ERROR-EVENT: Unknown packet type [2/16]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [3/16]
idle: [...185] [ip4][..udp] [...192.168.1.41][..137] -> [.192.168.37.115][..137] [NetBIOS][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
new: [...211] [ip4][..udp] [....192.168.1.2][.2805] -> [....192.168.1.1][...51]
new: [...212] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2805]
detected: [...212] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2805] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
new: [...213] [ip4][..udp] [....192.168.1.2][.2806] -> [....192.168.1.1][...53]
detected: [...213] [ip4][..udp] [....192.168.1.2][.2806] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sim._udp.sip.c_ber_itm.dk]
+ RISK: Unidirectional Traffic
detection-update: [...213] [ip4][..udp] [....192.168.1.2][.2806] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.c4bercity.dk]
+ RISK: Unidirectional Traffic
detection-update: [...213] [ip4][..udp] [....192.168.1.2][.2806] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
detection-update: [...213] [ip4][..udp] [....192.168.1.2][.2806] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cxbercity.dk]
+ RISK: Unidirectional Traffic
detection-update: [...213] [ip4][..udp] [....192.168.1.2][.2806] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.qk]
+ RISK: Unidirectional Traffic
idle: [...182] [ip4][..udp] [...192.168.1.41][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
idle: [...187] [ip4][..udp] [....192.168.1.2][..137] -> [..200.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
not-detected: [...186] [ip4][..udp] [....192.168.1.2][43690] -> [192.168.170.170][43690] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...186] [ip4][..udp] [....192.168.1.2][43690] -> [192.168.170.170][43690]
update: [...188] [ip4][..udp] [....192.168.1.2][...68] -> [....192.168.1.1][...67] [DHCP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...189] [ip4][..udp] [...192.168.1.41][..138] -> [..192.168.1.255][..394]
update: [...203] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...21]
update: [...190] [ip4][..udp] [....192.168.1.2][.2793] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Text With Non-Printable Chars
update: [...191] [ip4][..udp] [....192.168.1.2][.2794] -> [..192.168.108.1][...53]
update: [...200] [ip4][..udp] [....192.168.1.2][.2799] -> [....192.168.1.1][...53]
update: [...201] [ip4][..udp] [....192.168.1.1][...53] -> [..192.168.119.2][.2799] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...202] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...53]
ERROR-EVENT: Unknown packet type [1/16]
new: [...214] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2807]
detected: [...214] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2807] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
new: [...215] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][38709]
new: [...216] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][...53]
detected: [...216] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
detection-update: [...216] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
update: [...208] [ip4][..udp] [....192.168.1.2][18162] -> [....192.168.1.1][...53]
update: [...195] [ip4][..udp] [192.168.170.170][43690] -> [170.170.170.170][43690]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
@@ -1352,56 +1639,71 @@
update: [...194] [ip4][..udp] [....192.168.1.2][.2796] -> [....192.168.1.1][...53]
update: [...196] [ip4][..udp] [....192.168.1.2][.2796] -> [..192.168.1.129][...53]
update: [...204] [ip4][..udp] [....192.168.1.2][.2801] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars
update: [...207] [ip4][..udp] [....192.168.1.2][.2802] -> [....192.168.1.1][...53]
ERROR-EVENT: Unknown packet type [2/16]
new: [...217] [ip4][..udp] [....192.168.1.2][19192] -> [....192.168.1.1][...53]
detected: [...217] [ip4][..udp] [....192.168.1.2][19192] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
new: [...218] [ip4][..udp] [....192.168.1.2][.2809] -> [....192.168.1.1][...53]
detected: [...218] [ip4][..udp] [....192.168.1.2][.2809] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
detection-update: [...218] [ip4][..udp] [....192.168.1.2][.2809] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
new: [...219] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][17860]
new: [...220] [ip4][..udp] [....192.170.1.2][.2810] -> [....192.168.1.1][...53]
detected: [...220] [ip4][..udp] [....192.170.1.2][.2810] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
new: [...221] [ip4][..udp] [....192.168.1.2][.2810] -> [....192.168.1.1][...53]
detected: [...221] [ip4][..udp] [....192.168.1.2][.2810] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udq.sip.mybercity.dk]
+ RISK: Unidirectional Traffic
detection-update: [...221] [ip4][..udp] [....192.168.1.2][.2810] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
detection-update: [...221] [ip4][..udp] [....192.168.1.2][.2810] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.nybercity.dk]
+ RISK: Unidirectional Traffic
new: [...222] [ip4][..udp] [....128.168.1.2][.2810] -> [....192.168.1.1][...53]
not-detected: [...136] [ip4][..127] [....192.168.1.2] -> [....192.168.1.1] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...136] [ip4][..127] [....192.168.1.2] -> [....192.168.1.1]
idle: [...188] [ip4][..udp] [....192.168.1.2][...68] -> [....192.168.1.1][...67] [DHCP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [...189] [ip4][..udp] [...192.168.1.41][..138] -> [..192.168.1.255][..394] [NetBIOS][Unknown][System][Acceptable][]
idle: [...189] [ip4][..udp] [...192.168.1.41][..138] -> [..192.168.1.255][..394]
update: [...198] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...197] [ip4][..udp] [....192.168.1.2][.2797] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...199] [ip4][..udp] [....192.168.1.2][.2798] -> [....192.168.1.1][...53]
update: [...209] [ip4][..udp] [....192.168.1.2][.2803] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...210] [ip4][..udp] [....192.168.1.2][.2804] -> [....192.168.1.1][...53]
new: [...223] [ip4][..udp] [....192.168.1.2][.2811] -> [....192.168.1.1][...53]
detected: [...223] [ip4][..udp] [....192.168.1.2][.2811] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
new: [...224] [ip4][..udp] [..192.168.233.1][...53] -> [....192.168.1.2][.2811]
detected: [...224] [ip4][..udp] [..192.168.233.1][...53] -> [....192.168.1.2][.2811] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
ERROR-EVENT: Unknown packet type [2/16]
new: [...225] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..905]
update: [...149] [ip4][....0] [....192.168.1.2] -> [..192.168.1.255]
update: [...203] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...21]
update: [...190] [ip4][..udp] [....192.168.1.2][.2793] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Text With Non-Printable Chars
update: [...191] [ip4][..udp] [....192.168.1.2][.2794] -> [..192.168.108.1][...53]
update: [...200] [ip4][..udp] [....192.168.1.2][.2799] -> [....192.168.1.1][...53]
update: [...201] [ip4][..udp] [....192.168.1.1][...53] -> [..192.168.119.2][.2799] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...202] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...53]
update: [...211] [ip4][..udp] [....192.168.1.2][.2805] -> [....192.168.1.1][...51]
update: [...212] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2805] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...213] [ip4][..udp] [....192.168.1.2][.2806] -> [....192.168.1.1][...53]
new: [...226] [ip4][..udp] [....192.168.1.2][.2812] -> [....192.168.1.1][...53]
detected: [...226] [ip4][..udp] [....192.168.1.2][.2812] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cyaercity.dk]
+ RISK: Unidirectional Traffic
detection-update: [...226] [ip4][..udp] [....192.168.1.2][.2812] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
idle: [...190] [ip4][..udp] [....192.168.1.2][.2793] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Text With Non-Printable Chars
idle: [...191] [ip4][..udp] [....192.168.1.2][.2794] -> [..192.168.108.1][...53]
update: [...208] [ip4][..udp] [....192.168.1.2][18162] -> [....192.168.1.1][...53]
update: [...195] [ip4][..udp] [192.168.170.170][43690] -> [170.170.170.170][43690]
@@ -1409,6 +1711,7 @@
update: [...157] [ip4][...19] [....192.168.1.2] -> [....192.168.1.1]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...198] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...215] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][38709]
update: [...206] [ip4][..udp] [....192.168.1.2][.2568] -> [....192.168.1.1][...53]
update: [...222] [ip4][..udp] [....128.168.1.2][.2810] -> [....192.168.1.1][...53]
@@ -1419,12 +1722,12 @@
update: [...197] [ip4][..udp] [....192.168.1.2][.2797] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...199] [ip4][..udp] [....192.168.1.2][.2798] -> [....192.168.1.1][...53]
update: [...204] [ip4][..udp] [....192.168.1.2][.2801] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars
update: [...207] [ip4][..udp] [....192.168.1.2][.2802] -> [....192.168.1.1][...53]
update: [...209] [ip4][..udp] [....192.168.1.2][.2803] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...210] [ip4][..udp] [....192.168.1.2][.2804] -> [....192.168.1.1][...53]
update: [...214] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2807] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [...216] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][...53]
update: [...217] [ip4][..udp] [....192.168.1.2][19192] -> [....192.168.1.1][...53]
update: [...218] [ip4][..udp] [....192.168.1.2][.2809] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -1434,21 +1737,23 @@
update: [...220] [ip4][..udp] [....192.170.1.2][.2810] -> [....192.168.1.1][...53]
new: [...227] [ip4][..udp] [....192.168.1.2][.2813] -> [....192.168.1.1][...53]
detected: [...227] [ip4][..udp] [....192.168.1.2][.2813] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127?in-ad_r?arpa???]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars, Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
new: [...228] [ip4][..udp] [....192.168.1.2][.2814] -> [....192.168.1.1][...53]
detected: [...228] [ip4][..udp] [....192.168.1.2][.2814] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [3/16]
ERROR-EVENT: Unknown packet type [4/16]
ERROR-EVENT: Unknown packet type [5/16]
new: [...229] [ip4][..udp] [....192.168.1.2][29440] -> [...192.168.1.37][..137]
detected: [...229] [ip4][..udp] [....192.168.1.2][29440] -> [...192.168.1.37][..137] [NetBIOS][Unknown][System][Acceptable][]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [6/16]
detection-update: [...228] [ip4][..udp] [....192.168.1.2][.2814] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sib._udp.sip.cybercity.dk]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
not-detected: [...195] [ip4][..udp] [192.168.170.170][43690] -> [170.170.170.170][43690] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...195] [ip4][..udp] [192.168.170.170][43690] -> [170.170.170.170][43690]
idle: [...193] [ip4][..udp] [....192.168.1.2][.2794] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...192] [ip4][..udp] [....192.168.1.2][.2795] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -1458,22 +1763,28 @@
update: [...203] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...21]
update: [...200] [ip4][..udp] [....192.168.1.2][.2799] -> [....192.168.1.1][...53]
update: [...201] [ip4][..udp] [....192.168.1.1][...53] -> [..192.168.119.2][.2799] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...202] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...53]
update: [...211] [ip4][..udp] [....192.168.1.2][.2805] -> [....192.168.1.1][...51]
update: [...212] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2805] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...213] [ip4][..udp] [....192.168.1.2][.2806] -> [....192.168.1.1][...53]
update: [...223] [ip4][..udp] [....192.168.1.2][.2811] -> [....192.168.1.1][...53]
update: [...224] [ip4][..udp] [..192.168.233.1][...53] -> [....192.168.1.2][.2811] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...225] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..905]
new: [...230] [ip4][..udp] [....192.168.1.2][.2815] -> [....192.168.1.1][...53]
detected: [...230] [ip4][..udp] [....192.168.1.2][.2815] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Error Code, Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
new: [...231] [ip4][..udp] [....192.168.1.2][.2816] -> [....192.168.1.1][...53]
detected: [...231] [ip4][..udp] [....192.168.1.2][.2816] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][?sip._udp.shp.cybercity.dk]
+ RISK: Text With Non-Printable Chars, Unidirectional Traffic
new: [...232] [ip4][..udp] [....192.168.1.2][.5060] -> [.212.242.33.201][.5060]
detected: [...232] [ip4][..udp] [....192.168.1.2][.5060] -> [.212.242.33.201][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
detection-update: [...231] [ip4][..udp] [....192.168.1.2][.2816] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udq.sip.cybercity.dk]
+ RISK: Text With Non-Printable Chars, Unidirectional Traffic
new: [...233] [ip4][..udp] [....192.168.1.3][30000] -> [..212.242.33.36][40392]
detected: [...233] [ip4][..udp] [....192.168.1.3][30000] -> [..212.242.33.36][40392] [RTP][Unknown][Media][Acceptable]
new: [...234] [ip4][..udp] [....192.168.1.2][30000] -> [....37.115.0.36][40392]
@@ -1486,40 +1797,49 @@
detected: [...237] [ip4][..udp] [.....81.168.1.2][30000] -> [..212.242.33.36][40392] [RTP][Unknown][Media][Acceptable]
ERROR-EVENT: Unknown packet type [2/16]
detection-update: [...231] [ip4][..udp] [....192.168.1.2][.2816] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Text With Non-Printable Chars, Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [3/16]
idle: [...197] [ip4][..udp] [....192.168.1.2][.2797] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...199] [ip4][..udp] [....192.168.1.2][.2798] -> [....192.168.1.1][...53]
update: [...205] [ip4][....0] [....192.168.1.2] -> [..212.242.33.35]
new: [...238] [ip4][..udp] [....192.168.1.2][.2822] -> [....192.168.1.1][...53]
detected: [...238] [ip4][..udp] [....192.168.1.2][.2822] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.1?7.in-addr.arpa]
+ RISK: Text With Non-Printable Chars, Unidirectional Traffic
new: [...239] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.234.33.35][.5060]
detected: [...239] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.234.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
new: [...240] [ip4][..udp] [....192.168.1.2][.2823] -> [....192.168.1.1][...53]
detected: [...240] [ip4][..udp] [....192.168.1.2][.2823] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
detection-update: [...240] [ip4][..udp] [....192.168.1.2][.2823] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
detection-update: [...240] [ip4][..udp] [....192.168.1.2][.2823] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
not-detected: [...149] [ip4][....0] [....192.168.1.2] -> [..192.168.1.255] [Unknown][Unknown][Unrated]
idle: [...149] [ip4][....0] [....192.168.1.2] -> [..192.168.1.255]
not-detected: [...203] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...21] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...203] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...21]
idle: [...201] [ip4][..udp] [....192.168.1.1][...53] -> [..192.168.119.2][.2799] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...200] [ip4][..udp] [....192.168.1.2][.2799] -> [....192.168.1.1][...53]
idle: [...202] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...53]
update: [...208] [ip4][..udp] [....192.168.1.2][18162] -> [....192.168.1.1][...53]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...198] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...215] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][38709]
update: [...206] [ip4][..udp] [....192.168.1.2][.2568] -> [....192.168.1.1][...53]
update: [...222] [ip4][..udp] [....128.168.1.2][.2810] -> [....192.168.1.1][...53]
update: [...204] [ip4][..udp] [....192.168.1.2][.2801] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars
update: [...207] [ip4][..udp] [....192.168.1.2][.2802] -> [....192.168.1.1][...53]
update: [...209] [ip4][..udp] [....192.168.1.2][.2803] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...210] [ip4][..udp] [....192.168.1.2][.2804] -> [....192.168.1.1][...53]
update: [...214] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2807] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [...216] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][...53]
update: [...217] [ip4][..udp] [....192.168.1.2][19192] -> [....192.168.1.1][...53]
update: [...218] [ip4][..udp] [....192.168.1.2][.2809] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -1529,39 +1849,47 @@
update: [...220] [ip4][..udp] [....192.170.1.2][.2810] -> [....192.168.1.1][...53]
new: [...241] [ip4][..udp] [....192.168.1.2][.2824] -> [....192.168.1.1][...53]
detected: [...241] [ip4][..udp] [....192.168.1.2][.2824] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
detection-update: [...241] [ip4][..udp] [....192.168.1.2][.2824] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
new: [...242] [ip4][..udp] [....192.168.1.2][.2825] -> [....192.168.1.1][...53]
detected: [...242] [ip4][..udp] [....192.168.1.2][.2825] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
detection-update: [...242] [ip4][..udp] [....192.168.1.2][.2825] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
detection-update: [...242] [ip4][..udp] [....192.168.1.2][.2825] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars, Unidirectional Traffic
idle: [...208] [ip4][..udp] [....192.168.1.2][18162] -> [....192.168.1.1][...53]
idle: [...206] [ip4][..udp] [....192.168.1.2][.2568] -> [....192.168.1.1][...53]
idle: [...204] [ip4][..udp] [....192.168.1.2][.2801] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Text With Non-Printable Chars
idle: [...207] [ip4][..udp] [....192.168.1.2][.2802] -> [....192.168.1.1][...53]
update: [...211] [ip4][..udp] [....192.168.1.2][.2805] -> [....192.168.1.1][...51]
update: [...212] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2805] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...213] [ip4][..udp] [....192.168.1.2][.2806] -> [....192.168.1.1][...53]
update: [...223] [ip4][..udp] [....192.168.1.2][.2811] -> [....192.168.1.1][...53]
update: [...224] [ip4][..udp] [..192.168.233.1][...53] -> [....192.168.1.2][.2811] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...227] [ip4][..udp] [....192.168.1.2][.2813] -> [....192.168.1.1][...53]
update: [...228] [ip4][..udp] [....192.168.1.2][.2814] -> [....192.168.1.1][...53]
update: [...229] [ip4][..udp] [....192.168.1.2][29440] -> [...192.168.1.37][..137] [NetBIOS][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
update: [...225] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..905]
new: [...243] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.255][..138]
detected: [...243] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous][d00]
RISK: Unsafe Protocol
new: [...244] [ip4][..udp] [....192.168.1.2][.2826] -> [....192.168.1.1][...53]
detected: [...244] [ip4][..udp] [....192.168.1.2][.2826] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.?.0.127.in-addr.arpa]
+ RISK: Text With Non-Printable Chars, Unidirectional Traffic
detection-update: [...244] [ip4][..udp] [....192.168.1.2][.2826] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Text With Non-Printable Chars
idle: [...209] [ip4][..udp] [....192.168.1.2][.2803] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...210] [ip4][..udp] [....192.168.1.2][.2804] -> [....192.168.1.1][...53]
update: [...232] [ip4][..udp] [....192.168.1.2][.5060] -> [.212.242.33.201][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...230] [ip4][..udp] [....192.168.1.2][.2815] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Error Code, Unidirectional Traffic
update: [...231] [ip4][..udp] [....192.168.1.2][.2816] -> [....192.168.1.1][...53]
update: [...237] [ip4][..udp] [.....81.168.1.2][30000] -> [..212.242.33.36][40392] [RTP][Unknown][Media][Acceptable]
update: [...233] [ip4][..udp] [....192.168.1.3][30000] -> [..212.242.33.36][40392] [RTP][Unknown][Media][Acceptable]
@@ -1570,39 +1898,49 @@
update: [...234] [ip4][..udp] [....192.168.1.2][30000] -> [....37.115.0.36][40392] [RTP][Unknown][Media][Acceptable]
new: [...245] [ip4][..udp] [....192.168.1.2][.2827] -> [..192.168.1.114][...53]
detected: [...245] [ip4][..udp] [....192.168.1.2][.2827] -> [..192.168.1.114][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
new: [...246] [ip4][..udp] [....192.168.1.2][.2827] -> [....192.168.1.1][...53]
detected: [...246] [ip4][..udp] [....192.168.1.2][.2827] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercimy.v?]
+ RISK: Text With Non-Printable Chars, Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
new: [...247] [ip4][..udp] [....192.168.1.2][.2827] -> [....192.170.1.1][...53]
detected: [...247] [ip4][..udp] [....192.168.1.2][.2827] -> [....192.170.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cyberc?ty.dk]
+ RISK: Text With Non-Printable Chars, Unidirectional Traffic
ERROR-EVENT: Unknown L3 protocol [2/16]
not-detected: [...157] [ip4][...19] [....192.168.1.2] -> [....192.168.1.1] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...157] [ip4][...19] [....192.168.1.2] -> [....192.168.1.1]
not-detected: [...117] [ip4][...37] [....192.168.1.1] -> [....192.168.1.2] [Unknown][Unknown][Unrated]
idle: [...117] [ip4][...37] [....192.168.1.1] -> [....192.168.1.2]
not-detected: [...211] [ip4][..udp] [....192.168.1.2][.2805] -> [....192.168.1.1][...51] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...211] [ip4][..udp] [....192.168.1.2][.2805] -> [....192.168.1.1][...51]
idle: [...212] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2805] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...239] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.234.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...238] [ip4][..udp] [....192.168.1.2][.2822] -> [....192.168.1.1][...53]
update: [...240] [ip4][..udp] [....192.168.1.2][.2823] -> [....192.168.1.1][...53]
new: [...248] [ip4][..udp] [....192.168.1.2][.2828] -> [....192.168.1.1][...53]
detected: [...248] [ip4][..udp] [....192.168.1.2][.2828] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
new: [...249] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2572]
detected: [...249] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2572] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
new: [...250] [ip4][..udp] [....192.168.1.2][...11] -> [..192.168.1.255][..137]
detected: [...250] [ip4][..udp] [....192.168.1.2][...11] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
new: [...251] [ip4][..udp] [.....62.168.1.2][..137] -> [..192.168.1.255][..137]
detected: [...251] [ip4][..udp] [.....62.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
not-detected: [...215] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][38709] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...215] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][38709]
idle: [...213] [ip4][..udp] [....192.168.1.2][.2806] -> [....192.168.1.1][...53]
idle: [...214] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2807] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
idle: [...216] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][...53]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...198] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...222] [ip4][..udp] [....128.168.1.2][.2810] -> [....192.168.1.1][...53]
update: [...217] [ip4][..udp] [....192.168.1.2][19192] -> [....192.168.1.1][...53]
update: [...218] [ip4][..udp] [....192.168.1.2][.2809] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -1614,35 +1952,45 @@
update: [...220] [ip4][..udp] [....192.170.1.2][.2810] -> [....192.168.1.1][...53]
new: [...252] [ip4][..udp] [....192.168.1.2][.2829] -> [....192.168.1.1][...53]
detected: [...252] [ip4][..udp] [....192.168.1.2][.2829] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
new: [...253] [ip4][..udp] [...192.168.54.2][.2829] -> [....192.168.1.1][...53]
detected: [...253] [ip4][..udp] [...192.168.54.2][.2829] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
new: [...254] [ip4][..udp] [....192.168.1.2][.2830] -> [....192.168.1.1][...53]
detected: [...254] [ip4][..udp] [....192.168.1.2][.2830] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
+ RISK: Unidirectional Traffic
detection-update: [...254] [ip4][..udp] [....192.168.1.2][.2830] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
+ RISK: Unidirectional Traffic
new: [...255] [ip4][..udp] [....116.168.1.2][.2829] -> [....192.168.1.1][...53]
detected: [...255] [ip4][..udp] [....116.168.1.2][.2829] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
not-detected: [...166] [ip4][....0] [....192.168.1.1] -> [....192.168.1.2] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...166] [ip4][....0] [....192.168.1.1] -> [....192.168.1.2]
idle: [...217] [ip4][..udp] [....192.168.1.2][19192] -> [....192.168.1.1][...53]
idle: [...218] [ip4][..udp] [....192.168.1.2][.2809] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...221] [ip4][..udp] [....192.168.1.2][.2810] -> [....192.168.1.1][...53]
guessed: [...219] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][17860] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...219] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][17860]
idle: [...220] [ip4][..udp] [....192.170.1.2][.2810] -> [....192.168.1.1][...53]
update: [...243] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
update: [...232] [ip4][..udp] [....192.168.1.2][.5060] -> [.212.242.33.201][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...223] [ip4][..udp] [....192.168.1.2][.2811] -> [....192.168.1.1][...53]
update: [...224] [ip4][..udp] [..192.168.233.1][...53] -> [....192.168.1.2][.2811] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...227] [ip4][..udp] [....192.168.1.2][.2813] -> [....192.168.1.1][...53]
update: [...228] [ip4][..udp] [....192.168.1.2][.2814] -> [....192.168.1.1][...53]
update: [...230] [ip4][..udp] [....192.168.1.2][.2815] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Error Code, Unidirectional Traffic
update: [...231] [ip4][..udp] [....192.168.1.2][.2816] -> [....192.168.1.1][...53]
update: [...244] [ip4][..udp] [....192.168.1.2][.2826] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Text With Non-Printable Chars
update: [...229] [ip4][..udp] [....192.168.1.2][29440] -> [...192.168.1.37][..137] [NetBIOS][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
update: [...225] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..905]
update: [...237] [ip4][..udp] [.....81.168.1.2][30000] -> [..212.242.33.36][40392] [RTP][Unknown][Media][Acceptable]
update: [...233] [ip4][..udp] [....192.168.1.3][30000] -> [..212.242.33.36][40392] [RTP][Unknown][Media][Acceptable]
@@ -1652,61 +2000,73 @@
detection-update: [...254] [ip4][..udp] [....192.168.1.2][.2830] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
new: [...256] [ip4][..udp] [....192.168.1.2][.2831] -> [....192.168.1.1][...53]
detected: [...256] [ip4][..udp] [....192.168.1.2][.2831] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
+ RISK: Unidirectional Traffic
detection-update: [...256] [ip4][..udp] [....192.168.1.2][.2831] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
guessed: [...222] [ip4][..udp] [....128.168.1.2][.2810] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
idle: [...222] [ip4][..udp] [....128.168.1.2][.2810] -> [....192.168.1.1][...53]
update: [...245] [ip4][..udp] [....192.168.1.2][.2827] -> [..192.168.1.114][...53]
update: [...246] [ip4][..udp] [....192.168.1.2][.2827] -> [....192.168.1.1][...53]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
new: [...257] [ip4][..udp] [....192.168.1.2][.2832] -> [....192.168.1.1][...53]
detected: [...257] [ip4][..udp] [....192.168.1.2][.2832] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
+ RISK: Unidirectional Traffic
guessed: [....26] [ip4][..tcp] [..147.234.1.253][...21] -> [......192.2.1.2][.2720] [FTP_CONTROL][Unknown][Download][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....26] [ip4][..tcp] [..147.234.1.253][...21] -> [......192.2.1.2][.2720]
guessed: [....43] [ip4][..tcp] [.....37.115.0.2][.2639] -> [..147.234.1.253][...21] [FTP_CONTROL][Unknown][Download][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....43] [ip4][..tcp] [.....37.115.0.2][.2639] -> [..147.234.1.253][...21]
guessed: [....38] [ip4][..tcp] [....192.168.1.2][.2720] -> [..147.117.1.253][...21] [FTP_CONTROL][Unknown][Download][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....38] [ip4][..tcp] [....192.168.1.2][.2720] -> [..147.117.1.253][...21]
not-detected: [....33] [ip4][..tcp] [..147.234.1.253][.1045] -> [....192.168.1.2][.2720] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....33] [ip4][..tcp] [..147.234.1.253][.1045] -> [....192.168.1.2][.2720]
idle: [...251] [ip4][..udp] [.....62.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
idle: [...250] [ip4][..udp] [....192.168.1.2][...11] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
not-detected: [....29] [ip4][..tcp] [..147.234.1.170][43690] -> [170.170.170.170][43690] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....29] [ip4][..tcp] [..147.234.1.170][43690] -> [170.170.170.170][43690]
idle: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
idle: [...243] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
idle: [...232] [ip4][..udp] [....192.168.1.2][.5060] -> [.212.242.33.201][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...239] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.234.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...198] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [...205] [ip4][....0] [....192.168.1.2] -> [..212.242.33.35] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...205] [ip4][....0] [....192.168.1.2] -> [..212.242.33.35]
idle: [...249] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2572] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
guessed: [....31] [ip4][..tcp] [..147.234.1.253][...21] -> [....192.168.1.2][.2208] [FTP_CONTROL][Unknown][Download][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....31] [ip4][..tcp] [..147.234.1.253][...21] -> [....192.168.1.2][.2208]
not-detected: [....42] [ip4][..tcp] [..147.234.1.253][58999] -> [....192.232.1.2][.2721] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....42] [ip4][..tcp] [..147.234.1.253][58999] -> [....192.232.1.2][.2721]
not-detected: [....39] [ip4][..tcp] [....192.168.1.6][.2721] -> [..147.234.1.253][58999] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....39] [ip4][..tcp] [....192.168.1.6][.2721] -> [..147.234.1.253][58999]
idle: [...255] [ip4][..udp] [....116.168.1.2][.2829] -> [....192.168.1.1][...53]
idle: [...224] [ip4][..udp] [..192.168.233.1][...53] -> [....192.168.1.2][.2811] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...223] [ip4][..udp] [....192.168.1.2][.2811] -> [....192.168.1.1][...53]
idle: [...226] [ip4][..udp] [....192.168.1.2][.2812] -> [....192.168.1.1][...53]
idle: [...227] [ip4][..udp] [....192.168.1.2][.2813] -> [....192.168.1.1][...53]
idle: [...228] [ip4][..udp] [....192.168.1.2][.2814] -> [....192.168.1.1][...53]
idle: [...230] [ip4][..udp] [....192.168.1.2][.2815] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Error Code, Unidirectional Traffic
idle: [...231] [ip4][..udp] [....192.168.1.2][.2816] -> [....192.168.1.1][...53]
idle: [...238] [ip4][..udp] [....192.168.1.2][.2822] -> [....192.168.1.1][...53]
idle: [...240] [ip4][..udp] [....192.168.1.2][.2823] -> [....192.168.1.1][...53]
idle: [...241] [ip4][..udp] [....192.168.1.2][.2824] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...242] [ip4][..udp] [....192.168.1.2][.2825] -> [....192.168.1.1][...53]
idle: [...244] [ip4][..udp] [....192.168.1.2][.2826] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Text With Non-Printable Chars
idle: [...246] [ip4][..udp] [....192.168.1.2][.2827] -> [....192.168.1.1][...53]
idle: [...245] [ip4][..udp] [....192.168.1.2][.2827] -> [..192.168.1.114][...53]
idle: [...248] [ip4][..udp] [....192.168.1.2][.2828] -> [....192.168.1.1][...53]
@@ -1716,47 +2076,55 @@
idle: [...256] [ip4][..udp] [....192.168.1.2][.2831] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...257] [ip4][..udp] [....192.168.1.2][.2832] -> [....192.168.1.1][...53]
not-detected: [....40] [ip4][..tcp] [...37.115.0.253][58999] -> [....192.168.1.2][.2721] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....40] [ip4][..tcp] [...37.115.0.253][58999] -> [....192.168.1.2][.2721]
idle: [...229] [ip4][..udp] [....192.168.1.2][29440] -> [...192.168.1.37][..137] [NetBIOS][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [....20] [ip4][..tcp] [...192.168.1.71][.2718] -> [.147.137.21.122][..139] [NetBIOS][Unknown][System][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [....20] [ip4][..tcp] [...192.168.1.71][.2718] -> [.147.137.21.122][..139]
guessed: [....19] [ip4][..tcp] [....192.168.1.2][.2718] -> [..147.137.21.94][..139] [NetBIOS][Unknown][System][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [....19] [ip4][..tcp] [....192.168.1.2][.2718] -> [..147.137.21.94][..139]
guessed: [....35] [ip4][..tcp] [..147.234.1.253][...21] -> [.....84.168.1.2][.2720] [FTP_CONTROL][Unknown][Download][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....35] [ip4][..tcp] [..147.234.1.253][...21] -> [.....84.168.1.2][.2720]
guessed: [...225] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..905] [NetBIOS][Unknown][System][Acceptable][]
idle: [...225] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..905]
guessed: [....25] [ip4][..tcp] [....192.168.1.2][.2679] -> [..147.234.1.253][...21] [FTP_CONTROL][Unknown][Download][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Clear-Text Credentials, Unidirectional Traffic
idle: [....25] [ip4][..tcp] [....192.168.1.2][.2679] -> [..147.234.1.253][...21]
not-detected: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
guessed: [....36] [ip4][..tcp] [....192.112.1.2][.2720] -> [..147.234.1.253][...21] [FTP_CONTROL][Unknown][Download][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....36] [ip4][..tcp] [....192.112.1.2][.2720] -> [..147.234.1.253][...21]
not-detected: [....30] [ip4][..tcp] [..147.234.1.249][.2069] -> [....192.168.1.2][.2720] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....30] [ip4][..tcp] [..147.234.1.249][.2069] -> [....192.168.1.2][.2720]
guessed: [....27] [ip4][..tcp] [..147.234.1.253][...21] -> [...192.168.1.66][.2720] [FTP_CONTROL][Unknown][Download][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....27] [ip4][..tcp] [..147.234.1.253][...21] -> [...192.168.1.66][.2720]
guessed: [....34] [ip4][..tcp] [..147.234.1.253][...21] -> [...192.168.65.2][.2720] [FTP_CONTROL][Unknown][Download][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....34] [ip4][..tcp] [..147.234.1.253][...21] -> [...192.168.65.2][.2720]
guessed: [....32] [ip4][..tcp] [..147.234.1.253][...21] -> [....192.168.1.2][.2732] [FTP_CONTROL][Unknown][Download][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....32] [ip4][..tcp] [..147.234.1.253][...21] -> [....192.168.1.2][.2732]
idle: [...237] [ip4][..udp] [.....81.168.1.2][30000] -> [..212.242.33.36][40392] [RTP][Unknown][Media][Acceptable]
not-detected: [....28] [ip4][..tcp] [..147.234.1.253][..120] -> [....192.168.1.2][.2720] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....28] [ip4][..tcp] [..147.234.1.253][..120] -> [....192.168.1.2][.2720]
idle: [...235] [ip4][..udp] [....192.168.1.2][30000] -> [..212.242.33.36][40392] [RTP][Unknown][Media][Acceptable]
idle: [...233] [ip4][..udp] [....192.168.1.3][30000] -> [..212.242.33.36][40392] [RTP][Unknown][Media][Acceptable]
idle: [...236] [ip4][..udp] [....192.168.1.2][30000] -> [..214.242.33.36][40392] [RTP][Unknown][Media][Acceptable]
guessed: [....18] [ip4][..tcp] [....192.168.1.2][.2717] -> [..147.137.21.94][..445] [SMBv23][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....18] [ip4][..tcp] [....192.168.1.2][.2717] -> [..147.137.21.94][..445]
idle: [...247] [ip4][..udp] [....192.168.1.2][.2827] -> [....192.170.1.1][...53]
idle: [...234] [ip4][..udp] [....192.168.1.2][30000] -> [....37.115.0.36][40392] [RTP][Unknown][Media][Acceptable]
guessed: [....24] [ip4][..tcp] [..147.234.1.253][...21] -> [....192.169.1.2][.2720] [FTP_CONTROL][Unknown][Download][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....24] [ip4][..tcp] [..147.234.1.253][...21] -> [....192.169.1.2][.2720]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/fuzz-2006-09-29-28586.pcap.out b/test/results/flow-info/default/fuzz-2006-09-29-28586.pcap.out
index 704a36035..46f883113 100644
--- a/test/results/flow-info/fuzz-2006-09-29-28586.pcap.out
+++ b/test/results/flow-info/default/fuzz-2006-09-29-28586.pcap.out
@@ -12,7 +12,7 @@
new: [.....5] [ip4][..tcp] [....172.20.3.13][53132] -> [.....172.20.3.5][...80]
new: [.....6] [ip4][..tcp] [.....172.20.3.1][...80] -> [....172.20.3.13][53132] [MIDSTREAM]
detected: [.....6] [ip4][..tcp] [.....172.20.3.1][...80] -> [....172.20.3.13][53132] [HTTP][Unknown][Web][Acceptable][]
- RISK: HTTP Suspicious User-Agent
+ RISK: HTTP Susp User-Agent, Unidirectional Traffic
new: [.....7] [ip4][..tcp] [.....172.20.3.5][...80] -> [....172.57.3.13][53132] [MIDSTREAM]
new: [.....8] [ip4][..tcp] [......172.6.3.5][...80] -> [....172.20.3.13][53132] [MIDSTREAM]
new: [.....9] [ip4][..tcp] [.....172.20.3.5][.2602] -> [....172.21.3.13][...80]
@@ -20,9 +20,7 @@
new: [....10] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
new: [....11] [ip4][..tcp] [.....172.20.3.5][.2602] -> [....172.20.3.13][...80] [MIDSTREAM]
detected: [....11] [ip4][..tcp] [.....172.20.3.5][.2602] -> [....172.20.3.13][...80] [HTTP][Unknown][Web][Acceptable][172.20.3.13]
- RISK: HTTP Numeric IP Address
- detection-update: [....11] [ip4][..tcp] [.....172.20.3.5][.2602] -> [....172.20.3.13][...80] [HTTP][Unknown][Web][Acceptable][172.20.3.13]
- RISK: HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....12] [ip4][..tcp] [....172.20.3.88][...80] -> [....172.20.3.82][.2601] [MIDSTREAM]
new: [....13] [ip4][..tcp] [.....172.20.3.5][.2603] -> [....172.20.3.13][...80]
new: [....14] [ip4][..tcp] [.....172.20.3.5][.2603] -> [....172.20.3.77][...80] [MIDSTREAM]
@@ -31,114 +29,136 @@
new: [....17] [ip4][..tcp] [.....172.20.3.5][.2603] -> [....68.37.115.0][...80] [MIDSTREAM]
new: [....18] [ip4][..tcp] [.....172.20.3.5][.2604] -> [....172.20.3.13][...80]
detected: [....18] [ip4][..tcp] [.....172.20.3.5][.2604] -> [....172.20.3.13][...80] [HTTP][Unknown][Web][Acceptable][172.20.3.13]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
ERROR-EVENT: Unknown packet type [1/16]
new: [....19] [ip4][..tcp] [....172.20.3.13][...80] -> [....172.20.68.5][.2604] [MIDSTREAM]
new: [....20] [ip4][..tcp] [.....172.20.3.5][.2605] -> [....172.20.3.13][...80]
detected: [....20] [ip4][..tcp] [.....172.20.3.5][.2605] -> [....172.20.3.13][...80] [HTTP][Unknown][Web][Acceptable][172.20.3.13]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
new: [....21] [ip4][..tcp] [......51.20.3.5][.2605] -> [....172.20.3.13][...80] [MIDSTREAM]
new: [....22] [ip4][..tcp] [....172.20.3.13][...80] -> [....172.20.76.5][65069] [MIDSTREAM]
new: [....23] [ip4][..tcp] [....172.20.3.13][...80] -> [......44.20.3.5][.2605] [MIDSTREAM]
detected: [....23] [ip4][..tcp] [....172.20.3.13][...80] -> [......44.20.3.5][.2605] [HTTP][Unknown][Web][Acceptable][]
- RISK: HTTP Suspicious User-Agent
+ RISK: HTTP Susp User-Agent, Unidirectional Traffic
ERROR-EVENT: Unknown L3 protocol [2/16]
new: [....24] [ip4][..tcp] [170.170.170.170][43690] -> [170.170.170.170][43690]
new: [....25] [ip4][..tcp] [....172.20.3.13][...80] -> [.....172.20.3.5][.2639] [MIDSTREAM]
new: [....26] [ip4][..tcp] [....172.52.3.13][...80] -> [.....172.20.3.5][.2093] [MIDSTREAM]
new: [....27] [ip4][..tcp] [.....172.20.3.5][.2606] -> [....172.20.3.13][...80]
detected: [....27] [ip4][..tcp] [.....172.20.3.5][.2606] -> [....172.20.3.13][...80] [HTTP][Unknown][Web][Acceptable][172.20.3.13]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI
ERROR-EVENT: Unknown L3 protocol [1/16]
new: [....28] [ip4][..tcp] [....172.20.3.13][...80] -> [....172.20.72.5][.2606] [MIDSTREAM]
detected: [....28] [ip4][..tcp] [....172.20.3.13][...80] -> [....172.20.72.5][.2606] [HTTP][Unknown][Web][Acceptable][]
- RISK: HTTP Suspicious User-Agent
- detection-update: [....27] [ip4][..tcp] [.....172.20.3.5][.2606] -> [....172.20.3.13][...80] [HTTP][Unknown][Web][Acceptable][172.20.3.13]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP Susp User-Agent, Unidirectional Traffic
new: [....29] [ip4][..tcp] [.....172.20.3.5][.2607] -> [....172.20.3.13][...80]
new: [....30] [ip4][..tcp] [.....172.20.3.5][.9587] -> [....172.20.3.13][...80] [MIDSTREAM]
detected: [....30] [ip4][..tcp] [.....172.20.3.5][.9587] -> [....172.20.3.13][...80] [HTTP][Unknown][Web][Acceptable][]
+ RISK: HTTP Susp User-Agent, Unidirectional Traffic
new: [....31] [ip4][..tcp] [....172.20.2.13][...80] -> [.....172.20.3.5][.2607] [MIDSTREAM]
detected: [....31] [ip4][..tcp] [....172.20.2.13][...80] -> [.....172.20.3.5][.2607] [HTTP][Unknown][Web][Acceptable][]
- RISK: HTTP Suspicious User-Agent
+ RISK: HTTP Susp User-Agent, Unidirectional Traffic
new: [....32] [ip4][..tcp] [....172.20.3.13][53193] -> [.....172.20.3.5][...80]
new: [....33] [ip4][..tcp] [.....172.20.3.5][...80] -> [...172.20.35.13][53136]
new: [....34] [ip4][..tcp] [....172.20.3.13][53136] -> [.....172.20.3.5][...80] [MIDSTREAM]
detected: [....34] [ip4][..tcp] [....172.20.3.13][53136] -> [.....172.20.3.5][...80] [HTTP][Unknown][Web][Acceptable][172.20.3.5]
+ RISK: Unidirectional Traffic
new: [....35] [ip4][..tcp] [....172.20.3.13][53136] -> [.....172.70.3.5][...80] [MIDSTREAM]
new: [....36] [ip4][..tcp] [...172.20.67.13][53136] -> [.....172.20.3.5][...80] [MIDSTREAM]
ERROR-EVENT: Unknown packet type [2/16]
new: [....37] [ip4][..tcp] [....172.20.3.13][...80] -> [.....172.20.3.5][.2608]
detected: [....37] [ip4][..tcp] [....172.20.3.13][...80] -> [.....172.20.3.5][.2608] [HTTP][Unknown][Web][Acceptable][]
+ RISK: HTTP Susp User-Agent
new: [....38] [ip4][..tcp] [....172.20.3.13][...80] -> [...172.20.148.5][.2608] [MIDSTREAM]
new: [....39] [ip4][..115] [....172.20.3.13] -> [.....172.20.3.5]
idle: [.....6] [ip4][..tcp] [.....172.20.3.1][...80] -> [....172.20.3.13][53132]
guessed: [.....5] [ip4][..tcp] [....172.20.3.13][53132] -> [.....172.20.3.5][...80] [HTTP][Unknown][Web][Acceptable][]
end: [.....5] [ip4][..tcp] [....172.20.3.13][53132] -> [.....172.20.3.5][...80]
guessed: [....36] [ip4][..tcp] [...172.20.67.13][53136] -> [.....172.20.3.5][...80] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [....36] [ip4][..tcp] [...172.20.67.13][53136] -> [.....172.20.3.5][...80]
end: [....34] [ip4][..tcp] [....172.20.3.13][53136] -> [.....172.20.3.5][...80] [HTTP][Unknown][Web][Acceptable]
guessed: [....33] [ip4][..tcp] [.....172.20.3.5][...80] -> [...172.20.35.13][53136] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [....33] [ip4][..tcp] [.....172.20.3.5][...80] -> [...172.20.35.13][53136]
guessed: [....32] [ip4][..tcp] [....172.20.3.13][53193] -> [.....172.20.3.5][...80] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [....32] [ip4][..tcp] [....172.20.3.13][53193] -> [.....172.20.3.5][...80]
not-detected: [....39] [ip4][..115] [....172.20.3.13] -> [.....172.20.3.5] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....39] [ip4][..115] [....172.20.3.13] -> [.....172.20.3.5]
guessed: [....26] [ip4][..tcp] [....172.52.3.13][...80] -> [.....172.20.3.5][.2093] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
end: [....26] [ip4][..tcp] [....172.52.3.13][...80] -> [.....172.20.3.5][.2093]
not-detected: [....24] [ip4][..tcp] [170.170.170.170][43690] -> [170.170.170.170][43690] [Unknown][Unknown][Unrated]
idle: [....24] [ip4][..tcp] [170.170.170.170][43690] -> [170.170.170.170][43690]
guessed: [.....4] [ip4][..tcp] [......0.20.3.13][...80] -> [.....172.20.3.5][.2601] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..tcp] [......0.20.3.13][...80] -> [.....172.20.3.5][.2601]
guessed: [.....8] [ip4][..tcp] [......172.6.3.5][...80] -> [....172.20.3.13][53132] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [.....8] [ip4][..tcp] [......172.6.3.5][...80] -> [....172.20.3.13][53132]
guessed: [....35] [ip4][..tcp] [....172.20.3.13][53136] -> [.....172.70.3.5][...80] [HTTP][Cloudflare][Web][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [....35] [ip4][..tcp] [....172.20.3.13][53136] -> [.....172.70.3.5][...80]
idle: [....23] [ip4][..tcp] [....172.20.3.13][...80] -> [......44.20.3.5][.2605]
guessed: [....21] [ip4][..tcp] [......51.20.3.5][.2605] -> [....172.20.3.13][...80] [HTTP][AmazonAWS][Web][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [....21] [ip4][..tcp] [......51.20.3.5][.2605] -> [....172.20.3.13][...80]
guessed: [....15] [ip4][..tcp] [.....172.20.3.5][.2603] -> [.....72.20.3.13][...80] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
end: [....15] [ip4][..tcp] [.....172.20.3.5][.2603] -> [.....72.20.3.13][...80]
guessed: [.....1] [ip4][..tcp] [....172.20.3.13][...80] -> [.....172.20.3.5][.2600] [HTTP][Unknown][Web][Acceptable][]
end: [.....1] [ip4][..tcp] [....172.20.3.13][...80] -> [.....172.20.3.5][.2600]
guessed: [....12] [ip4][..tcp] [....172.20.3.88][...80] -> [....172.20.3.82][.2601] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [....12] [ip4][..tcp] [....172.20.3.88][...80] -> [....172.20.3.82][.2601]
end: [.....2] [ip4][..tcp] [....172.20.3.13][...80] -> [.....172.20.3.5][.2601]
end: [....11] [ip4][..tcp] [.....172.20.3.5][.2602] -> [....172.20.3.13][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: HTTP Suspicious User-Agent, HTTP Numeric IP Address
+ RISK: HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI
not-detected: [.....3] [ip4][..tcp] [....172.20.3.13][...81] -> [.....172.20.3.5][.2601] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..tcp] [....172.20.3.13][...81] -> [.....172.20.3.5][.2601]
guessed: [....16] [ip4][..tcp] [....172.20.3.13][...80] -> [....172.20.82.5][.2603] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [....16] [ip4][..tcp] [....172.20.3.13][...80] -> [....172.20.82.5][.2603]
guessed: [....14] [ip4][..tcp] [.....172.20.3.5][.2603] -> [....172.20.3.77][...80] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [....14] [ip4][..tcp] [.....172.20.3.5][.2603] -> [....172.20.3.77][...80]
guessed: [....13] [ip4][..tcp] [.....172.20.3.5][.2603] -> [....172.20.3.13][...80] [HTTP][Unknown][Web][Acceptable][]
end: [....13] [ip4][..tcp] [.....172.20.3.5][.2603] -> [....172.20.3.13][...80]
guessed: [....19] [ip4][..tcp] [....172.20.3.13][...80] -> [....172.20.68.5][.2604] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic, TCP Connection Issues
end: [....19] [ip4][..tcp] [....172.20.3.13][...80] -> [....172.20.68.5][.2604]
end: [....18] [ip4][..tcp] [.....172.20.3.5][.2604] -> [....172.20.3.13][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
end: [....20] [ip4][..tcp] [.....172.20.3.5][.2605] -> [....172.20.3.13][...80]
idle: [....28] [ip4][..tcp] [....172.20.3.13][...80] -> [....172.20.72.5][.2606]
end: [....27] [ip4][..tcp] [.....172.20.3.5][.2606] -> [....172.20.3.13][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP Susp User-Agent, HTTP/TLS/QUIC Numeric Hostname/SNI
idle: [....31] [ip4][..tcp] [....172.20.2.13][...80] -> [.....172.20.3.5][.2607]
guessed: [....29] [ip4][..tcp] [.....172.20.3.5][.2607] -> [....172.20.3.13][...80] [HTTP][Unknown][Web][Acceptable][]
idle: [....29] [ip4][..tcp] [.....172.20.3.5][.2607] -> [....172.20.3.13][...80]
guessed: [....38] [ip4][..tcp] [....172.20.3.13][...80] -> [...172.20.148.5][.2608] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [....38] [ip4][..tcp] [....172.20.3.13][...80] -> [...172.20.148.5][.2608]
idle: [....37] [ip4][..tcp] [....172.20.3.13][...80] -> [.....172.20.3.5][.2608]
guessed: [....25] [ip4][..tcp] [....172.20.3.13][...80] -> [.....172.20.3.5][.2639] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [....25] [ip4][..tcp] [....172.20.3.13][...80] -> [.....172.20.3.5][.2639]
guessed: [....17] [ip4][..tcp] [.....172.20.3.5][.2603] -> [....68.37.115.0][...80] [HTTP][Unknown][Web][Acceptable][]
idle: [....17] [ip4][..tcp] [.....172.20.3.5][.2603] -> [....68.37.115.0][...80]
guessed: [.....9] [ip4][..tcp] [.....172.20.3.5][.2602] -> [....172.21.3.13][...80] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [.....9] [ip4][..tcp] [.....172.20.3.5][.2602] -> [....172.21.3.13][...80]
not-detected: [....10] [ip4][..170] [170.170.170.170] -> [170.170.170.170] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....10] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
guessed: [.....7] [ip4][..tcp] [.....172.20.3.5][...80] -> [....172.57.3.13][53132] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [.....7] [ip4][..tcp] [.....172.20.3.5][...80] -> [....172.57.3.13][53132]
idle: [....30] [ip4][..tcp] [.....172.20.3.5][.9587] -> [....172.20.3.13][...80]
guessed: [....22] [ip4][..tcp] [....172.20.3.13][...80] -> [....172.20.76.5][65069] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [....22] [ip4][..tcp] [....172.20.3.13][...80] -> [....172.20.76.5][65069]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/fuzz-2020-02-16-11740.pcap.out b/test/results/flow-info/default/fuzz-2020-02-16-11740.pcap.out
index 342478c8e..d2a21d398 100644
--- a/test/results/flow-info/fuzz-2020-02-16-11740.pcap.out
+++ b/test/results/flow-info/default/fuzz-2020-02-16-11740.pcap.out
@@ -3,19 +3,27 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [....10.12.64.30][29200] -> [..108.226.25.53][.1812]
detected: [.....1] [ip4][..udp] [....10.12.64.30][29200] -> [..108.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..udp] [..198.226.25.53][.1812] -> [...10.102.64.30][29200]
detected: [.....2] [ip4][..udp] [..198.226.25.53][.1812] -> [...10.102.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1812]
detected: [.....3] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
new: [.....4] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1796]
idle: [.....2] [ip4][..udp] [..198.226.25.53][.1812] -> [...10.102.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [....10.12.64.30][29200] -> [..108.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1813]
detected: [.....5] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1813] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
update: [.....3] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....4] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1796]
ERROR-EVENT: Unknown packet type [1/16]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
@@ -27,47 +35,69 @@
new: [.....7] [ip4][..udp] [198.226.170.170][43690] -> [170.170.170.170][43690]
new: [.....8] [ip4][..udp] [.....10.4.64.30][29200] -> [..198.226.25.53][.1812]
detected: [.....8] [ip4][..udp] [.....10.4.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....9] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.12.64.30][29270]
detected: [.....9] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.12.64.30][29270] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
update: [.....3] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....5] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1813] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....6] [ip4][..udp] [..198.226.25.53][30764] -> [....10.12.64.30][12344]
update: [.....4] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1796]
new: [....10] [ip4][..udp] [..198.226.25.53][..309] -> [....10.12.64.30][12339]
ERROR-EVENT: Unknown packet type [1/16]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
not-detected: [.....4] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1796] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1796]
update: [.....3] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....8] [ip4][..udp] [.....10.4.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....5] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1813] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....9] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.12.64.30][29270] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....7] [ip4][..udp] [198.226.170.170][43690] -> [170.170.170.170][43690]
update: [.....6] [ip4][..udp] [..198.226.25.53][30764] -> [....10.12.64.30][12344]
not-detected: [.....6] [ip4][..udp] [..198.226.25.53][30764] -> [....10.12.64.30][12344] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][..udp] [..198.226.25.53][30764] -> [....10.12.64.30][12344]
update: [.....3] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....8] [ip4][..udp] [.....10.4.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....5] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1813] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....10] [ip4][..udp] [..198.226.25.53][..309] -> [....10.12.64.30][12339]
update: [.....9] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.12.64.30][29270] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....7] [ip4][..udp] [198.226.170.170][43690] -> [170.170.170.170][43690]
new: [....11] [ip4][..udp] [170.170.170.170][43690] -> [170.170.170.170][43690]
new: [....12] [ip4][..udp] [..198.226.25.53][.1813] -> [....10.12.64.30][29264]
detected: [....12] [ip4][..udp] [..198.226.25.53][.1813] -> [....10.12.64.30][29264] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
idle: [.....8] [ip4][..udp] [.....10.4.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [....10] [ip4][..udp] [..198.226.25.53][..309] -> [....10.12.64.30][12339] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....10] [ip4][..udp] [..198.226.25.53][..309] -> [....10.12.64.30][12339]
idle: [.....9] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.12.64.30][29270] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [.....7] [ip4][..udp] [198.226.170.170][43690] -> [170.170.170.170][43690] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [.....7] [ip4][..udp] [198.226.170.170][43690] -> [170.170.170.170][43690]
update: [.....3] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....5] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1813] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [2/16]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [3/16]
idle: [.....5] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1813] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
analyse: [.....3] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.155| 612.411| 61.128| 140.850|19838793242.640| 2.700]
@@ -82,15 +112,20 @@
new: [....13] [ip4][..udp] [..198.162.25.53][.1810] -> [....10.12.64.30][29200]
ERROR-EVENT: Unknown packet type [1/16]
update: [....12] [ip4][..udp] [..198.226.25.53][.1813] -> [....10.12.64.30][29264] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....11] [ip4][..udp] [170.170.170.170][43690] -> [170.170.170.170][43690]
new: [....14] [ip4][..udp] [..198.226.25.53][.1812] -> [....74.12.64.30][29200]
detected: [....14] [ip4][..udp] [..198.226.25.53][.1812] -> [....74.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....15] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.77.53][.1812]
detected: [....15] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.77.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....16] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.62][.1812]
detected: [....16] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.62][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
update: [.....3] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
new: [....17] [ip4][...88] [..198.226.25.53] -> [....10.12.64.30]
@@ -98,162 +133,240 @@
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [3/16]
update: [....13] [ip4][..udp] [..198.162.25.53][.1810] -> [....10.12.64.30][29200]
update: [.....3] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....15] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.77.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....16] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.62][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....14] [ip4][..udp] [..198.226.25.53][.1812] -> [....74.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....12] [ip4][..udp] [..198.226.25.53][.1813] -> [....10.12.64.30][29264] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....11] [ip4][..udp] [170.170.170.170][43690] -> [170.170.170.170][43690]
ERROR-EVENT: Unknown packet type [1/16]
new: [....19] [ip4][..udp] [..198.226.25.53][.1812] -> [...10.12.120.30][29200]
new: [....20] [ip4][..udp] [....10.12.64.30][29200] -> [..206.226.25.53][.1812]
detected: [....20] [ip4][..udp] [....10.12.64.30][29200] -> [..206.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
new: [....21] [ip4][..udp] [..198.157.25.53][.1812] -> [....10.12.64.30][29200]
detected: [....21] [ip4][..udp] [..198.157.25.53][.1812] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
not-detected: [....13] [ip4][..udp] [..198.162.25.53][.1810] -> [....10.12.64.30][29200] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....13] [ip4][..udp] [..198.162.25.53][.1810] -> [....10.12.64.30][29200]
idle: [....12] [ip4][..udp] [..198.226.25.53][.1813] -> [....10.12.64.30][29264] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [....11] [ip4][..udp] [170.170.170.170][43690] -> [170.170.170.170][43690] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....11] [ip4][..udp] [170.170.170.170][43690] -> [170.170.170.170][43690]
update: [.....3] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....15] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.77.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....16] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.62][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....19] [ip4][..udp] [..198.226.25.53][.1812] -> [...10.12.120.30][29200]
update: [....14] [ip4][..udp] [..198.226.25.53][.1812] -> [....74.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....22] [ip4][..udp] [..198.230.25.62][.1812] -> [....10.12.64.30][29200]
detected: [....22] [ip4][..udp] [..198.230.25.62][.1812] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....23] [ip4][...85] [..198.226.25.62] -> [....10.12.64.30]
new: [....24] [ip4][..udp] [..198.226.82.53][.1812] -> [....10.12.64.30][29200]
detected: [....24] [ip4][..udp] [..198.226.82.53][.1812] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
new: [....25] [ip4][..udp] [..198.226.25.53][.1895] -> [....10.12.64.30][29200]
new: [....26] [ip4][..udp] [....10.12.64.30][30224] -> [..198.226.25.53][.1812]
detected: [....26] [ip4][..udp] [....10.12.64.30][30224] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....27] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.56.64.30][.9472]
detected: [....27] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.56.64.30][.9472] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....15] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.77.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....14] [ip4][..udp] [..198.226.25.53][.1812] -> [....74.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....20] [ip4][..udp] [....10.12.64.30][29200] -> [..206.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....17] [ip4][...88] [..198.226.25.53] -> [....10.12.64.30]
update: [....18] [ip4][..254] [....10.12.64.30] -> [..198.226.25.53]
DAEMON-EVENT: [Processed: 104 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 13 / 27|skipped: 0|!detected: 6|guessed: 0|detection-updates: 0|updates: 39]
new: [....28] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.28.64.30][29200]
detected: [....28] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.28.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
ERROR-EVENT: Unknown packet type [2/16]
ERROR-EVENT: Unknown packet type [3/16]
update: [.....3] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....16] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.62][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....19] [ip4][..udp] [..198.226.25.53][.1812] -> [...10.12.120.30][29200]
update: [....21] [ip4][..udp] [..198.157.25.53][.1812] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [4/16]
new: [....29] [ip4][..udp] [....10.12.64.30][29200] -> [..198.224.25.53][.1812]
detected: [....29] [ip4][..udp] [....10.12.64.30][29200] -> [..198.224.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....24] [ip4][..udp] [..198.226.82.53][.1812] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....20] [ip4][..udp] [....10.12.64.30][29200] -> [..206.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....25] [ip4][..udp] [..198.226.25.53][.1895] -> [....10.12.64.30][29200]
update: [....22] [ip4][..udp] [..198.230.25.62][.1812] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....26] [ip4][..udp] [....10.12.64.30][30224] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....27] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.56.64.30][.9472] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
new: [....30] [ip4][..udp] [..198.226.25.53][.1812] -> [.....10.12.37.0][29200]
detected: [....30] [ip4][..udp] [..198.226.25.53][.1812] -> [.....10.12.37.0][29200] [Radius][Unknown][Network][Acceptable]
ERROR-EVENT: Unknown L3 protocol [2/16]
new: [....31] [ip4][..udp] [...10.12.64.110][29200] -> [..198.226.25.53][.1812]
detected: [....31] [ip4][..udp] [...10.12.64.110][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....32] [ip4][..udp] [...72.226.25.53][.1812] -> [....10.12.64.30][29200]
detected: [....32] [ip4][..udp] [...72.226.25.53][.1812] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [....19] [ip4][..udp] [..198.226.25.53][.1812] -> [...10.12.120.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....19] [ip4][..udp] [..198.226.25.53][.1812] -> [...10.12.120.30][29200]
idle: [....20] [ip4][..udp] [....10.12.64.30][29200] -> [..206.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....21] [ip4][..udp] [..198.157.25.53][.1812] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....16] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.62][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....24] [ip4][..udp] [..198.226.82.53][.1812] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....28] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.28.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....25] [ip4][..udp] [..198.226.25.53][.1895] -> [....10.12.64.30][29200]
update: [....22] [ip4][..udp] [..198.230.25.62][.1812] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....26] [ip4][..udp] [....10.12.64.30][30224] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....29] [ip4][..udp] [....10.12.64.30][29200] -> [..198.224.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....27] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.56.64.30][.9472] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
ERROR-EVENT: Unknown packet type [2/16]
new: [....33] [ip4][..udp] [....10.12.64.30][29200] -> [...198.226.37.0][.1812]
detected: [....33] [ip4][..udp] [....10.12.64.30][29200] -> [...198.226.37.0][.1812] [Radius][Unknown][Network][Acceptable]
idle: [....28] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.28.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....24] [ip4][..udp] [..198.226.82.53][.1812] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....16] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.62][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [....25] [ip4][..udp] [..198.226.25.53][.1895] -> [....10.12.64.30][29200] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....25] [ip4][..udp] [..198.226.25.53][.1895] -> [....10.12.64.30][29200]
idle: [....26] [ip4][..udp] [....10.12.64.30][30224] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....22] [ip4][..udp] [..198.230.25.62][.1812] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....27] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.56.64.30][.9472] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....30] [ip4][..udp] [..198.226.25.53][.1812] -> [.....10.12.37.0][29200] [Radius][Unknown][Network][Acceptable]
update: [....31] [ip4][..udp] [...10.12.64.110][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....29] [ip4][..udp] [....10.12.64.30][29200] -> [..198.224.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....23] [ip4][...85] [..198.226.25.62] -> [....10.12.64.30]
update: [....17] [ip4][...88] [..198.226.25.53] -> [....10.12.64.30]
update: [....32] [ip4][..udp] [...72.226.25.53][.1812] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....18] [ip4][..254] [....10.12.64.30] -> [..198.226.25.53]
new: [....34] [ip4][..112] [....10.12.64.30] -> [..198.226.25.53]
detected: [....34] [ip4][..112] [....10.12.64.30] -> [..198.226.25.53] [VRRP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
idle: [....31] [ip4][..udp] [...10.12.64.110][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....30] [ip4][..udp] [..198.226.25.53][.1812] -> [.....10.12.37.0][29200] [Radius][Unknown][Network][Acceptable]
idle: [....29] [ip4][..udp] [....10.12.64.30][29200] -> [..198.224.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....32] [ip4][..udp] [...72.226.25.53][.1812] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....33] [ip4][..udp] [....10.12.64.30][29200] -> [...198.226.37.0][.1812] [Radius][Unknown][Network][Acceptable]
update: [....23] [ip4][...85] [..198.226.25.62] -> [....10.12.64.30]
update: [....17] [ip4][...88] [..198.226.25.53] -> [....10.12.64.30]
update: [....18] [ip4][..254] [....10.12.64.30] -> [..198.226.25.53]
new: [....35] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.62][.1812]
detected: [....35] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.62][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....36] [ip4][..udp] [.....37.0.25.62][.1812] -> [....10.12.64.30][29200]
detected: [....36] [ip4][..udp] [.....37.0.25.62][.1812] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
new: [....37] [ip4][..udp] [..198.226.25.62][.1812] -> [.....10.12.37.0][29200]
detected: [....37] [ip4][..udp] [..198.226.25.62][.1812] -> [.....10.12.37.0][29200] [Radius][Unknown][Network][Acceptable]
new: [....38] [ip4][..udp] [..198.226.25.62][.1812] -> [....10.12.64.30][29295]
detected: [....38] [ip4][..udp] [..198.226.25.62][.1812] -> [....10.12.64.30][29295] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....39] [ip4][..udp] [....10.12.64.30][29304] -> [..198.226.25.53][.1812]
detected: [....39] [ip4][..udp] [....10.12.64.30][29304] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....40] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
idle: [....33] [ip4][..udp] [....10.12.64.30][29200] -> [...198.226.37.0][.1812] [Radius][Unknown][Network][Acceptable]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
ERROR-EVENT: Unknown L3 protocol [1/16]
new: [....41] [ip4][..udp] [..198.226.25.53][.1812] -> [..10.12.172.158][29200]
detected: [....41] [ip4][..udp] [..198.226.25.53][.1812] -> [..10.12.172.158][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....42] [ip4][..udp] [....10.12.64.30][29200] -> [..198.119.25.53][.1812]
new: [....43] [ip4][..udp] [..198.226.25.53][.1965] -> [....10.12.64.30][29200]
ERROR-EVENT: Unknown packet type [2/16]
update: [.....3] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....44] [ip4][....0] [....10.12.64.30] -> [..198.226.25.53]
new: [....45] [ip4][..udp] [..198.234.25.53][.1812] -> [....10.12.64.30][29200]
detected: [....45] [ip4][..udp] [..198.234.25.53][.1812] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [....17] [ip4][...88] [..198.226.25.53] -> [....10.12.64.30] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....17] [ip4][...88] [..198.226.25.53] -> [....10.12.64.30]
not-detected: [....18] [ip4][..254] [....10.12.64.30] -> [..198.226.25.53] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....18] [ip4][..254] [....10.12.64.30] -> [..198.226.25.53]
update: [.....3] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....37] [ip4][..udp] [..198.226.25.62][.1812] -> [.....10.12.37.0][29200] [Radius][Unknown][Network][Acceptable]
update: [....35] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.62][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....41] [ip4][..udp] [..198.226.25.53][.1812] -> [..10.12.172.158][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....38] [ip4][..udp] [..198.226.25.62][.1812] -> [....10.12.64.30][29295] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....39] [ip4][..udp] [....10.12.64.30][29304] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....43] [ip4][..udp] [..198.226.25.53][.1965] -> [....10.12.64.30][29200]
update: [....42] [ip4][..udp] [....10.12.64.30][29200] -> [..198.119.25.53][.1812]
update: [....36] [ip4][..udp] [.....37.0.25.62][.1812] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....46] [ip4][..udp] [....10.76.64.30][29200] -> [..198.226.25.53][.1812]
detected: [....46] [ip4][..udp] [....10.76.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....47] [ip4][..udp] [..198.226.25.53][43690] -> [..10.12.170.170][43690]
new: [....48] [ip4][..udp] [..198.226.25.53][.1812] -> [...10.12.112.30][29200]
detected: [....48] [ip4][..udp] [..198.226.25.53][.1812] -> [...10.12.112.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....49] [ip4][..udp] [.....10.84.37.0][29200] -> [..198.226.25.53][.1812]
detected: [....49] [ip4][..udp] [.....10.84.37.0][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
ERROR-EVENT: Unknown L3 protocol [2/16]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [3/16]
@@ -261,197 +374,305 @@
ERROR-EVENT: Unknown L3 protocol [1/16]
new: [....50] [ip4][..udp] [....10.12.64.37][29200] -> [....0.226.25.53][.1812]
detected: [....50] [ip4][..udp] [....10.12.64.37][29200] -> [....0.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....51] [ip4][..udp] [....10.12.64.30][29200] -> [...198.48.25.53][.1812]
detected: [....51] [ip4][..udp] [....10.12.64.30][29200] -> [...198.48.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....52] [ip4][..udp] [...198.52.25.53][.1812] -> [....10.12.64.30][29200]
detected: [....52] [ip4][..udp] [...198.52.25.53][.1812] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....37] [ip4][..udp] [..198.226.25.62][.1812] -> [.....10.12.37.0][29200] [Radius][Unknown][Network][Acceptable]
update: [....49] [ip4][..udp] [.....10.84.37.0][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....35] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.62][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....45] [ip4][..udp] [..198.234.25.53][.1812] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....46] [ip4][..udp] [....10.76.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....48] [ip4][..udp] [..198.226.25.53][.1812] -> [...10.12.112.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....41] [ip4][..udp] [..198.226.25.53][.1812] -> [..10.12.172.158][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....38] [ip4][..udp] [..198.226.25.62][.1812] -> [....10.12.64.30][29295] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....39] [ip4][..udp] [....10.12.64.30][29304] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....43] [ip4][..udp] [..198.226.25.53][.1965] -> [....10.12.64.30][29200]
update: [....47] [ip4][..udp] [..198.226.25.53][43690] -> [..10.12.170.170][43690]
update: [....42] [ip4][..udp] [....10.12.64.30][29200] -> [..198.119.25.53][.1812]
update: [....36] [ip4][..udp] [.....37.0.25.62][.1812] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....40] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
update: [....23] [ip4][...85] [..198.226.25.62] -> [....10.12.64.30]
update: [....34] [ip4][..112] [....10.12.64.30] -> [..198.226.25.53] [VRRP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....53] [ip4][..udp] [..198.226.25.53][.1813] -> [....10.12.64.30][29200]
detected: [....53] [ip4][..udp] [..198.226.25.53][.1813] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
ERROR-EVENT: Unknown L3 protocol [2/16]
idle: [....37] [ip4][..udp] [..198.226.25.62][.1812] -> [.....10.12.37.0][29200] [Radius][Unknown][Network][Acceptable]
idle: [....36] [ip4][..udp] [.....37.0.25.62][.1812] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....54] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.12.64.30][29204]
detected: [....54] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.12.64.30][29204] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....41] [ip4][..udp] [..198.226.25.53][.1812] -> [..10.12.172.158][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....35] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.62][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....38] [ip4][..udp] [..198.226.25.62][.1812] -> [....10.12.64.30][29295] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....39] [ip4][..udp] [....10.12.64.30][29304] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [....42] [ip4][..udp] [....10.12.64.30][29200] -> [..198.119.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....42] [ip4][..udp] [....10.12.64.30][29200] -> [..198.119.25.53][.1812]
not-detected: [....23] [ip4][...85] [..198.226.25.62] -> [....10.12.64.30] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....23] [ip4][...85] [..198.226.25.62] -> [....10.12.64.30]
DAEMON-EVENT: [Processed: 200 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 15 / 54|skipped: 0|!detected: 10|guessed: 2|detection-updates: 0|updates: 98]
ERROR-EVENT: Unknown packet type [1/16]
ERROR-EVENT: Unknown packet type [2/16]
idle: [....48] [ip4][..udp] [..198.226.25.53][.1812] -> [...10.12.112.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....46] [ip4][..udp] [....10.76.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....45] [ip4][..udp] [..198.234.25.53][.1812] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....49] [ip4][..udp] [.....10.84.37.0][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [....43] [ip4][..udp] [..198.226.25.53][.1965] -> [....10.12.64.30][29200] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....43] [ip4][..udp] [..198.226.25.53][.1965] -> [....10.12.64.30][29200]
not-detected: [....47] [ip4][..udp] [..198.226.25.53][43690] -> [..10.12.170.170][43690] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....47] [ip4][..udp] [..198.226.25.53][43690] -> [..10.12.170.170][43690]
update: [.....3] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....53] [ip4][..udp] [..198.226.25.53][.1813] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....54] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.12.64.30][29204] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....52] [ip4][..udp] [...198.52.25.53][.1812] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....40] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
update: [....51] [ip4][..udp] [....10.12.64.30][29200] -> [...198.48.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....44] [ip4][....0] [....10.12.64.30] -> [..198.226.25.53]
update: [....50] [ip4][..udp] [....10.12.64.37][29200] -> [....0.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....34] [ip4][..112] [....10.12.64.30] -> [..198.226.25.53] [VRRP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....55] [ip4][..udp] [..198.226.25.53][.1812] -> [....65.12.64.30][29200]
detected: [....55] [ip4][..udp] [..198.226.25.53][.1812] -> [....65.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....56] [ip4][..udp] [....10.12.69.30][29200] -> [..198.226.25.53][.1813]
detected: [....56] [ip4][..udp] [....10.12.69.30][29200] -> [..198.226.25.53][.1813] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....50] [ip4][..udp] [....10.12.64.37][29200] -> [....0.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....57] [ip4][..udp] [....10.12.82.30][29200] -> [..198.226.25.53][.1812]
detected: [....57] [ip4][..udp] [....10.12.82.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....58] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.12.64.66][29200]
idle: [....56] [ip4][..udp] [....10.12.69.30][29200] -> [..198.226.25.53][.1813] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....53] [ip4][..udp] [..198.226.25.53][.1813] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....54] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.12.64.30][29204] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....55] [ip4][..udp] [..198.226.25.53][.1812] -> [....65.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....52] [ip4][..udp] [...198.52.25.53][.1812] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....51] [ip4][..udp] [....10.12.64.30][29200] -> [...198.48.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....34] [ip4][..112] [....10.12.64.30] -> [..198.226.25.53] [VRRP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....40] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
update: [....44] [ip4][....0] [....10.12.64.30] -> [..198.226.25.53]
new: [....59] [ip4][..udp] [....88.12.80.30][29200] -> [..198.226.25.53][.1812]
detected: [....59] [ip4][..udp] [....88.12.80.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....60] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.62][.1812]
detected: [....60] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.62][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
new: [....61] [ip4][..udp] [.....10.6.64.30][29200] -> [..198.226.25.53][.1812]
detected: [....61] [ip4][..udp] [.....10.6.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....62] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.82.64.30][29200]
detected: [....62] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.82.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [2/16]
ERROR-EVENT: Unknown packet type [3/16]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
new: [....63] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.80.53][.1812]
detected: [....63] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.80.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....64] [ip4][..udp] [..198.226.25.53][.3860] -> [....14.12.64.30][29200]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
update: [.....3] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....57] [ip4][..udp] [....10.12.82.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....58] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.12.64.66][29200]
update: [....59] [ip4][..udp] [....88.12.80.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....65] [ip4][..udp] [.....198.7.9.53][.1812] -> [....10.12.64.30][29200]
detected: [....65] [ip4][..udp] [.....198.7.9.53][.1812] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....66] [ip4][..udp] [....10.12.64.30][29232] -> [..198.226.25.53][.1812]
detected: [....66] [ip4][..udp] [....10.12.64.30][29232] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
ERROR-EVENT: Unknown L3 protocol [2/16]
new: [....67] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.81.64.30][29200]
detected: [....67] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.81.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....68] [ip4][..udp] [..198.226.25.53][43028] -> [....10.12.64.30][29200]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [3/16]
ERROR-EVENT: Unknown packet type [4/16]
update: [....60] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.62][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....61] [ip4][..udp] [.....10.6.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....62] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.82.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [5/16]
ERROR-EVENT: Unknown L3 protocol [6/16]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
new: [....69] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.12.64.73][29200]
detected: [....69] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.12.64.73][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [3/16]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [4/16]
new: [....70] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.12.64.30][29208]
detected: [....70] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.12.64.30][29208] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....71] [ip4][..udp] [....10.12.64.30][29289] -> [..198.226.25.53][.1812]
detected: [....71] [ip4][..udp] [....10.12.64.30][29289] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [5/16]
update: [.....3] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....57] [ip4][..udp] [....10.12.82.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....58] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.12.64.66][29200]
update: [....63] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.80.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....64] [ip4][..udp] [..198.226.25.53][.3860] -> [....14.12.64.30][29200]
update: [....59] [ip4][..udp] [....88.12.80.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....72] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.21][.1812]
detected: [....72] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.21][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [....44] [ip4][....0] [....10.12.64.30] -> [..198.226.25.53] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....44] [ip4][....0] [....10.12.64.30] -> [..198.226.25.53]
update: [....60] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.62][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....66] [ip4][..udp] [....10.12.64.30][29232] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....68] [ip4][..udp] [..198.226.25.53][43028] -> [....10.12.64.30][29200]
update: [....61] [ip4][..udp] [.....10.6.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....65] [ip4][..udp] [.....198.7.9.53][.1812] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....67] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.81.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....62] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.82.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown L3 protocol [1/16]
idle: [....69] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.12.64.73][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....63] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.80.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [....58] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.12.64.66][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....58] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.12.64.66][29200]
idle: [....57] [ip4][..udp] [....10.12.82.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....72] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.21][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [....64] [ip4][..udp] [..198.226.25.53][.3860] -> [....14.12.64.30][29200] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....64] [ip4][..udp] [..198.226.25.53][.3860] -> [....14.12.64.30][29200]
idle: [....70] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.12.64.30][29208] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....66] [ip4][..udp] [....10.12.64.30][29232] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....59] [ip4][..udp] [....88.12.80.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....71] [ip4][..udp] [....10.12.64.30][29289] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [....68] [ip4][..udp] [..198.226.25.53][43028] -> [....10.12.64.30][29200] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....68] [ip4][..udp] [..198.226.25.53][43028] -> [....10.12.64.30][29200]
idle: [....61] [ip4][..udp] [.....10.6.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....67] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.81.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....65] [ip4][..udp] [.....198.7.9.53][.1812] -> [....10.12.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....62] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.82.64.30][29200] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....60] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.62][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....40] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
new: [....73] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1812]
detected: [....73] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....74] [ip4][..udp] [..198.226.25.53][.1814] -> [....10.12.64.30][29200]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
new: [....75] [ip4][..udp] [....57.12.64.30][29200] -> [..198.226.25.53][28948]
new: [....76] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.12.64.30][22544]
detected: [....76] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.12.64.30][22544] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
DAEMON-EVENT: [Processed: 285 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 6 / 76|skipped: 0|!detected: 15|guessed: 3|detection-updates: 0|updates: 132]
new: [....77] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1813]
detected: [....77] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1813] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....78] [ip4][..udp] [..198.226.25.53][.1813] -> [....10.12.64.30][21008]
detected: [....78] [ip4][..udp] [..198.226.25.53][.1813] -> [....10.12.64.30][21008] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [....40] [ip4][..170] [170.170.170.170] -> [170.170.170.170] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....40] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
update: [....60] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.62][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....79] [ip4][...37] [..198.226.25.53] -> [....10.12.64.30]
ERROR-EVENT: Unknown packet type [1/16]
ERROR-EVENT: Unknown packet type [2/16]
idle: [....73] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....60] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.62][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....78] [ip4][..udp] [..198.226.25.53][.1813] -> [....10.12.64.30][21008] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....77] [ip4][..udp] [....10.12.64.30][29200] -> [..198.226.25.53][.1813] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [....74] [ip4][..udp] [..198.226.25.53][.1814] -> [....10.12.64.30][29200] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....74] [ip4][..udp] [..198.226.25.53][.1814] -> [....10.12.64.30][29200]
not-detected: [....75] [ip4][..udp] [....57.12.64.30][29200] -> [..198.226.25.53][28948] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....75] [ip4][..udp] [....57.12.64.30][29200] -> [..198.226.25.53][28948]
idle: [....76] [ip4][..udp] [..198.226.25.53][.1812] -> [....10.12.64.30][22544] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [....79] [ip4][...37] [..198.226.25.53] -> [....10.12.64.30] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....79] [ip4][...37] [..198.226.25.53] -> [....10.12.64.30]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/fuzz-2021-06-07-c6c72a0a56.pcap.out b/test/results/flow-info/default/fuzz-2021-06-07-c6c72a0a56.pcap.out
index 213850b78..213850b78 100644
--- a/test/results/flow-info/fuzz-2021-06-07-c6c72a0a56.pcap.out
+++ b/test/results/flow-info/default/fuzz-2021-06-07-c6c72a0a56.pcap.out
diff --git a/test/results/flow-info/fuzz-2021-10-13.pcap.out b/test/results/flow-info/default/fuzz-2021-10-13.pcap.out
index dcd1d55dc..dcd1d55dc 100644
--- a/test/results/flow-info/fuzz-2021-10-13.pcap.out
+++ b/test/results/flow-info/default/fuzz-2021-10-13.pcap.out
diff --git a/test/results/flow-info/genshin-impact.pcap.out b/test/results/flow-info/default/genshin-impact.pcap.out
index dfc8aa178..31022c0ef 100644
--- a/test/results/flow-info/genshin-impact.pcap.out
+++ b/test/results/flow-info/default/genshin-impact.pcap.out
@@ -3,25 +3,27 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..192.168.2.100][58766] -> [..47.245.143.85][22101]
detected: [.....1] [ip4][..udp] [..192.168.2.100][58766] -> [..47.245.143.85][22101] [GenshinImpact][Unknown][Game][Fun]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
DAEMON-EVENT: [Processed: 15 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....2] [ip4][..udp] [..192.168.2.100][59145] -> [.47.254.169.109][22102]
detected: [.....2] [ip4][..udp] [..192.168.2.100][59145] -> [.47.254.169.109][22102] [GenshinImpact][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [..192.168.2.100][58766] -> [..47.245.143.85][22101] [GenshinImpact][Unknown][Game][Fun]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
DAEMON-EVENT: [Processed: 30 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 2|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....3] [ip4][..udp] [..192.168.2.100][52575] -> [...8.209.69.191][22101]
detected: [.....3] [ip4][..udp] [..192.168.2.100][52575] -> [...8.209.69.191][22101] [GenshinImpact][Unknown][Game][Fun]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....2] [ip4][..udp] [..192.168.2.100][59145] -> [.47.254.169.109][22102] [GenshinImpact][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 45 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 3|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....4] [ip4][..tcp] [..192.168.2.100][39822] -> [..49.51.190.178][...80]
detected: [.....4] [ip4][..tcp] [..192.168.2.100][39822] -> [..49.51.190.178][...80] [GenshinImpact][Tencent][Game][Fun]
idle: [.....3] [ip4][..udp] [..192.168.2.100][52575] -> [...8.209.69.191][22101] [GenshinImpact][Unknown][Game][Fun]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
DAEMON-EVENT: [Processed: 60 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 4|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....5] [ip4][..tcp] [..192.168.2.100][39686] -> [..49.51.181.168][...80]
diff --git a/test/results/flow-info/git.pcap.out b/test/results/flow-info/default/git.pcap.out
index 472f29af3..472f29af3 100644
--- a/test/results/flow-info/git.pcap.out
+++ b/test/results/flow-info/default/git.pcap.out
diff --git a/test/results/flow-info/gnutella.pcap.out b/test/results/flow-info/default/gnutella.pcap.out
index 3677f85ec..9e56ef165 100644
--- a/test/results/flow-info/gnutella.pcap.out
+++ b/test/results/flow-info/default/gnutella.pcap.out
@@ -12,6 +12,7 @@
detected: [.....5] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable][msedgewin10]
new: [.....6] [ip4][..udp] [.......10.0.2.2][...67] -> [......10.0.2.15][...68]
detected: [.....6] [ip4][..udp] [.......10.0.2.2][...67] -> [......10.0.2.15][...68] [DHCP][Unknown][Network][Acceptable][]
+ RISK: Unidirectional Traffic
new: [.....7] [ip6][..udp] [..............fe80::c50d:519f:96a4:e108][..546] -> [..............................ff02::1:2][..547]
detected: [.....7] [ip6][..udp] [..............fe80::c50d:519f:96a4:e108][..546] -> [..............................ff02::1:2][..547] [DHCPV6][Unknown][Network][Acceptable]
new: [.....8] [ip4][....2] [......10.0.2.15] -> [.....224.0.0.22]
@@ -59,8 +60,10 @@
update: [.....1] [ip6][icmp6] [.....................................::] -> [......................ff02::1:ffa4:e108] [ICMPV6][Unknown][Network][Acceptable]
new: [....26] [ip4][..udp] [......10.0.2.15][57619] -> [.......10.0.2.2][.5351]
detected: [....26] [ip4][..udp] [......10.0.2.15][57619] -> [.......10.0.2.2][.5351] [NAT-PMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....27] [ip4][..udp] [......10.0.2.15][57620] -> [.......10.0.2.2][.5351]
detected: [....27] [ip4][..udp] [......10.0.2.15][57620] -> [.......10.0.2.2][.5351] [NAT-PMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....28] [ip4][..tcp] [......10.0.2.15][50190] -> [..80.140.63.147][29545]
new: [....29] [ip4][..tcp] [......10.0.2.15][50191] -> [.207.38.163.228][.6778]
new: [....30] [ip4][..tcp] [......10.0.2.15][50192] -> [....45.65.87.24][16201]
@@ -69,6 +72,7 @@
new: [....33] [ip4][..tcp] [......10.0.2.15][50195] -> [162.157.143.201][29762]
new: [....34] [ip4][..udp] [......10.0.2.15][57621] -> [.......10.0.2.2][.5351]
detected: [....34] [ip4][..udp] [......10.0.2.15][57621] -> [.......10.0.2.2][.5351] [NAT-PMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....35] [ip4][..tcp] [......10.0.2.15][50196] -> [...218.250.6.59][12556]
new: [....36] [ip4][..tcp] [......10.0.2.15][50197] -> [..118.168.15.71][.3931]
new: [....37] [ip4][..tcp] [......10.0.2.15][50198] -> [..86.129.196.84][.9915]
@@ -77,6 +81,7 @@
new: [....40] [ip4][..tcp] [......10.0.2.15][50201] -> [..78.122.93.185][.6346]
new: [....41] [ip4][..udp] [......10.0.2.15][57622] -> [.......10.0.2.2][.5351]
detected: [....41] [ip4][..udp] [......10.0.2.15][57622] -> [.......10.0.2.2][.5351] [NAT-PMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
detected: [....38] [ip4][..tcp] [......10.0.2.15][50199] -> [...47.147.52.21][36728] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
detected: [....35] [ip4][..tcp] [......10.0.2.15][50196] -> [...218.250.6.59][12556] [Gnutella][Unknown][Download][Potentially Dangerous]
@@ -149,6 +154,7 @@
update: [....19] [ip4][..udp] [......10.0.2.15][63964] -> [239.255.255.250][.3702] [WSD][Unknown][Network][Acceptable]
update: [.....5] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable]
update: [.....6] [ip4][..udp] [.......10.0.2.2][...67] -> [......10.0.2.15][...68] [DHCP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....13] [ip4][..udp] [......10.0.2.15][..137] -> [.....10.0.2.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....20] [ip4][..udp] [......10.0.2.15][..138] -> [.....10.0.2.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
@@ -169,6 +175,7 @@
new: [....94] [ip4][..tcp] [......10.0.2.15][50249] -> [.86.208.180.181][45883]
new: [....95] [ip4][.icmp] [.......10.0.2.2] -> [......10.0.2.15]
detected: [....95] [ip4][.icmp] [.......10.0.2.2] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
detected: [....94] [ip4][..tcp] [......10.0.2.15][50249] -> [.86.208.180.181][45883] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
new: [....96] [ip4][..udp] [......10.0.2.15][28681] -> [.88.160.214.137][.6346]
@@ -353,64 +360,64 @@
new: [...245] [ip4][..tcp] [......10.0.2.15][50289] -> [.74.195.236.249][18557]
new: [...246] [ip4][..udp] [......10.0.2.15][28681] -> [...96.65.68.194][35481]
detected: [...246] [ip4][..udp] [......10.0.2.15][28681] -> [...96.65.68.194][35481] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...247] [ip4][..udp] [......10.0.2.15][28681] -> [..181.84.178.16][60262]
detected: [...247] [ip4][..udp] [......10.0.2.15][28681] -> [..181.84.178.16][60262] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...248] [ip4][..udp] [......10.0.2.15][28681] -> [..66.30.221.181][12012]
detected: [...248] [ip4][..udp] [......10.0.2.15][28681] -> [..66.30.221.181][12012] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...249] [ip4][..udp] [......10.0.2.15][28681] -> [..45.88.117.218][.6909]
detected: [...249] [ip4][..udp] [......10.0.2.15][28681] -> [..45.88.117.218][.6909] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...250] [ip4][..udp] [......10.0.2.15][28681] -> [..51.68.153.214][26253]
detected: [...250] [ip4][..udp] [......10.0.2.15][28681] -> [..51.68.153.214][26253] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...251] [ip4][..udp] [......10.0.2.15][28681] -> [.185.203.218.92][56962]
detected: [...251] [ip4][..udp] [......10.0.2.15][28681] -> [.185.203.218.92][56962] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...252] [ip4][..udp] [......10.0.2.15][28681] -> [..72.140.120.41][47739]
detected: [...252] [ip4][..udp] [......10.0.2.15][28681] -> [..72.140.120.41][47739] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...253] [ip4][..udp] [......10.0.2.15][28681] -> [.193.37.255.130][61616]
detected: [...253] [ip4][..udp] [......10.0.2.15][28681] -> [.193.37.255.130][61616] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...254] [ip4][..udp] [......10.0.2.15][28681] -> [..88.120.73.215][24562]
detected: [...254] [ip4][..udp] [......10.0.2.15][28681] -> [..88.120.73.215][24562] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...255] [ip4][..udp] [......10.0.2.15][28681] -> [..80.61.221.246][30577]
detected: [...255] [ip4][..udp] [......10.0.2.15][28681] -> [..80.61.221.246][30577] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...256] [ip4][..udp] [......10.0.2.15][28681] -> [.96.246.156.126][50297]
detected: [...256] [ip4][..udp] [......10.0.2.15][28681] -> [.96.246.156.126][50297] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...257] [ip4][..udp] [......10.0.2.15][28681] -> [.82.181.251.218][36368]
detected: [...257] [ip4][..udp] [......10.0.2.15][28681] -> [.82.181.251.218][36368] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...258] [ip4][..udp] [......10.0.2.15][28681] -> [...24.26.216.95][13889]
detected: [...258] [ip4][..udp] [......10.0.2.15][28681] -> [...24.26.216.95][13889] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...259] [ip4][..udp] [......10.0.2.15][28681] -> [103.232.107.100][43508]
detected: [...259] [ip4][..udp] [......10.0.2.15][28681] -> [103.232.107.100][43508] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...260] [ip4][..udp] [......10.0.2.15][28681] -> [.46.128.114.107][.6578]
detected: [...260] [ip4][..udp] [......10.0.2.15][28681] -> [.46.128.114.107][.6578] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...261] [ip4][..udp] [......10.0.2.15][28681] -> [..60.241.48.194][21301]
detected: [...261] [ip4][..udp] [......10.0.2.15][28681] -> [..60.241.48.194][21301] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...262] [ip4][..udp] [......10.0.2.15][28681] -> [....89.75.52.19][46010]
detected: [...262] [ip4][..udp] [......10.0.2.15][28681] -> [....89.75.52.19][46010] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...263] [ip4][..udp] [......10.0.2.15][28681] -> [..82.217.176.52][.7446]
detected: [...263] [ip4][..udp] [......10.0.2.15][28681] -> [..82.217.176.52][.7446] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...264] [ip4][..udp] [......10.0.2.15][28681] -> [...95.10.205.67][11603]
detected: [...264] [ip4][..udp] [......10.0.2.15][28681] -> [...95.10.205.67][11603] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...265] [ip4][..udp] [......10.0.2.15][28681] -> [203.220.198.244][.1194]
detected: [...265] [ip4][..udp] [......10.0.2.15][28681] -> [203.220.198.244][.1194] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...266] [ip4][..tcp] [......10.0.2.15][50290] -> [....73.89.249.8][50649]
new: [...267] [ip4][..tcp] [......10.0.2.15][50291] -> [..200.7.155.210][28365]
new: [...268] [ip4][..tcp] [......10.0.2.15][50292] -> [...95.10.205.67][11603]
@@ -482,7 +489,7 @@
detected: [...271] [ip4][..tcp] [......10.0.2.15][50295] -> [.38.142.119.234][49732] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
detection-update: [...290] [ip4][..tcp] [......10.0.2.15][50314] -> [...80.7.252.192][.6888] [TLS][Unknown][Web][Safe][]
- RISK: Known Proto on Non Std Port, Self-signed Cert, TLS Cert Expired, TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn
+ RISK: Known Proto on Non Std Port, Self-signed Cert, TLS Cert Expired, TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn, TLS Cert Validity Too Long
new: [...302] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][53489]
new: [...303] [ip4][..udp] [......10.0.2.15][28681] -> [.142.132.165.13][30566]
detected: [...284] [ip4][..tcp] [......10.0.2.15][50308] -> [.193.37.255.130][61616] [Gnutella][Unknown][Download][Potentially Dangerous]
@@ -517,67 +524,67 @@
new: [...306] [ip4][..udp] [......10.0.2.15][28681] -> [..41.249.63.200][22582]
new: [...307] [ip4][..udp] [......10.0.2.15][28681] -> [..72.201.208.57][38617]
detected: [...307] [ip4][..udp] [......10.0.2.15][28681] -> [..72.201.208.57][38617] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...308] [ip4][..udp] [......10.0.2.15][28681] -> [...81.205.91.45][40137]
detected: [...308] [ip4][..udp] [......10.0.2.15][28681] -> [...81.205.91.45][40137] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...309] [ip4][..udp] [......10.0.2.15][28681] -> [.47.220.186.140][27641]
detected: [...309] [ip4][..udp] [......10.0.2.15][28681] -> [.47.220.186.140][27641] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...310] [ip4][..udp] [......10.0.2.15][28681] -> [.118.240.69.199][.6348]
detected: [...310] [ip4][..udp] [......10.0.2.15][28681] -> [.118.240.69.199][.6348] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...311] [ip4][..udp] [......10.0.2.15][28681] -> [.109.132.188.98][62851]
detected: [...311] [ip4][..udp] [......10.0.2.15][28681] -> [.109.132.188.98][62851] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...312] [ip4][..udp] [......10.0.2.15][28681] -> [..24.167.201.53][47282]
detected: [...312] [ip4][..udp] [......10.0.2.15][28681] -> [..24.167.201.53][47282] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...313] [ip4][..udp] [......10.0.2.15][28681] -> [..176.99.176.20][.6346]
detected: [...313] [ip4][..udp] [......10.0.2.15][28681] -> [..176.99.176.20][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...314] [ip4][..udp] [......10.0.2.15][28681] -> [..71.237.202.91][16117]
detected: [...314] [ip4][..udp] [......10.0.2.15][28681] -> [..71.237.202.91][16117] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...315] [ip4][..udp] [......10.0.2.15][28681] -> [...92.217.84.16][20223]
detected: [...315] [ip4][..udp] [......10.0.2.15][28681] -> [...92.217.84.16][20223] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...316] [ip4][..udp] [......10.0.2.15][28681] -> [....94.54.66.82][63637]
detected: [...316] [ip4][..udp] [......10.0.2.15][28681] -> [....94.54.66.82][63637] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...317] [ip4][..udp] [......10.0.2.15][28681] -> [...96.236.205.7][34794]
detected: [...317] [ip4][..udp] [......10.0.2.15][28681] -> [...96.236.205.7][34794] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...318] [ip4][..udp] [......10.0.2.15][28681] -> [173.183.183.110][59920]
detected: [...318] [ip4][..udp] [......10.0.2.15][28681] -> [173.183.183.110][59920] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...319] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][55302]
detected: [...319] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][55302] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...320] [ip4][..udp] [......10.0.2.15][28681] -> [185.236.200.137][48142]
detected: [...320] [ip4][..udp] [......10.0.2.15][28681] -> [185.236.200.137][48142] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...321] [ip4][..udp] [......10.0.2.15][28681] -> [188.165.203.190][21995]
detected: [...321] [ip4][..udp] [......10.0.2.15][28681] -> [188.165.203.190][21995] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...322] [ip4][..udp] [......10.0.2.15][28681] -> [..45.88.117.219][.6909]
detected: [...322] [ip4][..udp] [......10.0.2.15][28681] -> [..45.88.117.219][.6909] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...323] [ip4][..udp] [......10.0.2.15][28681] -> [.96.246.156.126][56070]
detected: [...323] [ip4][..udp] [......10.0.2.15][28681] -> [.96.246.156.126][56070] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...324] [ip4][..udp] [......10.0.2.15][28681] -> [.73.250.179.237][20848]
detected: [...324] [ip4][..udp] [......10.0.2.15][28681] -> [.73.250.179.237][20848] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...325] [ip4][..udp] [......10.0.2.15][28681] -> [..83.160.143.48][37036]
detected: [...325] [ip4][..udp] [......10.0.2.15][28681] -> [..83.160.143.48][37036] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...326] [ip4][..udp] [......10.0.2.15][28681] -> [..100.1.231.138][56558]
detected: [...326] [ip4][..udp] [......10.0.2.15][28681] -> [..100.1.231.138][56558] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...327] [ip4][..udp] [......10.0.2.15][28681] -> [...84.28.53.225][44859]
detected: [...327] [ip4][..udp] [......10.0.2.15][28681] -> [...84.28.53.225][44859] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
analyse: [...239] [ip4][..tcp] [......10.0.2.15][50285] -> [..75.133.101.93][52367] [Gnutella][Unknown][Download][Potentially Dangerous]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 8.796| 0.767| 2.113| 4465727.373| 2.600]
@@ -610,20 +617,21 @@
[ENTROPIES...: 4.5,4.7,4.5,5.8,4.5,5.8,5.6,4.6,7.1,4.4,6.7,7.3,4.7,5.3,4.6,7.4,4.6,5.8,4.5,4.7,4.5,4.7,4.5,4.7,4.5,4.7,4.4,4.7,4.5,4.7,4.5,4.6]
new: [...328] [ip4][..udp] [......10.0.2.15][28681] -> [.203.220.105.27][19260]
detected: [...328] [ip4][..udp] [......10.0.2.15][28681] -> [.203.220.105.27][19260] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...329] [ip4][..udp] [......10.0.2.15][28681] -> [..92.117.249.98][.6815]
detected: [...329] [ip4][..udp] [......10.0.2.15][28681] -> [..92.117.249.98][.6815] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...330] [ip4][..udp] [......10.0.2.15][28681] -> [....82.64.44.11][.1352]
detected: [...330] [ip4][..udp] [......10.0.2.15][28681] -> [....82.64.44.11][.1352] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...331] [ip4][..udp] [......10.0.2.15][28681] -> [..45.31.152.112][26851]
detected: [...331] [ip4][..udp] [......10.0.2.15][28681] -> [..45.31.152.112][26851] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [....95] [ip4][.icmp] [.......10.0.2.2] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...332] [ip4][..udp] [......10.0.2.15][28681] -> [213.229.111.224][.4876]
detected: [...332] [ip4][..udp] [......10.0.2.15][28681] -> [213.229.111.224][.4876] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
detected: [...267] [ip4][..tcp] [......10.0.2.15][50291] -> [..200.7.155.210][28365] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
update: [....54] [ip4][..udp] [......10.0.2.15][57623] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
@@ -638,27 +646,17 @@
new: [...333] [ip4][..tcp] [......10.0.2.15][50327] -> [.69.118.162.229][46906]
new: [...334] [ip4][..tcp] [......10.0.2.15][50328] -> [..189.147.72.83][26108]
detected: [...333] [ip4][..tcp] [......10.0.2.15][50327] -> [.69.118.162.229][46906] [HTTP.Gnutella][Unknown][Download][Potentially Dangerous][69.118.162.229]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address, Unsafe Protocol
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unsafe Protocol
detected: [...334] [ip4][..tcp] [......10.0.2.15][50328] -> [..189.147.72.83][26108] [HTTP.Gnutella][Unknown][Download][Potentially Dangerous][189.147.72.83]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address, Unsafe Protocol
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unsafe Protocol
new: [...335] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][37058]
detection-update: [...333] [ip4][..tcp] [......10.0.2.15][50327] -> [.69.118.162.229][46906] [HTTP.Gnutella][Unknown][Media][Potentially Dangerous][69.118.162.229]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address, Unsafe Protocol
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unsafe Protocol
detection-update: [...334] [ip4][..tcp] [......10.0.2.15][50328] -> [..189.147.72.83][26108] [HTTP.Gnutella][Unknown][Media][Potentially Dangerous][189.147.72.83]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address, Unsafe Protocol
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unsafe Protocol
new: [...336] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][.6888]
detected: [...336] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][.6888] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- analyse: [...333] [ip4][..tcp] [......10.0.2.15][50327] -> [.69.118.162.229][46906] [HTTP.Gnutella][Unknown][Media][Potentially Dangerous]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 1.139| 0.307| 0.464| 214847.930| 3.300]
- [PKTLEN......: 40.000| 1500.000| 848.800| 665.400| 442787.600| 4.400]
- [BINS(c->s)..: 9,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 2,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,3,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,15,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,1,0,1,1,1,0,1,1,1,1,0,0,1,1,1,0,1,0,1,1,1,1,0,1,1,1]
- [IATS(ms)....: 109.0,109.5,0.8,1.6,1123.2,14.9,1138.7,0.5,4.1,0.0,4.4,993.4,0.2,0.0,0.3,993.8,0.1,988.9,0.2,0.0,989.1,4.8,4.8,1004.1,0.1,0.0,0.1,1004.3,1027.6,5.2,0.1]
- [PKTLENS.....: 52,44,40,573,40,834,1500,40,1500,1500,104,40,1500,1500,1500,898,40,40,1500,1500,1500,40,898,40,1500,1500,1500,898,40,1500,1500,1500]
- [ENTROPIES...: 4.6,4.6,4.6,5.9,4.5,6.0,0.6,4.8,0.3,0.3,2.4,4.7,0.6,0.5,0.6,5.6,4.7,4.8,7.8,7.8,7.7,4.6,7.7,4.7,7.7,7.8,7.8,7.7,4.8,7.8,7.7,7.8]
+ RISK: Unsafe Protocol, Unidirectional Traffic
analyse: [...276] [ip4][..tcp] [......10.0.2.15][50300] -> [..188.61.52.183][11852] [Gnutella][Unknown][Download][Potentially Dangerous]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 13.802| 1.828| 3.934| 15478358.540| 2.800]
@@ -677,6 +675,7 @@
update: [....19] [ip4][..udp] [......10.0.2.15][63964] -> [239.255.255.250][.3702] [WSD][Unknown][Network][Acceptable]
update: [.....5] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable]
update: [.....6] [ip4][..udp] [.......10.0.2.2][...67] -> [......10.0.2.15][...68] [DHCP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....13] [ip4][..udp] [......10.0.2.15][..137] -> [.....10.0.2.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....20] [ip4][..udp] [......10.0.2.15][..138] -> [.....10.0.2.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
@@ -732,57 +731,52 @@
update: [...138] [ip4][..udp] [......10.0.2.15][28681] -> [167.114.170.156][23844]
new: [...337] [ip4][..udp] [......10.0.2.15][28681] -> [..24.116.64.132][51227]
detected: [...337] [ip4][..udp] [......10.0.2.15][28681] -> [..24.116.64.132][51227] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...338] [ip4][..udp] [......10.0.2.15][28681] -> [221.198.205.196][20778]
detected: [...338] [ip4][..udp] [......10.0.2.15][28681] -> [221.198.205.196][20778] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...339] [ip4][..udp] [......10.0.2.15][28681] -> [..87.123.54.234][54130]
detected: [...339] [ip4][..udp] [......10.0.2.15][28681] -> [..87.123.54.234][54130] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...340] [ip4][..udp] [......10.0.2.15][28681] -> [.38.142.119.234][49732]
detected: [...340] [ip4][..udp] [......10.0.2.15][28681] -> [.38.142.119.234][49732] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...341] [ip4][..udp] [......10.0.2.15][28681] -> [..24.129.233.60][19990]
detected: [...341] [ip4][..udp] [......10.0.2.15][28681] -> [..24.129.233.60][19990] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...342] [ip4][..udp] [......10.0.2.15][28681] -> [..98.208.26.154][.4994]
detected: [...342] [ip4][..udp] [......10.0.2.15][28681] -> [..98.208.26.154][.4994] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...343] [ip4][..udp] [......10.0.2.15][28681] -> [..89.212.91.155][.5195]
detected: [...343] [ip4][..udp] [......10.0.2.15][28681] -> [..89.212.91.155][.5195] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...344] [ip4][..udp] [......10.0.2.15][28681] -> [.207.38.163.228][.6778]
detected: [...344] [ip4][..udp] [......10.0.2.15][28681] -> [.207.38.163.228][.6778] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- analyse: [...334] [ip4][..tcp] [......10.0.2.15][50328] -> [..189.147.72.83][26108] [HTTP.Gnutella][Unknown][Media][Potentially Dangerous]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 1.215| 0.581| 0.506| 255907.955| 4.200]
- [PKTLEN......: 40.000| 1500.000| 775.100| 623.900| 389219.000| 4.400]
- [BINS(c->s)..: 10,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 2,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,8,0,0,0,0,0,0,0,0,0,0,9,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,1,1,0,1,1,0,1,1,0,1,1,0,1,1,0,1,1,0,1,1,0,1,1,0,1,1]
- [IATS(ms)....: 193.6,195.3,1.8,3.7,1208.8,5.6,0.1,1214.8,993.3,0.1,993.5,1040.3,0.1,1040.5,1001.3,0.1,1001.5,998.2,0.1,998.2,1008.3,0.2,1008.5,1046.8,0.1,1046.9,1000.2,0.1,1000.3,1013.4,0.0]
- [PKTLENS.....: 52,44,40,578,40,846,1500,326,40,1500,1132,40,1500,1132,40,1500,1132,40,1500,1132,40,1500,1132,40,1500,1132,40,1500,1132,40,1500,1132]
- [ENTROPIES...: 4.6,4.8,4.7,5.9,4.6,5.9,7.8,7.3,4.7,7.8,7.8,4.8,7.8,7.8,4.8,7.9,7.8,4.7,7.9,7.8,4.8,7.8,7.8,4.7,7.9,7.8,4.8,7.9,7.8,4.8,7.8,7.8]
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...345] [ip4][..tcp] [......10.0.2.15][50330] -> [.69.118.162.229][46906]
detected: [...345] [ip4][..tcp] [......10.0.2.15][50330] -> [.69.118.162.229][46906] [HTTP.Gnutella][Unknown][Download][Potentially Dangerous][69.118.162.229]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address, Unsafe Protocol
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unsafe Protocol
new: [...346] [ip4][..udp] [......10.0.2.15][28681] -> [..76.226.85.105][.6346]
detected: [...346] [ip4][..udp] [......10.0.2.15][28681] -> [..76.226.85.105][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...347] [ip4][..udp] [......10.0.2.15][28681] -> [..176.10.169.10][12799]
detected: [...347] [ip4][..udp] [......10.0.2.15][28681] -> [..176.10.169.10][12799] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...348] [ip4][..udp] [......10.0.2.15][28681] -> [...84.197.97.94][.1360]
detected: [...348] [ip4][..udp] [......10.0.2.15][28681] -> [...84.197.97.94][.1360] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...349] [ip4][.icmp] [...84.197.97.94] -> [......10.0.2.15]
detected: [...349] [ip4][.icmp] [...84.197.97.94] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...350] [ip4][..udp] [......10.0.2.15][28681] -> [..99.250.253.99][11819]
detected: [...350] [ip4][..udp] [......10.0.2.15][28681] -> [..99.250.253.99][11819] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ new: [...351] [ip4][..udp] [......10.0.2.15][28681] -> [..187.37.87.189][.6346]
+ new: [...352] [ip4][..udp] [......10.0.2.15][28681] -> [.176.191.49.159][.6346]
idle: [.....4] [ip6][icmp6] [..............fe80::c50d:519f:96a4:e108] -> [................................ff02::1] [ICMPV6][Unknown][Network][Acceptable]
idle: [.....1] [ip6][icmp6] [.....................................::] -> [......................ff02::1:ffa4:e108] [ICMPV6][Unknown][Network][Acceptable]
+ update: [....95] [ip4][.icmp] [.......10.0.2.2] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...170] [ip4][..udp] [......10.0.2.15][28681] -> [....67.193.8.52][38584]
update: [...166] [ip4][..udp] [......10.0.2.15][28681] -> [..90.59.253.186][15555]
update: [...183] [ip4][..udp] [......10.0.2.15][28681] -> [..91.172.15.182][37829]
@@ -850,8 +844,6 @@
update: [...158] [ip4][..udp] [......10.0.2.15][28681] -> [.118.166.226.70][.6346]
update: [...204] [ip4][..udp] [......10.0.2.15][28681] -> [..84.126.240.32][45313]
update: [...202] [ip4][..udp] [......10.0.2.15][28681] -> [.176.134.139.39][.6346]
- new: [...351] [ip4][..udp] [......10.0.2.15][28681] -> [..187.37.87.189][.6346]
- new: [...352] [ip4][..udp] [......10.0.2.15][28681] -> [.176.191.49.159][.6346]
analyse: [....93] [ip4][..tcp] [......10.0.2.15][50248] -> [109.214.154.216][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.001| 22.685| 3.465| 6.256| 39132462.055| 3.300]
@@ -866,149 +858,168 @@
new: [...354] [ip4][..udp] [......10.0.2.15][28681] -> [.80.236.247.120][.1032]
new: [...355] [ip4][..udp] [......10.0.2.15][28681] -> [.181.118.53.212][29998]
detected: [...355] [ip4][..udp] [......10.0.2.15][28681] -> [.181.118.53.212][29998] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...356] [ip4][..udp] [......10.0.2.15][28681] -> [.63.228.175.169][.1936]
detected: [...356] [ip4][..udp] [......10.0.2.15][28681] -> [.63.228.175.169][.1936] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...357] [ip4][..udp] [......10.0.2.15][28681] -> [...98.35.85.238][32173]
detected: [...357] [ip4][..udp] [......10.0.2.15][28681] -> [...98.35.85.238][32173] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...358] [ip4][..udp] [......10.0.2.15][28681] -> [.47.224.174.174][.6346]
detected: [...358] [ip4][..udp] [......10.0.2.15][28681] -> [.47.224.174.174][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [.....3] [ip6][icmp6] [..............fe80::c50d:519f:96a4:e108] -> [...............................ff02::16] [ICMPV6][Unknown][Network][Acceptable]
idle: [.....2] [ip6][icmp6] [..............fe80::c50d:519f:96a4:e108] -> [................................ff02::2] [ICMPV6][Unknown][Network][Acceptable]
- update: [....95] [ip4][.icmp] [.......10.0.2.2] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
update: [...247] [ip4][..udp] [......10.0.2.15][28681] -> [..181.84.178.16][60262] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...307] [ip4][..udp] [......10.0.2.15][28681] -> [..72.201.208.57][38617] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...309] [ip4][..udp] [......10.0.2.15][28681] -> [.47.220.186.140][27641] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...254] [ip4][..udp] [......10.0.2.15][28681] -> [..88.120.73.215][24562] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...258] [ip4][..udp] [......10.0.2.15][28681] -> [...24.26.216.95][13889] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...315] [ip4][..udp] [......10.0.2.15][28681] -> [...92.217.84.16][20223] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [....21] [ip4][..udp] [......10.0.2.15][55708] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
update: [...305] [ip4][..udp] [......10.0.2.15][28681] -> [..88.168.175.31][.6346]
update: [...310] [ip4][..udp] [......10.0.2.15][28681] -> [.118.240.69.199][.6348] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...306] [ip4][..udp] [......10.0.2.15][28681] -> [..41.249.63.200][22582]
update: [...265] [ip4][..udp] [......10.0.2.15][28681] -> [203.220.198.244][.1194] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...304] [ip4][..udp] [......10.0.2.15][28681] -> [.193.32.126.214][59596]
update: [...318] [ip4][..udp] [......10.0.2.15][28681] -> [173.183.183.110][59920] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...242] [ip4][..udp] [......10.0.2.15][28681] -> [..75.133.101.93][52367]
update: [...260] [ip4][..udp] [......10.0.2.15][28681] -> [.46.128.114.107][.6578] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...311] [ip4][..udp] [......10.0.2.15][28681] -> [.109.132.188.98][62851] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [....23] [ip4][..udp] [......10.0.2.15][62539] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
update: [...308] [ip4][..udp] [......10.0.2.15][28681] -> [...81.205.91.45][40137] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...251] [ip4][..udp] [......10.0.2.15][28681] -> [.185.203.218.92][56962] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...259] [ip4][..udp] [......10.0.2.15][28681] -> [103.232.107.100][43508] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...300] [ip4][..udp] [......10.0.2.15][28681] -> [104.238.172.250][23548]
update: [...250] [ip4][..udp] [......10.0.2.15][28681] -> [..51.68.153.214][26253] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [....25] [ip4][..udp] [......10.0.2.15][50435] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
update: [...256] [ip4][..udp] [......10.0.2.15][28681] -> [.96.246.156.126][50297] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [....22] [ip6][..udp] [..............fe80::c50d:519f:96a4:e108][62539] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
update: [...249] [ip4][..udp] [......10.0.2.15][28681] -> [..45.88.117.218][.6909] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...257] [ip4][..udp] [......10.0.2.15][28681] -> [.82.181.251.218][36368] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [....24] [ip6][..udp] [..............fe80::c50d:519f:96a4:e108][50435] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
update: [...303] [ip4][..udp] [......10.0.2.15][28681] -> [.142.132.165.13][30566]
update: [...246] [ip4][..udp] [......10.0.2.15][28681] -> [...96.65.68.194][35481] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...301] [ip4][..udp] [......10.0.2.15][28681] -> [..188.61.52.183][11852]
update: [...314] [ip4][..udp] [......10.0.2.15][28681] -> [..71.237.202.91][16117] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...317] [ip4][..udp] [......10.0.2.15][28681] -> [...96.236.205.7][34794] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...261] [ip4][..udp] [......10.0.2.15][28681] -> [..60.241.48.194][21301] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...243] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][53258]
update: [...313] [ip4][..udp] [......10.0.2.15][28681] -> [..176.99.176.20][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...302] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][53489]
update: [...255] [ip4][..udp] [......10.0.2.15][28681] -> [..80.61.221.246][30577] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...248] [ip4][..udp] [......10.0.2.15][28681] -> [..66.30.221.181][12012] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...263] [ip4][..udp] [......10.0.2.15][28681] -> [..82.217.176.52][.7446] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...253] [ip4][..udp] [......10.0.2.15][28681] -> [.193.37.255.130][61616] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...252] [ip4][..udp] [......10.0.2.15][28681] -> [..72.140.120.41][47739] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...316] [ip4][..udp] [......10.0.2.15][28681] -> [....94.54.66.82][63637] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...262] [ip4][..udp] [......10.0.2.15][28681] -> [....89.75.52.19][46010] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...264] [ip4][..udp] [......10.0.2.15][28681] -> [...95.10.205.67][11603] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...312] [ip4][..udp] [......10.0.2.15][28681] -> [..24.167.201.53][47282] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...329] [ip4][..udp] [......10.0.2.15][28681] -> [..92.117.249.98][.6815] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...328] [ip4][..udp] [......10.0.2.15][28681] -> [.203.220.105.27][19260] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...331] [ip4][..udp] [......10.0.2.15][28681] -> [..45.31.152.112][26851] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...320] [ip4][..udp] [......10.0.2.15][28681] -> [185.236.200.137][48142] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...332] [ip4][..udp] [......10.0.2.15][28681] -> [213.229.111.224][.4876] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...325] [ip4][..udp] [......10.0.2.15][28681] -> [..83.160.143.48][37036] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...323] [ip4][..udp] [......10.0.2.15][28681] -> [.96.246.156.126][56070] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...322] [ip4][..udp] [......10.0.2.15][28681] -> [..45.88.117.219][.6909] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...327] [ip4][..udp] [......10.0.2.15][28681] -> [...84.28.53.225][44859] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...321] [ip4][..udp] [......10.0.2.15][28681] -> [188.165.203.190][21995] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...324] [ip4][..udp] [......10.0.2.15][28681] -> [.73.250.179.237][20848] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...319] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][55302] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...330] [ip4][..udp] [......10.0.2.15][28681] -> [....82.64.44.11][.1352] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...326] [ip4][..udp] [......10.0.2.15][28681] -> [..100.1.231.138][56558] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...359] [ip4][..udp] [......10.0.2.15][51685] -> [239.255.255.250][.1900]
detected: [...359] [ip4][..udp] [......10.0.2.15][51685] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
+ update: [....95] [ip4][.icmp] [.......10.0.2.2] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....54] [ip4][..udp] [......10.0.2.15][57623] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
+ update: [.....8] [ip4][....2] [......10.0.2.15] -> [.....224.0.0.22] [IGMP][Unknown][Network][Acceptable]
update: [...335] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][37058]
+ update: [...336] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][.6888] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...349] [ip4][.icmp] [...84.197.97.94] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....26] [ip4][..udp] [......10.0.2.15][57619] -> [.......10.0.2.2][.5351]
update: [....27] [ip4][..udp] [......10.0.2.15][57620] -> [.......10.0.2.2][.5351]
update: [....34] [ip4][..udp] [......10.0.2.15][57621] -> [.......10.0.2.2][.5351]
update: [....41] [ip4][..udp] [......10.0.2.15][57622] -> [.......10.0.2.2][.5351]
new: [...360] [ip4][..udp] [......10.0.2.15][28681] -> [..198.58.218.12][47912]
detected: [...360] [ip4][..udp] [......10.0.2.15][28681] -> [..198.58.218.12][47912] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...361] [ip4][..udp] [......10.0.2.15][28681] -> [..86.129.196.84][.9915]
detected: [...361] [ip4][..udp] [......10.0.2.15][28681] -> [..86.129.196.84][.9915] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...362] [ip4][..udp] [......10.0.2.15][28681] -> [190.192.210.182][.6754]
detected: [...362] [ip4][..udp] [......10.0.2.15][28681] -> [190.192.210.182][.6754] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...363] [ip4][..udp] [......10.0.2.15][28681] -> [...81.205.91.45][38297]
detected: [...363] [ip4][..udp] [......10.0.2.15][28681] -> [...81.205.91.45][38297] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [....95] [ip4][.icmp] [.......10.0.2.2] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ new: [...364] [ip4][..udp] [......10.0.2.15][28681] -> [194.163.180.126][10825]
+ detected: [...364] [ip4][..udp] [......10.0.2.15][28681] -> [194.163.180.126][10825] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ new: [...365] [ip4][..udp] [......10.0.2.15][28681] -> [..188.23.24.213][18561]
+ detected: [...365] [ip4][..udp] [......10.0.2.15][28681] -> [..188.23.24.213][18561] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ new: [...366] [ip4][..udp] [......10.0.2.15][28681] -> [....94.8.55.158][51140]
+ detected: [...366] [ip4][..udp] [......10.0.2.15][28681] -> [....94.8.55.158][51140] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ new: [...367] [ip4][..udp] [......10.0.2.15][28681] -> [.149.28.163.175][49956]
+ detected: [...367] [ip4][..udp] [......10.0.2.15][28681] -> [.149.28.163.175][49956] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ new: [...368] [ip4][..udp] [......10.0.2.15][28681] -> [...47.147.52.21][36728]
+ detected: [...368] [ip4][..udp] [......10.0.2.15][28681] -> [...47.147.52.21][36728] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...338] [ip4][..udp] [......10.0.2.15][28681] -> [221.198.205.196][20778] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...134] [ip4][..udp] [......10.0.2.15][28681] -> [...78.231.73.14][.6346]
update: [...128] [ip4][..udp] [......10.0.2.15][28681] -> [..77.141.219.27][37580]
update: [...114] [ip4][..udp] [......10.0.2.15][28681] -> [....86.23.75.69][.6346]
@@ -1016,12 +1027,14 @@
update: [....15] [ip4][..udp] [......10.0.2.15][63957] -> [239.255.255.250][.3702] [WSD][Unknown][Network][Acceptable]
update: [....19] [ip4][..udp] [......10.0.2.15][63964] -> [239.255.255.250][.3702] [WSD][Unknown][Network][Acceptable]
update: [...340] [ip4][..udp] [......10.0.2.15][28681] -> [.38.142.119.234][49732] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [.....5] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable]
update: [.....6] [ip4][..udp] [.......10.0.2.2][...67] -> [......10.0.2.15][...68] [DHCP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
+ update: [...350] [ip4][..udp] [......10.0.2.15][28681] -> [..99.250.253.99][11819] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...343] [ip4][..udp] [......10.0.2.15][28681] -> [..89.212.91.155][.5195] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [.....8] [ip4][....2] [......10.0.2.15] -> [.....224.0.0.22] [IGMP][Unknown][Network][Acceptable]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [....13] [ip4][..udp] [......10.0.2.15][..137] -> [.....10.0.2.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....20] [ip4][..udp] [......10.0.2.15][..138] -> [.....10.0.2.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
@@ -1029,7 +1042,7 @@
update: [....16] [ip4][..udp] [......10.0.2.15][63962] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
update: [...118] [ip4][..udp] [......10.0.2.15][28681] -> [...5.180.62.100][46385]
update: [...344] [ip4][..udp] [......10.0.2.15][28681] -> [.207.38.163.228][.6778] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...100] [ip4][..udp] [......10.0.2.15][28681] -> [220.133.122.217][23458]
update: [...117] [ip4][..udp] [......10.0.2.15][28681] -> [200.120.243.143][.6346]
update: [...115] [ip4][..udp] [......10.0.2.15][28681] -> [...154.3.42.104][11804]
@@ -1039,27 +1052,31 @@
update: [....18] [ip6][..udp] [..............fe80::c50d:519f:96a4:e108][63965] -> [................................ff02::c][.3702] [WSD][Unknown][Network][Acceptable]
update: [...131] [ip4][..udp] [......10.0.2.15][28681] -> [.86.225.140.186][.6346]
update: [...111] [ip4][..udp] [......10.0.2.15][28681] -> [..90.65.141.157][.6346]
- update: [...336] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][.6888] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
update: [...106] [ip4][..udp] [......10.0.2.15][28681] -> [..114.39.154.69][.4832]
update: [...139] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.226.142][.6346]
update: [...141] [ip4][..udp] [......10.0.2.15][28681] -> [..172.97.199.14][.6346]
+ update: [...348] [ip4][..udp] [......10.0.2.15][28681] -> [...84.197.97.94][.1360] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [.....9] [ip4][..udp] [......10.0.2.15][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable]
update: [...126] [ip4][..udp] [......10.0.2.15][28681] -> [..91.69.159.133][28000]
update: [....17] [ip6][..udp] [..............fe80::c50d:519f:96a4:e108][63960] -> [................................ff02::c][.1900] [SSDP][Unknown][System][Acceptable]
update: [...136] [ip4][..udp] [......10.0.2.15][28681] -> [.80.236.247.120][16047]
update: [....86] [ip4][..udp] [......10.0.2.15][28681] -> [..74.210.244.72][.6346]
+ update: [...346] [ip4][..udp] [......10.0.2.15][28681] -> [..76.226.85.105][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [....85] [ip4][..udp] [......10.0.2.15][28681] -> [..85.138.20.110][.6346]
update: [....10] [ip6][..udp] [..............fe80::c50d:519f:96a4:e108][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable]
update: [...135] [ip4][..udp] [......10.0.2.15][28681] -> [.193.250.99.158][.6346]
update: [...127] [ip4][..udp] [......10.0.2.15][28681] -> [.176.191.49.159][.1024]
update: [...342] [ip4][..udp] [......10.0.2.15][28681] -> [..98.208.26.154][.4994] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...112] [ip4][..udp] [......10.0.2.15][28681] -> [.36.239.213.146][21750]
update: [...125] [ip4][..udp] [......10.0.2.15][28681] -> [..83.92.178.182][57302]
update: [...337] [ip4][..udp] [......10.0.2.15][28681] -> [..24.116.64.132][51227] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...116] [ip4][..udp] [......10.0.2.15][28681] -> [.124.44.190.145][10170]
+ update: [...347] [ip4][..udp] [......10.0.2.15][28681] -> [..176.10.169.10][12799] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...133] [ip4][..udp] [......10.0.2.15][28681] -> [.91.175.220.161][15721]
update: [....99] [ip4][..udp] [......10.0.2.15][28681] -> [....114.38.9.82][24223]
update: [...124] [ip4][..udp] [......10.0.2.15][28681] -> [...170.254.19.6][24180]
@@ -1077,31 +1094,16 @@
update: [...108] [ip4][..udp] [......10.0.2.15][28681] -> [112.119.242.110][.7922]
update: [....12] [ip4][..udp] [......10.0.2.15][63717] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
update: [...339] [ip4][..udp] [......10.0.2.15][28681] -> [..87.123.54.234][54130] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...113] [ip4][..udp] [......10.0.2.15][28681] -> [105.101.132.146][57746]
update: [...132] [ip4][..udp] [......10.0.2.15][28681] -> [...79.86.173.45][.6346]
update: [...341] [ip4][..udp] [......10.0.2.15][28681] -> [..24.129.233.60][19990] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [....87] [ip4][..udp] [......10.0.2.15][28681] -> [..92.131.85.245][31743]
update: [....11] [ip6][..udp] [..............fe80::c50d:519f:96a4:e108][63717] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
update: [...110] [ip4][..udp] [......10.0.2.15][28681] -> [..195.132.75.56][56009]
update: [...105] [ip4][..udp] [......10.0.2.15][28681] -> [...219.85.11.85][10722]
update: [...138] [ip4][..udp] [......10.0.2.15][28681] -> [167.114.170.156][23844]
- new: [...364] [ip4][..udp] [......10.0.2.15][28681] -> [194.163.180.126][10825]
- detected: [...364] [ip4][..udp] [......10.0.2.15][28681] -> [194.163.180.126][10825] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- new: [...365] [ip4][..udp] [......10.0.2.15][28681] -> [..188.23.24.213][18561]
- detected: [...365] [ip4][..udp] [......10.0.2.15][28681] -> [..188.23.24.213][18561] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- new: [...366] [ip4][..udp] [......10.0.2.15][28681] -> [....94.8.55.158][51140]
- detected: [...366] [ip4][..udp] [......10.0.2.15][28681] -> [....94.8.55.158][51140] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- new: [...367] [ip4][..udp] [......10.0.2.15][28681] -> [.149.28.163.175][49956]
- detected: [...367] [ip4][..udp] [......10.0.2.15][28681] -> [.149.28.163.175][49956] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- new: [...368] [ip4][..udp] [......10.0.2.15][28681] -> [...47.147.52.21][36728]
- detected: [...368] [ip4][..udp] [......10.0.2.15][28681] -> [...47.147.52.21][36728] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
update: [...170] [ip4][..udp] [......10.0.2.15][28681] -> [....67.193.8.52][38584]
update: [...166] [ip4][..udp] [......10.0.2.15][28681] -> [..90.59.253.186][15555]
update: [...183] [ip4][..udp] [......10.0.2.15][28681] -> [..91.172.15.182][37829]
@@ -1113,8 +1115,6 @@
update: [...353] [ip4][..udp] [......10.0.2.15][28681] -> [195.181.151.217][25282]
update: [...220] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][.9239]
update: [...219] [ip4][..udp] [......10.0.2.15][28681] -> [...76.30.86.144][53821]
- update: [...350] [ip4][..udp] [......10.0.2.15][28681] -> [..99.250.253.99][11819] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
update: [...217] [ip4][..udp] [......10.0.2.15][28681] -> [.126.117.45.151][19323]
update: [...155] [ip4][..udp] [......10.0.2.15][28681] -> [.88.168.182.103][.6346]
update: [...198] [ip4][..udp] [......10.0.2.15][28681] -> [..58.182.171.50][15180]
@@ -1129,12 +1129,8 @@
update: [...187] [ip4][..udp] [......10.0.2.15][28681] -> [....92.88.92.56][21009]
update: [...190] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.195.227][.6346]
update: [...206] [ip4][..udp] [......10.0.2.15][28681] -> [213.166.132.204][11194]
- update: [...348] [ip4][..udp] [......10.0.2.15][28681] -> [...84.197.97.94][.1360] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
update: [...203] [ip4][..udp] [......10.0.2.15][28681] -> [.120.156.204.38][54832]
update: [...199] [ip4][..udp] [......10.0.2.15][28681] -> [..114.73.129.26][53585]
- update: [...346] [ip4][..udp] [......10.0.2.15][28681] -> [..76.226.85.105][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
update: [...207] [ip4][..udp] [......10.0.2.15][28681] -> [.81.242.191.215][.6346]
update: [...208] [ip4][..udp] [......10.0.2.15][28681] -> [..81.249.64.215][25058]
update: [...173] [ip4][..udp] [......10.0.2.15][28681] -> [..121.99.222.36][44988]
@@ -1152,8 +1148,6 @@
update: [...159] [ip4][..udp] [......10.0.2.15][28681] -> [176.163.231.160][.6346]
update: [...179] [ip4][..udp] [......10.0.2.15][28681] -> [.178.51.146.115][.6346]
update: [...186] [ip4][..udp] [......10.0.2.15][28681] -> [..91.182.44.202][30277]
- update: [...347] [ip4][..udp] [......10.0.2.15][28681] -> [..176.10.169.10][12799] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
update: [...213] [ip4][..udp] [......10.0.2.15][28681] -> [....5.180.62.37][.6346]
update: [...167] [ip4][..udp] [......10.0.2.15][28681] -> [..93.29.107.176][20363]
update: [...171] [ip4][..udp] [......10.0.2.15][28681] -> [196.217.132.111][25394]
@@ -1193,6 +1187,9 @@
[ENTROPIES...: 4.6,4.6,4.7,5.8,4.6,5.6,5.7,4.6,7.7,4.8,6.3,4.5,6.0,4.6,7.8,4.8,6.7,4.7,5.5,4.6,6.6,4.8,4.9,4.7,6.3,4.7,5.1,7.5,4.8,4.6,4.8,4.6]
end: [....35] [ip4][..tcp] [......10.0.2.15][50196] -> [...218.250.6.59][12556] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
+ idle: [.....5] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable]
+ idle: [.....6] [ip4][..udp] [.......10.0.2.2][...67] -> [......10.0.2.15][...68] [DHCP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
end: [....46] [ip4][..tcp] [......10.0.2.15][50206] -> [175.181.156.244][.8255] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
end: [....77] [ip4][..tcp] [......10.0.2.15][50236] -> [..93.29.135.209][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
@@ -1201,164 +1198,128 @@
RISK: Unsafe Protocol
end: [....67] [ip4][..tcp] [......10.0.2.15][50226] -> [116.241.162.162][15677] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
+ end: [...119] [ip4][..tcp] [......10.0.2.15][50250] -> [...27.94.154.53][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol
not-detected: [....42] [ip4][..tcp] [......10.0.2.15][50202] -> [.61.238.173.128][57648] [Unknown][Unknown][Unrated]
end: [....42] [ip4][..tcp] [......10.0.2.15][50202] -> [.61.238.173.128][57648]
end: [....36] [ip4][..tcp] [......10.0.2.15][50197] -> [..118.168.15.71][.3931] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
+ end: [...121] [ip4][..tcp] [......10.0.2.15][50252] -> [.123.202.31.113][19768] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol
not-detected: [....63] [ip4][..tcp] [......10.0.2.15][50222] -> [.119.14.143.237][.6523] [Unknown][Unknown][Unrated]
+ RISK: TCP Connection Issues
end: [....63] [ip4][..tcp] [......10.0.2.15][50222] -> [.119.14.143.237][.6523]
not-detected: [....61] [ip4][..tcp] [......10.0.2.15][50220] -> [.36.233.196.226][.3820] [Unknown][Unknown][Unrated]
+ RISK: TCP Connection Issues
end: [....61] [ip4][..tcp] [......10.0.2.15][50220] -> [.36.233.196.226][.3820]
end: [....43] [ip4][..tcp] [......10.0.2.15][50203] -> [..61.222.160.99][18994] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
not-detected: [....69] [ip4][..tcp] [......10.0.2.15][50228] -> [..111.241.31.96][14384] [Unknown][Unknown][Unrated]
+ RISK: TCP Connection Issues
end: [....69] [ip4][..tcp] [......10.0.2.15][50228] -> [..111.241.31.96][14384]
+ end: [...122] [ip4][..tcp] [......10.0.2.15][50253] -> [103.232.107.100][43508] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol
+ idle: [....12] [ip4][..udp] [......10.0.2.15][63717] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
end: [....38] [ip4][..tcp] [......10.0.2.15][50199] -> [...47.147.52.21][36728] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
end: [....51] [ip4][..tcp] [......10.0.2.15][50211] -> [...14.199.10.60][23458] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
end: [....76] [ip4][..tcp] [......10.0.2.15][50235] -> [...45.88.118.70][.6906] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
+ idle: [....11] [ip6][..udp] [..............fe80::c50d:519f:96a4:e108][63717] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
+ update: [....95] [ip4][.icmp] [.......10.0.2.2] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...247] [ip4][..udp] [......10.0.2.15][28681] -> [..181.84.178.16][60262] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...307] [ip4][..udp] [......10.0.2.15][28681] -> [..72.201.208.57][38617] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...309] [ip4][..udp] [......10.0.2.15][28681] -> [.47.220.186.140][27641] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...254] [ip4][..udp] [......10.0.2.15][28681] -> [..88.120.73.215][24562] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...258] [ip4][..udp] [......10.0.2.15][28681] -> [...24.26.216.95][13889] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...315] [ip4][..udp] [......10.0.2.15][28681] -> [...92.217.84.16][20223] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [....21] [ip4][..udp] [......10.0.2.15][55708] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
update: [...358] [ip4][..udp] [......10.0.2.15][28681] -> [.47.224.174.174][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...357] [ip4][..udp] [......10.0.2.15][28681] -> [...98.35.85.238][32173] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...305] [ip4][..udp] [......10.0.2.15][28681] -> [..88.168.175.31][.6346]
update: [...310] [ip4][..udp] [......10.0.2.15][28681] -> [.118.240.69.199][.6348] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...306] [ip4][..udp] [......10.0.2.15][28681] -> [..41.249.63.200][22582]
update: [...265] [ip4][..udp] [......10.0.2.15][28681] -> [203.220.198.244][.1194] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...304] [ip4][..udp] [......10.0.2.15][28681] -> [.193.32.126.214][59596]
update: [...318] [ip4][..udp] [......10.0.2.15][28681] -> [173.183.183.110][59920] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...242] [ip4][..udp] [......10.0.2.15][28681] -> [..75.133.101.93][52367]
update: [...260] [ip4][..udp] [......10.0.2.15][28681] -> [.46.128.114.107][.6578] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...311] [ip4][..udp] [......10.0.2.15][28681] -> [.109.132.188.98][62851] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [....23] [ip4][..udp] [......10.0.2.15][62539] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
update: [...308] [ip4][..udp] [......10.0.2.15][28681] -> [...81.205.91.45][40137] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...251] [ip4][..udp] [......10.0.2.15][28681] -> [.185.203.218.92][56962] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...259] [ip4][..udp] [......10.0.2.15][28681] -> [103.232.107.100][43508] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...300] [ip4][..udp] [......10.0.2.15][28681] -> [104.238.172.250][23548]
update: [...250] [ip4][..udp] [......10.0.2.15][28681] -> [..51.68.153.214][26253] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [....25] [ip4][..udp] [......10.0.2.15][50435] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
update: [...256] [ip4][..udp] [......10.0.2.15][28681] -> [.96.246.156.126][50297] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [....22] [ip6][..udp] [..............fe80::c50d:519f:96a4:e108][62539] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
update: [...249] [ip4][..udp] [......10.0.2.15][28681] -> [..45.88.117.218][.6909] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...257] [ip4][..udp] [......10.0.2.15][28681] -> [.82.181.251.218][36368] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [....24] [ip6][..udp] [..............fe80::c50d:519f:96a4:e108][50435] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
update: [...356] [ip4][..udp] [......10.0.2.15][28681] -> [.63.228.175.169][.1936] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...355] [ip4][..udp] [......10.0.2.15][28681] -> [.181.118.53.212][29998] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...303] [ip4][..udp] [......10.0.2.15][28681] -> [.142.132.165.13][30566]
update: [...246] [ip4][..udp] [......10.0.2.15][28681] -> [...96.65.68.194][35481] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...301] [ip4][..udp] [......10.0.2.15][28681] -> [..188.61.52.183][11852]
update: [...314] [ip4][..udp] [......10.0.2.15][28681] -> [..71.237.202.91][16117] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...317] [ip4][..udp] [......10.0.2.15][28681] -> [...96.236.205.7][34794] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...261] [ip4][..udp] [......10.0.2.15][28681] -> [..60.241.48.194][21301] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...243] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][53258]
update: [...313] [ip4][..udp] [......10.0.2.15][28681] -> [..176.99.176.20][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...302] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][53489]
update: [...255] [ip4][..udp] [......10.0.2.15][28681] -> [..80.61.221.246][30577] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...248] [ip4][..udp] [......10.0.2.15][28681] -> [..66.30.221.181][12012] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...349] [ip4][.icmp] [...84.197.97.94] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...263] [ip4][..udp] [......10.0.2.15][28681] -> [..82.217.176.52][.7446] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...253] [ip4][..udp] [......10.0.2.15][28681] -> [.193.37.255.130][61616] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...252] [ip4][..udp] [......10.0.2.15][28681] -> [..72.140.120.41][47739] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...316] [ip4][..udp] [......10.0.2.15][28681] -> [....94.54.66.82][63637] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...262] [ip4][..udp] [......10.0.2.15][28681] -> [....89.75.52.19][46010] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...264] [ip4][..udp] [......10.0.2.15][28681] -> [...95.10.205.67][11603] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...312] [ip4][..udp] [......10.0.2.15][28681] -> [..24.167.201.53][47282] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- idle: [....15] [ip4][..udp] [......10.0.2.15][63957] -> [239.255.255.250][.3702] [WSD][Unknown][Network][Acceptable]
- idle: [.....5] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable]
- idle: [.....6] [ip4][..udp] [.......10.0.2.2][...67] -> [......10.0.2.15][...68] [DHCP][Unknown][Network][Acceptable]
- not-detected: [...143] [ip4][..tcp] [......10.0.2.15][50256] -> [.36.233.201.161][.2886] [Unknown][Unknown][Unrated]
- end: [...143] [ip4][..tcp] [......10.0.2.15][50256] -> [.36.233.201.161][.2886]
- end: [...149] [ip4][..tcp] [......10.0.2.15][50262] -> [..80.61.221.246][30577] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- idle: [....14] [ip6][..udp] [..............fe80::c50d:519f:96a4:e108][63958] -> [................................ff02::c][.3702] [WSD][Unknown][Network][Acceptable]
- idle: [....17] [ip6][..udp] [..............fe80::c50d:519f:96a4:e108][63960] -> [................................ff02::c][.1900] [SSDP][Unknown][System][Acceptable]
- end: [...119] [ip4][..tcp] [......10.0.2.15][50250] -> [...27.94.154.53][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- end: [...121] [ip4][..tcp] [......10.0.2.15][50252] -> [.123.202.31.113][19768] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- not-detected: [...153] [ip4][..tcp] [......10.0.2.15][50266] -> [.219.70.175.103][.4315] [Unknown][Unknown][Unrated]
- end: [...153] [ip4][..tcp] [......10.0.2.15][50266] -> [.219.70.175.103][.4315]
- end: [....37] [ip4][..tcp] [......10.0.2.15][50198] -> [..86.129.196.84][.9915] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- end: [...146] [ip4][..tcp] [......10.0.2.15][50259] -> [.183.179.90.112][.9852] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- end: [...122] [ip4][..tcp] [......10.0.2.15][50253] -> [103.232.107.100][43508] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- idle: [....12] [ip4][..udp] [......10.0.2.15][63717] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
- idle: [....11] [ip6][..udp] [..............fe80::c50d:519f:96a4:e108][63717] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
- update: [...329] [ip4][..udp] [......10.0.2.15][28681] -> [..92.117.249.98][.6815] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...328] [ip4][..udp] [......10.0.2.15][28681] -> [.203.220.105.27][19260] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...331] [ip4][..udp] [......10.0.2.15][28681] -> [..45.31.152.112][26851] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...320] [ip4][..udp] [......10.0.2.15][28681] -> [185.236.200.137][48142] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...332] [ip4][..udp] [......10.0.2.15][28681] -> [213.229.111.224][.4876] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...325] [ip4][..udp] [......10.0.2.15][28681] -> [..83.160.143.48][37036] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...323] [ip4][..udp] [......10.0.2.15][28681] -> [.96.246.156.126][56070] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...322] [ip4][..udp] [......10.0.2.15][28681] -> [..45.88.117.219][.6909] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...327] [ip4][..udp] [......10.0.2.15][28681] -> [...84.28.53.225][44859] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...321] [ip4][..udp] [......10.0.2.15][28681] -> [188.165.203.190][21995] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...324] [ip4][..udp] [......10.0.2.15][28681] -> [.73.250.179.237][20848] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...319] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][55302] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...330] [ip4][..udp] [......10.0.2.15][28681] -> [....82.64.44.11][.1352] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...326] [ip4][..udp] [......10.0.2.15][28681] -> [..100.1.231.138][56558] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
end: [...293] [ip4][..tcp] [......10.0.2.15][50317] -> [188.165.203.190][21995] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
+ idle: [....15] [ip4][..udp] [......10.0.2.15][63957] -> [239.255.255.250][.3702] [WSD][Unknown][Network][Acceptable]
idle: [....19] [ip4][..udp] [......10.0.2.15][63964] -> [239.255.255.250][.3702] [WSD][Unknown][Network][Acceptable]
end: [...292] [ip4][..tcp] [......10.0.2.15][50316] -> [.142.132.165.13][30566] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
@@ -1370,17 +1331,24 @@
RISK: Unsafe Protocol
end: [...280] [ip4][..tcp] [......10.0.2.15][50304] -> [..85.168.34.105][39908] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
+ not-detected: [...143] [ip4][..tcp] [......10.0.2.15][50256] -> [.36.233.201.161][.2886] [Unknown][Unknown][Unrated]
+ RISK: TCP Connection Issues
+ end: [...143] [ip4][..tcp] [......10.0.2.15][50256] -> [.36.233.201.161][.2886]
end: [...285] [ip4][..tcp] [......10.0.2.15][50309] -> [..60.241.48.194][21301] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
end: [...283] [ip4][..tcp] [......10.0.2.15][50307] -> [..176.99.176.20][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
+ end: [...149] [ip4][..tcp] [......10.0.2.15][50262] -> [..80.61.221.246][30577] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol
end: [...295] [ip4][..tcp] [......10.0.2.15][50319] -> [.185.187.74.173][53489] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
end: [...298] [ip4][..tcp] [......10.0.2.15][50322] -> [..164.132.10.25][55302] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
idle: [....16] [ip4][..udp] [......10.0.2.15][63962] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
not-detected: [...237] [ip4][..tcp] [......10.0.2.15][50283] -> [..51.68.153.214][35004] [Unknown][Unknown][Unrated]
+ RISK: TCP Connection Issues
end: [...237] [ip4][..tcp] [......10.0.2.15][50283] -> [..51.68.153.214][35004]
+ idle: [....14] [ip6][..udp] [..............fe80::c50d:519f:96a4:e108][63958] -> [................................ff02::c][.3702] [WSD][Unknown][Network][Acceptable]
idle: [....18] [ip6][..udp] [..............fe80::c50d:519f:96a4:e108][63965] -> [................................ff02::c][.3702] [WSD][Unknown][Network][Acceptable]
end: [...269] [ip4][..tcp] [......10.0.2.15][50293] -> [..97.83.183.148][.8890] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
@@ -1388,6 +1356,14 @@
RISK: Unsafe Protocol
end: [...284] [ip4][..tcp] [......10.0.2.15][50308] -> [.193.37.255.130][61616] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
+ idle: [....17] [ip6][..udp] [..............fe80::c50d:519f:96a4:e108][63960] -> [................................ff02::c][.1900] [SSDP][Unknown][System][Acceptable]
+ not-detected: [...153] [ip4][..tcp] [......10.0.2.15][50266] -> [.219.70.175.103][.4315] [Unknown][Unknown][Unrated]
+ RISK: TCP Connection Issues
+ end: [...153] [ip4][..tcp] [......10.0.2.15][50266] -> [.219.70.175.103][.4315]
+ end: [....37] [ip4][..tcp] [......10.0.2.15][50198] -> [..86.129.196.84][.9915] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol
+ end: [...287] [ip4][..tcp] [......10.0.2.15][50311] -> [.149.28.163.175][49956] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol
end: [...291] [ip4][..tcp] [......10.0.2.15][50315] -> [..45.31.152.112][26851] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
end: [...279] [ip4][..tcp] [......10.0.2.15][50303] -> [..88.120.73.215][24562] [Gnutella][Unknown][Download][Potentially Dangerous]
@@ -1406,6 +1382,8 @@
RISK: Unsafe Protocol
end: [...274] [ip4][..tcp] [......10.0.2.15][50298] -> [.46.128.114.107][.6578] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
+ end: [...146] [ip4][..tcp] [......10.0.2.15][50259] -> [.183.179.90.112][.9852] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol
end: [...290] [ip4][..tcp] [......10.0.2.15][50314] -> [...80.7.252.192][.6888]
end: [...222] [ip4][..tcp] [......10.0.2.15][50268] -> [.210.209.249.84][24751] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
@@ -1413,16 +1391,52 @@
RISK: Unsafe Protocol
end: [...299] [ip4][..tcp] [......10.0.2.15][50323] -> [..51.68.153.214][26253] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
- update: [....95] [ip4][.icmp] [.......10.0.2.2] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
+ update: [...329] [ip4][..udp] [......10.0.2.15][28681] -> [..92.117.249.98][.6815] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...328] [ip4][..udp] [......10.0.2.15][28681] -> [.203.220.105.27][19260] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...331] [ip4][..udp] [......10.0.2.15][28681] -> [..45.31.152.112][26851] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...361] [ip4][..udp] [......10.0.2.15][28681] -> [..86.129.196.84][.9915] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [....54] [ip4][..udp] [......10.0.2.15][57623] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
+ update: [...320] [ip4][..udp] [......10.0.2.15][28681] -> [185.236.200.137][48142] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...335] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][37058]
+ update: [...332] [ip4][..udp] [......10.0.2.15][28681] -> [213.229.111.224][.4876] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...325] [ip4][..udp] [......10.0.2.15][28681] -> [..83.160.143.48][37036] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...359] [ip4][..udp] [......10.0.2.15][51685] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
+ update: [...323] [ip4][..udp] [......10.0.2.15][28681] -> [.96.246.156.126][56070] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...336] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][.6888] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...362] [ip4][..udp] [......10.0.2.15][28681] -> [190.192.210.182][.6754] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...322] [ip4][..udp] [......10.0.2.15][28681] -> [..45.88.117.219][.6909] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...327] [ip4][..udp] [......10.0.2.15][28681] -> [...84.28.53.225][44859] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...321] [ip4][..udp] [......10.0.2.15][28681] -> [188.165.203.190][21995] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...324] [ip4][..udp] [......10.0.2.15][28681] -> [.73.250.179.237][20848] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...319] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][55302] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...330] [ip4][..udp] [......10.0.2.15][28681] -> [....82.64.44.11][.1352] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...360] [ip4][..udp] [......10.0.2.15][28681] -> [..198.58.218.12][47912] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [....26] [ip4][..udp] [......10.0.2.15][57619] -> [.......10.0.2.2][.5351]
update: [....27] [ip4][..udp] [......10.0.2.15][57620] -> [.......10.0.2.2][.5351]
update: [....34] [ip4][..udp] [......10.0.2.15][57621] -> [.......10.0.2.2][.5351]
update: [....41] [ip4][..udp] [......10.0.2.15][57622] -> [.......10.0.2.2][.5351]
+ update: [...326] [ip4][..udp] [......10.0.2.15][28681] -> [..100.1.231.138][56558] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...369] [ip4][..udp] [......10.0.2.15][28681] -> [.89.187.171.240][.6346]
idle: [....95] [ip4][.icmp] [.......10.0.2.2] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....13] [ip4][..udp] [......10.0.2.15][..137] -> [.....10.0.2.255][..137] [NetBIOS][Unknown][System][Acceptable]
idle: [....23] [ip4][..udp] [......10.0.2.15][62539] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
idle: [....25] [ip4][..udp] [......10.0.2.15][50435] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
@@ -1430,34 +1444,32 @@
end: [...277] [ip4][..tcp] [......10.0.2.15][50301] -> [..87.123.54.234][54130] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
idle: [....24] [ip6][..udp] [..............fe80::c50d:519f:96a4:e108][50435] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
- end: [...287] [ip4][..tcp] [......10.0.2.15][50311] -> [.149.28.163.175][49956] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
end: [...282] [ip4][..tcp] [......10.0.2.15][50306] -> [.220.238.145.82][33527] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
end: [...278] [ip4][..tcp] [......10.0.2.15][50302] -> [....75.64.6.175][.4743] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
update: [...338] [ip4][..udp] [......10.0.2.15][28681] -> [221.198.205.196][20778] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...361] [ip4][..udp] [......10.0.2.15][28681] -> [..86.129.196.84][.9915] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...134] [ip4][..udp] [......10.0.2.15][28681] -> [...78.231.73.14][.6346]
update: [...128] [ip4][..udp] [......10.0.2.15][28681] -> [..77.141.219.27][37580]
update: [...114] [ip4][..udp] [......10.0.2.15][28681] -> [....86.23.75.69][.6346]
update: [...366] [ip4][..udp] [......10.0.2.15][28681] -> [....94.8.55.158][51140] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [....88] [ip4][..udp] [......10.0.2.15][28681] -> [.....81.50.24.2][17874]
update: [...365] [ip4][..udp] [......10.0.2.15][28681] -> [..188.23.24.213][18561] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...340] [ip4][..udp] [......10.0.2.15][28681] -> [.38.142.119.234][49732] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...350] [ip4][..udp] [......10.0.2.15][28681] -> [..99.250.253.99][11819] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...343] [ip4][..udp] [......10.0.2.15][28681] -> [..89.212.91.155][.5195] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [....20] [ip4][..udp] [......10.0.2.15][..138] -> [.....10.0.2.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
update: [....96] [ip4][..udp] [......10.0.2.15][28681] -> [.88.160.214.137][.6346]
update: [...118] [ip4][..udp] [......10.0.2.15][28681] -> [...5.180.62.100][46385]
update: [...344] [ip4][..udp] [......10.0.2.15][28681] -> [.207.38.163.228][.6778] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...100] [ip4][..udp] [......10.0.2.15][28681] -> [220.133.122.217][23458]
update: [...117] [ip4][..udp] [......10.0.2.15][28681] -> [200.120.243.143][.6346]
update: [...115] [ip4][..udp] [......10.0.2.15][28681] -> [...154.3.42.104][11804]
@@ -1465,62 +1477,61 @@
update: [....98] [ip4][..udp] [......10.0.2.15][28681] -> [.203.222.14.170][23332]
update: [...131] [ip4][..udp] [......10.0.2.15][28681] -> [.86.225.140.186][.6346]
update: [...111] [ip4][..udp] [......10.0.2.15][28681] -> [..90.65.141.157][.6346]
- update: [...336] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][.6888] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
update: [...106] [ip4][..udp] [......10.0.2.15][28681] -> [..114.39.154.69][.4832]
update: [...139] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.226.142][.6346]
update: [...141] [ip4][..udp] [......10.0.2.15][28681] -> [..172.97.199.14][.6346]
+ update: [...348] [ip4][..udp] [......10.0.2.15][28681] -> [...84.197.97.94][.1360] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...368] [ip4][..udp] [......10.0.2.15][28681] -> [...47.147.52.21][36728] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [.....9] [ip4][..udp] [......10.0.2.15][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable]
update: [...126] [ip4][..udp] [......10.0.2.15][28681] -> [..91.69.159.133][28000]
update: [...363] [ip4][..udp] [......10.0.2.15][28681] -> [...81.205.91.45][38297] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...136] [ip4][..udp] [......10.0.2.15][28681] -> [.80.236.247.120][16047]
update: [....86] [ip4][..udp] [......10.0.2.15][28681] -> [..74.210.244.72][.6346]
+ update: [...346] [ip4][..udp] [......10.0.2.15][28681] -> [..76.226.85.105][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [....85] [ip4][..udp] [......10.0.2.15][28681] -> [..85.138.20.110][.6346]
- update: [...362] [ip4][..udp] [......10.0.2.15][28681] -> [190.192.210.182][.6754] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
update: [....10] [ip6][..udp] [..............fe80::c50d:519f:96a4:e108][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable]
update: [...135] [ip4][..udp] [......10.0.2.15][28681] -> [.193.250.99.158][.6346]
update: [...127] [ip4][..udp] [......10.0.2.15][28681] -> [.176.191.49.159][.1024]
update: [...342] [ip4][..udp] [......10.0.2.15][28681] -> [..98.208.26.154][.4994] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...112] [ip4][..udp] [......10.0.2.15][28681] -> [.36.239.213.146][21750]
update: [...125] [ip4][..udp] [......10.0.2.15][28681] -> [..83.92.178.182][57302]
update: [...337] [ip4][..udp] [......10.0.2.15][28681] -> [..24.116.64.132][51227] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...116] [ip4][..udp] [......10.0.2.15][28681] -> [.124.44.190.145][10170]
+ update: [...347] [ip4][..udp] [......10.0.2.15][28681] -> [..176.10.169.10][12799] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...133] [ip4][..udp] [......10.0.2.15][28681] -> [.91.175.220.161][15721]
update: [....99] [ip4][..udp] [......10.0.2.15][28681] -> [....114.38.9.82][24223]
update: [...124] [ip4][..udp] [......10.0.2.15][28681] -> [...170.254.19.6][24180]
- update: [...349] [ip4][.icmp] [...84.197.97.94] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
update: [...130] [ip4][..udp] [......10.0.2.15][28681] -> [..119.224.95.97][46356]
update: [...107] [ip4][..udp] [......10.0.2.15][28681] -> [..202.151.63.59][.7624]
update: [...129] [ip4][..udp] [......10.0.2.15][28681] -> [.176.138.50.179][29411]
update: [...103] [ip4][..udp] [......10.0.2.15][28681] -> [.220.134.167.82][.5820]
update: [....97] [ip4][..udp] [......10.0.2.15][28681] -> [..24.78.134.188][49046]
update: [...104] [ip4][..udp] [......10.0.2.15][28681] -> [..42.98.115.128][23458]
- update: [...360] [ip4][..udp] [......10.0.2.15][28681] -> [..198.58.218.12][47912] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
update: [.....7] [ip6][..udp] [..............fe80::c50d:519f:96a4:e108][..546] -> [..............................ff02::1:2][..547] [DHCPV6][Unknown][Network][Acceptable]
update: [...364] [ip4][..udp] [......10.0.2.15][28681] -> [194.163.180.126][10825] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...137] [ip4][..udp] [......10.0.2.15][28681] -> [...82.65.70.197][21693]
update: [...109] [ip4][..udp] [......10.0.2.15][28681] -> [...88.169.2.153][52414]
update: [...140] [ip4][..udp] [......10.0.2.15][28681] -> [.77.197.111.186][.6346]
update: [...102] [ip4][..udp] [......10.0.2.15][28681] -> [.218.164.39.233][20855]
update: [...108] [ip4][..udp] [......10.0.2.15][28681] -> [112.119.242.110][.7922]
update: [...339] [ip4][..udp] [......10.0.2.15][28681] -> [..87.123.54.234][54130] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...113] [ip4][..udp] [......10.0.2.15][28681] -> [105.101.132.146][57746]
update: [...132] [ip4][..udp] [......10.0.2.15][28681] -> [...79.86.173.45][.6346]
update: [...341] [ip4][..udp] [......10.0.2.15][28681] -> [..24.129.233.60][19990] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [....87] [ip4][..udp] [......10.0.2.15][28681] -> [..92.131.85.245][31743]
update: [...110] [ip4][..udp] [......10.0.2.15][28681] -> [..195.132.75.56][56009]
update: [...367] [ip4][..udp] [......10.0.2.15][28681] -> [.149.28.163.175][49956] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...105] [ip4][..udp] [......10.0.2.15][28681] -> [...219.85.11.85][10722]
update: [...138] [ip4][..udp] [......10.0.2.15][28681] -> [167.114.170.156][23844]
new: [...370] [ip4][..udp] [......10.0.2.15][28681] -> [..91.172.56.198][11984]
@@ -1530,6 +1541,8 @@
new: [...374] [ip4][..udp] [......10.0.2.15][28681] -> [....62.35.190.5][18604]
idle: [....21] [ip4][..udp] [......10.0.2.15][55708] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [.....9] [ip4][..udp] [......10.0.2.15][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable]
+ end: [...267] [ip4][..tcp] [......10.0.2.15][50291] -> [..200.7.155.210][28365] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol
idle: [....10] [ip6][..udp] [..............fe80::c50d:519f:96a4:e108][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable]
update: [...170] [ip4][..udp] [......10.0.2.15][28681] -> [....67.193.8.52][38584]
update: [...166] [ip4][..udp] [......10.0.2.15][28681] -> [..90.59.253.186][15555]
@@ -1542,8 +1555,6 @@
update: [...353] [ip4][..udp] [......10.0.2.15][28681] -> [195.181.151.217][25282]
update: [...220] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][.9239]
update: [...219] [ip4][..udp] [......10.0.2.15][28681] -> [...76.30.86.144][53821]
- update: [...350] [ip4][..udp] [......10.0.2.15][28681] -> [..99.250.253.99][11819] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
update: [...217] [ip4][..udp] [......10.0.2.15][28681] -> [.126.117.45.151][19323]
update: [...155] [ip4][..udp] [......10.0.2.15][28681] -> [.88.168.182.103][.6346]
update: [...198] [ip4][..udp] [......10.0.2.15][28681] -> [..58.182.171.50][15180]
@@ -1558,12 +1569,8 @@
update: [...187] [ip4][..udp] [......10.0.2.15][28681] -> [....92.88.92.56][21009]
update: [...190] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.195.227][.6346]
update: [...206] [ip4][..udp] [......10.0.2.15][28681] -> [213.166.132.204][11194]
- update: [...348] [ip4][..udp] [......10.0.2.15][28681] -> [...84.197.97.94][.1360] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
update: [...203] [ip4][..udp] [......10.0.2.15][28681] -> [.120.156.204.38][54832]
update: [...199] [ip4][..udp] [......10.0.2.15][28681] -> [..114.73.129.26][53585]
- update: [...346] [ip4][..udp] [......10.0.2.15][28681] -> [..76.226.85.105][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
update: [...207] [ip4][..udp] [......10.0.2.15][28681] -> [.81.242.191.215][.6346]
update: [...208] [ip4][..udp] [......10.0.2.15][28681] -> [..81.249.64.215][25058]
update: [...173] [ip4][..udp] [......10.0.2.15][28681] -> [..121.99.222.36][44988]
@@ -1581,14 +1588,14 @@
update: [...159] [ip4][..udp] [......10.0.2.15][28681] -> [176.163.231.160][.6346]
update: [...179] [ip4][..udp] [......10.0.2.15][28681] -> [.178.51.146.115][.6346]
update: [...186] [ip4][..udp] [......10.0.2.15][28681] -> [..91.182.44.202][30277]
- update: [...347] [ip4][..udp] [......10.0.2.15][28681] -> [..176.10.169.10][12799] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
update: [...213] [ip4][..udp] [......10.0.2.15][28681] -> [....5.180.62.37][.6346]
update: [...167] [ip4][..udp] [......10.0.2.15][28681] -> [..93.29.107.176][20363]
update: [...171] [ip4][..udp] [......10.0.2.15][28681] -> [196.217.132.111][25394]
update: [...160] [ip4][..udp] [......10.0.2.15][28681] -> [...83.150.49.35][32448]
update: [...174] [ip4][..udp] [......10.0.2.15][28681] -> [..196.74.159.56][29271]
update: [...185] [ip4][..udp] [......10.0.2.15][28681] -> [.109.132.196.58][.6346]
+ update: [...349] [ip4][.icmp] [...84.197.97.94] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...165] [ip4][..udp] [......10.0.2.15][28681] -> [...86.75.43.182][43502]
update: [...161] [ip4][..udp] [......10.0.2.15][28681] -> [..213.120.26.86][29946]
update: [...188] [ip4][..udp] [......10.0.2.15][28681] -> [..83.134.107.32][38836]
@@ -1610,117 +1617,116 @@
update: [...158] [ip4][..udp] [......10.0.2.15][28681] -> [.118.166.226.70][.6346]
update: [...204] [ip4][..udp] [......10.0.2.15][28681] -> [..84.126.240.32][45313]
update: [...202] [ip4][..udp] [......10.0.2.15][28681] -> [.176.134.139.39][.6346]
- end: [...267] [ip4][..tcp] [......10.0.2.15][50291] -> [..200.7.155.210][28365] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ new: [...375] [ip4][..udp] [......10.0.2.15][28681] -> [..73.182.136.42][27873]
+ new: [...376] [ip4][..udp] [......10.0.2.15][28681] -> [....156.57.42.2][33476]
+ new: [...377] [ip4][..udp] [......10.0.2.15][28681] -> [.180.200.236.13][12082]
+ new: [...378] [ip4][..udp] [......10.0.2.15][28681] -> [.118.241.204.61][43366]
+ new: [...379] [ip4][..udp] [......10.0.2.15][28681] -> [..80.140.63.147][29545]
+ new: [...380] [ip4][..udp] [......10.0.2.15][28681] -> [...83.86.49.195][12019]
+ new: [...381] [ip4][..udp] [......10.0.2.15][28681] -> [...77.58.211.52][.3806]
+ new: [...382] [ip4][..udp] [......10.0.2.15][28681] -> [..76.175.11.126][40958]
+ new: [...383] [ip4][..udp] [......10.0.2.15][28681] -> [...84.71.243.60][34498]
+ new: [...384] [ip4][..udp] [......10.0.2.15][28681] -> [....75.64.6.175][.4743]
+ new: [...385] [ip4][..udp] [......10.0.2.15][28681] -> [..66.223.143.31][47978]
+ new: [...386] [ip4][..udp] [......10.0.2.15][28681] -> [...85.172.10.90][40162]
+ new: [...387] [ip4][..udp] [......10.0.2.15][28681] -> [....220.135.8.7][.1219]
+ new: [...388] [ip4][..udp] [......10.0.2.15][28681] -> [...121.7.145.36][33905]
+ new: [...389] [ip4][..udp] [......10.0.2.15][28681] -> [..94.215.183.71][31310]
+ new: [...390] [ip4][..udp] [......10.0.2.15][28681] -> [144.134.132.206][16401]
+ new: [...391] [ip4][..udp] [......10.0.2.15][28681] -> [...161.81.38.67][.9539]
+ new: [...392] [ip4][..udp] [......10.0.2.15][28681] -> [....42.0.69.215][12608]
+ new: [...393] [ip4][..udp] [......10.0.2.15][28681] -> [.58.115.158.103][.5110]
+ new: [...394] [ip4][..udp] [......10.0.2.15][28681] -> [.165.84.134.136][21407]
+ new: [...395] [ip4][..udp] [......10.0.2.15][28681] -> [..191.114.88.39][18751]
+ new: [...396] [ip4][..udp] [......10.0.2.15][28681] -> [..112.119.59.24][28755]
+ new: [...397] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][24634]
+ new: [...398] [ip4][..udp] [......10.0.2.15][28681] -> [.62.102.148.166][31332]
+ new: [...399] [ip4][..udp] [......10.0.2.15][28681] -> [.175.39.219.223][31728]
idle: [....26] [ip4][..udp] [......10.0.2.15][57619] -> [.......10.0.2.2][.5351]
idle: [....27] [ip4][..udp] [......10.0.2.15][57620] -> [.......10.0.2.2][.5351]
idle: [....34] [ip4][..udp] [......10.0.2.15][57621] -> [.......10.0.2.2][.5351]
+ idle: [....41] [ip4][..udp] [......10.0.2.15][57622] -> [.......10.0.2.2][.5351]
update: [...247] [ip4][..udp] [......10.0.2.15][28681] -> [..181.84.178.16][60262] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...307] [ip4][..udp] [......10.0.2.15][28681] -> [..72.201.208.57][38617] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...309] [ip4][..udp] [......10.0.2.15][28681] -> [.47.220.186.140][27641] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...254] [ip4][..udp] [......10.0.2.15][28681] -> [..88.120.73.215][24562] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...258] [ip4][..udp] [......10.0.2.15][28681] -> [...24.26.216.95][13889] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...315] [ip4][..udp] [......10.0.2.15][28681] -> [...92.217.84.16][20223] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...358] [ip4][..udp] [......10.0.2.15][28681] -> [.47.224.174.174][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...357] [ip4][..udp] [......10.0.2.15][28681] -> [...98.35.85.238][32173] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...305] [ip4][..udp] [......10.0.2.15][28681] -> [..88.168.175.31][.6346]
update: [...310] [ip4][..udp] [......10.0.2.15][28681] -> [.118.240.69.199][.6348] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...306] [ip4][..udp] [......10.0.2.15][28681] -> [..41.249.63.200][22582]
update: [...265] [ip4][..udp] [......10.0.2.15][28681] -> [203.220.198.244][.1194] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...304] [ip4][..udp] [......10.0.2.15][28681] -> [.193.32.126.214][59596]
update: [...318] [ip4][..udp] [......10.0.2.15][28681] -> [173.183.183.110][59920] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...242] [ip4][..udp] [......10.0.2.15][28681] -> [..75.133.101.93][52367]
update: [...260] [ip4][..udp] [......10.0.2.15][28681] -> [.46.128.114.107][.6578] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...311] [ip4][..udp] [......10.0.2.15][28681] -> [.109.132.188.98][62851] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...308] [ip4][..udp] [......10.0.2.15][28681] -> [...81.205.91.45][40137] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...251] [ip4][..udp] [......10.0.2.15][28681] -> [.185.203.218.92][56962] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...259] [ip4][..udp] [......10.0.2.15][28681] -> [103.232.107.100][43508] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...300] [ip4][..udp] [......10.0.2.15][28681] -> [104.238.172.250][23548]
update: [...250] [ip4][..udp] [......10.0.2.15][28681] -> [..51.68.153.214][26253] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...256] [ip4][..udp] [......10.0.2.15][28681] -> [.96.246.156.126][50297] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...249] [ip4][..udp] [......10.0.2.15][28681] -> [..45.88.117.218][.6909] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...257] [ip4][..udp] [......10.0.2.15][28681] -> [.82.181.251.218][36368] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...356] [ip4][..udp] [......10.0.2.15][28681] -> [.63.228.175.169][.1936] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...355] [ip4][..udp] [......10.0.2.15][28681] -> [.181.118.53.212][29998] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...303] [ip4][..udp] [......10.0.2.15][28681] -> [.142.132.165.13][30566]
update: [...246] [ip4][..udp] [......10.0.2.15][28681] -> [...96.65.68.194][35481] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...301] [ip4][..udp] [......10.0.2.15][28681] -> [..188.61.52.183][11852]
update: [...314] [ip4][..udp] [......10.0.2.15][28681] -> [..71.237.202.91][16117] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...317] [ip4][..udp] [......10.0.2.15][28681] -> [...96.236.205.7][34794] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...261] [ip4][..udp] [......10.0.2.15][28681] -> [..60.241.48.194][21301] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...243] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][53258]
update: [...313] [ip4][..udp] [......10.0.2.15][28681] -> [..176.99.176.20][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...302] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][53489]
update: [...255] [ip4][..udp] [......10.0.2.15][28681] -> [..80.61.221.246][30577] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...248] [ip4][..udp] [......10.0.2.15][28681] -> [..66.30.221.181][12012] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...263] [ip4][..udp] [......10.0.2.15][28681] -> [..82.217.176.52][.7446] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...253] [ip4][..udp] [......10.0.2.15][28681] -> [.193.37.255.130][61616] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...252] [ip4][..udp] [......10.0.2.15][28681] -> [..72.140.120.41][47739] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...316] [ip4][..udp] [......10.0.2.15][28681] -> [....94.54.66.82][63637] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...262] [ip4][..udp] [......10.0.2.15][28681] -> [....89.75.52.19][46010] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...264] [ip4][..udp] [......10.0.2.15][28681] -> [...95.10.205.67][11603] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...312] [ip4][..udp] [......10.0.2.15][28681] -> [..24.167.201.53][47282] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- new: [...375] [ip4][..udp] [......10.0.2.15][28681] -> [..73.182.136.42][27873]
- new: [...376] [ip4][..udp] [......10.0.2.15][28681] -> [....156.57.42.2][33476]
- new: [...377] [ip4][..udp] [......10.0.2.15][28681] -> [.180.200.236.13][12082]
- new: [...378] [ip4][..udp] [......10.0.2.15][28681] -> [.118.241.204.61][43366]
- new: [...379] [ip4][..udp] [......10.0.2.15][28681] -> [..80.140.63.147][29545]
- new: [...380] [ip4][..udp] [......10.0.2.15][28681] -> [...83.86.49.195][12019]
- new: [...381] [ip4][..udp] [......10.0.2.15][28681] -> [...77.58.211.52][.3806]
- new: [...382] [ip4][..udp] [......10.0.2.15][28681] -> [..76.175.11.126][40958]
- new: [...383] [ip4][..udp] [......10.0.2.15][28681] -> [...84.71.243.60][34498]
- new: [...384] [ip4][..udp] [......10.0.2.15][28681] -> [....75.64.6.175][.4743]
- new: [...385] [ip4][..udp] [......10.0.2.15][28681] -> [..66.223.143.31][47978]
- new: [...386] [ip4][..udp] [......10.0.2.15][28681] -> [...85.172.10.90][40162]
- new: [...387] [ip4][..udp] [......10.0.2.15][28681] -> [....220.135.8.7][.1219]
- new: [...388] [ip4][..udp] [......10.0.2.15][28681] -> [...121.7.145.36][33905]
- new: [...389] [ip4][..udp] [......10.0.2.15][28681] -> [..94.215.183.71][31310]
- new: [...390] [ip4][..udp] [......10.0.2.15][28681] -> [144.134.132.206][16401]
- new: [...391] [ip4][..udp] [......10.0.2.15][28681] -> [...161.81.38.67][.9539]
- new: [...392] [ip4][..udp] [......10.0.2.15][28681] -> [....42.0.69.215][12608]
- new: [...393] [ip4][..udp] [......10.0.2.15][28681] -> [.58.115.158.103][.5110]
- new: [...394] [ip4][..udp] [......10.0.2.15][28681] -> [.165.84.134.136][21407]
- new: [...395] [ip4][..udp] [......10.0.2.15][28681] -> [..191.114.88.39][18751]
- new: [...396] [ip4][..udp] [......10.0.2.15][28681] -> [..112.119.59.24][28755]
- new: [...397] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][24634]
- new: [...398] [ip4][..udp] [......10.0.2.15][28681] -> [.62.102.148.166][31332]
- new: [...399] [ip4][..udp] [......10.0.2.15][28681] -> [.175.39.219.223][31728]
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...400] [ip4][..udp] [......10.0.2.15][28681] -> [..129.45.47.167][.6346]
new: [...401] [ip4][..udp] [......10.0.2.15][28681] -> [.173.178.192.76][.6346]
new: [...402] [ip4][..udp] [......10.0.2.15][28681] -> [...78.219.202.2][.6346]
@@ -1805,81 +1811,69 @@
new: [...481] [ip4][..udp] [......10.0.2.15][28681] -> [..82.120.219.74][.6346]
new: [...482] [ip4][..udp] [......10.0.2.15][28681] -> [..86.193.23.172][42227]
new: [...483] [ip4][..udp] [.......10.0.2.2][.1026] -> [......10.0.2.15][28681]
+ new: [...484] [ip4][..udp] [......10.0.2.15][28681] -> [...107.4.56.177][10000]
+ new: [...485] [ip4][..udp] [......10.0.2.15][28681] -> [...154.3.42.209][.6346]
+ new: [...486] [ip4][..udp] [......10.0.2.15][28681] -> [...88.68.45.203][.6346]
idle: [....54] [ip4][..udp] [......10.0.2.15][57623] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
not-detected: [....96] [ip4][..udp] [......10.0.2.15][28681] -> [.88.160.214.137][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....96] [ip4][..udp] [......10.0.2.15][28681] -> [.88.160.214.137][.6346]
not-detected: [...100] [ip4][..udp] [......10.0.2.15][28681] -> [220.133.122.217][23458] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...100] [ip4][..udp] [......10.0.2.15][28681] -> [220.133.122.217][23458]
not-detected: [...115] [ip4][..udp] [......10.0.2.15][28681] -> [...154.3.42.104][11804] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...115] [ip4][..udp] [......10.0.2.15][28681] -> [...154.3.42.104][11804]
not-detected: [...101] [ip4][..udp] [......10.0.2.15][28681] -> [123.205.126.102][.5193] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...101] [ip4][..udp] [......10.0.2.15][28681] -> [123.205.126.102][.5193]
end: [...345] [ip4][..tcp] [......10.0.2.15][50330] -> [.69.118.162.229][46906] [HTTP.Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address, Unsafe Protocol
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unsafe Protocol
+ not-detected: [...131] [ip4][..udp] [......10.0.2.15][28681] -> [.86.225.140.186][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...131] [ip4][..udp] [......10.0.2.15][28681] -> [.86.225.140.186][.6346]
not-detected: [...106] [ip4][..udp] [......10.0.2.15][28681] -> [..114.39.154.69][.4832] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...106] [ip4][..udp] [......10.0.2.15][28681] -> [..114.39.154.69][.4832]
not-detected: [....86] [ip4][..udp] [......10.0.2.15][28681] -> [..74.210.244.72][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....86] [ip4][..udp] [......10.0.2.15][28681] -> [..74.210.244.72][.6346]
+ not-detected: [...127] [ip4][..udp] [......10.0.2.15][28681] -> [.176.191.49.159][.1024] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...127] [ip4][..udp] [......10.0.2.15][28681] -> [.176.191.49.159][.1024]
not-detected: [...112] [ip4][..udp] [......10.0.2.15][28681] -> [.36.239.213.146][21750] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...112] [ip4][..udp] [......10.0.2.15][28681] -> [.36.239.213.146][21750]
not-detected: [....99] [ip4][..udp] [......10.0.2.15][28681] -> [....114.38.9.82][24223] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....99] [ip4][..udp] [......10.0.2.15][28681] -> [....114.38.9.82][24223]
idle: [...349] [ip4][.icmp] [...84.197.97.94] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [...107] [ip4][..udp] [......10.0.2.15][28681] -> [..202.151.63.59][.7624] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...107] [ip4][..udp] [......10.0.2.15][28681] -> [..202.151.63.59][.7624]
not-detected: [...103] [ip4][..udp] [......10.0.2.15][28681] -> [.220.134.167.82][.5820] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...103] [ip4][..udp] [......10.0.2.15][28681] -> [.220.134.167.82][.5820]
not-detected: [....97] [ip4][..udp] [......10.0.2.15][28681] -> [..24.78.134.188][49046] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....97] [ip4][..udp] [......10.0.2.15][28681] -> [..24.78.134.188][49046]
not-detected: [...104] [ip4][..udp] [......10.0.2.15][28681] -> [..42.98.115.128][23458] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...104] [ip4][..udp] [......10.0.2.15][28681] -> [..42.98.115.128][23458]
- idle: [....41] [ip4][..udp] [......10.0.2.15][57622] -> [.......10.0.2.2][.5351]
+ idle: [.....7] [ip6][..udp] [..............fe80::c50d:519f:96a4:e108][..546] -> [..............................ff02::1:2][..547] [DHCPV6][Unknown][Network][Acceptable]
not-detected: [...102] [ip4][..udp] [......10.0.2.15][28681] -> [.218.164.39.233][20855] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...102] [ip4][..udp] [......10.0.2.15][28681] -> [.218.164.39.233][20855]
+ not-detected: [...132] [ip4][..udp] [......10.0.2.15][28681] -> [...79.86.173.45][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...132] [ip4][..udp] [......10.0.2.15][28681] -> [...79.86.173.45][.6346]
not-detected: [...110] [ip4][..udp] [......10.0.2.15][28681] -> [..195.132.75.56][56009] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...110] [ip4][..udp] [......10.0.2.15][28681] -> [..195.132.75.56][56009]
not-detected: [...105] [ip4][..udp] [......10.0.2.15][28681] -> [...219.85.11.85][10722] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...105] [ip4][..udp] [......10.0.2.15][28681] -> [...219.85.11.85][10722]
- update: [...329] [ip4][..udp] [......10.0.2.15][28681] -> [..92.117.249.98][.6815] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...328] [ip4][..udp] [......10.0.2.15][28681] -> [.203.220.105.27][19260] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...331] [ip4][..udp] [......10.0.2.15][28681] -> [..45.31.152.112][26851] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...320] [ip4][..udp] [......10.0.2.15][28681] -> [185.236.200.137][48142] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...332] [ip4][..udp] [......10.0.2.15][28681] -> [213.229.111.224][.4876] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...325] [ip4][..udp] [......10.0.2.15][28681] -> [..83.160.143.48][37036] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...323] [ip4][..udp] [......10.0.2.15][28681] -> [.96.246.156.126][56070] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...322] [ip4][..udp] [......10.0.2.15][28681] -> [..45.88.117.219][.6909] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...327] [ip4][..udp] [......10.0.2.15][28681] -> [...84.28.53.225][44859] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...321] [ip4][..udp] [......10.0.2.15][28681] -> [188.165.203.190][21995] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...324] [ip4][..udp] [......10.0.2.15][28681] -> [.73.250.179.237][20848] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...319] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][55302] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...330] [ip4][..udp] [......10.0.2.15][28681] -> [....82.64.44.11][.1352] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...326] [ip4][..udp] [......10.0.2.15][28681] -> [..100.1.231.138][56558] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- new: [...484] [ip4][..udp] [......10.0.2.15][28681] -> [...107.4.56.177][10000]
- new: [...485] [ip4][..udp] [......10.0.2.15][28681] -> [...154.3.42.209][.6346]
- new: [...486] [ip4][..udp] [......10.0.2.15][28681] -> [...88.68.45.203][.6346]
- not-detected: [...131] [ip4][..udp] [......10.0.2.15][28681] -> [.86.225.140.186][.6346] [Unknown][Unknown][Unrated]
- idle: [...131] [ip4][..udp] [......10.0.2.15][28681] -> [.86.225.140.186][.6346]
- not-detected: [...127] [ip4][..udp] [......10.0.2.15][28681] -> [.176.191.49.159][.1024] [Unknown][Unknown][Unrated]
- idle: [...127] [ip4][..udp] [......10.0.2.15][28681] -> [.176.191.49.159][.1024]
- idle: [.....7] [ip6][..udp] [..............fe80::c50d:519f:96a4:e108][..546] -> [..............................ff02::1:2][..547] [DHCPV6][Unknown][Network][Acceptable]
- not-detected: [...132] [ip4][..udp] [......10.0.2.15][28681] -> [...79.86.173.45][.6346] [Unknown][Unknown][Unrated]
- idle: [...132] [ip4][..udp] [......10.0.2.15][28681] -> [...79.86.173.45][.6346]
- update: [...335] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][37058]
- update: [...359] [ip4][..udp] [......10.0.2.15][51685] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
new: [...487] [ip4][..udp] [......10.0.2.15][28681] -> [..24.78.134.188][49046]
new: [...488] [ip4][..udp] [......10.0.2.15][28681] -> [.183.179.90.112][.9852]
new: [...489] [ip4][..udp] [......10.0.2.15][28681] -> [...108.44.45.25][.6346]
@@ -1887,213 +1881,218 @@
new: [...491] [ip4][..udp] [......10.0.2.15][28681] -> [..36.233.42.210][.5512]
new: [...492] [ip4][..udp] [......10.0.2.15][28681] -> [...172.94.41.71][.6346]
not-detected: [...170] [ip4][..udp] [......10.0.2.15][28681] -> [....67.193.8.52][38584] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...170] [ip4][..udp] [......10.0.2.15][28681] -> [....67.193.8.52][38584]
not-detected: [...196] [ip4][..udp] [......10.0.2.15][28681] -> [..88.127.72.106][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...196] [ip4][..udp] [......10.0.2.15][28681] -> [..88.127.72.106][.6346]
not-detected: [...220] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][.9239] [Unknown][Unknown][Unrated]
idle: [...220] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][.9239]
not-detected: [...217] [ip4][..udp] [......10.0.2.15][28681] -> [.126.117.45.151][19323] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...217] [ip4][..udp] [......10.0.2.15][28681] -> [.126.117.45.151][19323]
not-detected: [...155] [ip4][..udp] [......10.0.2.15][28681] -> [.88.168.182.103][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...155] [ip4][..udp] [......10.0.2.15][28681] -> [.88.168.182.103][.6346]
not-detected: [...198] [ip4][..udp] [......10.0.2.15][28681] -> [..58.182.171.50][15180] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...198] [ip4][..udp] [......10.0.2.15][28681] -> [..58.182.171.50][15180]
not-detected: [...192] [ip4][..udp] [......10.0.2.15][28681] -> [.....92.8.59.80][35192] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...192] [ip4][..udp] [......10.0.2.15][28681] -> [.....92.8.59.80][35192]
not-detected: [...181] [ip4][..udp] [......10.0.2.15][28681] -> [...66.177.5.135][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...181] [ip4][..udp] [......10.0.2.15][28681] -> [...66.177.5.135][.6346]
not-detected: [...162] [ip4][..udp] [......10.0.2.15][28681] -> [.88.123.159.111][44729] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...162] [ip4][..udp] [......10.0.2.15][28681] -> [.88.123.159.111][44729]
not-detected: [...214] [ip4][..udp] [......10.0.2.15][28681] -> [.91.169.215.227][26820] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...214] [ip4][..udp] [......10.0.2.15][28681] -> [.91.169.215.227][26820]
not-detected: [...193] [ip4][..udp] [......10.0.2.15][28681] -> [..188.44.126.74][54633] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...193] [ip4][..udp] [......10.0.2.15][28681] -> [..188.44.126.74][54633]
not-detected: [...169] [ip4][..udp] [......10.0.2.15][28681] -> [...91.162.52.93][34799] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...169] [ip4][..udp] [......10.0.2.15][28681] -> [...91.162.52.93][34799]
not-detected: [...206] [ip4][..udp] [......10.0.2.15][28681] -> [213.166.132.204][11194] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...206] [ip4][..udp] [......10.0.2.15][28681] -> [213.166.132.204][11194]
not-detected: [...203] [ip4][..udp] [......10.0.2.15][28681] -> [.120.156.204.38][54832] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...203] [ip4][..udp] [......10.0.2.15][28681] -> [.120.156.204.38][54832]
not-detected: [...199] [ip4][..udp] [......10.0.2.15][28681] -> [..114.73.129.26][53585] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...199] [ip4][..udp] [......10.0.2.15][28681] -> [..114.73.129.26][53585]
- not-detected: [....31] [ip4][..tcp] [......10.0.2.15][50193] -> [....89.75.52.19][46010] [Unknown][Unknown][Unrated]
- end: [....31] [ip4][..tcp] [......10.0.2.15][50193] -> [....89.75.52.19][46010]
not-detected: [...207] [ip4][..udp] [......10.0.2.15][28681] -> [.81.242.191.215][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...207] [ip4][..udp] [......10.0.2.15][28681] -> [.81.242.191.215][.6346]
not-detected: [...208] [ip4][..udp] [......10.0.2.15][28681] -> [..81.249.64.215][25058] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...208] [ip4][..udp] [......10.0.2.15][28681] -> [..81.249.64.215][25058]
not-detected: [...212] [ip4][..udp] [......10.0.2.15][28681] -> [...36.233.3.223][12848] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...212] [ip4][..udp] [......10.0.2.15][28681] -> [...36.233.3.223][12848]
not-detected: [...197] [ip4][..udp] [......10.0.2.15][28681] -> [.208.92.106.151][32476] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...197] [ip4][..udp] [......10.0.2.15][28681] -> [.208.92.106.151][32476]
not-detected: [...168] [ip4][..udp] [......10.0.2.15][28681] -> [...89.157.59.43][56919] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...168] [ip4][..udp] [......10.0.2.15][28681] -> [...89.157.59.43][56919]
- not-detected: [....28] [ip4][..tcp] [......10.0.2.15][50190] -> [..80.140.63.147][29545] [Unknown][Unknown][Unrated]
- end: [....28] [ip4][..tcp] [......10.0.2.15][50190] -> [..80.140.63.147][29545]
not-detected: [...215] [ip4][..udp] [......10.0.2.15][28681] -> [...78.159.27.22][17563] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...215] [ip4][..udp] [......10.0.2.15][28681] -> [...78.159.27.22][17563]
not-detected: [...189] [ip4][..udp] [......10.0.2.15][28681] -> [115.195.105.243][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...189] [ip4][..udp] [......10.0.2.15][28681] -> [115.195.105.243][.6346]
- not-detected: [....30] [ip4][..tcp] [......10.0.2.15][50192] -> [....45.65.87.24][16201] [Unknown][Unknown][Unrated]
- end: [....30] [ip4][..tcp] [......10.0.2.15][50192] -> [....45.65.87.24][16201]
not-detected: [...179] [ip4][..udp] [......10.0.2.15][28681] -> [.178.51.146.115][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...179] [ip4][..udp] [......10.0.2.15][28681] -> [.178.51.146.115][.6346]
not-detected: [...186] [ip4][..udp] [......10.0.2.15][28681] -> [..91.182.44.202][30277] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...186] [ip4][..udp] [......10.0.2.15][28681] -> [..91.182.44.202][30277]
not-detected: [...174] [ip4][..udp] [......10.0.2.15][28681] -> [..196.74.159.56][29271] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...174] [ip4][..udp] [......10.0.2.15][28681] -> [..196.74.159.56][29271]
- not-detected: [....29] [ip4][..tcp] [......10.0.2.15][50191] -> [.207.38.163.228][.6778] [Unknown][Unknown][Unrated]
- end: [....29] [ip4][..tcp] [......10.0.2.15][50191] -> [.207.38.163.228][.6778]
not-detected: [...205] [ip4][..udp] [......10.0.2.15][28681] -> [..96.29.197.138][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...205] [ip4][..udp] [......10.0.2.15][28681] -> [..96.29.197.138][.6346]
not-detected: [...210] [ip4][..udp] [......10.0.2.15][28681] -> [.41.100.120.146][12838] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...210] [ip4][..udp] [......10.0.2.15][28681] -> [.41.100.120.146][12838]
not-detected: [...218] [ip4][..udp] [......10.0.2.15][28681] -> [.176.155.52.115][53956] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...218] [ip4][..udp] [......10.0.2.15][28681] -> [.176.155.52.115][53956]
not-detected: [...211] [ip4][..udp] [......10.0.2.15][28681] -> [..186.93.139.92][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...211] [ip4][..udp] [......10.0.2.15][28681] -> [..186.93.139.92][.6346]
not-detected: [...154] [ip4][..udp] [......10.0.2.15][28681] -> [174.115.111.224][51984] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...154] [ip4][..udp] [......10.0.2.15][28681] -> [174.115.111.224][51984]
not-detected: [...201] [ip4][..udp] [......10.0.2.15][28681] -> [.85.170.209.214][46210] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...201] [ip4][..udp] [......10.0.2.15][28681] -> [.85.170.209.214][46210]
not-detected: [...194] [ip4][..udp] [......10.0.2.15][28681] -> [176.150.126.156][16471] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...194] [ip4][..udp] [......10.0.2.15][28681] -> [176.150.126.156][16471]
not-detected: [...178] [ip4][..udp] [......10.0.2.15][28681] -> [....83.46.253.7][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...178] [ip4][..udp] [......10.0.2.15][28681] -> [....83.46.253.7][.6346]
not-detected: [...216] [ip4][..udp] [......10.0.2.15][28681] -> [.212.68.248.153][27223] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...216] [ip4][..udp] [......10.0.2.15][28681] -> [.212.68.248.153][27223]
not-detected: [...204] [ip4][..udp] [......10.0.2.15][28681] -> [..84.126.240.32][45313] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...204] [ip4][..udp] [......10.0.2.15][28681] -> [..84.126.240.32][45313]
not-detected: [...202] [ip4][..udp] [......10.0.2.15][28681] -> [.176.134.139.39][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...202] [ip4][..udp] [......10.0.2.15][28681] -> [.176.134.139.39][.6346]
+ update: [...329] [ip4][..udp] [......10.0.2.15][28681] -> [..92.117.249.98][.6815] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...328] [ip4][..udp] [......10.0.2.15][28681] -> [.203.220.105.27][19260] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...338] [ip4][..udp] [......10.0.2.15][28681] -> [221.198.205.196][20778] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...331] [ip4][..udp] [......10.0.2.15][28681] -> [..45.31.152.112][26851] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...361] [ip4][..udp] [......10.0.2.15][28681] -> [..86.129.196.84][.9915] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...134] [ip4][..udp] [......10.0.2.15][28681] -> [...78.231.73.14][.6346]
update: [...128] [ip4][..udp] [......10.0.2.15][28681] -> [..77.141.219.27][37580]
update: [...114] [ip4][..udp] [......10.0.2.15][28681] -> [....86.23.75.69][.6346]
update: [...366] [ip4][..udp] [......10.0.2.15][28681] -> [....94.8.55.158][51140] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [....88] [ip4][..udp] [......10.0.2.15][28681] -> [.....81.50.24.2][17874]
update: [...365] [ip4][..udp] [......10.0.2.15][28681] -> [..188.23.24.213][18561] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...340] [ip4][..udp] [......10.0.2.15][28681] -> [.38.142.119.234][49732] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...350] [ip4][..udp] [......10.0.2.15][28681] -> [..99.250.253.99][11819] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...343] [ip4][..udp] [......10.0.2.15][28681] -> [..89.212.91.155][.5195] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...320] [ip4][..udp] [......10.0.2.15][28681] -> [185.236.200.137][48142] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...335] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][37058]
+ update: [...332] [ip4][..udp] [......10.0.2.15][28681] -> [213.229.111.224][.4876] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...325] [ip4][..udp] [......10.0.2.15][28681] -> [..83.160.143.48][37036] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [....20] [ip4][..udp] [......10.0.2.15][..138] -> [.....10.0.2.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
update: [...118] [ip4][..udp] [......10.0.2.15][28681] -> [...5.180.62.100][46385]
+ update: [...359] [ip4][..udp] [......10.0.2.15][51685] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
update: [...344] [ip4][..udp] [......10.0.2.15][28681] -> [.207.38.163.228][.6778] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...323] [ip4][..udp] [......10.0.2.15][28681] -> [.96.246.156.126][56070] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...117] [ip4][..udp] [......10.0.2.15][28681] -> [200.120.243.143][.6346]
update: [....98] [ip4][..udp] [......10.0.2.15][28681] -> [.203.222.14.170][23332]
update: [...111] [ip4][..udp] [......10.0.2.15][28681] -> [..90.65.141.157][.6346]
update: [...336] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][.6888] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...139] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.226.142][.6346]
update: [...141] [ip4][..udp] [......10.0.2.15][28681] -> [..172.97.199.14][.6346]
+ update: [...348] [ip4][..udp] [......10.0.2.15][28681] -> [...84.197.97.94][.1360] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...368] [ip4][..udp] [......10.0.2.15][28681] -> [...47.147.52.21][36728] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...126] [ip4][..udp] [......10.0.2.15][28681] -> [..91.69.159.133][28000]
update: [...363] [ip4][..udp] [......10.0.2.15][28681] -> [...81.205.91.45][38297] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...136] [ip4][..udp] [......10.0.2.15][28681] -> [.80.236.247.120][16047]
+ update: [...346] [ip4][..udp] [......10.0.2.15][28681] -> [..76.226.85.105][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [....85] [ip4][..udp] [......10.0.2.15][28681] -> [..85.138.20.110][.6346]
update: [...362] [ip4][..udp] [......10.0.2.15][28681] -> [190.192.210.182][.6754] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...322] [ip4][..udp] [......10.0.2.15][28681] -> [..45.88.117.219][.6909] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...135] [ip4][..udp] [......10.0.2.15][28681] -> [.193.250.99.158][.6346]
+ update: [...327] [ip4][..udp] [......10.0.2.15][28681] -> [...84.28.53.225][44859] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...321] [ip4][..udp] [......10.0.2.15][28681] -> [188.165.203.190][21995] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...324] [ip4][..udp] [......10.0.2.15][28681] -> [.73.250.179.237][20848] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...342] [ip4][..udp] [......10.0.2.15][28681] -> [..98.208.26.154][.4994] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...369] [ip4][..udp] [......10.0.2.15][28681] -> [.89.187.171.240][.6346]
update: [...125] [ip4][..udp] [......10.0.2.15][28681] -> [..83.92.178.182][57302]
update: [...337] [ip4][..udp] [......10.0.2.15][28681] -> [..24.116.64.132][51227] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...116] [ip4][..udp] [......10.0.2.15][28681] -> [.124.44.190.145][10170]
+ update: [...319] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][55302] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...347] [ip4][..udp] [......10.0.2.15][28681] -> [..176.10.169.10][12799] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...133] [ip4][..udp] [......10.0.2.15][28681] -> [.91.175.220.161][15721]
update: [...124] [ip4][..udp] [......10.0.2.15][28681] -> [...170.254.19.6][24180]
update: [...130] [ip4][..udp] [......10.0.2.15][28681] -> [..119.224.95.97][46356]
update: [...129] [ip4][..udp] [......10.0.2.15][28681] -> [.176.138.50.179][29411]
+ update: [...330] [ip4][..udp] [......10.0.2.15][28681] -> [....82.64.44.11][.1352] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...360] [ip4][..udp] [......10.0.2.15][28681] -> [..198.58.218.12][47912] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...364] [ip4][..udp] [......10.0.2.15][28681] -> [194.163.180.126][10825] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...137] [ip4][..udp] [......10.0.2.15][28681] -> [...82.65.70.197][21693]
update: [...109] [ip4][..udp] [......10.0.2.15][28681] -> [...88.169.2.153][52414]
update: [...140] [ip4][..udp] [......10.0.2.15][28681] -> [.77.197.111.186][.6346]
+ update: [...326] [ip4][..udp] [......10.0.2.15][28681] -> [..100.1.231.138][56558] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...108] [ip4][..udp] [......10.0.2.15][28681] -> [112.119.242.110][.7922]
update: [...339] [ip4][..udp] [......10.0.2.15][28681] -> [..87.123.54.234][54130] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...113] [ip4][..udp] [......10.0.2.15][28681] -> [105.101.132.146][57746]
update: [...341] [ip4][..udp] [......10.0.2.15][28681] -> [..24.129.233.60][19990] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [....87] [ip4][..udp] [......10.0.2.15][28681] -> [..92.131.85.245][31743]
update: [...367] [ip4][..udp] [......10.0.2.15][28681] -> [.149.28.163.175][49956] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...138] [ip4][..udp] [......10.0.2.15][28681] -> [167.114.170.156][23844]
new: [...493] [ip4][..udp] [......10.0.2.15][57552] -> [239.255.255.250][.1900]
detected: [...493] [ip4][..udp] [......10.0.2.15][57552] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
- idle: [...320] [ip4][..udp] [......10.0.2.15][28681] -> [185.236.200.137][48142] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- idle: [...325] [ip4][..udp] [......10.0.2.15][28681] -> [..83.160.143.48][37036] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- not-detected: [...305] [ip4][..udp] [......10.0.2.15][28681] -> [..88.168.175.31][.6346] [Unknown][Unknown][Unrated]
- idle: [...305] [ip4][..udp] [......10.0.2.15][28681] -> [..88.168.175.31][.6346]
- idle: [...323] [ip4][..udp] [......10.0.2.15][28681] -> [.96.246.156.126][56070] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- idle: [...322] [ip4][..udp] [......10.0.2.15][28681] -> [..45.88.117.219][.6909] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- idle: [...314] [ip4][..udp] [......10.0.2.15][28681] -> [..71.237.202.91][16117] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...166] [ip4][..udp] [......10.0.2.15][28681] -> [..90.59.253.186][15555]
- update: [...183] [ip4][..udp] [......10.0.2.15][28681] -> [..91.172.15.182][37829]
- update: [...184] [ip4][..udp] [......10.0.2.15][28681] -> [..86.239.62.213][.6346]
- update: [...354] [ip4][..udp] [......10.0.2.15][28681] -> [.80.236.247.120][.1032]
- update: [...352] [ip4][..udp] [......10.0.2.15][28681] -> [.176.191.49.159][.6346]
- update: [...195] [ip4][..udp] [......10.0.2.15][28681] -> [.177.231.151.16][.6346]
- update: [...353] [ip4][..udp] [......10.0.2.15][28681] -> [195.181.151.217][25282]
- update: [...219] [ip4][..udp] [......10.0.2.15][28681] -> [...76.30.86.144][53821]
- update: [...350] [ip4][..udp] [......10.0.2.15][28681] -> [..99.250.253.99][11819] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...191] [ip4][..udp] [......10.0.2.15][28681] -> [.190.153.143.54][65535]
- update: [...172] [ip4][..udp] [......10.0.2.15][28681] -> [..87.69.142.133][15471]
- update: [...371] [ip4][..udp] [......10.0.2.15][28681] -> [.109.131.202.24][44748]
- update: [...187] [ip4][..udp] [......10.0.2.15][28681] -> [....92.88.92.56][21009]
- update: [...190] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.195.227][.6346]
- update: [...348] [ip4][..udp] [......10.0.2.15][28681] -> [...84.197.97.94][.1360] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...346] [ip4][..udp] [......10.0.2.15][28681] -> [..76.226.85.105][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...370] [ip4][..udp] [......10.0.2.15][28681] -> [..91.172.56.198][11984]
- update: [...173] [ip4][..udp] [......10.0.2.15][28681] -> [..121.99.222.36][44988]
- update: [...180] [ip4][..udp] [......10.0.2.15][28681] -> [...66.131.24.72][30711]
- update: [...156] [ip4][..udp] [......10.0.2.15][28681] -> [..86.244.228.86][10131]
- update: [...374] [ip4][..udp] [......10.0.2.15][28681] -> [....62.35.190.5][18604]
- update: [...176] [ip4][..udp] [......10.0.2.15][28681] -> [....41.99.164.4][.6346]
- update: [...164] [ip4][..udp] [......10.0.2.15][28681] -> [.142.197.219.85][26234]
- update: [...157] [ip4][..udp] [......10.0.2.15][28681] -> [.86.227.162.150][.6346]
- update: [...209] [ip4][..udp] [......10.0.2.15][28681] -> [..91.179.98.234][.6346]
- update: [...372] [ip4][..udp] [......10.0.2.15][28681] -> [.91.179.185.126][.6346]
- update: [...159] [ip4][..udp] [......10.0.2.15][28681] -> [176.163.231.160][.6346]
- update: [...347] [ip4][..udp] [......10.0.2.15][28681] -> [..176.10.169.10][12799] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...213] [ip4][..udp] [......10.0.2.15][28681] -> [....5.180.62.37][.6346]
- update: [...167] [ip4][..udp] [......10.0.2.15][28681] -> [..93.29.107.176][20363]
- update: [...171] [ip4][..udp] [......10.0.2.15][28681] -> [196.217.132.111][25394]
- update: [...160] [ip4][..udp] [......10.0.2.15][28681] -> [...83.150.49.35][32448]
- update: [...185] [ip4][..udp] [......10.0.2.15][28681] -> [.109.132.196.58][.6346]
- update: [...165] [ip4][..udp] [......10.0.2.15][28681] -> [...86.75.43.182][43502]
- update: [...161] [ip4][..udp] [......10.0.2.15][28681] -> [..213.120.26.86][29946]
- update: [...188] [ip4][..udp] [......10.0.2.15][28681] -> [..83.134.107.32][38836]
- update: [...177] [ip4][..udp] [......10.0.2.15][28681] -> [.69.157.183.106][.6346]
- update: [...175] [ip4][..udp] [......10.0.2.15][28681] -> [...115.69.62.99][.6346]
- update: [...182] [ip4][..udp] [......10.0.2.15][28681] -> [....73.3.103.37][35589]
- update: [...351] [ip4][..udp] [......10.0.2.15][28681] -> [..187.37.87.189][.6346]
- update: [...200] [ip4][..udp] [......10.0.2.15][28681] -> [.138.199.16.123][52993]
- update: [...163] [ip4][..udp] [......10.0.2.15][28681] -> [.88.126.160.158][.6346]
- update: [...373] [ip4][..udp] [......10.0.2.15][28681] -> [..88.122.233.15][11488]
- update: [...158] [ip4][..udp] [......10.0.2.15][28681] -> [.118.166.226.70][.6346]
new: [...494] [ip4][..udp] [......10.0.2.15][28681] -> [...86.210.81.59][.6346]
new: [...495] [ip4][..udp] [......10.0.2.15][28681] -> [...81.247.89.20][.6346]
new: [...496] [ip4][..udp] [......10.0.2.15][28681] -> [.218.173.230.98][19004]
@@ -2206,586 +2205,650 @@
new: [...603] [ip4][..udp] [......10.0.2.15][28681] -> [....1.36.249.91][64577]
new: [...604] [ip4][..udp] [......10.0.2.15][28681] -> [.123.202.31.113][53291]
new: [...605] [ip4][..udp] [......10.0.2.15][28681] -> [180.149.125.139][.6578]
- new: [...606] [ip4][..udp] [......10.0.2.15][28681] -> [.96.246.156.126][56070]
- new: [...607] [ip4][..udp] [......10.0.2.15][28681] -> [.149.28.163.175][42288]
- new: [...608] [ip4][..udp] [......10.0.2.15][28681] -> [..111.241.31.96][.4814]
- new: [...609] [ip4][..udp] [......10.0.2.15][28681] -> [...1.163.14.246][23461]
- new: [...610] [ip4][..udp] [......10.0.2.15][28681] -> [116.241.162.162][59016]
- new: [...611] [ip4][..udp] [......10.0.2.15][28681] -> [..61.10.174.159][.4841]
- new: [...612] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][59384]
- new: [...613] [ip4][..udp] [......10.0.2.15][28681] -> [.106.104.88.139][.7423]
- new: [...614] [ip4][..udp] [......10.0.2.15][28681] -> [119.247.152.218][51920]
- new: [...615] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.118.77][60482]
- new: [...616] [ip4][..udp] [......10.0.2.15][28681] -> [.74.195.236.249][18557]
- new: [...617] [ip4][..udp] [......10.0.2.15][28681] -> [220.208.167.152][30628]
- new: [...618] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.7380]
- new: [...619] [ip4][..udp] [......10.0.2.15][28681] -> [...1.172.184.48][13281]
- new: [...620] [ip4][..udp] [......10.0.2.15][28681] -> [...1.163.14.246][.1630]
- new: [...621] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][53516]
- new: [...622] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3227]
- new: [...623] [ip4][..udp] [......10.0.2.15][28681] -> [..36.234.18.166][61319]
- new: [...624] [ip4][..udp] [......10.0.2.15][28681] -> [.210.209.249.84][24751]
- new: [...625] [ip4][..udp] [......10.0.2.15][28681] -> [.61.238.173.128][57492]
- new: [...626] [ip4][..udp] [......10.0.2.15][28681] -> [113.252.206.254][49737]
- new: [...627] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49815]
- new: [...628] [ip4][..udp] [......10.0.2.15][28681] -> [..73.62.225.181][46843]
- new: [...629] [ip4][..udp] [......10.0.2.15][28681] -> [....45.65.87.24][16201]
- new: [...630] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][45710]
- new: [...631] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][.3931]
- new: [...632] [ip4][..udp] [......10.0.2.15][28681] -> [..36.231.59.187][62234]
- new: [...633] [ip4][..udp] [......10.0.2.15][28681] -> [...188.149.2.44][20964]
- new: [...634] [ip4][..udp] [......10.0.2.15][28681] -> [..68.174.18.115][50679]
- new: [...635] [ip4][..udp] [......10.0.2.15][28681] -> [..24.179.18.242][47329]
- new: [...636] [ip4][..udp] [......10.0.2.15][28681] -> [...219.70.48.23][.2556]
- new: [...637] [ip4][..udp] [......10.0.2.15][28681] -> [.80.193.171.146][53143]
- new: [...638] [ip4][..udp] [......10.0.2.15][28681] -> [..36.233.194.73][.1995]
- new: [...639] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.242.225][15068]
- new: [...640] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.7849]
- new: [...641] [ip4][..udp] [......10.0.2.15][28681] -> [....1.36.249.91][65430]
- new: [...642] [ip4][..udp] [......10.0.2.15][28681] -> [.36.233.199.103][.2625]
- new: [...643] [ip4][..udp] [......10.0.2.15][28681] -> [.220.39.142.122][.6346]
- new: [...644] [ip4][..udp] [......10.0.2.15][28681] -> [..31.20.248.147][30706]
- new: [...645] [ip4][..udp] [......10.0.2.15][28681] -> [...173.22.22.94][34245]
- new: [...646] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49803]
- new: [...647] [ip4][..udp] [......10.0.2.15][28681] -> [..36.237.10.152][21293]
- new: [...648] [ip4][..udp] [......10.0.2.15][28681] -> [..61.18.212.223][58290]
- new: [...649] [ip4][..udp] [......10.0.2.15][28681] -> [180.218.135.222][.4548]
- new: [...650] [ip4][..udp] [......10.0.2.15][28681] -> [.122.117.100.78][56128]
- new: [...651] [ip4][..udp] [......10.0.2.15][28681] -> [..114.47.227.91][58856]
- new: [...652] [ip4][..udp] [......10.0.2.15][28681] -> [....1.64.156.63][65023]
- new: [...653] [ip4][..udp] [......10.0.2.15][28681] -> [..94.139.21.182][50110]
- new: [...654] [ip4][..udp] [......10.0.2.15][28681] -> [....82.12.1.136][.6348]
- new: [...655] [ip4][..udp] [......10.0.2.15][28681] -> [.84.118.116.198][44616]
- new: [...656] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.2566]
- new: [...657] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54914]
- new: [...658] [ip4][..udp] [......10.0.2.15][28681] -> [..61.222.160.99][53195]
- new: [...659] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][.8075]
- new: [...660] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10791]
- new: [...661] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][.6527]
- new: [...662] [ip4][..udp] [......10.0.2.15][28681] -> [...24.127.1.235][37814]
- new: [...663] [ip4][..udp] [......10.0.2.15][28681] -> [..96.59.117.166][33192]
- new: [...664] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6594]
- new: [...665] [ip4][..udp] [......10.0.2.15][28681] -> [..1.172.183.237][.4983]
- new: [...666] [ip4][..udp] [......10.0.2.15][28681] -> [..82.36.106.134][.3927]
- new: [...667] [ip4][..udp] [......10.0.2.15][28681] -> [.159.196.95.223][.2003]
- new: [...668] [ip4][..udp] [......10.0.2.15][28681] -> [.223.18.211.177][18085]
- new: [...669] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][64731]
- new: [...670] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.2846]
- new: [...671] [ip4][..udp] [......10.0.2.15][28681] -> [..36.236.203.37][52669]
- new: [...672] [ip4][..udp] [......10.0.2.15][28681] -> [180.218.135.222][49867]
- new: [...673] [ip4][..udp] [......10.0.2.15][28681] -> [....223.16.83.5][.4765]
- new: [...674] [ip4][..udp] [......10.0.2.15][28681] -> [.125.59.215.249][14571]
- new: [...675] [ip4][..udp] [......10.0.2.15][28681] -> [...219.70.1.236][.9369]
- new: [...676] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.118.77][62191]
- new: [...677] [ip4][..udp] [......10.0.2.15][28681] -> [...1.64.208.110][55550]
- new: [...678] [ip4][..udp] [......10.0.2.15][28681] -> [....223.16.83.5][.9128]
- new: [...679] [ip4][..udp] [......10.0.2.15][28681] -> [150.116.225.105][51438]
- new: [...680] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.83.132][57131]
- new: [...681] [ip4][..udp] [......10.0.2.15][28681] -> [.61.227.198.100][.6910]
- new: [...682] [ip4][..udp] [......10.0.2.15][28681] -> [..61.220.41.241][53072]
- new: [...683] [ip4][..udp] [......10.0.2.15][28681] -> [203.220.198.244][50896]
- new: [...684] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54459]
- new: [...685] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][54436]
- new: [...686] [ip4][..udp] [......10.0.2.15][28681] -> [..111.241.31.96][.8349]
- new: [...687] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][13965]
- new: [...688] [ip4][..udp] [......10.0.2.15][28681] -> [..66.30.221.181][53454]
- new: [...689] [ip4][..udp] [......10.0.2.15][28681] -> [.114.36.234.196][11629]
- new: [...690] [ip4][..udp] [......10.0.2.15][28681] -> [...1.65.217.224][.3688]
- new: [...691] [ip4][..udp] [......10.0.2.15][28681] -> [..61.18.212.223][50637]
- new: [...692] [ip4][..udp] [......10.0.2.15][28681] -> [..61.93.150.146][62507]
- new: [...693] [ip4][..udp] [......10.0.2.15][28681] -> [.76.110.153.177][40022]
- new: [...694] [ip4][..udp] [......10.0.2.15][28681] -> [.98.215.130.156][12405]
- new: [...695] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][.6514]
- new: [...696] [ip4][..udp] [......10.0.2.15][28681] -> [..76.189.72.230][.8161]
- new: [...697] [ip4][..udp] [......10.0.2.15][28681] -> [188.165.203.190][55050]
- new: [...698] [ip4][..udp] [......10.0.2.15][28681] -> [...14.199.10.60][53906]
- new: [...699] [ip4][..udp] [......10.0.2.15][28681] -> [..70.81.219.111][19210]
- new: [...700] [ip4][..udp] [......10.0.2.15][28681] -> [..77.222.213.44][26536]
- new: [...701] [ip4][..udp] [......10.0.2.15][28681] -> [...91.206.27.26][.6578]
- new: [...702] [ip4][..udp] [......10.0.2.15][28681] -> [119.237.190.184][64163]
- new: [...703] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10728]
- new: [...704] [ip4][..udp] [......10.0.2.15][28681] -> [..114.40.67.191][14971]
- new: [...705] [ip4][..udp] [......10.0.2.15][28681] -> [..123.192.83.59][33513]
- new: [...706] [ip4][..udp] [......10.0.2.15][28681] -> [..124.218.26.16][.8658]
- new: [...707] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.1968]
- new: [...708] [ip4][..udp] [......10.0.2.15][28681] -> [..183.179.14.31][64871]
- new: [...709] [ip4][..udp] [......10.0.2.15][28681] -> [..124.244.68.65][51967]
- new: [...710] [ip4][..udp] [......10.0.2.15][28681] -> [.223.16.121.156][.3624]
- new: [...711] [ip4][..udp] [......10.0.2.15][28681] -> [113.254.140.225][63637]
- new: [...712] [ip4][..udp] [......10.0.2.15][28681] -> [..220.129.86.65][49723]
- new: [...713] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][59978]
- new: [...714] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][51379]
- new: [...715] [ip4][..udp] [......10.0.2.15][28681] -> [..76.174.174.69][21358]
- new: [...716] [ip4][..udp] [......10.0.2.15][28681] -> [...219.71.72.88][58808]
- new: [...717] [ip4][..udp] [......10.0.2.15][28681] -> [...98.249.190.8][25198]
- new: [...718] [ip4][..udp] [......10.0.2.15][28681] -> [...79.191.58.38][48157]
- new: [...719] [ip4][..udp] [......10.0.2.15][28681] -> [218.102.208.175][.9167]
- new: [...720] [ip4][..udp] [......10.0.2.15][28681] -> [...219.85.11.85][10722]
- new: [...721] [ip4][..udp] [......10.0.2.15][28681] -> [..76.26.178.132][10053]
- new: [...722] [ip4][..udp] [......10.0.2.15][28681] -> [.123.203.72.224][.9897]
- new: [...723] [ip4][..udp] [......10.0.2.15][28681] -> [.213.32.245.121][12333]
- new: [...724] [ip4][..udp] [......10.0.2.15][28681] -> [.175.39.219.223][13482]
- new: [...725] [ip4][..udp] [......10.0.2.15][28681] -> [...1.65.217.224][.9070]
- new: [...726] [ip4][..udp] [......10.0.2.15][28681] -> [..219.91.30.216][61635]
- new: [...727] [ip4][..udp] [......10.0.2.15][28681] -> [....1.171.82.65][50072]
- new: [...728] [ip4][..udp] [......10.0.2.15][28681] -> [101.136.187.253][10914]
- new: [...729] [ip4][..udp] [......10.0.2.15][28681] -> [..112.10.134.44][19739]
- new: [...730] [ip4][..udp] [......10.0.2.15][28681] -> [..114.47.227.91][54463]
- new: [...731] [ip4][..udp] [......10.0.2.15][28681] -> [124.217.188.105][62849]
- new: [...732] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6564]
- new: [...733] [ip4][..udp] [......10.0.2.15][28681] -> [..85.168.34.105][39908]
- new: [...734] [ip4][..udp] [......10.0.2.15][28681] -> [...99.199.148.6][.4338]
- new: [...735] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.91.201][.4297]
- new: [...736] [ip4][..udp] [......10.0.2.15][28681] -> [..45.31.152.112][52420]
- new: [...737] [ip4][..udp] [......10.0.2.15][28681] -> [118.166.252.163][14391]
- new: [...738] [ip4][..udp] [......10.0.2.15][28681] -> [174.115.127.251][23897]
- new: [...739] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3256]
- new: [...740] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][19814]
- new: [...741] [ip4][..udp] [......10.0.2.15][28681] -> [...36.237.25.47][21293]
- new: [...742] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.4364]
- new: [...743] [ip4][..udp] [......10.0.2.15][28681] -> [194.163.180.126][36780]
- new: [...744] [ip4][..udp] [......10.0.2.15][28681] -> [...27.94.154.53][.6346]
- new: [...745] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][48250]
- new: [...746] [ip4][.icmp] [..164.132.10.25] -> [......10.0.2.15]
- detected: [...746] [ip4][.icmp] [..164.132.10.25] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
- new: [...747] [ip4][..udp] [......10.0.2.15][28681] -> [123.205.126.102][.5193]
- new: [...748] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6599]
+ new: [...606] [ip4][..udp] [......10.0.2.15][28681] -> [.149.28.163.175][42288]
+ new: [...607] [ip4][..udp] [......10.0.2.15][28681] -> [..111.241.31.96][.4814]
+ new: [...608] [ip4][..udp] [......10.0.2.15][28681] -> [...1.163.14.246][23461]
+ new: [...609] [ip4][..udp] [......10.0.2.15][28681] -> [116.241.162.162][59016]
+ new: [...610] [ip4][..udp] [......10.0.2.15][28681] -> [..61.10.174.159][.4841]
+ new: [...611] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][59384]
+ new: [...612] [ip4][..udp] [......10.0.2.15][28681] -> [.106.104.88.139][.7423]
+ new: [...613] [ip4][..udp] [......10.0.2.15][28681] -> [119.247.152.218][51920]
+ new: [...614] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.118.77][60482]
+ new: [...615] [ip4][..udp] [......10.0.2.15][28681] -> [.74.195.236.249][18557]
+ new: [...616] [ip4][..udp] [......10.0.2.15][28681] -> [220.208.167.152][30628]
+ new: [...617] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.7380]
+ new: [...618] [ip4][..udp] [......10.0.2.15][28681] -> [...1.172.184.48][13281]
+ new: [...619] [ip4][..udp] [......10.0.2.15][28681] -> [...1.163.14.246][.1630]
+ new: [...620] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][53516]
+ new: [...621] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3227]
+ new: [...622] [ip4][..udp] [......10.0.2.15][28681] -> [..36.234.18.166][61319]
+ new: [...623] [ip4][..udp] [......10.0.2.15][28681] -> [.210.209.249.84][24751]
+ new: [...624] [ip4][..udp] [......10.0.2.15][28681] -> [.61.238.173.128][57492]
+ new: [...625] [ip4][..udp] [......10.0.2.15][28681] -> [113.252.206.254][49737]
+ new: [...626] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49815]
+ new: [...627] [ip4][..udp] [......10.0.2.15][28681] -> [..73.62.225.181][46843]
+ new: [...628] [ip4][..udp] [......10.0.2.15][28681] -> [....45.65.87.24][16201]
+ new: [...629] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][45710]
+ new: [...630] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][.3931]
+ new: [...631] [ip4][..udp] [......10.0.2.15][28681] -> [..36.231.59.187][62234]
+ new: [...632] [ip4][..udp] [......10.0.2.15][28681] -> [...188.149.2.44][20964]
+ new: [...633] [ip4][..udp] [......10.0.2.15][28681] -> [..68.174.18.115][50679]
+ new: [...634] [ip4][..udp] [......10.0.2.15][28681] -> [..24.179.18.242][47329]
+ new: [...635] [ip4][..udp] [......10.0.2.15][28681] -> [...219.70.48.23][.2556]
+ new: [...636] [ip4][..udp] [......10.0.2.15][28681] -> [.80.193.171.146][53143]
+ new: [...637] [ip4][..udp] [......10.0.2.15][28681] -> [..36.233.194.73][.1995]
+ new: [...638] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.242.225][15068]
+ new: [...639] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.7849]
+ new: [...640] [ip4][..udp] [......10.0.2.15][28681] -> [....1.36.249.91][65430]
+ new: [...641] [ip4][..udp] [......10.0.2.15][28681] -> [.36.233.199.103][.2625]
+ new: [...642] [ip4][..udp] [......10.0.2.15][28681] -> [.220.39.142.122][.6346]
+ new: [...643] [ip4][..udp] [......10.0.2.15][28681] -> [..31.20.248.147][30706]
+ new: [...644] [ip4][..udp] [......10.0.2.15][28681] -> [...173.22.22.94][34245]
+ new: [...645] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49803]
+ new: [...646] [ip4][..udp] [......10.0.2.15][28681] -> [..36.237.10.152][21293]
+ new: [...647] [ip4][..udp] [......10.0.2.15][28681] -> [..61.18.212.223][58290]
+ new: [...648] [ip4][..udp] [......10.0.2.15][28681] -> [180.218.135.222][.4548]
+ new: [...649] [ip4][..udp] [......10.0.2.15][28681] -> [.122.117.100.78][56128]
+ new: [...650] [ip4][..udp] [......10.0.2.15][28681] -> [..114.47.227.91][58856]
+ new: [...651] [ip4][..udp] [......10.0.2.15][28681] -> [....1.64.156.63][65023]
+ new: [...652] [ip4][..udp] [......10.0.2.15][28681] -> [..94.139.21.182][50110]
+ new: [...653] [ip4][..udp] [......10.0.2.15][28681] -> [....82.12.1.136][.6348]
+ new: [...654] [ip4][..udp] [......10.0.2.15][28681] -> [.84.118.116.198][44616]
+ new: [...655] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.2566]
+ new: [...656] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54914]
+ new: [...657] [ip4][..udp] [......10.0.2.15][28681] -> [..61.222.160.99][53195]
+ new: [...658] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][.8075]
+ new: [...659] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10791]
+ new: [...660] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][.6527]
+ new: [...661] [ip4][..udp] [......10.0.2.15][28681] -> [...24.127.1.235][37814]
+ new: [...662] [ip4][..udp] [......10.0.2.15][28681] -> [..96.59.117.166][33192]
+ new: [...663] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6594]
+ new: [...664] [ip4][..udp] [......10.0.2.15][28681] -> [..1.172.183.237][.4983]
+ new: [...665] [ip4][..udp] [......10.0.2.15][28681] -> [..82.36.106.134][.3927]
+ new: [...666] [ip4][..udp] [......10.0.2.15][28681] -> [.159.196.95.223][.2003]
+ new: [...667] [ip4][..udp] [......10.0.2.15][28681] -> [.223.18.211.177][18085]
+ new: [...668] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][64731]
+ new: [...669] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.2846]
+ new: [...670] [ip4][..udp] [......10.0.2.15][28681] -> [..36.236.203.37][52669]
+ new: [...671] [ip4][..udp] [......10.0.2.15][28681] -> [180.218.135.222][49867]
+ new: [...672] [ip4][..udp] [......10.0.2.15][28681] -> [....223.16.83.5][.4765]
+ new: [...673] [ip4][..udp] [......10.0.2.15][28681] -> [.125.59.215.249][14571]
+ new: [...674] [ip4][..udp] [......10.0.2.15][28681] -> [...219.70.1.236][.9369]
+ new: [...675] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.118.77][62191]
+ new: [...676] [ip4][..udp] [......10.0.2.15][28681] -> [...1.64.208.110][55550]
+ new: [...677] [ip4][..udp] [......10.0.2.15][28681] -> [....223.16.83.5][.9128]
+ new: [...678] [ip4][..udp] [......10.0.2.15][28681] -> [150.116.225.105][51438]
+ new: [...679] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.83.132][57131]
+ new: [...680] [ip4][..udp] [......10.0.2.15][28681] -> [.61.227.198.100][.6910]
+ new: [...681] [ip4][..udp] [......10.0.2.15][28681] -> [..61.220.41.241][53072]
+ new: [...682] [ip4][..udp] [......10.0.2.15][28681] -> [203.220.198.244][50896]
+ new: [...683] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54459]
+ new: [...684] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][54436]
+ new: [...685] [ip4][..udp] [......10.0.2.15][28681] -> [..111.241.31.96][.8349]
+ new: [...686] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][13965]
+ new: [...687] [ip4][..udp] [......10.0.2.15][28681] -> [..66.30.221.181][53454]
+ new: [...688] [ip4][..udp] [......10.0.2.15][28681] -> [.114.36.234.196][11629]
+ new: [...689] [ip4][..udp] [......10.0.2.15][28681] -> [...1.65.217.224][.3688]
+ new: [...690] [ip4][..udp] [......10.0.2.15][28681] -> [..61.18.212.223][50637]
+ new: [...691] [ip4][..udp] [......10.0.2.15][28681] -> [..61.93.150.146][62507]
+ new: [...692] [ip4][..udp] [......10.0.2.15][28681] -> [.76.110.153.177][40022]
+ new: [...693] [ip4][..udp] [......10.0.2.15][28681] -> [.98.215.130.156][12405]
+ new: [...694] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][.6514]
+ new: [...695] [ip4][..udp] [......10.0.2.15][28681] -> [..76.189.72.230][.8161]
+ new: [...696] [ip4][..udp] [......10.0.2.15][28681] -> [188.165.203.190][55050]
+ new: [...697] [ip4][..udp] [......10.0.2.15][28681] -> [...14.199.10.60][53906]
+ new: [...698] [ip4][..udp] [......10.0.2.15][28681] -> [..70.81.219.111][19210]
+ new: [...699] [ip4][..udp] [......10.0.2.15][28681] -> [..77.222.213.44][26536]
+ new: [...700] [ip4][..udp] [......10.0.2.15][28681] -> [...91.206.27.26][.6578]
+ new: [...701] [ip4][..udp] [......10.0.2.15][28681] -> [119.237.190.184][64163]
+ new: [...702] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10728]
+ new: [...703] [ip4][..udp] [......10.0.2.15][28681] -> [..114.40.67.191][14971]
+ new: [...704] [ip4][..udp] [......10.0.2.15][28681] -> [..123.192.83.59][33513]
+ new: [...705] [ip4][..udp] [......10.0.2.15][28681] -> [..124.218.26.16][.8658]
+ new: [...706] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.1968]
+ new: [...707] [ip4][..udp] [......10.0.2.15][28681] -> [..183.179.14.31][64871]
+ new: [...708] [ip4][..udp] [......10.0.2.15][28681] -> [..124.244.68.65][51967]
+ new: [...709] [ip4][..udp] [......10.0.2.15][28681] -> [.223.16.121.156][.3624]
+ new: [...710] [ip4][..udp] [......10.0.2.15][28681] -> [113.254.140.225][63637]
+ new: [...711] [ip4][..udp] [......10.0.2.15][28681] -> [..220.129.86.65][49723]
+ new: [...712] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][59978]
+ new: [...713] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][51379]
+ new: [...714] [ip4][..udp] [......10.0.2.15][28681] -> [..76.174.174.69][21358]
+ new: [...715] [ip4][..udp] [......10.0.2.15][28681] -> [...219.71.72.88][58808]
+ new: [...716] [ip4][..udp] [......10.0.2.15][28681] -> [...98.249.190.8][25198]
+ new: [...717] [ip4][..udp] [......10.0.2.15][28681] -> [...79.191.58.38][48157]
+ new: [...718] [ip4][..udp] [......10.0.2.15][28681] -> [218.102.208.175][.9167]
+ new: [...719] [ip4][..udp] [......10.0.2.15][28681] -> [...219.85.11.85][10722]
+ new: [...720] [ip4][..udp] [......10.0.2.15][28681] -> [..76.26.178.132][10053]
+ new: [...721] [ip4][..udp] [......10.0.2.15][28681] -> [.123.203.72.224][.9897]
+ new: [...722] [ip4][..udp] [......10.0.2.15][28681] -> [.213.32.245.121][12333]
+ new: [...723] [ip4][..udp] [......10.0.2.15][28681] -> [.175.39.219.223][13482]
+ new: [...724] [ip4][..udp] [......10.0.2.15][28681] -> [...1.65.217.224][.9070]
+ new: [...725] [ip4][..udp] [......10.0.2.15][28681] -> [..219.91.30.216][61635]
+ new: [...726] [ip4][..udp] [......10.0.2.15][28681] -> [....1.171.82.65][50072]
+ new: [...727] [ip4][..udp] [......10.0.2.15][28681] -> [101.136.187.253][10914]
+ new: [...728] [ip4][..udp] [......10.0.2.15][28681] -> [..112.10.134.44][19739]
+ new: [...729] [ip4][..udp] [......10.0.2.15][28681] -> [..114.47.227.91][54463]
+ new: [...730] [ip4][..udp] [......10.0.2.15][28681] -> [124.217.188.105][62849]
+ new: [...731] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6564]
+ new: [...732] [ip4][..udp] [......10.0.2.15][28681] -> [..85.168.34.105][39908]
+ new: [...733] [ip4][..udp] [......10.0.2.15][28681] -> [...99.199.148.6][.4338]
+ new: [...734] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.91.201][.4297]
+ new: [...735] [ip4][..udp] [......10.0.2.15][28681] -> [..45.31.152.112][52420]
+ new: [...736] [ip4][..udp] [......10.0.2.15][28681] -> [118.166.252.163][14391]
+ new: [...737] [ip4][..udp] [......10.0.2.15][28681] -> [174.115.127.251][23897]
+ new: [...738] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3256]
+ new: [...739] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][19814]
+ new: [...740] [ip4][..udp] [......10.0.2.15][28681] -> [...36.237.25.47][21293]
+ new: [...741] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.4364]
+ new: [...742] [ip4][..udp] [......10.0.2.15][28681] -> [194.163.180.126][36780]
+ new: [...743] [ip4][..udp] [......10.0.2.15][28681] -> [...27.94.154.53][.6346]
+ new: [...744] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][48250]
+ new: [...745] [ip4][.icmp] [..164.132.10.25] -> [......10.0.2.15]
+ detected: [...745] [ip4][.icmp] [..164.132.10.25] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [...320] [ip4][..udp] [......10.0.2.15][28681] -> [185.236.200.137][48142] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ idle: [...325] [ip4][..udp] [......10.0.2.15][28681] -> [..83.160.143.48][37036] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ not-detected: [...305] [ip4][..udp] [......10.0.2.15][28681] -> [..88.168.175.31][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...305] [ip4][..udp] [......10.0.2.15][28681] -> [..88.168.175.31][.6346]
+ not-detected: [....31] [ip4][..tcp] [......10.0.2.15][50193] -> [....89.75.52.19][46010] [Unknown][Unknown][Unrated]
+ end: [....31] [ip4][..tcp] [......10.0.2.15][50193] -> [....89.75.52.19][46010]
+ idle: [...322] [ip4][..udp] [......10.0.2.15][28681] -> [..45.88.117.219][.6909] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ not-detected: [....28] [ip4][..tcp] [......10.0.2.15][50190] -> [..80.140.63.147][29545] [Unknown][Unknown][Unrated]
+ end: [....28] [ip4][..tcp] [......10.0.2.15][50190] -> [..80.140.63.147][29545]
+ idle: [...314] [ip4][..udp] [......10.0.2.15][28681] -> [..71.237.202.91][16117] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ not-detected: [....30] [ip4][..tcp] [......10.0.2.15][50192] -> [....45.65.87.24][16201] [Unknown][Unknown][Unrated]
+ end: [....30] [ip4][..tcp] [......10.0.2.15][50192] -> [....45.65.87.24][16201]
+ not-detected: [....29] [ip4][..tcp] [......10.0.2.15][50191] -> [.207.38.163.228][.6778] [Unknown][Unknown][Unrated]
+ end: [....29] [ip4][..tcp] [......10.0.2.15][50191] -> [.207.38.163.228][.6778]
+ update: [...166] [ip4][..udp] [......10.0.2.15][28681] -> [..90.59.253.186][15555]
+ update: [...183] [ip4][..udp] [......10.0.2.15][28681] -> [..91.172.15.182][37829]
+ update: [...184] [ip4][..udp] [......10.0.2.15][28681] -> [..86.239.62.213][.6346]
+ update: [...354] [ip4][..udp] [......10.0.2.15][28681] -> [.80.236.247.120][.1032]
+ update: [...352] [ip4][..udp] [......10.0.2.15][28681] -> [.176.191.49.159][.6346]
+ update: [...195] [ip4][..udp] [......10.0.2.15][28681] -> [.177.231.151.16][.6346]
+ update: [...353] [ip4][..udp] [......10.0.2.15][28681] -> [195.181.151.217][25282]
+ update: [...219] [ip4][..udp] [......10.0.2.15][28681] -> [...76.30.86.144][53821]
+ update: [...191] [ip4][..udp] [......10.0.2.15][28681] -> [.190.153.143.54][65535]
+ update: [...172] [ip4][..udp] [......10.0.2.15][28681] -> [..87.69.142.133][15471]
+ update: [...371] [ip4][..udp] [......10.0.2.15][28681] -> [.109.131.202.24][44748]
+ update: [...187] [ip4][..udp] [......10.0.2.15][28681] -> [....92.88.92.56][21009]
+ update: [...190] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.195.227][.6346]
+ update: [...370] [ip4][..udp] [......10.0.2.15][28681] -> [..91.172.56.198][11984]
+ update: [...173] [ip4][..udp] [......10.0.2.15][28681] -> [..121.99.222.36][44988]
+ update: [...180] [ip4][..udp] [......10.0.2.15][28681] -> [...66.131.24.72][30711]
+ update: [...156] [ip4][..udp] [......10.0.2.15][28681] -> [..86.244.228.86][10131]
+ update: [...374] [ip4][..udp] [......10.0.2.15][28681] -> [....62.35.190.5][18604]
+ update: [...176] [ip4][..udp] [......10.0.2.15][28681] -> [....41.99.164.4][.6346]
+ update: [...164] [ip4][..udp] [......10.0.2.15][28681] -> [.142.197.219.85][26234]
+ update: [...157] [ip4][..udp] [......10.0.2.15][28681] -> [.86.227.162.150][.6346]
+ update: [...209] [ip4][..udp] [......10.0.2.15][28681] -> [..91.179.98.234][.6346]
+ update: [...372] [ip4][..udp] [......10.0.2.15][28681] -> [.91.179.185.126][.6346]
+ update: [...159] [ip4][..udp] [......10.0.2.15][28681] -> [176.163.231.160][.6346]
+ update: [...213] [ip4][..udp] [......10.0.2.15][28681] -> [....5.180.62.37][.6346]
+ update: [...167] [ip4][..udp] [......10.0.2.15][28681] -> [..93.29.107.176][20363]
+ update: [...171] [ip4][..udp] [......10.0.2.15][28681] -> [196.217.132.111][25394]
+ update: [...160] [ip4][..udp] [......10.0.2.15][28681] -> [...83.150.49.35][32448]
+ update: [...185] [ip4][..udp] [......10.0.2.15][28681] -> [.109.132.196.58][.6346]
+ update: [...165] [ip4][..udp] [......10.0.2.15][28681] -> [...86.75.43.182][43502]
+ update: [...161] [ip4][..udp] [......10.0.2.15][28681] -> [..213.120.26.86][29946]
+ update: [...188] [ip4][..udp] [......10.0.2.15][28681] -> [..83.134.107.32][38836]
+ update: [...177] [ip4][..udp] [......10.0.2.15][28681] -> [.69.157.183.106][.6346]
+ update: [...175] [ip4][..udp] [......10.0.2.15][28681] -> [...115.69.62.99][.6346]
+ update: [...182] [ip4][..udp] [......10.0.2.15][28681] -> [....73.3.103.37][35589]
+ update: [...351] [ip4][..udp] [......10.0.2.15][28681] -> [..187.37.87.189][.6346]
+ update: [...200] [ip4][..udp] [......10.0.2.15][28681] -> [.138.199.16.123][52993]
+ update: [...163] [ip4][..udp] [......10.0.2.15][28681] -> [.88.126.160.158][.6346]
+ update: [...373] [ip4][..udp] [......10.0.2.15][28681] -> [..88.122.233.15][11488]
+ update: [...158] [ip4][..udp] [......10.0.2.15][28681] -> [.118.166.226.70][.6346]
+ new: [...746] [ip4][..udp] [......10.0.2.15][28681] -> [123.205.126.102][.5193]
+ new: [...747] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6599]
update: [...377] [ip4][..udp] [......10.0.2.15][28681] -> [.180.200.236.13][12082]
- update: [...247] [ip4][..udp] [......10.0.2.15][28681] -> [..181.84.178.16][60262] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...307] [ip4][..udp] [......10.0.2.15][28681] -> [..72.201.208.57][38617] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...309] [ip4][..udp] [......10.0.2.15][28681] -> [.47.220.186.140][27641] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...394] [ip4][..udp] [......10.0.2.15][28681] -> [.165.84.134.136][21407]
- update: [...254] [ip4][..udp] [......10.0.2.15][28681] -> [..88.120.73.215][24562] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...258] [ip4][..udp] [......10.0.2.15][28681] -> [...24.26.216.95][13889] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...315] [ip4][..udp] [......10.0.2.15][28681] -> [...92.217.84.16][20223] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...398] [ip4][..udp] [......10.0.2.15][28681] -> [.62.102.148.166][31332]
- update: [...358] [ip4][..udp] [......10.0.2.15][28681] -> [.47.224.174.174][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...357] [ip4][..udp] [......10.0.2.15][28681] -> [...98.35.85.238][32173] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...381] [ip4][..udp] [......10.0.2.15][28681] -> [...77.58.211.52][.3806]
- update: [...386] [ip4][..udp] [......10.0.2.15][28681] -> [...85.172.10.90][40162]
- update: [...310] [ip4][..udp] [......10.0.2.15][28681] -> [.118.240.69.199][.6348] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...306] [ip4][..udp] [......10.0.2.15][28681] -> [..41.249.63.200][22582]
- update: [...392] [ip4][..udp] [......10.0.2.15][28681] -> [....42.0.69.215][12608]
- update: [...265] [ip4][..udp] [......10.0.2.15][28681] -> [203.220.198.244][.1194] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...304] [ip4][..udp] [......10.0.2.15][28681] -> [.193.32.126.214][59596]
- update: [...389] [ip4][..udp] [......10.0.2.15][28681] -> [..94.215.183.71][31310]
- update: [...318] [ip4][..udp] [......10.0.2.15][28681] -> [173.183.183.110][59920] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...242] [ip4][..udp] [......10.0.2.15][28681] -> [..75.133.101.93][52367]
- update: [...260] [ip4][..udp] [......10.0.2.15][28681] -> [.46.128.114.107][.6578] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...311] [ip4][..udp] [......10.0.2.15][28681] -> [.109.132.188.98][62851] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...308] [ip4][..udp] [......10.0.2.15][28681] -> [...81.205.91.45][40137] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...251] [ip4][..udp] [......10.0.2.15][28681] -> [.185.203.218.92][56962] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...259] [ip4][..udp] [......10.0.2.15][28681] -> [103.232.107.100][43508] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...300] [ip4][..udp] [......10.0.2.15][28681] -> [104.238.172.250][23548]
- update: [...385] [ip4][..udp] [......10.0.2.15][28681] -> [..66.223.143.31][47978]
- update: [...250] [ip4][..udp] [......10.0.2.15][28681] -> [..51.68.153.214][26253] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...384] [ip4][..udp] [......10.0.2.15][28681] -> [....75.64.6.175][.4743]
- update: [...256] [ip4][..udp] [......10.0.2.15][28681] -> [.96.246.156.126][50297] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...378] [ip4][..udp] [......10.0.2.15][28681] -> [.118.241.204.61][43366]
- update: [...249] [ip4][..udp] [......10.0.2.15][28681] -> [..45.88.117.218][.6909] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...375] [ip4][..udp] [......10.0.2.15][28681] -> [..73.182.136.42][27873]
- update: [...257] [ip4][..udp] [......10.0.2.15][28681] -> [.82.181.251.218][36368] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...399] [ip4][..udp] [......10.0.2.15][28681] -> [.175.39.219.223][31728]
- update: [...356] [ip4][..udp] [......10.0.2.15][28681] -> [.63.228.175.169][.1936] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...355] [ip4][..udp] [......10.0.2.15][28681] -> [.181.118.53.212][29998] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...388] [ip4][..udp] [......10.0.2.15][28681] -> [...121.7.145.36][33905]
- update: [...303] [ip4][..udp] [......10.0.2.15][28681] -> [.142.132.165.13][30566]
- update: [...246] [ip4][..udp] [......10.0.2.15][28681] -> [...96.65.68.194][35481] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...395] [ip4][..udp] [......10.0.2.15][28681] -> [..191.114.88.39][18751]
- update: [...301] [ip4][..udp] [......10.0.2.15][28681] -> [..188.61.52.183][11852]
- update: [...317] [ip4][..udp] [......10.0.2.15][28681] -> [...96.236.205.7][34794] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...376] [ip4][..udp] [......10.0.2.15][28681] -> [....156.57.42.2][33476]
- update: [...261] [ip4][..udp] [......10.0.2.15][28681] -> [..60.241.48.194][21301] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...243] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][53258]
- update: [...313] [ip4][..udp] [......10.0.2.15][28681] -> [..176.99.176.20][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...387] [ip4][..udp] [......10.0.2.15][28681] -> [....220.135.8.7][.1219]
- update: [...302] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][53489]
- update: [...255] [ip4][..udp] [......10.0.2.15][28681] -> [..80.61.221.246][30577] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...248] [ip4][..udp] [......10.0.2.15][28681] -> [..66.30.221.181][12012] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...380] [ip4][..udp] [......10.0.2.15][28681] -> [...83.86.49.195][12019]
- update: [...383] [ip4][..udp] [......10.0.2.15][28681] -> [...84.71.243.60][34498]
- update: [...263] [ip4][..udp] [......10.0.2.15][28681] -> [..82.217.176.52][.7446] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...253] [ip4][..udp] [......10.0.2.15][28681] -> [.193.37.255.130][61616] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...390] [ip4][..udp] [......10.0.2.15][28681] -> [144.134.132.206][16401]
- update: [...252] [ip4][..udp] [......10.0.2.15][28681] -> [..72.140.120.41][47739] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...391] [ip4][..udp] [......10.0.2.15][28681] -> [...161.81.38.67][.9539]
- update: [...316] [ip4][..udp] [......10.0.2.15][28681] -> [....94.54.66.82][63637] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...262] [ip4][..udp] [......10.0.2.15][28681] -> [....89.75.52.19][46010] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...393] [ip4][..udp] [......10.0.2.15][28681] -> [.58.115.158.103][.5110]
- update: [...382] [ip4][..udp] [......10.0.2.15][28681] -> [..76.175.11.126][40958]
- update: [...397] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][24634]
- update: [...264] [ip4][..udp] [......10.0.2.15][28681] -> [...95.10.205.67][11603] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...379] [ip4][..udp] [......10.0.2.15][28681] -> [..80.140.63.147][29545]
- update: [...396] [ip4][..udp] [......10.0.2.15][28681] -> [..112.119.59.24][28755]
- update: [...312] [ip4][..udp] [......10.0.2.15][28681] -> [..24.167.201.53][47282] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...329] [ip4][..udp] [......10.0.2.15][28681] -> [..92.117.249.98][.6815] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
update: [...433] [ip4][..udp] [......10.0.2.15][28681] -> [.99.255.145.191][47264]
- update: [...328] [ip4][..udp] [......10.0.2.15][28681] -> [.203.220.105.27][19260] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
update: [...404] [ip4][..udp] [......10.0.2.15][28681] -> [.86.234.216.251][17845]
update: [...441] [ip4][..udp] [......10.0.2.15][28681] -> [.36.237.199.108][56040]
- update: [...331] [ip4][..udp] [......10.0.2.15][28681] -> [..45.31.152.112][26851] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
update: [...450] [ip4][..udp] [......10.0.2.15][28681] -> [113.252.206.254][23458]
update: [...426] [ip4][..udp] [......10.0.2.15][28681] -> [..219.71.44.121][14398]
+ update: [...247] [ip4][..udp] [......10.0.2.15][28681] -> [..181.84.178.16][60262] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...307] [ip4][..udp] [......10.0.2.15][28681] -> [..72.201.208.57][38617] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...411] [ip4][..udp] [......10.0.2.15][28681] -> [...89.143.28.64][.6346]
update: [...408] [ip4][..udp] [......10.0.2.15][28681] -> [...90.103.2.245][.6346]
update: [...424] [ip4][..udp] [......10.0.2.15][28681] -> [..93.15.216.216][.6346]
+ update: [...309] [ip4][..udp] [......10.0.2.15][28681] -> [.47.220.186.140][27641] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...479] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.13.148][51896]
update: [...422] [ip4][..udp] [......10.0.2.15][28681] -> [..88.123.35.219][42211]
+ update: [...394] [ip4][..udp] [......10.0.2.15][28681] -> [.165.84.134.136][21407]
+ update: [...254] [ip4][..udp] [......10.0.2.15][28681] -> [..88.120.73.215][24562] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...258] [ip4][..udp] [......10.0.2.15][28681] -> [...24.26.216.95][13889] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...315] [ip4][..udp] [......10.0.2.15][28681] -> [...92.217.84.16][20223] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...439] [ip4][..udp] [......10.0.2.15][28681] -> [..176.135.15.86][.6346]
update: [...474] [ip4][..udp] [......10.0.2.15][28681] -> [..80.61.221.246][45880]
+ update: [...398] [ip4][..udp] [......10.0.2.15][28681] -> [.62.102.148.166][31332]
update: [...477] [ip4][..udp] [......10.0.2.15][28681] -> [....94.54.66.82][45640]
update: [...444] [ip4][..udp] [......10.0.2.15][28681] -> [.122.117.100.78][.9010]
update: [...478] [ip4][..udp] [......10.0.2.15][28681] -> [...36.235.85.44][64914]
update: [...449] [ip4][..udp] [......10.0.2.15][28681] -> [.61.238.173.128][.8826]
update: [...461] [ip4][..udp] [......10.0.2.15][28681] -> [..69.27.193.124][50555]
- update: [...332] [ip4][..udp] [......10.0.2.15][28681] -> [213.229.111.224][.4876] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ update: [...358] [ip4][..udp] [......10.0.2.15][28681] -> [.47.224.174.174][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...472] [ip4][..udp] [......10.0.2.15][28681] -> [....94.54.66.82][45744]
+ update: [...357] [ip4][..udp] [......10.0.2.15][28681] -> [...98.35.85.238][32173] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...471] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][43457]
update: [...481] [ip4][..udp] [......10.0.2.15][28681] -> [..82.120.219.74][.6346]
update: [...476] [ip4][..udp] [......10.0.2.15][28681] -> [..98.18.172.208][63172]
+ update: [...381] [ip4][..udp] [......10.0.2.15][28681] -> [...77.58.211.52][.3806]
+ update: [...386] [ip4][..udp] [......10.0.2.15][28681] -> [...85.172.10.90][40162]
update: [...435] [ip4][..udp] [......10.0.2.15][28681] -> [.109.24.146.101][.6346]
update: [...465] [ip4][..udp] [......10.0.2.15][28681] -> [.....2.28.39.18][15672]
+ update: [...310] [ip4][..udp] [......10.0.2.15][28681] -> [.118.240.69.199][.6348] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...306] [ip4][..udp] [......10.0.2.15][28681] -> [..41.249.63.200][22582]
update: [...421] [ip4][..udp] [......10.0.2.15][28681] -> [..175.182.39.11][12977]
+ update: [...392] [ip4][..udp] [......10.0.2.15][28681] -> [....42.0.69.215][12608]
+ update: [...265] [ip4][..udp] [......10.0.2.15][28681] -> [203.220.198.244][.1194] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...416] [ip4][..udp] [......10.0.2.15][28681] -> [..92.139.61.103][24096]
+ update: [...304] [ip4][..udp] [......10.0.2.15][28681] -> [.193.32.126.214][59596]
update: [...443] [ip4][..udp] [......10.0.2.15][28681] -> [..183.179.14.31][54754]
+ update: [...389] [ip4][..udp] [......10.0.2.15][28681] -> [..94.215.183.71][31310]
update: [...413] [ip4][..udp] [......10.0.2.15][28681] -> [...87.65.188.29][24676]
+ update: [...318] [ip4][..udp] [......10.0.2.15][28681] -> [173.183.183.110][59920] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...242] [ip4][..udp] [......10.0.2.15][28681] -> [..75.133.101.93][52367]
+ update: [...260] [ip4][..udp] [......10.0.2.15][28681] -> [.46.128.114.107][.6578] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...311] [ip4][..udp] [......10.0.2.15][28681] -> [.109.132.188.98][62851] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...412] [ip4][..udp] [......10.0.2.15][28681] -> [...58.177.52.73][.6346]
update: [...418] [ip4][..udp] [......10.0.2.15][28681] -> [.75.129.149.103][.6346]
+ update: [...308] [ip4][..udp] [......10.0.2.15][28681] -> [...81.205.91.45][40137] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...251] [ip4][..udp] [......10.0.2.15][28681] -> [.185.203.218.92][56962] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...468] [ip4][..udp] [......10.0.2.15][28681] -> [..94.214.12.247][44001]
update: [...466] [ip4][..udp] [......10.0.2.15][28681] -> [...70.119.248.5][49929]
+ update: [...259] [ip4][..udp] [......10.0.2.15][28681] -> [103.232.107.100][43508] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...300] [ip4][..udp] [......10.0.2.15][28681] -> [104.238.172.250][23548]
update: [...446] [ip4][..udp] [......10.0.2.15][28681] -> [..61.70.199.107][60475]
update: [...470] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][46790]
+ update: [...385] [ip4][..udp] [......10.0.2.15][28681] -> [..66.223.143.31][47978]
update: [...447] [ip4][..udp] [......10.0.2.15][28681] -> [...14.199.10.60][23458]
update: [...451] [ip4][..udp] [......10.0.2.15][28681] -> [...218.35.66.21][22234]
+ update: [...250] [ip4][..udp] [......10.0.2.15][28681] -> [..51.68.153.214][26253] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...384] [ip4][..udp] [......10.0.2.15][28681] -> [....75.64.6.175][.4743]
+ update: [...256] [ip4][..udp] [......10.0.2.15][28681] -> [.96.246.156.126][50297] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...378] [ip4][..udp] [......10.0.2.15][28681] -> [.118.241.204.61][43366]
update: [...456] [ip4][..udp] [......10.0.2.15][28681] -> [.89.241.112.255][14766]
update: [...428] [ip4][..udp] [......10.0.2.15][28681] -> [....86.162.97.8][.6346]
+ update: [...249] [ip4][..udp] [......10.0.2.15][28681] -> [..45.88.117.218][.6909] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...375] [ip4][..udp] [......10.0.2.15][28681] -> [..73.182.136.42][27873]
update: [...455] [ip4][..udp] [......10.0.2.15][28681] -> [.58.153.206.183][16919]
update: [...453] [ip4][..udp] [......10.0.2.15][28681] -> [..74.127.26.138][.3083]
update: [...425] [ip4][..udp] [......10.0.2.15][28681] -> [..145.82.53.165][.6346]
+ update: [...257] [ip4][..udp] [......10.0.2.15][28681] -> [.82.181.251.218][36368] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...460] [ip4][..udp] [......10.0.2.15][28681] -> [.210.194.116.78][.8342]
update: [...454] [ip4][..udp] [......10.0.2.15][28681] -> [.223.16.121.156][23183]
update: [...401] [ip4][..udp] [......10.0.2.15][28681] -> [.173.178.192.76][.6346]
update: [...484] [ip4][..udp] [......10.0.2.15][28681] -> [...107.4.56.177][10000]
- update: [...327] [ip4][..udp] [......10.0.2.15][28681] -> [...84.28.53.225][44859] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
update: [...406] [ip4][..udp] [......10.0.2.15][28681] -> [....109.27.3.68][57380]
- update: [...321] [ip4][..udp] [......10.0.2.15][28681] -> [188.165.203.190][21995] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ update: [...399] [ip4][..udp] [......10.0.2.15][28681] -> [.175.39.219.223][31728]
update: [...469] [ip4][..udp] [......10.0.2.15][28681] -> [..87.123.54.234][47184]
- update: [...324] [ip4][..udp] [......10.0.2.15][28681] -> [.73.250.179.237][20848] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ update: [...356] [ip4][..udp] [......10.0.2.15][28681] -> [.63.228.175.169][.1936] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...467] [ip4][..udp] [......10.0.2.15][28681] -> [...61.64.177.53][23458]
+ update: [...355] [ip4][..udp] [......10.0.2.15][28681] -> [.181.118.53.212][29998] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...431] [ip4][..udp] [......10.0.2.15][28681] -> [..88.124.71.246][49035]
+ update: [...388] [ip4][..udp] [......10.0.2.15][28681] -> [...121.7.145.36][33905]
+ update: [...303] [ip4][..udp] [......10.0.2.15][28681] -> [.142.132.165.13][30566]
+ update: [...246] [ip4][..udp] [......10.0.2.15][28681] -> [...96.65.68.194][35481] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...395] [ip4][..udp] [......10.0.2.15][28681] -> [..191.114.88.39][18751]
+ update: [...301] [ip4][..udp] [......10.0.2.15][28681] -> [..188.61.52.183][11852]
update: [...483] [ip4][..udp] [.......10.0.2.2][.1026] -> [......10.0.2.15][28681]
update: [...402] [ip4][..udp] [......10.0.2.15][28681] -> [...78.219.202.2][.6346]
update: [...420] [ip4][..udp] [......10.0.2.15][28681] -> [..86.227.127.34][.6346]
update: [...417] [ip4][..udp] [......10.0.2.15][28681] -> [.94.187.236.179][.6346]
+ update: [...317] [ip4][..udp] [......10.0.2.15][28681] -> [...96.236.205.7][34794] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...376] [ip4][..udp] [......10.0.2.15][28681] -> [....156.57.42.2][33476]
update: [...485] [ip4][..udp] [......10.0.2.15][28681] -> [...154.3.42.209][.6346]
+ update: [...261] [ip4][..udp] [......10.0.2.15][28681] -> [..60.241.48.194][21301] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...243] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][53258]
update: [...427] [ip4][..udp] [......10.0.2.15][28681] -> [...81.249.13.30][15138]
+ update: [...313] [ip4][..udp] [......10.0.2.15][28681] -> [..176.99.176.20][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...405] [ip4][..udp] [......10.0.2.15][28681] -> [.176.155.31.118][.6346]
- update: [...319] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][55302] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ update: [...387] [ip4][..udp] [......10.0.2.15][28681] -> [....220.135.8.7][.1219]
+ update: [...302] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][53489]
+ update: [...255] [ip4][..udp] [......10.0.2.15][28681] -> [..80.61.221.246][30577] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...415] [ip4][..udp] [......10.0.2.15][28681] -> [..90.247.160.96][17817]
update: [...458] [ip4][..udp] [......10.0.2.15][28681] -> [118.165.228.167][12201]
update: [...486] [ip4][..udp] [......10.0.2.15][28681] -> [...88.68.45.203][.6346]
update: [...410] [ip4][..udp] [......10.0.2.15][28681] -> [..93.28.130.131][.6346]
+ update: [...248] [ip4][..udp] [......10.0.2.15][28681] -> [..66.30.221.181][12012] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...380] [ip4][..udp] [......10.0.2.15][28681] -> [...83.86.49.195][12019]
update: [...423] [ip4][..udp] [......10.0.2.15][28681] -> [..119.247.6.226][.9713]
update: [...438] [ip4][..udp] [......10.0.2.15][28681] -> [..71.86.190.163][14142]
update: [...403] [ip4][..udp] [......10.0.2.15][28681] -> [197.244.171.132][.6346]
- update: [...330] [ip4][..udp] [......10.0.2.15][28681] -> [....82.64.44.11][.1352] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
update: [...457] [ip4][..udp] [......10.0.2.15][28681] -> [119.247.240.113][13867]
update: [...429] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.215.213][23576]
update: [...436] [ip4][..udp] [......10.0.2.15][28681] -> [.219.68.179.137][.6406]
update: [...414] [ip4][..udp] [......10.0.2.15][28681] -> [175.181.156.244][.8255]
+ update: [...383] [ip4][..udp] [......10.0.2.15][28681] -> [...84.71.243.60][34498]
update: [...409] [ip4][..udp] [......10.0.2.15][28681] -> [...86.194.53.68][33770]
update: [...482] [ip4][..udp] [......10.0.2.15][28681] -> [..86.193.23.172][42227]
update: [...400] [ip4][..udp] [......10.0.2.15][28681] -> [..129.45.47.167][.6346]
- update: [...326] [ip4][..udp] [......10.0.2.15][28681] -> [..100.1.231.138][56558] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ update: [...263] [ip4][..udp] [......10.0.2.15][28681] -> [..82.217.176.52][.7446] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...253] [ip4][..udp] [......10.0.2.15][28681] -> [.193.37.255.130][61616] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...407] [ip4][..udp] [......10.0.2.15][28681] -> [195.181.151.217][.6346]
update: [...463] [ip4][..udp] [......10.0.2.15][28681] -> [..200.7.155.210][28365]
update: [...452] [ip4][..udp] [......10.0.2.15][28681] -> [..68.227.193.37][27481]
+ update: [...390] [ip4][..udp] [......10.0.2.15][28681] -> [144.134.132.206][16401]
update: [...440] [ip4][..udp] [......10.0.2.15][28681] -> [203.165.170.112][37087]
update: [...448] [ip4][..udp] [......10.0.2.15][28681] -> [116.241.162.162][15677]
update: [...459] [ip4][..udp] [......10.0.2.15][28681] -> [...100.89.84.59][11603]
+ update: [...252] [ip4][..udp] [......10.0.2.15][28681] -> [..72.140.120.41][47739] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...391] [ip4][..udp] [......10.0.2.15][28681] -> [...161.81.38.67][.9539]
update: [...437] [ip4][..udp] [......10.0.2.15][28681] -> [....31.38.163.2][.6346]
+ update: [...316] [ip4][..udp] [......10.0.2.15][28681] -> [....94.54.66.82][63637] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...262] [ip4][..udp] [......10.0.2.15][28681] -> [....89.75.52.19][46010] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...445] [ip4][..udp] [......10.0.2.15][28681] -> [118.165.153.100][.4509]
update: [...419] [ip4][..udp] [......10.0.2.15][28681] -> [...78.193.236.8][46557]
+ update: [...393] [ip4][..udp] [......10.0.2.15][28681] -> [.58.115.158.103][.5110]
update: [...432] [ip4][..udp] [......10.0.2.15][28681] -> [...104.6.118.53][.6346]
update: [...464] [ip4][..udp] [......10.0.2.15][28681] -> [...101.128.66.8][34512]
+ update: [...382] [ip4][..udp] [......10.0.2.15][28681] -> [..76.175.11.126][40958]
update: [...480] [ip4][..udp] [......10.0.2.15][28681] -> [..112.119.74.26][65498]
update: [...434] [ip4][..udp] [......10.0.2.15][28681] -> [.114.24.182.130][22232]
update: [...462] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][47808]
+ update: [...397] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][24634]
update: [...430] [ip4][..udp] [......10.0.2.15][28681] -> [....90.8.95.165][40763]
update: [...475] [ip4][..udp] [......10.0.2.15][28681] -> [..188.61.52.183][63978]
update: [...473] [ip4][..udp] [......10.0.2.15][28681] -> [.142.132.165.13][33564]
+ update: [...264] [ip4][..udp] [......10.0.2.15][28681] -> [...95.10.205.67][11603] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...379] [ip4][..udp] [......10.0.2.15][28681] -> [..80.140.63.147][29545]
update: [...442] [ip4][..udp] [......10.0.2.15][28681] -> [..89.204.130.55][29545]
- new: [...749] [ip4][..udp] [......10.0.2.15][28681] -> [.....92.8.59.80][35192]
- new: [...750] [ip4][..udp] [......10.0.2.15][28681] -> [...78.159.27.22][17563]
- new: [...751] [ip4][..udp] [......10.0.2.15][28681] -> [....67.193.8.52][38584]
- new: [...752] [ip4][..udp] [......10.0.2.15][28681] -> [142.115.218.152][.5900]
- new: [...753] [ip4][..udp] [......10.0.2.15][28681] -> [..165.84.140.96][14400]
+ update: [...396] [ip4][..udp] [......10.0.2.15][28681] -> [..112.119.59.24][28755]
+ update: [...312] [ip4][..udp] [......10.0.2.15][28681] -> [..24.167.201.53][47282] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [...338] [ip4][..udp] [......10.0.2.15][28681] -> [221.198.205.196][20778] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- not-detected: [...354] [ip4][..udp] [......10.0.2.15][28681] -> [.80.236.247.120][.1032] [Unknown][Unknown][Unrated]
- idle: [...354] [ip4][..udp] [......10.0.2.15][28681] -> [.80.236.247.120][.1032]
- not-detected: [...353] [ip4][..udp] [......10.0.2.15][28681] -> [195.181.151.217][25282] [Unknown][Unknown][Unrated]
- idle: [...353] [ip4][..udp] [......10.0.2.15][28681] -> [195.181.151.217][25282]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ not-detected: [...134] [ip4][..udp] [......10.0.2.15][28681] -> [...78.231.73.14][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...134] [ip4][..udp] [......10.0.2.15][28681] -> [...78.231.73.14][.6346]
idle: [...350] [ip4][..udp] [......10.0.2.15][28681] -> [..99.250.253.99][11819] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [...343] [ip4][..udp] [......10.0.2.15][28681] -> [..89.212.91.155][.5195] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [...348] [ip4][..udp] [......10.0.2.15][28681] -> [...84.197.97.94][.1360] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [...346] [ip4][..udp] [......10.0.2.15][28681] -> [..76.226.85.105][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [...327] [ip4][..udp] [......10.0.2.15][28681] -> [...84.28.53.225][44859] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
not-detected: [...164] [ip4][..udp] [......10.0.2.15][28681] -> [.142.197.219.85][26234] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...164] [ip4][..udp] [......10.0.2.15][28681] -> [.142.197.219.85][26234]
idle: [...337] [ip4][..udp] [......10.0.2.15][28681] -> [..24.116.64.132][51227] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [...347] [ip4][..udp] [......10.0.2.15][28681] -> [..176.10.169.10][12799] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
not-detected: [...165] [ip4][..udp] [......10.0.2.15][28681] -> [...86.75.43.182][43502] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...165] [ip4][..udp] [......10.0.2.15][28681] -> [...86.75.43.182][43502]
not-detected: [...188] [ip4][..udp] [......10.0.2.15][28681] -> [..83.134.107.32][38836] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...188] [ip4][..udp] [......10.0.2.15][28681] -> [..83.134.107.32][38836]
- not-detected: [...177] [ip4][..udp] [......10.0.2.15][28681] -> [.69.157.183.106][.6346] [Unknown][Unknown][Unrated]
- idle: [...177] [ip4][..udp] [......10.0.2.15][28681] -> [.69.157.183.106][.6346]
not-detected: [...182] [ip4][..udp] [......10.0.2.15][28681] -> [....73.3.103.37][35589] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...182] [ip4][..udp] [......10.0.2.15][28681] -> [....73.3.103.37][35589]
idle: [...326] [ip4][..udp] [......10.0.2.15][28681] -> [..100.1.231.138][56558] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
not-detected: [...351] [ip4][..udp] [......10.0.2.15][28681] -> [..187.37.87.189][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...351] [ip4][..udp] [......10.0.2.15][28681] -> [..187.37.87.189][.6346]
not-detected: [...163] [ip4][..udp] [......10.0.2.15][28681] -> [.88.126.160.158][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...163] [ip4][..udp] [......10.0.2.15][28681] -> [.88.126.160.158][.6346]
idle: [...341] [ip4][..udp] [......10.0.2.15][28681] -> [..24.129.233.60][19990] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...335] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][37058]
- update: [...359] [ip4][..udp] [......10.0.2.15][51685] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...488] [ip4][..udp] [......10.0.2.15][28681] -> [.183.179.90.112][.9852]
update: [...490] [ip4][..udp] [......10.0.2.15][28681] -> [...90.3.215.132][20356]
update: [...489] [ip4][..udp] [......10.0.2.15][28681] -> [...108.44.45.25][.6346]
update: [...487] [ip4][..udp] [......10.0.2.15][28681] -> [..24.78.134.188][49046]
update: [...491] [ip4][..udp] [......10.0.2.15][28681] -> [..36.233.42.210][.5512]
update: [...492] [ip4][..udp] [......10.0.2.15][28681] -> [...172.94.41.71][.6346]
+ new: [...748] [ip4][..udp] [......10.0.2.15][28681] -> [.....92.8.59.80][35192]
+ new: [...749] [ip4][..udp] [......10.0.2.15][28681] -> [...78.159.27.22][17563]
+ new: [...750] [ip4][..udp] [......10.0.2.15][28681] -> [....67.193.8.52][38584]
+ new: [...751] [ip4][..udp] [......10.0.2.15][28681] -> [142.115.218.152][.5900]
+ new: [...752] [ip4][..udp] [......10.0.2.15][28681] -> [...78.231.73.14][.6346]
+ new: [...753] [ip4][..udp] [......10.0.2.15][28681] -> [..165.84.140.96][14400]
idle: [...329] [ip4][..udp] [......10.0.2.15][28681] -> [..92.117.249.98][.6815] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [...328] [ip4][..udp] [......10.0.2.15][28681] -> [.203.220.105.27][19260] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ not-detected: [...354] [ip4][..udp] [......10.0.2.15][28681] -> [.80.236.247.120][.1032] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...354] [ip4][..udp] [......10.0.2.15][28681] -> [.80.236.247.120][.1032]
idle: [...315] [ip4][..udp] [......10.0.2.15][28681] -> [...92.217.84.16][20223] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ not-detected: [...353] [ip4][..udp] [......10.0.2.15][28681] -> [195.181.151.217][25282] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...353] [ip4][..udp] [......10.0.2.15][28681] -> [195.181.151.217][25282]
idle: [...358] [ip4][..udp] [......10.0.2.15][28681] -> [.47.224.174.174][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [...357] [ip4][..udp] [......10.0.2.15][28681] -> [...98.35.85.238][32173] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
not-detected: [....90] [ip4][..tcp] [......10.0.2.15][50245] -> [..73.62.225.181][46843] [Unknown][Unknown][Unrated]
end: [....90] [ip4][..tcp] [......10.0.2.15][50245] -> [..73.62.225.181][46843]
idle: [...318] [ip4][..udp] [......10.0.2.15][28681] -> [173.183.183.110][59920] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [...311] [ip4][..udp] [......10.0.2.15][28681] -> [.109.132.188.98][62851] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
not-detected: [...300] [ip4][..udp] [......10.0.2.15][28681] -> [104.238.172.250][23548] [Unknown][Unknown][Unrated]
idle: [...300] [ip4][..udp] [......10.0.2.15][28681] -> [104.238.172.250][23548]
idle: [...324] [ip4][..udp] [......10.0.2.15][28681] -> [.73.250.179.237][20848] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ not-detected: [...177] [ip4][..udp] [......10.0.2.15][28681] -> [.69.157.183.106][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...177] [ip4][..udp] [......10.0.2.15][28681] -> [.69.157.183.106][.6346]
+ update: [...331] [ip4][..udp] [......10.0.2.15][28681] -> [..45.31.152.112][26851] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...361] [ip4][..udp] [......10.0.2.15][28681] -> [..86.129.196.84][.9915] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...134] [ip4][..udp] [......10.0.2.15][28681] -> [...78.231.73.14][.6346]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...128] [ip4][..udp] [......10.0.2.15][28681] -> [..77.141.219.27][37580]
update: [...114] [ip4][..udp] [......10.0.2.15][28681] -> [....86.23.75.69][.6346]
update: [...366] [ip4][..udp] [......10.0.2.15][28681] -> [....94.8.55.158][51140] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [....88] [ip4][..udp] [......10.0.2.15][28681] -> [.....81.50.24.2][17874]
update: [...365] [ip4][..udp] [......10.0.2.15][28681] -> [..188.23.24.213][18561] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...340] [ip4][..udp] [......10.0.2.15][28681] -> [.38.142.119.234][49732] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [.....8] [ip4][....2] [......10.0.2.15] -> [.....224.0.0.22] [IGMP][Unknown][Network][Acceptable]
+ update: [...335] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][37058]
+ update: [...332] [ip4][..udp] [......10.0.2.15][28681] -> [213.229.111.224][.4876] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [....20] [ip4][..udp] [......10.0.2.15][..138] -> [.....10.0.2.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
update: [...118] [ip4][..udp] [......10.0.2.15][28681] -> [...5.180.62.100][46385]
+ update: [...359] [ip4][..udp] [......10.0.2.15][51685] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
update: [...344] [ip4][..udp] [......10.0.2.15][28681] -> [.207.38.163.228][.6778] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...323] [ip4][..udp] [......10.0.2.15][28681] -> [.96.246.156.126][56070] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...117] [ip4][..udp] [......10.0.2.15][28681] -> [200.120.243.143][.6346]
update: [....98] [ip4][..udp] [......10.0.2.15][28681] -> [.203.222.14.170][23332]
update: [...111] [ip4][..udp] [......10.0.2.15][28681] -> [..90.65.141.157][.6346]
update: [...336] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][.6888] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...139] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.226.142][.6346]
update: [...141] [ip4][..udp] [......10.0.2.15][28681] -> [..172.97.199.14][.6346]
update: [...368] [ip4][..udp] [......10.0.2.15][28681] -> [...47.147.52.21][36728] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...126] [ip4][..udp] [......10.0.2.15][28681] -> [..91.69.159.133][28000]
update: [...363] [ip4][..udp] [......10.0.2.15][28681] -> [...81.205.91.45][38297] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...136] [ip4][..udp] [......10.0.2.15][28681] -> [.80.236.247.120][16047]
update: [....85] [ip4][..udp] [......10.0.2.15][28681] -> [..85.138.20.110][.6346]
update: [...362] [ip4][..udp] [......10.0.2.15][28681] -> [190.192.210.182][.6754] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...135] [ip4][..udp] [......10.0.2.15][28681] -> [.193.250.99.158][.6346]
+ update: [...321] [ip4][..udp] [......10.0.2.15][28681] -> [188.165.203.190][21995] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...342] [ip4][..udp] [......10.0.2.15][28681] -> [..98.208.26.154][.4994] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...369] [ip4][..udp] [......10.0.2.15][28681] -> [.89.187.171.240][.6346]
update: [...125] [ip4][..udp] [......10.0.2.15][28681] -> [..83.92.178.182][57302]
update: [...116] [ip4][..udp] [......10.0.2.15][28681] -> [.124.44.190.145][10170]
- update: [...746] [ip4][.icmp] [..164.132.10.25] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
+ update: [...745] [ip4][.icmp] [..164.132.10.25] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
+ update: [...319] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][55302] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...133] [ip4][..udp] [......10.0.2.15][28681] -> [.91.175.220.161][15721]
update: [...124] [ip4][..udp] [......10.0.2.15][28681] -> [...170.254.19.6][24180]
update: [...130] [ip4][..udp] [......10.0.2.15][28681] -> [..119.224.95.97][46356]
update: [...129] [ip4][..udp] [......10.0.2.15][28681] -> [.176.138.50.179][29411]
+ update: [...330] [ip4][..udp] [......10.0.2.15][28681] -> [....82.64.44.11][.1352] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...360] [ip4][..udp] [......10.0.2.15][28681] -> [..198.58.218.12][47912] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...364] [ip4][..udp] [......10.0.2.15][28681] -> [194.163.180.126][10825] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...137] [ip4][..udp] [......10.0.2.15][28681] -> [...82.65.70.197][21693]
update: [...109] [ip4][..udp] [......10.0.2.15][28681] -> [...88.169.2.153][52414]
update: [...140] [ip4][..udp] [......10.0.2.15][28681] -> [.77.197.111.186][.6346]
update: [...108] [ip4][..udp] [......10.0.2.15][28681] -> [112.119.242.110][.7922]
update: [...339] [ip4][..udp] [......10.0.2.15][28681] -> [..87.123.54.234][54130] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...113] [ip4][..udp] [......10.0.2.15][28681] -> [105.101.132.146][57746]
update: [....87] [ip4][..udp] [......10.0.2.15][28681] -> [..92.131.85.245][31743]
update: [...367] [ip4][..udp] [......10.0.2.15][28681] -> [.149.28.163.175][49956] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...138] [ip4][..udp] [......10.0.2.15][28681] -> [167.114.170.156][23844]
idle: [...251] [ip4][..udp] [......10.0.2.15][28681] -> [.185.203.218.92][56962] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [...249] [ip4][..udp] [......10.0.2.15][28681] -> [..45.88.117.218][.6909] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...577] [ip4][..udp] [......10.0.2.15][28681] -> [.59.148.100.237][23459]
update: [...586] [ip4][..udp] [......10.0.2.15][28681] -> [..221.124.66.33][13060]
- update: [...619] [ip4][..udp] [......10.0.2.15][28681] -> [...1.172.184.48][13281]
+ update: [...618] [ip4][..udp] [......10.0.2.15][28681] -> [...1.172.184.48][13281]
update: [...544] [ip4][..udp] [......10.0.2.15][28681] -> [..111.184.29.35][30582]
update: [...526] [ip4][..udp] [......10.0.2.15][28681] -> [..36.234.197.93][.1483]
update: [...509] [ip4][..udp] [......10.0.2.15][28681] -> [.92.142.109.190][41370]
- update: [...670] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.2846]
- update: [...610] [ip4][..udp] [......10.0.2.15][28681] -> [116.241.162.162][59016]
- update: [...691] [ip4][..udp] [......10.0.2.15][28681] -> [..61.18.212.223][50637]
- update: [...701] [ip4][..udp] [......10.0.2.15][28681] -> [...91.206.27.26][.6578]
+ update: [...669] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.2846]
+ update: [...609] [ip4][..udp] [......10.0.2.15][28681] -> [116.241.162.162][59016]
+ update: [...690] [ip4][..udp] [......10.0.2.15][28681] -> [..61.18.212.223][50637]
+ update: [...700] [ip4][..udp] [......10.0.2.15][28681] -> [...91.206.27.26][.6578]
update: [...511] [ip4][..udp] [......10.0.2.15][28681] -> [...68.47.223.27][.6346]
update: [...496] [ip4][..udp] [......10.0.2.15][28681] -> [.218.173.230.98][19004]
update: [...533] [ip4][..udp] [......10.0.2.15][28681] -> [..36.229.185.60][.6898]
update: [...592] [ip4][..udp] [......10.0.2.15][28681] -> [....1.36.249.91][.7190]
- update: [...702] [ip4][..udp] [......10.0.2.15][28681] -> [119.237.190.184][64163]
+ update: [...701] [ip4][..udp] [......10.0.2.15][28681] -> [119.237.190.184][64163]
update: [...495] [ip4][..udp] [......10.0.2.15][28681] -> [...81.247.89.20][.6346]
update: [...166] [ip4][..udp] [......10.0.2.15][28681] -> [..90.59.253.186][15555]
update: [...183] [ip4][..udp] [......10.0.2.15][28681] -> [..91.172.15.182][37829]
update: [...184] [ip4][..udp] [......10.0.2.15][28681] -> [..86.239.62.213][.6346]
update: [...493] [ip4][..udp] [......10.0.2.15][57552] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
update: [...603] [ip4][..udp] [......10.0.2.15][28681] -> [....1.36.249.91][64577]
- update: [...622] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3227]
- update: [...647] [ip4][..udp] [......10.0.2.15][28681] -> [..36.237.10.152][21293]
- update: [...741] [ip4][..udp] [......10.0.2.15][28681] -> [...36.237.25.47][21293]
+ update: [...621] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3227]
+ update: [...646] [ip4][..udp] [......10.0.2.15][28681] -> [..36.237.10.152][21293]
+ update: [...740] [ip4][..udp] [......10.0.2.15][28681] -> [...36.237.25.47][21293]
update: [...516] [ip4][..udp] [......10.0.2.15][28681] -> [.119.246.147.72][.4572]
- update: [...734] [ip4][..udp] [......10.0.2.15][28681] -> [...99.199.148.6][.4338]
+ update: [...733] [ip4][..udp] [......10.0.2.15][28681] -> [...99.199.148.6][.4338]
update: [...597] [ip4][..udp] [......10.0.2.15][28681] -> [..36.236.203.37][52274]
- update: [...676] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.118.77][62191]
- update: [...739] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3256]
+ update: [...675] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.118.77][62191]
+ update: [...738] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3256]
update: [...553] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3259]
- update: [...629] [ip4][..udp] [......10.0.2.15][28681] -> [....45.65.87.24][16201]
+ update: [...628] [ip4][..udp] [......10.0.2.15][28681] -> [....45.65.87.24][16201]
update: [...352] [ip4][..udp] [......10.0.2.15][28681] -> [.176.191.49.159][.6346]
update: [...195] [ip4][..udp] [......10.0.2.15][28681] -> [.177.231.151.16][.6346]
- update: [...617] [ip4][..udp] [......10.0.2.15][28681] -> [220.208.167.152][30628]
+ update: [...616] [ip4][..udp] [......10.0.2.15][28681] -> [220.208.167.152][30628]
update: [...596] [ip4][..udp] [......10.0.2.15][28681] -> [..61.18.212.223][58954]
update: [...219] [ip4][..udp] [......10.0.2.15][28681] -> [...76.30.86.144][53821]
- update: [...714] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][51379]
+ update: [...713] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][51379]
update: [...593] [ip4][..udp] [......10.0.2.15][28681] -> [..124.218.26.16][.9747]
update: [...571] [ip4][..udp] [......10.0.2.15][28681] -> [.114.40.163.123][55341]
update: [...524] [ip4][..udp] [......10.0.2.15][28681] -> [.80.193.171.146][65362]
- update: [...643] [ip4][..udp] [......10.0.2.15][28681] -> [.220.39.142.122][.6346]
+ update: [...642] [ip4][..udp] [......10.0.2.15][28681] -> [.220.39.142.122][.6346]
update: [...572] [ip4][..udp] [......10.0.2.15][28681] -> [...86.153.21.93][36696]
- update: [...650] [ip4][..udp] [......10.0.2.15][28681] -> [.122.117.100.78][56128]
+ update: [...649] [ip4][..udp] [......10.0.2.15][28681] -> [.122.117.100.78][56128]
update: [...520] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3339]
- update: [...636] [ip4][..udp] [......10.0.2.15][28681] -> [...219.70.48.23][.2556]
- update: [...637] [ip4][..udp] [......10.0.2.15][28681] -> [.80.193.171.146][53143]
- update: [...638] [ip4][..udp] [......10.0.2.15][28681] -> [..36.233.194.73][.1995]
+ update: [...635] [ip4][..udp] [......10.0.2.15][28681] -> [...219.70.48.23][.2556]
+ update: [...636] [ip4][..udp] [......10.0.2.15][28681] -> [.80.193.171.146][53143]
+ update: [...637] [ip4][..udp] [......10.0.2.15][28681] -> [..36.233.194.73][.1995]
update: [...546] [ip4][..udp] [......10.0.2.15][28681] -> [.38.142.119.234][49867]
- update: [...677] [ip4][..udp] [......10.0.2.15][28681] -> [...1.64.208.110][55550]
- update: [...723] [ip4][..udp] [......10.0.2.15][28681] -> [.213.32.245.121][12333]
+ update: [...676] [ip4][..udp] [......10.0.2.15][28681] -> [...1.64.208.110][55550]
+ update: [...722] [ip4][..udp] [......10.0.2.15][28681] -> [.213.32.245.121][12333]
update: [...531] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][51497]
update: [...578] [ip4][..udp] [......10.0.2.15][28681] -> [..77.205.243.44][46006]
- update: [...738] [ip4][..udp] [......10.0.2.15][28681] -> [174.115.127.251][23897]
+ update: [...737] [ip4][..udp] [......10.0.2.15][28681] -> [174.115.127.251][23897]
update: [...584] [ip4][..udp] [......10.0.2.15][28681] -> [.80.193.171.146][18360]
update: [...534] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54436]
- update: [...708] [ip4][..udp] [......10.0.2.15][28681] -> [..183.179.14.31][64871]
- update: [...745] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][48250]
+ update: [...707] [ip4][..udp] [......10.0.2.15][28681] -> [..183.179.14.31][64871]
+ update: [...744] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][48250]
update: [...501] [ip4][..udp] [......10.0.2.15][28681] -> [.88.160.214.137][.6346]
- update: [...684] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54459]
+ update: [...683] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54459]
update: [...506] [ip4][..udp] [......10.0.2.15][28681] -> [..136.32.84.139][.6346]
update: [...562] [ip4][..udp] [......10.0.2.15][28681] -> [112.119.242.110][59879]
- update: [...620] [ip4][..udp] [......10.0.2.15][28681] -> [...1.163.14.246][.1630]
- update: [...606] [ip4][..udp] [......10.0.2.15][28681] -> [.96.246.156.126][56070]
- update: [...692] [ip4][..udp] [......10.0.2.15][28681] -> [..61.93.150.146][62507]
- update: [...621] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][53516]
- update: [...668] [ip4][..udp] [......10.0.2.15][28681] -> [.223.18.211.177][18085]
- update: [...721] [ip4][..udp] [......10.0.2.15][28681] -> [..76.26.178.132][10053]
- update: [...698] [ip4][..udp] [......10.0.2.15][28681] -> [...14.199.10.60][53906]
- update: [...623] [ip4][..udp] [......10.0.2.15][28681] -> [..36.234.18.166][61319]
+ update: [...619] [ip4][..udp] [......10.0.2.15][28681] -> [...1.163.14.246][.1630]
+ update: [...691] [ip4][..udp] [......10.0.2.15][28681] -> [..61.93.150.146][62507]
+ update: [...620] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][53516]
+ update: [...667] [ip4][..udp] [......10.0.2.15][28681] -> [.223.18.211.177][18085]
+ update: [...720] [ip4][..udp] [......10.0.2.15][28681] -> [..76.26.178.132][10053]
+ update: [...697] [ip4][..udp] [......10.0.2.15][28681] -> [...14.199.10.60][53906]
+ update: [...622] [ip4][..udp] [......10.0.2.15][28681] -> [..36.234.18.166][61319]
update: [...542] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][51675]
- update: [...715] [ip4][..udp] [......10.0.2.15][28681] -> [..76.174.174.69][21358]
+ update: [...714] [ip4][..udp] [......10.0.2.15][28681] -> [..76.174.174.69][21358]
update: [...191] [ip4][..udp] [......10.0.2.15][28681] -> [.190.153.143.54][65535]
- update: [...615] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.118.77][60482]
- update: [...607] [ip4][..udp] [......10.0.2.15][28681] -> [.149.28.163.175][42288]
+ update: [...614] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.118.77][60482]
+ update: [...746] [ip4][..udp] [......10.0.2.15][28681] -> [123.205.126.102][.5193]
+ update: [...606] [ip4][..udp] [......10.0.2.15][28681] -> [.149.28.163.175][42288]
update: [...172] [ip4][..udp] [......10.0.2.15][28681] -> [..87.69.142.133][15471]
- update: [...740] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][19814]
+ update: [...739] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][19814]
update: [...587] [ip4][..udp] [......10.0.2.15][28681] -> [.94.134.154.158][54130]
update: [...550] [ip4][..udp] [......10.0.2.15][28681] -> [.220.238.145.82][33527]
- update: [...689] [ip4][..udp] [......10.0.2.15][28681] -> [.114.36.234.196][11629]
- update: [...671] [ip4][..udp] [......10.0.2.15][28681] -> [..36.236.203.37][52669]
+ update: [...688] [ip4][..udp] [......10.0.2.15][28681] -> [.114.36.234.196][11629]
+ update: [...670] [ip4][..udp] [......10.0.2.15][28681] -> [..36.236.203.37][52669]
update: [...598] [ip4][..udp] [......10.0.2.15][28681] -> [...1.172.184.48][.1512]
update: [...551] [ip4][..udp] [......10.0.2.15][28681] -> [..92.24.129.230][14766]
- update: [...686] [ip4][..udp] [......10.0.2.15][28681] -> [..111.241.31.96][.8349]
+ update: [...685] [ip4][..udp] [......10.0.2.15][28681] -> [..111.241.31.96][.8349]
update: [...555] [ip4][..udp] [......10.0.2.15][28681] -> [..124.218.26.16][20387]
- update: [...722] [ip4][..udp] [......10.0.2.15][28681] -> [.123.203.72.224][.9897]
+ update: [...721] [ip4][..udp] [......10.0.2.15][28681] -> [.123.203.72.224][.9897]
update: [...371] [ip4][..udp] [......10.0.2.15][28681] -> [.109.131.202.24][44748]
- update: [...632] [ip4][..udp] [......10.0.2.15][28681] -> [..36.231.59.187][62234]
+ update: [...631] [ip4][..udp] [......10.0.2.15][28681] -> [..36.231.59.187][62234]
update: [...591] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][53707]
update: [...594] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.7375]
- update: [...614] [ip4][..udp] [......10.0.2.15][28681] -> [119.247.152.218][51920]
- update: [...618] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.7380]
+ update: [...613] [ip4][..udp] [......10.0.2.15][28681] -> [119.247.152.218][51920]
+ update: [...617] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.7380]
update: [...508] [ip4][..udp] [......10.0.2.15][28681] -> [...92.144.99.73][10745]
update: [...582] [ip4][..udp] [......10.0.2.15][28681] -> [....223.16.83.5][10624]
update: [...573] [ip4][..udp] [......10.0.2.15][28681] -> [..71.239.173.18][23327]
@@ -2794,23 +2857,23 @@
update: [...568] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.118.77][56562]
update: [...190] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.195.227][.6346]
update: [...538] [ip4][..udp] [......10.0.2.15][28681] -> [.124.218.41.253][14339]
- update: [...624] [ip4][..udp] [......10.0.2.15][28681] -> [.210.209.249.84][24751]
- update: [...630] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][45710]
- update: [...693] [ip4][..udp] [......10.0.2.15][28681] -> [.76.110.153.177][40022]
+ update: [...623] [ip4][..udp] [......10.0.2.15][28681] -> [.210.209.249.84][24751]
+ update: [...629] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][45710]
+ update: [...692] [ip4][..udp] [......10.0.2.15][28681] -> [.76.110.153.177][40022]
update: [...604] [ip4][..udp] [......10.0.2.15][28681] -> [.123.202.31.113][53291]
- update: [...719] [ip4][..udp] [......10.0.2.15][28681] -> [218.102.208.175][.9167]
+ update: [...718] [ip4][..udp] [......10.0.2.15][28681] -> [218.102.208.175][.9167]
update: [...536] [ip4][..udp] [......10.0.2.15][28681] -> [118.167.222.160][56121]
update: [...558] [ip4][..udp] [......10.0.2.15][28681] -> [...112.105.52.2][.6466]
update: [...556] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49787]
update: [...600] [ip4][..udp] [......10.0.2.15][28681] -> [....1.64.156.63][60092]
- update: [...646] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49803]
- update: [...662] [ip4][..udp] [......10.0.2.15][28681] -> [...24.127.1.235][37814]
+ update: [...645] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49803]
+ update: [...661] [ip4][..udp] [......10.0.2.15][28681] -> [...24.127.1.235][37814]
update: [...499] [ip4][..udp] [......10.0.2.15][28681] -> [....1.161.80.82][.8656]
- update: [...627] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49815]
- update: [...704] [ip4][..udp] [......10.0.2.15][28681] -> [..114.40.67.191][14971]
+ update: [...626] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49815]
+ update: [...703] [ip4][..udp] [......10.0.2.15][28681] -> [..114.40.67.191][14971]
update: [...560] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][53883]
- update: [...657] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54914]
- update: [...728] [ip4][..udp] [......10.0.2.15][28681] -> [101.136.187.253][10914]
+ update: [...656] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54914]
+ update: [...727] [ip4][..udp] [......10.0.2.15][28681] -> [101.136.187.253][10914]
update: [...521] [ip4][..udp] [......10.0.2.15][28681] -> [.113.255.250.32][23458]
update: [...503] [ip4][..udp] [......10.0.2.15][28681] -> [..74.210.244.72][.6346]
update: [...505] [ip4][..udp] [......10.0.2.15][28681] -> [.....42.2.62.28][.6387]
@@ -2819,66 +2882,67 @@
update: [...173] [ip4][..udp] [......10.0.2.15][28681] -> [..121.99.222.36][44988]
update: [...180] [ip4][..udp] [......10.0.2.15][28681] -> [...66.131.24.72][30711]
update: [...498] [ip4][..udp] [......10.0.2.15][28681] -> [...8.44.149.207][30551]
- update: [...705] [ip4][..udp] [......10.0.2.15][28681] -> [..123.192.83.59][33513]
- update: [...642] [ip4][..udp] [......10.0.2.15][28681] -> [.36.233.199.103][.2625]
- update: [...718] [ip4][..udp] [......10.0.2.15][28681] -> [...79.191.58.38][48157]
- update: [...743] [ip4][..udp] [......10.0.2.15][28681] -> [194.163.180.126][36780]
- update: [...675] [ip4][..udp] [......10.0.2.15][28681] -> [...219.70.1.236][.9369]
- update: [...673] [ip4][..udp] [......10.0.2.15][28681] -> [....223.16.83.5][.4765]
- update: [...682] [ip4][..udp] [......10.0.2.15][28681] -> [..61.220.41.241][53072]
- update: [...641] [ip4][..udp] [......10.0.2.15][28681] -> [....1.36.249.91][65430]
+ update: [...704] [ip4][..udp] [......10.0.2.15][28681] -> [..123.192.83.59][33513]
+ update: [...641] [ip4][..udp] [......10.0.2.15][28681] -> [.36.233.199.103][.2625]
+ update: [...717] [ip4][..udp] [......10.0.2.15][28681] -> [...79.191.58.38][48157]
+ update: [...742] [ip4][..udp] [......10.0.2.15][28681] -> [194.163.180.126][36780]
+ update: [...674] [ip4][..udp] [......10.0.2.15][28681] -> [...219.70.1.236][.9369]
+ update: [...672] [ip4][..udp] [......10.0.2.15][28681] -> [....223.16.83.5][.4765]
+ update: [...681] [ip4][..udp] [......10.0.2.15][28681] -> [..61.220.41.241][53072]
+ update: [...640] [ip4][..udp] [......10.0.2.15][28681] -> [....1.36.249.91][65430]
update: [...559] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][55080]
- update: [...683] [ip4][..udp] [......10.0.2.15][28681] -> [203.220.198.244][50896]
- update: [...680] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.83.132][57131]
- update: [...695] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][.6514]
- update: [...666] [ip4][..udp] [......10.0.2.15][28681] -> [..82.36.106.134][.3927]
- update: [...661] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][.6527]
+ update: [...682] [ip4][..udp] [......10.0.2.15][28681] -> [203.220.198.244][50896]
+ update: [...679] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.83.132][57131]
+ update: [...694] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][.6514]
+ update: [...665] [ip4][..udp] [......10.0.2.15][28681] -> [..82.36.106.134][.3927]
+ update: [...660] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][.6527]
update: [...529] [ip4][..udp] [......10.0.2.15][28681] -> [116.241.162.162][57929]
- update: [...616] [ip4][..udp] [......10.0.2.15][28681] -> [.74.195.236.249][18557]
+ update: [...615] [ip4][..udp] [......10.0.2.15][28681] -> [.74.195.236.249][18557]
update: [...539] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][.7510]
- update: [...717] [ip4][..udp] [......10.0.2.15][28681] -> [...98.249.190.8][25198]
- update: [...732] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6564]
+ update: [...716] [ip4][..udp] [......10.0.2.15][28681] -> [...98.249.190.8][25198]
+ update: [...731] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6564]
update: [...545] [ip4][..udp] [......10.0.2.15][28681] -> [..116.49.159.77][55915]
update: [...156] [ip4][..udp] [......10.0.2.15][28681] -> [..86.244.228.86][10131]
update: [...374] [ip4][..udp] [......10.0.2.15][28681] -> [....62.35.190.5][18604]
- update: [...736] [ip4][..udp] [......10.0.2.15][28681] -> [..45.31.152.112][52420]
+ update: [...735] [ip4][..udp] [......10.0.2.15][28681] -> [..45.31.152.112][52420]
update: [...176] [ip4][..udp] [......10.0.2.15][28681] -> [....41.99.164.4][.6346]
- update: [...664] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6594]
- update: [...635] [ip4][..udp] [......10.0.2.15][28681] -> [..24.179.18.242][47329]
+ update: [...663] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6594]
+ update: [...634] [ip4][..udp] [......10.0.2.15][28681] -> [..24.179.18.242][47329]
+ update: [...747] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6599]
update: [...527] [ip4][..udp] [......10.0.2.15][28681] -> [..42.72.149.140][37848]
- update: [...644] [ip4][..udp] [......10.0.2.15][28681] -> [..31.20.248.147][30706]
- update: [...712] [ip4][..udp] [......10.0.2.15][28681] -> [..220.129.86.65][49723]
+ update: [...643] [ip4][..udp] [......10.0.2.15][28681] -> [..31.20.248.147][30706]
+ update: [...711] [ip4][..udp] [......10.0.2.15][28681] -> [..220.129.86.65][49723]
update: [...504] [ip4][..udp] [......10.0.2.15][28681] -> [..85.203.45.107][.6346]
update: [...563] [ip4][..udp] [......10.0.2.15][28681] -> [...112.105.52.2][.6831]
update: [...157] [ip4][..udp] [......10.0.2.15][28681] -> [.86.227.162.150][.6346]
- update: [...640] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.7849]
+ update: [...639] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.7849]
update: [...209] [ip4][..udp] [......10.0.2.15][28681] -> [..91.179.98.234][.6346]
update: [...372] [ip4][..udp] [......10.0.2.15][28681] -> [.91.179.185.126][.6346]
- update: [...730] [ip4][..udp] [......10.0.2.15][28681] -> [..114.47.227.91][54463]
- update: [...733] [ip4][..udp] [......10.0.2.15][28681] -> [..85.168.34.105][39908]
- update: [...634] [ip4][..udp] [......10.0.2.15][28681] -> [..68.174.18.115][50679]
- update: [...608] [ip4][..udp] [......10.0.2.15][28681] -> [..111.241.31.96][.4814]
- update: [...706] [ip4][..udp] [......10.0.2.15][28681] -> [..124.218.26.16][.8658]
- update: [...699] [ip4][..udp] [......10.0.2.15][28681] -> [..70.81.219.111][19210]
+ update: [...729] [ip4][..udp] [......10.0.2.15][28681] -> [..114.47.227.91][54463]
+ update: [...732] [ip4][..udp] [......10.0.2.15][28681] -> [..85.168.34.105][39908]
+ update: [...633] [ip4][..udp] [......10.0.2.15][28681] -> [..68.174.18.115][50679]
+ update: [...607] [ip4][..udp] [......10.0.2.15][28681] -> [..111.241.31.96][.4814]
+ update: [...705] [ip4][..udp] [......10.0.2.15][28681] -> [..124.218.26.16][.8658]
+ update: [...698] [ip4][..udp] [......10.0.2.15][28681] -> [..70.81.219.111][19210]
update: [...595] [ip4][..udp] [......10.0.2.15][28681] -> [.175.182.21.156][13732]
- update: [...724] [ip4][..udp] [......10.0.2.15][28681] -> [.175.39.219.223][13482]
- update: [...674] [ip4][..udp] [......10.0.2.15][28681] -> [.125.59.215.249][14571]
- update: [...612] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][59384]
- update: [...725] [ip4][..udp] [......10.0.2.15][28681] -> [...1.65.217.224][.9070]
- update: [...645] [ip4][..udp] [......10.0.2.15][28681] -> [...173.22.22.94][34245]
- update: [...667] [ip4][..udp] [......10.0.2.15][28681] -> [.159.196.95.223][.2003]
- update: [...649] [ip4][..udp] [......10.0.2.15][28681] -> [180.218.135.222][.4548]
+ update: [...723] [ip4][..udp] [......10.0.2.15][28681] -> [.175.39.219.223][13482]
+ update: [...673] [ip4][..udp] [......10.0.2.15][28681] -> [.125.59.215.249][14571]
+ update: [...611] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][59384]
+ update: [...724] [ip4][..udp] [......10.0.2.15][28681] -> [...1.65.217.224][.9070]
+ update: [...644] [ip4][..udp] [......10.0.2.15][28681] -> [...173.22.22.94][34245]
+ update: [...666] [ip4][..udp] [......10.0.2.15][28681] -> [.159.196.95.223][.2003]
+ update: [...648] [ip4][..udp] [......10.0.2.15][28681] -> [180.218.135.222][.4548]
update: [...159] [ip4][..udp] [......10.0.2.15][28681] -> [176.163.231.160][.6346]
update: [...579] [ip4][..udp] [......10.0.2.15][28681] -> [.223.16.170.108][23458]
- update: [...678] [ip4][..udp] [......10.0.2.15][28681] -> [....223.16.83.5][.9128]
- update: [...707] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.1968]
+ update: [...677] [ip4][..udp] [......10.0.2.15][28681] -> [....223.16.83.5][.9128]
+ update: [...706] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.1968]
update: [...554] [ip4][..udp] [......10.0.2.15][28681] -> [.123.203.72.224][55577]
- update: [...655] [ip4][..udp] [......10.0.2.15][28681] -> [.84.118.116.198][44616]
- update: [...726] [ip4][..udp] [......10.0.2.15][28681] -> [..219.91.30.216][61635]
- update: [...669] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][64731]
+ update: [...654] [ip4][..udp] [......10.0.2.15][28681] -> [.84.118.116.198][44616]
+ update: [...725] [ip4][..udp] [......10.0.2.15][28681] -> [..219.91.30.216][61635]
+ update: [...668] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][64731]
update: [...528] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][58442]
- update: [...742] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.4364]
- update: [...697] [ip4][..udp] [......10.0.2.15][28681] -> [188.165.203.190][55050]
+ update: [...741] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.4364]
+ update: [...696] [ip4][..udp] [......10.0.2.15][28681] -> [188.165.203.190][55050]
update: [...537] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.2034]
update: [...213] [ip4][..udp] [......10.0.2.15][28681] -> [....5.180.62.37][.6346]
update: [...167] [ip4][..udp] [......10.0.2.15][28681] -> [..93.29.107.176][20363]
@@ -2886,46 +2950,46 @@
update: [...171] [ip4][..udp] [......10.0.2.15][28681] -> [196.217.132.111][25394]
update: [...502] [ip4][..udp] [......10.0.2.15][28681] -> [..47.156.58.211][.6346]
update: [...507] [ip4][..udp] [......10.0.2.15][28681] -> [...50.4.204.220][.6346]
- update: [...687] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][13965]
- update: [...663] [ip4][..udp] [......10.0.2.15][28681] -> [..96.59.117.166][33192]
+ update: [...686] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][13965]
+ update: [...662] [ip4][..udp] [......10.0.2.15][28681] -> [..96.59.117.166][33192]
update: [...535] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10655]
update: [...160] [ip4][..udp] [......10.0.2.15][28681] -> [...83.150.49.35][32448]
update: [...602] [ip4][..udp] [......10.0.2.15][28681] -> [.123.203.72.224][53658]
update: [...589] [ip4][..udp] [......10.0.2.15][28681] -> [.113.255.250.32][52647]
- update: [...654] [ip4][..udp] [......10.0.2.15][28681] -> [....82.12.1.136][.6348]
+ update: [...653] [ip4][..udp] [......10.0.2.15][28681] -> [....82.12.1.136][.6348]
update: [...525] [ip4][..udp] [......10.0.2.15][28681] -> [.113.255.250.32][52660]
- update: [...611] [ip4][..udp] [......10.0.2.15][28681] -> [..61.10.174.159][.4841]
+ update: [...610] [ip4][..udp] [......10.0.2.15][28681] -> [..61.10.174.159][.4841]
update: [...532] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10677]
- update: [...696] [ip4][..udp] [......10.0.2.15][28681] -> [..76.189.72.230][.8161]
+ update: [...695] [ip4][..udp] [......10.0.2.15][28681] -> [..76.189.72.230][.8161]
update: [...185] [ip4][..udp] [......10.0.2.15][28681] -> [.109.132.196.58][.6346]
update: [...512] [ip4][..udp] [......10.0.2.15][28681] -> [..209.204.207.5][49256]
- update: [...735] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.91.201][.4297]
- update: [...628] [ip4][..udp] [......10.0.2.15][28681] -> [..73.62.225.181][46843]
+ update: [...734] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.91.201][.4297]
+ update: [...627] [ip4][..udp] [......10.0.2.15][28681] -> [..73.62.225.181][46843]
update: [...552] [ip4][..udp] [......10.0.2.15][28681] -> [...218.250.6.59][60012]
- update: [...651] [ip4][..udp] [......10.0.2.15][28681] -> [..114.47.227.91][58856]
- update: [...703] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10728]
+ update: [...650] [ip4][..udp] [......10.0.2.15][28681] -> [..114.47.227.91][58856]
+ update: [...702] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10728]
update: [...581] [ip4][..udp] [......10.0.2.15][28681] -> [..58.115.108.10][.4641]
- update: [...613] [ip4][..udp] [......10.0.2.15][28681] -> [.106.104.88.139][.7423]
+ update: [...612] [ip4][..udp] [......10.0.2.15][28681] -> [.106.104.88.139][.7423]
update: [...583] [ip4][..udp] [......10.0.2.15][28681] -> [...87.75.180.80][35361]
- update: [...672] [ip4][..udp] [......10.0.2.15][28681] -> [180.218.135.222][49867]
+ update: [...671] [ip4][..udp] [......10.0.2.15][28681] -> [180.218.135.222][49867]
update: [...574] [ip4][..udp] [......10.0.2.15][28681] -> [..223.17.132.18][23458]
- update: [...679] [ip4][..udp] [......10.0.2.15][28681] -> [150.116.225.105][51438]
+ update: [...678] [ip4][..udp] [......10.0.2.15][28681] -> [150.116.225.105][51438]
update: [...518] [ip4][..udp] [......10.0.2.15][28681] -> [..202.151.63.59][.7624]
- update: [...716] [ip4][..udp] [......10.0.2.15][28681] -> [...219.71.72.88][58808]
- update: [...660] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10791]
+ update: [...715] [ip4][..udp] [......10.0.2.15][28681] -> [...219.71.72.88][58808]
+ update: [...659] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10791]
update: [...543] [ip4][..udp] [......10.0.2.15][28681] -> [..114.39.159.60][56896]
update: [...161] [ip4][..udp] [......10.0.2.15][28681] -> [..213.120.26.86][29946]
update: [...564] [ip4][..udp] [......10.0.2.15][28681] -> [..61.222.160.99][53144]
update: [...557] [ip4][..udp] [......10.0.2.15][28681] -> [..61.222.160.99][53163]
- update: [...648] [ip4][..udp] [......10.0.2.15][28681] -> [..61.18.212.223][58290]
- update: [...700] [ip4][..udp] [......10.0.2.15][28681] -> [..77.222.213.44][26536]
- update: [...652] [ip4][..udp] [......10.0.2.15][28681] -> [....1.64.156.63][65023]
- update: [...659] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][.8075]
- update: [...713] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][59978]
- update: [...658] [ip4][..udp] [......10.0.2.15][28681] -> [..61.222.160.99][53195]
+ update: [...647] [ip4][..udp] [......10.0.2.15][28681] -> [..61.18.212.223][58290]
+ update: [...699] [ip4][..udp] [......10.0.2.15][28681] -> [..77.222.213.44][26536]
+ update: [...651] [ip4][..udp] [......10.0.2.15][28681] -> [....1.64.156.63][65023]
+ update: [...658] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][.8075]
+ update: [...712] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][59978]
+ update: [...657] [ip4][..udp] [......10.0.2.15][28681] -> [..61.222.160.99][53195]
update: [...576] [ip4][..udp] [......10.0.2.15][28681] -> [104.238.172.250][42925]
update: [...570] [ip4][..udp] [......10.0.2.15][28681] -> [..97.83.183.148][.8890]
- update: [...681] [ip4][..udp] [......10.0.2.15][28681] -> [.61.227.198.100][.6910]
+ update: [...680] [ip4][..udp] [......10.0.2.15][28681] -> [.61.227.198.100][.6910]
update: [...175] [ip4][..udp] [......10.0.2.15][28681] -> [...115.69.62.99][.6346]
update: [...500] [ip4][..udp] [......10.0.2.15][28681] -> [.220.143.34.225][20071]
update: [...566] [ip4][..udp] [......10.0.2.15][28681] -> [...58.176.62.40][52755]
@@ -2935,26 +2999,26 @@
update: [...519] [ip4][..udp] [......10.0.2.15][28681] -> [...219.70.48.23][.8070]
update: [...601] [ip4][..udp] [......10.0.2.15][28681] -> [113.255.200.161][65274]
update: [...200] [ip4][..udp] [......10.0.2.15][28681] -> [.138.199.16.123][52993]
- update: [...639] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.242.225][15068]
- update: [...727] [ip4][..udp] [......10.0.2.15][28681] -> [....1.171.82.65][50072]
- update: [...609] [ip4][..udp] [......10.0.2.15][28681] -> [...1.163.14.246][23461]
- update: [...737] [ip4][..udp] [......10.0.2.15][28681] -> [118.166.252.163][14391]
+ update: [...638] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.242.225][15068]
+ update: [...726] [ip4][..udp] [......10.0.2.15][28681] -> [....1.171.82.65][50072]
+ update: [...608] [ip4][..udp] [......10.0.2.15][28681] -> [...1.163.14.246][23461]
+ update: [...736] [ip4][..udp] [......10.0.2.15][28681] -> [118.166.252.163][14391]
update: [...549] [ip4][..udp] [......10.0.2.15][28681] -> [..84.211.151.48][11105]
update: [...561] [ip4][..udp] [......10.0.2.15][28681] -> [.61.238.173.128][57466]
- update: [...626] [ip4][..udp] [......10.0.2.15][28681] -> [113.252.206.254][49737]
+ update: [...625] [ip4][..udp] [......10.0.2.15][28681] -> [113.252.206.254][49737]
update: [...580] [ip4][..udp] [......10.0.2.15][28681] -> [...76.119.55.28][20347]
- update: [...625] [ip4][..udp] [......10.0.2.15][28681] -> [.61.238.173.128][57492]
+ update: [...624] [ip4][..udp] [......10.0.2.15][28681] -> [.61.238.173.128][57492]
update: [...567] [ip4][..udp] [......10.0.2.15][28681] -> [...58.176.62.40][52889]
- update: [...685] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][54436]
- update: [...744] [ip4][..udp] [......10.0.2.15][28681] -> [...27.94.154.53][.6346]
+ update: [...684] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][54436]
+ update: [...743] [ip4][..udp] [......10.0.2.15][28681] -> [...27.94.154.53][.6346]
update: [...541] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][11141]
- update: [...731] [ip4][..udp] [......10.0.2.15][28681] -> [124.217.188.105][62849]
- update: [...711] [ip4][..udp] [......10.0.2.15][28681] -> [113.254.140.225][63637]
- update: [...710] [ip4][..udp] [......10.0.2.15][28681] -> [.223.16.121.156][.3624]
+ update: [...730] [ip4][..udp] [......10.0.2.15][28681] -> [124.217.188.105][62849]
+ update: [...710] [ip4][..udp] [......10.0.2.15][28681] -> [113.254.140.225][63637]
+ update: [...709] [ip4][..udp] [......10.0.2.15][28681] -> [.223.16.121.156][.3624]
update: [...547] [ip4][..udp] [......10.0.2.15][28681] -> [213.229.111.224][43316]
- update: [...688] [ip4][..udp] [......10.0.2.15][28681] -> [..66.30.221.181][53454]
+ update: [...687] [ip4][..udp] [......10.0.2.15][28681] -> [..66.30.221.181][53454]
update: [...510] [ip4][..udp] [......10.0.2.15][28681] -> [...79.94.85.113][.6346]
- update: [...653] [ip4][..udp] [......10.0.2.15][28681] -> [..94.139.21.182][50110]
+ update: [...652] [ip4][..udp] [......10.0.2.15][28681] -> [..94.139.21.182][50110]
update: [...530] [ip4][..udp] [......10.0.2.15][28681] -> [118.167.248.220][59304]
update: [...497] [ip4][..udp] [......10.0.2.15][28681] -> [..84.100.76.123][39628]
update: [...569] [ip4][..udp] [......10.0.2.15][28681] -> [....73.89.249.8][50649]
@@ -2964,184 +3028,149 @@
update: [...522] [ip4][..udp] [......10.0.2.15][28681] -> [119.247.152.218][51153]
update: [...590] [ip4][..udp] [......10.0.2.15][28681] -> [...95.10.205.67][48380]
update: [...605] [ip4][..udp] [......10.0.2.15][28681] -> [180.149.125.139][.6578]
- update: [...690] [ip4][..udp] [......10.0.2.15][28681] -> [...1.65.217.224][.3688]
- update: [...665] [ip4][..udp] [......10.0.2.15][28681] -> [..1.172.183.237][.4983]
- update: [...709] [ip4][..udp] [......10.0.2.15][28681] -> [..124.244.68.65][51967]
- update: [...656] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.2566]
- update: [...729] [ip4][..udp] [......10.0.2.15][28681] -> [..112.10.134.44][19739]
+ update: [...689] [ip4][..udp] [......10.0.2.15][28681] -> [...1.65.217.224][.3688]
+ update: [...664] [ip4][..udp] [......10.0.2.15][28681] -> [..1.172.183.237][.4983]
+ update: [...708] [ip4][..udp] [......10.0.2.15][28681] -> [..124.244.68.65][51967]
+ update: [...655] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.2566]
+ update: [...728] [ip4][..udp] [......10.0.2.15][28681] -> [..112.10.134.44][19739]
update: [...548] [ip4][..udp] [......10.0.2.15][28681] -> [..74.50.147.205][17735]
- update: [...633] [ip4][..udp] [......10.0.2.15][28681] -> [...188.149.2.44][20964]
+ update: [...632] [ip4][..udp] [......10.0.2.15][28681] -> [...188.149.2.44][20964]
update: [...575] [ip4][..udp] [......10.0.2.15][28681] -> [.123.202.31.113][19768]
update: [...588] [ip4][..udp] [......10.0.2.15][28681] -> [.219.70.175.103][.4315]
- update: [...720] [ip4][..udp] [......10.0.2.15][28681] -> [...219.85.11.85][10722]
+ update: [...719] [ip4][..udp] [......10.0.2.15][28681] -> [...219.85.11.85][10722]
update: [...540] [ip4][..udp] [......10.0.2.15][28681] -> [..36.236.203.37][52131]
- update: [...631] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][.3931]
+ update: [...630] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][.3931]
update: [...565] [ip4][..udp] [......10.0.2.15][28681] -> [...114.45.40.28][.2656]
update: [...523] [ip4][..udp] [......10.0.2.15][28681] -> [..1.162.138.200][24018]
- update: [...694] [ip4][..udp] [......10.0.2.15][28681] -> [.98.215.130.156][12405]
+ update: [...693] [ip4][..udp] [......10.0.2.15][28681] -> [.98.215.130.156][12405]
idle: [...307] [ip4][..udp] [......10.0.2.15][28681] -> [..72.201.208.57][38617] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [...258] [ip4][..udp] [......10.0.2.15][28681] -> [...24.26.216.95][13889] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [...359] [ip4][..udp] [......10.0.2.15][51685] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [...256] [ip4][..udp] [......10.0.2.15][28681] -> [.96.246.156.126][50297] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [...252] [ip4][..udp] [......10.0.2.15][28681] -> [..72.140.120.41][47739] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...377] [ip4][..udp] [......10.0.2.15][28681] -> [.180.200.236.13][12082]
- update: [...247] [ip4][..udp] [......10.0.2.15][28681] -> [..181.84.178.16][60262] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...309] [ip4][..udp] [......10.0.2.15][28681] -> [.47.220.186.140][27641] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...394] [ip4][..udp] [......10.0.2.15][28681] -> [.165.84.134.136][21407]
- update: [...254] [ip4][..udp] [......10.0.2.15][28681] -> [..88.120.73.215][24562] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...398] [ip4][..udp] [......10.0.2.15][28681] -> [.62.102.148.166][31332]
- update: [...381] [ip4][..udp] [......10.0.2.15][28681] -> [...77.58.211.52][.3806]
- update: [...386] [ip4][..udp] [......10.0.2.15][28681] -> [...85.172.10.90][40162]
- update: [...310] [ip4][..udp] [......10.0.2.15][28681] -> [.118.240.69.199][.6348] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...306] [ip4][..udp] [......10.0.2.15][28681] -> [..41.249.63.200][22582]
- update: [...392] [ip4][..udp] [......10.0.2.15][28681] -> [....42.0.69.215][12608]
- update: [...265] [ip4][..udp] [......10.0.2.15][28681] -> [203.220.198.244][.1194] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...304] [ip4][..udp] [......10.0.2.15][28681] -> [.193.32.126.214][59596]
- update: [...389] [ip4][..udp] [......10.0.2.15][28681] -> [..94.215.183.71][31310]
- update: [...747] [ip4][..udp] [......10.0.2.15][28681] -> [123.205.126.102][.5193]
- update: [...242] [ip4][..udp] [......10.0.2.15][28681] -> [..75.133.101.93][52367]
- update: [...260] [ip4][..udp] [......10.0.2.15][28681] -> [.46.128.114.107][.6578] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...308] [ip4][..udp] [......10.0.2.15][28681] -> [...81.205.91.45][40137] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...259] [ip4][..udp] [......10.0.2.15][28681] -> [103.232.107.100][43508] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...385] [ip4][..udp] [......10.0.2.15][28681] -> [..66.223.143.31][47978]
- update: [...250] [ip4][..udp] [......10.0.2.15][28681] -> [..51.68.153.214][26253] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...384] [ip4][..udp] [......10.0.2.15][28681] -> [....75.64.6.175][.4743]
- update: [...378] [ip4][..udp] [......10.0.2.15][28681] -> [.118.241.204.61][43366]
- update: [...375] [ip4][..udp] [......10.0.2.15][28681] -> [..73.182.136.42][27873]
- update: [...257] [ip4][..udp] [......10.0.2.15][28681] -> [.82.181.251.218][36368] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...399] [ip4][..udp] [......10.0.2.15][28681] -> [.175.39.219.223][31728]
- update: [...356] [ip4][..udp] [......10.0.2.15][28681] -> [.63.228.175.169][.1936] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...355] [ip4][..udp] [......10.0.2.15][28681] -> [.181.118.53.212][29998] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...388] [ip4][..udp] [......10.0.2.15][28681] -> [...121.7.145.36][33905]
- update: [...303] [ip4][..udp] [......10.0.2.15][28681] -> [.142.132.165.13][30566]
- update: [...246] [ip4][..udp] [......10.0.2.15][28681] -> [...96.65.68.194][35481] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...748] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6599]
- update: [...395] [ip4][..udp] [......10.0.2.15][28681] -> [..191.114.88.39][18751]
- update: [...301] [ip4][..udp] [......10.0.2.15][28681] -> [..188.61.52.183][11852]
- update: [...317] [ip4][..udp] [......10.0.2.15][28681] -> [...96.236.205.7][34794] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...376] [ip4][..udp] [......10.0.2.15][28681] -> [....156.57.42.2][33476]
- update: [...261] [ip4][..udp] [......10.0.2.15][28681] -> [..60.241.48.194][21301] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...243] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][53258]
- update: [...313] [ip4][..udp] [......10.0.2.15][28681] -> [..176.99.176.20][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...387] [ip4][..udp] [......10.0.2.15][28681] -> [....220.135.8.7][.1219]
- update: [...302] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][53489]
- update: [...255] [ip4][..udp] [......10.0.2.15][28681] -> [..80.61.221.246][30577] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...248] [ip4][..udp] [......10.0.2.15][28681] -> [..66.30.221.181][12012] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...380] [ip4][..udp] [......10.0.2.15][28681] -> [...83.86.49.195][12019]
- update: [...383] [ip4][..udp] [......10.0.2.15][28681] -> [...84.71.243.60][34498]
- update: [...263] [ip4][..udp] [......10.0.2.15][28681] -> [..82.217.176.52][.7446] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...253] [ip4][..udp] [......10.0.2.15][28681] -> [.193.37.255.130][61616] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...390] [ip4][..udp] [......10.0.2.15][28681] -> [144.134.132.206][16401]
- update: [...391] [ip4][..udp] [......10.0.2.15][28681] -> [...161.81.38.67][.9539]
- update: [...316] [ip4][..udp] [......10.0.2.15][28681] -> [....94.54.66.82][63637] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...262] [ip4][..udp] [......10.0.2.15][28681] -> [....89.75.52.19][46010] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...393] [ip4][..udp] [......10.0.2.15][28681] -> [.58.115.158.103][.5110]
- update: [...382] [ip4][..udp] [......10.0.2.15][28681] -> [..76.175.11.126][40958]
- update: [...397] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][24634]
- update: [...264] [ip4][..udp] [......10.0.2.15][28681] -> [...95.10.205.67][11603] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...379] [ip4][..udp] [......10.0.2.15][28681] -> [..80.140.63.147][29545]
- update: [...396] [ip4][..udp] [......10.0.2.15][28681] -> [..112.119.59.24][28755]
- update: [...312] [ip4][..udp] [......10.0.2.15][28681] -> [..24.167.201.53][47282] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- idle: [...355] [ip4][..udp] [......10.0.2.15][28681] -> [.181.118.53.212][29998] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- idle: [...330] [ip4][..udp] [......10.0.2.15][28681] -> [....82.64.44.11][.1352] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
update: [...433] [ip4][..udp] [......10.0.2.15][28681] -> [.99.255.145.191][47264]
update: [...404] [ip4][..udp] [......10.0.2.15][28681] -> [.86.234.216.251][17845]
update: [...441] [ip4][..udp] [......10.0.2.15][28681] -> [.36.237.199.108][56040]
- update: [...331] [ip4][..udp] [......10.0.2.15][28681] -> [..45.31.152.112][26851] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
update: [...450] [ip4][..udp] [......10.0.2.15][28681] -> [113.252.206.254][23458]
update: [...426] [ip4][..udp] [......10.0.2.15][28681] -> [..219.71.44.121][14398]
+ update: [...247] [ip4][..udp] [......10.0.2.15][28681] -> [..181.84.178.16][60262] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...411] [ip4][..udp] [......10.0.2.15][28681] -> [...89.143.28.64][.6346]
update: [...408] [ip4][..udp] [......10.0.2.15][28681] -> [...90.103.2.245][.6346]
update: [...424] [ip4][..udp] [......10.0.2.15][28681] -> [..93.15.216.216][.6346]
+ update: [...309] [ip4][..udp] [......10.0.2.15][28681] -> [.47.220.186.140][27641] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...479] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.13.148][51896]
update: [...422] [ip4][..udp] [......10.0.2.15][28681] -> [..88.123.35.219][42211]
+ update: [...394] [ip4][..udp] [......10.0.2.15][28681] -> [.165.84.134.136][21407]
+ update: [...254] [ip4][..udp] [......10.0.2.15][28681] -> [..88.120.73.215][24562] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...439] [ip4][..udp] [......10.0.2.15][28681] -> [..176.135.15.86][.6346]
update: [...474] [ip4][..udp] [......10.0.2.15][28681] -> [..80.61.221.246][45880]
+ update: [...398] [ip4][..udp] [......10.0.2.15][28681] -> [.62.102.148.166][31332]
update: [...477] [ip4][..udp] [......10.0.2.15][28681] -> [....94.54.66.82][45640]
update: [...444] [ip4][..udp] [......10.0.2.15][28681] -> [.122.117.100.78][.9010]
update: [...478] [ip4][..udp] [......10.0.2.15][28681] -> [...36.235.85.44][64914]
update: [...449] [ip4][..udp] [......10.0.2.15][28681] -> [.61.238.173.128][.8826]
update: [...461] [ip4][..udp] [......10.0.2.15][28681] -> [..69.27.193.124][50555]
- update: [...332] [ip4][..udp] [......10.0.2.15][28681] -> [213.229.111.224][.4876] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
update: [...472] [ip4][..udp] [......10.0.2.15][28681] -> [....94.54.66.82][45744]
update: [...471] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][43457]
update: [...481] [ip4][..udp] [......10.0.2.15][28681] -> [..82.120.219.74][.6346]
update: [...476] [ip4][..udp] [......10.0.2.15][28681] -> [..98.18.172.208][63172]
+ update: [...381] [ip4][..udp] [......10.0.2.15][28681] -> [...77.58.211.52][.3806]
+ update: [...386] [ip4][..udp] [......10.0.2.15][28681] -> [...85.172.10.90][40162]
update: [...435] [ip4][..udp] [......10.0.2.15][28681] -> [.109.24.146.101][.6346]
update: [...465] [ip4][..udp] [......10.0.2.15][28681] -> [.....2.28.39.18][15672]
+ update: [...310] [ip4][..udp] [......10.0.2.15][28681] -> [.118.240.69.199][.6348] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...306] [ip4][..udp] [......10.0.2.15][28681] -> [..41.249.63.200][22582]
update: [...421] [ip4][..udp] [......10.0.2.15][28681] -> [..175.182.39.11][12977]
+ update: [...392] [ip4][..udp] [......10.0.2.15][28681] -> [....42.0.69.215][12608]
+ update: [...265] [ip4][..udp] [......10.0.2.15][28681] -> [203.220.198.244][.1194] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...416] [ip4][..udp] [......10.0.2.15][28681] -> [..92.139.61.103][24096]
+ update: [...304] [ip4][..udp] [......10.0.2.15][28681] -> [.193.32.126.214][59596]
update: [...443] [ip4][..udp] [......10.0.2.15][28681] -> [..183.179.14.31][54754]
+ update: [...389] [ip4][..udp] [......10.0.2.15][28681] -> [..94.215.183.71][31310]
update: [...413] [ip4][..udp] [......10.0.2.15][28681] -> [...87.65.188.29][24676]
+ update: [...242] [ip4][..udp] [......10.0.2.15][28681] -> [..75.133.101.93][52367]
+ update: [...260] [ip4][..udp] [......10.0.2.15][28681] -> [.46.128.114.107][.6578] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...412] [ip4][..udp] [......10.0.2.15][28681] -> [...58.177.52.73][.6346]
update: [...418] [ip4][..udp] [......10.0.2.15][28681] -> [.75.129.149.103][.6346]
+ update: [...308] [ip4][..udp] [......10.0.2.15][28681] -> [...81.205.91.45][40137] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...468] [ip4][..udp] [......10.0.2.15][28681] -> [..94.214.12.247][44001]
update: [...466] [ip4][..udp] [......10.0.2.15][28681] -> [...70.119.248.5][49929]
+ update: [...259] [ip4][..udp] [......10.0.2.15][28681] -> [103.232.107.100][43508] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...446] [ip4][..udp] [......10.0.2.15][28681] -> [..61.70.199.107][60475]
update: [...470] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][46790]
+ update: [...385] [ip4][..udp] [......10.0.2.15][28681] -> [..66.223.143.31][47978]
update: [...447] [ip4][..udp] [......10.0.2.15][28681] -> [...14.199.10.60][23458]
update: [...451] [ip4][..udp] [......10.0.2.15][28681] -> [...218.35.66.21][22234]
+ update: [...250] [ip4][..udp] [......10.0.2.15][28681] -> [..51.68.153.214][26253] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...384] [ip4][..udp] [......10.0.2.15][28681] -> [....75.64.6.175][.4743]
+ update: [...378] [ip4][..udp] [......10.0.2.15][28681] -> [.118.241.204.61][43366]
update: [...456] [ip4][..udp] [......10.0.2.15][28681] -> [.89.241.112.255][14766]
update: [...428] [ip4][..udp] [......10.0.2.15][28681] -> [....86.162.97.8][.6346]
+ update: [...375] [ip4][..udp] [......10.0.2.15][28681] -> [..73.182.136.42][27873]
update: [...455] [ip4][..udp] [......10.0.2.15][28681] -> [.58.153.206.183][16919]
update: [...453] [ip4][..udp] [......10.0.2.15][28681] -> [..74.127.26.138][.3083]
update: [...425] [ip4][..udp] [......10.0.2.15][28681] -> [..145.82.53.165][.6346]
+ update: [...257] [ip4][..udp] [......10.0.2.15][28681] -> [.82.181.251.218][36368] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...460] [ip4][..udp] [......10.0.2.15][28681] -> [.210.194.116.78][.8342]
update: [...454] [ip4][..udp] [......10.0.2.15][28681] -> [.223.16.121.156][23183]
update: [...401] [ip4][..udp] [......10.0.2.15][28681] -> [.173.178.192.76][.6346]
update: [...484] [ip4][..udp] [......10.0.2.15][28681] -> [...107.4.56.177][10000]
update: [...406] [ip4][..udp] [......10.0.2.15][28681] -> [....109.27.3.68][57380]
- update: [...321] [ip4][..udp] [......10.0.2.15][28681] -> [188.165.203.190][21995] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ update: [...399] [ip4][..udp] [......10.0.2.15][28681] -> [.175.39.219.223][31728]
update: [...469] [ip4][..udp] [......10.0.2.15][28681] -> [..87.123.54.234][47184]
+ update: [...356] [ip4][..udp] [......10.0.2.15][28681] -> [.63.228.175.169][.1936] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...467] [ip4][..udp] [......10.0.2.15][28681] -> [...61.64.177.53][23458]
+ update: [...355] [ip4][..udp] [......10.0.2.15][28681] -> [.181.118.53.212][29998] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...431] [ip4][..udp] [......10.0.2.15][28681] -> [..88.124.71.246][49035]
+ update: [...388] [ip4][..udp] [......10.0.2.15][28681] -> [...121.7.145.36][33905]
+ update: [...303] [ip4][..udp] [......10.0.2.15][28681] -> [.142.132.165.13][30566]
+ update: [...246] [ip4][..udp] [......10.0.2.15][28681] -> [...96.65.68.194][35481] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...395] [ip4][..udp] [......10.0.2.15][28681] -> [..191.114.88.39][18751]
+ update: [...301] [ip4][..udp] [......10.0.2.15][28681] -> [..188.61.52.183][11852]
update: [...483] [ip4][..udp] [.......10.0.2.2][.1026] -> [......10.0.2.15][28681]
update: [...402] [ip4][..udp] [......10.0.2.15][28681] -> [...78.219.202.2][.6346]
update: [...420] [ip4][..udp] [......10.0.2.15][28681] -> [..86.227.127.34][.6346]
update: [...417] [ip4][..udp] [......10.0.2.15][28681] -> [.94.187.236.179][.6346]
+ update: [...317] [ip4][..udp] [......10.0.2.15][28681] -> [...96.236.205.7][34794] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...376] [ip4][..udp] [......10.0.2.15][28681] -> [....156.57.42.2][33476]
update: [...485] [ip4][..udp] [......10.0.2.15][28681] -> [...154.3.42.209][.6346]
+ update: [...261] [ip4][..udp] [......10.0.2.15][28681] -> [..60.241.48.194][21301] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...243] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][53258]
update: [...427] [ip4][..udp] [......10.0.2.15][28681] -> [...81.249.13.30][15138]
+ update: [...313] [ip4][..udp] [......10.0.2.15][28681] -> [..176.99.176.20][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...405] [ip4][..udp] [......10.0.2.15][28681] -> [.176.155.31.118][.6346]
- update: [...746] [ip4][.icmp] [..164.132.10.25] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
- update: [...319] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][55302] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ update: [...387] [ip4][..udp] [......10.0.2.15][28681] -> [....220.135.8.7][.1219]
+ update: [...302] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][53489]
+ update: [...255] [ip4][..udp] [......10.0.2.15][28681] -> [..80.61.221.246][30577] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...415] [ip4][..udp] [......10.0.2.15][28681] -> [..90.247.160.96][17817]
update: [...458] [ip4][..udp] [......10.0.2.15][28681] -> [118.165.228.167][12201]
update: [...486] [ip4][..udp] [......10.0.2.15][28681] -> [...88.68.45.203][.6346]
update: [...410] [ip4][..udp] [......10.0.2.15][28681] -> [..93.28.130.131][.6346]
+ update: [...248] [ip4][..udp] [......10.0.2.15][28681] -> [..66.30.221.181][12012] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...380] [ip4][..udp] [......10.0.2.15][28681] -> [...83.86.49.195][12019]
update: [...423] [ip4][..udp] [......10.0.2.15][28681] -> [..119.247.6.226][.9713]
update: [...438] [ip4][..udp] [......10.0.2.15][28681] -> [..71.86.190.163][14142]
update: [...403] [ip4][..udp] [......10.0.2.15][28681] -> [197.244.171.132][.6346]
@@ -3149,214 +3178,256 @@
update: [...429] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.215.213][23576]
update: [...436] [ip4][..udp] [......10.0.2.15][28681] -> [.219.68.179.137][.6406]
update: [...414] [ip4][..udp] [......10.0.2.15][28681] -> [175.181.156.244][.8255]
+ update: [...383] [ip4][..udp] [......10.0.2.15][28681] -> [...84.71.243.60][34498]
update: [...409] [ip4][..udp] [......10.0.2.15][28681] -> [...86.194.53.68][33770]
update: [...482] [ip4][..udp] [......10.0.2.15][28681] -> [..86.193.23.172][42227]
update: [...400] [ip4][..udp] [......10.0.2.15][28681] -> [..129.45.47.167][.6346]
+ update: [...263] [ip4][..udp] [......10.0.2.15][28681] -> [..82.217.176.52][.7446] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...253] [ip4][..udp] [......10.0.2.15][28681] -> [.193.37.255.130][61616] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...407] [ip4][..udp] [......10.0.2.15][28681] -> [195.181.151.217][.6346]
update: [...463] [ip4][..udp] [......10.0.2.15][28681] -> [..200.7.155.210][28365]
update: [...452] [ip4][..udp] [......10.0.2.15][28681] -> [..68.227.193.37][27481]
+ update: [...390] [ip4][..udp] [......10.0.2.15][28681] -> [144.134.132.206][16401]
update: [...440] [ip4][..udp] [......10.0.2.15][28681] -> [203.165.170.112][37087]
update: [...448] [ip4][..udp] [......10.0.2.15][28681] -> [116.241.162.162][15677]
update: [...459] [ip4][..udp] [......10.0.2.15][28681] -> [...100.89.84.59][11603]
+ update: [...391] [ip4][..udp] [......10.0.2.15][28681] -> [...161.81.38.67][.9539]
update: [...437] [ip4][..udp] [......10.0.2.15][28681] -> [....31.38.163.2][.6346]
+ update: [...316] [ip4][..udp] [......10.0.2.15][28681] -> [....94.54.66.82][63637] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...262] [ip4][..udp] [......10.0.2.15][28681] -> [....89.75.52.19][46010] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...445] [ip4][..udp] [......10.0.2.15][28681] -> [118.165.153.100][.4509]
update: [...419] [ip4][..udp] [......10.0.2.15][28681] -> [...78.193.236.8][46557]
+ update: [...393] [ip4][..udp] [......10.0.2.15][28681] -> [.58.115.158.103][.5110]
update: [...432] [ip4][..udp] [......10.0.2.15][28681] -> [...104.6.118.53][.6346]
update: [...464] [ip4][..udp] [......10.0.2.15][28681] -> [...101.128.66.8][34512]
+ update: [...382] [ip4][..udp] [......10.0.2.15][28681] -> [..76.175.11.126][40958]
update: [...480] [ip4][..udp] [......10.0.2.15][28681] -> [..112.119.74.26][65498]
update: [...434] [ip4][..udp] [......10.0.2.15][28681] -> [.114.24.182.130][22232]
update: [...462] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][47808]
+ update: [...397] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][24634]
update: [...430] [ip4][..udp] [......10.0.2.15][28681] -> [....90.8.95.165][40763]
update: [...475] [ip4][..udp] [......10.0.2.15][28681] -> [..188.61.52.183][63978]
update: [...473] [ip4][..udp] [......10.0.2.15][28681] -> [.142.132.165.13][33564]
+ update: [...264] [ip4][..udp] [......10.0.2.15][28681] -> [...95.10.205.67][11603] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...379] [ip4][..udp] [......10.0.2.15][28681] -> [..80.140.63.147][29545]
update: [...442] [ip4][..udp] [......10.0.2.15][28681] -> [..89.204.130.55][29545]
+ update: [...396] [ip4][..udp] [......10.0.2.15][28681] -> [..112.119.59.24][28755]
+ update: [...312] [ip4][..udp] [......10.0.2.15][28681] -> [..24.167.201.53][47282] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...754] [ip4][..udp] [......10.0.2.15][28681] -> [..84.125.218.84][17561]
idle: [...247] [ip4][..udp] [......10.0.2.15][28681] -> [..181.84.178.16][60262] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [...366] [ip4][..udp] [......10.0.2.15][28681] -> [....94.8.55.158][51140] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [...309] [ip4][..udp] [......10.0.2.15][28681] -> [.47.220.186.140][27641] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [...365] [ip4][..udp] [......10.0.2.15][28681] -> [..188.23.24.213][18561] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [...310] [ip4][..udp] [......10.0.2.15][28681] -> [.118.240.69.199][.6348] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- not-detected: [...242] [ip4][..udp] [......10.0.2.15][28681] -> [..75.133.101.93][52367] [Unknown][Unknown][Unrated]
- idle: [...242] [ip4][..udp] [......10.0.2.15][28681] -> [..75.133.101.93][52367]
- idle: [...308] [ip4][..udp] [......10.0.2.15][28681] -> [...81.205.91.45][40137] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [...368] [ip4][..udp] [......10.0.2.15][28681] -> [...47.147.52.21][36728] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [...363] [ip4][..udp] [......10.0.2.15][28681] -> [...81.205.91.45][38297] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [...362] [ip4][..udp] [......10.0.2.15][28681] -> [190.192.210.182][.6754] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [...356] [ip4][..udp] [......10.0.2.15][28681] -> [.63.228.175.169][.1936] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ idle: [...355] [ip4][..udp] [......10.0.2.15][28681] -> [.181.118.53.212][29998] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
not-detected: [...301] [ip4][..udp] [......10.0.2.15][28681] -> [..188.61.52.183][11852] [Unknown][Unknown][Unrated]
idle: [...301] [ip4][..udp] [......10.0.2.15][28681] -> [..188.61.52.183][11852]
not-detected: [...243] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][53258] [Unknown][Unknown][Unrated]
idle: [...243] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][53258]
+ idle: [...330] [ip4][..udp] [......10.0.2.15][28681] -> [....82.64.44.11][.1352] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [...360] [ip4][..udp] [......10.0.2.15][28681] -> [..198.58.218.12][47912] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [...263] [ip4][..udp] [......10.0.2.15][28681] -> [..82.217.176.52][.7446] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [...264] [ip4][..udp] [......10.0.2.15][28681] -> [...95.10.205.67][11603] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...751] [ip4][..udp] [......10.0.2.15][28681] -> [....67.193.8.52][38584]
- update: [...335] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][37058]
- update: [...749] [ip4][..udp] [......10.0.2.15][28681] -> [.....92.8.59.80][35192]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...488] [ip4][..udp] [......10.0.2.15][28681] -> [.183.179.90.112][.9852]
- update: [...752] [ip4][..udp] [......10.0.2.15][28681] -> [142.115.218.152][.5900]
update: [...490] [ip4][..udp] [......10.0.2.15][28681] -> [...90.3.215.132][20356]
- update: [...750] [ip4][..udp] [......10.0.2.15][28681] -> [...78.159.27.22][17563]
- update: [...753] [ip4][..udp] [......10.0.2.15][28681] -> [..165.84.140.96][14400]
+ update: [...745] [ip4][.icmp] [..164.132.10.25] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...489] [ip4][..udp] [......10.0.2.15][28681] -> [...108.44.45.25][.6346]
update: [...487] [ip4][..udp] [......10.0.2.15][28681] -> [..24.78.134.188][49046]
update: [...491] [ip4][..udp] [......10.0.2.15][28681] -> [..36.233.42.210][.5512]
update: [...492] [ip4][..udp] [......10.0.2.15][28681] -> [...172.94.41.71][.6346]
new: [...755] [ip4][..udp] [......10.0.2.15][28681] -> [..83.134.107.32][38836]
- new: [...756] [ip4][..udp] [......10.0.2.15][28681] -> [..41.100.68.255][12838]
- idle: [....20] [ip4][..udp] [......10.0.2.15][..138] -> [.....10.0.2.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
- RISK: Unsafe Protocol
- not-detected: [...136] [ip4][..udp] [......10.0.2.15][28681] -> [.80.236.247.120][16047] [Unknown][Unknown][Unrated]
- idle: [...136] [ip4][..udp] [......10.0.2.15][28681] -> [.80.236.247.120][16047]
- not-detected: [...173] [ip4][..udp] [......10.0.2.15][28681] -> [..121.99.222.36][44988] [Unknown][Unknown][Unrated]
- idle: [...173] [ip4][..udp] [......10.0.2.15][28681] -> [..121.99.222.36][44988]
+ not-detected: [...242] [ip4][..udp] [......10.0.2.15][28681] -> [..75.133.101.93][52367] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...242] [ip4][..udp] [......10.0.2.15][28681] -> [..75.133.101.93][52367]
+ idle: [...308] [ip4][..udp] [......10.0.2.15][28681] -> [...81.205.91.45][40137] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...750] [ip4][..udp] [......10.0.2.15][28681] -> [....67.193.8.52][38584]
+ update: [...331] [ip4][..udp] [......10.0.2.15][28681] -> [..45.31.152.112][26851] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...361] [ip4][..udp] [......10.0.2.15][28681] -> [..86.129.196.84][.9915] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...134] [ip4][..udp] [......10.0.2.15][28681] -> [...78.231.73.14][.6346]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...752] [ip4][..udp] [......10.0.2.15][28681] -> [...78.231.73.14][.6346]
update: [...128] [ip4][..udp] [......10.0.2.15][28681] -> [..77.141.219.27][37580]
update: [...114] [ip4][..udp] [......10.0.2.15][28681] -> [....86.23.75.69][.6346]
update: [....88] [ip4][..udp] [......10.0.2.15][28681] -> [.....81.50.24.2][17874]
update: [...340] [ip4][..udp] [......10.0.2.15][28681] -> [.38.142.119.234][49732] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...335] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][37058]
+ update: [...332] [ip4][..udp] [......10.0.2.15][28681] -> [213.229.111.224][.4876] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [....20] [ip4][..udp] [......10.0.2.15][..138] -> [.....10.0.2.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
update: [...118] [ip4][..udp] [......10.0.2.15][28681] -> [...5.180.62.100][46385]
update: [...344] [ip4][..udp] [......10.0.2.15][28681] -> [.207.38.163.228][.6778] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...323] [ip4][..udp] [......10.0.2.15][28681] -> [.96.246.156.126][56070] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...117] [ip4][..udp] [......10.0.2.15][28681] -> [200.120.243.143][.6346]
+ update: [...748] [ip4][..udp] [......10.0.2.15][28681] -> [.....92.8.59.80][35192]
update: [....98] [ip4][..udp] [......10.0.2.15][28681] -> [.203.222.14.170][23332]
update: [...111] [ip4][..udp] [......10.0.2.15][28681] -> [..90.65.141.157][.6346]
update: [...336] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][.6888] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...139] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.226.142][.6346]
update: [...141] [ip4][..udp] [......10.0.2.15][28681] -> [..172.97.199.14][.6346]
+ update: [...751] [ip4][..udp] [......10.0.2.15][28681] -> [142.115.218.152][.5900]
update: [...126] [ip4][..udp] [......10.0.2.15][28681] -> [..91.69.159.133][28000]
+ update: [...136] [ip4][..udp] [......10.0.2.15][28681] -> [.80.236.247.120][16047]
update: [....85] [ip4][..udp] [......10.0.2.15][28681] -> [..85.138.20.110][.6346]
update: [...135] [ip4][..udp] [......10.0.2.15][28681] -> [.193.250.99.158][.6346]
+ update: [...321] [ip4][..udp] [......10.0.2.15][28681] -> [188.165.203.190][21995] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...342] [ip4][..udp] [......10.0.2.15][28681] -> [..98.208.26.154][.4994] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...749] [ip4][..udp] [......10.0.2.15][28681] -> [...78.159.27.22][17563]
update: [...369] [ip4][..udp] [......10.0.2.15][28681] -> [.89.187.171.240][.6346]
update: [...125] [ip4][..udp] [......10.0.2.15][28681] -> [..83.92.178.182][57302]
update: [...116] [ip4][..udp] [......10.0.2.15][28681] -> [.124.44.190.145][10170]
+ update: [...319] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][55302] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...133] [ip4][..udp] [......10.0.2.15][28681] -> [.91.175.220.161][15721]
+ update: [...753] [ip4][..udp] [......10.0.2.15][28681] -> [..165.84.140.96][14400]
update: [...124] [ip4][..udp] [......10.0.2.15][28681] -> [...170.254.19.6][24180]
update: [...130] [ip4][..udp] [......10.0.2.15][28681] -> [..119.224.95.97][46356]
update: [...129] [ip4][..udp] [......10.0.2.15][28681] -> [.176.138.50.179][29411]
update: [...364] [ip4][..udp] [......10.0.2.15][28681] -> [194.163.180.126][10825] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...137] [ip4][..udp] [......10.0.2.15][28681] -> [...82.65.70.197][21693]
update: [...109] [ip4][..udp] [......10.0.2.15][28681] -> [...88.169.2.153][52414]
update: [...140] [ip4][..udp] [......10.0.2.15][28681] -> [.77.197.111.186][.6346]
update: [...108] [ip4][..udp] [......10.0.2.15][28681] -> [112.119.242.110][.7922]
update: [...339] [ip4][..udp] [......10.0.2.15][28681] -> [..87.123.54.234][54130] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...113] [ip4][..udp] [......10.0.2.15][28681] -> [105.101.132.146][57746]
update: [....87] [ip4][..udp] [......10.0.2.15][28681] -> [..92.131.85.245][31743]
update: [...367] [ip4][..udp] [......10.0.2.15][28681] -> [.149.28.163.175][49956] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...138] [ip4][..udp] [......10.0.2.15][28681] -> [167.114.170.156][23844]
+ new: [...756] [ip4][..udp] [......10.0.2.15][28681] -> [..41.100.68.255][12838]
+ idle: [....20] [ip4][..udp] [......10.0.2.15][..138] -> [.....10.0.2.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
+ RISK: Unsafe Protocol
+ not-detected: [...136] [ip4][..udp] [......10.0.2.15][28681] -> [.80.236.247.120][16047] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...136] [ip4][..udp] [......10.0.2.15][28681] -> [.80.236.247.120][16047]
+ not-detected: [...173] [ip4][..udp] [......10.0.2.15][28681] -> [..121.99.222.36][44988] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...173] [ip4][..udp] [......10.0.2.15][28681] -> [..121.99.222.36][44988]
update: [...577] [ip4][..udp] [......10.0.2.15][28681] -> [.59.148.100.237][23459]
update: [...586] [ip4][..udp] [......10.0.2.15][28681] -> [..221.124.66.33][13060]
- update: [...619] [ip4][..udp] [......10.0.2.15][28681] -> [...1.172.184.48][13281]
+ update: [...618] [ip4][..udp] [......10.0.2.15][28681] -> [...1.172.184.48][13281]
update: [...544] [ip4][..udp] [......10.0.2.15][28681] -> [..111.184.29.35][30582]
update: [...526] [ip4][..udp] [......10.0.2.15][28681] -> [..36.234.197.93][.1483]
update: [...509] [ip4][..udp] [......10.0.2.15][28681] -> [.92.142.109.190][41370]
- update: [...670] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.2846]
- update: [...610] [ip4][..udp] [......10.0.2.15][28681] -> [116.241.162.162][59016]
- update: [...691] [ip4][..udp] [......10.0.2.15][28681] -> [..61.18.212.223][50637]
- update: [...701] [ip4][..udp] [......10.0.2.15][28681] -> [...91.206.27.26][.6578]
+ update: [...669] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.2846]
+ update: [...609] [ip4][..udp] [......10.0.2.15][28681] -> [116.241.162.162][59016]
+ update: [...690] [ip4][..udp] [......10.0.2.15][28681] -> [..61.18.212.223][50637]
+ update: [...700] [ip4][..udp] [......10.0.2.15][28681] -> [...91.206.27.26][.6578]
update: [...511] [ip4][..udp] [......10.0.2.15][28681] -> [...68.47.223.27][.6346]
update: [...496] [ip4][..udp] [......10.0.2.15][28681] -> [.218.173.230.98][19004]
update: [...533] [ip4][..udp] [......10.0.2.15][28681] -> [..36.229.185.60][.6898]
update: [...592] [ip4][..udp] [......10.0.2.15][28681] -> [....1.36.249.91][.7190]
- update: [...702] [ip4][..udp] [......10.0.2.15][28681] -> [119.237.190.184][64163]
+ update: [...701] [ip4][..udp] [......10.0.2.15][28681] -> [119.237.190.184][64163]
update: [...495] [ip4][..udp] [......10.0.2.15][28681] -> [...81.247.89.20][.6346]
update: [...166] [ip4][..udp] [......10.0.2.15][28681] -> [..90.59.253.186][15555]
update: [...183] [ip4][..udp] [......10.0.2.15][28681] -> [..91.172.15.182][37829]
update: [...184] [ip4][..udp] [......10.0.2.15][28681] -> [..86.239.62.213][.6346]
update: [...493] [ip4][..udp] [......10.0.2.15][57552] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
update: [...603] [ip4][..udp] [......10.0.2.15][28681] -> [....1.36.249.91][64577]
- update: [...622] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3227]
- update: [...647] [ip4][..udp] [......10.0.2.15][28681] -> [..36.237.10.152][21293]
- update: [...741] [ip4][..udp] [......10.0.2.15][28681] -> [...36.237.25.47][21293]
+ update: [...621] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3227]
+ update: [...646] [ip4][..udp] [......10.0.2.15][28681] -> [..36.237.10.152][21293]
+ update: [...740] [ip4][..udp] [......10.0.2.15][28681] -> [...36.237.25.47][21293]
update: [...516] [ip4][..udp] [......10.0.2.15][28681] -> [.119.246.147.72][.4572]
- update: [...734] [ip4][..udp] [......10.0.2.15][28681] -> [...99.199.148.6][.4338]
+ update: [...733] [ip4][..udp] [......10.0.2.15][28681] -> [...99.199.148.6][.4338]
update: [...597] [ip4][..udp] [......10.0.2.15][28681] -> [..36.236.203.37][52274]
- update: [...676] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.118.77][62191]
- update: [...739] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3256]
+ update: [...675] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.118.77][62191]
+ update: [...738] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3256]
update: [...553] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3259]
- update: [...629] [ip4][..udp] [......10.0.2.15][28681] -> [....45.65.87.24][16201]
+ update: [...628] [ip4][..udp] [......10.0.2.15][28681] -> [....45.65.87.24][16201]
update: [...352] [ip4][..udp] [......10.0.2.15][28681] -> [.176.191.49.159][.6346]
update: [...195] [ip4][..udp] [......10.0.2.15][28681] -> [.177.231.151.16][.6346]
- update: [...617] [ip4][..udp] [......10.0.2.15][28681] -> [220.208.167.152][30628]
+ update: [...616] [ip4][..udp] [......10.0.2.15][28681] -> [220.208.167.152][30628]
update: [...596] [ip4][..udp] [......10.0.2.15][28681] -> [..61.18.212.223][58954]
update: [...219] [ip4][..udp] [......10.0.2.15][28681] -> [...76.30.86.144][53821]
- update: [...714] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][51379]
+ update: [...713] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][51379]
update: [...593] [ip4][..udp] [......10.0.2.15][28681] -> [..124.218.26.16][.9747]
update: [...571] [ip4][..udp] [......10.0.2.15][28681] -> [.114.40.163.123][55341]
update: [...524] [ip4][..udp] [......10.0.2.15][28681] -> [.80.193.171.146][65362]
- update: [...643] [ip4][..udp] [......10.0.2.15][28681] -> [.220.39.142.122][.6346]
+ update: [...642] [ip4][..udp] [......10.0.2.15][28681] -> [.220.39.142.122][.6346]
update: [...572] [ip4][..udp] [......10.0.2.15][28681] -> [...86.153.21.93][36696]
- update: [...650] [ip4][..udp] [......10.0.2.15][28681] -> [.122.117.100.78][56128]
+ update: [...649] [ip4][..udp] [......10.0.2.15][28681] -> [.122.117.100.78][56128]
update: [...520] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3339]
- update: [...636] [ip4][..udp] [......10.0.2.15][28681] -> [...219.70.48.23][.2556]
- update: [...637] [ip4][..udp] [......10.0.2.15][28681] -> [.80.193.171.146][53143]
- update: [...638] [ip4][..udp] [......10.0.2.15][28681] -> [..36.233.194.73][.1995]
+ update: [...635] [ip4][..udp] [......10.0.2.15][28681] -> [...219.70.48.23][.2556]
+ update: [...636] [ip4][..udp] [......10.0.2.15][28681] -> [.80.193.171.146][53143]
+ update: [...637] [ip4][..udp] [......10.0.2.15][28681] -> [..36.233.194.73][.1995]
update: [...546] [ip4][..udp] [......10.0.2.15][28681] -> [.38.142.119.234][49867]
- update: [...677] [ip4][..udp] [......10.0.2.15][28681] -> [...1.64.208.110][55550]
- update: [...723] [ip4][..udp] [......10.0.2.15][28681] -> [.213.32.245.121][12333]
+ update: [...676] [ip4][..udp] [......10.0.2.15][28681] -> [...1.64.208.110][55550]
+ update: [...722] [ip4][..udp] [......10.0.2.15][28681] -> [.213.32.245.121][12333]
update: [...531] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][51497]
update: [...578] [ip4][..udp] [......10.0.2.15][28681] -> [..77.205.243.44][46006]
- update: [...738] [ip4][..udp] [......10.0.2.15][28681] -> [174.115.127.251][23897]
+ update: [...737] [ip4][..udp] [......10.0.2.15][28681] -> [174.115.127.251][23897]
update: [...584] [ip4][..udp] [......10.0.2.15][28681] -> [.80.193.171.146][18360]
update: [...534] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54436]
- update: [...708] [ip4][..udp] [......10.0.2.15][28681] -> [..183.179.14.31][64871]
- update: [...745] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][48250]
+ update: [...707] [ip4][..udp] [......10.0.2.15][28681] -> [..183.179.14.31][64871]
+ update: [...744] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][48250]
update: [...501] [ip4][..udp] [......10.0.2.15][28681] -> [.88.160.214.137][.6346]
- update: [...684] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54459]
+ update: [...683] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54459]
update: [...506] [ip4][..udp] [......10.0.2.15][28681] -> [..136.32.84.139][.6346]
update: [...562] [ip4][..udp] [......10.0.2.15][28681] -> [112.119.242.110][59879]
- update: [...620] [ip4][..udp] [......10.0.2.15][28681] -> [...1.163.14.246][.1630]
- update: [...606] [ip4][..udp] [......10.0.2.15][28681] -> [.96.246.156.126][56070]
- update: [...692] [ip4][..udp] [......10.0.2.15][28681] -> [..61.93.150.146][62507]
- update: [...621] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][53516]
- update: [...668] [ip4][..udp] [......10.0.2.15][28681] -> [.223.18.211.177][18085]
- update: [...721] [ip4][..udp] [......10.0.2.15][28681] -> [..76.26.178.132][10053]
- update: [...698] [ip4][..udp] [......10.0.2.15][28681] -> [...14.199.10.60][53906]
- update: [...623] [ip4][..udp] [......10.0.2.15][28681] -> [..36.234.18.166][61319]
+ update: [...619] [ip4][..udp] [......10.0.2.15][28681] -> [...1.163.14.246][.1630]
+ update: [...691] [ip4][..udp] [......10.0.2.15][28681] -> [..61.93.150.146][62507]
+ update: [...620] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][53516]
+ update: [...667] [ip4][..udp] [......10.0.2.15][28681] -> [.223.18.211.177][18085]
+ update: [...720] [ip4][..udp] [......10.0.2.15][28681] -> [..76.26.178.132][10053]
+ update: [...697] [ip4][..udp] [......10.0.2.15][28681] -> [...14.199.10.60][53906]
+ update: [...622] [ip4][..udp] [......10.0.2.15][28681] -> [..36.234.18.166][61319]
update: [...542] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][51675]
- update: [...715] [ip4][..udp] [......10.0.2.15][28681] -> [..76.174.174.69][21358]
+ update: [...714] [ip4][..udp] [......10.0.2.15][28681] -> [..76.174.174.69][21358]
update: [...191] [ip4][..udp] [......10.0.2.15][28681] -> [.190.153.143.54][65535]
- update: [...615] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.118.77][60482]
- update: [...607] [ip4][..udp] [......10.0.2.15][28681] -> [.149.28.163.175][42288]
+ update: [...614] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.118.77][60482]
+ update: [...746] [ip4][..udp] [......10.0.2.15][28681] -> [123.205.126.102][.5193]
+ update: [...606] [ip4][..udp] [......10.0.2.15][28681] -> [.149.28.163.175][42288]
update: [...172] [ip4][..udp] [......10.0.2.15][28681] -> [..87.69.142.133][15471]
- update: [...740] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][19814]
+ update: [...739] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][19814]
update: [...587] [ip4][..udp] [......10.0.2.15][28681] -> [.94.134.154.158][54130]
update: [...550] [ip4][..udp] [......10.0.2.15][28681] -> [.220.238.145.82][33527]
- update: [...689] [ip4][..udp] [......10.0.2.15][28681] -> [.114.36.234.196][11629]
- update: [...671] [ip4][..udp] [......10.0.2.15][28681] -> [..36.236.203.37][52669]
+ update: [...688] [ip4][..udp] [......10.0.2.15][28681] -> [.114.36.234.196][11629]
+ update: [...670] [ip4][..udp] [......10.0.2.15][28681] -> [..36.236.203.37][52669]
update: [...598] [ip4][..udp] [......10.0.2.15][28681] -> [...1.172.184.48][.1512]
update: [...551] [ip4][..udp] [......10.0.2.15][28681] -> [..92.24.129.230][14766]
- update: [...686] [ip4][..udp] [......10.0.2.15][28681] -> [..111.241.31.96][.8349]
+ update: [...685] [ip4][..udp] [......10.0.2.15][28681] -> [..111.241.31.96][.8349]
update: [...555] [ip4][..udp] [......10.0.2.15][28681] -> [..124.218.26.16][20387]
- update: [...722] [ip4][..udp] [......10.0.2.15][28681] -> [.123.203.72.224][.9897]
+ update: [...721] [ip4][..udp] [......10.0.2.15][28681] -> [.123.203.72.224][.9897]
update: [...371] [ip4][..udp] [......10.0.2.15][28681] -> [.109.131.202.24][44748]
- update: [...632] [ip4][..udp] [......10.0.2.15][28681] -> [..36.231.59.187][62234]
+ update: [...631] [ip4][..udp] [......10.0.2.15][28681] -> [..36.231.59.187][62234]
update: [...591] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][53707]
update: [...594] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.7375]
- update: [...614] [ip4][..udp] [......10.0.2.15][28681] -> [119.247.152.218][51920]
- update: [...618] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.7380]
+ update: [...613] [ip4][..udp] [......10.0.2.15][28681] -> [119.247.152.218][51920]
+ update: [...617] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.7380]
update: [...508] [ip4][..udp] [......10.0.2.15][28681] -> [...92.144.99.73][10745]
update: [...582] [ip4][..udp] [......10.0.2.15][28681] -> [....223.16.83.5][10624]
update: [...573] [ip4][..udp] [......10.0.2.15][28681] -> [..71.239.173.18][23327]
@@ -3365,23 +3436,23 @@
update: [...568] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.118.77][56562]
update: [...190] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.195.227][.6346]
update: [...538] [ip4][..udp] [......10.0.2.15][28681] -> [.124.218.41.253][14339]
- update: [...624] [ip4][..udp] [......10.0.2.15][28681] -> [.210.209.249.84][24751]
- update: [...630] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][45710]
- update: [...693] [ip4][..udp] [......10.0.2.15][28681] -> [.76.110.153.177][40022]
+ update: [...623] [ip4][..udp] [......10.0.2.15][28681] -> [.210.209.249.84][24751]
+ update: [...629] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][45710]
+ update: [...692] [ip4][..udp] [......10.0.2.15][28681] -> [.76.110.153.177][40022]
update: [...604] [ip4][..udp] [......10.0.2.15][28681] -> [.123.202.31.113][53291]
- update: [...719] [ip4][..udp] [......10.0.2.15][28681] -> [218.102.208.175][.9167]
+ update: [...718] [ip4][..udp] [......10.0.2.15][28681] -> [218.102.208.175][.9167]
update: [...536] [ip4][..udp] [......10.0.2.15][28681] -> [118.167.222.160][56121]
update: [...558] [ip4][..udp] [......10.0.2.15][28681] -> [...112.105.52.2][.6466]
update: [...556] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49787]
update: [...600] [ip4][..udp] [......10.0.2.15][28681] -> [....1.64.156.63][60092]
- update: [...646] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49803]
- update: [...662] [ip4][..udp] [......10.0.2.15][28681] -> [...24.127.1.235][37814]
+ update: [...645] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49803]
+ update: [...661] [ip4][..udp] [......10.0.2.15][28681] -> [...24.127.1.235][37814]
update: [...499] [ip4][..udp] [......10.0.2.15][28681] -> [....1.161.80.82][.8656]
- update: [...627] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49815]
- update: [...704] [ip4][..udp] [......10.0.2.15][28681] -> [..114.40.67.191][14971]
+ update: [...626] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49815]
+ update: [...703] [ip4][..udp] [......10.0.2.15][28681] -> [..114.40.67.191][14971]
update: [...560] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][53883]
- update: [...657] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54914]
- update: [...728] [ip4][..udp] [......10.0.2.15][28681] -> [101.136.187.253][10914]
+ update: [...656] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54914]
+ update: [...727] [ip4][..udp] [......10.0.2.15][28681] -> [101.136.187.253][10914]
update: [...521] [ip4][..udp] [......10.0.2.15][28681] -> [.113.255.250.32][23458]
update: [...503] [ip4][..udp] [......10.0.2.15][28681] -> [..74.210.244.72][.6346]
update: [...505] [ip4][..udp] [......10.0.2.15][28681] -> [.....42.2.62.28][.6387]
@@ -3389,67 +3460,67 @@
update: [...370] [ip4][..udp] [......10.0.2.15][28681] -> [..91.172.56.198][11984]
update: [...180] [ip4][..udp] [......10.0.2.15][28681] -> [...66.131.24.72][30711]
update: [...498] [ip4][..udp] [......10.0.2.15][28681] -> [...8.44.149.207][30551]
- update: [...705] [ip4][..udp] [......10.0.2.15][28681] -> [..123.192.83.59][33513]
- update: [...642] [ip4][..udp] [......10.0.2.15][28681] -> [.36.233.199.103][.2625]
- update: [...718] [ip4][..udp] [......10.0.2.15][28681] -> [...79.191.58.38][48157]
- update: [...743] [ip4][..udp] [......10.0.2.15][28681] -> [194.163.180.126][36780]
- update: [...675] [ip4][..udp] [......10.0.2.15][28681] -> [...219.70.1.236][.9369]
- update: [...673] [ip4][..udp] [......10.0.2.15][28681] -> [....223.16.83.5][.4765]
- update: [...682] [ip4][..udp] [......10.0.2.15][28681] -> [..61.220.41.241][53072]
- update: [...641] [ip4][..udp] [......10.0.2.15][28681] -> [....1.36.249.91][65430]
+ update: [...704] [ip4][..udp] [......10.0.2.15][28681] -> [..123.192.83.59][33513]
+ update: [...641] [ip4][..udp] [......10.0.2.15][28681] -> [.36.233.199.103][.2625]
+ update: [...717] [ip4][..udp] [......10.0.2.15][28681] -> [...79.191.58.38][48157]
+ update: [...742] [ip4][..udp] [......10.0.2.15][28681] -> [194.163.180.126][36780]
+ update: [...674] [ip4][..udp] [......10.0.2.15][28681] -> [...219.70.1.236][.9369]
+ update: [...672] [ip4][..udp] [......10.0.2.15][28681] -> [....223.16.83.5][.4765]
+ update: [...681] [ip4][..udp] [......10.0.2.15][28681] -> [..61.220.41.241][53072]
+ update: [...640] [ip4][..udp] [......10.0.2.15][28681] -> [....1.36.249.91][65430]
update: [...559] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][55080]
- update: [...683] [ip4][..udp] [......10.0.2.15][28681] -> [203.220.198.244][50896]
- update: [...680] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.83.132][57131]
- update: [...695] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][.6514]
- update: [...666] [ip4][..udp] [......10.0.2.15][28681] -> [..82.36.106.134][.3927]
- update: [...661] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][.6527]
+ update: [...682] [ip4][..udp] [......10.0.2.15][28681] -> [203.220.198.244][50896]
+ update: [...679] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.83.132][57131]
+ update: [...694] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][.6514]
+ update: [...665] [ip4][..udp] [......10.0.2.15][28681] -> [..82.36.106.134][.3927]
+ update: [...660] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][.6527]
update: [...529] [ip4][..udp] [......10.0.2.15][28681] -> [116.241.162.162][57929]
- update: [...616] [ip4][..udp] [......10.0.2.15][28681] -> [.74.195.236.249][18557]
+ update: [...615] [ip4][..udp] [......10.0.2.15][28681] -> [.74.195.236.249][18557]
update: [...539] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][.7510]
- update: [...717] [ip4][..udp] [......10.0.2.15][28681] -> [...98.249.190.8][25198]
- update: [...732] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6564]
+ update: [...716] [ip4][..udp] [......10.0.2.15][28681] -> [...98.249.190.8][25198]
+ update: [...731] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6564]
update: [...545] [ip4][..udp] [......10.0.2.15][28681] -> [..116.49.159.77][55915]
update: [...156] [ip4][..udp] [......10.0.2.15][28681] -> [..86.244.228.86][10131]
update: [...374] [ip4][..udp] [......10.0.2.15][28681] -> [....62.35.190.5][18604]
- update: [...736] [ip4][..udp] [......10.0.2.15][28681] -> [..45.31.152.112][52420]
+ update: [...735] [ip4][..udp] [......10.0.2.15][28681] -> [..45.31.152.112][52420]
update: [...176] [ip4][..udp] [......10.0.2.15][28681] -> [....41.99.164.4][.6346]
- update: [...664] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6594]
- update: [...635] [ip4][..udp] [......10.0.2.15][28681] -> [..24.179.18.242][47329]
+ update: [...663] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6594]
+ update: [...634] [ip4][..udp] [......10.0.2.15][28681] -> [..24.179.18.242][47329]
+ update: [...747] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6599]
update: [...527] [ip4][..udp] [......10.0.2.15][28681] -> [..42.72.149.140][37848]
- update: [...644] [ip4][..udp] [......10.0.2.15][28681] -> [..31.20.248.147][30706]
- update: [...712] [ip4][..udp] [......10.0.2.15][28681] -> [..220.129.86.65][49723]
+ update: [...643] [ip4][..udp] [......10.0.2.15][28681] -> [..31.20.248.147][30706]
+ update: [...711] [ip4][..udp] [......10.0.2.15][28681] -> [..220.129.86.65][49723]
update: [...504] [ip4][..udp] [......10.0.2.15][28681] -> [..85.203.45.107][.6346]
update: [...563] [ip4][..udp] [......10.0.2.15][28681] -> [...112.105.52.2][.6831]
update: [...157] [ip4][..udp] [......10.0.2.15][28681] -> [.86.227.162.150][.6346]
- update: [...640] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.7849]
+ update: [...639] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.7849]
update: [...209] [ip4][..udp] [......10.0.2.15][28681] -> [..91.179.98.234][.6346]
update: [...372] [ip4][..udp] [......10.0.2.15][28681] -> [.91.179.185.126][.6346]
- update: [...730] [ip4][..udp] [......10.0.2.15][28681] -> [..114.47.227.91][54463]
- update: [...733] [ip4][..udp] [......10.0.2.15][28681] -> [..85.168.34.105][39908]
- update: [...634] [ip4][..udp] [......10.0.2.15][28681] -> [..68.174.18.115][50679]
- update: [...608] [ip4][..udp] [......10.0.2.15][28681] -> [..111.241.31.96][.4814]
- update: [...706] [ip4][..udp] [......10.0.2.15][28681] -> [..124.218.26.16][.8658]
- update: [...699] [ip4][..udp] [......10.0.2.15][28681] -> [..70.81.219.111][19210]
+ update: [...729] [ip4][..udp] [......10.0.2.15][28681] -> [..114.47.227.91][54463]
+ update: [...732] [ip4][..udp] [......10.0.2.15][28681] -> [..85.168.34.105][39908]
+ update: [...633] [ip4][..udp] [......10.0.2.15][28681] -> [..68.174.18.115][50679]
+ update: [...607] [ip4][..udp] [......10.0.2.15][28681] -> [..111.241.31.96][.4814]
+ update: [...705] [ip4][..udp] [......10.0.2.15][28681] -> [..124.218.26.16][.8658]
+ update: [...698] [ip4][..udp] [......10.0.2.15][28681] -> [..70.81.219.111][19210]
update: [...595] [ip4][..udp] [......10.0.2.15][28681] -> [.175.182.21.156][13732]
- update: [...724] [ip4][..udp] [......10.0.2.15][28681] -> [.175.39.219.223][13482]
- update: [...674] [ip4][..udp] [......10.0.2.15][28681] -> [.125.59.215.249][14571]
- update: [...612] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][59384]
- update: [...725] [ip4][..udp] [......10.0.2.15][28681] -> [...1.65.217.224][.9070]
- update: [...645] [ip4][..udp] [......10.0.2.15][28681] -> [...173.22.22.94][34245]
- update: [...667] [ip4][..udp] [......10.0.2.15][28681] -> [.159.196.95.223][.2003]
- update: [...649] [ip4][..udp] [......10.0.2.15][28681] -> [180.218.135.222][.4548]
+ update: [...723] [ip4][..udp] [......10.0.2.15][28681] -> [.175.39.219.223][13482]
+ update: [...673] [ip4][..udp] [......10.0.2.15][28681] -> [.125.59.215.249][14571]
+ update: [...611] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][59384]
+ update: [...724] [ip4][..udp] [......10.0.2.15][28681] -> [...1.65.217.224][.9070]
+ update: [...644] [ip4][..udp] [......10.0.2.15][28681] -> [...173.22.22.94][34245]
+ update: [...666] [ip4][..udp] [......10.0.2.15][28681] -> [.159.196.95.223][.2003]
+ update: [...648] [ip4][..udp] [......10.0.2.15][28681] -> [180.218.135.222][.4548]
update: [...159] [ip4][..udp] [......10.0.2.15][28681] -> [176.163.231.160][.6346]
update: [...579] [ip4][..udp] [......10.0.2.15][28681] -> [.223.16.170.108][23458]
- update: [...678] [ip4][..udp] [......10.0.2.15][28681] -> [....223.16.83.5][.9128]
- update: [...707] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.1968]
- update: [...746] [ip4][.icmp] [..164.132.10.25] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
+ update: [...677] [ip4][..udp] [......10.0.2.15][28681] -> [....223.16.83.5][.9128]
+ update: [...706] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.1968]
update: [...554] [ip4][..udp] [......10.0.2.15][28681] -> [.123.203.72.224][55577]
- update: [...655] [ip4][..udp] [......10.0.2.15][28681] -> [.84.118.116.198][44616]
- update: [...726] [ip4][..udp] [......10.0.2.15][28681] -> [..219.91.30.216][61635]
- update: [...669] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][64731]
+ update: [...654] [ip4][..udp] [......10.0.2.15][28681] -> [.84.118.116.198][44616]
+ update: [...725] [ip4][..udp] [......10.0.2.15][28681] -> [..219.91.30.216][61635]
+ update: [...668] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][64731]
update: [...528] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][58442]
- update: [...742] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.4364]
- update: [...697] [ip4][..udp] [......10.0.2.15][28681] -> [188.165.203.190][55050]
+ update: [...741] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.4364]
+ update: [...696] [ip4][..udp] [......10.0.2.15][28681] -> [188.165.203.190][55050]
update: [...537] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.2034]
update: [...213] [ip4][..udp] [......10.0.2.15][28681] -> [....5.180.62.37][.6346]
update: [...167] [ip4][..udp] [......10.0.2.15][28681] -> [..93.29.107.176][20363]
@@ -3457,46 +3528,46 @@
update: [...171] [ip4][..udp] [......10.0.2.15][28681] -> [196.217.132.111][25394]
update: [...502] [ip4][..udp] [......10.0.2.15][28681] -> [..47.156.58.211][.6346]
update: [...507] [ip4][..udp] [......10.0.2.15][28681] -> [...50.4.204.220][.6346]
- update: [...687] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][13965]
- update: [...663] [ip4][..udp] [......10.0.2.15][28681] -> [..96.59.117.166][33192]
+ update: [...686] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][13965]
+ update: [...662] [ip4][..udp] [......10.0.2.15][28681] -> [..96.59.117.166][33192]
update: [...535] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10655]
update: [...160] [ip4][..udp] [......10.0.2.15][28681] -> [...83.150.49.35][32448]
update: [...602] [ip4][..udp] [......10.0.2.15][28681] -> [.123.203.72.224][53658]
update: [...589] [ip4][..udp] [......10.0.2.15][28681] -> [.113.255.250.32][52647]
- update: [...654] [ip4][..udp] [......10.0.2.15][28681] -> [....82.12.1.136][.6348]
+ update: [...653] [ip4][..udp] [......10.0.2.15][28681] -> [....82.12.1.136][.6348]
update: [...525] [ip4][..udp] [......10.0.2.15][28681] -> [.113.255.250.32][52660]
- update: [...611] [ip4][..udp] [......10.0.2.15][28681] -> [..61.10.174.159][.4841]
+ update: [...610] [ip4][..udp] [......10.0.2.15][28681] -> [..61.10.174.159][.4841]
update: [...532] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10677]
- update: [...696] [ip4][..udp] [......10.0.2.15][28681] -> [..76.189.72.230][.8161]
+ update: [...695] [ip4][..udp] [......10.0.2.15][28681] -> [..76.189.72.230][.8161]
update: [...185] [ip4][..udp] [......10.0.2.15][28681] -> [.109.132.196.58][.6346]
update: [...512] [ip4][..udp] [......10.0.2.15][28681] -> [..209.204.207.5][49256]
- update: [...735] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.91.201][.4297]
- update: [...628] [ip4][..udp] [......10.0.2.15][28681] -> [..73.62.225.181][46843]
+ update: [...734] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.91.201][.4297]
+ update: [...627] [ip4][..udp] [......10.0.2.15][28681] -> [..73.62.225.181][46843]
update: [...552] [ip4][..udp] [......10.0.2.15][28681] -> [...218.250.6.59][60012]
- update: [...651] [ip4][..udp] [......10.0.2.15][28681] -> [..114.47.227.91][58856]
- update: [...703] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10728]
+ update: [...650] [ip4][..udp] [......10.0.2.15][28681] -> [..114.47.227.91][58856]
+ update: [...702] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10728]
update: [...581] [ip4][..udp] [......10.0.2.15][28681] -> [..58.115.108.10][.4641]
- update: [...613] [ip4][..udp] [......10.0.2.15][28681] -> [.106.104.88.139][.7423]
+ update: [...612] [ip4][..udp] [......10.0.2.15][28681] -> [.106.104.88.139][.7423]
update: [...583] [ip4][..udp] [......10.0.2.15][28681] -> [...87.75.180.80][35361]
- update: [...672] [ip4][..udp] [......10.0.2.15][28681] -> [180.218.135.222][49867]
+ update: [...671] [ip4][..udp] [......10.0.2.15][28681] -> [180.218.135.222][49867]
update: [...574] [ip4][..udp] [......10.0.2.15][28681] -> [..223.17.132.18][23458]
- update: [...679] [ip4][..udp] [......10.0.2.15][28681] -> [150.116.225.105][51438]
+ update: [...678] [ip4][..udp] [......10.0.2.15][28681] -> [150.116.225.105][51438]
update: [...518] [ip4][..udp] [......10.0.2.15][28681] -> [..202.151.63.59][.7624]
- update: [...716] [ip4][..udp] [......10.0.2.15][28681] -> [...219.71.72.88][58808]
- update: [...660] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10791]
+ update: [...715] [ip4][..udp] [......10.0.2.15][28681] -> [...219.71.72.88][58808]
+ update: [...659] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10791]
update: [...543] [ip4][..udp] [......10.0.2.15][28681] -> [..114.39.159.60][56896]
update: [...161] [ip4][..udp] [......10.0.2.15][28681] -> [..213.120.26.86][29946]
update: [...564] [ip4][..udp] [......10.0.2.15][28681] -> [..61.222.160.99][53144]
update: [...557] [ip4][..udp] [......10.0.2.15][28681] -> [..61.222.160.99][53163]
- update: [...648] [ip4][..udp] [......10.0.2.15][28681] -> [..61.18.212.223][58290]
- update: [...700] [ip4][..udp] [......10.0.2.15][28681] -> [..77.222.213.44][26536]
- update: [...652] [ip4][..udp] [......10.0.2.15][28681] -> [....1.64.156.63][65023]
- update: [...659] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][.8075]
- update: [...713] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][59978]
- update: [...658] [ip4][..udp] [......10.0.2.15][28681] -> [..61.222.160.99][53195]
+ update: [...647] [ip4][..udp] [......10.0.2.15][28681] -> [..61.18.212.223][58290]
+ update: [...699] [ip4][..udp] [......10.0.2.15][28681] -> [..77.222.213.44][26536]
+ update: [...651] [ip4][..udp] [......10.0.2.15][28681] -> [....1.64.156.63][65023]
+ update: [...658] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][.8075]
+ update: [...712] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][59978]
+ update: [...657] [ip4][..udp] [......10.0.2.15][28681] -> [..61.222.160.99][53195]
update: [...576] [ip4][..udp] [......10.0.2.15][28681] -> [104.238.172.250][42925]
update: [...570] [ip4][..udp] [......10.0.2.15][28681] -> [..97.83.183.148][.8890]
- update: [...681] [ip4][..udp] [......10.0.2.15][28681] -> [.61.227.198.100][.6910]
+ update: [...680] [ip4][..udp] [......10.0.2.15][28681] -> [.61.227.198.100][.6910]
update: [...175] [ip4][..udp] [......10.0.2.15][28681] -> [...115.69.62.99][.6346]
update: [...500] [ip4][..udp] [......10.0.2.15][28681] -> [.220.143.34.225][20071]
update: [...566] [ip4][..udp] [......10.0.2.15][28681] -> [...58.176.62.40][52755]
@@ -3506,26 +3577,26 @@
update: [...519] [ip4][..udp] [......10.0.2.15][28681] -> [...219.70.48.23][.8070]
update: [...601] [ip4][..udp] [......10.0.2.15][28681] -> [113.255.200.161][65274]
update: [...200] [ip4][..udp] [......10.0.2.15][28681] -> [.138.199.16.123][52993]
- update: [...639] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.242.225][15068]
- update: [...727] [ip4][..udp] [......10.0.2.15][28681] -> [....1.171.82.65][50072]
- update: [...609] [ip4][..udp] [......10.0.2.15][28681] -> [...1.163.14.246][23461]
- update: [...737] [ip4][..udp] [......10.0.2.15][28681] -> [118.166.252.163][14391]
+ update: [...638] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.242.225][15068]
+ update: [...726] [ip4][..udp] [......10.0.2.15][28681] -> [....1.171.82.65][50072]
+ update: [...608] [ip4][..udp] [......10.0.2.15][28681] -> [...1.163.14.246][23461]
+ update: [...736] [ip4][..udp] [......10.0.2.15][28681] -> [118.166.252.163][14391]
update: [...549] [ip4][..udp] [......10.0.2.15][28681] -> [..84.211.151.48][11105]
update: [...561] [ip4][..udp] [......10.0.2.15][28681] -> [.61.238.173.128][57466]
- update: [...626] [ip4][..udp] [......10.0.2.15][28681] -> [113.252.206.254][49737]
+ update: [...625] [ip4][..udp] [......10.0.2.15][28681] -> [113.252.206.254][49737]
update: [...580] [ip4][..udp] [......10.0.2.15][28681] -> [...76.119.55.28][20347]
- update: [...625] [ip4][..udp] [......10.0.2.15][28681] -> [.61.238.173.128][57492]
+ update: [...624] [ip4][..udp] [......10.0.2.15][28681] -> [.61.238.173.128][57492]
update: [...567] [ip4][..udp] [......10.0.2.15][28681] -> [...58.176.62.40][52889]
- update: [...685] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][54436]
- update: [...744] [ip4][..udp] [......10.0.2.15][28681] -> [...27.94.154.53][.6346]
+ update: [...684] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][54436]
+ update: [...743] [ip4][..udp] [......10.0.2.15][28681] -> [...27.94.154.53][.6346]
update: [...541] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][11141]
- update: [...731] [ip4][..udp] [......10.0.2.15][28681] -> [124.217.188.105][62849]
- update: [...711] [ip4][..udp] [......10.0.2.15][28681] -> [113.254.140.225][63637]
- update: [...710] [ip4][..udp] [......10.0.2.15][28681] -> [.223.16.121.156][.3624]
+ update: [...730] [ip4][..udp] [......10.0.2.15][28681] -> [124.217.188.105][62849]
+ update: [...710] [ip4][..udp] [......10.0.2.15][28681] -> [113.254.140.225][63637]
+ update: [...709] [ip4][..udp] [......10.0.2.15][28681] -> [.223.16.121.156][.3624]
update: [...547] [ip4][..udp] [......10.0.2.15][28681] -> [213.229.111.224][43316]
- update: [...688] [ip4][..udp] [......10.0.2.15][28681] -> [..66.30.221.181][53454]
+ update: [...687] [ip4][..udp] [......10.0.2.15][28681] -> [..66.30.221.181][53454]
update: [...510] [ip4][..udp] [......10.0.2.15][28681] -> [...79.94.85.113][.6346]
- update: [...653] [ip4][..udp] [......10.0.2.15][28681] -> [..94.139.21.182][50110]
+ update: [...652] [ip4][..udp] [......10.0.2.15][28681] -> [..94.139.21.182][50110]
update: [...530] [ip4][..udp] [......10.0.2.15][28681] -> [118.167.248.220][59304]
update: [...497] [ip4][..udp] [......10.0.2.15][28681] -> [..84.100.76.123][39628]
update: [...569] [ip4][..udp] [......10.0.2.15][28681] -> [....73.89.249.8][50649]
@@ -3535,99 +3606,25 @@
update: [...522] [ip4][..udp] [......10.0.2.15][28681] -> [119.247.152.218][51153]
update: [...590] [ip4][..udp] [......10.0.2.15][28681] -> [...95.10.205.67][48380]
update: [...605] [ip4][..udp] [......10.0.2.15][28681] -> [180.149.125.139][.6578]
- update: [...690] [ip4][..udp] [......10.0.2.15][28681] -> [...1.65.217.224][.3688]
- update: [...665] [ip4][..udp] [......10.0.2.15][28681] -> [..1.172.183.237][.4983]
- update: [...709] [ip4][..udp] [......10.0.2.15][28681] -> [..124.244.68.65][51967]
- update: [...656] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.2566]
- update: [...729] [ip4][..udp] [......10.0.2.15][28681] -> [..112.10.134.44][19739]
+ update: [...689] [ip4][..udp] [......10.0.2.15][28681] -> [...1.65.217.224][.3688]
+ update: [...664] [ip4][..udp] [......10.0.2.15][28681] -> [..1.172.183.237][.4983]
+ update: [...708] [ip4][..udp] [......10.0.2.15][28681] -> [..124.244.68.65][51967]
+ update: [...655] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.2566]
+ update: [...728] [ip4][..udp] [......10.0.2.15][28681] -> [..112.10.134.44][19739]
update: [...548] [ip4][..udp] [......10.0.2.15][28681] -> [..74.50.147.205][17735]
- update: [...633] [ip4][..udp] [......10.0.2.15][28681] -> [...188.149.2.44][20964]
+ update: [...632] [ip4][..udp] [......10.0.2.15][28681] -> [...188.149.2.44][20964]
update: [...575] [ip4][..udp] [......10.0.2.15][28681] -> [.123.202.31.113][19768]
update: [...588] [ip4][..udp] [......10.0.2.15][28681] -> [.219.70.175.103][.4315]
- update: [...720] [ip4][..udp] [......10.0.2.15][28681] -> [...219.85.11.85][10722]
+ update: [...719] [ip4][..udp] [......10.0.2.15][28681] -> [...219.85.11.85][10722]
update: [...540] [ip4][..udp] [......10.0.2.15][28681] -> [..36.236.203.37][52131]
- update: [...631] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][.3931]
+ update: [...630] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][.3931]
update: [...565] [ip4][..udp] [......10.0.2.15][28681] -> [...114.45.40.28][.2656]
update: [...523] [ip4][..udp] [......10.0.2.15][28681] -> [..1.162.138.200][24018]
- update: [...694] [ip4][..udp] [......10.0.2.15][28681] -> [.98.215.130.156][12405]
+ update: [...693] [ip4][..udp] [......10.0.2.15][28681] -> [.98.215.130.156][12405]
update: [...377] [ip4][..udp] [......10.0.2.15][28681] -> [.180.200.236.13][12082]
- update: [...394] [ip4][..udp] [......10.0.2.15][28681] -> [.165.84.134.136][21407]
- update: [...254] [ip4][..udp] [......10.0.2.15][28681] -> [..88.120.73.215][24562] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...398] [ip4][..udp] [......10.0.2.15][28681] -> [.62.102.148.166][31332]
- update: [...381] [ip4][..udp] [......10.0.2.15][28681] -> [...77.58.211.52][.3806]
- update: [...386] [ip4][..udp] [......10.0.2.15][28681] -> [...85.172.10.90][40162]
- update: [...306] [ip4][..udp] [......10.0.2.15][28681] -> [..41.249.63.200][22582]
- update: [...392] [ip4][..udp] [......10.0.2.15][28681] -> [....42.0.69.215][12608]
- update: [...265] [ip4][..udp] [......10.0.2.15][28681] -> [203.220.198.244][.1194] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...304] [ip4][..udp] [......10.0.2.15][28681] -> [.193.32.126.214][59596]
- update: [...389] [ip4][..udp] [......10.0.2.15][28681] -> [..94.215.183.71][31310]
- update: [...747] [ip4][..udp] [......10.0.2.15][28681] -> [123.205.126.102][.5193]
- update: [...260] [ip4][..udp] [......10.0.2.15][28681] -> [.46.128.114.107][.6578] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...259] [ip4][..udp] [......10.0.2.15][28681] -> [103.232.107.100][43508] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...385] [ip4][..udp] [......10.0.2.15][28681] -> [..66.223.143.31][47978]
- update: [...250] [ip4][..udp] [......10.0.2.15][28681] -> [..51.68.153.214][26253] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...384] [ip4][..udp] [......10.0.2.15][28681] -> [....75.64.6.175][.4743]
- update: [...378] [ip4][..udp] [......10.0.2.15][28681] -> [.118.241.204.61][43366]
- update: [...375] [ip4][..udp] [......10.0.2.15][28681] -> [..73.182.136.42][27873]
- update: [...257] [ip4][..udp] [......10.0.2.15][28681] -> [.82.181.251.218][36368] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...399] [ip4][..udp] [......10.0.2.15][28681] -> [.175.39.219.223][31728]
- update: [...388] [ip4][..udp] [......10.0.2.15][28681] -> [...121.7.145.36][33905]
- update: [...303] [ip4][..udp] [......10.0.2.15][28681] -> [.142.132.165.13][30566]
- update: [...246] [ip4][..udp] [......10.0.2.15][28681] -> [...96.65.68.194][35481] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...748] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6599]
- update: [...395] [ip4][..udp] [......10.0.2.15][28681] -> [..191.114.88.39][18751]
- update: [...317] [ip4][..udp] [......10.0.2.15][28681] -> [...96.236.205.7][34794] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...376] [ip4][..udp] [......10.0.2.15][28681] -> [....156.57.42.2][33476]
- update: [...261] [ip4][..udp] [......10.0.2.15][28681] -> [..60.241.48.194][21301] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...313] [ip4][..udp] [......10.0.2.15][28681] -> [..176.99.176.20][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...387] [ip4][..udp] [......10.0.2.15][28681] -> [....220.135.8.7][.1219]
- update: [...302] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][53489]
- update: [...255] [ip4][..udp] [......10.0.2.15][28681] -> [..80.61.221.246][30577] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...248] [ip4][..udp] [......10.0.2.15][28681] -> [..66.30.221.181][12012] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...380] [ip4][..udp] [......10.0.2.15][28681] -> [...83.86.49.195][12019]
- update: [...383] [ip4][..udp] [......10.0.2.15][28681] -> [...84.71.243.60][34498]
- update: [...253] [ip4][..udp] [......10.0.2.15][28681] -> [.193.37.255.130][61616] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...390] [ip4][..udp] [......10.0.2.15][28681] -> [144.134.132.206][16401]
- update: [...391] [ip4][..udp] [......10.0.2.15][28681] -> [...161.81.38.67][.9539]
- update: [...316] [ip4][..udp] [......10.0.2.15][28681] -> [....94.54.66.82][63637] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...262] [ip4][..udp] [......10.0.2.15][28681] -> [....89.75.52.19][46010] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...393] [ip4][..udp] [......10.0.2.15][28681] -> [.58.115.158.103][.5110]
- update: [...382] [ip4][..udp] [......10.0.2.15][28681] -> [..76.175.11.126][40958]
- update: [...397] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][24634]
- update: [...379] [ip4][..udp] [......10.0.2.15][28681] -> [..80.140.63.147][29545]
- update: [...396] [ip4][..udp] [......10.0.2.15][28681] -> [..112.119.59.24][28755]
- update: [...312] [ip4][..udp] [......10.0.2.15][28681] -> [..24.167.201.53][47282] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- new: [...757] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][53258]
- detected: [...757] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][53258] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- new: [...758] [ip4][..udp] [......10.0.2.15][50213] -> [239.255.255.250][.1900]
- detected: [...758] [ip4][..udp] [......10.0.2.15][50213] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
- new: [...759] [ip4][..udp] [......10.0.2.15][28681] -> [104.238.172.250][23548]
- detected: [...759] [ip4][..udp] [......10.0.2.15][28681] -> [104.238.172.250][23548] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- not-detected: [...369] [ip4][..udp] [......10.0.2.15][28681] -> [.89.187.171.240][.6346] [Unknown][Unknown][Unrated]
- idle: [...369] [ip4][..udp] [......10.0.2.15][28681] -> [.89.187.171.240][.6346]
update: [...433] [ip4][..udp] [......10.0.2.15][28681] -> [.99.255.145.191][47264]
update: [...404] [ip4][..udp] [......10.0.2.15][28681] -> [.86.234.216.251][17845]
update: [...441] [ip4][..udp] [......10.0.2.15][28681] -> [.36.237.199.108][56040]
- update: [...331] [ip4][..udp] [......10.0.2.15][28681] -> [..45.31.152.112][26851] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
update: [...450] [ip4][..udp] [......10.0.2.15][28681] -> [113.252.206.254][23458]
update: [...426] [ip4][..udp] [......10.0.2.15][28681] -> [..219.71.44.121][14398]
update: [...411] [ip4][..udp] [......10.0.2.15][28681] -> [...89.143.28.64][.6346]
@@ -3635,62 +3632,101 @@
update: [...424] [ip4][..udp] [......10.0.2.15][28681] -> [..93.15.216.216][.6346]
update: [...479] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.13.148][51896]
update: [...422] [ip4][..udp] [......10.0.2.15][28681] -> [..88.123.35.219][42211]
+ update: [...394] [ip4][..udp] [......10.0.2.15][28681] -> [.165.84.134.136][21407]
+ update: [...254] [ip4][..udp] [......10.0.2.15][28681] -> [..88.120.73.215][24562] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...439] [ip4][..udp] [......10.0.2.15][28681] -> [..176.135.15.86][.6346]
update: [...474] [ip4][..udp] [......10.0.2.15][28681] -> [..80.61.221.246][45880]
+ update: [...398] [ip4][..udp] [......10.0.2.15][28681] -> [.62.102.148.166][31332]
update: [...477] [ip4][..udp] [......10.0.2.15][28681] -> [....94.54.66.82][45640]
update: [...444] [ip4][..udp] [......10.0.2.15][28681] -> [.122.117.100.78][.9010]
update: [...478] [ip4][..udp] [......10.0.2.15][28681] -> [...36.235.85.44][64914]
update: [...449] [ip4][..udp] [......10.0.2.15][28681] -> [.61.238.173.128][.8826]
update: [...461] [ip4][..udp] [......10.0.2.15][28681] -> [..69.27.193.124][50555]
- update: [...332] [ip4][..udp] [......10.0.2.15][28681] -> [213.229.111.224][.4876] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
update: [...472] [ip4][..udp] [......10.0.2.15][28681] -> [....94.54.66.82][45744]
update: [...471] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][43457]
update: [...481] [ip4][..udp] [......10.0.2.15][28681] -> [..82.120.219.74][.6346]
update: [...476] [ip4][..udp] [......10.0.2.15][28681] -> [..98.18.172.208][63172]
+ update: [...381] [ip4][..udp] [......10.0.2.15][28681] -> [...77.58.211.52][.3806]
+ update: [...386] [ip4][..udp] [......10.0.2.15][28681] -> [...85.172.10.90][40162]
update: [...435] [ip4][..udp] [......10.0.2.15][28681] -> [.109.24.146.101][.6346]
update: [...465] [ip4][..udp] [......10.0.2.15][28681] -> [.....2.28.39.18][15672]
+ update: [...306] [ip4][..udp] [......10.0.2.15][28681] -> [..41.249.63.200][22582]
update: [...421] [ip4][..udp] [......10.0.2.15][28681] -> [..175.182.39.11][12977]
+ update: [...392] [ip4][..udp] [......10.0.2.15][28681] -> [....42.0.69.215][12608]
+ update: [...265] [ip4][..udp] [......10.0.2.15][28681] -> [203.220.198.244][.1194] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...416] [ip4][..udp] [......10.0.2.15][28681] -> [..92.139.61.103][24096]
+ update: [...304] [ip4][..udp] [......10.0.2.15][28681] -> [.193.32.126.214][59596]
update: [...443] [ip4][..udp] [......10.0.2.15][28681] -> [..183.179.14.31][54754]
+ update: [...389] [ip4][..udp] [......10.0.2.15][28681] -> [..94.215.183.71][31310]
update: [...413] [ip4][..udp] [......10.0.2.15][28681] -> [...87.65.188.29][24676]
- update: [...754] [ip4][..udp] [......10.0.2.15][28681] -> [..84.125.218.84][17561]
+ update: [...260] [ip4][..udp] [......10.0.2.15][28681] -> [.46.128.114.107][.6578] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...412] [ip4][..udp] [......10.0.2.15][28681] -> [...58.177.52.73][.6346]
update: [...418] [ip4][..udp] [......10.0.2.15][28681] -> [.75.129.149.103][.6346]
update: [...468] [ip4][..udp] [......10.0.2.15][28681] -> [..94.214.12.247][44001]
update: [...466] [ip4][..udp] [......10.0.2.15][28681] -> [...70.119.248.5][49929]
+ update: [...259] [ip4][..udp] [......10.0.2.15][28681] -> [103.232.107.100][43508] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...446] [ip4][..udp] [......10.0.2.15][28681] -> [..61.70.199.107][60475]
update: [...470] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][46790]
+ update: [...385] [ip4][..udp] [......10.0.2.15][28681] -> [..66.223.143.31][47978]
update: [...447] [ip4][..udp] [......10.0.2.15][28681] -> [...14.199.10.60][23458]
update: [...451] [ip4][..udp] [......10.0.2.15][28681] -> [...218.35.66.21][22234]
+ update: [...250] [ip4][..udp] [......10.0.2.15][28681] -> [..51.68.153.214][26253] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...384] [ip4][..udp] [......10.0.2.15][28681] -> [....75.64.6.175][.4743]
+ update: [...378] [ip4][..udp] [......10.0.2.15][28681] -> [.118.241.204.61][43366]
update: [...456] [ip4][..udp] [......10.0.2.15][28681] -> [.89.241.112.255][14766]
update: [...428] [ip4][..udp] [......10.0.2.15][28681] -> [....86.162.97.8][.6346]
+ update: [...375] [ip4][..udp] [......10.0.2.15][28681] -> [..73.182.136.42][27873]
update: [...455] [ip4][..udp] [......10.0.2.15][28681] -> [.58.153.206.183][16919]
update: [...453] [ip4][..udp] [......10.0.2.15][28681] -> [..74.127.26.138][.3083]
update: [...425] [ip4][..udp] [......10.0.2.15][28681] -> [..145.82.53.165][.6346]
+ update: [...257] [ip4][..udp] [......10.0.2.15][28681] -> [.82.181.251.218][36368] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...460] [ip4][..udp] [......10.0.2.15][28681] -> [.210.194.116.78][.8342]
update: [...454] [ip4][..udp] [......10.0.2.15][28681] -> [.223.16.121.156][23183]
update: [...401] [ip4][..udp] [......10.0.2.15][28681] -> [.173.178.192.76][.6346]
update: [...484] [ip4][..udp] [......10.0.2.15][28681] -> [...107.4.56.177][10000]
update: [...406] [ip4][..udp] [......10.0.2.15][28681] -> [....109.27.3.68][57380]
- update: [...321] [ip4][..udp] [......10.0.2.15][28681] -> [188.165.203.190][21995] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ update: [...399] [ip4][..udp] [......10.0.2.15][28681] -> [.175.39.219.223][31728]
update: [...469] [ip4][..udp] [......10.0.2.15][28681] -> [..87.123.54.234][47184]
update: [...467] [ip4][..udp] [......10.0.2.15][28681] -> [...61.64.177.53][23458]
update: [...431] [ip4][..udp] [......10.0.2.15][28681] -> [..88.124.71.246][49035]
+ update: [...388] [ip4][..udp] [......10.0.2.15][28681] -> [...121.7.145.36][33905]
+ update: [...303] [ip4][..udp] [......10.0.2.15][28681] -> [.142.132.165.13][30566]
+ update: [...246] [ip4][..udp] [......10.0.2.15][28681] -> [...96.65.68.194][35481] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...395] [ip4][..udp] [......10.0.2.15][28681] -> [..191.114.88.39][18751]
update: [...483] [ip4][..udp] [.......10.0.2.2][.1026] -> [......10.0.2.15][28681]
update: [...402] [ip4][..udp] [......10.0.2.15][28681] -> [...78.219.202.2][.6346]
update: [...420] [ip4][..udp] [......10.0.2.15][28681] -> [..86.227.127.34][.6346]
update: [...417] [ip4][..udp] [......10.0.2.15][28681] -> [.94.187.236.179][.6346]
+ update: [...317] [ip4][..udp] [......10.0.2.15][28681] -> [...96.236.205.7][34794] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...376] [ip4][..udp] [......10.0.2.15][28681] -> [....156.57.42.2][33476]
update: [...485] [ip4][..udp] [......10.0.2.15][28681] -> [...154.3.42.209][.6346]
+ update: [...261] [ip4][..udp] [......10.0.2.15][28681] -> [..60.241.48.194][21301] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...427] [ip4][..udp] [......10.0.2.15][28681] -> [...81.249.13.30][15138]
+ update: [...313] [ip4][..udp] [......10.0.2.15][28681] -> [..176.99.176.20][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...405] [ip4][..udp] [......10.0.2.15][28681] -> [.176.155.31.118][.6346]
- update: [...319] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][55302] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ update: [...745] [ip4][.icmp] [..164.132.10.25] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
+ update: [...387] [ip4][..udp] [......10.0.2.15][28681] -> [....220.135.8.7][.1219]
+ update: [...302] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][53489]
+ update: [...255] [ip4][..udp] [......10.0.2.15][28681] -> [..80.61.221.246][30577] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...415] [ip4][..udp] [......10.0.2.15][28681] -> [..90.247.160.96][17817]
update: [...458] [ip4][..udp] [......10.0.2.15][28681] -> [118.165.228.167][12201]
update: [...486] [ip4][..udp] [......10.0.2.15][28681] -> [...88.68.45.203][.6346]
update: [...410] [ip4][..udp] [......10.0.2.15][28681] -> [..93.28.130.131][.6346]
+ update: [...248] [ip4][..udp] [......10.0.2.15][28681] -> [..66.30.221.181][12012] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...380] [ip4][..udp] [......10.0.2.15][28681] -> [...83.86.49.195][12019]
update: [...423] [ip4][..udp] [......10.0.2.15][28681] -> [..119.247.6.226][.9713]
update: [...438] [ip4][..udp] [......10.0.2.15][28681] -> [..71.86.190.163][14142]
update: [...403] [ip4][..udp] [......10.0.2.15][28681] -> [197.244.171.132][.6346]
@@ -3698,323 +3734,399 @@
update: [...429] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.215.213][23576]
update: [...436] [ip4][..udp] [......10.0.2.15][28681] -> [.219.68.179.137][.6406]
update: [...414] [ip4][..udp] [......10.0.2.15][28681] -> [175.181.156.244][.8255]
+ update: [...383] [ip4][..udp] [......10.0.2.15][28681] -> [...84.71.243.60][34498]
update: [...409] [ip4][..udp] [......10.0.2.15][28681] -> [...86.194.53.68][33770]
update: [...482] [ip4][..udp] [......10.0.2.15][28681] -> [..86.193.23.172][42227]
update: [...400] [ip4][..udp] [......10.0.2.15][28681] -> [..129.45.47.167][.6346]
+ update: [...253] [ip4][..udp] [......10.0.2.15][28681] -> [.193.37.255.130][61616] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...407] [ip4][..udp] [......10.0.2.15][28681] -> [195.181.151.217][.6346]
update: [...463] [ip4][..udp] [......10.0.2.15][28681] -> [..200.7.155.210][28365]
update: [...452] [ip4][..udp] [......10.0.2.15][28681] -> [..68.227.193.37][27481]
+ update: [...390] [ip4][..udp] [......10.0.2.15][28681] -> [144.134.132.206][16401]
update: [...440] [ip4][..udp] [......10.0.2.15][28681] -> [203.165.170.112][37087]
update: [...448] [ip4][..udp] [......10.0.2.15][28681] -> [116.241.162.162][15677]
update: [...459] [ip4][..udp] [......10.0.2.15][28681] -> [...100.89.84.59][11603]
+ update: [...391] [ip4][..udp] [......10.0.2.15][28681] -> [...161.81.38.67][.9539]
update: [...437] [ip4][..udp] [......10.0.2.15][28681] -> [....31.38.163.2][.6346]
+ update: [...316] [ip4][..udp] [......10.0.2.15][28681] -> [....94.54.66.82][63637] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...262] [ip4][..udp] [......10.0.2.15][28681] -> [....89.75.52.19][46010] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...445] [ip4][..udp] [......10.0.2.15][28681] -> [118.165.153.100][.4509]
update: [...419] [ip4][..udp] [......10.0.2.15][28681] -> [...78.193.236.8][46557]
+ update: [...393] [ip4][..udp] [......10.0.2.15][28681] -> [.58.115.158.103][.5110]
update: [...432] [ip4][..udp] [......10.0.2.15][28681] -> [...104.6.118.53][.6346]
update: [...464] [ip4][..udp] [......10.0.2.15][28681] -> [...101.128.66.8][34512]
+ update: [...382] [ip4][..udp] [......10.0.2.15][28681] -> [..76.175.11.126][40958]
update: [...480] [ip4][..udp] [......10.0.2.15][28681] -> [..112.119.74.26][65498]
update: [...434] [ip4][..udp] [......10.0.2.15][28681] -> [.114.24.182.130][22232]
update: [...462] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][47808]
+ update: [...397] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][24634]
update: [...430] [ip4][..udp] [......10.0.2.15][28681] -> [....90.8.95.165][40763]
update: [...475] [ip4][..udp] [......10.0.2.15][28681] -> [..188.61.52.183][63978]
update: [...473] [ip4][..udp] [......10.0.2.15][28681] -> [.142.132.165.13][33564]
+ update: [...379] [ip4][..udp] [......10.0.2.15][28681] -> [..80.140.63.147][29545]
update: [...442] [ip4][..udp] [......10.0.2.15][28681] -> [..89.204.130.55][29545]
+ update: [...396] [ip4][..udp] [......10.0.2.15][28681] -> [..112.119.59.24][28755]
+ update: [...312] [ip4][..udp] [......10.0.2.15][28681] -> [..24.167.201.53][47282] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ new: [...757] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][53258]
+ detected: [...757] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][53258] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ new: [...758] [ip4][..udp] [......10.0.2.15][50213] -> [239.255.255.250][.1900]
+ detected: [...758] [ip4][..udp] [......10.0.2.15][50213] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
+ new: [...759] [ip4][..udp] [......10.0.2.15][28681] -> [104.238.172.250][23548]
+ detected: [...759] [ip4][..udp] [......10.0.2.15][28681] -> [104.238.172.250][23548] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ not-detected: [...369] [ip4][..udp] [......10.0.2.15][28681] -> [.89.187.171.240][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...369] [ip4][..udp] [......10.0.2.15][28681] -> [.89.187.171.240][.6346]
+ update: [...754] [ip4][..udp] [......10.0.2.15][28681] -> [..84.125.218.84][17561]
+ update: [...488] [ip4][..udp] [......10.0.2.15][28681] -> [.183.179.90.112][.9852]
+ update: [...490] [ip4][..udp] [......10.0.2.15][28681] -> [...90.3.215.132][20356]
+ update: [...489] [ip4][..udp] [......10.0.2.15][28681] -> [...108.44.45.25][.6346]
+ update: [...487] [ip4][..udp] [......10.0.2.15][28681] -> [..24.78.134.188][49046]
+ update: [...491] [ip4][..udp] [......10.0.2.15][28681] -> [..36.233.42.210][.5512]
+ update: [...492] [ip4][..udp] [......10.0.2.15][28681] -> [...172.94.41.71][.6346]
not-detected: [...371] [ip4][..udp] [......10.0.2.15][28681] -> [.109.131.202.24][44748] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...371] [ip4][..udp] [......10.0.2.15][28681] -> [.109.131.202.24][44748]
not-detected: [...370] [ip4][..udp] [......10.0.2.15][28681] -> [..91.172.56.198][11984] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...370] [ip4][..udp] [......10.0.2.15][28681] -> [..91.172.56.198][11984]
not-detected: [...374] [ip4][..udp] [......10.0.2.15][28681] -> [....62.35.190.5][18604] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...374] [ip4][..udp] [......10.0.2.15][28681] -> [....62.35.190.5][18604]
not-detected: [...372] [ip4][..udp] [......10.0.2.15][28681] -> [.91.179.185.126][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...372] [ip4][..udp] [......10.0.2.15][28681] -> [.91.179.185.126][.6346]
- idle: [...746] [ip4][.icmp] [..164.132.10.25] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
+ idle: [...745] [ip4][.icmp] [..164.132.10.25] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [...373] [ip4][..udp] [......10.0.2.15][28681] -> [..88.122.233.15][11488] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...373] [ip4][..udp] [......10.0.2.15][28681] -> [..88.122.233.15][11488]
- update: [...751] [ip4][..udp] [......10.0.2.15][28681] -> [....67.193.8.52][38584]
- update: [...335] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][37058]
- update: [...749] [ip4][..udp] [......10.0.2.15][28681] -> [.....92.8.59.80][35192]
- update: [...488] [ip4][..udp] [......10.0.2.15][28681] -> [.183.179.90.112][.9852]
- update: [...752] [ip4][..udp] [......10.0.2.15][28681] -> [142.115.218.152][.5900]
- update: [...490] [ip4][..udp] [......10.0.2.15][28681] -> [...90.3.215.132][20356]
- update: [...750] [ip4][..udp] [......10.0.2.15][28681] -> [...78.159.27.22][17563]
- update: [...753] [ip4][..udp] [......10.0.2.15][28681] -> [..165.84.140.96][14400]
- update: [...489] [ip4][..udp] [......10.0.2.15][28681] -> [...108.44.45.25][.6346]
- update: [...487] [ip4][..udp] [......10.0.2.15][28681] -> [..24.78.134.188][49046]
- update: [...491] [ip4][..udp] [......10.0.2.15][28681] -> [..36.233.42.210][.5512]
- update: [...492] [ip4][..udp] [......10.0.2.15][28681] -> [...172.94.41.71][.6346]
- not-detected: [...398] [ip4][..udp] [......10.0.2.15][28681] -> [.62.102.148.166][31332] [Unknown][Unknown][Unrated]
- idle: [...398] [ip4][..udp] [......10.0.2.15][28681] -> [.62.102.148.166][31332]
- not-detected: [...392] [ip4][..udp] [......10.0.2.15][28681] -> [....42.0.69.215][12608] [Unknown][Unknown][Unrated]
- idle: [...392] [ip4][..udp] [......10.0.2.15][28681] -> [....42.0.69.215][12608]
- not-detected: [...389] [ip4][..udp] [......10.0.2.15][28681] -> [..94.215.183.71][31310] [Unknown][Unknown][Unrated]
- idle: [...389] [ip4][..udp] [......10.0.2.15][28681] -> [..94.215.183.71][31310]
- not-detected: [...385] [ip4][..udp] [......10.0.2.15][28681] -> [..66.223.143.31][47978] [Unknown][Unknown][Unrated]
- idle: [...385] [ip4][..udp] [......10.0.2.15][28681] -> [..66.223.143.31][47978]
- not-detected: [...399] [ip4][..udp] [......10.0.2.15][28681] -> [.175.39.219.223][31728] [Unknown][Unknown][Unrated]
- idle: [...399] [ip4][..udp] [......10.0.2.15][28681] -> [.175.39.219.223][31728]
- not-detected: [...395] [ip4][..udp] [......10.0.2.15][28681] -> [..191.114.88.39][18751] [Unknown][Unknown][Unrated]
- idle: [...395] [ip4][..udp] [......10.0.2.15][28681] -> [..191.114.88.39][18751]
- not-detected: [...387] [ip4][..udp] [......10.0.2.15][28681] -> [....220.135.8.7][.1219] [Unknown][Unknown][Unrated]
- idle: [...387] [ip4][..udp] [......10.0.2.15][28681] -> [....220.135.8.7][.1219]
- not-detected: [...390] [ip4][..udp] [......10.0.2.15][28681] -> [144.134.132.206][16401] [Unknown][Unknown][Unrated]
- idle: [...390] [ip4][..udp] [......10.0.2.15][28681] -> [144.134.132.206][16401]
- not-detected: [...391] [ip4][..udp] [......10.0.2.15][28681] -> [...161.81.38.67][.9539] [Unknown][Unknown][Unrated]
- idle: [...391] [ip4][..udp] [......10.0.2.15][28681] -> [...161.81.38.67][.9539]
- not-detected: [...397] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][24634] [Unknown][Unknown][Unrated]
- idle: [...397] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][24634]
- not-detected: [...396] [ip4][..udp] [......10.0.2.15][28681] -> [..112.119.59.24][28755] [Unknown][Unknown][Unrated]
- idle: [...396] [ip4][..udp] [......10.0.2.15][28681] -> [..112.119.59.24][28755]
+ update: [...750] [ip4][..udp] [......10.0.2.15][28681] -> [....67.193.8.52][38584]
+ update: [...331] [ip4][..udp] [......10.0.2.15][28681] -> [..45.31.152.112][26851] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...361] [ip4][..udp] [......10.0.2.15][28681] -> [..86.129.196.84][.9915] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...134] [ip4][..udp] [......10.0.2.15][28681] -> [...78.231.73.14][.6346]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...752] [ip4][..udp] [......10.0.2.15][28681] -> [...78.231.73.14][.6346]
update: [...128] [ip4][..udp] [......10.0.2.15][28681] -> [..77.141.219.27][37580]
update: [...114] [ip4][..udp] [......10.0.2.15][28681] -> [....86.23.75.69][.6346]
update: [....88] [ip4][..udp] [......10.0.2.15][28681] -> [.....81.50.24.2][17874]
update: [...340] [ip4][..udp] [......10.0.2.15][28681] -> [.38.142.119.234][49732] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...335] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][37058]
+ update: [...332] [ip4][..udp] [......10.0.2.15][28681] -> [213.229.111.224][.4876] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...118] [ip4][..udp] [......10.0.2.15][28681] -> [...5.180.62.100][46385]
update: [...344] [ip4][..udp] [......10.0.2.15][28681] -> [.207.38.163.228][.6778] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...323] [ip4][..udp] [......10.0.2.15][28681] -> [.96.246.156.126][56070] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...117] [ip4][..udp] [......10.0.2.15][28681] -> [200.120.243.143][.6346]
+ update: [...748] [ip4][..udp] [......10.0.2.15][28681] -> [.....92.8.59.80][35192]
update: [....98] [ip4][..udp] [......10.0.2.15][28681] -> [.203.222.14.170][23332]
update: [...111] [ip4][..udp] [......10.0.2.15][28681] -> [..90.65.141.157][.6346]
update: [...336] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][.6888] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...139] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.226.142][.6346]
update: [...141] [ip4][..udp] [......10.0.2.15][28681] -> [..172.97.199.14][.6346]
+ update: [...751] [ip4][..udp] [......10.0.2.15][28681] -> [142.115.218.152][.5900]
update: [...126] [ip4][..udp] [......10.0.2.15][28681] -> [..91.69.159.133][28000]
update: [....85] [ip4][..udp] [......10.0.2.15][28681] -> [..85.138.20.110][.6346]
update: [...135] [ip4][..udp] [......10.0.2.15][28681] -> [.193.250.99.158][.6346]
+ update: [...321] [ip4][..udp] [......10.0.2.15][28681] -> [188.165.203.190][21995] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...342] [ip4][..udp] [......10.0.2.15][28681] -> [..98.208.26.154][.4994] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...749] [ip4][..udp] [......10.0.2.15][28681] -> [...78.159.27.22][17563]
update: [...125] [ip4][..udp] [......10.0.2.15][28681] -> [..83.92.178.182][57302]
update: [...116] [ip4][..udp] [......10.0.2.15][28681] -> [.124.44.190.145][10170]
+ update: [...319] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][55302] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...133] [ip4][..udp] [......10.0.2.15][28681] -> [.91.175.220.161][15721]
+ update: [...753] [ip4][..udp] [......10.0.2.15][28681] -> [..165.84.140.96][14400]
update: [...124] [ip4][..udp] [......10.0.2.15][28681] -> [...170.254.19.6][24180]
update: [...130] [ip4][..udp] [......10.0.2.15][28681] -> [..119.224.95.97][46356]
update: [...129] [ip4][..udp] [......10.0.2.15][28681] -> [.176.138.50.179][29411]
update: [...755] [ip4][..udp] [......10.0.2.15][28681] -> [..83.134.107.32][38836]
update: [...364] [ip4][..udp] [......10.0.2.15][28681] -> [194.163.180.126][10825] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...137] [ip4][..udp] [......10.0.2.15][28681] -> [...82.65.70.197][21693]
update: [...109] [ip4][..udp] [......10.0.2.15][28681] -> [...88.169.2.153][52414]
update: [...140] [ip4][..udp] [......10.0.2.15][28681] -> [.77.197.111.186][.6346]
update: [...756] [ip4][..udp] [......10.0.2.15][28681] -> [..41.100.68.255][12838]
update: [...108] [ip4][..udp] [......10.0.2.15][28681] -> [112.119.242.110][.7922]
update: [...339] [ip4][..udp] [......10.0.2.15][28681] -> [..87.123.54.234][54130] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...113] [ip4][..udp] [......10.0.2.15][28681] -> [105.101.132.146][57746]
update: [....87] [ip4][..udp] [......10.0.2.15][28681] -> [..92.131.85.245][31743]
update: [...367] [ip4][..udp] [......10.0.2.15][28681] -> [.149.28.163.175][49956] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...138] [ip4][..udp] [......10.0.2.15][28681] -> [167.114.170.156][23844]
new: [...760] [ip4][..udp] [......10.0.2.15][..138] -> [.....10.0.2.255][..138]
detected: [...760] [ip4][..udp] [......10.0.2.15][..138] -> [.....10.0.2.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous][msedgewin10]
RISK: Unsafe Protocol
new: [...761] [ip4][..udp] [......10.0.2.15][28681] -> [..195.132.75.56][56009]
new: [...762] [ip4][..udp] [......10.0.2.15][28681] -> [...86.75.43.182][43502]
- new: [...763] [ip4][..udp] [......10.0.2.15][28681] -> [.85.170.209.214][46210]
- new: [...764] [ip4][..udp] [......10.0.2.15][28681] -> [.208.92.106.151][32476]
not-detected: [...433] [ip4][..udp] [......10.0.2.15][28681] -> [.99.255.145.191][47264] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...433] [ip4][..udp] [......10.0.2.15][28681] -> [.99.255.145.191][47264]
not-detected: [...404] [ip4][..udp] [......10.0.2.15][28681] -> [.86.234.216.251][17845] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...404] [ip4][..udp] [......10.0.2.15][28681] -> [.86.234.216.251][17845]
not-detected: [...426] [ip4][..udp] [......10.0.2.15][28681] -> [..219.71.44.121][14398] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...426] [ip4][..udp] [......10.0.2.15][28681] -> [..219.71.44.121][14398]
not-detected: [...411] [ip4][..udp] [......10.0.2.15][28681] -> [...89.143.28.64][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...411] [ip4][..udp] [......10.0.2.15][28681] -> [...89.143.28.64][.6346]
not-detected: [...408] [ip4][..udp] [......10.0.2.15][28681] -> [...90.103.2.245][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...408] [ip4][..udp] [......10.0.2.15][28681] -> [...90.103.2.245][.6346]
not-detected: [...424] [ip4][..udp] [......10.0.2.15][28681] -> [..93.15.216.216][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...424] [ip4][..udp] [......10.0.2.15][28681] -> [..93.15.216.216][.6346]
not-detected: [...422] [ip4][..udp] [......10.0.2.15][28681] -> [..88.123.35.219][42211] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...422] [ip4][..udp] [......10.0.2.15][28681] -> [..88.123.35.219][42211]
not-detected: [...439] [ip4][..udp] [......10.0.2.15][28681] -> [..176.135.15.86][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...439] [ip4][..udp] [......10.0.2.15][28681] -> [..176.135.15.86][.6346]
+ not-detected: [...398] [ip4][..udp] [......10.0.2.15][28681] -> [.62.102.148.166][31332] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...398] [ip4][..udp] [......10.0.2.15][28681] -> [.62.102.148.166][31332]
not-detected: [...481] [ip4][..udp] [......10.0.2.15][28681] -> [..82.120.219.74][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...481] [ip4][..udp] [......10.0.2.15][28681] -> [..82.120.219.74][.6346]
not-detected: [...435] [ip4][..udp] [......10.0.2.15][28681] -> [.109.24.146.101][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...435] [ip4][..udp] [......10.0.2.15][28681] -> [.109.24.146.101][.6346]
not-detected: [...465] [ip4][..udp] [......10.0.2.15][28681] -> [.....2.28.39.18][15672] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...465] [ip4][..udp] [......10.0.2.15][28681] -> [.....2.28.39.18][15672]
- not-detected: [...306] [ip4][..udp] [......10.0.2.15][28681] -> [..41.249.63.200][22582] [Unknown][Unknown][Unrated]
- idle: [...306] [ip4][..udp] [......10.0.2.15][28681] -> [..41.249.63.200][22582]
- not-detected: [...421] [ip4][..udp] [......10.0.2.15][28681] -> [..175.182.39.11][12977] [Unknown][Unknown][Unrated]
- idle: [...421] [ip4][..udp] [......10.0.2.15][28681] -> [..175.182.39.11][12977]
+ not-detected: [...392] [ip4][..udp] [......10.0.2.15][28681] -> [....42.0.69.215][12608] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...392] [ip4][..udp] [......10.0.2.15][28681] -> [....42.0.69.215][12608]
not-detected: [...416] [ip4][..udp] [......10.0.2.15][28681] -> [..92.139.61.103][24096] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...416] [ip4][..udp] [......10.0.2.15][28681] -> [..92.139.61.103][24096]
not-detected: [...304] [ip4][..udp] [......10.0.2.15][28681] -> [.193.32.126.214][59596] [Unknown][Unknown][Unrated]
idle: [...304] [ip4][..udp] [......10.0.2.15][28681] -> [.193.32.126.214][59596]
+ not-detected: [...389] [ip4][..udp] [......10.0.2.15][28681] -> [..94.215.183.71][31310] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...389] [ip4][..udp] [......10.0.2.15][28681] -> [..94.215.183.71][31310]
not-detected: [...413] [ip4][..udp] [......10.0.2.15][28681] -> [...87.65.188.29][24676] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...413] [ip4][..udp] [......10.0.2.15][28681] -> [...87.65.188.29][24676]
not-detected: [...412] [ip4][..udp] [......10.0.2.15][28681] -> [...58.177.52.73][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...412] [ip4][..udp] [......10.0.2.15][28681] -> [...58.177.52.73][.6346]
not-detected: [...418] [ip4][..udp] [......10.0.2.15][28681] -> [.75.129.149.103][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...418] [ip4][..udp] [......10.0.2.15][28681] -> [.75.129.149.103][.6346]
not-detected: [...468] [ip4][..udp] [......10.0.2.15][28681] -> [..94.214.12.247][44001] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...468] [ip4][..udp] [......10.0.2.15][28681] -> [..94.214.12.247][44001]
not-detected: [...466] [ip4][..udp] [......10.0.2.15][28681] -> [...70.119.248.5][49929] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...466] [ip4][..udp] [......10.0.2.15][28681] -> [...70.119.248.5][49929]
+ not-detected: [...385] [ip4][..udp] [......10.0.2.15][28681] -> [..66.223.143.31][47978] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...385] [ip4][..udp] [......10.0.2.15][28681] -> [..66.223.143.31][47978]
not-detected: [...428] [ip4][..udp] [......10.0.2.15][28681] -> [....86.162.97.8][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...428] [ip4][..udp] [......10.0.2.15][28681] -> [....86.162.97.8][.6346]
not-detected: [...425] [ip4][..udp] [......10.0.2.15][28681] -> [..145.82.53.165][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...425] [ip4][..udp] [......10.0.2.15][28681] -> [..145.82.53.165][.6346]
not-detected: [...401] [ip4][..udp] [......10.0.2.15][28681] -> [.173.178.192.76][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...401] [ip4][..udp] [......10.0.2.15][28681] -> [.173.178.192.76][.6346]
- guessed: [...484] [ip4][..udp] [......10.0.2.15][28681] -> [...107.4.56.177][10000] [CiscoVPN][Unknown][VPN][Acceptable]
- idle: [...484] [ip4][..udp] [......10.0.2.15][28681] -> [...107.4.56.177][10000]
not-detected: [...406] [ip4][..udp] [......10.0.2.15][28681] -> [....109.27.3.68][57380] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...406] [ip4][..udp] [......10.0.2.15][28681] -> [....109.27.3.68][57380]
- not-detected: [...467] [ip4][..udp] [......10.0.2.15][28681] -> [...61.64.177.53][23458] [Unknown][Unknown][Unrated]
- idle: [...467] [ip4][..udp] [......10.0.2.15][28681] -> [...61.64.177.53][23458]
+ not-detected: [...399] [ip4][..udp] [......10.0.2.15][28681] -> [.175.39.219.223][31728] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...399] [ip4][..udp] [......10.0.2.15][28681] -> [.175.39.219.223][31728]
not-detected: [...431] [ip4][..udp] [......10.0.2.15][28681] -> [..88.124.71.246][49035] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...431] [ip4][..udp] [......10.0.2.15][28681] -> [..88.124.71.246][49035]
not-detected: [...303] [ip4][..udp] [......10.0.2.15][28681] -> [.142.132.165.13][30566] [Unknown][Unknown][Unrated]
idle: [...303] [ip4][..udp] [......10.0.2.15][28681] -> [.142.132.165.13][30566]
- not-detected: [...483] [ip4][..udp] [.......10.0.2.2][.1026] -> [......10.0.2.15][28681] [Unknown][Unknown][Unrated]
- idle: [...483] [ip4][..udp] [.......10.0.2.2][.1026] -> [......10.0.2.15][28681]
+ not-detected: [...395] [ip4][..udp] [......10.0.2.15][28681] -> [..191.114.88.39][18751] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...395] [ip4][..udp] [......10.0.2.15][28681] -> [..191.114.88.39][18751]
not-detected: [...402] [ip4][..udp] [......10.0.2.15][28681] -> [...78.219.202.2][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...402] [ip4][..udp] [......10.0.2.15][28681] -> [...78.219.202.2][.6346]
not-detected: [...420] [ip4][..udp] [......10.0.2.15][28681] -> [..86.227.127.34][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...420] [ip4][..udp] [......10.0.2.15][28681] -> [..86.227.127.34][.6346]
not-detected: [...417] [ip4][..udp] [......10.0.2.15][28681] -> [.94.187.236.179][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...417] [ip4][..udp] [......10.0.2.15][28681] -> [.94.187.236.179][.6346]
not-detected: [...125] [ip4][..udp] [......10.0.2.15][28681] -> [..83.92.178.182][57302] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...125] [ip4][..udp] [......10.0.2.15][28681] -> [..83.92.178.182][57302]
not-detected: [...427] [ip4][..udp] [......10.0.2.15][28681] -> [...81.249.13.30][15138] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...427] [ip4][..udp] [......10.0.2.15][28681] -> [...81.249.13.30][15138]
not-detected: [...405] [ip4][..udp] [......10.0.2.15][28681] -> [.176.155.31.118][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...405] [ip4][..udp] [......10.0.2.15][28681] -> [.176.155.31.118][.6346]
- not-detected: [...213] [ip4][..udp] [......10.0.2.15][28681] -> [....5.180.62.37][.6346] [Unknown][Unknown][Unrated]
- idle: [...213] [ip4][..udp] [......10.0.2.15][28681] -> [....5.180.62.37][.6346]
+ not-detected: [...387] [ip4][..udp] [......10.0.2.15][28681] -> [....220.135.8.7][.1219] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...387] [ip4][..udp] [......10.0.2.15][28681] -> [....220.135.8.7][.1219]
not-detected: [...415] [ip4][..udp] [......10.0.2.15][28681] -> [..90.247.160.96][17817] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...415] [ip4][..udp] [......10.0.2.15][28681] -> [..90.247.160.96][17817]
not-detected: [...410] [ip4][..udp] [......10.0.2.15][28681] -> [..93.28.130.131][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...410] [ip4][..udp] [......10.0.2.15][28681] -> [..93.28.130.131][.6346]
- not-detected: [...423] [ip4][..udp] [......10.0.2.15][28681] -> [..119.247.6.226][.9713] [Unknown][Unknown][Unrated]
- idle: [...423] [ip4][..udp] [......10.0.2.15][28681] -> [..119.247.6.226][.9713]
not-detected: [...438] [ip4][..udp] [......10.0.2.15][28681] -> [..71.86.190.163][14142] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...438] [ip4][..udp] [......10.0.2.15][28681] -> [..71.86.190.163][14142]
not-detected: [...403] [ip4][..udp] [......10.0.2.15][28681] -> [197.244.171.132][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...403] [ip4][..udp] [......10.0.2.15][28681] -> [197.244.171.132][.6346]
not-detected: [...429] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.215.213][23576] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...429] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.215.213][23576]
not-detected: [...436] [ip4][..udp] [......10.0.2.15][28681] -> [.219.68.179.137][.6406] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...436] [ip4][..udp] [......10.0.2.15][28681] -> [.219.68.179.137][.6406]
- not-detected: [...414] [ip4][..udp] [......10.0.2.15][28681] -> [175.181.156.244][.8255] [Unknown][Unknown][Unrated]
- idle: [...414] [ip4][..udp] [......10.0.2.15][28681] -> [175.181.156.244][.8255]
not-detected: [...409] [ip4][..udp] [......10.0.2.15][28681] -> [...86.194.53.68][33770] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...409] [ip4][..udp] [......10.0.2.15][28681] -> [...86.194.53.68][33770]
not-detected: [...482] [ip4][..udp] [......10.0.2.15][28681] -> [..86.193.23.172][42227] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...482] [ip4][..udp] [......10.0.2.15][28681] -> [..86.193.23.172][42227]
not-detected: [...108] [ip4][..udp] [......10.0.2.15][28681] -> [112.119.242.110][.7922] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...108] [ip4][..udp] [......10.0.2.15][28681] -> [112.119.242.110][.7922]
not-detected: [...407] [ip4][..udp] [......10.0.2.15][28681] -> [195.181.151.217][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...407] [ip4][..udp] [......10.0.2.15][28681] -> [195.181.151.217][.6346]
+ not-detected: [...390] [ip4][..udp] [......10.0.2.15][28681] -> [144.134.132.206][16401] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...390] [ip4][..udp] [......10.0.2.15][28681] -> [144.134.132.206][16401]
not-detected: [...440] [ip4][..udp] [......10.0.2.15][28681] -> [203.165.170.112][37087] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...440] [ip4][..udp] [......10.0.2.15][28681] -> [203.165.170.112][37087]
+ not-detected: [...391] [ip4][..udp] [......10.0.2.15][28681] -> [...161.81.38.67][.9539] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...391] [ip4][..udp] [......10.0.2.15][28681] -> [...161.81.38.67][.9539]
not-detected: [...437] [ip4][..udp] [......10.0.2.15][28681] -> [....31.38.163.2][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...437] [ip4][..udp] [......10.0.2.15][28681] -> [....31.38.163.2][.6346]
- not-detected: [...113] [ip4][..udp] [......10.0.2.15][28681] -> [105.101.132.146][57746] [Unknown][Unknown][Unrated]
- idle: [...113] [ip4][..udp] [......10.0.2.15][28681] -> [105.101.132.146][57746]
not-detected: [...419] [ip4][..udp] [......10.0.2.15][28681] -> [...78.193.236.8][46557] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...419] [ip4][..udp] [......10.0.2.15][28681] -> [...78.193.236.8][46557]
not-detected: [...432] [ip4][..udp] [......10.0.2.15][28681] -> [...104.6.118.53][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...432] [ip4][..udp] [......10.0.2.15][28681] -> [...104.6.118.53][.6346]
- not-detected: [...434] [ip4][..udp] [......10.0.2.15][28681] -> [.114.24.182.130][22232] [Unknown][Unknown][Unrated]
- idle: [...434] [ip4][..udp] [......10.0.2.15][28681] -> [.114.24.182.130][22232]
+ not-detected: [...397] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][24634] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...397] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][24634]
not-detected: [...430] [ip4][..udp] [......10.0.2.15][28681] -> [....90.8.95.165][40763] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...430] [ip4][..udp] [......10.0.2.15][28681] -> [....90.8.95.165][40763]
+ not-detected: [...396] [ip4][..udp] [......10.0.2.15][28681] -> [..112.119.59.24][28755] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...396] [ip4][..udp] [......10.0.2.15][28681] -> [..112.119.59.24][28755]
update: [...577] [ip4][..udp] [......10.0.2.15][28681] -> [.59.148.100.237][23459]
update: [...586] [ip4][..udp] [......10.0.2.15][28681] -> [..221.124.66.33][13060]
- update: [...619] [ip4][..udp] [......10.0.2.15][28681] -> [...1.172.184.48][13281]
+ update: [...618] [ip4][..udp] [......10.0.2.15][28681] -> [...1.172.184.48][13281]
update: [...544] [ip4][..udp] [......10.0.2.15][28681] -> [..111.184.29.35][30582]
update: [...526] [ip4][..udp] [......10.0.2.15][28681] -> [..36.234.197.93][.1483]
update: [...509] [ip4][..udp] [......10.0.2.15][28681] -> [.92.142.109.190][41370]
- update: [...670] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.2846]
- update: [...610] [ip4][..udp] [......10.0.2.15][28681] -> [116.241.162.162][59016]
- update: [...691] [ip4][..udp] [......10.0.2.15][28681] -> [..61.18.212.223][50637]
- update: [...701] [ip4][..udp] [......10.0.2.15][28681] -> [...91.206.27.26][.6578]
+ update: [...669] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.2846]
+ update: [...609] [ip4][..udp] [......10.0.2.15][28681] -> [116.241.162.162][59016]
+ update: [...690] [ip4][..udp] [......10.0.2.15][28681] -> [..61.18.212.223][50637]
+ update: [...700] [ip4][..udp] [......10.0.2.15][28681] -> [...91.206.27.26][.6578]
update: [...511] [ip4][..udp] [......10.0.2.15][28681] -> [...68.47.223.27][.6346]
update: [...496] [ip4][..udp] [......10.0.2.15][28681] -> [.218.173.230.98][19004]
update: [...533] [ip4][..udp] [......10.0.2.15][28681] -> [..36.229.185.60][.6898]
update: [...592] [ip4][..udp] [......10.0.2.15][28681] -> [....1.36.249.91][.7190]
- update: [...702] [ip4][..udp] [......10.0.2.15][28681] -> [119.237.190.184][64163]
+ update: [...701] [ip4][..udp] [......10.0.2.15][28681] -> [119.237.190.184][64163]
update: [...495] [ip4][..udp] [......10.0.2.15][28681] -> [...81.247.89.20][.6346]
update: [...166] [ip4][..udp] [......10.0.2.15][28681] -> [..90.59.253.186][15555]
update: [...183] [ip4][..udp] [......10.0.2.15][28681] -> [..91.172.15.182][37829]
update: [...184] [ip4][..udp] [......10.0.2.15][28681] -> [..86.239.62.213][.6346]
update: [...493] [ip4][..udp] [......10.0.2.15][57552] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
update: [...603] [ip4][..udp] [......10.0.2.15][28681] -> [....1.36.249.91][64577]
- update: [...622] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3227]
- update: [...647] [ip4][..udp] [......10.0.2.15][28681] -> [..36.237.10.152][21293]
- update: [...741] [ip4][..udp] [......10.0.2.15][28681] -> [...36.237.25.47][21293]
+ update: [...621] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3227]
+ update: [...646] [ip4][..udp] [......10.0.2.15][28681] -> [..36.237.10.152][21293]
+ update: [...740] [ip4][..udp] [......10.0.2.15][28681] -> [...36.237.25.47][21293]
update: [...516] [ip4][..udp] [......10.0.2.15][28681] -> [.119.246.147.72][.4572]
- update: [...734] [ip4][..udp] [......10.0.2.15][28681] -> [...99.199.148.6][.4338]
+ update: [...733] [ip4][..udp] [......10.0.2.15][28681] -> [...99.199.148.6][.4338]
update: [...597] [ip4][..udp] [......10.0.2.15][28681] -> [..36.236.203.37][52274]
- update: [...676] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.118.77][62191]
- update: [...739] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3256]
+ update: [...675] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.118.77][62191]
+ update: [...738] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3256]
update: [...553] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3259]
- update: [...629] [ip4][..udp] [......10.0.2.15][28681] -> [....45.65.87.24][16201]
+ update: [...628] [ip4][..udp] [......10.0.2.15][28681] -> [....45.65.87.24][16201]
update: [...352] [ip4][..udp] [......10.0.2.15][28681] -> [.176.191.49.159][.6346]
update: [...195] [ip4][..udp] [......10.0.2.15][28681] -> [.177.231.151.16][.6346]
- update: [...617] [ip4][..udp] [......10.0.2.15][28681] -> [220.208.167.152][30628]
+ update: [...616] [ip4][..udp] [......10.0.2.15][28681] -> [220.208.167.152][30628]
update: [...596] [ip4][..udp] [......10.0.2.15][28681] -> [..61.18.212.223][58954]
update: [...219] [ip4][..udp] [......10.0.2.15][28681] -> [...76.30.86.144][53821]
- update: [...714] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][51379]
+ update: [...713] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][51379]
update: [...593] [ip4][..udp] [......10.0.2.15][28681] -> [..124.218.26.16][.9747]
update: [...571] [ip4][..udp] [......10.0.2.15][28681] -> [.114.40.163.123][55341]
update: [...524] [ip4][..udp] [......10.0.2.15][28681] -> [.80.193.171.146][65362]
- update: [...643] [ip4][..udp] [......10.0.2.15][28681] -> [.220.39.142.122][.6346]
+ update: [...642] [ip4][..udp] [......10.0.2.15][28681] -> [.220.39.142.122][.6346]
update: [...572] [ip4][..udp] [......10.0.2.15][28681] -> [...86.153.21.93][36696]
- update: [...650] [ip4][..udp] [......10.0.2.15][28681] -> [.122.117.100.78][56128]
+ update: [...649] [ip4][..udp] [......10.0.2.15][28681] -> [.122.117.100.78][56128]
update: [...520] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3339]
- update: [...636] [ip4][..udp] [......10.0.2.15][28681] -> [...219.70.48.23][.2556]
- update: [...637] [ip4][..udp] [......10.0.2.15][28681] -> [.80.193.171.146][53143]
- update: [...638] [ip4][..udp] [......10.0.2.15][28681] -> [..36.233.194.73][.1995]
+ update: [...635] [ip4][..udp] [......10.0.2.15][28681] -> [...219.70.48.23][.2556]
+ update: [...636] [ip4][..udp] [......10.0.2.15][28681] -> [.80.193.171.146][53143]
+ update: [...637] [ip4][..udp] [......10.0.2.15][28681] -> [..36.233.194.73][.1995]
update: [...546] [ip4][..udp] [......10.0.2.15][28681] -> [.38.142.119.234][49867]
- update: [...677] [ip4][..udp] [......10.0.2.15][28681] -> [...1.64.208.110][55550]
- update: [...723] [ip4][..udp] [......10.0.2.15][28681] -> [.213.32.245.121][12333]
+ update: [...676] [ip4][..udp] [......10.0.2.15][28681] -> [...1.64.208.110][55550]
+ update: [...722] [ip4][..udp] [......10.0.2.15][28681] -> [.213.32.245.121][12333]
update: [...531] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][51497]
update: [...578] [ip4][..udp] [......10.0.2.15][28681] -> [..77.205.243.44][46006]
- update: [...738] [ip4][..udp] [......10.0.2.15][28681] -> [174.115.127.251][23897]
+ update: [...737] [ip4][..udp] [......10.0.2.15][28681] -> [174.115.127.251][23897]
update: [...584] [ip4][..udp] [......10.0.2.15][28681] -> [.80.193.171.146][18360]
update: [...534] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54436]
- update: [...708] [ip4][..udp] [......10.0.2.15][28681] -> [..183.179.14.31][64871]
- update: [...745] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][48250]
+ update: [...707] [ip4][..udp] [......10.0.2.15][28681] -> [..183.179.14.31][64871]
+ update: [...744] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][48250]
update: [...501] [ip4][..udp] [......10.0.2.15][28681] -> [.88.160.214.137][.6346]
- update: [...684] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54459]
+ update: [...683] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54459]
update: [...506] [ip4][..udp] [......10.0.2.15][28681] -> [..136.32.84.139][.6346]
update: [...562] [ip4][..udp] [......10.0.2.15][28681] -> [112.119.242.110][59879]
- update: [...620] [ip4][..udp] [......10.0.2.15][28681] -> [...1.163.14.246][.1630]
- update: [...606] [ip4][..udp] [......10.0.2.15][28681] -> [.96.246.156.126][56070]
- update: [...692] [ip4][..udp] [......10.0.2.15][28681] -> [..61.93.150.146][62507]
- update: [...621] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][53516]
- update: [...668] [ip4][..udp] [......10.0.2.15][28681] -> [.223.18.211.177][18085]
- update: [...721] [ip4][..udp] [......10.0.2.15][28681] -> [..76.26.178.132][10053]
- update: [...698] [ip4][..udp] [......10.0.2.15][28681] -> [...14.199.10.60][53906]
- update: [...623] [ip4][..udp] [......10.0.2.15][28681] -> [..36.234.18.166][61319]
+ update: [...619] [ip4][..udp] [......10.0.2.15][28681] -> [...1.163.14.246][.1630]
+ update: [...691] [ip4][..udp] [......10.0.2.15][28681] -> [..61.93.150.146][62507]
+ update: [...620] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][53516]
+ update: [...667] [ip4][..udp] [......10.0.2.15][28681] -> [.223.18.211.177][18085]
+ update: [...720] [ip4][..udp] [......10.0.2.15][28681] -> [..76.26.178.132][10053]
+ update: [...697] [ip4][..udp] [......10.0.2.15][28681] -> [...14.199.10.60][53906]
+ update: [...622] [ip4][..udp] [......10.0.2.15][28681] -> [..36.234.18.166][61319]
update: [...542] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][51675]
- update: [...715] [ip4][..udp] [......10.0.2.15][28681] -> [..76.174.174.69][21358]
+ update: [...714] [ip4][..udp] [......10.0.2.15][28681] -> [..76.174.174.69][21358]
update: [...191] [ip4][..udp] [......10.0.2.15][28681] -> [.190.153.143.54][65535]
- update: [...615] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.118.77][60482]
- update: [...607] [ip4][..udp] [......10.0.2.15][28681] -> [.149.28.163.175][42288]
+ update: [...614] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.118.77][60482]
+ update: [...746] [ip4][..udp] [......10.0.2.15][28681] -> [123.205.126.102][.5193]
+ update: [...606] [ip4][..udp] [......10.0.2.15][28681] -> [.149.28.163.175][42288]
update: [...172] [ip4][..udp] [......10.0.2.15][28681] -> [..87.69.142.133][15471]
- update: [...740] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][19814]
+ update: [...739] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][19814]
update: [...587] [ip4][..udp] [......10.0.2.15][28681] -> [.94.134.154.158][54130]
update: [...550] [ip4][..udp] [......10.0.2.15][28681] -> [.220.238.145.82][33527]
- update: [...689] [ip4][..udp] [......10.0.2.15][28681] -> [.114.36.234.196][11629]
- update: [...671] [ip4][..udp] [......10.0.2.15][28681] -> [..36.236.203.37][52669]
+ update: [...688] [ip4][..udp] [......10.0.2.15][28681] -> [.114.36.234.196][11629]
+ update: [...670] [ip4][..udp] [......10.0.2.15][28681] -> [..36.236.203.37][52669]
update: [...598] [ip4][..udp] [......10.0.2.15][28681] -> [...1.172.184.48][.1512]
update: [...551] [ip4][..udp] [......10.0.2.15][28681] -> [..92.24.129.230][14766]
- update: [...686] [ip4][..udp] [......10.0.2.15][28681] -> [..111.241.31.96][.8349]
+ update: [...685] [ip4][..udp] [......10.0.2.15][28681] -> [..111.241.31.96][.8349]
update: [...555] [ip4][..udp] [......10.0.2.15][28681] -> [..124.218.26.16][20387]
- update: [...722] [ip4][..udp] [......10.0.2.15][28681] -> [.123.203.72.224][.9897]
- update: [...632] [ip4][..udp] [......10.0.2.15][28681] -> [..36.231.59.187][62234]
+ update: [...721] [ip4][..udp] [......10.0.2.15][28681] -> [.123.203.72.224][.9897]
+ update: [...631] [ip4][..udp] [......10.0.2.15][28681] -> [..36.231.59.187][62234]
update: [...591] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][53707]
update: [...594] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.7375]
- update: [...614] [ip4][..udp] [......10.0.2.15][28681] -> [119.247.152.218][51920]
- update: [...618] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.7380]
+ update: [...613] [ip4][..udp] [......10.0.2.15][28681] -> [119.247.152.218][51920]
+ update: [...617] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.7380]
update: [...508] [ip4][..udp] [......10.0.2.15][28681] -> [...92.144.99.73][10745]
update: [...582] [ip4][..udp] [......10.0.2.15][28681] -> [....223.16.83.5][10624]
update: [...573] [ip4][..udp] [......10.0.2.15][28681] -> [..71.239.173.18][23327]
@@ -4023,133 +4135,135 @@
update: [...568] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.118.77][56562]
update: [...190] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.195.227][.6346]
update: [...538] [ip4][..udp] [......10.0.2.15][28681] -> [.124.218.41.253][14339]
- update: [...624] [ip4][..udp] [......10.0.2.15][28681] -> [.210.209.249.84][24751]
- update: [...630] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][45710]
- update: [...693] [ip4][..udp] [......10.0.2.15][28681] -> [.76.110.153.177][40022]
+ update: [...623] [ip4][..udp] [......10.0.2.15][28681] -> [.210.209.249.84][24751]
+ update: [...629] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][45710]
+ update: [...692] [ip4][..udp] [......10.0.2.15][28681] -> [.76.110.153.177][40022]
update: [...604] [ip4][..udp] [......10.0.2.15][28681] -> [.123.202.31.113][53291]
- update: [...719] [ip4][..udp] [......10.0.2.15][28681] -> [218.102.208.175][.9167]
+ update: [...718] [ip4][..udp] [......10.0.2.15][28681] -> [218.102.208.175][.9167]
update: [...536] [ip4][..udp] [......10.0.2.15][28681] -> [118.167.222.160][56121]
update: [...558] [ip4][..udp] [......10.0.2.15][28681] -> [...112.105.52.2][.6466]
update: [...556] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49787]
update: [...600] [ip4][..udp] [......10.0.2.15][28681] -> [....1.64.156.63][60092]
- update: [...646] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49803]
- update: [...662] [ip4][..udp] [......10.0.2.15][28681] -> [...24.127.1.235][37814]
+ update: [...645] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49803]
+ update: [...661] [ip4][..udp] [......10.0.2.15][28681] -> [...24.127.1.235][37814]
update: [...499] [ip4][..udp] [......10.0.2.15][28681] -> [....1.161.80.82][.8656]
- update: [...627] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49815]
- update: [...704] [ip4][..udp] [......10.0.2.15][28681] -> [..114.40.67.191][14971]
+ update: [...626] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49815]
+ update: [...703] [ip4][..udp] [......10.0.2.15][28681] -> [..114.40.67.191][14971]
update: [...560] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][53883]
- update: [...657] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54914]
- update: [...728] [ip4][..udp] [......10.0.2.15][28681] -> [101.136.187.253][10914]
+ update: [...656] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54914]
+ update: [...727] [ip4][..udp] [......10.0.2.15][28681] -> [101.136.187.253][10914]
update: [...521] [ip4][..udp] [......10.0.2.15][28681] -> [.113.255.250.32][23458]
update: [...503] [ip4][..udp] [......10.0.2.15][28681] -> [..74.210.244.72][.6346]
update: [...505] [ip4][..udp] [......10.0.2.15][28681] -> [.....42.2.62.28][.6387]
update: [...494] [ip4][..udp] [......10.0.2.15][28681] -> [...86.210.81.59][.6346]
update: [...180] [ip4][..udp] [......10.0.2.15][28681] -> [...66.131.24.72][30711]
update: [...498] [ip4][..udp] [......10.0.2.15][28681] -> [...8.44.149.207][30551]
- update: [...705] [ip4][..udp] [......10.0.2.15][28681] -> [..123.192.83.59][33513]
- update: [...642] [ip4][..udp] [......10.0.2.15][28681] -> [.36.233.199.103][.2625]
- update: [...718] [ip4][..udp] [......10.0.2.15][28681] -> [...79.191.58.38][48157]
- update: [...743] [ip4][..udp] [......10.0.2.15][28681] -> [194.163.180.126][36780]
- update: [...675] [ip4][..udp] [......10.0.2.15][28681] -> [...219.70.1.236][.9369]
- update: [...673] [ip4][..udp] [......10.0.2.15][28681] -> [....223.16.83.5][.4765]
- update: [...682] [ip4][..udp] [......10.0.2.15][28681] -> [..61.220.41.241][53072]
- update: [...641] [ip4][..udp] [......10.0.2.15][28681] -> [....1.36.249.91][65430]
+ update: [...704] [ip4][..udp] [......10.0.2.15][28681] -> [..123.192.83.59][33513]
+ update: [...641] [ip4][..udp] [......10.0.2.15][28681] -> [.36.233.199.103][.2625]
+ update: [...717] [ip4][..udp] [......10.0.2.15][28681] -> [...79.191.58.38][48157]
+ update: [...742] [ip4][..udp] [......10.0.2.15][28681] -> [194.163.180.126][36780]
+ update: [...674] [ip4][..udp] [......10.0.2.15][28681] -> [...219.70.1.236][.9369]
+ update: [...672] [ip4][..udp] [......10.0.2.15][28681] -> [....223.16.83.5][.4765]
+ update: [...681] [ip4][..udp] [......10.0.2.15][28681] -> [..61.220.41.241][53072]
+ update: [...640] [ip4][..udp] [......10.0.2.15][28681] -> [....1.36.249.91][65430]
update: [...559] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][55080]
- update: [...683] [ip4][..udp] [......10.0.2.15][28681] -> [203.220.198.244][50896]
- update: [...680] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.83.132][57131]
- update: [...695] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][.6514]
- update: [...666] [ip4][..udp] [......10.0.2.15][28681] -> [..82.36.106.134][.3927]
- update: [...661] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][.6527]
+ update: [...682] [ip4][..udp] [......10.0.2.15][28681] -> [203.220.198.244][50896]
+ update: [...679] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.83.132][57131]
+ update: [...694] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][.6514]
+ update: [...665] [ip4][..udp] [......10.0.2.15][28681] -> [..82.36.106.134][.3927]
+ update: [...660] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][.6527]
update: [...529] [ip4][..udp] [......10.0.2.15][28681] -> [116.241.162.162][57929]
- update: [...616] [ip4][..udp] [......10.0.2.15][28681] -> [.74.195.236.249][18557]
+ update: [...615] [ip4][..udp] [......10.0.2.15][28681] -> [.74.195.236.249][18557]
update: [...539] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][.7510]
- update: [...717] [ip4][..udp] [......10.0.2.15][28681] -> [...98.249.190.8][25198]
- update: [...732] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6564]
+ update: [...716] [ip4][..udp] [......10.0.2.15][28681] -> [...98.249.190.8][25198]
+ update: [...731] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6564]
update: [...545] [ip4][..udp] [......10.0.2.15][28681] -> [..116.49.159.77][55915]
update: [...156] [ip4][..udp] [......10.0.2.15][28681] -> [..86.244.228.86][10131]
- update: [...736] [ip4][..udp] [......10.0.2.15][28681] -> [..45.31.152.112][52420]
+ update: [...735] [ip4][..udp] [......10.0.2.15][28681] -> [..45.31.152.112][52420]
update: [...176] [ip4][..udp] [......10.0.2.15][28681] -> [....41.99.164.4][.6346]
- update: [...664] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6594]
- update: [...635] [ip4][..udp] [......10.0.2.15][28681] -> [..24.179.18.242][47329]
+ update: [...663] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6594]
+ update: [...634] [ip4][..udp] [......10.0.2.15][28681] -> [..24.179.18.242][47329]
+ update: [...747] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6599]
update: [...527] [ip4][..udp] [......10.0.2.15][28681] -> [..42.72.149.140][37848]
- update: [...644] [ip4][..udp] [......10.0.2.15][28681] -> [..31.20.248.147][30706]
- update: [...712] [ip4][..udp] [......10.0.2.15][28681] -> [..220.129.86.65][49723]
+ update: [...643] [ip4][..udp] [......10.0.2.15][28681] -> [..31.20.248.147][30706]
+ update: [...711] [ip4][..udp] [......10.0.2.15][28681] -> [..220.129.86.65][49723]
update: [...504] [ip4][..udp] [......10.0.2.15][28681] -> [..85.203.45.107][.6346]
update: [...563] [ip4][..udp] [......10.0.2.15][28681] -> [...112.105.52.2][.6831]
update: [...157] [ip4][..udp] [......10.0.2.15][28681] -> [.86.227.162.150][.6346]
- update: [...640] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.7849]
+ update: [...639] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.7849]
update: [...209] [ip4][..udp] [......10.0.2.15][28681] -> [..91.179.98.234][.6346]
- update: [...730] [ip4][..udp] [......10.0.2.15][28681] -> [..114.47.227.91][54463]
- update: [...733] [ip4][..udp] [......10.0.2.15][28681] -> [..85.168.34.105][39908]
- update: [...634] [ip4][..udp] [......10.0.2.15][28681] -> [..68.174.18.115][50679]
- update: [...608] [ip4][..udp] [......10.0.2.15][28681] -> [..111.241.31.96][.4814]
- update: [...706] [ip4][..udp] [......10.0.2.15][28681] -> [..124.218.26.16][.8658]
- update: [...699] [ip4][..udp] [......10.0.2.15][28681] -> [..70.81.219.111][19210]
+ update: [...729] [ip4][..udp] [......10.0.2.15][28681] -> [..114.47.227.91][54463]
+ update: [...732] [ip4][..udp] [......10.0.2.15][28681] -> [..85.168.34.105][39908]
+ update: [...633] [ip4][..udp] [......10.0.2.15][28681] -> [..68.174.18.115][50679]
+ update: [...607] [ip4][..udp] [......10.0.2.15][28681] -> [..111.241.31.96][.4814]
+ update: [...705] [ip4][..udp] [......10.0.2.15][28681] -> [..124.218.26.16][.8658]
+ update: [...698] [ip4][..udp] [......10.0.2.15][28681] -> [..70.81.219.111][19210]
update: [...595] [ip4][..udp] [......10.0.2.15][28681] -> [.175.182.21.156][13732]
- update: [...724] [ip4][..udp] [......10.0.2.15][28681] -> [.175.39.219.223][13482]
- update: [...674] [ip4][..udp] [......10.0.2.15][28681] -> [.125.59.215.249][14571]
- update: [...612] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][59384]
- update: [...725] [ip4][..udp] [......10.0.2.15][28681] -> [...1.65.217.224][.9070]
- update: [...645] [ip4][..udp] [......10.0.2.15][28681] -> [...173.22.22.94][34245]
- update: [...667] [ip4][..udp] [......10.0.2.15][28681] -> [.159.196.95.223][.2003]
- update: [...649] [ip4][..udp] [......10.0.2.15][28681] -> [180.218.135.222][.4548]
+ update: [...723] [ip4][..udp] [......10.0.2.15][28681] -> [.175.39.219.223][13482]
+ update: [...673] [ip4][..udp] [......10.0.2.15][28681] -> [.125.59.215.249][14571]
+ update: [...611] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][59384]
+ update: [...724] [ip4][..udp] [......10.0.2.15][28681] -> [...1.65.217.224][.9070]
+ update: [...644] [ip4][..udp] [......10.0.2.15][28681] -> [...173.22.22.94][34245]
+ update: [...666] [ip4][..udp] [......10.0.2.15][28681] -> [.159.196.95.223][.2003]
+ update: [...648] [ip4][..udp] [......10.0.2.15][28681] -> [180.218.135.222][.4548]
update: [...159] [ip4][..udp] [......10.0.2.15][28681] -> [176.163.231.160][.6346]
update: [...579] [ip4][..udp] [......10.0.2.15][28681] -> [.223.16.170.108][23458]
- update: [...678] [ip4][..udp] [......10.0.2.15][28681] -> [....223.16.83.5][.9128]
- update: [...707] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.1968]
+ update: [...677] [ip4][..udp] [......10.0.2.15][28681] -> [....223.16.83.5][.9128]
+ update: [...706] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.1968]
update: [...554] [ip4][..udp] [......10.0.2.15][28681] -> [.123.203.72.224][55577]
- update: [...655] [ip4][..udp] [......10.0.2.15][28681] -> [.84.118.116.198][44616]
- update: [...726] [ip4][..udp] [......10.0.2.15][28681] -> [..219.91.30.216][61635]
- update: [...669] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][64731]
+ update: [...654] [ip4][..udp] [......10.0.2.15][28681] -> [.84.118.116.198][44616]
+ update: [...725] [ip4][..udp] [......10.0.2.15][28681] -> [..219.91.30.216][61635]
+ update: [...668] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][64731]
update: [...528] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][58442]
- update: [...742] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.4364]
- update: [...697] [ip4][..udp] [......10.0.2.15][28681] -> [188.165.203.190][55050]
+ update: [...741] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.4364]
+ update: [...696] [ip4][..udp] [......10.0.2.15][28681] -> [188.165.203.190][55050]
update: [...537] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.2034]
+ update: [...213] [ip4][..udp] [......10.0.2.15][28681] -> [....5.180.62.37][.6346]
update: [...167] [ip4][..udp] [......10.0.2.15][28681] -> [..93.29.107.176][20363]
update: [...585] [ip4][..udp] [......10.0.2.15][28681] -> [..51.68.153.214][35004]
update: [...171] [ip4][..udp] [......10.0.2.15][28681] -> [196.217.132.111][25394]
update: [...502] [ip4][..udp] [......10.0.2.15][28681] -> [..47.156.58.211][.6346]
update: [...507] [ip4][..udp] [......10.0.2.15][28681] -> [...50.4.204.220][.6346]
- update: [...687] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][13965]
- update: [...663] [ip4][..udp] [......10.0.2.15][28681] -> [..96.59.117.166][33192]
+ update: [...686] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][13965]
+ update: [...662] [ip4][..udp] [......10.0.2.15][28681] -> [..96.59.117.166][33192]
update: [...535] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10655]
update: [...160] [ip4][..udp] [......10.0.2.15][28681] -> [...83.150.49.35][32448]
update: [...602] [ip4][..udp] [......10.0.2.15][28681] -> [.123.203.72.224][53658]
update: [...589] [ip4][..udp] [......10.0.2.15][28681] -> [.113.255.250.32][52647]
- update: [...654] [ip4][..udp] [......10.0.2.15][28681] -> [....82.12.1.136][.6348]
+ update: [...653] [ip4][..udp] [......10.0.2.15][28681] -> [....82.12.1.136][.6348]
update: [...525] [ip4][..udp] [......10.0.2.15][28681] -> [.113.255.250.32][52660]
- update: [...611] [ip4][..udp] [......10.0.2.15][28681] -> [..61.10.174.159][.4841]
+ update: [...610] [ip4][..udp] [......10.0.2.15][28681] -> [..61.10.174.159][.4841]
update: [...532] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10677]
- update: [...696] [ip4][..udp] [......10.0.2.15][28681] -> [..76.189.72.230][.8161]
+ update: [...695] [ip4][..udp] [......10.0.2.15][28681] -> [..76.189.72.230][.8161]
update: [...185] [ip4][..udp] [......10.0.2.15][28681] -> [.109.132.196.58][.6346]
update: [...512] [ip4][..udp] [......10.0.2.15][28681] -> [..209.204.207.5][49256]
- update: [...735] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.91.201][.4297]
- update: [...628] [ip4][..udp] [......10.0.2.15][28681] -> [..73.62.225.181][46843]
+ update: [...734] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.91.201][.4297]
+ update: [...627] [ip4][..udp] [......10.0.2.15][28681] -> [..73.62.225.181][46843]
update: [...552] [ip4][..udp] [......10.0.2.15][28681] -> [...218.250.6.59][60012]
- update: [...651] [ip4][..udp] [......10.0.2.15][28681] -> [..114.47.227.91][58856]
- update: [...703] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10728]
+ update: [...650] [ip4][..udp] [......10.0.2.15][28681] -> [..114.47.227.91][58856]
+ update: [...702] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10728]
update: [...581] [ip4][..udp] [......10.0.2.15][28681] -> [..58.115.108.10][.4641]
- update: [...613] [ip4][..udp] [......10.0.2.15][28681] -> [.106.104.88.139][.7423]
+ update: [...612] [ip4][..udp] [......10.0.2.15][28681] -> [.106.104.88.139][.7423]
update: [...583] [ip4][..udp] [......10.0.2.15][28681] -> [...87.75.180.80][35361]
- update: [...672] [ip4][..udp] [......10.0.2.15][28681] -> [180.218.135.222][49867]
+ update: [...671] [ip4][..udp] [......10.0.2.15][28681] -> [180.218.135.222][49867]
update: [...574] [ip4][..udp] [......10.0.2.15][28681] -> [..223.17.132.18][23458]
- update: [...679] [ip4][..udp] [......10.0.2.15][28681] -> [150.116.225.105][51438]
+ update: [...678] [ip4][..udp] [......10.0.2.15][28681] -> [150.116.225.105][51438]
update: [...518] [ip4][..udp] [......10.0.2.15][28681] -> [..202.151.63.59][.7624]
- update: [...716] [ip4][..udp] [......10.0.2.15][28681] -> [...219.71.72.88][58808]
- update: [...660] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10791]
+ update: [...715] [ip4][..udp] [......10.0.2.15][28681] -> [...219.71.72.88][58808]
+ update: [...659] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10791]
update: [...543] [ip4][..udp] [......10.0.2.15][28681] -> [..114.39.159.60][56896]
update: [...161] [ip4][..udp] [......10.0.2.15][28681] -> [..213.120.26.86][29946]
update: [...564] [ip4][..udp] [......10.0.2.15][28681] -> [..61.222.160.99][53144]
update: [...557] [ip4][..udp] [......10.0.2.15][28681] -> [..61.222.160.99][53163]
- update: [...648] [ip4][..udp] [......10.0.2.15][28681] -> [..61.18.212.223][58290]
- update: [...700] [ip4][..udp] [......10.0.2.15][28681] -> [..77.222.213.44][26536]
- update: [...652] [ip4][..udp] [......10.0.2.15][28681] -> [....1.64.156.63][65023]
- update: [...659] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][.8075]
- update: [...713] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][59978]
- update: [...658] [ip4][..udp] [......10.0.2.15][28681] -> [..61.222.160.99][53195]
+ update: [...647] [ip4][..udp] [......10.0.2.15][28681] -> [..61.18.212.223][58290]
+ update: [...699] [ip4][..udp] [......10.0.2.15][28681] -> [..77.222.213.44][26536]
+ update: [...651] [ip4][..udp] [......10.0.2.15][28681] -> [....1.64.156.63][65023]
+ update: [...658] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][.8075]
+ update: [...712] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][59978]
+ update: [...657] [ip4][..udp] [......10.0.2.15][28681] -> [..61.222.160.99][53195]
update: [...576] [ip4][..udp] [......10.0.2.15][28681] -> [104.238.172.250][42925]
update: [...570] [ip4][..udp] [......10.0.2.15][28681] -> [..97.83.183.148][.8890]
- update: [...681] [ip4][..udp] [......10.0.2.15][28681] -> [.61.227.198.100][.6910]
+ update: [...680] [ip4][..udp] [......10.0.2.15][28681] -> [.61.227.198.100][.6910]
update: [...175] [ip4][..udp] [......10.0.2.15][28681] -> [...115.69.62.99][.6346]
update: [...500] [ip4][..udp] [......10.0.2.15][28681] -> [.220.143.34.225][20071]
update: [...566] [ip4][..udp] [......10.0.2.15][28681] -> [...58.176.62.40][52755]
@@ -4159,26 +4273,26 @@
update: [...519] [ip4][..udp] [......10.0.2.15][28681] -> [...219.70.48.23][.8070]
update: [...601] [ip4][..udp] [......10.0.2.15][28681] -> [113.255.200.161][65274]
update: [...200] [ip4][..udp] [......10.0.2.15][28681] -> [.138.199.16.123][52993]
- update: [...639] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.242.225][15068]
- update: [...727] [ip4][..udp] [......10.0.2.15][28681] -> [....1.171.82.65][50072]
- update: [...609] [ip4][..udp] [......10.0.2.15][28681] -> [...1.163.14.246][23461]
- update: [...737] [ip4][..udp] [......10.0.2.15][28681] -> [118.166.252.163][14391]
+ update: [...638] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.242.225][15068]
+ update: [...726] [ip4][..udp] [......10.0.2.15][28681] -> [....1.171.82.65][50072]
+ update: [...608] [ip4][..udp] [......10.0.2.15][28681] -> [...1.163.14.246][23461]
+ update: [...736] [ip4][..udp] [......10.0.2.15][28681] -> [118.166.252.163][14391]
update: [...549] [ip4][..udp] [......10.0.2.15][28681] -> [..84.211.151.48][11105]
update: [...561] [ip4][..udp] [......10.0.2.15][28681] -> [.61.238.173.128][57466]
- update: [...626] [ip4][..udp] [......10.0.2.15][28681] -> [113.252.206.254][49737]
+ update: [...625] [ip4][..udp] [......10.0.2.15][28681] -> [113.252.206.254][49737]
update: [...580] [ip4][..udp] [......10.0.2.15][28681] -> [...76.119.55.28][20347]
- update: [...625] [ip4][..udp] [......10.0.2.15][28681] -> [.61.238.173.128][57492]
+ update: [...624] [ip4][..udp] [......10.0.2.15][28681] -> [.61.238.173.128][57492]
update: [...567] [ip4][..udp] [......10.0.2.15][28681] -> [...58.176.62.40][52889]
- update: [...685] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][54436]
- update: [...744] [ip4][..udp] [......10.0.2.15][28681] -> [...27.94.154.53][.6346]
+ update: [...684] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][54436]
+ update: [...743] [ip4][..udp] [......10.0.2.15][28681] -> [...27.94.154.53][.6346]
update: [...541] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][11141]
- update: [...731] [ip4][..udp] [......10.0.2.15][28681] -> [124.217.188.105][62849]
- update: [...711] [ip4][..udp] [......10.0.2.15][28681] -> [113.254.140.225][63637]
- update: [...710] [ip4][..udp] [......10.0.2.15][28681] -> [.223.16.121.156][.3624]
+ update: [...730] [ip4][..udp] [......10.0.2.15][28681] -> [124.217.188.105][62849]
+ update: [...710] [ip4][..udp] [......10.0.2.15][28681] -> [113.254.140.225][63637]
+ update: [...709] [ip4][..udp] [......10.0.2.15][28681] -> [.223.16.121.156][.3624]
update: [...547] [ip4][..udp] [......10.0.2.15][28681] -> [213.229.111.224][43316]
- update: [...688] [ip4][..udp] [......10.0.2.15][28681] -> [..66.30.221.181][53454]
+ update: [...687] [ip4][..udp] [......10.0.2.15][28681] -> [..66.30.221.181][53454]
update: [...510] [ip4][..udp] [......10.0.2.15][28681] -> [...79.94.85.113][.6346]
- update: [...653] [ip4][..udp] [......10.0.2.15][28681] -> [..94.139.21.182][50110]
+ update: [...652] [ip4][..udp] [......10.0.2.15][28681] -> [..94.139.21.182][50110]
update: [...530] [ip4][..udp] [......10.0.2.15][28681] -> [118.167.248.220][59304]
update: [...497] [ip4][..udp] [......10.0.2.15][28681] -> [..84.100.76.123][39628]
update: [...569] [ip4][..udp] [......10.0.2.15][28681] -> [....73.89.249.8][50649]
@@ -4187,815 +4301,1047 @@
update: [...522] [ip4][..udp] [......10.0.2.15][28681] -> [119.247.152.218][51153]
update: [...590] [ip4][..udp] [......10.0.2.15][28681] -> [...95.10.205.67][48380]
update: [...605] [ip4][..udp] [......10.0.2.15][28681] -> [180.149.125.139][.6578]
- update: [...690] [ip4][..udp] [......10.0.2.15][28681] -> [...1.65.217.224][.3688]
- update: [...665] [ip4][..udp] [......10.0.2.15][28681] -> [..1.172.183.237][.4983]
- update: [...709] [ip4][..udp] [......10.0.2.15][28681] -> [..124.244.68.65][51967]
- update: [...656] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.2566]
- update: [...729] [ip4][..udp] [......10.0.2.15][28681] -> [..112.10.134.44][19739]
+ update: [...689] [ip4][..udp] [......10.0.2.15][28681] -> [...1.65.217.224][.3688]
+ update: [...664] [ip4][..udp] [......10.0.2.15][28681] -> [..1.172.183.237][.4983]
+ update: [...708] [ip4][..udp] [......10.0.2.15][28681] -> [..124.244.68.65][51967]
+ update: [...655] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.2566]
+ update: [...728] [ip4][..udp] [......10.0.2.15][28681] -> [..112.10.134.44][19739]
update: [...548] [ip4][..udp] [......10.0.2.15][28681] -> [..74.50.147.205][17735]
- update: [...633] [ip4][..udp] [......10.0.2.15][28681] -> [...188.149.2.44][20964]
+ update: [...632] [ip4][..udp] [......10.0.2.15][28681] -> [...188.149.2.44][20964]
update: [...575] [ip4][..udp] [......10.0.2.15][28681] -> [.123.202.31.113][19768]
update: [...588] [ip4][..udp] [......10.0.2.15][28681] -> [.219.70.175.103][.4315]
- update: [...720] [ip4][..udp] [......10.0.2.15][28681] -> [...219.85.11.85][10722]
+ update: [...719] [ip4][..udp] [......10.0.2.15][28681] -> [...219.85.11.85][10722]
update: [...540] [ip4][..udp] [......10.0.2.15][28681] -> [..36.236.203.37][52131]
- update: [...631] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][.3931]
+ update: [...630] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][.3931]
update: [...565] [ip4][..udp] [......10.0.2.15][28681] -> [...114.45.40.28][.2656]
update: [...523] [ip4][..udp] [......10.0.2.15][28681] -> [..1.162.138.200][24018]
- update: [...694] [ip4][..udp] [......10.0.2.15][28681] -> [.98.215.130.156][12405]
+ update: [...693] [ip4][..udp] [......10.0.2.15][28681] -> [.98.215.130.156][12405]
+ new: [...763] [ip4][..udp] [......10.0.2.15][28681] -> [.85.170.209.214][46210]
+ new: [...764] [ip4][..udp] [......10.0.2.15][28681] -> [.208.92.106.151][32476]
+ not-detected: [...306] [ip4][..udp] [......10.0.2.15][28681] -> [..41.249.63.200][22582] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...306] [ip4][..udp] [......10.0.2.15][28681] -> [..41.249.63.200][22582]
+ not-detected: [...421] [ip4][..udp] [......10.0.2.15][28681] -> [..175.182.39.11][12977] [Unknown][Unknown][Unrated]
+ idle: [...421] [ip4][..udp] [......10.0.2.15][28681] -> [..175.182.39.11][12977]
+ guessed: [...484] [ip4][..udp] [......10.0.2.15][28681] -> [...107.4.56.177][10000] [CiscoVPN][Unknown][VPN][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [...484] [ip4][..udp] [......10.0.2.15][28681] -> [...107.4.56.177][10000]
+ not-detected: [...467] [ip4][..udp] [......10.0.2.15][28681] -> [...61.64.177.53][23458] [Unknown][Unknown][Unrated]
+ idle: [...467] [ip4][..udp] [......10.0.2.15][28681] -> [...61.64.177.53][23458]
+ not-detected: [...483] [ip4][..udp] [.......10.0.2.2][.1026] -> [......10.0.2.15][28681] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...483] [ip4][..udp] [.......10.0.2.2][.1026] -> [......10.0.2.15][28681]
+ not-detected: [...213] [ip4][..udp] [......10.0.2.15][28681] -> [....5.180.62.37][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...213] [ip4][..udp] [......10.0.2.15][28681] -> [....5.180.62.37][.6346]
+ not-detected: [...423] [ip4][..udp] [......10.0.2.15][28681] -> [..119.247.6.226][.9713] [Unknown][Unknown][Unrated]
+ idle: [...423] [ip4][..udp] [......10.0.2.15][28681] -> [..119.247.6.226][.9713]
+ not-detected: [...414] [ip4][..udp] [......10.0.2.15][28681] -> [175.181.156.244][.8255] [Unknown][Unknown][Unrated]
+ idle: [...414] [ip4][..udp] [......10.0.2.15][28681] -> [175.181.156.244][.8255]
+ not-detected: [...113] [ip4][..udp] [......10.0.2.15][28681] -> [105.101.132.146][57746] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...113] [ip4][..udp] [......10.0.2.15][28681] -> [105.101.132.146][57746]
+ not-detected: [...434] [ip4][..udp] [......10.0.2.15][28681] -> [.114.24.182.130][22232] [Unknown][Unknown][Unrated]
+ idle: [...434] [ip4][..udp] [......10.0.2.15][28681] -> [.114.24.182.130][22232]
update: [...377] [ip4][..udp] [......10.0.2.15][28681] -> [.180.200.236.13][12082]
+ update: [...441] [ip4][..udp] [......10.0.2.15][28681] -> [.36.237.199.108][56040]
+ update: [...450] [ip4][..udp] [......10.0.2.15][28681] -> [113.252.206.254][23458]
+ update: [...479] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.13.148][51896]
update: [...394] [ip4][..udp] [......10.0.2.15][28681] -> [.165.84.134.136][21407]
update: [...254] [ip4][..udp] [......10.0.2.15][28681] -> [..88.120.73.215][24562] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...474] [ip4][..udp] [......10.0.2.15][28681] -> [..80.61.221.246][45880]
+ update: [...477] [ip4][..udp] [......10.0.2.15][28681] -> [....94.54.66.82][45640]
+ update: [...444] [ip4][..udp] [......10.0.2.15][28681] -> [.122.117.100.78][.9010]
+ update: [...478] [ip4][..udp] [......10.0.2.15][28681] -> [...36.235.85.44][64914]
+ update: [...449] [ip4][..udp] [......10.0.2.15][28681] -> [.61.238.173.128][.8826]
+ update: [...461] [ip4][..udp] [......10.0.2.15][28681] -> [..69.27.193.124][50555]
+ update: [...472] [ip4][..udp] [......10.0.2.15][28681] -> [....94.54.66.82][45744]
+ update: [...471] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][43457]
+ update: [...476] [ip4][..udp] [......10.0.2.15][28681] -> [..98.18.172.208][63172]
update: [...381] [ip4][..udp] [......10.0.2.15][28681] -> [...77.58.211.52][.3806]
update: [...386] [ip4][..udp] [......10.0.2.15][28681] -> [...85.172.10.90][40162]
update: [...265] [ip4][..udp] [......10.0.2.15][28681] -> [203.220.198.244][.1194] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...747] [ip4][..udp] [......10.0.2.15][28681] -> [123.205.126.102][.5193]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...443] [ip4][..udp] [......10.0.2.15][28681] -> [..183.179.14.31][54754]
update: [...260] [ip4][..udp] [......10.0.2.15][28681] -> [.46.128.114.107][.6578] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...259] [ip4][..udp] [......10.0.2.15][28681] -> [103.232.107.100][43508] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...446] [ip4][..udp] [......10.0.2.15][28681] -> [..61.70.199.107][60475]
+ update: [...470] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][46790]
+ update: [...447] [ip4][..udp] [......10.0.2.15][28681] -> [...14.199.10.60][23458]
+ update: [...451] [ip4][..udp] [......10.0.2.15][28681] -> [...218.35.66.21][22234]
update: [...250] [ip4][..udp] [......10.0.2.15][28681] -> [..51.68.153.214][26253] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...384] [ip4][..udp] [......10.0.2.15][28681] -> [....75.64.6.175][.4743]
update: [...378] [ip4][..udp] [......10.0.2.15][28681] -> [.118.241.204.61][43366]
+ update: [...456] [ip4][..udp] [......10.0.2.15][28681] -> [.89.241.112.255][14766]
update: [...375] [ip4][..udp] [......10.0.2.15][28681] -> [..73.182.136.42][27873]
+ update: [...455] [ip4][..udp] [......10.0.2.15][28681] -> [.58.153.206.183][16919]
+ update: [...453] [ip4][..udp] [......10.0.2.15][28681] -> [..74.127.26.138][.3083]
update: [...257] [ip4][..udp] [......10.0.2.15][28681] -> [.82.181.251.218][36368] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...460] [ip4][..udp] [......10.0.2.15][28681] -> [.210.194.116.78][.8342]
+ update: [...454] [ip4][..udp] [......10.0.2.15][28681] -> [.223.16.121.156][23183]
+ update: [...469] [ip4][..udp] [......10.0.2.15][28681] -> [..87.123.54.234][47184]
update: [...388] [ip4][..udp] [......10.0.2.15][28681] -> [...121.7.145.36][33905]
update: [...246] [ip4][..udp] [......10.0.2.15][28681] -> [...96.65.68.194][35481] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...748] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6599]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...317] [ip4][..udp] [......10.0.2.15][28681] -> [...96.236.205.7][34794] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...376] [ip4][..udp] [......10.0.2.15][28681] -> [....156.57.42.2][33476]
+ update: [...485] [ip4][..udp] [......10.0.2.15][28681] -> [...154.3.42.209][.6346]
update: [...261] [ip4][..udp] [......10.0.2.15][28681] -> [..60.241.48.194][21301] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...757] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][53258] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...313] [ip4][..udp] [......10.0.2.15][28681] -> [..176.99.176.20][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...302] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][53489]
update: [...255] [ip4][..udp] [......10.0.2.15][28681] -> [..80.61.221.246][30577] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...458] [ip4][..udp] [......10.0.2.15][28681] -> [118.165.228.167][12201]
+ update: [...486] [ip4][..udp] [......10.0.2.15][28681] -> [...88.68.45.203][.6346]
update: [...248] [ip4][..udp] [......10.0.2.15][28681] -> [..66.30.221.181][12012] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...380] [ip4][..udp] [......10.0.2.15][28681] -> [...83.86.49.195][12019]
+ update: [...457] [ip4][..udp] [......10.0.2.15][28681] -> [119.247.240.113][13867]
update: [...383] [ip4][..udp] [......10.0.2.15][28681] -> [...84.71.243.60][34498]
+ update: [...400] [ip4][..udp] [......10.0.2.15][28681] -> [..129.45.47.167][.6346]
update: [...253] [ip4][..udp] [......10.0.2.15][28681] -> [.193.37.255.130][61616] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...463] [ip4][..udp] [......10.0.2.15][28681] -> [..200.7.155.210][28365]
+ update: [...452] [ip4][..udp] [......10.0.2.15][28681] -> [..68.227.193.37][27481]
+ update: [...448] [ip4][..udp] [......10.0.2.15][28681] -> [116.241.162.162][15677]
+ update: [...459] [ip4][..udp] [......10.0.2.15][28681] -> [...100.89.84.59][11603]
update: [...316] [ip4][..udp] [......10.0.2.15][28681] -> [....94.54.66.82][63637] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...262] [ip4][..udp] [......10.0.2.15][28681] -> [....89.75.52.19][46010] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...445] [ip4][..udp] [......10.0.2.15][28681] -> [118.165.153.100][.4509]
update: [...393] [ip4][..udp] [......10.0.2.15][28681] -> [.58.115.158.103][.5110]
+ update: [...464] [ip4][..udp] [......10.0.2.15][28681] -> [...101.128.66.8][34512]
update: [...382] [ip4][..udp] [......10.0.2.15][28681] -> [..76.175.11.126][40958]
+ update: [...480] [ip4][..udp] [......10.0.2.15][28681] -> [..112.119.74.26][65498]
+ update: [...462] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][47808]
+ update: [...475] [ip4][..udp] [......10.0.2.15][28681] -> [..188.61.52.183][63978]
+ update: [...473] [ip4][..udp] [......10.0.2.15][28681] -> [.142.132.165.13][33564]
update: [...379] [ip4][..udp] [......10.0.2.15][28681] -> [..80.140.63.147][29545]
+ update: [...442] [ip4][..udp] [......10.0.2.15][28681] -> [..89.204.130.55][29545]
update: [...312] [ip4][..udp] [......10.0.2.15][28681] -> [..24.167.201.53][47282] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
not-detected: [...488] [ip4][..udp] [......10.0.2.15][28681] -> [.183.179.90.112][.9852] [Unknown][Unknown][Unrated]
idle: [...488] [ip4][..udp] [......10.0.2.15][28681] -> [.183.179.90.112][.9852]
not-detected: [...490] [ip4][..udp] [......10.0.2.15][28681] -> [...90.3.215.132][20356] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...490] [ip4][..udp] [......10.0.2.15][28681] -> [...90.3.215.132][20356]
not-detected: [...489] [ip4][..udp] [......10.0.2.15][28681] -> [...108.44.45.25][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...489] [ip4][..udp] [......10.0.2.15][28681] -> [...108.44.45.25][.6346]
not-detected: [...487] [ip4][..udp] [......10.0.2.15][28681] -> [..24.78.134.188][49046] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...487] [ip4][..udp] [......10.0.2.15][28681] -> [..24.78.134.188][49046]
not-detected: [...491] [ip4][..udp] [......10.0.2.15][28681] -> [..36.233.42.210][.5512] [Unknown][Unknown][Unrated]
idle: [...491] [ip4][..udp] [......10.0.2.15][28681] -> [..36.233.42.210][.5512]
not-detected: [...492] [ip4][..udp] [......10.0.2.15][28681] -> [...172.94.41.71][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...492] [ip4][..udp] [......10.0.2.15][28681] -> [...172.94.41.71][.6346]
- update: [...441] [ip4][..udp] [......10.0.2.15][28681] -> [.36.237.199.108][56040]
- update: [...331] [ip4][..udp] [......10.0.2.15][28681] -> [..45.31.152.112][26851] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...450] [ip4][..udp] [......10.0.2.15][28681] -> [113.252.206.254][23458]
- update: [...479] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.13.148][51896]
- update: [...474] [ip4][..udp] [......10.0.2.15][28681] -> [..80.61.221.246][45880]
- update: [...477] [ip4][..udp] [......10.0.2.15][28681] -> [....94.54.66.82][45640]
- update: [...444] [ip4][..udp] [......10.0.2.15][28681] -> [.122.117.100.78][.9010]
- update: [...478] [ip4][..udp] [......10.0.2.15][28681] -> [...36.235.85.44][64914]
- update: [...449] [ip4][..udp] [......10.0.2.15][28681] -> [.61.238.173.128][.8826]
- update: [...461] [ip4][..udp] [......10.0.2.15][28681] -> [..69.27.193.124][50555]
- update: [...332] [ip4][..udp] [......10.0.2.15][28681] -> [213.229.111.224][.4876] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...472] [ip4][..udp] [......10.0.2.15][28681] -> [....94.54.66.82][45744]
- update: [...471] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][43457]
- update: [...476] [ip4][..udp] [......10.0.2.15][28681] -> [..98.18.172.208][63172]
- update: [...443] [ip4][..udp] [......10.0.2.15][28681] -> [..183.179.14.31][54754]
update: [...754] [ip4][..udp] [......10.0.2.15][28681] -> [..84.125.218.84][17561]
update: [...759] [ip4][..udp] [......10.0.2.15][28681] -> [104.238.172.250][23548] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...446] [ip4][..udp] [......10.0.2.15][28681] -> [..61.70.199.107][60475]
- update: [...470] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][46790]
- update: [...447] [ip4][..udp] [......10.0.2.15][28681] -> [...14.199.10.60][23458]
- update: [...451] [ip4][..udp] [......10.0.2.15][28681] -> [...218.35.66.21][22234]
- update: [...456] [ip4][..udp] [......10.0.2.15][28681] -> [.89.241.112.255][14766]
- update: [...455] [ip4][..udp] [......10.0.2.15][28681] -> [.58.153.206.183][16919]
- update: [...453] [ip4][..udp] [......10.0.2.15][28681] -> [..74.127.26.138][.3083]
- update: [...460] [ip4][..udp] [......10.0.2.15][28681] -> [.210.194.116.78][.8342]
- update: [...454] [ip4][..udp] [......10.0.2.15][28681] -> [.223.16.121.156][23183]
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...758] [ip4][..udp] [......10.0.2.15][50213] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
- update: [...321] [ip4][..udp] [......10.0.2.15][28681] -> [188.165.203.190][21995] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...469] [ip4][..udp] [......10.0.2.15][28681] -> [..87.123.54.234][47184]
- update: [...485] [ip4][..udp] [......10.0.2.15][28681] -> [...154.3.42.209][.6346]
- update: [...319] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][55302] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...458] [ip4][..udp] [......10.0.2.15][28681] -> [118.165.228.167][12201]
- update: [...486] [ip4][..udp] [......10.0.2.15][28681] -> [...88.68.45.203][.6346]
- update: [...457] [ip4][..udp] [......10.0.2.15][28681] -> [119.247.240.113][13867]
- update: [...400] [ip4][..udp] [......10.0.2.15][28681] -> [..129.45.47.167][.6346]
- update: [...463] [ip4][..udp] [......10.0.2.15][28681] -> [..200.7.155.210][28365]
- update: [...452] [ip4][..udp] [......10.0.2.15][28681] -> [..68.227.193.37][27481]
- update: [...448] [ip4][..udp] [......10.0.2.15][28681] -> [116.241.162.162][15677]
- update: [...459] [ip4][..udp] [......10.0.2.15][28681] -> [...100.89.84.59][11603]
- update: [...445] [ip4][..udp] [......10.0.2.15][28681] -> [118.165.153.100][.4509]
- update: [...464] [ip4][..udp] [......10.0.2.15][28681] -> [...101.128.66.8][34512]
- update: [...480] [ip4][..udp] [......10.0.2.15][28681] -> [..112.119.74.26][65498]
- update: [...462] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][47808]
- update: [...475] [ip4][..udp] [......10.0.2.15][28681] -> [..188.61.52.183][63978]
- update: [...473] [ip4][..udp] [......10.0.2.15][28681] -> [.142.132.165.13][33564]
- update: [...442] [ip4][..udp] [......10.0.2.15][28681] -> [..89.204.130.55][29545]
- idle: [...493] [ip4][..udp] [......10.0.2.15][57552] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
- update: [...751] [ip4][..udp] [......10.0.2.15][28681] -> [....67.193.8.52][38584]
- update: [...335] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][37058]
- update: [...749] [ip4][..udp] [......10.0.2.15][28681] -> [.....92.8.59.80][35192]
- update: [...752] [ip4][..udp] [......10.0.2.15][28681] -> [142.115.218.152][.5900]
- update: [...750] [ip4][..udp] [......10.0.2.15][28681] -> [...78.159.27.22][17563]
- update: [...753] [ip4][..udp] [......10.0.2.15][28681] -> [..165.84.140.96][14400]
+ update: [...757] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][53258] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
not-detected: [...577] [ip4][..udp] [......10.0.2.15][28681] -> [.59.148.100.237][23459] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...577] [ip4][..udp] [......10.0.2.15][28681] -> [.59.148.100.237][23459]
not-detected: [...586] [ip4][..udp] [......10.0.2.15][28681] -> [..221.124.66.33][13060] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...586] [ip4][..udp] [......10.0.2.15][28681] -> [..221.124.66.33][13060]
- not-detected: [...619] [ip4][..udp] [......10.0.2.15][28681] -> [...1.172.184.48][13281] [Unknown][Unknown][Unrated]
- idle: [...619] [ip4][..udp] [......10.0.2.15][28681] -> [...1.172.184.48][13281]
+ not-detected: [...618] [ip4][..udp] [......10.0.2.15][28681] -> [...1.172.184.48][13281] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...618] [ip4][..udp] [......10.0.2.15][28681] -> [...1.172.184.48][13281]
not-detected: [...377] [ip4][..udp] [......10.0.2.15][28681] -> [.180.200.236.13][12082] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...377] [ip4][..udp] [......10.0.2.15][28681] -> [.180.200.236.13][12082]
not-detected: [...526] [ip4][..udp] [......10.0.2.15][28681] -> [..36.234.197.93][.1483] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...526] [ip4][..udp] [......10.0.2.15][28681] -> [..36.234.197.93][.1483]
not-detected: [...509] [ip4][..udp] [......10.0.2.15][28681] -> [.92.142.109.190][41370] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...509] [ip4][..udp] [......10.0.2.15][28681] -> [.92.142.109.190][41370]
- not-detected: [...670] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.2846] [Unknown][Unknown][Unrated]
- idle: [...670] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.2846]
- not-detected: [...610] [ip4][..udp] [......10.0.2.15][28681] -> [116.241.162.162][59016] [Unknown][Unknown][Unrated]
- idle: [...610] [ip4][..udp] [......10.0.2.15][28681] -> [116.241.162.162][59016]
- not-detected: [...691] [ip4][..udp] [......10.0.2.15][28681] -> [..61.18.212.223][50637] [Unknown][Unknown][Unrated]
- idle: [...691] [ip4][..udp] [......10.0.2.15][28681] -> [..61.18.212.223][50637]
+ not-detected: [...669] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.2846] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...669] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.2846]
+ not-detected: [...609] [ip4][..udp] [......10.0.2.15][28681] -> [116.241.162.162][59016] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...609] [ip4][..udp] [......10.0.2.15][28681] -> [116.241.162.162][59016]
+ not-detected: [...690] [ip4][..udp] [......10.0.2.15][28681] -> [..61.18.212.223][50637] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...690] [ip4][..udp] [......10.0.2.15][28681] -> [..61.18.212.223][50637]
not-detected: [...441] [ip4][..udp] [......10.0.2.15][28681] -> [.36.237.199.108][56040] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...441] [ip4][..udp] [......10.0.2.15][28681] -> [.36.237.199.108][56040]
- not-detected: [...701] [ip4][..udp] [......10.0.2.15][28681] -> [...91.206.27.26][.6578] [Unknown][Unknown][Unrated]
- idle: [...701] [ip4][..udp] [......10.0.2.15][28681] -> [...91.206.27.26][.6578]
+ guessed: [...700] [ip4][..udp] [......10.0.2.15][28681] -> [...91.206.27.26][.6578] [Tor][Tor][VPN][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ idle: [...700] [ip4][..udp] [......10.0.2.15][28681] -> [...91.206.27.26][.6578]
not-detected: [...511] [ip4][..udp] [......10.0.2.15][28681] -> [...68.47.223.27][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...511] [ip4][..udp] [......10.0.2.15][28681] -> [...68.47.223.27][.6346]
idle: [...331] [ip4][..udp] [......10.0.2.15][28681] -> [..45.31.152.112][26851] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [...361] [ip4][..udp] [......10.0.2.15][28681] -> [..86.129.196.84][.9915] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
not-detected: [...450] [ip4][..udp] [......10.0.2.15][28681] -> [113.252.206.254][23458] [Unknown][Unknown][Unrated]
idle: [...450] [ip4][..udp] [......10.0.2.15][28681] -> [113.252.206.254][23458]
not-detected: [...496] [ip4][..udp] [......10.0.2.15][28681] -> [.218.173.230.98][19004] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...496] [ip4][..udp] [......10.0.2.15][28681] -> [.218.173.230.98][19004]
not-detected: [...592] [ip4][..udp] [......10.0.2.15][28681] -> [....1.36.249.91][.7190] [Unknown][Unknown][Unrated]
idle: [...592] [ip4][..udp] [......10.0.2.15][28681] -> [....1.36.249.91][.7190]
- not-detected: [...702] [ip4][..udp] [......10.0.2.15][28681] -> [119.237.190.184][64163] [Unknown][Unknown][Unrated]
- idle: [...702] [ip4][..udp] [......10.0.2.15][28681] -> [119.237.190.184][64163]
+ not-detected: [...701] [ip4][..udp] [......10.0.2.15][28681] -> [119.237.190.184][64163] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...701] [ip4][..udp] [......10.0.2.15][28681] -> [119.237.190.184][64163]
not-detected: [...495] [ip4][..udp] [......10.0.2.15][28681] -> [...81.247.89.20][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...495] [ip4][..udp] [......10.0.2.15][28681] -> [...81.247.89.20][.6346]
+ idle: [...493] [ip4][..udp] [......10.0.2.15][57552] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
not-detected: [...479] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.13.148][51896] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...479] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.13.148][51896]
not-detected: [...603] [ip4][..udp] [......10.0.2.15][28681] -> [....1.36.249.91][64577] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...603] [ip4][..udp] [......10.0.2.15][28681] -> [....1.36.249.91][64577]
not-detected: [...394] [ip4][..udp] [......10.0.2.15][28681] -> [.165.84.134.136][21407] [Unknown][Unknown][Unrated]
idle: [...394] [ip4][..udp] [......10.0.2.15][28681] -> [.165.84.134.136][21407]
idle: [...254] [ip4][..udp] [......10.0.2.15][28681] -> [..88.120.73.215][24562] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- not-detected: [...741] [ip4][..udp] [......10.0.2.15][28681] -> [...36.237.25.47][21293] [Unknown][Unknown][Unrated]
- idle: [...741] [ip4][..udp] [......10.0.2.15][28681] -> [...36.237.25.47][21293]
- not-detected: [...647] [ip4][..udp] [......10.0.2.15][28681] -> [..36.237.10.152][21293] [Unknown][Unknown][Unrated]
- idle: [...647] [ip4][..udp] [......10.0.2.15][28681] -> [..36.237.10.152][21293]
- not-detected: [...622] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3227] [Unknown][Unknown][Unrated]
- idle: [...622] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3227]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ not-detected: [...740] [ip4][..udp] [......10.0.2.15][28681] -> [...36.237.25.47][21293] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...740] [ip4][..udp] [......10.0.2.15][28681] -> [...36.237.25.47][21293]
+ not-detected: [...646] [ip4][..udp] [......10.0.2.15][28681] -> [..36.237.10.152][21293] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...646] [ip4][..udp] [......10.0.2.15][28681] -> [..36.237.10.152][21293]
+ not-detected: [...621] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3227] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...621] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3227]
not-detected: [...516] [ip4][..udp] [......10.0.2.15][28681] -> [.119.246.147.72][.4572] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...516] [ip4][..udp] [......10.0.2.15][28681] -> [.119.246.147.72][.4572]
- not-detected: [...734] [ip4][..udp] [......10.0.2.15][28681] -> [...99.199.148.6][.4338] [Unknown][Unknown][Unrated]
- idle: [...734] [ip4][..udp] [......10.0.2.15][28681] -> [...99.199.148.6][.4338]
+ not-detected: [...733] [ip4][..udp] [......10.0.2.15][28681] -> [...99.199.148.6][.4338] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...733] [ip4][..udp] [......10.0.2.15][28681] -> [...99.199.148.6][.4338]
not-detected: [...597] [ip4][..udp] [......10.0.2.15][28681] -> [..36.236.203.37][52274] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...597] [ip4][..udp] [......10.0.2.15][28681] -> [..36.236.203.37][52274]
- not-detected: [...676] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.118.77][62191] [Unknown][Unknown][Unrated]
- idle: [...676] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.118.77][62191]
+ not-detected: [...675] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.118.77][62191] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...675] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.118.77][62191]
idle: [...340] [ip4][..udp] [......10.0.2.15][28681] -> [.38.142.119.234][49732] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- not-detected: [...739] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3256] [Unknown][Unknown][Unrated]
- idle: [...739] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3256]
- not-detected: [...629] [ip4][..udp] [......10.0.2.15][28681] -> [....45.65.87.24][16201] [Unknown][Unknown][Unrated]
- idle: [...629] [ip4][..udp] [......10.0.2.15][28681] -> [....45.65.87.24][16201]
- not-detected: [...617] [ip4][..udp] [......10.0.2.15][28681] -> [220.208.167.152][30628] [Unknown][Unknown][Unrated]
- idle: [...617] [ip4][..udp] [......10.0.2.15][28681] -> [220.208.167.152][30628]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ not-detected: [...738] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3256] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...738] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3256]
+ not-detected: [...628] [ip4][..udp] [......10.0.2.15][28681] -> [....45.65.87.24][16201] [Unknown][Unknown][Unrated]
+ idle: [...628] [ip4][..udp] [......10.0.2.15][28681] -> [....45.65.87.24][16201]
+ not-detected: [...616] [ip4][..udp] [......10.0.2.15][28681] -> [220.208.167.152][30628] [Unknown][Unknown][Unrated]
+ idle: [...616] [ip4][..udp] [......10.0.2.15][28681] -> [220.208.167.152][30628]
not-detected: [...596] [ip4][..udp] [......10.0.2.15][28681] -> [..61.18.212.223][58954] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...596] [ip4][..udp] [......10.0.2.15][28681] -> [..61.18.212.223][58954]
not-detected: [...474] [ip4][..udp] [......10.0.2.15][28681] -> [..80.61.221.246][45880] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...474] [ip4][..udp] [......10.0.2.15][28681] -> [..80.61.221.246][45880]
- not-detected: [...714] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][51379] [Unknown][Unknown][Unrated]
- idle: [...714] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][51379]
+ not-detected: [...713] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][51379] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...713] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][51379]
not-detected: [...593] [ip4][..udp] [......10.0.2.15][28681] -> [..124.218.26.16][.9747] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...593] [ip4][..udp] [......10.0.2.15][28681] -> [..124.218.26.16][.9747]
not-detected: [...571] [ip4][..udp] [......10.0.2.15][28681] -> [.114.40.163.123][55341] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...571] [ip4][..udp] [......10.0.2.15][28681] -> [.114.40.163.123][55341]
not-detected: [...524] [ip4][..udp] [......10.0.2.15][28681] -> [.80.193.171.146][65362] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...524] [ip4][..udp] [......10.0.2.15][28681] -> [.80.193.171.146][65362]
- not-detected: [...643] [ip4][..udp] [......10.0.2.15][28681] -> [.220.39.142.122][.6346] [Unknown][Unknown][Unrated]
- idle: [...643] [ip4][..udp] [......10.0.2.15][28681] -> [.220.39.142.122][.6346]
+ not-detected: [...642] [ip4][..udp] [......10.0.2.15][28681] -> [.220.39.142.122][.6346] [Unknown][Unknown][Unrated]
+ idle: [...642] [ip4][..udp] [......10.0.2.15][28681] -> [.220.39.142.122][.6346]
not-detected: [...477] [ip4][..udp] [......10.0.2.15][28681] -> [....94.54.66.82][45640] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...477] [ip4][..udp] [......10.0.2.15][28681] -> [....94.54.66.82][45640]
not-detected: [...444] [ip4][..udp] [......10.0.2.15][28681] -> [.122.117.100.78][.9010] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...444] [ip4][..udp] [......10.0.2.15][28681] -> [.122.117.100.78][.9010]
not-detected: [...572] [ip4][..udp] [......10.0.2.15][28681] -> [...86.153.21.93][36696] [Unknown][Unknown][Unrated]
idle: [...572] [ip4][..udp] [......10.0.2.15][28681] -> [...86.153.21.93][36696]
not-detected: [...478] [ip4][..udp] [......10.0.2.15][28681] -> [...36.235.85.44][64914] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...478] [ip4][..udp] [......10.0.2.15][28681] -> [...36.235.85.44][64914]
not-detected: [...449] [ip4][..udp] [......10.0.2.15][28681] -> [.61.238.173.128][.8826] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...449] [ip4][..udp] [......10.0.2.15][28681] -> [.61.238.173.128][.8826]
- not-detected: [...650] [ip4][..udp] [......10.0.2.15][28681] -> [.122.117.100.78][56128] [Unknown][Unknown][Unrated]
- idle: [...650] [ip4][..udp] [......10.0.2.15][28681] -> [.122.117.100.78][56128]
+ not-detected: [...649] [ip4][..udp] [......10.0.2.15][28681] -> [.122.117.100.78][56128] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...649] [ip4][..udp] [......10.0.2.15][28681] -> [.122.117.100.78][56128]
not-detected: [...461] [ip4][..udp] [......10.0.2.15][28681] -> [..69.27.193.124][50555] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...461] [ip4][..udp] [......10.0.2.15][28681] -> [..69.27.193.124][50555]
not-detected: [...520] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3339] [Unknown][Unknown][Unrated]
idle: [...520] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3339]
not-detected: [...335] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][37058] [Unknown][Unknown][Unrated]
idle: [...335] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][37058]
- not-detected: [...636] [ip4][..udp] [......10.0.2.15][28681] -> [...219.70.48.23][.2556] [Unknown][Unknown][Unrated]
- idle: [...636] [ip4][..udp] [......10.0.2.15][28681] -> [...219.70.48.23][.2556]
+ not-detected: [...635] [ip4][..udp] [......10.0.2.15][28681] -> [...219.70.48.23][.2556] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...635] [ip4][..udp] [......10.0.2.15][28681] -> [...219.70.48.23][.2556]
idle: [...332] [ip4][..udp] [......10.0.2.15][28681] -> [213.229.111.224][.4876] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- not-detected: [...637] [ip4][..udp] [......10.0.2.15][28681] -> [.80.193.171.146][53143] [Unknown][Unknown][Unrated]
- idle: [...637] [ip4][..udp] [......10.0.2.15][28681] -> [.80.193.171.146][53143]
- not-detected: [...638] [ip4][..udp] [......10.0.2.15][28681] -> [..36.233.194.73][.1995] [Unknown][Unknown][Unrated]
- idle: [...638] [ip4][..udp] [......10.0.2.15][28681] -> [..36.233.194.73][.1995]
- not-detected: [...677] [ip4][..udp] [......10.0.2.15][28681] -> [...1.64.208.110][55550] [Unknown][Unknown][Unrated]
- idle: [...677] [ip4][..udp] [......10.0.2.15][28681] -> [...1.64.208.110][55550]
- not-detected: [...723] [ip4][..udp] [......10.0.2.15][28681] -> [.213.32.245.121][12333] [Unknown][Unknown][Unrated]
- idle: [...723] [ip4][..udp] [......10.0.2.15][28681] -> [.213.32.245.121][12333]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ not-detected: [...636] [ip4][..udp] [......10.0.2.15][28681] -> [.80.193.171.146][53143] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...636] [ip4][..udp] [......10.0.2.15][28681] -> [.80.193.171.146][53143]
+ not-detected: [...637] [ip4][..udp] [......10.0.2.15][28681] -> [..36.233.194.73][.1995] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...637] [ip4][..udp] [......10.0.2.15][28681] -> [..36.233.194.73][.1995]
+ not-detected: [...676] [ip4][..udp] [......10.0.2.15][28681] -> [...1.64.208.110][55550] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...676] [ip4][..udp] [......10.0.2.15][28681] -> [...1.64.208.110][55550]
+ not-detected: [...722] [ip4][..udp] [......10.0.2.15][28681] -> [.213.32.245.121][12333] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...722] [ip4][..udp] [......10.0.2.15][28681] -> [.213.32.245.121][12333]
not-detected: [...578] [ip4][..udp] [......10.0.2.15][28681] -> [..77.205.243.44][46006] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...578] [ip4][..udp] [......10.0.2.15][28681] -> [..77.205.243.44][46006]
- not-detected: [...738] [ip4][..udp] [......10.0.2.15][28681] -> [174.115.127.251][23897] [Unknown][Unknown][Unrated]
- idle: [...738] [ip4][..udp] [......10.0.2.15][28681] -> [174.115.127.251][23897]
+ not-detected: [...737] [ip4][..udp] [......10.0.2.15][28681] -> [174.115.127.251][23897] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...737] [ip4][..udp] [......10.0.2.15][28681] -> [174.115.127.251][23897]
not-detected: [...584] [ip4][..udp] [......10.0.2.15][28681] -> [.80.193.171.146][18360] [Unknown][Unknown][Unrated]
idle: [...584] [ip4][..udp] [......10.0.2.15][28681] -> [.80.193.171.146][18360]
not-detected: [...472] [ip4][..udp] [......10.0.2.15][28681] -> [....94.54.66.82][45744] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...472] [ip4][..udp] [......10.0.2.15][28681] -> [....94.54.66.82][45744]
not-detected: [...471] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][43457] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...471] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][43457]
- not-detected: [...745] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][48250] [Unknown][Unknown][Unrated]
- idle: [...745] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][48250]
- not-detected: [...708] [ip4][..udp] [......10.0.2.15][28681] -> [..183.179.14.31][64871] [Unknown][Unknown][Unrated]
- idle: [...708] [ip4][..udp] [......10.0.2.15][28681] -> [..183.179.14.31][64871]
+ not-detected: [...744] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][48250] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...744] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][48250]
+ not-detected: [...707] [ip4][..udp] [......10.0.2.15][28681] -> [..183.179.14.31][64871] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...707] [ip4][..udp] [......10.0.2.15][28681] -> [..183.179.14.31][64871]
not-detected: [...501] [ip4][..udp] [......10.0.2.15][28681] -> [.88.160.214.137][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...501] [ip4][..udp] [......10.0.2.15][28681] -> [.88.160.214.137][.6346]
not-detected: [...476] [ip4][..udp] [......10.0.2.15][28681] -> [..98.18.172.208][63172] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...476] [ip4][..udp] [......10.0.2.15][28681] -> [..98.18.172.208][63172]
not-detected: [...381] [ip4][..udp] [......10.0.2.15][28681] -> [...77.58.211.52][.3806] [Unknown][Unknown][Unrated]
idle: [...381] [ip4][..udp] [......10.0.2.15][28681] -> [...77.58.211.52][.3806]
- not-detected: [...684] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54459] [Unknown][Unknown][Unrated]
- idle: [...684] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54459]
+ not-detected: [...683] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54459] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...683] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54459]
not-detected: [...386] [ip4][..udp] [......10.0.2.15][28681] -> [...85.172.10.90][40162] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...386] [ip4][..udp] [......10.0.2.15][28681] -> [...85.172.10.90][40162]
idle: [...344] [ip4][..udp] [......10.0.2.15][28681] -> [.207.38.163.228][.6778] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
not-detected: [...506] [ip4][..udp] [......10.0.2.15][28681] -> [..136.32.84.139][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...506] [ip4][..udp] [......10.0.2.15][28681] -> [..136.32.84.139][.6346]
- not-detected: [...620] [ip4][..udp] [......10.0.2.15][28681] -> [...1.163.14.246][.1630] [Unknown][Unknown][Unrated]
- idle: [...620] [ip4][..udp] [......10.0.2.15][28681] -> [...1.163.14.246][.1630]
- not-detected: [...606] [ip4][..udp] [......10.0.2.15][28681] -> [.96.246.156.126][56070] [Unknown][Unknown][Unrated]
- idle: [...606] [ip4][..udp] [......10.0.2.15][28681] -> [.96.246.156.126][56070]
- not-detected: [...692] [ip4][..udp] [......10.0.2.15][28681] -> [..61.93.150.146][62507] [Unknown][Unknown][Unrated]
- idle: [...692] [ip4][..udp] [......10.0.2.15][28681] -> [..61.93.150.146][62507]
+ not-detected: [...619] [ip4][..udp] [......10.0.2.15][28681] -> [...1.163.14.246][.1630] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...619] [ip4][..udp] [......10.0.2.15][28681] -> [...1.163.14.246][.1630]
+ idle: [...323] [ip4][..udp] [......10.0.2.15][28681] -> [.96.246.156.126][56070] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ not-detected: [...691] [ip4][..udp] [......10.0.2.15][28681] -> [..61.93.150.146][62507] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...691] [ip4][..udp] [......10.0.2.15][28681] -> [..61.93.150.146][62507]
idle: [...265] [ip4][..udp] [......10.0.2.15][28681] -> [203.220.198.244][.1194] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- not-detected: [...621] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][53516] [Unknown][Unknown][Unrated]
- idle: [...621] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][53516]
- not-detected: [...668] [ip4][..udp] [......10.0.2.15][28681] -> [.223.18.211.177][18085] [Unknown][Unknown][Unrated]
- idle: [...668] [ip4][..udp] [......10.0.2.15][28681] -> [.223.18.211.177][18085]
- not-detected: [...721] [ip4][..udp] [......10.0.2.15][28681] -> [..76.26.178.132][10053] [Unknown][Unknown][Unrated]
- idle: [...721] [ip4][..udp] [......10.0.2.15][28681] -> [..76.26.178.132][10053]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ not-detected: [...620] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][53516] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...620] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][53516]
+ not-detected: [...667] [ip4][..udp] [......10.0.2.15][28681] -> [.223.18.211.177][18085] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...667] [ip4][..udp] [......10.0.2.15][28681] -> [.223.18.211.177][18085]
+ not-detected: [...720] [ip4][..udp] [......10.0.2.15][28681] -> [..76.26.178.132][10053] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...720] [ip4][..udp] [......10.0.2.15][28681] -> [..76.26.178.132][10053]
not-detected: [...443] [ip4][..udp] [......10.0.2.15][28681] -> [..183.179.14.31][54754] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...443] [ip4][..udp] [......10.0.2.15][28681] -> [..183.179.14.31][54754]
- not-detected: [...698] [ip4][..udp] [......10.0.2.15][28681] -> [...14.199.10.60][53906] [Unknown][Unknown][Unrated]
- idle: [...698] [ip4][..udp] [......10.0.2.15][28681] -> [...14.199.10.60][53906]
- not-detected: [...623] [ip4][..udp] [......10.0.2.15][28681] -> [..36.234.18.166][61319] [Unknown][Unknown][Unrated]
- idle: [...623] [ip4][..udp] [......10.0.2.15][28681] -> [..36.234.18.166][61319]
- not-detected: [...715] [ip4][..udp] [......10.0.2.15][28681] -> [..76.174.174.69][21358] [Unknown][Unknown][Unrated]
- idle: [...715] [ip4][..udp] [......10.0.2.15][28681] -> [..76.174.174.69][21358]
- not-detected: [...615] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.118.77][60482] [Unknown][Unknown][Unrated]
- idle: [...615] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.118.77][60482]
- not-detected: [...747] [ip4][..udp] [......10.0.2.15][28681] -> [123.205.126.102][.5193] [Unknown][Unknown][Unrated]
- idle: [...747] [ip4][..udp] [......10.0.2.15][28681] -> [123.205.126.102][.5193]
- not-detected: [...607] [ip4][..udp] [......10.0.2.15][28681] -> [.149.28.163.175][42288] [Unknown][Unknown][Unrated]
- idle: [...607] [ip4][..udp] [......10.0.2.15][28681] -> [.149.28.163.175][42288]
- not-detected: [...740] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][19814] [Unknown][Unknown][Unrated]
- idle: [...740] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][19814]
+ not-detected: [...697] [ip4][..udp] [......10.0.2.15][28681] -> [...14.199.10.60][53906] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...697] [ip4][..udp] [......10.0.2.15][28681] -> [...14.199.10.60][53906]
+ not-detected: [...622] [ip4][..udp] [......10.0.2.15][28681] -> [..36.234.18.166][61319] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...622] [ip4][..udp] [......10.0.2.15][28681] -> [..36.234.18.166][61319]
+ not-detected: [...714] [ip4][..udp] [......10.0.2.15][28681] -> [..76.174.174.69][21358] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...714] [ip4][..udp] [......10.0.2.15][28681] -> [..76.174.174.69][21358]
+ not-detected: [...614] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.118.77][60482] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...614] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.118.77][60482]
+ not-detected: [...746] [ip4][..udp] [......10.0.2.15][28681] -> [123.205.126.102][.5193] [Unknown][Unknown][Unrated]
+ idle: [...746] [ip4][..udp] [......10.0.2.15][28681] -> [123.205.126.102][.5193]
+ not-detected: [...606] [ip4][..udp] [......10.0.2.15][28681] -> [.149.28.163.175][42288] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...606] [ip4][..udp] [......10.0.2.15][28681] -> [.149.28.163.175][42288]
+ not-detected: [...739] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][19814] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...739] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][19814]
not-detected: [...587] [ip4][..udp] [......10.0.2.15][28681] -> [.94.134.154.158][54130] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...587] [ip4][..udp] [......10.0.2.15][28681] -> [.94.134.154.158][54130]
not-detected: [...550] [ip4][..udp] [......10.0.2.15][28681] -> [.220.238.145.82][33527] [Unknown][Unknown][Unrated]
idle: [...550] [ip4][..udp] [......10.0.2.15][28681] -> [.220.238.145.82][33527]
- not-detected: [...689] [ip4][..udp] [......10.0.2.15][28681] -> [.114.36.234.196][11629] [Unknown][Unknown][Unrated]
- idle: [...689] [ip4][..udp] [......10.0.2.15][28681] -> [.114.36.234.196][11629]
+ not-detected: [...688] [ip4][..udp] [......10.0.2.15][28681] -> [.114.36.234.196][11629] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...688] [ip4][..udp] [......10.0.2.15][28681] -> [.114.36.234.196][11629]
idle: [...260] [ip4][..udp] [......10.0.2.15][28681] -> [.46.128.114.107][.6578] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- not-detected: [...671] [ip4][..udp] [......10.0.2.15][28681] -> [..36.236.203.37][52669] [Unknown][Unknown][Unrated]
- idle: [...671] [ip4][..udp] [......10.0.2.15][28681] -> [..36.236.203.37][52669]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ not-detected: [...670] [ip4][..udp] [......10.0.2.15][28681] -> [..36.236.203.37][52669] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...670] [ip4][..udp] [......10.0.2.15][28681] -> [..36.236.203.37][52669]
not-detected: [...598] [ip4][..udp] [......10.0.2.15][28681] -> [...1.172.184.48][.1512] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...598] [ip4][..udp] [......10.0.2.15][28681] -> [...1.172.184.48][.1512]
- not-detected: [...686] [ip4][..udp] [......10.0.2.15][28681] -> [..111.241.31.96][.8349] [Unknown][Unknown][Unrated]
- idle: [...686] [ip4][..udp] [......10.0.2.15][28681] -> [..111.241.31.96][.8349]
- not-detected: [...722] [ip4][..udp] [......10.0.2.15][28681] -> [.123.203.72.224][.9897] [Unknown][Unknown][Unrated]
- idle: [...722] [ip4][..udp] [......10.0.2.15][28681] -> [.123.203.72.224][.9897]
+ not-detected: [...685] [ip4][..udp] [......10.0.2.15][28681] -> [..111.241.31.96][.8349] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...685] [ip4][..udp] [......10.0.2.15][28681] -> [..111.241.31.96][.8349]
+ not-detected: [...721] [ip4][..udp] [......10.0.2.15][28681] -> [.123.203.72.224][.9897] [Unknown][Unknown][Unrated]
+ idle: [...721] [ip4][..udp] [......10.0.2.15][28681] -> [.123.203.72.224][.9897]
idle: [...336] [ip4][..udp] [......10.0.2.15][28681] -> [...80.7.252.192][.6888] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- not-detected: [...632] [ip4][..udp] [......10.0.2.15][28681] -> [..36.231.59.187][62234] [Unknown][Unknown][Unrated]
- idle: [...632] [ip4][..udp] [......10.0.2.15][28681] -> [..36.231.59.187][62234]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ not-detected: [...631] [ip4][..udp] [......10.0.2.15][28681] -> [..36.231.59.187][62234] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...631] [ip4][..udp] [......10.0.2.15][28681] -> [..36.231.59.187][62234]
not-detected: [...591] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][53707] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...591] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][53707]
not-detected: [...594] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.7375] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...594] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.7375]
- not-detected: [...614] [ip4][..udp] [......10.0.2.15][28681] -> [119.247.152.218][51920] [Unknown][Unknown][Unrated]
- idle: [...614] [ip4][..udp] [......10.0.2.15][28681] -> [119.247.152.218][51920]
- not-detected: [...618] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.7380] [Unknown][Unknown][Unrated]
- idle: [...618] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.7380]
+ not-detected: [...613] [ip4][..udp] [......10.0.2.15][28681] -> [119.247.152.218][51920] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...613] [ip4][..udp] [......10.0.2.15][28681] -> [119.247.152.218][51920]
+ not-detected: [...617] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.7380] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...617] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.7380]
not-detected: [...508] [ip4][..udp] [......10.0.2.15][28681] -> [...92.144.99.73][10745] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...508] [ip4][..udp] [......10.0.2.15][28681] -> [...92.144.99.73][10745]
not-detected: [...582] [ip4][..udp] [......10.0.2.15][28681] -> [....223.16.83.5][10624] [Unknown][Unknown][Unrated]
idle: [...582] [ip4][..udp] [......10.0.2.15][28681] -> [....223.16.83.5][10624]
not-detected: [...513] [ip4][..udp] [......10.0.2.15][28681] -> [..78.196.216.12][58910] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...513] [ip4][..udp] [......10.0.2.15][28681] -> [..78.196.216.12][58910]
not-detected: [...568] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.118.77][56562] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...568] [ip4][..udp] [......10.0.2.15][28681] -> [.123.205.118.77][56562]
not-detected: [...446] [ip4][..udp] [......10.0.2.15][28681] -> [..61.70.199.107][60475] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...446] [ip4][..udp] [......10.0.2.15][28681] -> [..61.70.199.107][60475]
not-detected: [...470] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][46790] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...470] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][46790]
- not-detected: [...624] [ip4][..udp] [......10.0.2.15][28681] -> [.210.209.249.84][24751] [Unknown][Unknown][Unrated]
- idle: [...624] [ip4][..udp] [......10.0.2.15][28681] -> [.210.209.249.84][24751]
- not-detected: [...630] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][45710] [Unknown][Unknown][Unrated]
- idle: [...630] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][45710]
- not-detected: [...693] [ip4][..udp] [......10.0.2.15][28681] -> [.76.110.153.177][40022] [Unknown][Unknown][Unrated]
- idle: [...693] [ip4][..udp] [......10.0.2.15][28681] -> [.76.110.153.177][40022]
+ not-detected: [...623] [ip4][..udp] [......10.0.2.15][28681] -> [.210.209.249.84][24751] [Unknown][Unknown][Unrated]
+ idle: [...623] [ip4][..udp] [......10.0.2.15][28681] -> [.210.209.249.84][24751]
+ not-detected: [...629] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][45710] [Unknown][Unknown][Unrated]
+ idle: [...629] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][45710]
+ not-detected: [...692] [ip4][..udp] [......10.0.2.15][28681] -> [.76.110.153.177][40022] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...692] [ip4][..udp] [......10.0.2.15][28681] -> [.76.110.153.177][40022]
not-detected: [...604] [ip4][..udp] [......10.0.2.15][28681] -> [.123.202.31.113][53291] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...604] [ip4][..udp] [......10.0.2.15][28681] -> [.123.202.31.113][53291]
- not-detected: [...719] [ip4][..udp] [......10.0.2.15][28681] -> [218.102.208.175][.9167] [Unknown][Unknown][Unrated]
- idle: [...719] [ip4][..udp] [......10.0.2.15][28681] -> [218.102.208.175][.9167]
+ not-detected: [...718] [ip4][..udp] [......10.0.2.15][28681] -> [218.102.208.175][.9167] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...718] [ip4][..udp] [......10.0.2.15][28681] -> [218.102.208.175][.9167]
not-detected: [...447] [ip4][..udp] [......10.0.2.15][28681] -> [...14.199.10.60][23458] [Unknown][Unknown][Unrated]
idle: [...447] [ip4][..udp] [......10.0.2.15][28681] -> [...14.199.10.60][23458]
not-detected: [...451] [ip4][..udp] [......10.0.2.15][28681] -> [...218.35.66.21][22234] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...451] [ip4][..udp] [......10.0.2.15][28681] -> [...218.35.66.21][22234]
not-detected: [...600] [ip4][..udp] [......10.0.2.15][28681] -> [....1.64.156.63][60092] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...600] [ip4][..udp] [......10.0.2.15][28681] -> [....1.64.156.63][60092]
idle: [...250] [ip4][..udp] [......10.0.2.15][28681] -> [..51.68.153.214][26253] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- not-detected: [...646] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49803] [Unknown][Unknown][Unrated]
- idle: [...646] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49803]
- not-detected: [...662] [ip4][..udp] [......10.0.2.15][28681] -> [...24.127.1.235][37814] [Unknown][Unknown][Unrated]
- idle: [...662] [ip4][..udp] [......10.0.2.15][28681] -> [...24.127.1.235][37814]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ not-detected: [...645] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49803] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...645] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49803]
+ not-detected: [...661] [ip4][..udp] [......10.0.2.15][28681] -> [...24.127.1.235][37814] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...661] [ip4][..udp] [......10.0.2.15][28681] -> [...24.127.1.235][37814]
not-detected: [...499] [ip4][..udp] [......10.0.2.15][28681] -> [....1.161.80.82][.8656] [Unknown][Unknown][Unrated]
idle: [...499] [ip4][..udp] [......10.0.2.15][28681] -> [....1.161.80.82][.8656]
- not-detected: [...627] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49815] [Unknown][Unknown][Unrated]
- idle: [...627] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49815]
+ not-detected: [...626] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49815] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...626] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49815]
not-detected: [...384] [ip4][..udp] [......10.0.2.15][28681] -> [....75.64.6.175][.4743] [Unknown][Unknown][Unrated]
idle: [...384] [ip4][..udp] [......10.0.2.15][28681] -> [....75.64.6.175][.4743]
not-detected: [...378] [ip4][..udp] [......10.0.2.15][28681] -> [.118.241.204.61][43366] [Unknown][Unknown][Unrated]
idle: [...378] [ip4][..udp] [......10.0.2.15][28681] -> [.118.241.204.61][43366]
- not-detected: [...704] [ip4][..udp] [......10.0.2.15][28681] -> [..114.40.67.191][14971] [Unknown][Unknown][Unrated]
- idle: [...704] [ip4][..udp] [......10.0.2.15][28681] -> [..114.40.67.191][14971]
- not-detected: [...657] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54914] [Unknown][Unknown][Unrated]
- idle: [...657] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54914]
- not-detected: [...728] [ip4][..udp] [......10.0.2.15][28681] -> [101.136.187.253][10914] [Unknown][Unknown][Unrated]
- idle: [...728] [ip4][..udp] [......10.0.2.15][28681] -> [101.136.187.253][10914]
+ not-detected: [...703] [ip4][..udp] [......10.0.2.15][28681] -> [..114.40.67.191][14971] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...703] [ip4][..udp] [......10.0.2.15][28681] -> [..114.40.67.191][14971]
+ not-detected: [...656] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54914] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...656] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54914]
+ not-detected: [...727] [ip4][..udp] [......10.0.2.15][28681] -> [101.136.187.253][10914] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...727] [ip4][..udp] [......10.0.2.15][28681] -> [101.136.187.253][10914]
not-detected: [...456] [ip4][..udp] [......10.0.2.15][28681] -> [.89.241.112.255][14766] [Unknown][Unknown][Unrated]
idle: [...456] [ip4][..udp] [......10.0.2.15][28681] -> [.89.241.112.255][14766]
not-detected: [...521] [ip4][..udp] [......10.0.2.15][28681] -> [.113.255.250.32][23458] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...521] [ip4][..udp] [......10.0.2.15][28681] -> [.113.255.250.32][23458]
not-detected: [...505] [ip4][..udp] [......10.0.2.15][28681] -> [.....42.2.62.28][.6387] [Unknown][Unknown][Unrated]
idle: [...505] [ip4][..udp] [......10.0.2.15][28681] -> [.....42.2.62.28][.6387]
not-detected: [...494] [ip4][..udp] [......10.0.2.15][28681] -> [...86.210.81.59][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...494] [ip4][..udp] [......10.0.2.15][28681] -> [...86.210.81.59][.6346]
not-detected: [...375] [ip4][..udp] [......10.0.2.15][28681] -> [..73.182.136.42][27873] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...375] [ip4][..udp] [......10.0.2.15][28681] -> [..73.182.136.42][27873]
not-detected: [...455] [ip4][..udp] [......10.0.2.15][28681] -> [.58.153.206.183][16919] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...455] [ip4][..udp] [......10.0.2.15][28681] -> [.58.153.206.183][16919]
not-detected: [...453] [ip4][..udp] [......10.0.2.15][28681] -> [..74.127.26.138][.3083] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...453] [ip4][..udp] [......10.0.2.15][28681] -> [..74.127.26.138][.3083]
not-detected: [...498] [ip4][..udp] [......10.0.2.15][28681] -> [...8.44.149.207][30551] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...498] [ip4][..udp] [......10.0.2.15][28681] -> [...8.44.149.207][30551]
idle: [...257] [ip4][..udp] [......10.0.2.15][28681] -> [.82.181.251.218][36368] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- not-detected: [...705] [ip4][..udp] [......10.0.2.15][28681] -> [..123.192.83.59][33513] [Unknown][Unknown][Unrated]
- idle: [...705] [ip4][..udp] [......10.0.2.15][28681] -> [..123.192.83.59][33513]
- not-detected: [...642] [ip4][..udp] [......10.0.2.15][28681] -> [.36.233.199.103][.2625] [Unknown][Unknown][Unrated]
- idle: [...642] [ip4][..udp] [......10.0.2.15][28681] -> [.36.233.199.103][.2625]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ not-detected: [...704] [ip4][..udp] [......10.0.2.15][28681] -> [..123.192.83.59][33513] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...704] [ip4][..udp] [......10.0.2.15][28681] -> [..123.192.83.59][33513]
+ not-detected: [...641] [ip4][..udp] [......10.0.2.15][28681] -> [.36.233.199.103][.2625] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...641] [ip4][..udp] [......10.0.2.15][28681] -> [.36.233.199.103][.2625]
not-detected: [...460] [ip4][..udp] [......10.0.2.15][28681] -> [.210.194.116.78][.8342] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...460] [ip4][..udp] [......10.0.2.15][28681] -> [.210.194.116.78][.8342]
- not-detected: [...718] [ip4][..udp] [......10.0.2.15][28681] -> [...79.191.58.38][48157] [Unknown][Unknown][Unrated]
- idle: [...718] [ip4][..udp] [......10.0.2.15][28681] -> [...79.191.58.38][48157]
- not-detected: [...743] [ip4][..udp] [......10.0.2.15][28681] -> [194.163.180.126][36780] [Unknown][Unknown][Unrated]
- idle: [...743] [ip4][..udp] [......10.0.2.15][28681] -> [194.163.180.126][36780]
+ not-detected: [...717] [ip4][..udp] [......10.0.2.15][28681] -> [...79.191.58.38][48157] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...717] [ip4][..udp] [......10.0.2.15][28681] -> [...79.191.58.38][48157]
+ not-detected: [...742] [ip4][..udp] [......10.0.2.15][28681] -> [194.163.180.126][36780] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...742] [ip4][..udp] [......10.0.2.15][28681] -> [194.163.180.126][36780]
not-detected: [...454] [ip4][..udp] [......10.0.2.15][28681] -> [.223.16.121.156][23183] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...454] [ip4][..udp] [......10.0.2.15][28681] -> [.223.16.121.156][23183]
- not-detected: [...675] [ip4][..udp] [......10.0.2.15][28681] -> [...219.70.1.236][.9369] [Unknown][Unknown][Unrated]
- idle: [...675] [ip4][..udp] [......10.0.2.15][28681] -> [...219.70.1.236][.9369]
- not-detected: [...673] [ip4][..udp] [......10.0.2.15][28681] -> [....223.16.83.5][.4765] [Unknown][Unknown][Unrated]
- idle: [...673] [ip4][..udp] [......10.0.2.15][28681] -> [....223.16.83.5][.4765]
- not-detected: [...682] [ip4][..udp] [......10.0.2.15][28681] -> [..61.220.41.241][53072] [Unknown][Unknown][Unrated]
- idle: [...682] [ip4][..udp] [......10.0.2.15][28681] -> [..61.220.41.241][53072]
- not-detected: [...641] [ip4][..udp] [......10.0.2.15][28681] -> [....1.36.249.91][65430] [Unknown][Unknown][Unrated]
- idle: [...641] [ip4][..udp] [......10.0.2.15][28681] -> [....1.36.249.91][65430]
- not-detected: [...683] [ip4][..udp] [......10.0.2.15][28681] -> [203.220.198.244][50896] [Unknown][Unknown][Unrated]
- idle: [...683] [ip4][..udp] [......10.0.2.15][28681] -> [203.220.198.244][50896]
- not-detected: [...680] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.83.132][57131] [Unknown][Unknown][Unrated]
- idle: [...680] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.83.132][57131]
- not-detected: [...695] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][.6514] [Unknown][Unknown][Unrated]
- idle: [...695] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][.6514]
+ not-detected: [...674] [ip4][..udp] [......10.0.2.15][28681] -> [...219.70.1.236][.9369] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...674] [ip4][..udp] [......10.0.2.15][28681] -> [...219.70.1.236][.9369]
+ not-detected: [...672] [ip4][..udp] [......10.0.2.15][28681] -> [....223.16.83.5][.4765] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...672] [ip4][..udp] [......10.0.2.15][28681] -> [....223.16.83.5][.4765]
+ not-detected: [...681] [ip4][..udp] [......10.0.2.15][28681] -> [..61.220.41.241][53072] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...681] [ip4][..udp] [......10.0.2.15][28681] -> [..61.220.41.241][53072]
+ not-detected: [...640] [ip4][..udp] [......10.0.2.15][28681] -> [....1.36.249.91][65430] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...640] [ip4][..udp] [......10.0.2.15][28681] -> [....1.36.249.91][65430]
+ not-detected: [...682] [ip4][..udp] [......10.0.2.15][28681] -> [203.220.198.244][50896] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...682] [ip4][..udp] [......10.0.2.15][28681] -> [203.220.198.244][50896]
+ not-detected: [...679] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.83.132][57131] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...679] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.83.132][57131]
+ not-detected: [...694] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][.6514] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...694] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][.6514]
not-detected: [...469] [ip4][..udp] [......10.0.2.15][28681] -> [..87.123.54.234][47184] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...469] [ip4][..udp] [......10.0.2.15][28681] -> [..87.123.54.234][47184]
idle: [...321] [ip4][..udp] [......10.0.2.15][28681] -> [188.165.203.190][21995] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- not-detected: [...666] [ip4][..udp] [......10.0.2.15][28681] -> [..82.36.106.134][.3927] [Unknown][Unknown][Unrated]
- idle: [...666] [ip4][..udp] [......10.0.2.15][28681] -> [..82.36.106.134][.3927]
- not-detected: [...661] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][.6527] [Unknown][Unknown][Unrated]
- idle: [...661] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][.6527]
- not-detected: [...616] [ip4][..udp] [......10.0.2.15][28681] -> [.74.195.236.249][18557] [Unknown][Unknown][Unrated]
- idle: [...616] [ip4][..udp] [......10.0.2.15][28681] -> [.74.195.236.249][18557]
- not-detected: [...717] [ip4][..udp] [......10.0.2.15][28681] -> [...98.249.190.8][25198] [Unknown][Unknown][Unrated]
- idle: [...717] [ip4][..udp] [......10.0.2.15][28681] -> [...98.249.190.8][25198]
- not-detected: [...732] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6564] [Unknown][Unknown][Unrated]
- idle: [...732] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6564]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ not-detected: [...665] [ip4][..udp] [......10.0.2.15][28681] -> [..82.36.106.134][.3927] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...665] [ip4][..udp] [......10.0.2.15][28681] -> [..82.36.106.134][.3927]
+ not-detected: [...660] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][.6527] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...660] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][.6527]
+ not-detected: [...615] [ip4][..udp] [......10.0.2.15][28681] -> [.74.195.236.249][18557] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...615] [ip4][..udp] [......10.0.2.15][28681] -> [.74.195.236.249][18557]
+ not-detected: [...716] [ip4][..udp] [......10.0.2.15][28681] -> [...98.249.190.8][25198] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...716] [ip4][..udp] [......10.0.2.15][28681] -> [...98.249.190.8][25198]
+ not-detected: [...731] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6564] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...731] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6564]
idle: [...342] [ip4][..udp] [......10.0.2.15][28681] -> [..98.208.26.154][.4994] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
not-detected: [...388] [ip4][..udp] [......10.0.2.15][28681] -> [...121.7.145.36][33905] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...388] [ip4][..udp] [......10.0.2.15][28681] -> [...121.7.145.36][33905]
- not-detected: [...736] [ip4][..udp] [......10.0.2.15][28681] -> [..45.31.152.112][52420] [Unknown][Unknown][Unrated]
- idle: [...736] [ip4][..udp] [......10.0.2.15][28681] -> [..45.31.152.112][52420]
- not-detected: [...748] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6599] [Unknown][Unknown][Unrated]
- idle: [...748] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6599]
- not-detected: [...635] [ip4][..udp] [......10.0.2.15][28681] -> [..24.179.18.242][47329] [Unknown][Unknown][Unrated]
- idle: [...635] [ip4][..udp] [......10.0.2.15][28681] -> [..24.179.18.242][47329]
+ not-detected: [...735] [ip4][..udp] [......10.0.2.15][28681] -> [..45.31.152.112][52420] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...735] [ip4][..udp] [......10.0.2.15][28681] -> [..45.31.152.112][52420]
+ not-detected: [...747] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6599] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...747] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6599]
+ not-detected: [...634] [ip4][..udp] [......10.0.2.15][28681] -> [..24.179.18.242][47329] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...634] [ip4][..udp] [......10.0.2.15][28681] -> [..24.179.18.242][47329]
idle: [...246] [ip4][..udp] [......10.0.2.15][28681] -> [...96.65.68.194][35481] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
not-detected: [...527] [ip4][..udp] [......10.0.2.15][28681] -> [..42.72.149.140][37848] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...527] [ip4][..udp] [......10.0.2.15][28681] -> [..42.72.149.140][37848]
- not-detected: [...644] [ip4][..udp] [......10.0.2.15][28681] -> [..31.20.248.147][30706] [Unknown][Unknown][Unrated]
- idle: [...644] [ip4][..udp] [......10.0.2.15][28681] -> [..31.20.248.147][30706]
- not-detected: [...712] [ip4][..udp] [......10.0.2.15][28681] -> [..220.129.86.65][49723] [Unknown][Unknown][Unrated]
- idle: [...712] [ip4][..udp] [......10.0.2.15][28681] -> [..220.129.86.65][49723]
+ not-detected: [...643] [ip4][..udp] [......10.0.2.15][28681] -> [..31.20.248.147][30706] [Unknown][Unknown][Unrated]
+ idle: [...643] [ip4][..udp] [......10.0.2.15][28681] -> [..31.20.248.147][30706]
+ not-detected: [...711] [ip4][..udp] [......10.0.2.15][28681] -> [..220.129.86.65][49723] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...711] [ip4][..udp] [......10.0.2.15][28681] -> [..220.129.86.65][49723]
not-detected: [...563] [ip4][..udp] [......10.0.2.15][28681] -> [...112.105.52.2][.6831] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...563] [ip4][..udp] [......10.0.2.15][28681] -> [...112.105.52.2][.6831]
not-detected: [...504] [ip4][..udp] [......10.0.2.15][28681] -> [..85.203.45.107][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...504] [ip4][..udp] [......10.0.2.15][28681] -> [..85.203.45.107][.6346]
- not-detected: [...640] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.7849] [Unknown][Unknown][Unrated]
- idle: [...640] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.7849]
- not-detected: [...730] [ip4][..udp] [......10.0.2.15][28681] -> [..114.47.227.91][54463] [Unknown][Unknown][Unrated]
- idle: [...730] [ip4][..udp] [......10.0.2.15][28681] -> [..114.47.227.91][54463]
- not-detected: [...733] [ip4][..udp] [......10.0.2.15][28681] -> [..85.168.34.105][39908] [Unknown][Unknown][Unrated]
- idle: [...733] [ip4][..udp] [......10.0.2.15][28681] -> [..85.168.34.105][39908]
- not-detected: [...634] [ip4][..udp] [......10.0.2.15][28681] -> [..68.174.18.115][50679] [Unknown][Unknown][Unrated]
- idle: [...634] [ip4][..udp] [......10.0.2.15][28681] -> [..68.174.18.115][50679]
- not-detected: [...608] [ip4][..udp] [......10.0.2.15][28681] -> [..111.241.31.96][.4814] [Unknown][Unknown][Unrated]
- idle: [...608] [ip4][..udp] [......10.0.2.15][28681] -> [..111.241.31.96][.4814]
+ not-detected: [...639] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.7849] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...639] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.7849]
+ not-detected: [...729] [ip4][..udp] [......10.0.2.15][28681] -> [..114.47.227.91][54463] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...729] [ip4][..udp] [......10.0.2.15][28681] -> [..114.47.227.91][54463]
+ not-detected: [...732] [ip4][..udp] [......10.0.2.15][28681] -> [..85.168.34.105][39908] [Unknown][Unknown][Unrated]
+ idle: [...732] [ip4][..udp] [......10.0.2.15][28681] -> [..85.168.34.105][39908]
+ not-detected: [...633] [ip4][..udp] [......10.0.2.15][28681] -> [..68.174.18.115][50679] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...633] [ip4][..udp] [......10.0.2.15][28681] -> [..68.174.18.115][50679]
+ not-detected: [...607] [ip4][..udp] [......10.0.2.15][28681] -> [..111.241.31.96][.4814] [Unknown][Unknown][Unrated]
+ idle: [...607] [ip4][..udp] [......10.0.2.15][28681] -> [..111.241.31.96][.4814]
idle: [...317] [ip4][..udp] [......10.0.2.15][28681] -> [...96.236.205.7][34794] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- not-detected: [...706] [ip4][..udp] [......10.0.2.15][28681] -> [..124.218.26.16][.8658] [Unknown][Unknown][Unrated]
- idle: [...706] [ip4][..udp] [......10.0.2.15][28681] -> [..124.218.26.16][.8658]
- not-detected: [...699] [ip4][..udp] [......10.0.2.15][28681] -> [..70.81.219.111][19210] [Unknown][Unknown][Unrated]
- idle: [...699] [ip4][..udp] [......10.0.2.15][28681] -> [..70.81.219.111][19210]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ not-detected: [...705] [ip4][..udp] [......10.0.2.15][28681] -> [..124.218.26.16][.8658] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...705] [ip4][..udp] [......10.0.2.15][28681] -> [..124.218.26.16][.8658]
+ not-detected: [...698] [ip4][..udp] [......10.0.2.15][28681] -> [..70.81.219.111][19210] [Unknown][Unknown][Unrated]
+ idle: [...698] [ip4][..udp] [......10.0.2.15][28681] -> [..70.81.219.111][19210]
not-detected: [...595] [ip4][..udp] [......10.0.2.15][28681] -> [.175.182.21.156][13732] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...595] [ip4][..udp] [......10.0.2.15][28681] -> [.175.182.21.156][13732]
- not-detected: [...724] [ip4][..udp] [......10.0.2.15][28681] -> [.175.39.219.223][13482] [Unknown][Unknown][Unrated]
- idle: [...724] [ip4][..udp] [......10.0.2.15][28681] -> [.175.39.219.223][13482]
+ not-detected: [...723] [ip4][..udp] [......10.0.2.15][28681] -> [.175.39.219.223][13482] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...723] [ip4][..udp] [......10.0.2.15][28681] -> [.175.39.219.223][13482]
not-detected: [...376] [ip4][..udp] [......10.0.2.15][28681] -> [....156.57.42.2][33476] [Unknown][Unknown][Unrated]
idle: [...376] [ip4][..udp] [......10.0.2.15][28681] -> [....156.57.42.2][33476]
- not-detected: [...674] [ip4][..udp] [......10.0.2.15][28681] -> [.125.59.215.249][14571] [Unknown][Unknown][Unrated]
- idle: [...674] [ip4][..udp] [......10.0.2.15][28681] -> [.125.59.215.249][14571]
- not-detected: [...612] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][59384] [Unknown][Unknown][Unrated]
- idle: [...612] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][59384]
- not-detected: [...725] [ip4][..udp] [......10.0.2.15][28681] -> [...1.65.217.224][.9070] [Unknown][Unknown][Unrated]
- idle: [...725] [ip4][..udp] [......10.0.2.15][28681] -> [...1.65.217.224][.9070]
+ not-detected: [...673] [ip4][..udp] [......10.0.2.15][28681] -> [.125.59.215.249][14571] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...673] [ip4][..udp] [......10.0.2.15][28681] -> [.125.59.215.249][14571]
+ not-detected: [...611] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][59384] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...611] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][59384]
+ not-detected: [...724] [ip4][..udp] [......10.0.2.15][28681] -> [...1.65.217.224][.9070] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...724] [ip4][..udp] [......10.0.2.15][28681] -> [...1.65.217.224][.9070]
idle: [...261] [ip4][..udp] [......10.0.2.15][28681] -> [..60.241.48.194][21301] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- not-detected: [...667] [ip4][..udp] [......10.0.2.15][28681] -> [.159.196.95.223][.2003] [Unknown][Unknown][Unrated]
- idle: [...667] [ip4][..udp] [......10.0.2.15][28681] -> [.159.196.95.223][.2003]
- not-detected: [...645] [ip4][..udp] [......10.0.2.15][28681] -> [...173.22.22.94][34245] [Unknown][Unknown][Unrated]
- idle: [...645] [ip4][..udp] [......10.0.2.15][28681] -> [...173.22.22.94][34245]
- not-detected: [...649] [ip4][..udp] [......10.0.2.15][28681] -> [180.218.135.222][.4548] [Unknown][Unknown][Unrated]
- idle: [...649] [ip4][..udp] [......10.0.2.15][28681] -> [180.218.135.222][.4548]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ not-detected: [...666] [ip4][..udp] [......10.0.2.15][28681] -> [.159.196.95.223][.2003] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...666] [ip4][..udp] [......10.0.2.15][28681] -> [.159.196.95.223][.2003]
+ not-detected: [...644] [ip4][..udp] [......10.0.2.15][28681] -> [...173.22.22.94][34245] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...644] [ip4][..udp] [......10.0.2.15][28681] -> [...173.22.22.94][34245]
+ not-detected: [...648] [ip4][..udp] [......10.0.2.15][28681] -> [180.218.135.222][.4548] [Unknown][Unknown][Unrated]
+ idle: [...648] [ip4][..udp] [......10.0.2.15][28681] -> [180.218.135.222][.4548]
idle: [...313] [ip4][..udp] [......10.0.2.15][28681] -> [..176.99.176.20][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
not-detected: [...579] [ip4][..udp] [......10.0.2.15][28681] -> [.223.16.170.108][23458] [Unknown][Unknown][Unrated]
idle: [...579] [ip4][..udp] [......10.0.2.15][28681] -> [.223.16.170.108][23458]
- not-detected: [...678] [ip4][..udp] [......10.0.2.15][28681] -> [....223.16.83.5][.9128] [Unknown][Unknown][Unrated]
- idle: [...678] [ip4][..udp] [......10.0.2.15][28681] -> [....223.16.83.5][.9128]
- not-detected: [...707] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.1968] [Unknown][Unknown][Unrated]
- idle: [...707] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.1968]
- not-detected: [...655] [ip4][..udp] [......10.0.2.15][28681] -> [.84.118.116.198][44616] [Unknown][Unknown][Unrated]
- idle: [...655] [ip4][..udp] [......10.0.2.15][28681] -> [.84.118.116.198][44616]
- not-detected: [...726] [ip4][..udp] [......10.0.2.15][28681] -> [..219.91.30.216][61635] [Unknown][Unknown][Unrated]
- idle: [...726] [ip4][..udp] [......10.0.2.15][28681] -> [..219.91.30.216][61635]
+ not-detected: [...677] [ip4][..udp] [......10.0.2.15][28681] -> [....223.16.83.5][.9128] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...677] [ip4][..udp] [......10.0.2.15][28681] -> [....223.16.83.5][.9128]
+ not-detected: [...706] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.1968] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...706] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.1968]
+ not-detected: [...654] [ip4][..udp] [......10.0.2.15][28681] -> [.84.118.116.198][44616] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...654] [ip4][..udp] [......10.0.2.15][28681] -> [.84.118.116.198][44616]
+ not-detected: [...725] [ip4][..udp] [......10.0.2.15][28681] -> [..219.91.30.216][61635] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...725] [ip4][..udp] [......10.0.2.15][28681] -> [..219.91.30.216][61635]
idle: [...319] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][55302] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
not-detected: [...302] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][53489] [Unknown][Unknown][Unrated]
idle: [...302] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][53489]
- not-detected: [...669] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][64731] [Unknown][Unknown][Unrated]
- idle: [...669] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][64731]
+ not-detected: [...668] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][64731] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...668] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][64731]
idle: [...255] [ip4][..udp] [......10.0.2.15][28681] -> [..80.61.221.246][30577] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- not-detected: [...742] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.4364] [Unknown][Unknown][Unrated]
- idle: [...742] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.4364]
- not-detected: [...697] [ip4][..udp] [......10.0.2.15][28681] -> [188.165.203.190][55050] [Unknown][Unknown][Unrated]
- idle: [...697] [ip4][..udp] [......10.0.2.15][28681] -> [188.165.203.190][55050]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ not-detected: [...741] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.4364] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...741] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.4364]
+ not-detected: [...696] [ip4][..udp] [......10.0.2.15][28681] -> [188.165.203.190][55050] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...696] [ip4][..udp] [......10.0.2.15][28681] -> [188.165.203.190][55050]
not-detected: [...585] [ip4][..udp] [......10.0.2.15][28681] -> [..51.68.153.214][35004] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...585] [ip4][..udp] [......10.0.2.15][28681] -> [..51.68.153.214][35004]
not-detected: [...502] [ip4][..udp] [......10.0.2.15][28681] -> [..47.156.58.211][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...502] [ip4][..udp] [......10.0.2.15][28681] -> [..47.156.58.211][.6346]
not-detected: [...507] [ip4][..udp] [......10.0.2.15][28681] -> [...50.4.204.220][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...507] [ip4][..udp] [......10.0.2.15][28681] -> [...50.4.204.220][.6346]
- not-detected: [...687] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][13965] [Unknown][Unknown][Unrated]
- idle: [...687] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][13965]
- not-detected: [...663] [ip4][..udp] [......10.0.2.15][28681] -> [..96.59.117.166][33192] [Unknown][Unknown][Unrated]
- idle: [...663] [ip4][..udp] [......10.0.2.15][28681] -> [..96.59.117.166][33192]
+ not-detected: [...686] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][13965] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...686] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][13965]
+ not-detected: [...662] [ip4][..udp] [......10.0.2.15][28681] -> [..96.59.117.166][33192] [Unknown][Unknown][Unrated]
+ idle: [...662] [ip4][..udp] [......10.0.2.15][28681] -> [..96.59.117.166][33192]
not-detected: [...602] [ip4][..udp] [......10.0.2.15][28681] -> [.123.203.72.224][53658] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...602] [ip4][..udp] [......10.0.2.15][28681] -> [.123.203.72.224][53658]
not-detected: [...589] [ip4][..udp] [......10.0.2.15][28681] -> [.113.255.250.32][52647] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...589] [ip4][..udp] [......10.0.2.15][28681] -> [.113.255.250.32][52647]
- not-detected: [...654] [ip4][..udp] [......10.0.2.15][28681] -> [....82.12.1.136][.6348] [Unknown][Unknown][Unrated]
- idle: [...654] [ip4][..udp] [......10.0.2.15][28681] -> [....82.12.1.136][.6348]
+ not-detected: [...653] [ip4][..udp] [......10.0.2.15][28681] -> [....82.12.1.136][.6348] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...653] [ip4][..udp] [......10.0.2.15][28681] -> [....82.12.1.136][.6348]
not-detected: [...458] [ip4][..udp] [......10.0.2.15][28681] -> [118.165.228.167][12201] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...458] [ip4][..udp] [......10.0.2.15][28681] -> [118.165.228.167][12201]
not-detected: [...525] [ip4][..udp] [......10.0.2.15][28681] -> [.113.255.250.32][52660] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...525] [ip4][..udp] [......10.0.2.15][28681] -> [.113.255.250.32][52660]
- not-detected: [...611] [ip4][..udp] [......10.0.2.15][28681] -> [..61.10.174.159][.4841] [Unknown][Unknown][Unrated]
- idle: [...611] [ip4][..udp] [......10.0.2.15][28681] -> [..61.10.174.159][.4841]
+ not-detected: [...610] [ip4][..udp] [......10.0.2.15][28681] -> [..61.10.174.159][.4841] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...610] [ip4][..udp] [......10.0.2.15][28681] -> [..61.10.174.159][.4841]
idle: [...248] [ip4][..udp] [......10.0.2.15][28681] -> [..66.30.221.181][12012] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
not-detected: [...512] [ip4][..udp] [......10.0.2.15][28681] -> [..209.204.207.5][49256] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...512] [ip4][..udp] [......10.0.2.15][28681] -> [..209.204.207.5][49256]
- not-detected: [...735] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.91.201][.4297] [Unknown][Unknown][Unrated]
- idle: [...735] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.91.201][.4297]
- not-detected: [...628] [ip4][..udp] [......10.0.2.15][28681] -> [..73.62.225.181][46843] [Unknown][Unknown][Unrated]
- idle: [...628] [ip4][..udp] [......10.0.2.15][28681] -> [..73.62.225.181][46843]
+ not-detected: [...734] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.91.201][.4297] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...734] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.91.201][.4297]
+ not-detected: [...627] [ip4][..udp] [......10.0.2.15][28681] -> [..73.62.225.181][46843] [Unknown][Unknown][Unrated]
+ idle: [...627] [ip4][..udp] [......10.0.2.15][28681] -> [..73.62.225.181][46843]
not-detected: [...380] [ip4][..udp] [......10.0.2.15][28681] -> [...83.86.49.195][12019] [Unknown][Unknown][Unrated]
idle: [...380] [ip4][..udp] [......10.0.2.15][28681] -> [...83.86.49.195][12019]
- not-detected: [...703] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10728] [Unknown][Unknown][Unrated]
- idle: [...703] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10728]
- not-detected: [...651] [ip4][..udp] [......10.0.2.15][28681] -> [..114.47.227.91][58856] [Unknown][Unknown][Unrated]
- idle: [...651] [ip4][..udp] [......10.0.2.15][28681] -> [..114.47.227.91][58856]
+ not-detected: [...702] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10728] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...702] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10728]
+ not-detected: [...650] [ip4][..udp] [......10.0.2.15][28681] -> [..114.47.227.91][58856] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...650] [ip4][..udp] [......10.0.2.15][28681] -> [..114.47.227.91][58856]
not-detected: [...581] [ip4][..udp] [......10.0.2.15][28681] -> [..58.115.108.10][.4641] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...581] [ip4][..udp] [......10.0.2.15][28681] -> [..58.115.108.10][.4641]
- not-detected: [...613] [ip4][..udp] [......10.0.2.15][28681] -> [.106.104.88.139][.7423] [Unknown][Unknown][Unrated]
- idle: [...613] [ip4][..udp] [......10.0.2.15][28681] -> [.106.104.88.139][.7423]
+ not-detected: [...612] [ip4][..udp] [......10.0.2.15][28681] -> [.106.104.88.139][.7423] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...612] [ip4][..udp] [......10.0.2.15][28681] -> [.106.104.88.139][.7423]
not-detected: [...583] [ip4][..udp] [......10.0.2.15][28681] -> [...87.75.180.80][35361] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...583] [ip4][..udp] [......10.0.2.15][28681] -> [...87.75.180.80][35361]
- not-detected: [...672] [ip4][..udp] [......10.0.2.15][28681] -> [180.218.135.222][49867] [Unknown][Unknown][Unrated]
- idle: [...672] [ip4][..udp] [......10.0.2.15][28681] -> [180.218.135.222][49867]
+ not-detected: [...671] [ip4][..udp] [......10.0.2.15][28681] -> [180.218.135.222][49867] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...671] [ip4][..udp] [......10.0.2.15][28681] -> [180.218.135.222][49867]
not-detected: [...574] [ip4][..udp] [......10.0.2.15][28681] -> [..223.17.132.18][23458] [Unknown][Unknown][Unrated]
idle: [...574] [ip4][..udp] [......10.0.2.15][28681] -> [..223.17.132.18][23458]
- not-detected: [...679] [ip4][..udp] [......10.0.2.15][28681] -> [150.116.225.105][51438] [Unknown][Unknown][Unrated]
- idle: [...679] [ip4][..udp] [......10.0.2.15][28681] -> [150.116.225.105][51438]
+ not-detected: [...678] [ip4][..udp] [......10.0.2.15][28681] -> [150.116.225.105][51438] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...678] [ip4][..udp] [......10.0.2.15][28681] -> [150.116.225.105][51438]
not-detected: [...518] [ip4][..udp] [......10.0.2.15][28681] -> [..202.151.63.59][.7624] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...518] [ip4][..udp] [......10.0.2.15][28681] -> [..202.151.63.59][.7624]
- not-detected: [...716] [ip4][..udp] [......10.0.2.15][28681] -> [...219.71.72.88][58808] [Unknown][Unknown][Unrated]
- idle: [...716] [ip4][..udp] [......10.0.2.15][28681] -> [...219.71.72.88][58808]
- not-detected: [...660] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10791] [Unknown][Unknown][Unrated]
- idle: [...660] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10791]
+ not-detected: [...715] [ip4][..udp] [......10.0.2.15][28681] -> [...219.71.72.88][58808] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...715] [ip4][..udp] [......10.0.2.15][28681] -> [...219.71.72.88][58808]
+ not-detected: [...659] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10791] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...659] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10791]
not-detected: [...457] [ip4][..udp] [......10.0.2.15][28681] -> [119.247.240.113][13867] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...457] [ip4][..udp] [......10.0.2.15][28681] -> [119.247.240.113][13867]
not-detected: [...564] [ip4][..udp] [......10.0.2.15][28681] -> [..61.222.160.99][53144] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...564] [ip4][..udp] [......10.0.2.15][28681] -> [..61.222.160.99][53144]
- not-detected: [...648] [ip4][..udp] [......10.0.2.15][28681] -> [..61.18.212.223][58290] [Unknown][Unknown][Unrated]
- idle: [...648] [ip4][..udp] [......10.0.2.15][28681] -> [..61.18.212.223][58290]
- not-detected: [...700] [ip4][..udp] [......10.0.2.15][28681] -> [..77.222.213.44][26536] [Unknown][Unknown][Unrated]
- idle: [...700] [ip4][..udp] [......10.0.2.15][28681] -> [..77.222.213.44][26536]
- not-detected: [...652] [ip4][..udp] [......10.0.2.15][28681] -> [....1.64.156.63][65023] [Unknown][Unknown][Unrated]
- idle: [...652] [ip4][..udp] [......10.0.2.15][28681] -> [....1.64.156.63][65023]
- not-detected: [...659] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][.8075] [Unknown][Unknown][Unrated]
- idle: [...659] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][.8075]
- not-detected: [...713] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][59978] [Unknown][Unknown][Unrated]
- idle: [...713] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][59978]
- not-detected: [...658] [ip4][..udp] [......10.0.2.15][28681] -> [..61.222.160.99][53195] [Unknown][Unknown][Unrated]
- idle: [...658] [ip4][..udp] [......10.0.2.15][28681] -> [..61.222.160.99][53195]
+ not-detected: [...647] [ip4][..udp] [......10.0.2.15][28681] -> [..61.18.212.223][58290] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...647] [ip4][..udp] [......10.0.2.15][28681] -> [..61.18.212.223][58290]
+ not-detected: [...699] [ip4][..udp] [......10.0.2.15][28681] -> [..77.222.213.44][26536] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...699] [ip4][..udp] [......10.0.2.15][28681] -> [..77.222.213.44][26536]
+ not-detected: [...651] [ip4][..udp] [......10.0.2.15][28681] -> [....1.64.156.63][65023] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...651] [ip4][..udp] [......10.0.2.15][28681] -> [....1.64.156.63][65023]
+ not-detected: [...658] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][.8075] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...658] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][.8075]
+ not-detected: [...712] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][59978] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...712] [ip4][..udp] [......10.0.2.15][28681] -> [.185.187.74.173][59978]
+ not-detected: [...657] [ip4][..udp] [......10.0.2.15][28681] -> [..61.222.160.99][53195] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...657] [ip4][..udp] [......10.0.2.15][28681] -> [..61.222.160.99][53195]
idle: [...364] [ip4][..udp] [......10.0.2.15][28681] -> [194.163.180.126][10825] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
not-detected: [...576] [ip4][..udp] [......10.0.2.15][28681] -> [104.238.172.250][42925] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...576] [ip4][..udp] [......10.0.2.15][28681] -> [104.238.172.250][42925]
not-detected: [...570] [ip4][..udp] [......10.0.2.15][28681] -> [..97.83.183.148][.8890] [Unknown][Unknown][Unrated]
idle: [...570] [ip4][..udp] [......10.0.2.15][28681] -> [..97.83.183.148][.8890]
- not-detected: [...681] [ip4][..udp] [......10.0.2.15][28681] -> [.61.227.198.100][.6910] [Unknown][Unknown][Unrated]
- idle: [...681] [ip4][..udp] [......10.0.2.15][28681] -> [.61.227.198.100][.6910]
+ not-detected: [...680] [ip4][..udp] [......10.0.2.15][28681] -> [.61.227.198.100][.6910] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...680] [ip4][..udp] [......10.0.2.15][28681] -> [.61.227.198.100][.6910]
not-detected: [...500] [ip4][..udp] [......10.0.2.15][28681] -> [.220.143.34.225][20071] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...500] [ip4][..udp] [......10.0.2.15][28681] -> [.220.143.34.225][20071]
not-detected: [...566] [ip4][..udp] [......10.0.2.15][28681] -> [...58.176.62.40][52755] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...566] [ip4][..udp] [......10.0.2.15][28681] -> [...58.176.62.40][52755]
not-detected: [...514] [ip4][..udp] [......10.0.2.15][28681] -> [..83.114.40.175][23552] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...514] [ip4][..udp] [......10.0.2.15][28681] -> [..83.114.40.175][23552]
not-detected: [...599] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][59875] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...599] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][59875]
not-detected: [...517] [ip4][..udp] [......10.0.2.15][28681] -> [..36.239.162.27][.7986] [Unknown][Unknown][Unrated]
idle: [...517] [ip4][..udp] [......10.0.2.15][28681] -> [..36.239.162.27][.7986]
not-detected: [...519] [ip4][..udp] [......10.0.2.15][28681] -> [...219.70.48.23][.8070] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...519] [ip4][..udp] [......10.0.2.15][28681] -> [...219.70.48.23][.8070]
not-detected: [...601] [ip4][..udp] [......10.0.2.15][28681] -> [113.255.200.161][65274] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...601] [ip4][..udp] [......10.0.2.15][28681] -> [113.255.200.161][65274]
idle: [...253] [ip4][..udp] [......10.0.2.15][28681] -> [.193.37.255.130][61616] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- not-detected: [...639] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.242.225][15068] [Unknown][Unknown][Unrated]
- idle: [...639] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.242.225][15068]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ not-detected: [...638] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.242.225][15068] [Unknown][Unknown][Unrated]
+ idle: [...638] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.242.225][15068]
not-detected: [...463] [ip4][..udp] [......10.0.2.15][28681] -> [..200.7.155.210][28365] [Unknown][Unknown][Unrated]
idle: [...463] [ip4][..udp] [......10.0.2.15][28681] -> [..200.7.155.210][28365]
- not-detected: [...727] [ip4][..udp] [......10.0.2.15][28681] -> [....1.171.82.65][50072] [Unknown][Unknown][Unrated]
- idle: [...727] [ip4][..udp] [......10.0.2.15][28681] -> [....1.171.82.65][50072]
+ not-detected: [...726] [ip4][..udp] [......10.0.2.15][28681] -> [....1.171.82.65][50072] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...726] [ip4][..udp] [......10.0.2.15][28681] -> [....1.171.82.65][50072]
not-detected: [...452] [ip4][..udp] [......10.0.2.15][28681] -> [..68.227.193.37][27481] [Unknown][Unknown][Unrated]
idle: [...452] [ip4][..udp] [......10.0.2.15][28681] -> [..68.227.193.37][27481]
- not-detected: [...609] [ip4][..udp] [......10.0.2.15][28681] -> [...1.163.14.246][23461] [Unknown][Unknown][Unrated]
- idle: [...609] [ip4][..udp] [......10.0.2.15][28681] -> [...1.163.14.246][23461]
- not-detected: [...737] [ip4][..udp] [......10.0.2.15][28681] -> [118.166.252.163][14391] [Unknown][Unknown][Unrated]
- idle: [...737] [ip4][..udp] [......10.0.2.15][28681] -> [118.166.252.163][14391]
+ not-detected: [...608] [ip4][..udp] [......10.0.2.15][28681] -> [...1.163.14.246][23461] [Unknown][Unknown][Unrated]
+ idle: [...608] [ip4][..udp] [......10.0.2.15][28681] -> [...1.163.14.246][23461]
+ not-detected: [...736] [ip4][..udp] [......10.0.2.15][28681] -> [118.166.252.163][14391] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...736] [ip4][..udp] [......10.0.2.15][28681] -> [118.166.252.163][14391]
not-detected: [...448] [ip4][..udp] [......10.0.2.15][28681] -> [116.241.162.162][15677] [Unknown][Unknown][Unrated]
idle: [...448] [ip4][..udp] [......10.0.2.15][28681] -> [116.241.162.162][15677]
not-detected: [...549] [ip4][..udp] [......10.0.2.15][28681] -> [..84.211.151.48][11105] [Unknown][Unknown][Unrated]
idle: [...549] [ip4][..udp] [......10.0.2.15][28681] -> [..84.211.151.48][11105]
not-detected: [...459] [ip4][..udp] [......10.0.2.15][28681] -> [...100.89.84.59][11603] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...459] [ip4][..udp] [......10.0.2.15][28681] -> [...100.89.84.59][11603]
- not-detected: [...626] [ip4][..udp] [......10.0.2.15][28681] -> [113.252.206.254][49737] [Unknown][Unknown][Unrated]
- idle: [...626] [ip4][..udp] [......10.0.2.15][28681] -> [113.252.206.254][49737]
+ not-detected: [...625] [ip4][..udp] [......10.0.2.15][28681] -> [113.252.206.254][49737] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...625] [ip4][..udp] [......10.0.2.15][28681] -> [113.252.206.254][49737]
not-detected: [...580] [ip4][..udp] [......10.0.2.15][28681] -> [...76.119.55.28][20347] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...580] [ip4][..udp] [......10.0.2.15][28681] -> [...76.119.55.28][20347]
idle: [...339] [ip4][..udp] [......10.0.2.15][28681] -> [..87.123.54.234][54130] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- not-detected: [...625] [ip4][..udp] [......10.0.2.15][28681] -> [.61.238.173.128][57492] [Unknown][Unknown][Unrated]
- idle: [...625] [ip4][..udp] [......10.0.2.15][28681] -> [.61.238.173.128][57492]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ not-detected: [...624] [ip4][..udp] [......10.0.2.15][28681] -> [.61.238.173.128][57492] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...624] [ip4][..udp] [......10.0.2.15][28681] -> [.61.238.173.128][57492]
not-detected: [...567] [ip4][..udp] [......10.0.2.15][28681] -> [...58.176.62.40][52889] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...567] [ip4][..udp] [......10.0.2.15][28681] -> [...58.176.62.40][52889]
- not-detected: [...685] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][54436] [Unknown][Unknown][Unrated]
- idle: [...685] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][54436]
- not-detected: [...744] [ip4][..udp] [......10.0.2.15][28681] -> [...27.94.154.53][.6346] [Unknown][Unknown][Unrated]
- idle: [...744] [ip4][..udp] [......10.0.2.15][28681] -> [...27.94.154.53][.6346]
+ not-detected: [...684] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][54436] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...684] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][54436]
+ not-detected: [...743] [ip4][..udp] [......10.0.2.15][28681] -> [...27.94.154.53][.6346] [Unknown][Unknown][Unrated]
+ idle: [...743] [ip4][..udp] [......10.0.2.15][28681] -> [...27.94.154.53][.6346]
idle: [...316] [ip4][..udp] [......10.0.2.15][28681] -> [....94.54.66.82][63637] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- not-detected: [...731] [ip4][..udp] [......10.0.2.15][28681] -> [124.217.188.105][62849] [Unknown][Unknown][Unrated]
- idle: [...731] [ip4][..udp] [......10.0.2.15][28681] -> [124.217.188.105][62849]
- not-detected: [...711] [ip4][..udp] [......10.0.2.15][28681] -> [113.254.140.225][63637] [Unknown][Unknown][Unrated]
- idle: [...711] [ip4][..udp] [......10.0.2.15][28681] -> [113.254.140.225][63637]
- not-detected: [...710] [ip4][..udp] [......10.0.2.15][28681] -> [.223.16.121.156][.3624] [Unknown][Unknown][Unrated]
- idle: [...710] [ip4][..udp] [......10.0.2.15][28681] -> [.223.16.121.156][.3624]
- not-detected: [...688] [ip4][..udp] [......10.0.2.15][28681] -> [..66.30.221.181][53454] [Unknown][Unknown][Unrated]
- idle: [...688] [ip4][..udp] [......10.0.2.15][28681] -> [..66.30.221.181][53454]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ not-detected: [...730] [ip4][..udp] [......10.0.2.15][28681] -> [124.217.188.105][62849] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...730] [ip4][..udp] [......10.0.2.15][28681] -> [124.217.188.105][62849]
+ not-detected: [...710] [ip4][..udp] [......10.0.2.15][28681] -> [113.254.140.225][63637] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...710] [ip4][..udp] [......10.0.2.15][28681] -> [113.254.140.225][63637]
+ not-detected: [...709] [ip4][..udp] [......10.0.2.15][28681] -> [.223.16.121.156][.3624] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...709] [ip4][..udp] [......10.0.2.15][28681] -> [.223.16.121.156][.3624]
+ not-detected: [...687] [ip4][..udp] [......10.0.2.15][28681] -> [..66.30.221.181][53454] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...687] [ip4][..udp] [......10.0.2.15][28681] -> [..66.30.221.181][53454]
not-detected: [...445] [ip4][..udp] [......10.0.2.15][28681] -> [118.165.153.100][.4509] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...445] [ip4][..udp] [......10.0.2.15][28681] -> [118.165.153.100][.4509]
idle: [...262] [ip4][..udp] [......10.0.2.15][28681] -> [....89.75.52.19][46010] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
not-detected: [...510] [ip4][..udp] [......10.0.2.15][28681] -> [...79.94.85.113][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...510] [ip4][..udp] [......10.0.2.15][28681] -> [...79.94.85.113][.6346]
- not-detected: [...653] [ip4][..udp] [......10.0.2.15][28681] -> [..94.139.21.182][50110] [Unknown][Unknown][Unrated]
- idle: [...653] [ip4][..udp] [......10.0.2.15][28681] -> [..94.139.21.182][50110]
+ not-detected: [...652] [ip4][..udp] [......10.0.2.15][28681] -> [..94.139.21.182][50110] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...652] [ip4][..udp] [......10.0.2.15][28681] -> [..94.139.21.182][50110]
not-detected: [...497] [ip4][..udp] [......10.0.2.15][28681] -> [..84.100.76.123][39628] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...497] [ip4][..udp] [......10.0.2.15][28681] -> [..84.100.76.123][39628]
not-detected: [...569] [ip4][..udp] [......10.0.2.15][28681] -> [....73.89.249.8][50649] [Unknown][Unknown][Unrated]
idle: [...569] [ip4][..udp] [......10.0.2.15][28681] -> [....73.89.249.8][50649]
not-detected: [...393] [ip4][..udp] [......10.0.2.15][28681] -> [.58.115.158.103][.5110] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...393] [ip4][..udp] [......10.0.2.15][28681] -> [.58.115.158.103][.5110]
not-detected: [...464] [ip4][..udp] [......10.0.2.15][28681] -> [...101.128.66.8][34512] [Unknown][Unknown][Unrated]
idle: [...464] [ip4][..udp] [......10.0.2.15][28681] -> [...101.128.66.8][34512]
not-detected: [...515] [ip4][..udp] [......10.0.2.15][28681] -> [220.137.106.173][11625] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...515] [ip4][..udp] [......10.0.2.15][28681] -> [220.137.106.173][11625]
not-detected: [...522] [ip4][..udp] [......10.0.2.15][28681] -> [119.247.152.218][51153] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...522] [ip4][..udp] [......10.0.2.15][28681] -> [119.247.152.218][51153]
not-detected: [...480] [ip4][..udp] [......10.0.2.15][28681] -> [..112.119.74.26][65498] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...480] [ip4][..udp] [......10.0.2.15][28681] -> [..112.119.74.26][65498]
not-detected: [...382] [ip4][..udp] [......10.0.2.15][28681] -> [..76.175.11.126][40958] [Unknown][Unknown][Unrated]
idle: [...382] [ip4][..udp] [......10.0.2.15][28681] -> [..76.175.11.126][40958]
not-detected: [...590] [ip4][..udp] [......10.0.2.15][28681] -> [...95.10.205.67][48380] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...590] [ip4][..udp] [......10.0.2.15][28681] -> [...95.10.205.67][48380]
- not-detected: [...462] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][47808] [Unknown][Unknown][Unrated]
+ guessed: [...462] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][47808] [BACnet][Unknown][IoT-Scada][Safe]
+ RISK: Unidirectional Traffic
idle: [...462] [ip4][..udp] [......10.0.2.15][28681] -> [..164.132.10.25][47808]
- not-detected: [...605] [ip4][..udp] [......10.0.2.15][28681] -> [180.149.125.139][.6578] [Unknown][Tor][Unrated]
+ not-detected: [...605] [ip4][..udp] [......10.0.2.15][28681] -> [180.149.125.139][.6578] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...605] [ip4][..udp] [......10.0.2.15][28681] -> [180.149.125.139][.6578]
- not-detected: [...690] [ip4][..udp] [......10.0.2.15][28681] -> [...1.65.217.224][.3688] [Unknown][Unknown][Unrated]
- idle: [...690] [ip4][..udp] [......10.0.2.15][28681] -> [...1.65.217.224][.3688]
- not-detected: [...665] [ip4][..udp] [......10.0.2.15][28681] -> [..1.172.183.237][.4983] [Unknown][Unknown][Unrated]
- idle: [...665] [ip4][..udp] [......10.0.2.15][28681] -> [..1.172.183.237][.4983]
- not-detected: [...709] [ip4][..udp] [......10.0.2.15][28681] -> [..124.244.68.65][51967] [Unknown][Unknown][Unrated]
- idle: [...709] [ip4][..udp] [......10.0.2.15][28681] -> [..124.244.68.65][51967]
- not-detected: [...656] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.2566] [Unknown][Unknown][Unrated]
- idle: [...656] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.2566]
- not-detected: [...729] [ip4][..udp] [......10.0.2.15][28681] -> [..112.10.134.44][19739] [Unknown][Unknown][Unrated]
- idle: [...729] [ip4][..udp] [......10.0.2.15][28681] -> [..112.10.134.44][19739]
+ not-detected: [...689] [ip4][..udp] [......10.0.2.15][28681] -> [...1.65.217.224][.3688] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...689] [ip4][..udp] [......10.0.2.15][28681] -> [...1.65.217.224][.3688]
+ not-detected: [...664] [ip4][..udp] [......10.0.2.15][28681] -> [..1.172.183.237][.4983] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...664] [ip4][..udp] [......10.0.2.15][28681] -> [..1.172.183.237][.4983]
+ not-detected: [...708] [ip4][..udp] [......10.0.2.15][28681] -> [..124.244.68.65][51967] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...708] [ip4][..udp] [......10.0.2.15][28681] -> [..124.244.68.65][51967]
+ not-detected: [...655] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.2566] [Unknown][Unknown][Unrated]
+ idle: [...655] [ip4][..udp] [......10.0.2.15][28681] -> [.119.237.116.22][.2566]
+ not-detected: [...728] [ip4][..udp] [......10.0.2.15][28681] -> [..112.10.134.44][19739] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...728] [ip4][..udp] [......10.0.2.15][28681] -> [..112.10.134.44][19739]
not-detected: [...548] [ip4][..udp] [......10.0.2.15][28681] -> [..74.50.147.205][17735] [Unknown][Unknown][Unrated]
idle: [...548] [ip4][..udp] [......10.0.2.15][28681] -> [..74.50.147.205][17735]
- not-detected: [...633] [ip4][..udp] [......10.0.2.15][28681] -> [...188.149.2.44][20964] [Unknown][Unknown][Unrated]
- idle: [...633] [ip4][..udp] [......10.0.2.15][28681] -> [...188.149.2.44][20964]
+ not-detected: [...632] [ip4][..udp] [......10.0.2.15][28681] -> [...188.149.2.44][20964] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...632] [ip4][..udp] [......10.0.2.15][28681] -> [...188.149.2.44][20964]
not-detected: [...475] [ip4][..udp] [......10.0.2.15][28681] -> [..188.61.52.183][63978] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...475] [ip4][..udp] [......10.0.2.15][28681] -> [..188.61.52.183][63978]
not-detected: [...473] [ip4][..udp] [......10.0.2.15][28681] -> [.142.132.165.13][33564] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...473] [ip4][..udp] [......10.0.2.15][28681] -> [.142.132.165.13][33564]
not-detected: [...575] [ip4][..udp] [......10.0.2.15][28681] -> [.123.202.31.113][19768] [Unknown][Unknown][Unrated]
idle: [...575] [ip4][..udp] [......10.0.2.15][28681] -> [.123.202.31.113][19768]
not-detected: [...588] [ip4][..udp] [......10.0.2.15][28681] -> [.219.70.175.103][.4315] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...588] [ip4][..udp] [......10.0.2.15][28681] -> [.219.70.175.103][.4315]
not-detected: [...379] [ip4][..udp] [......10.0.2.15][28681] -> [..80.140.63.147][29545] [Unknown][Unknown][Unrated]
idle: [...379] [ip4][..udp] [......10.0.2.15][28681] -> [..80.140.63.147][29545]
idle: [...367] [ip4][..udp] [......10.0.2.15][28681] -> [.149.28.163.175][49956] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- not-detected: [...720] [ip4][..udp] [......10.0.2.15][28681] -> [...219.85.11.85][10722] [Unknown][Unknown][Unrated]
- idle: [...720] [ip4][..udp] [......10.0.2.15][28681] -> [...219.85.11.85][10722]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ not-detected: [...719] [ip4][..udp] [......10.0.2.15][28681] -> [...219.85.11.85][10722] [Unknown][Unknown][Unrated]
+ idle: [...719] [ip4][..udp] [......10.0.2.15][28681] -> [...219.85.11.85][10722]
not-detected: [...442] [ip4][..udp] [......10.0.2.15][28681] -> [..89.204.130.55][29545] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...442] [ip4][..udp] [......10.0.2.15][28681] -> [..89.204.130.55][29545]
- not-detected: [...631] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][.3931] [Unknown][Unknown][Unrated]
- idle: [...631] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][.3931]
+ not-detected: [...630] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][.3931] [Unknown][Unknown][Unrated]
+ idle: [...630] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][.3931]
not-detected: [...565] [ip4][..udp] [......10.0.2.15][28681] -> [...114.45.40.28][.2656] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...565] [ip4][..udp] [......10.0.2.15][28681] -> [...114.45.40.28][.2656]
not-detected: [...523] [ip4][..udp] [......10.0.2.15][28681] -> [..1.162.138.200][24018] [Unknown][Unknown][Unrated]
idle: [...523] [ip4][..udp] [......10.0.2.15][28681] -> [..1.162.138.200][24018]
- not-detected: [...694] [ip4][..udp] [......10.0.2.15][28681] -> [.98.215.130.156][12405] [Unknown][Unknown][Unrated]
- idle: [...694] [ip4][..udp] [......10.0.2.15][28681] -> [.98.215.130.156][12405]
- update: [...134] [ip4][..udp] [......10.0.2.15][28681] -> [...78.231.73.14][.6346]
- update: [...128] [ip4][..udp] [......10.0.2.15][28681] -> [..77.141.219.27][37580]
- update: [...114] [ip4][..udp] [......10.0.2.15][28681] -> [....86.23.75.69][.6346]
- update: [....88] [ip4][..udp] [......10.0.2.15][28681] -> [.....81.50.24.2][17874]
- update: [.....8] [ip4][....2] [......10.0.2.15] -> [.....224.0.0.22] [IGMP][Unknown][Network][Acceptable]
- update: [...118] [ip4][..udp] [......10.0.2.15][28681] -> [...5.180.62.100][46385]
- update: [...117] [ip4][..udp] [......10.0.2.15][28681] -> [200.120.243.143][.6346]
- update: [....98] [ip4][..udp] [......10.0.2.15][28681] -> [.203.222.14.170][23332]
- update: [...111] [ip4][..udp] [......10.0.2.15][28681] -> [..90.65.141.157][.6346]
- update: [...139] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.226.142][.6346]
- update: [...141] [ip4][..udp] [......10.0.2.15][28681] -> [..172.97.199.14][.6346]
- update: [...126] [ip4][..udp] [......10.0.2.15][28681] -> [..91.69.159.133][28000]
- update: [....85] [ip4][..udp] [......10.0.2.15][28681] -> [..85.138.20.110][.6346]
- update: [...135] [ip4][..udp] [......10.0.2.15][28681] -> [.193.250.99.158][.6346]
- update: [...116] [ip4][..udp] [......10.0.2.15][28681] -> [.124.44.190.145][10170]
- update: [...133] [ip4][..udp] [......10.0.2.15][28681] -> [.91.175.220.161][15721]
- update: [...124] [ip4][..udp] [......10.0.2.15][28681] -> [...170.254.19.6][24180]
- update: [...130] [ip4][..udp] [......10.0.2.15][28681] -> [..119.224.95.97][46356]
- update: [...129] [ip4][..udp] [......10.0.2.15][28681] -> [.176.138.50.179][29411]
- update: [...755] [ip4][..udp] [......10.0.2.15][28681] -> [..83.134.107.32][38836]
- update: [...137] [ip4][..udp] [......10.0.2.15][28681] -> [...82.65.70.197][21693]
- update: [...109] [ip4][..udp] [......10.0.2.15][28681] -> [...88.169.2.153][52414]
- update: [...140] [ip4][..udp] [......10.0.2.15][28681] -> [.77.197.111.186][.6346]
- update: [...756] [ip4][..udp] [......10.0.2.15][28681] -> [..41.100.68.255][12838]
- update: [....87] [ip4][..udp] [......10.0.2.15][28681] -> [..92.131.85.245][31743]
- update: [...138] [ip4][..udp] [......10.0.2.15][28681] -> [167.114.170.156][23844]
+ not-detected: [...693] [ip4][..udp] [......10.0.2.15][28681] -> [.98.215.130.156][12405] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...693] [ip4][..udp] [......10.0.2.15][28681] -> [.98.215.130.156][12405]
update: [...544] [ip4][..udp] [......10.0.2.15][28681] -> [..111.184.29.35][30582]
+ update: [...750] [ip4][..udp] [......10.0.2.15][28681] -> [....67.193.8.52][38584]
update: [...533] [ip4][..udp] [......10.0.2.15][28681] -> [..36.229.185.60][.6898]
+ update: [...752] [ip4][..udp] [......10.0.2.15][28681] -> [...78.231.73.14][.6346]
+ update: [...128] [ip4][..udp] [......10.0.2.15][28681] -> [..77.141.219.27][37580]
update: [...166] [ip4][..udp] [......10.0.2.15][28681] -> [..90.59.253.186][15555]
+ update: [...114] [ip4][..udp] [......10.0.2.15][28681] -> [....86.23.75.69][.6346]
update: [...183] [ip4][..udp] [......10.0.2.15][28681] -> [..91.172.15.182][37829]
update: [...184] [ip4][..udp] [......10.0.2.15][28681] -> [..86.239.62.213][.6346]
+ update: [....88] [ip4][..udp] [......10.0.2.15][28681] -> [.....81.50.24.2][17874]
update: [...553] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3259]
update: [...352] [ip4][..udp] [......10.0.2.15][28681] -> [.176.191.49.159][.6346]
update: [...195] [ip4][..udp] [......10.0.2.15][28681] -> [.177.231.151.16][.6346]
update: [...219] [ip4][..udp] [......10.0.2.15][28681] -> [...76.30.86.144][53821]
+ update: [.....8] [ip4][....2] [......10.0.2.15] -> [.....224.0.0.22] [IGMP][Unknown][Network][Acceptable]
update: [...546] [ip4][..udp] [......10.0.2.15][28681] -> [.38.142.119.234][49867]
update: [...531] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][51497]
update: [...534] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54436]
update: [...760] [ip4][..udp] [......10.0.2.15][..138] -> [.....10.0.2.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
+ update: [...118] [ip4][..udp] [......10.0.2.15][28681] -> [...5.180.62.100][46385]
update: [...562] [ip4][..udp] [......10.0.2.15][28681] -> [112.119.242.110][59879]
+ update: [...117] [ip4][..udp] [......10.0.2.15][28681] -> [200.120.243.143][.6346]
update: [...542] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][51675]
update: [...191] [ip4][..udp] [......10.0.2.15][28681] -> [.190.153.143.54][65535]
update: [...172] [ip4][..udp] [......10.0.2.15][28681] -> [..87.69.142.133][15471]
+ update: [...748] [ip4][..udp] [......10.0.2.15][28681] -> [.....92.8.59.80][35192]
+ update: [....98] [ip4][..udp] [......10.0.2.15][28681] -> [.203.222.14.170][23332]
update: [...551] [ip4][..udp] [......10.0.2.15][28681] -> [..92.24.129.230][14766]
update: [...555] [ip4][..udp] [......10.0.2.15][28681] -> [..124.218.26.16][20387]
+ update: [...111] [ip4][..udp] [......10.0.2.15][28681] -> [..90.65.141.157][.6346]
update: [...573] [ip4][..udp] [......10.0.2.15][28681] -> [..71.239.173.18][23327]
update: [...187] [ip4][..udp] [......10.0.2.15][28681] -> [....92.88.92.56][21009]
+ update: [...139] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.226.142][.6346]
update: [...190] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.195.227][.6346]
+ update: [...141] [ip4][..udp] [......10.0.2.15][28681] -> [..172.97.199.14][.6346]
update: [...538] [ip4][..udp] [......10.0.2.15][28681] -> [.124.218.41.253][14339]
+ update: [...751] [ip4][..udp] [......10.0.2.15][28681] -> [142.115.218.152][.5900]
update: [...536] [ip4][..udp] [......10.0.2.15][28681] -> [118.167.222.160][56121]
update: [...558] [ip4][..udp] [......10.0.2.15][28681] -> [...112.105.52.2][.6466]
update: [...556] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49787]
+ update: [...126] [ip4][..udp] [......10.0.2.15][28681] -> [..91.69.159.133][28000]
update: [...560] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][53883]
update: [...503] [ip4][..udp] [......10.0.2.15][28681] -> [..74.210.244.72][.6346]
+ update: [....85] [ip4][..udp] [......10.0.2.15][28681] -> [..85.138.20.110][.6346]
update: [...180] [ip4][..udp] [......10.0.2.15][28681] -> [...66.131.24.72][30711]
+ update: [...135] [ip4][..udp] [......10.0.2.15][28681] -> [.193.250.99.158][.6346]
update: [...559] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][55080]
update: [...764] [ip4][..udp] [......10.0.2.15][28681] -> [.208.92.106.151][32476]
update: [...529] [ip4][..udp] [......10.0.2.15][28681] -> [116.241.162.162][57929]
update: [...539] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][.7510]
update: [...545] [ip4][..udp] [......10.0.2.15][28681] -> [..116.49.159.77][55915]
update: [...156] [ip4][..udp] [......10.0.2.15][28681] -> [..86.244.228.86][10131]
+ update: [...749] [ip4][..udp] [......10.0.2.15][28681] -> [...78.159.27.22][17563]
update: [...176] [ip4][..udp] [......10.0.2.15][28681] -> [....41.99.164.4][.6346]
- update: [...664] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6594]
+ update: [...663] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6594]
update: [...157] [ip4][..udp] [......10.0.2.15][28681] -> [.86.227.162.150][.6346]
update: [...209] [ip4][..udp] [......10.0.2.15][28681] -> [..91.179.98.234][.6346]
+ update: [...116] [ip4][..udp] [......10.0.2.15][28681] -> [.124.44.190.145][10170]
update: [...159] [ip4][..udp] [......10.0.2.15][28681] -> [176.163.231.160][.6346]
update: [...554] [ip4][..udp] [......10.0.2.15][28681] -> [.123.203.72.224][55577]
update: [...528] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][58442]
+ update: [...133] [ip4][..udp] [......10.0.2.15][28681] -> [.91.175.220.161][15721]
update: [...537] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.2034]
+ update: [...753] [ip4][..udp] [......10.0.2.15][28681] -> [..165.84.140.96][14400]
update: [...167] [ip4][..udp] [......10.0.2.15][28681] -> [..93.29.107.176][20363]
update: [...171] [ip4][..udp] [......10.0.2.15][28681] -> [196.217.132.111][25394]
update: [...535] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10655]
update: [...160] [ip4][..udp] [......10.0.2.15][28681] -> [...83.150.49.35][32448]
+ update: [...124] [ip4][..udp] [......10.0.2.15][28681] -> [...170.254.19.6][24180]
update: [...532] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10677]
- update: [...696] [ip4][..udp] [......10.0.2.15][28681] -> [..76.189.72.230][.8161]
+ update: [...695] [ip4][..udp] [......10.0.2.15][28681] -> [..76.189.72.230][.8161]
update: [...185] [ip4][..udp] [......10.0.2.15][28681] -> [.109.132.196.58][.6346]
update: [...762] [ip4][..udp] [......10.0.2.15][28681] -> [...86.75.43.182][43502]
update: [...552] [ip4][..udp] [......10.0.2.15][28681] -> [...218.250.6.59][60012]
+ update: [...130] [ip4][..udp] [......10.0.2.15][28681] -> [..119.224.95.97][46356]
+ update: [...129] [ip4][..udp] [......10.0.2.15][28681] -> [.176.138.50.179][29411]
update: [...543] [ip4][..udp] [......10.0.2.15][28681] -> [..114.39.159.60][56896]
update: [...161] [ip4][..udp] [......10.0.2.15][28681] -> [..213.120.26.86][29946]
update: [...557] [ip4][..udp] [......10.0.2.15][28681] -> [..61.222.160.99][53163]
+ update: [...755] [ip4][..udp] [......10.0.2.15][28681] -> [..83.134.107.32][38836]
+ update: [...137] [ip4][..udp] [......10.0.2.15][28681] -> [...82.65.70.197][21693]
+ update: [...109] [ip4][..udp] [......10.0.2.15][28681] -> [...88.169.2.153][52414]
+ update: [...140] [ip4][..udp] [......10.0.2.15][28681] -> [.77.197.111.186][.6346]
update: [...175] [ip4][..udp] [......10.0.2.15][28681] -> [...115.69.62.99][.6346]
+ update: [...756] [ip4][..udp] [......10.0.2.15][28681] -> [..41.100.68.255][12838]
update: [...200] [ip4][..udp] [......10.0.2.15][28681] -> [.138.199.16.123][52993]
update: [...561] [ip4][..udp] [......10.0.2.15][28681] -> [.61.238.173.128][57466]
update: [...763] [ip4][..udp] [......10.0.2.15][28681] -> [.85.170.209.214][46210]
@@ -5003,8 +5349,10 @@
update: [...547] [ip4][..udp] [......10.0.2.15][28681] -> [213.229.111.224][43316]
update: [...530] [ip4][..udp] [......10.0.2.15][28681] -> [118.167.248.220][59304]
update: [...158] [ip4][..udp] [......10.0.2.15][28681] -> [.118.166.226.70][.6346]
+ update: [....87] [ip4][..udp] [......10.0.2.15][28681] -> [..92.131.85.245][31743]
update: [...761] [ip4][..udp] [......10.0.2.15][28681] -> [..195.132.75.56][56009]
update: [...540] [ip4][..udp] [......10.0.2.15][28681] -> [..36.236.203.37][52131]
+ update: [...138] [ip4][..udp] [......10.0.2.15][28681] -> [167.114.170.156][23844]
new: [...765] [ip4][..udp] [......10.0.2.15][28681] -> [213.229.111.224][.4876]
new: [...766] [ip4][..udp] [......10.0.2.15][28681] -> [...76.119.55.28][20347]
new: [...767] [ip4][..udp] [......10.0.2.15][28681] -> [....45.65.87.24][16201]
@@ -5025,130 +5373,195 @@
new: [...782] [ip4][..udp] [......10.0.2.15][28681] -> [.65.182.231.232][.7890]
new: [...783] [ip4][.icmp] [.65.182.231.232] -> [......10.0.2.15]
detected: [...783] [ip4][.icmp] [.65.182.231.232] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...784] [ip4][..udp] [......10.0.2.15][28681] -> [..23.19.141.110][.6346]
- new: [...785] [ip4][..udp] [......10.0.2.15][28681] -> [.176.134.139.39][.6346]
- new: [...786] [ip4][..udp] [......10.0.2.15][28681] -> [....114.38.9.82][24223]
- new: [...787] [ip4][..udp] [......10.0.2.15][28681] -> [220.133.122.217][23458]
- new: [...788] [ip4][..udp] [......10.0.2.15][28681] -> [.220.134.167.82][.5820]
- new: [...789] [ip4][..udp] [......10.0.2.15][28681] -> [..42.98.115.128][23458]
- new: [...790] [ip4][..udp] [......10.0.2.15][28681] -> [.218.164.39.233][20855]
- new: [...791] [ip4][..udp] [......10.0.2.15][28681] -> [...219.85.11.85][10722]
- new: [...792] [ip4][..udp] [......10.0.2.15][28681] -> [.36.239.213.146][21750]
- new: [...793] [ip4][..udp] [......10.0.2.15][28681] -> [123.205.126.102][.5193]
not-detected: [....88] [ip4][..udp] [......10.0.2.15][28681] -> [.....81.50.24.2][17874] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....88] [ip4][..udp] [......10.0.2.15][28681] -> [.....81.50.24.2][17874]
not-detected: [...159] [ip4][..udp] [......10.0.2.15][28681] -> [176.163.231.160][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...159] [ip4][..udp] [......10.0.2.15][28681] -> [176.163.231.160][.6346]
- not-detected: [...753] [ip4][..udp] [......10.0.2.15][28681] -> [..165.84.140.96][14400] [Unknown][Unknown][Unrated]
- idle: [...753] [ip4][..udp] [......10.0.2.15][28681] -> [..165.84.140.96][14400]
not-detected: [...124] [ip4][..udp] [......10.0.2.15][28681] -> [...170.254.19.6][24180] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...124] [ip4][..udp] [......10.0.2.15][28681] -> [...170.254.19.6][24180]
not-detected: [...161] [ip4][..udp] [......10.0.2.15][28681] -> [..213.120.26.86][29946] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...161] [ip4][..udp] [......10.0.2.15][28681] -> [..213.120.26.86][29946]
update: [...259] [ip4][..udp] [......10.0.2.15][28681] -> [103.232.107.100][43508] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...757] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][53258] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...485] [ip4][..udp] [......10.0.2.15][28681] -> [...154.3.42.209][.6346]
+ update: [...486] [ip4][..udp] [......10.0.2.15][28681] -> [...88.68.45.203][.6346]
update: [...383] [ip4][..udp] [......10.0.2.15][28681] -> [...84.71.243.60][34498]
+ update: [...400] [ip4][..udp] [......10.0.2.15][28681] -> [..129.45.47.167][.6346]
update: [...312] [ip4][..udp] [......10.0.2.15][28681] -> [..24.167.201.53][47282] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ new: [...785] [ip4][..udp] [......10.0.2.15][28681] -> [.176.134.139.39][.6346]
+ new: [...786] [ip4][..udp] [......10.0.2.15][28681] -> [....114.38.9.82][24223]
+ new: [...787] [ip4][..udp] [......10.0.2.15][28681] -> [220.133.122.217][23458]
+ new: [...788] [ip4][..udp] [......10.0.2.15][28681] -> [.220.134.167.82][.5820]
+ new: [...789] [ip4][..udp] [......10.0.2.15][28681] -> [..42.98.115.128][23458]
+ new: [...790] [ip4][..udp] [......10.0.2.15][28681] -> [.218.164.39.233][20855]
+ new: [...791] [ip4][..udp] [......10.0.2.15][28681] -> [...219.85.11.85][10722]
+ new: [...792] [ip4][..udp] [......10.0.2.15][28681] -> [.36.239.213.146][21750]
+ new: [...793] [ip4][..udp] [......10.0.2.15][28681] -> [123.205.126.102][.5193]
not-detected: [...544] [ip4][..udp] [......10.0.2.15][28681] -> [..111.184.29.35][30582] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...544] [ip4][..udp] [......10.0.2.15][28681] -> [..111.184.29.35][30582]
not-detected: [...533] [ip4][..udp] [......10.0.2.15][28681] -> [..36.229.185.60][.6898] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...533] [ip4][..udp] [......10.0.2.15][28681] -> [..36.229.185.60][.6898]
not-detected: [...553] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3259] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...553] [ip4][..udp] [......10.0.2.15][28681] -> [182.155.128.228][.3259]
not-detected: [...546] [ip4][..udp] [......10.0.2.15][28681] -> [.38.142.119.234][49867] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...546] [ip4][..udp] [......10.0.2.15][28681] -> [.38.142.119.234][49867]
not-detected: [...531] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][51497] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...531] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][51497]
not-detected: [...534] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54436] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...534] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][54436]
not-detected: [...562] [ip4][..udp] [......10.0.2.15][28681] -> [112.119.242.110][59879] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...562] [ip4][..udp] [......10.0.2.15][28681] -> [112.119.242.110][59879]
not-detected: [...542] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][51675] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...542] [ip4][..udp] [......10.0.2.15][28681] -> [..218.103.139.2][51675]
not-detected: [...551] [ip4][..udp] [......10.0.2.15][28681] -> [..92.24.129.230][14766] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...551] [ip4][..udp] [......10.0.2.15][28681] -> [..92.24.129.230][14766]
not-detected: [...555] [ip4][..udp] [......10.0.2.15][28681] -> [..124.218.26.16][20387] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...555] [ip4][..udp] [......10.0.2.15][28681] -> [..124.218.26.16][20387]
idle: [...259] [ip4][..udp] [......10.0.2.15][28681] -> [103.232.107.100][43508] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
not-detected: [...538] [ip4][..udp] [......10.0.2.15][28681] -> [.124.218.41.253][14339] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...538] [ip4][..udp] [......10.0.2.15][28681] -> [.124.218.41.253][14339]
not-detected: [...536] [ip4][..udp] [......10.0.2.15][28681] -> [118.167.222.160][56121] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...536] [ip4][..udp] [......10.0.2.15][28681] -> [118.167.222.160][56121]
not-detected: [...558] [ip4][..udp] [......10.0.2.15][28681] -> [...112.105.52.2][.6466] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...558] [ip4][..udp] [......10.0.2.15][28681] -> [...112.105.52.2][.6466]
not-detected: [...556] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49787] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...556] [ip4][..udp] [......10.0.2.15][28681] -> [...59.104.173.5][49787]
not-detected: [...560] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][53883] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...560] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][53883]
not-detected: [...559] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][55080] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...559] [ip4][..udp] [......10.0.2.15][28681] -> [.113.252.86.162][55080]
not-detected: [...529] [ip4][..udp] [......10.0.2.15][28681] -> [116.241.162.162][57929] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...529] [ip4][..udp] [......10.0.2.15][28681] -> [116.241.162.162][57929]
not-detected: [...539] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][.7510] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...539] [ip4][..udp] [......10.0.2.15][28681] -> [.119.14.143.237][.7510]
not-detected: [...545] [ip4][..udp] [......10.0.2.15][28681] -> [..116.49.159.77][55915] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...545] [ip4][..udp] [......10.0.2.15][28681] -> [..116.49.159.77][55915]
- not-detected: [...664] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6594] [Unknown][Unknown][Unrated]
- idle: [...664] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6594]
+ not-detected: [...663] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6594] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...663] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.163][.6594]
not-detected: [...554] [ip4][..udp] [......10.0.2.15][28681] -> [.123.203.72.224][55577] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...554] [ip4][..udp] [......10.0.2.15][28681] -> [.123.203.72.224][55577]
not-detected: [...528] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][58442] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...528] [ip4][..udp] [......10.0.2.15][28681] -> [..118.168.15.71][58442]
not-detected: [...537] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.2034] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...537] [ip4][..udp] [......10.0.2.15][28681] -> [218.164.200.235][.2034]
+ not-detected: [...753] [ip4][..udp] [......10.0.2.15][28681] -> [..165.84.140.96][14400] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...753] [ip4][..udp] [......10.0.2.15][28681] -> [..165.84.140.96][14400]
not-detected: [...535] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10655] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...535] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10655]
not-detected: [...532] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10677] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...532] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][10677]
- not-detected: [...696] [ip4][..udp] [......10.0.2.15][28681] -> [..76.189.72.230][.8161] [Unknown][Unknown][Unrated]
- idle: [...696] [ip4][..udp] [......10.0.2.15][28681] -> [..76.189.72.230][.8161]
+ not-detected: [...695] [ip4][..udp] [......10.0.2.15][28681] -> [..76.189.72.230][.8161] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...695] [ip4][..udp] [......10.0.2.15][28681] -> [..76.189.72.230][.8161]
not-detected: [...552] [ip4][..udp] [......10.0.2.15][28681] -> [...218.250.6.59][60012] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...552] [ip4][..udp] [......10.0.2.15][28681] -> [...218.250.6.59][60012]
not-detected: [...543] [ip4][..udp] [......10.0.2.15][28681] -> [..114.39.159.60][56896] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...543] [ip4][..udp] [......10.0.2.15][28681] -> [..114.39.159.60][56896]
not-detected: [...557] [ip4][..udp] [......10.0.2.15][28681] -> [..61.222.160.99][53163] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...557] [ip4][..udp] [......10.0.2.15][28681] -> [..61.222.160.99][53163]
not-detected: [...561] [ip4][..udp] [......10.0.2.15][28681] -> [.61.238.173.128][57466] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...561] [ip4][..udp] [......10.0.2.15][28681] -> [.61.238.173.128][57466]
not-detected: [...541] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][11141] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...541] [ip4][..udp] [......10.0.2.15][28681] -> [...114.27.24.95][11141]
not-detected: [...547] [ip4][..udp] [......10.0.2.15][28681] -> [213.229.111.224][43316] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...547] [ip4][..udp] [......10.0.2.15][28681] -> [213.229.111.224][43316]
not-detected: [...530] [ip4][..udp] [......10.0.2.15][28681] -> [118.167.248.220][59304] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...530] [ip4][..udp] [......10.0.2.15][28681] -> [118.167.248.220][59304]
not-detected: [...540] [ip4][..udp] [......10.0.2.15][28681] -> [..36.236.203.37][52131] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...540] [ip4][..udp] [......10.0.2.15][28681] -> [..36.236.203.37][52131]
update: [...754] [ip4][..udp] [......10.0.2.15][28681] -> [..84.125.218.84][17561]
update: [...759] [ip4][..udp] [......10.0.2.15][28681] -> [104.238.172.250][23548] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...758] [ip4][..udp] [......10.0.2.15][50213] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
- update: [...485] [ip4][..udp] [......10.0.2.15][28681] -> [...154.3.42.209][.6346]
- update: [...486] [ip4][..udp] [......10.0.2.15][28681] -> [...88.68.45.203][.6346]
- update: [...400] [ip4][..udp] [......10.0.2.15][28681] -> [..129.45.47.167][.6346]
- update: [...751] [ip4][..udp] [......10.0.2.15][28681] -> [....67.193.8.52][38584]
- update: [...749] [ip4][..udp] [......10.0.2.15][28681] -> [.....92.8.59.80][35192]
- update: [...752] [ip4][..udp] [......10.0.2.15][28681] -> [142.115.218.152][.5900]
- update: [...750] [ip4][..udp] [......10.0.2.15][28681] -> [...78.159.27.22][17563]
+ update: [...757] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][53258] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...794] [ip4][..udp] [......10.0.2.15][50214] -> [239.255.255.250][.1900]
detected: [...794] [ip4][..udp] [......10.0.2.15][50214] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
- update: [...134] [ip4][..udp] [......10.0.2.15][28681] -> [...78.231.73.14][.6346]
+ update: [...750] [ip4][..udp] [......10.0.2.15][28681] -> [....67.193.8.52][38584]
+ update: [...752] [ip4][..udp] [......10.0.2.15][28681] -> [...78.231.73.14][.6346]
update: [...128] [ip4][..udp] [......10.0.2.15][28681] -> [..77.141.219.27][37580]
+ update: [...166] [ip4][..udp] [......10.0.2.15][28681] -> [..90.59.253.186][15555]
update: [...114] [ip4][..udp] [......10.0.2.15][28681] -> [....86.23.75.69][.6346]
+ update: [...183] [ip4][..udp] [......10.0.2.15][28681] -> [..91.172.15.182][37829]
+ update: [...184] [ip4][..udp] [......10.0.2.15][28681] -> [..86.239.62.213][.6346]
+ update: [...352] [ip4][..udp] [......10.0.2.15][28681] -> [.176.191.49.159][.6346]
+ update: [...195] [ip4][..udp] [......10.0.2.15][28681] -> [.177.231.151.16][.6346]
+ update: [...219] [ip4][..udp] [......10.0.2.15][28681] -> [...76.30.86.144][53821]
+ update: [...760] [ip4][..udp] [......10.0.2.15][..138] -> [.....10.0.2.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
+ RISK: Unsafe Protocol
update: [...118] [ip4][..udp] [......10.0.2.15][28681] -> [...5.180.62.100][46385]
update: [...117] [ip4][..udp] [......10.0.2.15][28681] -> [200.120.243.143][.6346]
+ update: [...191] [ip4][..udp] [......10.0.2.15][28681] -> [.190.153.143.54][65535]
+ update: [...172] [ip4][..udp] [......10.0.2.15][28681] -> [..87.69.142.133][15471]
+ update: [...748] [ip4][..udp] [......10.0.2.15][28681] -> [.....92.8.59.80][35192]
update: [....98] [ip4][..udp] [......10.0.2.15][28681] -> [.203.222.14.170][23332]
update: [...111] [ip4][..udp] [......10.0.2.15][28681] -> [..90.65.141.157][.6346]
+ update: [...573] [ip4][..udp] [......10.0.2.15][28681] -> [..71.239.173.18][23327]
+ update: [...187] [ip4][..udp] [......10.0.2.15][28681] -> [....92.88.92.56][21009]
update: [...139] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.226.142][.6346]
+ update: [...190] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.195.227][.6346]
update: [...141] [ip4][..udp] [......10.0.2.15][28681] -> [..172.97.199.14][.6346]
+ update: [...751] [ip4][..udp] [......10.0.2.15][28681] -> [142.115.218.152][.5900]
update: [...126] [ip4][..udp] [......10.0.2.15][28681] -> [..91.69.159.133][28000]
+ update: [...503] [ip4][..udp] [......10.0.2.15][28681] -> [..74.210.244.72][.6346]
update: [....85] [ip4][..udp] [......10.0.2.15][28681] -> [..85.138.20.110][.6346]
+ update: [...180] [ip4][..udp] [......10.0.2.15][28681] -> [...66.131.24.72][30711]
update: [...135] [ip4][..udp] [......10.0.2.15][28681] -> [.193.250.99.158][.6346]
+ update: [...764] [ip4][..udp] [......10.0.2.15][28681] -> [.208.92.106.151][32476]
+ update: [...156] [ip4][..udp] [......10.0.2.15][28681] -> [..86.244.228.86][10131]
+ update: [...749] [ip4][..udp] [......10.0.2.15][28681] -> [...78.159.27.22][17563]
+ update: [...176] [ip4][..udp] [......10.0.2.15][28681] -> [....41.99.164.4][.6346]
+ update: [...157] [ip4][..udp] [......10.0.2.15][28681] -> [.86.227.162.150][.6346]
+ update: [...209] [ip4][..udp] [......10.0.2.15][28681] -> [..91.179.98.234][.6346]
update: [...116] [ip4][..udp] [......10.0.2.15][28681] -> [.124.44.190.145][10170]
update: [...133] [ip4][..udp] [......10.0.2.15][28681] -> [.91.175.220.161][15721]
+ update: [...167] [ip4][..udp] [......10.0.2.15][28681] -> [..93.29.107.176][20363]
+ update: [...171] [ip4][..udp] [......10.0.2.15][28681] -> [196.217.132.111][25394]
+ update: [...160] [ip4][..udp] [......10.0.2.15][28681] -> [...83.150.49.35][32448]
+ update: [...185] [ip4][..udp] [......10.0.2.15][28681] -> [.109.132.196.58][.6346]
+ update: [...762] [ip4][..udp] [......10.0.2.15][28681] -> [...86.75.43.182][43502]
update: [...130] [ip4][..udp] [......10.0.2.15][28681] -> [..119.224.95.97][46356]
update: [...129] [ip4][..udp] [......10.0.2.15][28681] -> [.176.138.50.179][29411]
update: [...755] [ip4][..udp] [......10.0.2.15][28681] -> [..83.134.107.32][38836]
@@ -5156,132 +5569,107 @@
update: [...109] [ip4][..udp] [......10.0.2.15][28681] -> [...88.169.2.153][52414]
update: [...140] [ip4][..udp] [......10.0.2.15][28681] -> [.77.197.111.186][.6346]
update: [...783] [ip4][.icmp] [.65.182.231.232] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
+ update: [...175] [ip4][..udp] [......10.0.2.15][28681] -> [...115.69.62.99][.6346]
update: [...756] [ip4][..udp] [......10.0.2.15][28681] -> [..41.100.68.255][12838]
+ update: [...200] [ip4][..udp] [......10.0.2.15][28681] -> [.138.199.16.123][52993]
+ update: [...763] [ip4][..udp] [......10.0.2.15][28681] -> [.85.170.209.214][46210]
+ update: [...158] [ip4][..udp] [......10.0.2.15][28681] -> [.118.166.226.70][.6346]
update: [....87] [ip4][..udp] [......10.0.2.15][28681] -> [..92.131.85.245][31743]
+ update: [...761] [ip4][..udp] [......10.0.2.15][28681] -> [..195.132.75.56][56009]
update: [...138] [ip4][..udp] [......10.0.2.15][28681] -> [167.114.170.156][23844]
not-detected: [...754] [ip4][..udp] [......10.0.2.15][28681] -> [..84.125.218.84][17561] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...754] [ip4][..udp] [......10.0.2.15][28681] -> [..84.125.218.84][17561]
not-detected: [....98] [ip4][..udp] [......10.0.2.15][28681] -> [.203.222.14.170][23332] [Unknown][Unknown][Unrated]
idle: [....98] [ip4][..udp] [......10.0.2.15][28681] -> [.203.222.14.170][23332]
not-detected: [...573] [ip4][..udp] [......10.0.2.15][28681] -> [..71.239.173.18][23327] [Unknown][Unknown][Unrated]
idle: [...573] [ip4][..udp] [......10.0.2.15][28681] -> [..71.239.173.18][23327]
- update: [...166] [ip4][..udp] [......10.0.2.15][28681] -> [..90.59.253.186][15555]
+ not-detected: [...383] [ip4][..udp] [......10.0.2.15][28681] -> [...84.71.243.60][34498] [Unknown][Unknown][Unrated]
+ idle: [...383] [ip4][..udp] [......10.0.2.15][28681] -> [...84.71.243.60][34498]
update: [...777] [ip4][..udp] [......10.0.2.15][28681] -> [.124.244.211.43][23459]
- update: [...183] [ip4][..udp] [......10.0.2.15][28681] -> [..91.172.15.182][37829]
- update: [...184] [ip4][..udp] [......10.0.2.15][28681] -> [..86.239.62.213][.6346]
update: [...776] [ip4][..udp] [......10.0.2.15][28681] -> [...219.85.10.83][.8797]
update: [...767] [ip4][..udp] [......10.0.2.15][28681] -> [....45.65.87.24][16201]
- update: [...352] [ip4][..udp] [......10.0.2.15][28681] -> [.176.191.49.159][.6346]
- update: [...195] [ip4][..udp] [......10.0.2.15][28681] -> [.177.231.151.16][.6346]
- update: [...219] [ip4][..udp] [......10.0.2.15][28681] -> [...76.30.86.144][53821]
update: [...778] [ip4][..udp] [......10.0.2.15][28681] -> [.122.117.100.78][.9010]
update: [...773] [ip4][..udp] [......10.0.2.15][28681] -> [...86.153.21.93][36696]
update: [...779] [ip4][..udp] [......10.0.2.15][28681] -> [...1.65.217.224][18381]
update: [...768] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][37058]
update: [...765] [ip4][..udp] [......10.0.2.15][28681] -> [213.229.111.224][.4876]
- update: [...760] [ip4][..udp] [......10.0.2.15][..138] -> [.....10.0.2.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
- RISK: Unsafe Protocol
- update: [...191] [ip4][..udp] [......10.0.2.15][28681] -> [.190.153.143.54][65535]
- update: [...172] [ip4][..udp] [......10.0.2.15][28681] -> [..87.69.142.133][15471]
- update: [...187] [ip4][..udp] [......10.0.2.15][28681] -> [....92.88.92.56][21009]
- update: [...190] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.195.227][.6346]
- update: [...503] [ip4][..udp] [......10.0.2.15][28681] -> [..74.210.244.72][.6346]
- update: [...180] [ip4][..udp] [......10.0.2.15][28681] -> [...66.131.24.72][30711]
- update: [...764] [ip4][..udp] [......10.0.2.15][28681] -> [.208.92.106.151][32476]
- update: [...156] [ip4][..udp] [......10.0.2.15][28681] -> [..86.244.228.86][10131]
- update: [...176] [ip4][..udp] [......10.0.2.15][28681] -> [....41.99.164.4][.6346]
+ update: [...787] [ip4][..udp] [......10.0.2.15][28681] -> [220.133.122.217][23458]
+ update: [...793] [ip4][..udp] [......10.0.2.15][28681] -> [123.205.126.102][.5193]
+ update: [...784] [ip4][..udp] [......10.0.2.15][28681] -> [..23.19.141.110][.6346]
update: [...774] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][.6599]
- update: [...157] [ip4][..udp] [......10.0.2.15][28681] -> [.86.227.162.150][.6346]
- update: [...209] [ip4][..udp] [......10.0.2.15][28681] -> [..91.179.98.234][.6346]
+ update: [...792] [ip4][..udp] [......10.0.2.15][28681] -> [.36.239.213.146][21750]
+ update: [...485] [ip4][..udp] [......10.0.2.15][28681] -> [...154.3.42.209][.6346]
update: [...771] [ip4][..udp] [......10.0.2.15][28681] -> [...202.27.193.6][.6346]
- update: [...167] [ip4][..udp] [......10.0.2.15][28681] -> [..93.29.107.176][20363]
- update: [...171] [ip4][..udp] [......10.0.2.15][28681] -> [196.217.132.111][25394]
+ update: [...786] [ip4][..udp] [......10.0.2.15][28681] -> [....114.38.9.82][24223]
update: [...781] [ip4][..udp] [......10.0.2.15][28681] -> [...112.105.52.2][23458]
- update: [...160] [ip4][..udp] [......10.0.2.15][28681] -> [...83.150.49.35][32448]
update: [...782] [ip4][..udp] [......10.0.2.15][28681] -> [.65.182.231.232][.7890]
- update: [...185] [ip4][..udp] [......10.0.2.15][28681] -> [.109.132.196.58][.6346]
+ update: [...486] [ip4][..udp] [......10.0.2.15][28681] -> [...88.68.45.203][.6346]
update: [...769] [ip4][..udp] [......10.0.2.15][28681] -> [.123.110.61.169][11973]
- update: [...762] [ip4][..udp] [......10.0.2.15][28681] -> [...86.75.43.182][43502]
update: [...775] [ip4][..udp] [......10.0.2.15][28681] -> [..223.17.132.18][23458]
- update: [...772] [ip4][..udp] [......10.0.2.15][28681] -> [.73.192.231.237][.9676]
- update: [...770] [ip4][..udp] [......10.0.2.15][28681] -> [..97.83.183.148][.8890]
- update: [...175] [ip4][..udp] [......10.0.2.15][28681] -> [...115.69.62.99][.6346]
- update: [...200] [ip4][..udp] [......10.0.2.15][28681] -> [.138.199.16.123][52993]
- update: [...766] [ip4][..udp] [......10.0.2.15][28681] -> [...76.119.55.28][20347]
- update: [...763] [ip4][..udp] [......10.0.2.15][28681] -> [.85.170.209.214][46210]
- update: [...158] [ip4][..udp] [......10.0.2.15][28681] -> [.118.166.226.70][.6346]
- update: [...780] [ip4][..udp] [......10.0.2.15][28681] -> [...68.66.94.132][17735]
- update: [...761] [ip4][..udp] [......10.0.2.15][28681] -> [..195.132.75.56][56009]
- not-detected: [...383] [ip4][..udp] [......10.0.2.15][28681] -> [...84.71.243.60][34498] [Unknown][Unknown][Unrated]
- idle: [...383] [ip4][..udp] [......10.0.2.15][28681] -> [...84.71.243.60][34498]
- update: [...787] [ip4][..udp] [......10.0.2.15][28681] -> [220.133.122.217][23458]
- update: [...793] [ip4][..udp] [......10.0.2.15][28681] -> [123.205.126.102][.5193]
- update: [...784] [ip4][..udp] [......10.0.2.15][28681] -> [..23.19.141.110][.6346]
- update: [...792] [ip4][..udp] [......10.0.2.15][28681] -> [.36.239.213.146][21750]
- update: [...757] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][53258] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...786] [ip4][..udp] [......10.0.2.15][28681] -> [....114.38.9.82][24223]
update: [...788] [ip4][..udp] [......10.0.2.15][28681] -> [.220.134.167.82][.5820]
update: [...789] [ip4][..udp] [......10.0.2.15][28681] -> [..42.98.115.128][23458]
+ update: [...772] [ip4][..udp] [......10.0.2.15][28681] -> [.73.192.231.237][.9676]
+ update: [...770] [ip4][..udp] [......10.0.2.15][28681] -> [..97.83.183.148][.8890]
+ update: [...400] [ip4][..udp] [......10.0.2.15][28681] -> [..129.45.47.167][.6346]
update: [...790] [ip4][..udp] [......10.0.2.15][28681] -> [.218.164.39.233][20855]
+ update: [...766] [ip4][..udp] [......10.0.2.15][28681] -> [...76.119.55.28][20347]
update: [...785] [ip4][..udp] [......10.0.2.15][28681] -> [.176.134.139.39][.6346]
+ update: [...780] [ip4][..udp] [......10.0.2.15][28681] -> [...68.66.94.132][17735]
update: [...791] [ip4][..udp] [......10.0.2.15][28681] -> [...219.85.11.85][10722]
update: [...312] [ip4][..udp] [......10.0.2.15][28681] -> [..24.167.201.53][47282] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [...795] [ip4][..udp] [......10.0.2.15][28681] -> [..213.120.26.86][29946]
new: [...796] [ip4][..udp] [......10.0.2.15][28681] -> [..41.249.63.200][22582]
new: [...797] [ip4][.icmp] [...154.3.42.209] -> [......10.0.2.15]
detected: [...797] [ip4][.icmp] [...154.3.42.209] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [...195] [ip4][..udp] [......10.0.2.15][28681] -> [.177.231.151.16][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...195] [ip4][..udp] [......10.0.2.15][28681] -> [.177.231.151.16][.6346]
not-detected: [...191] [ip4][..udp] [......10.0.2.15][28681] -> [.190.153.143.54][65535] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...191] [ip4][..udp] [......10.0.2.15][28681] -> [.190.153.143.54][65535]
not-detected: [...200] [ip4][..udp] [......10.0.2.15][28681] -> [.138.199.16.123][52993] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...200] [ip4][..udp] [......10.0.2.15][28681] -> [.138.199.16.123][52993]
update: [...759] [ip4][..udp] [......10.0.2.15][28681] -> [104.238.172.250][23548] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [...758] [ip4][..udp] [......10.0.2.15][50213] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
- update: [...485] [ip4][..udp] [......10.0.2.15][28681] -> [...154.3.42.209][.6346]
- update: [...486] [ip4][..udp] [......10.0.2.15][28681] -> [...88.68.45.203][.6346]
- update: [...400] [ip4][..udp] [......10.0.2.15][28681] -> [..129.45.47.167][.6346]
+ update: [...757] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][53258] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic
not-detected: [...400] [ip4][..udp] [......10.0.2.15][28681] -> [..129.45.47.167][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...400] [ip4][..udp] [......10.0.2.15][28681] -> [..129.45.47.167][.6346]
- update: [...751] [ip4][..udp] [......10.0.2.15][28681] -> [....67.193.8.52][38584]
- update: [...749] [ip4][..udp] [......10.0.2.15][28681] -> [.....92.8.59.80][35192]
- update: [...752] [ip4][..udp] [......10.0.2.15][28681] -> [142.115.218.152][.5900]
update: [...794] [ip4][..udp] [......10.0.2.15][50214] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
- update: [...750] [ip4][..udp] [......10.0.2.15][28681] -> [...78.159.27.22][17563]
update: [...783] [ip4][.icmp] [.65.182.231.232] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...759] [ip4][..udp] [......10.0.2.15][28681] -> [104.238.172.250][23548] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [...757] [ip4][..udp] [......10.0.2.15][28681] -> [.104.156.226.72][53258] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
- update: [...134] [ip4][..udp] [......10.0.2.15][28681] -> [...78.231.73.14][.6346]
+ RISK: Unsafe Protocol, Unidirectional Traffic
+ update: [...750] [ip4][..udp] [......10.0.2.15][28681] -> [....67.193.8.52][38584]
+ update: [...752] [ip4][..udp] [......10.0.2.15][28681] -> [...78.231.73.14][.6346]
update: [...128] [ip4][..udp] [......10.0.2.15][28681] -> [..77.141.219.27][37580]
update: [...166] [ip4][..udp] [......10.0.2.15][28681] -> [..90.59.253.186][15555]
- update: [...777] [ip4][..udp] [......10.0.2.15][28681] -> [.124.244.211.43][23459]
update: [...114] [ip4][..udp] [......10.0.2.15][28681] -> [....86.23.75.69][.6346]
update: [...183] [ip4][..udp] [......10.0.2.15][28681] -> [..91.172.15.182][37829]
update: [...184] [ip4][..udp] [......10.0.2.15][28681] -> [..86.239.62.213][.6346]
- update: [...776] [ip4][..udp] [......10.0.2.15][28681] -> [...219.85.10.83][.8797]
- update: [...767] [ip4][..udp] [......10.0.2.15][28681] -> [....45.65.87.24][16201]
update: [...352] [ip4][..udp] [......10.0.2.15][28681] -> [.176.191.49.159][.6346]
update: [...219] [ip4][..udp] [......10.0.2.15][28681] -> [...76.30.86.144][53821]
- update: [...778] [ip4][..udp] [......10.0.2.15][28681] -> [.122.117.100.78][.9010]
- update: [...773] [ip4][..udp] [......10.0.2.15][28681] -> [...86.153.21.93][36696]
- update: [...779] [ip4][..udp] [......10.0.2.15][28681] -> [...1.65.217.224][18381]
- update: [...768] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][37058]
- update: [...765] [ip4][..udp] [......10.0.2.15][28681] -> [213.229.111.224][.4876]
update: [...760] [ip4][..udp] [......10.0.2.15][..138] -> [.....10.0.2.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
update: [...118] [ip4][..udp] [......10.0.2.15][28681] -> [...5.180.62.100][46385]
update: [...117] [ip4][..udp] [......10.0.2.15][28681] -> [200.120.243.143][.6346]
update: [...172] [ip4][..udp] [......10.0.2.15][28681] -> [..87.69.142.133][15471]
+ update: [...748] [ip4][..udp] [......10.0.2.15][28681] -> [.....92.8.59.80][35192]
update: [...111] [ip4][..udp] [......10.0.2.15][28681] -> [..90.65.141.157][.6346]
update: [...187] [ip4][..udp] [......10.0.2.15][28681] -> [....92.88.92.56][21009]
update: [...139] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.226.142][.6346]
update: [...190] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.195.227][.6346]
update: [...141] [ip4][..udp] [......10.0.2.15][28681] -> [..172.97.199.14][.6346]
+ update: [...751] [ip4][..udp] [......10.0.2.15][28681] -> [142.115.218.152][.5900]
update: [...126] [ip4][..udp] [......10.0.2.15][28681] -> [..91.69.159.133][28000]
update: [...503] [ip4][..udp] [......10.0.2.15][28681] -> [..74.210.244.72][.6346]
update: [....85] [ip4][..udp] [......10.0.2.15][28681] -> [..85.138.20.110][.6346]
@@ -5289,53 +5677,33 @@
update: [...135] [ip4][..udp] [......10.0.2.15][28681] -> [.193.250.99.158][.6346]
update: [...764] [ip4][..udp] [......10.0.2.15][28681] -> [.208.92.106.151][32476]
update: [...156] [ip4][..udp] [......10.0.2.15][28681] -> [..86.244.228.86][10131]
+ update: [...749] [ip4][..udp] [......10.0.2.15][28681] -> [...78.159.27.22][17563]
update: [...176] [ip4][..udp] [......10.0.2.15][28681] -> [....41.99.164.4][.6346]
- update: [...774] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][.6599]
update: [...157] [ip4][..udp] [......10.0.2.15][28681] -> [.86.227.162.150][.6346]
update: [...209] [ip4][..udp] [......10.0.2.15][28681] -> [..91.179.98.234][.6346]
update: [...116] [ip4][..udp] [......10.0.2.15][28681] -> [.124.44.190.145][10170]
- update: [...771] [ip4][..udp] [......10.0.2.15][28681] -> [...202.27.193.6][.6346]
update: [...133] [ip4][..udp] [......10.0.2.15][28681] -> [.91.175.220.161][15721]
update: [...167] [ip4][..udp] [......10.0.2.15][28681] -> [..93.29.107.176][20363]
update: [...171] [ip4][..udp] [......10.0.2.15][28681] -> [196.217.132.111][25394]
- update: [...781] [ip4][..udp] [......10.0.2.15][28681] -> [...112.105.52.2][23458]
update: [...160] [ip4][..udp] [......10.0.2.15][28681] -> [...83.150.49.35][32448]
- update: [...782] [ip4][..udp] [......10.0.2.15][28681] -> [.65.182.231.232][.7890]
update: [...185] [ip4][..udp] [......10.0.2.15][28681] -> [.109.132.196.58][.6346]
- update: [...769] [ip4][..udp] [......10.0.2.15][28681] -> [.123.110.61.169][11973]
update: [...762] [ip4][..udp] [......10.0.2.15][28681] -> [...86.75.43.182][43502]
- update: [...775] [ip4][..udp] [......10.0.2.15][28681] -> [..223.17.132.18][23458]
update: [...130] [ip4][..udp] [......10.0.2.15][28681] -> [..119.224.95.97][46356]
update: [...129] [ip4][..udp] [......10.0.2.15][28681] -> [.176.138.50.179][29411]
update: [...755] [ip4][..udp] [......10.0.2.15][28681] -> [..83.134.107.32][38836]
update: [...137] [ip4][..udp] [......10.0.2.15][28681] -> [...82.65.70.197][21693]
- update: [...772] [ip4][..udp] [......10.0.2.15][28681] -> [.73.192.231.237][.9676]
update: [...109] [ip4][..udp] [......10.0.2.15][28681] -> [...88.169.2.153][52414]
update: [...140] [ip4][..udp] [......10.0.2.15][28681] -> [.77.197.111.186][.6346]
- update: [...770] [ip4][..udp] [......10.0.2.15][28681] -> [..97.83.183.148][.8890]
update: [...175] [ip4][..udp] [......10.0.2.15][28681] -> [...115.69.62.99][.6346]
update: [...756] [ip4][..udp] [......10.0.2.15][28681] -> [..41.100.68.255][12838]
- update: [...766] [ip4][..udp] [......10.0.2.15][28681] -> [...76.119.55.28][20347]
update: [...763] [ip4][..udp] [......10.0.2.15][28681] -> [.85.170.209.214][46210]
update: [...158] [ip4][..udp] [......10.0.2.15][28681] -> [.118.166.226.70][.6346]
update: [....87] [ip4][..udp] [......10.0.2.15][28681] -> [..92.131.85.245][31743]
- update: [...780] [ip4][..udp] [......10.0.2.15][28681] -> [...68.66.94.132][17735]
update: [...761] [ip4][..udp] [......10.0.2.15][28681] -> [..195.132.75.56][56009]
update: [...138] [ip4][..udp] [......10.0.2.15][28681] -> [167.114.170.156][23844]
idle: [...758] [ip4][..udp] [......10.0.2.15][50213] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
- update: [...787] [ip4][..udp] [......10.0.2.15][28681] -> [220.133.122.217][23458]
- update: [...793] [ip4][..udp] [......10.0.2.15][28681] -> [123.205.126.102][.5193]
update: [...797] [ip4][.icmp] [...154.3.42.209] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
- update: [...784] [ip4][..udp] [......10.0.2.15][28681] -> [..23.19.141.110][.6346]
- update: [...792] [ip4][..udp] [......10.0.2.15][28681] -> [.36.239.213.146][21750]
- update: [...786] [ip4][..udp] [......10.0.2.15][28681] -> [....114.38.9.82][24223]
- update: [...788] [ip4][..udp] [......10.0.2.15][28681] -> [.220.134.167.82][.5820]
- update: [...789] [ip4][..udp] [......10.0.2.15][28681] -> [..42.98.115.128][23458]
- update: [...790] [ip4][..udp] [......10.0.2.15][28681] -> [.218.164.39.233][20855]
- update: [...785] [ip4][..udp] [......10.0.2.15][28681] -> [.176.134.139.39][.6346]
- update: [...791] [ip4][..udp] [......10.0.2.15][28681] -> [...219.85.11.85][10722]
- update: [...312] [ip4][..udp] [......10.0.2.15][28681] -> [..24.167.201.53][47282] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unidirectional Traffic
new: [...798] [ip4][..udp] [......10.0.2.15][63962] -> [239.255.255.250][.1900]
detected: [...798] [ip4][..udp] [......10.0.2.15][63962] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
new: [...799] [ip6][..udp] [..............fe80::c50d:519f:96a4:e108][63958] -> [................................ff02::c][.3702]
@@ -5344,46 +5712,62 @@
detected: [...800] [ip4][..udp] [......10.0.2.15][63957] -> [239.255.255.250][.3702] [WSD][Unknown][Network][Acceptable]
new: [...801] [ip6][icmp6] [..............fe80::c50d:519f:96a4:e108] -> [...............................ff02::16]
detected: [...801] [ip6][icmp6] [..............fe80::c50d:519f:96a4:e108] -> [...............................ff02::16] [ICMPV6][Unknown][Network][Acceptable]
- DAEMON-EVENT: [Processed: 7468 pkts][ZLib][compressions: 0|diff: 0 / 0]
- DAEMON-EVENT: [Flows][active: 169 / 801|skipped: 0|!detected: 475|guessed: 1|detection-updates: 5|updates: 2555]
+ DAEMON-EVENT: [Processed: 3882 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 169 / 801|skipped: 0|!detected: 473|guessed: 3|detection-updates: 5|updates: 2519]
not-detected: [....52] [ip4][..tcp] [......10.0.2.15][50212] -> [...95.17.124.40][.6776] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....52] [ip4][..tcp] [......10.0.2.15][50212] -> [...95.17.124.40][.6776]
- not-detected: [...751] [ip4][..udp] [......10.0.2.15][28681] -> [....67.193.8.52][38584] [Unknown][Unknown][Unrated]
- idle: [...751] [ip4][..udp] [......10.0.2.15][28681] -> [....67.193.8.52][38584]
- not-detected: [...134] [ip4][..udp] [......10.0.2.15][28681] -> [...78.231.73.14][.6346] [Unknown][Unknown][Unrated]
- idle: [...134] [ip4][..udp] [......10.0.2.15][28681] -> [...78.231.73.14][.6346]
+ not-detected: [...750] [ip4][..udp] [......10.0.2.15][28681] -> [....67.193.8.52][38584] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...750] [ip4][..udp] [......10.0.2.15][28681] -> [....67.193.8.52][38584]
+ not-detected: [...752] [ip4][..udp] [......10.0.2.15][28681] -> [...78.231.73.14][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...752] [ip4][..udp] [......10.0.2.15][28681] -> [...78.231.73.14][.6346]
not-detected: [...128] [ip4][..udp] [......10.0.2.15][28681] -> [..77.141.219.27][37580] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...128] [ip4][..udp] [......10.0.2.15][28681] -> [..77.141.219.27][37580]
not-detected: [...166] [ip4][..udp] [......10.0.2.15][28681] -> [..90.59.253.186][15555] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...166] [ip4][..udp] [......10.0.2.15][28681] -> [..90.59.253.186][15555]
not-detected: [...777] [ip4][..udp] [......10.0.2.15][28681] -> [.124.244.211.43][23459] [Unknown][Unknown][Unrated]
idle: [...777] [ip4][..udp] [......10.0.2.15][28681] -> [.124.244.211.43][23459]
not-detected: [...184] [ip4][..udp] [......10.0.2.15][28681] -> [..86.239.62.213][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...184] [ip4][..udp] [......10.0.2.15][28681] -> [..86.239.62.213][.6346]
not-detected: [...183] [ip4][..udp] [......10.0.2.15][28681] -> [..91.172.15.182][37829] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...183] [ip4][..udp] [......10.0.2.15][28681] -> [..91.172.15.182][37829]
not-detected: [...114] [ip4][..udp] [......10.0.2.15][28681] -> [....86.23.75.69][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...114] [ip4][..udp] [......10.0.2.15][28681] -> [....86.23.75.69][.6346]
not-detected: [...245] [ip4][..tcp] [......10.0.2.15][50289] -> [.74.195.236.249][18557] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...245] [ip4][..tcp] [......10.0.2.15][50289] -> [.74.195.236.249][18557]
idle: [...800] [ip4][..udp] [......10.0.2.15][63957] -> [239.255.255.250][.3702] [WSD][Unknown][Network][Acceptable]
not-detected: [...776] [ip4][..udp] [......10.0.2.15][28681] -> [...219.85.10.83][.8797] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...776] [ip4][..udp] [......10.0.2.15][28681] -> [...219.85.10.83][.8797]
not-detected: [...227] [ip4][..tcp] [......10.0.2.15][50273] -> [..24.179.18.242][47329] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...227] [ip4][..tcp] [......10.0.2.15][50273] -> [..24.179.18.242][47329]
end: [...276] [ip4][..tcp] [......10.0.2.15][50300] -> [..188.61.52.183][11852] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
not-detected: [...767] [ip4][..udp] [......10.0.2.15][28681] -> [....45.65.87.24][16201] [Unknown][Unknown][Unrated]
idle: [...767] [ip4][..udp] [......10.0.2.15][28681] -> [....45.65.87.24][16201]
not-detected: [...352] [ip4][..udp] [......10.0.2.15][28681] -> [.176.191.49.159][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...352] [ip4][..udp] [......10.0.2.15][28681] -> [.176.191.49.159][.6346]
not-detected: [....72] [ip4][..tcp] [......10.0.2.15][50231] -> [..76.68.138.207][45079] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....72] [ip4][..tcp] [......10.0.2.15][50231] -> [..76.68.138.207][45079]
not-detected: [...228] [ip4][..tcp] [......10.0.2.15][50274] -> [..68.174.18.115][50679] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...228] [ip4][..tcp] [......10.0.2.15][50274] -> [..68.174.18.115][50679]
not-detected: [...219] [ip4][..udp] [......10.0.2.15][28681] -> [...76.30.86.144][53821] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...219] [ip4][..udp] [......10.0.2.15][28681] -> [...76.30.86.144][53821]
not-detected: [...778] [ip4][..udp] [......10.0.2.15][28681] -> [.122.117.100.78][.9010] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...778] [ip4][..udp] [......10.0.2.15][28681] -> [.122.117.100.78][.9010]
not-detected: [...773] [ip4][..udp] [......10.0.2.15][28681] -> [...86.153.21.93][36696] [Unknown][Unknown][Unrated]
idle: [...773] [ip4][..udp] [......10.0.2.15][28681] -> [...86.153.21.93][36696]
@@ -5391,289 +5775,417 @@
end: [...238] [ip4][..tcp] [......10.0.2.15][50284] -> [.104.156.226.72][53258] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
not-detected: [...779] [ip4][..udp] [......10.0.2.15][28681] -> [...1.65.217.224][18381] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...779] [ip4][..udp] [......10.0.2.15][28681] -> [...1.65.217.224][18381]
not-detected: [...768] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][37058] [Unknown][Unknown][Unrated]
idle: [...768] [ip4][..udp] [......10.0.2.15][28681] -> [.14.200.255.229][37058]
not-detected: [...765] [ip4][..udp] [......10.0.2.15][28681] -> [213.229.111.224][.4876] [Unknown][Unknown][Unrated]
idle: [...765] [ip4][..udp] [......10.0.2.15][28681] -> [213.229.111.224][.4876]
not-detected: [....75] [ip4][..tcp] [......10.0.2.15][50234] -> [...66.189.28.17][16269] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....75] [ip4][..tcp] [......10.0.2.15][50234] -> [...66.189.28.17][16269]
not-detected: [...240] [ip4][..tcp] [......10.0.2.15][50286] -> [.84.118.116.198][44616] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...240] [ip4][..tcp] [......10.0.2.15][50286] -> [.84.118.116.198][44616]
idle: [...760] [ip4][..udp] [......10.0.2.15][..138] -> [.....10.0.2.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
idle: [...798] [ip4][..udp] [......10.0.2.15][63962] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
not-detected: [...118] [ip4][..udp] [......10.0.2.15][28681] -> [...5.180.62.100][46385] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...118] [ip4][..udp] [......10.0.2.15][28681] -> [...5.180.62.100][46385]
not-detected: [....74] [ip4][..tcp] [......10.0.2.15][50233] -> [...1.163.14.246][12854] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....74] [ip4][..tcp] [......10.0.2.15][50233] -> [...1.163.14.246][12854]
not-detected: [...152] [ip4][..tcp] [......10.0.2.15][50265] -> [.113.255.250.32][52647] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...152] [ip4][..tcp] [......10.0.2.15][50265] -> [.113.255.250.32][52647]
not-detected: [...796] [ip4][..udp] [......10.0.2.15][28681] -> [..41.249.63.200][22582] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...796] [ip4][..udp] [......10.0.2.15][28681] -> [..41.249.63.200][22582]
not-detected: [...787] [ip4][..udp] [......10.0.2.15][28681] -> [220.133.122.217][23458] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...787] [ip4][..udp] [......10.0.2.15][28681] -> [220.133.122.217][23458]
not-detected: [...233] [ip4][..tcp] [......10.0.2.15][50279] -> [.113.252.91.201][.4297] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...233] [ip4][..tcp] [......10.0.2.15][50279] -> [.113.252.91.201][.4297]
not-detected: [...117] [ip4][..udp] [......10.0.2.15][28681] -> [200.120.243.143][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...117] [ip4][..udp] [......10.0.2.15][28681] -> [200.120.243.143][.6346]
not-detected: [...793] [ip4][..udp] [......10.0.2.15][28681] -> [123.205.126.102][.5193] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...793] [ip4][..udp] [......10.0.2.15][28681] -> [123.205.126.102][.5193]
not-detected: [...172] [ip4][..udp] [......10.0.2.15][28681] -> [..87.69.142.133][15471] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...172] [ip4][..udp] [......10.0.2.15][28681] -> [..87.69.142.133][15471]
- not-detected: [...749] [ip4][..udp] [......10.0.2.15][28681] -> [.....92.8.59.80][35192] [Unknown][Unknown][Unrated]
- idle: [...749] [ip4][..udp] [......10.0.2.15][28681] -> [.....92.8.59.80][35192]
+ not-detected: [...748] [ip4][..udp] [......10.0.2.15][28681] -> [.....92.8.59.80][35192] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...748] [ip4][..udp] [......10.0.2.15][28681] -> [.....92.8.59.80][35192]
idle: [...801] [ip6][icmp6] [..............fe80::c50d:519f:96a4:e108] -> [...............................ff02::16] [ICMPV6][Unknown][Network][Acceptable]
not-detected: [...123] [ip4][..tcp] [......10.0.2.15][50254] -> [..24.78.134.188][49046] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...123] [ip4][..tcp] [......10.0.2.15][50254] -> [..24.78.134.188][49046]
idle: [...799] [ip6][..udp] [..............fe80::c50d:519f:96a4:e108][63958] -> [................................ff02::c][.3702] [WSD][Unknown][Network][Acceptable]
- end: [...333] [ip4][..tcp] [......10.0.2.15][50327] -> [.69.118.162.229][46906] [HTTP.Gnutella][Unknown][Media][Potentially Dangerous]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address, Unsafe Protocol
+ idle: [...333] [ip4][..tcp] [......10.0.2.15][50327] -> [.69.118.162.229][46906] [HTTP.Gnutella][Unknown][Media][Potentially Dangerous]
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unsafe Protocol
not-detected: [....64] [ip4][..tcp] [......10.0.2.15][50223] -> [118.167.248.220][63108] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....64] [ip4][..tcp] [......10.0.2.15][50223] -> [118.167.248.220][63108]
not-detected: [....59] [ip4][..tcp] [......10.0.2.15][50218] -> [..90.103.247.94][59045] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....59] [ip4][..tcp] [......10.0.2.15][50218] -> [..90.103.247.94][59045]
not-detected: [...111] [ip4][..udp] [......10.0.2.15][28681] -> [..90.65.141.157][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...111] [ip4][..udp] [......10.0.2.15][28681] -> [..90.65.141.157][.6346]
not-detected: [....49] [ip4][..tcp] [......10.0.2.15][50209] -> [113.252.206.254][49587] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....49] [ip4][..tcp] [......10.0.2.15][50209] -> [113.252.206.254][49587]
not-detected: [....65] [ip4][..tcp] [......10.0.2.15][50224] -> [...78.125.63.97][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....65] [ip4][..tcp] [......10.0.2.15][50224] -> [...78.125.63.97][.6346]
not-detected: [...187] [ip4][..udp] [......10.0.2.15][28681] -> [....92.88.92.56][21009] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...187] [ip4][..udp] [......10.0.2.15][28681] -> [....92.88.92.56][21009]
not-detected: [...190] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.195.227][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...190] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.195.227][.6346]
not-detected: [...139] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.226.142][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...139] [ip4][..udp] [......10.0.2.15][28681] -> [165.169.226.142][.6346]
not-detected: [....68] [ip4][..tcp] [......10.0.2.15][50227] -> [.111.246.157.94][51175] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....68] [ip4][..tcp] [......10.0.2.15][50227] -> [.111.246.157.94][51175]
not-detected: [...141] [ip4][..udp] [......10.0.2.15][28681] -> [..172.97.199.14][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...141] [ip4][..udp] [......10.0.2.15][28681] -> [..172.97.199.14][.6346]
- not-detected: [...752] [ip4][..udp] [......10.0.2.15][28681] -> [142.115.218.152][.5900] [Unknown][Unknown][Unrated]
- idle: [...752] [ip4][..udp] [......10.0.2.15][28681] -> [142.115.218.152][.5900]
+ not-detected: [...751] [ip4][..udp] [......10.0.2.15][28681] -> [142.115.218.152][.5900] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...751] [ip4][..udp] [......10.0.2.15][28681] -> [142.115.218.152][.5900]
not-detected: [...126] [ip4][..udp] [......10.0.2.15][28681] -> [..91.69.159.133][28000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...126] [ip4][..udp] [......10.0.2.15][28681] -> [..91.69.159.133][28000]
not-detected: [....56] [ip4][..tcp] [......10.0.2.15][50215] -> [.124.244.64.237][.4704] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....56] [ip4][..tcp] [......10.0.2.15][50215] -> [.124.244.64.237][.4704]
not-detected: [....71] [ip4][..tcp] [......10.0.2.15][50230] -> [....73.3.103.37][17296] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....71] [ip4][..tcp] [......10.0.2.15][50230] -> [....73.3.103.37][17296]
not-detected: [...503] [ip4][..udp] [......10.0.2.15][28681] -> [..74.210.244.72][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...503] [ip4][..udp] [......10.0.2.15][28681] -> [..74.210.244.72][.6346]
not-detected: [....85] [ip4][..udp] [......10.0.2.15][28681] -> [..85.138.20.110][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....85] [ip4][..udp] [......10.0.2.15][28681] -> [..85.138.20.110][.6346]
not-detected: [...244] [ip4][..tcp] [......10.0.2.15][50288] -> [...76.119.55.28][20347] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...244] [ip4][..tcp] [......10.0.2.15][50288] -> [...76.119.55.28][20347]
not-detected: [....47] [ip4][..tcp] [......10.0.2.15][50207] -> [..90.78.171.204][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....47] [ip4][..tcp] [......10.0.2.15][50207] -> [..90.78.171.204][.6346]
not-detected: [...180] [ip4][..udp] [......10.0.2.15][28681] -> [...66.131.24.72][30711] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...180] [ip4][..udp] [......10.0.2.15][28681] -> [...66.131.24.72][30711]
not-detected: [...281] [ip4][..tcp] [......10.0.2.15][50305] -> [....94.54.66.82][63637] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...281] [ip4][..tcp] [......10.0.2.15][50305] -> [....94.54.66.82][63637]
end: [....93] [ip4][..tcp] [......10.0.2.15][50248] -> [109.214.154.216][.6346] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
not-detected: [....48] [ip4][..tcp] [......10.0.2.15][50208] -> [.119.237.116.22][.8683] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....48] [ip4][..tcp] [......10.0.2.15][50208] -> [.119.237.116.22][.8683]
idle: [...794] [ip4][..udp] [......10.0.2.15][50214] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
not-detected: [...266] [ip4][..tcp] [......10.0.2.15][50290] -> [....73.89.249.8][50649] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...266] [ip4][..tcp] [......10.0.2.15][50290] -> [....73.89.249.8][50649]
idle: [...797] [ip4][.icmp] [...154.3.42.209] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [...135] [ip4][..udp] [......10.0.2.15][28681] -> [.193.250.99.158][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...135] [ip4][..udp] [......10.0.2.15][28681] -> [.193.250.99.158][.6346]
not-detected: [....78] [ip4][..tcp] [......10.0.2.15][50237] -> [.88.123.202.175][37910] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....78] [ip4][..tcp] [......10.0.2.15][50237] -> [.88.123.202.175][37910]
not-detected: [...151] [ip4][..tcp] [......10.0.2.15][50264] -> [...95.10.205.67][48380] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...151] [ip4][..tcp] [......10.0.2.15][50264] -> [...95.10.205.67][48380]
not-detected: [...764] [ip4][..udp] [......10.0.2.15][28681] -> [.208.92.106.151][32476] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...764] [ip4][..udp] [......10.0.2.15][28681] -> [.208.92.106.151][32476]
not-detected: [....89] [ip4][..tcp] [......10.0.2.15][50244] -> [..188.61.52.183][63978] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....89] [ip4][..tcp] [......10.0.2.15][50244] -> [..188.61.52.183][63978]
not-detected: [....92] [ip4][..tcp] [......10.0.2.15][50247] -> [..66.30.221.181][51560] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....92] [ip4][..tcp] [......10.0.2.15][50247] -> [..66.30.221.181][51560]
not-detected: [...784] [ip4][..udp] [......10.0.2.15][28681] -> [..23.19.141.110][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...784] [ip4][..udp] [......10.0.2.15][28681] -> [..23.19.141.110][.6346]
- not-detected: [...750] [ip4][..udp] [......10.0.2.15][28681] -> [...78.159.27.22][17563] [Unknown][Unknown][Unrated]
- idle: [...750] [ip4][..udp] [......10.0.2.15][28681] -> [...78.159.27.22][17563]
+ not-detected: [...749] [ip4][..udp] [......10.0.2.15][28681] -> [...78.159.27.22][17563] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ idle: [...749] [ip4][..udp] [......10.0.2.15][28681] -> [...78.159.27.22][17563]
not-detected: [...156] [ip4][..udp] [......10.0.2.15][28681] -> [..86.244.228.86][10131] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...156] [ip4][..udp] [......10.0.2.15][28681] -> [..86.244.228.86][10131]
not-detected: [...176] [ip4][..udp] [......10.0.2.15][28681] -> [....41.99.164.4][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...176] [ip4][..udp] [......10.0.2.15][28681] -> [....41.99.164.4][.6346]
not-detected: [...774] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][.6599] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...774] [ip4][..udp] [......10.0.2.15][28681] -> [..50.58.238.149][.6599]
not-detected: [...268] [ip4][..tcp] [......10.0.2.15][50292] -> [...95.10.205.67][11603] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...268] [ip4][..tcp] [......10.0.2.15][50292] -> [...95.10.205.67][11603]
not-detected: [....84] [ip4][..tcp] [......10.0.2.15][50243] -> [176.138.129.252][27962] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....84] [ip4][..tcp] [......10.0.2.15][50243] -> [176.138.129.252][27962]
not-detected: [...792] [ip4][..udp] [......10.0.2.15][28681] -> [.36.239.213.146][21750] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...792] [ip4][..udp] [......10.0.2.15][28681] -> [.36.239.213.146][21750]
not-detected: [...157] [ip4][..udp] [......10.0.2.15][28681] -> [.86.227.162.150][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...157] [ip4][..udp] [......10.0.2.15][28681] -> [.86.227.162.150][.6346]
not-detected: [...142] [ip4][..tcp] [......10.0.2.15][50255] -> [..36.236.203.37][52165] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...142] [ip4][..tcp] [......10.0.2.15][50255] -> [..36.236.203.37][52165]
not-detected: [...209] [ip4][..udp] [......10.0.2.15][28681] -> [..91.179.98.234][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...209] [ip4][..udp] [......10.0.2.15][28681] -> [..91.179.98.234][.6346]
not-detected: [...241] [ip4][..tcp] [......10.0.2.15][50287] -> [.98.215.130.156][12405] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...241] [ip4][..tcp] [......10.0.2.15][50287] -> [.98.215.130.156][12405]
not-detected: [...116] [ip4][..udp] [......10.0.2.15][28681] -> [.124.44.190.145][10170] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...116] [ip4][..udp] [......10.0.2.15][28681] -> [.124.44.190.145][10170]
not-detected: [...236] [ip4][..tcp] [......10.0.2.15][50282] -> [..221.124.66.33][13060] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...236] [ip4][..tcp] [......10.0.2.15][50282] -> [..221.124.66.33][13060]
not-detected: [...226] [ip4][..tcp] [......10.0.2.15][50272] -> [...1.172.184.48][13298] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...226] [ip4][..tcp] [......10.0.2.15][50272] -> [...1.172.184.48][13298]
not-detected: [...225] [ip4][..tcp] [......10.0.2.15][50271] -> [.218.164.198.27][60202] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...225] [ip4][..tcp] [......10.0.2.15][50271] -> [.218.164.198.27][60202]
not-detected: [...224] [ip4][..tcp] [......10.0.2.15][50270] -> [...114.27.24.95][11427] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...224] [ip4][..tcp] [......10.0.2.15][50270] -> [...114.27.24.95][11427]
not-detected: [...485] [ip4][..udp] [......10.0.2.15][28681] -> [...154.3.42.209][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...485] [ip4][..udp] [......10.0.2.15][28681] -> [...154.3.42.209][.6346]
not-detected: [...145] [ip4][..tcp] [......10.0.2.15][50258] -> [122.100.216.210][.7097] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...145] [ip4][..tcp] [......10.0.2.15][50258] -> [122.100.216.210][.7097]
not-detected: [...147] [ip4][..tcp] [......10.0.2.15][50260] -> [113.255.200.161][51394] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...147] [ip4][..tcp] [......10.0.2.15][50260] -> [113.255.200.161][51394]
not-detected: [....81] [ip4][..tcp] [......10.0.2.15][50240] -> [..36.237.10.152][21293] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....81] [ip4][..tcp] [......10.0.2.15][50240] -> [..36.237.10.152][21293]
not-detected: [....57] [ip4][..tcp] [......10.0.2.15][50216] -> [182.155.128.228][.3256] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....57] [ip4][..tcp] [......10.0.2.15][50216] -> [182.155.128.228][.3256]
not-detected: [....44] [ip4][..tcp] [......10.0.2.15][50204] -> [..124.218.26.16][.9728] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....44] [ip4][..tcp] [......10.0.2.15][50204] -> [..124.218.26.16][.9728]
not-detected: [...771] [ip4][..udp] [......10.0.2.15][28681] -> [...202.27.193.6][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...771] [ip4][..udp] [......10.0.2.15][28681] -> [...202.27.193.6][.6346]
not-detected: [...234] [ip4][..tcp] [......10.0.2.15][50280] -> [...99.199.148.6][.4338] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...234] [ip4][..tcp] [......10.0.2.15][50280] -> [...99.199.148.6][.4338]
not-detected: [...133] [ip4][..udp] [......10.0.2.15][28681] -> [.91.175.220.161][15721] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...133] [ip4][..udp] [......10.0.2.15][28681] -> [.91.175.220.161][15721]
not-detected: [...167] [ip4][..udp] [......10.0.2.15][28681] -> [..93.29.107.176][20363] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...167] [ip4][..udp] [......10.0.2.15][28681] -> [..93.29.107.176][20363]
not-detected: [...171] [ip4][..udp] [......10.0.2.15][28681] -> [196.217.132.111][25394] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...171] [ip4][..udp] [......10.0.2.15][28681] -> [196.217.132.111][25394]
not-detected: [...229] [ip4][..tcp] [......10.0.2.15][50275] -> [.122.117.100.78][.9010] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...229] [ip4][..tcp] [......10.0.2.15][50275] -> [.122.117.100.78][.9010]
not-detected: [...786] [ip4][..udp] [......10.0.2.15][28681] -> [....114.38.9.82][24223] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...786] [ip4][..udp] [......10.0.2.15][28681] -> [....114.38.9.82][24223]
not-detected: [...781] [ip4][..udp] [......10.0.2.15][28681] -> [...112.105.52.2][23458] [Unknown][Unknown][Unrated]
idle: [...781] [ip4][..udp] [......10.0.2.15][28681] -> [...112.105.52.2][23458]
not-detected: [...782] [ip4][..udp] [......10.0.2.15][28681] -> [.65.182.231.232][.7890] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...782] [ip4][..udp] [......10.0.2.15][28681] -> [.65.182.231.232][.7890]
not-detected: [...160] [ip4][..udp] [......10.0.2.15][28681] -> [...83.150.49.35][32448] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...160] [ip4][..udp] [......10.0.2.15][28681] -> [...83.150.49.35][32448]
not-detected: [...486] [ip4][..udp] [......10.0.2.15][28681] -> [...88.68.45.203][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...486] [ip4][..udp] [......10.0.2.15][28681] -> [...88.68.45.203][.6346]
not-detected: [...185] [ip4][..udp] [......10.0.2.15][28681] -> [.109.132.196.58][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...185] [ip4][..udp] [......10.0.2.15][28681] -> [.109.132.196.58][.6346]
not-detected: [....39] [ip4][..tcp] [......10.0.2.15][50200] -> [176.128.217.128][45194] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....39] [ip4][..tcp] [......10.0.2.15][50200] -> [176.128.217.128][45194]
not-detected: [...769] [ip4][..udp] [......10.0.2.15][28681] -> [.123.110.61.169][11973] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...769] [ip4][..udp] [......10.0.2.15][28681] -> [.123.110.61.169][11973]
not-detected: [....53] [ip4][..tcp] [......10.0.2.15][50213] -> [...85.117.153.7][50138] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....53] [ip4][..tcp] [......10.0.2.15][50213] -> [...85.117.153.7][50138]
not-detected: [...762] [ip4][..udp] [......10.0.2.15][28681] -> [...86.75.43.182][43502] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...762] [ip4][..udp] [......10.0.2.15][28681] -> [...86.75.43.182][43502]
not-detected: [....82] [ip4][..tcp] [......10.0.2.15][50241] -> [..98.18.172.208][63172] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....82] [ip4][..tcp] [......10.0.2.15][50241] -> [..98.18.172.208][63172]
not-detected: [...297] [ip4][..tcp] [......10.0.2.15][50321] -> [213.229.111.224][.4876] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...297] [ip4][..tcp] [......10.0.2.15][50321] -> [213.229.111.224][.4876]
not-detected: [...775] [ip4][..udp] [......10.0.2.15][28681] -> [..223.17.132.18][23458] [Unknown][Unknown][Unrated]
idle: [...775] [ip4][..udp] [......10.0.2.15][28681] -> [..223.17.132.18][23458]
not-detected: [...130] [ip4][..udp] [......10.0.2.15][28681] -> [..119.224.95.97][46356] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...130] [ip4][..udp] [......10.0.2.15][28681] -> [..119.224.95.97][46356]
not-detected: [...129] [ip4][..udp] [......10.0.2.15][28681] -> [.176.138.50.179][29411] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...129] [ip4][..udp] [......10.0.2.15][28681] -> [.176.138.50.179][29411]
not-detected: [...788] [ip4][..udp] [......10.0.2.15][28681] -> [.220.134.167.82][.5820] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...788] [ip4][..udp] [......10.0.2.15][28681] -> [.220.134.167.82][.5820]
not-detected: [....79] [ip4][..tcp] [......10.0.2.15][50238] -> [.124.218.41.253][59144] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....79] [ip4][..tcp] [......10.0.2.15][50238] -> [.124.218.41.253][59144]
not-detected: [...230] [ip4][..tcp] [......10.0.2.15][50276] -> [.96.246.156.126][56070] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...230] [ip4][..tcp] [......10.0.2.15][50276] -> [.96.246.156.126][56070]
not-detected: [....70] [ip4][..tcp] [......10.0.2.15][50229] -> [....1.36.249.91][64920] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....70] [ip4][..tcp] [......10.0.2.15][50229] -> [....1.36.249.91][64920]
not-detected: [...789] [ip4][..udp] [......10.0.2.15][28681] -> [..42.98.115.128][23458] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...789] [ip4][..udp] [......10.0.2.15][28681] -> [..42.98.115.128][23458]
not-detected: [...795] [ip4][..udp] [......10.0.2.15][28681] -> [..213.120.26.86][29946] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...795] [ip4][..udp] [......10.0.2.15][28681] -> [..213.120.26.86][29946]
not-detected: [....33] [ip4][..tcp] [......10.0.2.15][50195] -> [162.157.143.201][29762] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....33] [ip4][..tcp] [......10.0.2.15][50195] -> [162.157.143.201][29762]
not-detected: [....91] [ip4][..tcp] [......10.0.2.15][50246] -> [...80.7.252.192][45685] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....91] [ip4][..tcp] [......10.0.2.15][50246] -> [...80.7.252.192][45685]
not-detected: [...755] [ip4][..udp] [......10.0.2.15][28681] -> [..83.134.107.32][38836] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...755] [ip4][..udp] [......10.0.2.15][28681] -> [..83.134.107.32][38836]
not-detected: [....50] [ip4][..tcp] [......10.0.2.15][50210] -> [..36.234.18.166][61404] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....50] [ip4][..tcp] [......10.0.2.15][50210] -> [..36.234.18.166][61404]
not-detected: [...137] [ip4][..udp] [......10.0.2.15][28681] -> [...82.65.70.197][21693] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...137] [ip4][..udp] [......10.0.2.15][28681] -> [...82.65.70.197][21693]
not-detected: [....45] [ip4][..tcp] [......10.0.2.15][50205] -> [.114.46.139.171][52120] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....45] [ip4][..tcp] [......10.0.2.15][50205] -> [.114.46.139.171][52120]
not-detected: [...772] [ip4][..udp] [......10.0.2.15][28681] -> [.73.192.231.237][.9676] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...772] [ip4][..udp] [......10.0.2.15][28681] -> [.73.192.231.237][.9676]
not-detected: [...109] [ip4][..udp] [......10.0.2.15][28681] -> [...88.169.2.153][52414] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...109] [ip4][..udp] [......10.0.2.15][28681] -> [...88.169.2.153][52414]
not-detected: [...140] [ip4][..udp] [......10.0.2.15][28681] -> [.77.197.111.186][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...140] [ip4][..udp] [......10.0.2.15][28681] -> [.77.197.111.186][.6346]
not-detected: [...770] [ip4][..udp] [......10.0.2.15][28681] -> [..97.83.183.148][.8890] [Unknown][Unknown][Unrated]
idle: [...770] [ip4][..udp] [......10.0.2.15][28681] -> [..97.83.183.148][.8890]
not-detected: [...235] [ip4][..tcp] [......10.0.2.15][50281] -> [.94.134.154.158][54130] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...235] [ip4][..tcp] [......10.0.2.15][50281] -> [.94.134.154.158][54130]
idle: [...783] [ip4][.icmp] [.65.182.231.232] -> [......10.0.2.15] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [....60] [ip4][..tcp] [......10.0.2.15][50219] -> [.193.121.165.12][55376] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....60] [ip4][..tcp] [......10.0.2.15][50219] -> [.193.121.165.12][55376]
end: [...239] [ip4][..tcp] [......10.0.2.15][50285] -> [..75.133.101.93][52367] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
- end: [...334] [ip4][..tcp] [......10.0.2.15][50328] -> [..189.147.72.83][26108] [HTTP.Gnutella][Unknown][Media][Potentially Dangerous]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address, Unsafe Protocol
+ idle: [...334] [ip4][..tcp] [......10.0.2.15][50328] -> [..189.147.72.83][26108] [HTTP.Gnutella][Unknown][Media][Potentially Dangerous]
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unsafe Protocol
not-detected: [...175] [ip4][..udp] [......10.0.2.15][28681] -> [...115.69.62.99][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...175] [ip4][..udp] [......10.0.2.15][28681] -> [...115.69.62.99][.6346]
not-detected: [...756] [ip4][..udp] [......10.0.2.15][28681] -> [..41.100.68.255][12838] [Unknown][Unknown][Unrated]
idle: [...756] [ip4][..udp] [......10.0.2.15][28681] -> [..41.100.68.255][12838]
not-detected: [...790] [ip4][..udp] [......10.0.2.15][28681] -> [.218.164.39.233][20855] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...790] [ip4][..udp] [......10.0.2.15][28681] -> [.218.164.39.233][20855]
not-detected: [....80] [ip4][..tcp] [......10.0.2.15][50239] -> [...112.105.52.2][.6384] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....80] [ip4][..tcp] [......10.0.2.15][50239] -> [...112.105.52.2][.6384]
not-detected: [...232] [ip4][..tcp] [......10.0.2.15][50278] -> [..36.231.59.187][62234] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...232] [ip4][..tcp] [......10.0.2.15][50278] -> [..36.231.59.187][62234]
not-detected: [...766] [ip4][..udp] [......10.0.2.15][28681] -> [...76.119.55.28][20347] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...766] [ip4][..udp] [......10.0.2.15][28681] -> [...76.119.55.28][20347]
not-detected: [...763] [ip4][..udp] [......10.0.2.15][28681] -> [.85.170.209.214][46210] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...763] [ip4][..udp] [......10.0.2.15][28681] -> [.85.170.209.214][46210]
end: [...288] [ip4][..tcp] [......10.0.2.15][50312] -> [104.238.172.250][23548] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
not-detected: [...120] [ip4][..tcp] [......10.0.2.15][50251] -> [...24.127.1.235][37814] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...120] [ip4][..tcp] [......10.0.2.15][50251] -> [...24.127.1.235][37814]
not-detected: [...144] [ip4][..tcp] [......10.0.2.15][50257] -> [...219.70.48.23][.3054] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...144] [ip4][..tcp] [......10.0.2.15][50257] -> [...219.70.48.23][.3054]
not-detected: [...286] [ip4][..tcp] [......10.0.2.15][50310] -> [.76.110.153.177][40022] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...286] [ip4][..tcp] [......10.0.2.15][50310] -> [.76.110.153.177][40022]
not-detected: [....40] [ip4][..tcp] [......10.0.2.15][50201] -> [..78.122.93.185][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....40] [ip4][..tcp] [......10.0.2.15][50201] -> [..78.122.93.185][.6346]
not-detected: [....58] [ip4][..tcp] [......10.0.2.15][50217] -> [.113.252.86.162][54958] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....58] [ip4][..tcp] [......10.0.2.15][50217] -> [.113.252.86.162][54958]
not-detected: [...158] [ip4][..udp] [......10.0.2.15][28681] -> [.118.166.226.70][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...158] [ip4][..udp] [......10.0.2.15][28681] -> [.118.166.226.70][.6346]
not-detected: [....32] [ip4][..tcp] [......10.0.2.15][50194] -> [..92.152.66.153][43771] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....32] [ip4][..tcp] [......10.0.2.15][50194] -> [..92.152.66.153][43771]
not-detected: [....87] [ip4][..udp] [......10.0.2.15][28681] -> [..92.131.85.245][31743] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....87] [ip4][..udp] [......10.0.2.15][28681] -> [..92.131.85.245][31743]
not-detected: [....83] [ip4][..tcp] [......10.0.2.15][50242] -> [109.210.203.131][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....83] [ip4][..tcp] [......10.0.2.15][50242] -> [109.210.203.131][.6346]
not-detected: [....66] [ip4][..tcp] [......10.0.2.15][50225] -> [.109.210.81.147][24800] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....66] [ip4][..tcp] [......10.0.2.15][50225] -> [.109.210.81.147][24800]
not-detected: [...150] [ip4][..tcp] [......10.0.2.15][50263] -> [..73.182.136.42][27873] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...150] [ip4][..tcp] [......10.0.2.15][50263] -> [..73.182.136.42][27873]
not-detected: [....62] [ip4][..tcp] [......10.0.2.15][50221] -> [...59.104.173.5][49956] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....62] [ip4][..tcp] [......10.0.2.15][50221] -> [...59.104.173.5][49956]
not-detected: [...785] [ip4][..udp] [......10.0.2.15][28681] -> [.176.134.139.39][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...785] [ip4][..udp] [......10.0.2.15][28681] -> [.176.134.139.39][.6346]
not-detected: [...780] [ip4][..udp] [......10.0.2.15][28681] -> [...68.66.94.132][17735] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...780] [ip4][..udp] [......10.0.2.15][28681] -> [...68.66.94.132][17735]
not-detected: [...761] [ip4][..udp] [......10.0.2.15][28681] -> [..195.132.75.56][56009] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...761] [ip4][..udp] [......10.0.2.15][28681] -> [..195.132.75.56][56009]
not-detected: [....55] [ip4][..tcp] [......10.0.2.15][50214] -> [.80.193.171.146][53808] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....55] [ip4][..tcp] [......10.0.2.15][50214] -> [.80.193.171.146][53808]
not-detected: [...231] [ip4][..tcp] [......10.0.2.15][50277] -> [.82.181.251.218][36368] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...231] [ip4][..tcp] [......10.0.2.15][50277] -> [.82.181.251.218][36368]
not-detected: [...791] [ip4][..udp] [......10.0.2.15][28681] -> [...219.85.11.85][10722] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...791] [ip4][..udp] [......10.0.2.15][28681] -> [...219.85.11.85][10722]
end: [....94] [ip4][..tcp] [......10.0.2.15][50249] -> [.86.208.180.181][45883] [Gnutella][Unknown][Download][Potentially Dangerous]
RISK: Unsafe Protocol
idle: [...312] [ip4][..udp] [......10.0.2.15][28681] -> [..24.167.201.53][47282] [Gnutella][Unknown][Download][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
not-detected: [...138] [ip4][..udp] [......10.0.2.15][28681] -> [167.114.170.156][23844] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...138] [ip4][..udp] [......10.0.2.15][28681] -> [167.114.170.156][23844]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/google_ssl.pcap.out b/test/results/flow-info/default/google_ssl.pcap.out
index 9ba4d0224..9ba4d0224 100644
--- a/test/results/flow-info/google_ssl.pcap.out
+++ b/test/results/flow-info/default/google_ssl.pcap.out
diff --git a/test/results/flow-info/googledns_android10.pcap.out b/test/results/flow-info/default/googledns_android10.pcap.out
index 694382895..5ca35196f 100644
--- a/test/results/flow-info/googledns_android10.pcap.out
+++ b/test/results/flow-info/default/googledns_android10.pcap.out
@@ -35,8 +35,10 @@
[ENTROPIES...: 4.3,5.0,5.0,5.4,5.0,7.1,7.5,7.1,5.1,5.0,5.1,6.1,7.1,6.7,5.0,6.8,7.6,4.9,7.6,5.1,6.8,5.1,7.5,5.1,6.8,5.0,7.6,5.1,6.8,5.0,7.6,5.1]
new: [.....5] [ip4][.icmp] [..192.168.1.159] -> [........8.8.8.8]
detected: [.....5] [ip4][.icmp] [..192.168.1.159] -> [........8.8.8.8] [ICMP][Google][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....6] [ip4][..tcp] [........8.8.4.4][..853] -> [..192.168.1.159][47968] [MIDSTREAM]
update: [.....5] [ip4][.icmp] [..192.168.1.159] -> [........8.8.8.8] [ICMP][Google][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....7] [ip4][..tcp] [..192.168.1.159][48098] -> [........8.8.4.4][..853]
detected: [.....7] [ip4][..tcp] [..192.168.1.159][48098] -> [........8.8.4.4][..853] [TLS.DoH_DoT][Google][Network][Acceptable][dns.google]
RISK: TLS (probably) Not Carrying HTTPS
@@ -53,7 +55,9 @@
[PKTLENS.....: 60,60,52,569,52,199,52,103,52,211,52,551,52,211,52,551,52,211,52,551,52,211,52,551,52,211,52,211,551,52,52,551]
[ENTROPIES...: 4.2,4.9,4.8,6.2,4.7,6.1,4.8,5.5,4.8,6.8,4.7,7.5,4.8,6.8,4.8,7.5,4.8,6.7,4.9,7.6,4.9,6.7,4.8,7.6,4.9,6.8,4.9,6.8,7.6,4.9,4.9,7.6]
update: [.....5] [ip4][.icmp] [..192.168.1.159] -> [........8.8.8.8] [ICMP][Google][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....5] [ip4][.icmp] [..192.168.1.159] -> [........8.8.8.8] [ICMP][Google][Network][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [.....1] [ip4][..tcp] [........8.8.8.8][..853] -> [..192.168.1.159][55856] [DoH_DoT][Google][Network][Acceptable]
end: [.....1] [ip4][..tcp] [........8.8.8.8][..853] -> [..192.168.1.159][55856]
end: [.....3] [ip4][..tcp] [..192.168.1.159][56024] -> [........8.8.8.8][..853]
diff --git a/test/results/flow-info/gquic.pcap.out b/test/results/flow-info/default/gquic.pcap.out
index 2aadd0832..525031ca0 100644
--- a/test/results/flow-info/gquic.pcap.out
+++ b/test/results/flow-info/default/gquic.pcap.out
@@ -3,5 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [.....10.44.5.25][61097] -> [.216.58.213.163][..443]
detected: [.....1] [ip4][..udp] [.....10.44.5.25][61097] -> [.216.58.213.163][..443] [QUIC.Google][Google][Web][Acceptable][www.gstatic.com]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [.....10.44.5.25][61097] -> [.216.58.213.163][..443] [QUIC.Google][Google][Web][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/gtp_c.pcap.out b/test/results/flow-info/default/gtp_c.pcap.out
index be044ad43..2f93d97d5 100644
--- a/test/results/flow-info/gtp_c.pcap.out
+++ b/test/results/flow-info/default/gtp_c.pcap.out
@@ -3,5 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [.....10.101.0.2][.1024] -> [.....10.102.0.2][.2123]
detected: [.....1] [ip4][..udp] [.....10.101.0.2][.1024] -> [.....10.102.0.2][.2123] [GTP.GTP_C][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [.....10.101.0.2][.1024] -> [.....10.102.0.2][.2123] [GTP.GTP_C][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/gtp_false_positive.pcapng.out b/test/results/flow-info/default/gtp_false_positive.pcapng.out
index 752fa3d09..ef2ab6f9d 100644
--- a/test/results/flow-info/gtp_false_positive.pcapng.out
+++ b/test/results/flow-info/default/gtp_false_positive.pcapng.out
@@ -7,12 +7,15 @@
DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 1]
new: [.....2] [ip4][..udp] [...50.7.111.134][17000] -> [103.225.103.159][.2123]
not-detected: [.....1] [ip4][..udp] [.....24.1.33.66][29255] -> [..62.56.122.232][.3386] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [.....24.1.33.66][29255] -> [..62.56.122.232][.3386]
DAEMON-EVENT: [Processed: 6 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 2|skipped: 0|!detected: 1|guessed: 0|detection-updates: 0|updates: 1]
new: [.....3] [ip4][..udp] [119.185.190.173][.2123] -> [...66.86.98.114][50140]
guessed: [.....2] [ip4][..udp] [...50.7.111.134][17000] -> [103.225.103.159][.2123] [GTP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [...50.7.111.134][17000] -> [103.225.103.159][.2123]
guessed: [.....3] [ip4][..udp] [119.185.190.173][.2123] -> [...66.86.98.114][50140] [GTP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [119.185.190.173][.2123] -> [...66.86.98.114][50140]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/gtp_prime.pcapng.out b/test/results/flow-info/default/gtp_prime.pcapng.out
index 7159b2bad..7159b2bad 100644
--- a/test/results/flow-info/gtp_prime.pcapng.out
+++ b/test/results/flow-info/default/gtp_prime.pcapng.out
diff --git a/test/results/flow-info/h323-overflow.pcap.out b/test/results/flow-info/default/h323-overflow.pcap.out
index e20a30e85..5ca162658 100644
--- a/test/results/flow-info/h323-overflow.pcap.out
+++ b/test/results/flow-info/default/h323-overflow.pcap.out
@@ -3,5 +3,6 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [....192.168.1.1][31337] -> [....192.168.1.2][...80] [MIDSTREAM]
guessed: [.....1] [ip4][..tcp] [....192.168.1.1][31337] -> [....192.168.1.2][...80] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..tcp] [....192.168.1.1][31337] -> [....192.168.1.2][...80]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/h323.pcap.out b/test/results/flow-info/default/h323.pcap.out
index b8d0f10b0..b8d0f10b0 100644
--- a/test/results/flow-info/h323.pcap.out
+++ b/test/results/flow-info/default/h323.pcap.out
diff --git a/test/results/flow-info/hangout.pcap.out b/test/results/flow-info/default/hangout.pcap.out
index 39fd14545..99f37559e 100644
--- a/test/results/flow-info/hangout.pcap.out
+++ b/test/results/flow-info/default/hangout.pcap.out
@@ -3,7 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [.74.125.134.127][19305] -> [....10.89.61.13][56406]
detected: [.....1] [ip4][..udp] [.74.125.134.127][19305] -> [....10.89.61.13][56406] [STUN.GoogleHangoutDuo][Google][VoIP][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....1] [ip4][..udp] [.74.125.134.127][19305] -> [....10.89.61.13][56406] [STUN.GoogleHangoutDuo][Google][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/default/heuristic_tcp_ack_payload.pcap.out b/test/results/flow-info/default/heuristic_tcp_ack_payload.pcap.out
new file mode 100644
index 000000000..1a95b0232
--- /dev/null
+++ b/test/results/flow-info/default/heuristic_tcp_ack_payload.pcap.out
@@ -0,0 +1,66 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..tcp] [.194.226.199.21][58155] -> [..52.18.127.189][..443]
+ analyse: [.....1] [ip4][..tcp] [.194.226.199.21][58155] -> [..52.18.127.189][..443]
+ min| max| avg| stddev| variance| entropy
+ [IAT.........: 0.000| 28.648| 1.860| 7.030| 49424738.812| 1.100]
+ [PKTLEN......: 42.000| 2960.000| 308.700| 576.000| 331721.900| 3.600]
+ [BINS(c->s)..: 6,2,1,2,0,0,0,0,0,0,0,0,0,0,1,1,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+ [BINS(s->c)..: 7,3,1,2,0,0,0,0,0,0,1,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,1]
+ [DIRECTIONS..: 0,1,0,0,1,1,1,1,0,1,1,0,0,0,0,0,1,1,1,1,0,0,1,1,0,1,0,0,0,1,1,1]
+ [IATS(ms)....: 50.3,51.1,0.6,51.7,0.1,0.0,0.1,51.3,1.4,0.0,1.9,0.5,0.2,0.2,0.0,51.7,0.0,0.0,0.1,50.1,0.4,8.1,0.0,8.1,85.1,28647.7,0.0,0.1,28613.9,0.0,0.0]
+ [PKTLENS.....: 52,52,42,557,46,153,1500,2960,42,378,49,42,166,145,502,550,160,91,118,46,42,78,439,78,42,46,113,86,1125,46,46,86]
+ [ENTROPIES...: 4.7,4.8,4.7,5.8,4.4,5.8,7.2,7.3,4.7,7.4,4.8,4.7,6.2,6.3,7.6,7.6,6.6,5.4,6.1,4.4,4.7,5.4,7.5,5.4,4.7,4.5,6.0,5.6,7.8,4.4,4.5,5.5]
+ DAEMON-EVENT: [Processed: 63 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....2] [ip4][..tcp] [194.226.199.226][34101] -> [..8.247.226.126][...80]
+ guessed: [.....1] [ip4][..tcp] [.194.226.199.21][58155] -> [..52.18.127.189][..443] [TLS][AmazonAWS][Web][Safe]
+ end: [.....1] [ip4][..tcp] [.194.226.199.21][58155] -> [..52.18.127.189][..443]
+ new: [.....3] [ip4][..tcp] [.194.226.199.61][27453] -> [...35.241.9.150][..443]
+ analyse: [.....3] [ip4][..tcp] [.194.226.199.61][27453] -> [...35.241.9.150][..443]
+ min| max| avg| stddev| variance| entropy
+ [IAT.........: 0.000| 0.030| 0.007| 0.011| 122.098| 3.500]
+ [PKTLEN......: 42.000| 2864.000| 672.800| 1000.300| 1000640.100| 3.700]
+ [BINS(c->s)..: 11,1,1,0,0,1,1,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+ [BINS(s->c)..: 3,1,1,0,0,0,0,0,1,0,1,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,2,0,0,6]
+ [DIRECTIONS..: 0,1,0,0,1,1,1,1,0,0,0,1,1,0,0,0,0,1,1,1,1,0,1,1,0,0,1,0,1,0,1,0]
+ [IATS(ms)....: 24.1,24.4,0.4,25.0,2.4,0.0,0.0,27.4,0.3,4.7,29.9,0.0,24.6,1.2,0.0,0.1,26.5,0.0,0.3,0.0,25.6,0.9,0.5,1.6,0.3,1.0,1.0,1.3,1.2,1.0,1.3]
+ [PKTLENS.....: 52,52,42,258,46,2088,2088,462,42,42,133,318,109,42,217,361,78,46,78,364,1452,42,1452,2864,42,42,2864,42,2864,42,2864,42]
+ [ENTROPIES...: 4.6,5.0,4.7,5.7,4.5,7.4,7.6,7.4,4.7,4.7,5.8,7.0,5.8,4.7,6.9,7.4,5.3,4.5,5.2,7.3,7.9,4.6,7.9,7.9,4.7,4.8,7.9,4.8,7.9,4.8,7.9,4.6]
+ guessed: [.....2] [ip4][..tcp] [194.226.199.226][34101] -> [..8.247.226.126][...80] [HTTP][Unknown][Web][Acceptable][]
+ end: [.....2] [ip4][..tcp] [194.226.199.226][34101] -> [..8.247.226.126][...80]
+ DAEMON-EVENT: [Processed: 160 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 3|skipped: 0|!detected: 0|guessed: 2|detection-updates: 0|updates: 0]
+ new: [.....4] [ip4][..tcp] [..194.226.199.9][49756] -> [..92.223.106.21][..443]
+ new: [.....5] [ip4][..tcp] [194.226.199.103][62580] -> [..217.69.139.59][..443]
+ guessed: [.....3] [ip4][..tcp] [.194.226.199.61][27453] -> [...35.241.9.150][..443] [TLS][GoogleCloud][Web][Safe]
+ end: [.....3] [ip4][..tcp] [.194.226.199.61][27453] -> [...35.241.9.150][..443]
+ analyse: [.....5] [ip4][..tcp] [194.226.199.103][62580] -> [..217.69.139.59][..443]
+ min| max| avg| stddev| variance| entropy
+ [IAT.........: 0.000| 5.456| 0.293| 1.017| 1033283.961| 1.700]
+ [PKTLEN......: 42.000| 2883.000| 385.900| 734.400| 539373.900| 3.400]
+ [BINS(c->s)..: 14,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+ [BINS(s->c)..: 6,0,0,0,0,0,0,0,4,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,2,0,0,2]
+ [DIRECTIONS..: 0,0,1,1,1,1,0,0,0,0,1,1,1,1,1,1,0,0,0,0,0,0,1,1,0,0,1,1,0,0,0,0]
+ [IATS(ms)....: 0.0,10.5,0.0,1548.8,0.0,1559.9,0.0,2.5,0.0,14.1,0.0,4.4,0.0,0.1,0.0,17.1,0.0,0.0,0.0,4.7,0.0,18.5,0.0,216.2,0.0,213.8,0.0,10.4,0.0,5455.6,0.0]
+ [PKTLENS.....: 52,52,46,46,46,46,42,42,609,609,46,46,1450,1450,2883,2883,42,42,42,42,166,166,298,298,42,42,298,298,42,42,71,71]
+ [ENTROPIES...: 4.5,4.5,4.8,4.8,4.8,4.8,4.8,4.8,7.1,7.1,4.6,4.6,7.2,7.2,7.5,7.5,4.7,4.7,4.7,4.7,6.3,6.3,7.1,7.1,4.8,4.8,7.1,7.1,4.7,4.7,5.2,5.2]
+ new: [.....6] [ip4][..tcp] [.194.226.199.61][.6946] -> [....2.22.40.186][..443]
+ analyse: [.....6] [ip4][..tcp] [.194.226.199.61][.6946] -> [....2.22.40.186][..443]
+ min| max| avg| stddev| variance| entropy
+ [IAT.........: 0.000| 2.635| 0.323| 0.688| 472790.598| 2.800]
+ [PKTLEN......: 42.000| 2960.000| 481.700| 697.200| 486142.700| 3.800]
+ [BINS(c->s)..: 8,0,1,1,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0]
+ [BINS(s->c)..: 9,1,0,0,0,0,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,4,0,1]
+ [DIRECTIONS..: 0,1,1,0,0,0,1,1,1,1,1,1,0,1,1,1,1,0,0,0,0,0,0,1,1,1,1,1,1,0,0,0]
+ [IATS(ms)....: 9.8,15.3,2065.2,1.8,0.1,2048.2,2.0,1.8,0.8,0.0,2.2,39.4,217.2,216.0,433.2,854.7,2634.8,0.8,114.8,2.4,133.5,0.3,1201.5,0.2,0.0,0.0,0.2,0.1,15.7,0.4,0.9]
+ [PKTLENS.....: 52,52,52,52,42,561,52,52,46,2960,1216,1500,52,46,1500,1500,1500,52,52,42,42,120,138,46,311,327,46,101,71,1500,658,673]
+ [ENTROPIES...: 4.8,5.0,5.0,4.8,4.6,6.8,5.0,5.0,4.6,7.9,7.8,7.9,4.8,5.1,7.9,7.9,7.9,4.9,4.8,4.7,4.8,6.3,6.6,4.6,7.3,7.3,4.6,6.2,5.8,7.9,7.6,7.7]
+ guessed: [.....6] [ip4][..tcp] [.194.226.199.61][.6946] -> [....2.22.40.186][..443] [TLS][Unknown][Web][Safe]
+ idle: [.....6] [ip4][..tcp] [.194.226.199.61][.6946] -> [....2.22.40.186][..443]
+ guessed: [.....4] [ip4][..tcp] [..194.226.199.9][49756] -> [..92.223.106.21][..443] [TLS][Unknown][Web][Safe]
+ end: [.....4] [ip4][..tcp] [..194.226.199.9][49756] -> [..92.223.106.21][..443]
+ guessed: [.....5] [ip4][..tcp] [194.226.199.103][62580] -> [..217.69.139.59][..443] [TLS][Unknown][Web][Safe]
+ end: [.....5] [ip4][..tcp] [194.226.199.103][62580] -> [..217.69.139.59][..443]
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/default/hots.pcapng.out b/test/results/flow-info/default/hots.pcapng.out
new file mode 100644
index 000000000..4182e54fe
--- /dev/null
+++ b/test/results/flow-info/default/hots.pcapng.out
@@ -0,0 +1,45 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..udp] [...192.168.0.73][54598] -> [...24.105.56.13][.3724]
+ detected: [.....1] [ip4][..udp] [...192.168.0.73][54598] -> [...24.105.56.13][.3724] [Heroes_of_the_Storm][Starcraft][Game][Fun]
+ RISK: Unidirectional Traffic
+ analyse: [.....1] [ip4][..udp] [...192.168.0.73][54598] -> [...24.105.56.13][.3724] [Heroes_of_the_Storm][Starcraft][Game][Fun]
+ min| max| avg| stddev| variance| entropy
+ [IAT.........: 0.004| 91.418| 2.995| 16.144| 260622725.939| 0.200]
+ [PKTLEN......: 48.000| 60.000| 54.900| 5.000| 25.200| 5.000]
+ [BINS(c->s)..: 14,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+ [BINS(s->c)..: 3,15,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+ [DIRECTIONS..: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1]
+ [IATS(ms)....: 39.9,24.4,63.7,66.2,61.9,34.4,30.8,61.1,3.6,33.3,62.9,57.4,6.9,91418.3,63.4,62.5,36.6,26.4,63.2,62.9,63.1,62.9,63.5,62.7,63.2,32.4,30.2,63.0,62.9,26.1,37.0]
+ [PKTLENS.....: 52,48,52,52,52,52,48,52,48,52,52,52,48,52,60,60,60,48,60,60,60,60,60,60,60,60,48,60,60,60,48,60]
+ [ENTROPIES...: 4.9,4.8,4.8,4.9,4.9,4.9,4.8,4.9,4.8,4.9,4.9,4.9,4.8,4.9,4.4,4.4,4.4,3.7,4.4,4.4,4.3,4.4,4.2,4.3,4.3,4.4,3.7,4.4,4.4,4.4,3.7,4.4]
+ update: [.....1] [ip4][..udp] [...192.168.0.73][54598] -> [...24.105.56.13][.3724] [Heroes_of_the_Storm][Starcraft][Game][Fun]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 35 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 1]
+ new: [.....2] [ip4][..udp] [..24.105.57.183][.1119] -> [...192.168.0.73][50609]
+ detected: [.....2] [ip4][..udp] [..24.105.57.183][.1119] -> [...192.168.0.73][50609] [Heroes_of_the_Storm][Starcraft][Game][Fun]
+ RISK: Unidirectional Traffic
+ idle: [.....1] [ip4][..udp] [...192.168.0.73][54598] -> [...24.105.56.13][.3724] [Heroes_of_the_Storm][Starcraft][Game][Fun]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 60 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 2|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 1]
+ new: [.....3] [ip4][..udp] [...24.105.57.16][.3724] -> [...192.168.0.73][50609]
+ detected: [.....3] [ip4][..udp] [...24.105.57.16][.3724] -> [...192.168.0.73][50609] [Heroes_of_the_Storm][Starcraft][Game][Fun]
+ RISK: Unidirectional Traffic
+ analyse: [.....3] [ip4][..udp] [...24.105.57.16][.3724] -> [...192.168.0.73][50609] [Heroes_of_the_Storm][Starcraft][Game][Fun]
+ min| max| avg| stddev| variance| entropy
+ [IAT.........: 0.001| 0.063| 0.033| 0.019| 353.907| 4.700]
+ [PKTLEN......: 48.000| 150.000| 105.500| 33.500| 1124.400| 4.900]
+ [BINS(c->s)..: 7,0,16,9,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+ [BINS(s->c)..: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+ [DIRECTIONS..: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+ [IATS(ms)....: 31.8,14.7,16.3,4.7,58.4,5.0,58.2,42.4,20.5,62.8,16.3,47.0,45.2,18.0,62.8,27.1,19.2,16.4,50.2,13.1,1.1,62.3,31.6,31.0,31.9,30.7,13.2,50.3,34.1,29.3,62.1]
+ [PKTLENS.....: 111,111,48,132,132,103,103,121,121,103,109,109,103,48,150,109,109,48,109,48,150,150,146,48,129,48,138,138,121,48,123,109]
+ [ENTROPIES...: 5.7,5.7,3.7,6.0,6.0,5.4,5.4,5.9,5.9,5.6,5.7,5.7,5.5,3.7,6.2,5.8,5.8,3.7,5.7,3.7,6.3,6.3,6.3,3.7,6.0,3.7,6.0,6.1,5.9,3.7,6.0,5.7]
+ idle: [.....2] [ip4][..udp] [..24.105.57.183][.1119] -> [...192.168.0.73][50609] [Heroes_of_the_Storm][Starcraft][Game][Fun]
+ RISK: Unidirectional Traffic
+ idle: [.....3] [ip4][..udp] [...24.105.57.16][.3724] -> [...192.168.0.73][50609] [Heroes_of_the_Storm][Starcraft][Game][Fun]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/hpvirtgrp.pcap.out b/test/results/flow-info/default/hpvirtgrp.pcap.out
index ea658686e..ea658686e 100644
--- a/test/results/flow-info/hpvirtgrp.pcap.out
+++ b/test/results/flow-info/default/hpvirtgrp.pcap.out
diff --git a/test/results/flow-info/hsrp0.pcap.out b/test/results/flow-info/default/hsrp0.pcap.out
index 939962774..939962774 100644
--- a/test/results/flow-info/hsrp0.pcap.out
+++ b/test/results/flow-info/default/hsrp0.pcap.out
diff --git a/test/results/flow-info/hsrp2.pcap.out b/test/results/flow-info/default/hsrp2.pcap.out
index 05c977c9d..05c977c9d 100644
--- a/test/results/flow-info/hsrp2.pcap.out
+++ b/test/results/flow-info/default/hsrp2.pcap.out
diff --git a/test/results/flow-info/hsrp2_ipv6.pcapng.out b/test/results/flow-info/default/hsrp2_ipv6.pcapng.out
index 417fd21db..417fd21db 100644
--- a/test/results/flow-info/hsrp2_ipv6.pcapng.out
+++ b/test/results/flow-info/default/hsrp2_ipv6.pcapng.out
diff --git a/test/results/flow-info/http-crash-content-disposition.pcap.out b/test/results/flow-info/default/http-crash-content-disposition.pcap.out
index a40dad5fd..a40dad5fd 100644
--- a/test/results/flow-info/http-crash-content-disposition.pcap.out
+++ b/test/results/flow-info/default/http-crash-content-disposition.pcap.out
diff --git a/test/results/flow-info/http-lines-split.pcap.out b/test/results/flow-info/default/http-lines-split.pcap.out
index 438431309..e922f3216 100644
--- a/test/results/flow-info/http-lines-split.pcap.out
+++ b/test/results/flow-info/default/http-lines-split.pcap.out
@@ -3,6 +3,8 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [....192.168.0.1][39236] -> [...192.168.0.20][31337]
detected: [.....1] [ip4][..tcp] [....192.168.0.1][39236] -> [...192.168.0.20][31337] [HTTP][Unknown][Web][Acceptable][toni.lan]
+ RISK: Known Proto on Non Std Port, HTTP Susp User-Agent
+ detection-update: [.....1] [ip4][..tcp] [....192.168.0.1][39236] -> [...192.168.0.20][31337] [HTTP][Unknown][Web][Acceptable][toni.lan]
RISK: Known Proto on Non Std Port
end: [.....1] [ip4][..tcp] [....192.168.0.1][39236] -> [...192.168.0.20][31337] [HTTP][Unknown][Web][Acceptable]
RISK: Known Proto on Non Std Port
diff --git a/test/results/flow-info/default/http-manipulated.pcap.out b/test/results/flow-info/default/http-manipulated.pcap.out
new file mode 100644
index 000000000..b40fcfafa
--- /dev/null
+++ b/test/results/flow-info/default/http-manipulated.pcap.out
@@ -0,0 +1,16 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..tcp] [...192.168.0.20][33632] -> [....192.168.0.7][.8080]
+ detected: [.....1] [ip4][..tcp] [...192.168.0.20][33632] -> [....192.168.0.7][.8080] [HTTP][Unknown][Web][Acceptable][wwww.lan]
+ RISK: Known Proto on Non Std Port
+ DAEMON-EVENT: [Processed: 10 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....2] [ip4][..tcp] [...192.168.0.20][33684] -> [....192.168.0.7][.8080]
+ detected: [.....2] [ip4][..tcp] [...192.168.0.20][33684] -> [....192.168.0.7][.8080] [HTTP][Unknown][Web][Acceptable][www.lan]
+ RISK: Known Proto on Non Std Port
+ end: [.....1] [ip4][..tcp] [...192.168.0.20][33632] -> [....192.168.0.7][.8080] [HTTP][Unknown][Web][Acceptable]
+ RISK: Known Proto on Non Std Port
+ idle: [.....2] [ip4][..tcp] [...192.168.0.20][33684] -> [....192.168.0.7][.8080] [HTTP][Unknown][Web][Acceptable]
+ RISK: Known Proto on Non Std Port
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/http-proxy.pcapng.out b/test/results/flow-info/default/http-proxy.pcapng.out
index b1c515e31..b1c515e31 100644
--- a/test/results/flow-info/http-proxy.pcapng.out
+++ b/test/results/flow-info/default/http-proxy.pcapng.out
diff --git a/test/results/flow-info/default/http_asymmetric.pcapng.out b/test/results/flow-info/default/http_asymmetric.pcapng.out
new file mode 100644
index 000000000..7d4d35a73
--- /dev/null
+++ b/test/results/flow-info/default/http_asymmetric.pcapng.out
@@ -0,0 +1,13 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..tcp] [....192.168.0.1][.1044] -> [.....10.10.10.1][...80]
+ new: [.....2] [ip4][..tcp] [..192.168.1.146][...80] -> [..192.168.1.103][.1044]
+ detected: [.....1] [ip4][..tcp] [....192.168.0.1][.1044] -> [.....10.10.10.1][...80] [HTTP][Unknown][Web][Acceptable][proxy.wiresharkfest.acropolis.local]
+ RISK: Unidirectional Traffic
+ detected: [.....2] [ip4][..tcp] [..192.168.1.146][...80] -> [..192.168.1.103][.1044] [HTTP][Unknown][Web][Acceptable][]
+ RISK: HTTP Susp User-Agent, Unidirectional Traffic
+ end: [.....2] [ip4][..tcp] [..192.168.1.146][...80] -> [..192.168.1.103][.1044] [HTTP][Unknown][Web][Acceptable]
+ RISK: HTTP Susp User-Agent, Error Code, Unidirectional Traffic
+ end: [.....1] [ip4][..tcp] [....192.168.0.1][.1044] -> [.....10.10.10.1][...80]
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/http_auth.pcap.out b/test/results/flow-info/default/http_auth.pcap.out
index 2955d557a..eca48ae82 100644
--- a/test/results/flow-info/http_auth.pcap.out
+++ b/test/results/flow-info/default/http_auth.pcap.out
@@ -3,6 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [....192.168.0.4][54337] -> [192.254.189.169][...80]
detected: [.....1] [ip4][..tcp] [....192.168.0.4][54337] -> [192.254.189.169][...80] [HTTP][Unknown][Web][Acceptable][browserspy.dk]
+ RISK: Clear-Text Credentials
analyse: [.....1] [ip4][..tcp] [....192.168.0.4][54337] -> [192.254.189.169][...80] [HTTP][Unknown][Web][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 4.862| 0.405| 1.194| 1424465.723| 2.200]
@@ -14,4 +15,5 @@
[PKTLENS.....: 64,60,52,791,52,1500,537,52,131,52,274,52,1500,1500,52,1500,1500,52,1500,1500,52,1500,1500,52,1500,1500,52,975,52,52,52,52]
[ENTROPIES...: 4.4,5.1,5.1,5.9,5.0,5.4,5.6,5.1,5.4,5.0,5.6,5.1,5.4,5.1,5.0,5.0,5.1,5.1,5.1,5.1,5.1,5.1,5.2,5.1,5.4,5.4,5.0,5.7,5.0,5.0,5.1,5.1]
end: [.....1] [ip4][..tcp] [....192.168.0.4][54337] -> [192.254.189.169][...80] [HTTP][Unknown][Web][Acceptable]
+ RISK: Clear-Text Credentials, Error Code
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/http_connect.pcap.out b/test/results/flow-info/default/http_connect.pcap.out
index 0bf2556b5..e3a67a883 100644
--- a/test/results/flow-info/http_connect.pcap.out
+++ b/test/results/flow-info/default/http_connect.pcap.out
@@ -5,6 +5,7 @@
detected: [.....1] [ip4][..tcp] [..192.168.1.103][.1714] -> [..192.168.1.146][.8080] [HTTP_Connect][Unknown][Web][Acceptable][apache.org]
new: [.....2] [ip4][..udp] [..192.168.1.146][47767] -> [....192.168.1.2][...53]
detected: [.....2] [ip4][..udp] [..192.168.1.146][47767] -> [....192.168.1.2][...53] [DNS][Unknown][Network][Acceptable][apache.org]
+ RISK: Unidirectional Traffic
detection-update: [.....2] [ip4][..udp] [..192.168.1.146][47767] -> [....192.168.1.2][...53] [DNS][Unknown][Network][Acceptable][apache.org]
new: [.....3] [ip4][..tcp] [..192.168.1.146][35968] -> [..151.101.2.132][..443]
detected: [.....3] [ip4][..tcp] [..192.168.1.146][35968] -> [..151.101.2.132][..443] [TLS][Unknown][Web][Safe][apache.org]
diff --git a/test/results/flow-info/http_guessed_host_and_guessed.pcapng.out b/test/results/flow-info/default/http_guessed_host_and_guessed.pcapng.out
index d9ab531e7..4df05e87b 100644
--- a/test/results/flow-info/http_guessed_host_and_guessed.pcapng.out
+++ b/test/results/flow-info/default/http_guessed_host_and_guessed.pcapng.out
@@ -3,6 +3,6 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [....170.33.13.5][..110] -> [....192.168.0.1][..179]
guessed: [.....1] [ip4][..tcp] [....170.33.13.5][..110] -> [....192.168.0.1][..179] [POP3][Alibaba][Email][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic, TCP Connection Issues
end: [.....1] [ip4][..tcp] [....170.33.13.5][..110] -> [....192.168.0.1][..179]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/http_ipv6.pcap.out b/test/results/flow-info/default/http_ipv6.pcap.out
index 37877e722..bcf466945 100644
--- a/test/results/flow-info/http_ipv6.pcap.out
+++ b/test/results/flow-info/default/http_ipv6.pcap.out
@@ -4,8 +4,10 @@
new: [.....1] [ip6][..tcp] [........2a00:d40:1:3:7aac:c0ff:fea7:d4c][40526] -> [...............2a00:1450:4006:804::200e][..443] [MIDSTREAM]
new: [.....2] [ip6][..tcp] [........2a00:d40:1:3:7aac:c0ff:fea7:d4c][41776] -> [...............2a00:1450:4001:803::1017][..443] [MIDSTREAM]
detected: [.....2] [ip6][..tcp] [........2a00:d40:1:3:7aac:c0ff:fea7:d4c][41776] -> [...............2a00:1450:4001:803::1017][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
new: [.....3] [ip6][..udp] [........2a00:d40:1:3:7aac:c0ff:fea7:d4c][45931] -> [...............2a00:1450:4001:803::1017][..443]
detected: [.....3] [ip6][..udp] [........2a00:d40:1:3:7aac:c0ff:fea7:d4c][45931] -> [...............2a00:1450:4001:803::1017][..443] [QUIC.Google][Unknown][Web][Acceptable][www.google.it]
+ RISK: Unidirectional Traffic
new: [.....4] [ip6][..tcp] [........2a00:d40:1:3:7aac:c0ff:fea7:d4c][58660] -> [...............2a00:1450:4006:803::2008][..443] [MIDSTREAM]
new: [.....5] [ip6][..udp] [........2a00:d40:1:3:7aac:c0ff:fea7:d4c][55145] -> [.................2a00:1450:400b:c02::5f][..443]
analyse: [.....3] [ip6][..udp] [........2a00:d40:1:3:7aac:c0ff:fea7:d4c][45931] -> [...............2a00:1450:4001:803::1017][..443] [QUIC.Google][Unknown][Web][Acceptable]
@@ -53,6 +55,7 @@
idle: [....15] [ip6][..tcp] [........2a00:d40:1:3:7aac:c0ff:fea7:d4c][53134] -> [..................2a02:26f0:ad:197::236][..443]
idle: [.....2] [ip6][..tcp] [........2a00:d40:1:3:7aac:c0ff:fea7:d4c][41776] -> [...............2a00:1450:4001:803::1017][..443]
idle: [.....3] [ip6][..udp] [........2a00:d40:1:3:7aac:c0ff:fea7:d4c][45931] -> [...............2a00:1450:4001:803::1017][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [.....9] [ip6][..tcp] [........2a00:d40:1:3:7aac:c0ff:fea7:d4c][60124] -> [..................2a02:26f0:ad:1a1::eed][..443] [TLS][Unknown][Web][Safe]
idle: [.....9] [ip6][..tcp] [........2a00:d40:1:3:7aac:c0ff:fea7:d4c][60124] -> [..................2a02:26f0:ad:1a1::eed][..443]
guessed: [.....4] [ip6][..tcp] [........2a00:d40:1:3:7aac:c0ff:fea7:d4c][58660] -> [...............2a00:1450:4006:803::2008][..443] [TLS][Unknown][Web][Safe]
diff --git a/test/results/flow-info/http_on_sip_port.pcap.out b/test/results/flow-info/default/http_on_sip_port.pcap.out
index f43c06194..279fcf670 100644
--- a/test/results/flow-info/http_on_sip_port.pcap.out
+++ b/test/results/flow-info/default/http_on_sip_port.pcap.out
@@ -3,7 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [.82.178.111.221][.5060] -> [....45.58.148.2][.8888]
detected: [.....1] [ip4][..tcp] [.82.178.111.221][.5060] -> [....45.58.148.2][.8888] [HTTP][Unknown][Web][Acceptable][45.58.148.2]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI
idle: [.....1] [ip4][..tcp] [.82.178.111.221][.5060] -> [....45.58.148.2][.8888] [HTTP][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Error Code
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/default/http_origin_different_than_host.pcap.out b/test/results/flow-info/default/http_origin_different_than_host.pcap.out
new file mode 100644
index 000000000..88aa38dc5
--- /dev/null
+++ b/test/results/flow-info/default/http_origin_different_than_host.pcap.out
@@ -0,0 +1,8 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ ERROR-EVENT: Unknown packet type [1/16]
+ ERROR-EVENT: Unknown packet type [2/16]
+ ERROR-EVENT: Unknown packet type [3/16]
+ ERROR-EVENT: Unknown packet type [4/16]
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/default/http_starting_with_reply.pcapng.out b/test/results/flow-info/default/http_starting_with_reply.pcapng.out
new file mode 100644
index 000000000..02d370f66
--- /dev/null
+++ b/test/results/flow-info/default/http_starting_with_reply.pcapng.out
@@ -0,0 +1,9 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..tcp] [..192.168.1.146][...80] -> [..192.168.1.103][.1044] [MIDSTREAM]
+ detected: [.....1] [ip4][..tcp] [..192.168.1.146][...80] -> [..192.168.1.103][.1044] [HTTP][Unknown][Web][Acceptable][]
+ RISK: HTTP Susp User-Agent, Unidirectional Traffic
+ detection-update: [.....1] [ip4][..tcp] [..192.168.1.146][...80] -> [..192.168.1.103][.1044] [HTTP][Unknown][Web][Acceptable][proxy.wiresharkfest.acropolis.local]
+ end: [.....1] [ip4][..tcp] [..192.168.1.146][...80] -> [..192.168.1.103][.1044] [HTTP][Unknown][Web][Acceptable]
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/default/http_ua_splitted_in_two_pkts.pcapng.out b/test/results/flow-info/default/http_ua_splitted_in_two_pkts.pcapng.out
new file mode 100644
index 000000000..cb8bc78a1
--- /dev/null
+++ b/test/results/flow-info/default/http_ua_splitted_in_two_pkts.pcapng.out
@@ -0,0 +1,18 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..tcp] [254.125.135.128][21359] -> [..66.152.103.45][...80]
+ detected: [.....1] [ip4][..tcp] [254.125.135.128][21359] -> [..66.152.103.45][...80] [HTTP][Unknown][Web][Acceptable][]
+ detection-update: [.....1] [ip4][..tcp] [254.125.135.128][21359] -> [..66.152.103.45][...80] [HTTP][Unknown][Web][Acceptable][va.origin.startappservice.com]
+ analyse: [.....1] [ip4][..tcp] [254.125.135.128][21359] -> [..66.152.103.45][...80] [HTTP][Unknown][Web][Acceptable]
+ min| max| avg| stddev| variance| entropy
+ [IAT.........: 0.002| 23.452| 4.562| 7.140| 50981941.281| 3.500]
+ [PKTLEN......: 60.000| 1440.000| 626.300| 557.200| 310424.400| 4.500]
+ [BINS(c->s)..: 1,0,0,0,0,0,5,0,3,0,0,0,1,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,10,0,0,0,0]
+ [BINS(s->c)..: 1,0,0,0,8,0,0,0,0,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+ [DIRECTIONS..: 0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1]
+ [IATS(ms)....: 200.2,228.8,3.2,234.0,1087.5,3.3,1090.8,5345.7,5.8,5351.7,23448.9,3.2,23451.8,8290.0,3.2,8292.3,1123.8,3.4,1127.5,8802.3,4.3,8806.8,19530.3,2.3,19532.4,1784.9,3.7,1788.8,938.5,3.4,943.3]
+ [PKTLENS.....: 60,60,1440,327,181,1440,259,181,1440,535,410,1440,257,181,1440,327,181,1440,257,181,1440,461,410,1440,258,181,1440,313,181,1440,259,181]
+ [ENTROPIES...: 4.7,5.1,5.9,5.8,5.7,5.9,5.7,5.7,5.9,6.0,5.8,5.9,5.7,5.7,5.9,5.8,5.7,5.9,5.7,5.7,5.9,6.0,5.8,5.9,5.7,5.7,5.9,5.8,5.7,5.8,5.7,5.8]
+ end: [.....1] [ip4][..tcp] [254.125.135.128][21359] -> [..66.152.103.45][...80] [HTTP][Unknown][Web][Acceptable]
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/i3d.pcap.out b/test/results/flow-info/default/i3d.pcap.out
index 833a32574..7a01e6fb3 100644
--- a/test/results/flow-info/i3d.pcap.out
+++ b/test/results/flow-info/default/i3d.pcap.out
@@ -3,18 +3,26 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..192.168.2.100][60476] -> [..213.163.87.47][50004]
detected: [.....1] [ip4][..udp] [..192.168.2.100][60476] -> [..213.163.87.47][50004] [i3D][Discord][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 15 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....2] [ip4][..udp] [..192.168.2.100][55205] -> [..213.163.87.47][50004]
detected: [.....2] [ip4][..udp] [..192.168.2.100][55205] -> [..213.163.87.47][50004] [i3D][Discord][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [..192.168.2.100][60476] -> [..213.163.87.47][50004] [i3D][Discord][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 30 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 2|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....3] [ip4][..udp] [..192.168.2.100][62620] -> [..213.163.87.47][50004]
detected: [.....3] [ip4][..udp] [..192.168.2.100][62620] -> [..213.163.87.47][50004] [i3D][Discord][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [..192.168.2.100][55205] -> [..213.163.87.47][50004] [i3D][Discord][Game][Fun]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..udp] [..192.168.2.100][62461] -> [..213.163.87.47][50004]
detected: [.....4] [ip4][..udp] [..192.168.2.100][62461] -> [..213.163.87.47][50004] [i3D][Discord][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..udp] [..192.168.2.100][62461] -> [..213.163.87.47][50004] [i3D][Discord][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [..192.168.2.100][62620] -> [..213.163.87.47][50004] [i3D][Discord][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/iax.pcap.out b/test/results/flow-info/default/iax.pcap.out
index 3e8f99eb2..2a1c5ff6c 100644
--- a/test/results/flow-info/iax.pcap.out
+++ b/test/results/flow-info/default/iax.pcap.out
@@ -3,6 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [...82.110.36.84][.4569] -> [..192.168.2.120][.4566]
detected: [.....1] [ip4][..udp] [...82.110.36.84][.4569] -> [..192.168.2.120][.4566] [IAX][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
analyse: [.....1] [ip4][..udp] [...82.110.36.84][.4569] -> [..192.168.2.120][.4566] [IAX][Unknown][VoIP][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.001| 0.051| 0.019| 0.011| 120.322| 4.700]
@@ -14,4 +15,5 @@
[PKTLENS.....: 94,40,40,46,40,46,192,200,200,46,192,192,192,192,192,192,192,192,192,192,192,192,192,192,192,192,192,192,192,192,192,192]
[ENTROPIES...: 4.7,4.3,4.4,4.4,4.4,4.4,1.3,1.5,1.3,4.3,1.1,1.3,1.9,1.3,1.3,1.3,1.3,1.3,1.3,1.3,1.3,1.3,1.3,1.3,1.3,1.3,1.3,1.3,1.3,1.3,1.3,1.3]
idle: [.....1] [ip4][..udp] [...82.110.36.84][.4569] -> [..192.168.2.120][.4566] [IAX][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/icmp-tunnel.pcap.out b/test/results/flow-info/default/icmp-tunnel.pcap.out
index b5ee16aa0..8b7427ee7 100644
--- a/test/results/flow-info/icmp-tunnel.pcap.out
+++ b/test/results/flow-info/default/icmp-tunnel.pcap.out
@@ -3,7 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132]
detected: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
analyse: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132] [ICMP][Unknown][Network][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.999| 13.999| 1.420| 2.297| 5274800.751| 4.200]
@@ -15,59 +15,59 @@
[PKTLENS.....: 112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112]
[ENTROPIES...: 5.6,5.6,5.7,5.7,5.7,5.6,5.6,5.6,5.6,5.6,5.6,5.7,5.7,5.6,5.7,5.7,5.7,5.7,5.6,5.7,5.6,5.7,5.6,5.7,5.6,5.7,5.6,5.6,5.7,5.7,5.7,5.7]
update: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
DAEMON-EVENT: [Processed: 251 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 12]
update: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
update: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
idle: [.....1] [ip4][.icmp] [192.168.154.131] -> [192.168.154.132] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/iec60780-5-104.pcap.out b/test/results/flow-info/default/iec60780-5-104.pcap.out
index c890acf1e..c890acf1e 100644
--- a/test/results/flow-info/iec60780-5-104.pcap.out
+++ b/test/results/flow-info/default/iec60780-5-104.pcap.out
diff --git a/test/results/flow-info/imap-starttls.pcap.out b/test/results/flow-info/default/imap-starttls.pcap.out
index a6166a65c..a6166a65c 100644
--- a/test/results/flow-info/imap-starttls.pcap.out
+++ b/test/results/flow-info/default/imap-starttls.pcap.out
diff --git a/test/results/flow-info/imap.pcap.out b/test/results/flow-info/default/imap.pcap.out
index ef6de66d7..897fd4b50 100644
--- a/test/results/flow-info/imap.pcap.out
+++ b/test/results/flow-info/default/imap.pcap.out
@@ -3,7 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [......10.40.4.2][46045] -> [......10.40.3.2][..143]
detected: [.....1] [ip4][..tcp] [......10.40.4.2][46045] -> [......10.40.3.2][..143] [IMAP][Unknown][Email][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Clear-Text Credentials
analyse: [.....1] [ip4][..tcp] [......10.40.4.2][46045] -> [......10.40.3.2][..143] [IMAP][Unknown][Email][Unsafe]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 4.331| 0.295| 1.060| 1123749.069| 1.400]
@@ -15,5 +15,5 @@
[PKTLENS.....: 60,60,52,94,52,71,117,52,84,52,78,79,52,72,73,52,109,52,72,73,52,109,52,73,64,52,311,52,125,164,52,748]
[ENTROPIES...: 4.5,5.0,4.9,5.5,4.9,5.2,5.6,4.8,5.5,4.9,5.4,5.5,5.0,5.2,5.3,4.9,5.6,4.9,5.2,5.3,5.0,5.6,5.0,5.4,5.2,5.0,5.6,4.9,5.6,5.8,4.9,5.5]
idle: [.....1] [ip4][..tcp] [......10.40.4.2][46045] -> [......10.40.3.2][..143] [IMAP][Unknown][Email][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Clear-Text Credentials
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/imaps.pcap.out b/test/results/flow-info/default/imaps.pcap.out
index 62ed47ea9..62ed47ea9 100644
--- a/test/results/flow-info/imaps.pcap.out
+++ b/test/results/flow-info/default/imaps.pcap.out
diff --git a/test/results/flow-info/imo.pcap.out b/test/results/flow-info/default/imo.pcap.out
index f7ea0e3f0..f7ea0e3f0 100644
--- a/test/results/flow-info/imo.pcap.out
+++ b/test/results/flow-info/default/imo.pcap.out
diff --git a/test/results/flow-info/instagram.pcap.out b/test/results/flow-info/default/instagram.pcap.out
index 9f778c7dc..446d17d0d 100644
--- a/test/results/flow-info/instagram.pcap.out
+++ b/test/results/flow-info/default/instagram.pcap.out
@@ -4,6 +4,7 @@
new: [.....1] [ip4][..tcp] [..192.168.0.103][56382] -> [..173.252.107.4][..443]
new: [.....2] [ip4][..tcp] [..192.168.0.103][33936] -> [....31.13.93.52][..443] [MIDSTREAM]
detected: [.....2] [ip4][..tcp] [..192.168.0.103][33936] -> [....31.13.93.52][..443] [TLS][Facebook][Web][Safe]
+ RISK: Unidirectional Traffic
detected: [.....1] [ip4][..tcp] [..192.168.0.103][56382] -> [..173.252.107.4][..443] [TLS.Instagram][Facebook][SocialNetwork][Fun][telegraph-ash.instagram.com]
RISK: Obsolete TLS (v1.1 or older)
detection-update: [.....1] [ip4][..tcp] [..192.168.0.103][56382] -> [..173.252.107.4][..443] [TLS.Instagram][Facebook][SocialNetwork][Fun][telegraph-ash.instagram.com]
@@ -21,12 +22,16 @@
detection-update: [.....2] [ip4][..tcp] [..192.168.0.103][33936] -> [....31.13.93.52][..443] [TLS][Facebook][Web][Safe]
new: [.....3] [ip4][..tcp] [..192.168.0.103][38816] -> [...46.33.70.160][...80] [MIDSTREAM]
detected: [.....3] [ip4][..tcp] [..192.168.0.103][38816] -> [...46.33.70.160][...80] [HTTP.Instagram][Unknown][SocialNetwork][Fun][photos-h.ak.instagram.com]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..tcp] [..192.168.0.103][57936] -> [...82.85.26.162][...80] [MIDSTREAM]
detected: [.....4] [ip4][..tcp] [..192.168.0.103][57936] -> [...82.85.26.162][...80] [HTTP.Instagram][Unknown][SocialNetwork][Fun][photos-g.ak.instagram.com]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][..tcp] [..192.168.0.103][44379] -> [...82.85.26.186][...80] [MIDSTREAM]
detected: [.....5] [ip4][..tcp] [..192.168.0.103][44379] -> [...82.85.26.186][...80] [HTTP.Instagram][Unknown][SocialNetwork][Fun][photos-e.ak.instagram.com]
+ RISK: Unidirectional Traffic
new: [.....6] [ip4][..tcp] [..192.168.0.103][57965] -> [...82.85.26.185][...80] [MIDSTREAM]
detected: [.....6] [ip4][..tcp] [..192.168.0.103][57965] -> [...82.85.26.185][...80] [HTTP.Instagram][Unknown][SocialNetwork][Fun][photos-f.ak.instagram.com]
+ RISK: Unidirectional Traffic
analyse: [.....3] [ip4][..tcp] [..192.168.0.103][38816] -> [...46.33.70.160][...80] [HTTP.Instagram][Unknown][SocialNetwork][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.033| 0.003| 0.008| 64.366| 2.900]
@@ -47,8 +52,6 @@
[IATS(ms)....: 56.8,57.1,1.2,1.0,0.6,0.6,0.4,0.4,0.5,0.5,0.7,0.7,1.3,1.3,1.2,1.2,0.5,0.5,0.4,0.5,111.5,0.0,112.0,0.3,1.3,0.1,0.0,1.0,0.9,0.8,0.5]
[PKTLENS.....: 305,1470,52,1431,52,1470,52,1470,52,1470,52,1470,52,172,52,1470,52,1470,52,1470,52,1470,1470,52,52,1470,1470,1470,52,1470,52,1470]
[ENTROPIES...: 5.8,6.9,5.0,7.6,5.0,7.8,5.0,7.8,5.0,7.8,5.1,7.8,5.0,6.5,5.0,6.9,5.0,7.5,5.0,7.8,5.0,7.8,7.8,5.1,5.1,7.8,7.8,7.8,5.1,7.8,5.1,7.8]
- detection-update: [.....6] [ip4][..tcp] [..192.168.0.103][57965] -> [...82.85.26.185][...80] [HTTP.Instagram][Unknown][SocialNetwork][Fun][photos-f.ak.instagram.com]
- detection-update: [.....5] [ip4][..tcp] [..192.168.0.103][44379] -> [...82.85.26.186][...80] [HTTP.Instagram][Unknown][SocialNetwork][Fun][photos-e.ak.instagram.com]
new: [.....7] [ip4][..tcp] [..192.168.0.103][33976] -> [....77.67.29.17][...80] [MIDSTREAM]
analyse: [.....5] [ip4][..tcp] [..192.168.0.103][44379] -> [...82.85.26.186][...80] [HTTP.Instagram][Unknown][SocialNetwork][Fun]
min| max| avg| stddev| variance| entropy
@@ -62,6 +65,7 @@
[ENTROPIES...: 5.9,7.8,5.2,7.8,7.8,5.2,5.3,7.8,7.8,5.3,5.3,7.8,5.2,7.8,7.8,5.8,7.2,5.0,7.6,5.0,7.7,5.0,7.8,5.0,7.8,5.0,7.8,5.0,7.8,5.0,7.8,7.8]
new: [.....8] [ip4][..tcp] [..192.168.0.103][37350] -> [...82.85.26.153][...80] [MIDSTREAM]
detected: [.....8] [ip4][..tcp] [..192.168.0.103][37350] -> [...82.85.26.153][...80] [HTTP.Instagram][Unknown][SocialNetwork][Fun][photos-a.ak.instagram.com]
+ RISK: Unidirectional Traffic
new: [.....9] [ip4][..udp] [..192.168.0.106][17500] -> [255.255.255.255][17500]
detected: [.....9] [ip4][..udp] [..192.168.0.106][17500] -> [255.255.255.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
new: [....10] [ip4][..udp] [..192.168.0.106][17500] -> [..192.168.0.255][17500]
@@ -69,12 +73,16 @@
new: [....11] [ip4][..udp] [....192.168.0.1][..520] -> [..192.168.0.255][..520]
new: [....12] [ip4][..tcp] [....31.13.93.52][..443] -> [..192.168.0.103][33934] [MIDSTREAM]
detected: [....12] [ip4][..tcp] [....31.13.93.52][..443] -> [..192.168.0.103][33934] [TLS][Facebook][Web][Safe]
+ RISK: Unidirectional Traffic
new: [....13] [ip4][..tcp] [..192.168.0.103][33935] -> [....31.13.93.52][..443] [MIDSTREAM]
detected: [....13] [ip4][..tcp] [..192.168.0.103][33935] -> [....31.13.93.52][..443] [TLS][Facebook][Web][Safe]
+ RISK: Unidirectional Traffic
new: [....14] [ip4][.icmp] [..192.168.0.103] -> [..192.168.0.103]
detected: [....14] [ip4][.icmp] [..192.168.0.103] -> [..192.168.0.103] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....15] [ip4][..tcp] [..192.168.0.103][33763] -> [....31.13.93.52][..443] [MIDSTREAM]
detected: [....15] [ip4][..tcp] [..192.168.0.103][33763] -> [....31.13.93.52][..443] [TLS][Facebook][Web][Safe]
+ RISK: Unidirectional Traffic
new: [....16] [ip4][..tcp] [..192.168.0.103][38817] -> [...46.33.70.160][...80] [MIDSTREAM]
analyse: [.....7] [ip4][..tcp] [..192.168.0.103][33976] -> [....77.67.29.17][...80]
min| max| avg| stddev| variance| entropy
@@ -86,15 +94,16 @@
[IATS(ms)....: 0.2,0.9,1.5,2.7,0.5,0.4,0.3,0.4,1.5,0.5,1.2,1.8,0.1,0.0,2.3,0.1,3.2,0.4,3.6,1.0,0.5,0.4,2.0,0.9,0.9,0.7,3.6,0.1,4.7,0.2,7321.5]
[PKTLENS.....: 52,52,1470,1470,52,1470,1470,1470,1470,52,52,1470,1470,1470,1470,52,52,1470,1470,52,1470,1470,1470,52,1470,52,1470,1470,1323,52,52,52]
[ENTROPIES...: 5.0,5.0,7.8,7.8,5.0,7.8,7.8,7.8,7.8,5.0,5.1,7.8,7.8,7.8,7.8,5.1,5.0,7.8,7.8,5.0,7.8,7.8,7.8,5.1,7.8,5.0,7.8,7.8,7.8,5.1,5.1,5.1]
- guessed: [.....7] [ip4][..tcp] [..192.168.0.103][33976] -> [....77.67.29.17][...80] [HTTP][Unknown][Web][Acceptable][]
- detected: [.....7] [ip4][..tcp] [..192.168.0.103][33976] -> [....77.67.29.17][...80] [HTTP][Unknown][Web][Acceptable][]
new: [....17] [ip4][..udp] [..192.168.0.103][51219] -> [........8.8.8.8][...53]
detected: [....17] [ip4][..udp] [..192.168.0.103][51219] -> [........8.8.8.8][...53] [DNS.Instagram][Google][Network][Fun][igcdn-photos-h-a.akamaihd.net]
+ RISK: Unidirectional Traffic
new: [....18] [ip4][..udp] [..192.168.0.103][33603] -> [........8.8.8.8][...53]
detected: [....18] [ip4][..udp] [..192.168.0.103][33603] -> [........8.8.8.8][...53] [DNS.Instagram][Google][Network][Fun][igcdn-photos-a-a.akamaihd.net]
+ RISK: Unidirectional Traffic
new: [....19] [ip4][..tcp] [..192.168.0.103][57966] -> [...82.85.26.185][...80] [MIDSTREAM]
new: [....20] [ip4][..udp] [..192.168.0.103][26540] -> [........8.8.8.8][...53]
detected: [....20] [ip4][..udp] [..192.168.0.103][26540] -> [........8.8.8.8][...53] [DNS.Instagram][Google][Network][Fun][igcdn-photos-g-a.akamaihd.net]
+ RISK: Unidirectional Traffic
detection-update: [....17] [ip4][..udp] [..192.168.0.103][51219] -> [........8.8.8.8][...53] [DNS.Instagram][Google][Network][Fun][igcdn-photos-h-a.akamaihd.net]
new: [....21] [ip4][..tcp] [..192.168.0.103][44558] -> [...46.33.70.174][..443]
detection-update: [....18] [ip4][..udp] [..192.168.0.103][33603] -> [........8.8.8.8][...53] [DNS.Instagram][Google][Network][Fun][igcdn-photos-a-a.akamaihd.net]
@@ -129,8 +138,10 @@
new: [....25] [ip4][..tcp] [..92.122.48.138][...80] -> [..192.168.0.103][41562] [MIDSTREAM]
new: [....26] [ip4][..tcp] [..192.168.0.103][58052] -> [...82.85.26.162][...80] [MIDSTREAM]
detected: [....26] [ip4][..tcp] [..192.168.0.103][58052] -> [...82.85.26.162][...80] [HTTP.Instagram][Unknown][SocialNetwork][Fun][photos-g.ak.instagram.com]
+ RISK: Unidirectional Traffic
new: [....27] [ip4][..tcp] [..192.168.0.103][58053] -> [...82.85.26.162][...80] [MIDSTREAM]
detected: [....27] [ip4][..tcp] [..192.168.0.103][58053] -> [...82.85.26.162][...80] [HTTP.Instagram][Unknown][SocialNetwork][Fun][photos-g.ak.instagram.com]
+ RISK: Unidirectional Traffic
analyse: [....26] [ip4][..tcp] [..192.168.0.103][58052] -> [...82.85.26.162][...80] [HTTP.Instagram][Unknown][SocialNetwork][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.062| 0.005| 0.015| 225.668| 2.000]
@@ -152,17 +163,15 @@
[IATS(ms)....: 0.4,1.5,1.6,0.5,0.5,0.8,1.5,0.1,0.0,1.6,2.2,2.1,0.4,0.2,0.6,0.4,1.3,1.7,0.5,0.2,0.6,0.6,1.0,1.7,0.3,0.5,0.9,0.8,0.3,1.0,0.7]
[PKTLENS.....: 1450,52,1450,52,1450,1450,52,1450,1450,1450,52,1450,52,1450,1450,52,1450,1450,52,1450,1450,52,1450,1450,52,1450,1450,52,1450,1450,52,1450]
[ENTROPIES...: 7.8,5.0,7.5,5.0,7.9,7.9,5.0,7.8,7.4,7.5,5.0,7.9,5.0,7.8,7.9,5.0,7.8,7.8,5.0,7.2,7.8,5.0,7.8,7.9,5.0,7.8,7.8,5.0,7.4,7.9,5.0,7.9]
- guessed: [....28] [ip4][..tcp] [....31.13.86.52][...80] -> [..192.168.0.103][58216] [HTTP][Facebook][Web][Acceptable][]
- detected: [....28] [ip4][..tcp] [....31.13.86.52][...80] -> [..192.168.0.103][58216] [HTTP][Facebook][Web][Acceptable][]
update: [....14] [ip4][.icmp] [..192.168.0.103] -> [..192.168.0.103] [ICMP][Unknown][Network][Acceptable]
- update: [.....9] [ip4][..udp] [..192.168.0.106][17500] -> [255.255.255.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
- update: [....10] [ip4][..udp] [..192.168.0.106][17500] -> [..192.168.0.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
- update: [....11] [ip4][..udp] [....192.168.0.1][..520] -> [..192.168.0.255][..520]
+ RISK: Unidirectional Traffic
new: [....29] [ip4][..tcp] [....2.22.236.51][...80] -> [..192.168.0.103][44151] [MIDSTREAM]
new: [....30] [ip4][..tcp] [..192.168.0.103][58690] -> [...46.33.70.159][..443] [MIDSTREAM]
detected: [....30] [ip4][..tcp] [..192.168.0.103][58690] -> [...46.33.70.159][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
new: [....31] [ip4][..udp] [..192.168.0.103][27124] -> [........8.8.8.8][...53]
detected: [....31] [ip4][..udp] [..192.168.0.103][27124] -> [........8.8.8.8][...53] [DNS.Instagram][Google][Network][Fun][photos-b.ak.instagram.com]
+ RISK: Unidirectional Traffic
analyse: [....29] [ip4][..tcp] [....2.22.236.51][...80] -> [..192.168.0.103][44151]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.004| 0.001| 0.001| 1.362| 4.300]
@@ -173,24 +182,15 @@
[IATS(ms)....: 0.1,2.1,0.4,3.4,0.0,3.2,2.3,0.4,0.9,1.9,0.2,2.6,1.8,3.8,0.1,3.8,0.2,1.3,1.3,0.4,0.2,0.2,0.3,0.5,0.5,0.9,0.9,2.1,2.1,2.0,0.1]
[PKTLENS.....: 1470,52,1470,1470,52,52,1470,52,1470,1470,52,52,1470,52,1470,1470,52,52,1470,52,1470,52,1470,52,1470,52,1470,52,1470,52,1470,1470]
[ENTROPIES...: 7.8,5.1,7.8,7.8,5.1,5.1,7.8,5.1,7.8,7.7,5.0,5.1,7.7,5.1,7.7,7.8,5.2,5.1,7.7,5.2,7.8,5.2,7.8,5.2,7.8,5.1,7.8,5.1,7.8,5.1,7.8,7.8]
- guessed: [....29] [ip4][..tcp] [....2.22.236.51][...80] -> [..192.168.0.103][44151] [HTTP][Unknown][Web][Acceptable][]
- detected: [....29] [ip4][..tcp] [....2.22.236.51][...80] -> [..192.168.0.103][44151] [HTTP][Unknown][Web][Acceptable][]
new: [....32] [ip4][..tcp] [...46.33.70.150][...80] -> [..192.168.0.103][40855]
- DAEMON-EVENT: [Processed: 743 pkts][ZLib][compressions: 0|diff: 0 / 0]
- DAEMON-EVENT: [Flows][active: 32 / 32|skipped: 0|!detected: 0|guessed: 3|detection-updates: 15|updates: 4]
+ update: [.....9] [ip4][..udp] [..192.168.0.106][17500] -> [255.255.255.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
+ update: [....10] [ip4][..udp] [..192.168.0.106][17500] -> [..192.168.0.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
+ update: [....11] [ip4][..udp] [....192.168.0.1][..520] -> [..192.168.0.255][..520]
+ DAEMON-EVENT: [Processed: 633 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 32 / 32|skipped: 0|!detected: 0|guessed: 0|detection-updates: 13|updates: 4]
new: [....33] [ip4][..tcp] [...192.168.2.17][49355] -> [....31.13.86.52][..443]
detected: [....33] [ip4][..tcp] [...192.168.2.17][49355] -> [....31.13.86.52][..443] [TLS.Instagram][Facebook][SocialNetwork][Fun][scontent-mxp1-1.cdninstagram.com]
detection-update: [....33] [ip4][..tcp] [...192.168.2.17][49355] -> [....31.13.86.52][..443] [TLS.Instagram][Facebook][SocialNetwork][Fun][scontent-mxp1-1.cdninstagram.com]
- analyse: [....33] [ip4][..tcp] [...192.168.2.17][49355] -> [....31.13.86.52][..443] [TLS.Instagram][Facebook][SocialNetwork][Fun]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.017| 0.003| 0.006| 31.659| 3.300]
- [PKTLEN......: 52.000| 1440.000| 633.500| 640.400| 410152.900| 4.200]
- [BINS(c->s)..: 11,0,1,0,0,0,1,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 3,0,0,0,0,0,1,0,0,1,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,12,0,0,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,1,1,0,0,0,0,1,1,1,0,1,1,0,1,1,1,1,1,1,1,1,0,0,0,0,0]
- [IATS(ms)....: 12.4,14.6,0.1,14.6,1.7,0.0,0.0,16.8,0.1,2.0,0.5,16.5,0.7,0.2,12.5,0.6,0.5,0.9,0.3,0.3,0.2,0.2,0.1,0.2,0.3,0.2,2.4,0.1,1.6,0.1,0.1]
- [PKTLENS.....: 64,60,52,274,52,1440,1440,355,52,52,116,550,245,682,75,52,1440,1440,52,1440,1440,1440,1440,1440,1440,1440,1440,52,52,52,52,52]
- [ENTROPIES...: 4.3,5.1,4.8,6.4,5.0,7.9,7.9,7.4,4.9,4.9,5.9,7.6,7.1,7.7,5.5,5.0,7.9,7.9,5.0,7.9,7.9,7.9,7.9,7.9,7.8,7.9,7.9,5.0,4.9,5.0,4.9,4.9]
new: [....34] [ip4][..tcp] [...192.168.2.17][49357] -> [....31.13.86.52][..443]
new: [....35] [ip4][..tcp] [...192.168.2.17][49358] -> [....31.13.86.52][..443]
new: [....36] [ip4][..tcp] [...192.168.2.17][49359] -> [....31.13.86.52][..443]
@@ -200,26 +200,6 @@
detection-update: [....34] [ip4][..tcp] [...192.168.2.17][49357] -> [....31.13.86.52][..443] [TLS.Instagram][Facebook][SocialNetwork][Fun][scontent-mxp1-1.cdninstagram.com]
detection-update: [....35] [ip4][..tcp] [...192.168.2.17][49358] -> [....31.13.86.52][..443] [TLS.Instagram][Facebook][SocialNetwork][Fun][scontent-mxp1-1.cdninstagram.com]
detection-update: [....36] [ip4][..tcp] [...192.168.2.17][49359] -> [....31.13.86.52][..443] [TLS.Instagram][Facebook][SocialNetwork][Fun][scontent-mxp1-1.cdninstagram.com]
- analyse: [....36] [ip4][..tcp] [...192.168.2.17][49359] -> [....31.13.86.52][..443] [TLS.Instagram][Facebook][SocialNetwork][Fun]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.159| 0.012| 0.037| 1346.646| 2.300]
- [PKTLEN......: 52.000| 1440.000| 522.800| 570.200| 325102.600| 4.100]
- [BINS(c->s)..: 11,0,1,0,0,0,0,0,0,0,0,0,0,1,0,0,1,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 3,1,0,0,0,1,1,0,0,0,0,0,0,0,0,0,0,0,0,2,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,8,0,0,0,0]
- [DIRECTIONS..: 0,1,0,0,0,1,1,1,1,1,1,1,0,1,1,1,1,1,0,0,0,0,0,0,0,1,0,1,0,0,1,1]
- [IATS(ms)....: 12.0,14.1,0.6,0.2,14.9,0.1,0.3,0.6,0.4,0.3,0.1,14.0,0.4,0.1,0.1,0.2,0.2,1.4,0.1,1.2,0.1,0.1,0.0,0.5,10.6,8.9,1.6,2.2,142.8,158.9,0.4]
- [PKTLENS.....: 64,60,52,471,565,52,52,274,685,1440,1440,1440,52,1440,1440,1440,706,1440,136,52,52,52,52,52,52,86,52,230,52,623,685,1440]
- [ENTROPIES...: 4.3,5.0,4.9,7.0,7.6,5.0,5.0,6.8,7.7,7.9,7.9,7.9,4.8,7.9,7.9,7.9,7.7,7.9,6.3,5.0,4.9,4.9,4.8,5.0,4.8,5.9,5.0,7.0,5.0,7.6,7.7,7.9]
- analyse: [....35] [ip4][..tcp] [...192.168.2.17][49358] -> [....31.13.86.52][..443] [TLS.Instagram][Facebook][SocialNetwork][Fun]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.157| 0.021| 0.045| 2047.640| 2.900]
- [PKTLEN......: 52.000| 1440.000| 518.200| 557.600| 310915.100| 4.200]
- [BINS(c->s)..: 9,0,1,0,0,0,0,0,0,0,0,0,0,1,0,0,1,0,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 5,1,0,0,0,1,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,2,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,7,0,0,0,0]
- [DIRECTIONS..: 0,1,0,0,0,1,1,1,0,0,1,0,1,1,1,1,1,1,1,1,0,0,0,0,0,0,0,1,1,1,1,1]
- [IATS(ms)....: 11.1,12.2,3.4,0.1,16.0,0.2,0.5,13.0,0.5,11.8,12.0,155.6,0.5,0.1,0.3,0.1,0.1,0.3,0.0,156.5,0.1,0.1,0.1,0.3,2.7,48.7,55.9,8.2,149.2,0.5,0.0]
- [PKTLENS.....: 64,60,52,471,581,52,52,274,52,136,230,52,826,1440,1440,1440,1440,1043,1440,86,52,52,52,52,52,640,640,52,52,827,1440,1440]
- [ENTROPIES...: 4.3,5.1,5.0,7.0,7.6,5.0,5.0,6.7,4.9,6.3,7.0,4.9,7.7,7.9,7.9,7.9,7.9,7.8,7.8,5.8,5.0,5.0,5.0,5.0,5.0,7.6,7.6,5.0,5.0,7.7,7.8,7.9]
idle: [.....8] [ip4][..tcp] [..192.168.0.103][37350] -> [...82.85.26.153][...80]
idle: [....22] [ip4][..tcp] [..192.168.0.103][41181] -> [...82.85.26.154][..443]
idle: [....23] [ip4][..tcp] [..192.168.0.103][41182] -> [...82.85.26.154][..443]
@@ -229,14 +209,18 @@
guessed: [....19] [ip4][..tcp] [..192.168.0.103][57966] -> [...82.85.26.185][...80] [HTTP][Unknown][Web][Acceptable][]
end: [....19] [ip4][..tcp] [..192.168.0.103][57966] -> [...82.85.26.185][...80]
end: [....30] [ip4][..tcp] [..192.168.0.103][58690] -> [...46.33.70.159][..443] [TLS][Unknown][Web][Safe]
- end: [.....7] [ip4][..tcp] [..192.168.0.103][33976] -> [....77.67.29.17][...80] [HTTP][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
+ guessed: [.....7] [ip4][..tcp] [..192.168.0.103][33976] -> [....77.67.29.17][...80] [HTTP][Unknown][Web][Acceptable][]
+ end: [.....7] [ip4][..tcp] [..192.168.0.103][33976] -> [....77.67.29.17][...80]
idle: [....17] [ip4][..udp] [..192.168.0.103][51219] -> [........8.8.8.8][...53] [DNS.Instagram][Google][Network][Fun]
idle: [....26] [ip4][..tcp] [..192.168.0.103][58052] -> [...82.85.26.162][...80] [HTTP.Instagram][Unknown][SocialNetwork][Fun]
idle: [....27] [ip4][..tcp] [..192.168.0.103][58053] -> [...82.85.26.162][...80]
idle: [....14] [ip4][.icmp] [..192.168.0.103] -> [..192.168.0.103] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....9] [ip4][..udp] [..192.168.0.106][17500] -> [255.255.255.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
idle: [....24] [ip4][..tcp] [..192.168.0.103][60908] -> [...46.33.70.136][..443]
- idle: [....28] [ip4][..tcp] [....31.13.86.52][...80] -> [..192.168.0.103][58216] [HTTP][Facebook][Web][Acceptable]
+ guessed: [....28] [ip4][..tcp] [....31.13.86.52][...80] -> [..192.168.0.103][58216] [HTTP][Facebook][Web][Acceptable][]
+ idle: [....28] [ip4][..tcp] [....31.13.86.52][...80] -> [..192.168.0.103][58216]
idle: [....21] [ip4][..tcp] [..192.168.0.103][44558] -> [...46.33.70.174][..443]
guessed: [....32] [ip4][..tcp] [...46.33.70.150][...80] -> [..192.168.0.103][40855] [HTTP][Unknown][Web][Acceptable][]
idle: [....32] [ip4][..tcp] [...46.33.70.150][...80] -> [..192.168.0.103][40855]
@@ -248,7 +232,8 @@
idle: [.....1] [ip4][..tcp] [..192.168.0.103][56382] -> [..173.252.107.4][..443] [TLS.Instagram][Facebook][SocialNetwork][Fun]
RISK: Obsolete TLS (v1.1 or older)
idle: [....15] [ip4][..tcp] [..192.168.0.103][33763] -> [....31.13.93.52][..443]
- idle: [....29] [ip4][..tcp] [....2.22.236.51][...80] -> [..192.168.0.103][44151] [HTTP][Unknown][Web][Acceptable]
+ guessed: [....29] [ip4][..tcp] [....2.22.236.51][...80] -> [..192.168.0.103][44151] [HTTP][Unknown][Web][Acceptable][]
+ idle: [....29] [ip4][..tcp] [....2.22.236.51][...80] -> [..192.168.0.103][44151]
end: [.....5] [ip4][..tcp] [..192.168.0.103][44379] -> [...82.85.26.186][...80] [HTTP.Instagram][Unknown][SocialNetwork][Fun]
idle: [....12] [ip4][..tcp] [....31.13.93.52][..443] -> [..192.168.0.103][33934]
idle: [....13] [ip4][..tcp] [..192.168.0.103][33935] -> [....31.13.93.52][..443]
@@ -264,16 +249,6 @@
detected: [....38] [ip4][..tcp] [...192.168.2.17][49361] -> [....31.13.86.52][..443] [TLS.Instagram][Facebook][SocialNetwork][Fun][scontent-mxp1-1.cdninstagram.com]
detection-update: [....37] [ip4][..tcp] [...192.168.2.17][49360] -> [....31.13.86.52][..443] [TLS.Instagram][Facebook][SocialNetwork][Fun][scontent-mxp1-1.cdninstagram.com]
detection-update: [....38] [ip4][..tcp] [...192.168.2.17][49361] -> [....31.13.86.52][..443] [TLS.Instagram][Facebook][SocialNetwork][Fun][scontent-mxp1-1.cdninstagram.com]
- analyse: [....37] [ip4][..tcp] [...192.168.2.17][49360] -> [....31.13.86.52][..443] [TLS.Instagram][Facebook][SocialNetwork][Fun]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.016| 0.003| 0.005| 22.312| 3.200]
- [PKTLEN......: 52.000| 1440.000| 719.000| 652.700| 426025.800| 4.300]
- [BINS(c->s)..: 9,0,1,0,0,0,0,0,0,0,0,0,1,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 4,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,14,0,0,0,0]
- [DIRECTIONS..: 0,1,0,0,0,1,1,1,1,0,1,0,1,1,1,1,1,0,1,1,0,0,0,0,0,1,1,1,1,1,1,1]
- [IATS(ms)....: 11.8,12.9,2.8,0.1,16.4,0.0,0.4,1.1,14.1,0.3,0.6,0.6,0.2,0.3,0.4,0.1,1.1,0.3,0.1,1.7,0.1,0.2,0.0,0.1,10.0,0.1,1.4,0.1,1.4,0.1,0.2]
- [PKTLENS.....: 64,60,52,456,578,52,52,274,685,52,75,136,1440,1440,1440,1440,1440,52,1440,1440,52,52,52,52,52,1440,1440,1440,1440,1440,1440,1440]
- [ENTROPIES...: 4.3,5.1,4.8,6.9,7.6,5.0,5.0,6.8,7.7,4.9,5.7,6.4,7.9,7.9,7.9,7.9,7.9,5.0,7.9,7.9,5.0,4.8,5.0,5.0,4.9,7.9,7.9,7.9,7.9,7.8,7.9,7.9]
analyse: [....34] [ip4][..tcp] [...192.168.2.17][49357] -> [....31.13.86.52][..443] [TLS.Instagram][Facebook][SocialNetwork][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 10.470| 0.692| 2.561| 6557671.096| 1.200]
@@ -284,20 +259,10 @@
[IATS(ms)....: 11.1,12.4,1.2,0.5,13.3,0.6,0.1,14.2,0.6,14.4,12.5,169.6,0.3,0.2,0.1,0.3,0.1,0.2,0.2,0.0,169.7,0.1,1.8,0.2,0.1,0.5,10413.4,52.2,10469.8,9.8,75.9]
[PKTLENS.....: 64,60,52,471,649,52,52,274,52,136,230,52,825,1440,1440,1440,1440,1440,628,1440,86,52,52,52,52,52,52,587,587,52,52,828]
[ENTROPIES...: 4.2,5.1,4.9,7.1,7.6,5.0,5.0,6.8,4.9,6.4,7.0,4.8,7.7,7.9,7.9,7.8,7.9,7.9,7.7,7.9,5.8,5.0,5.0,4.9,4.9,4.9,5.0,7.6,7.6,5.1,5.1,7.8]
- analyse: [....38] [ip4][..tcp] [...192.168.2.17][49361] -> [....31.13.86.52][..443] [TLS.Instagram][Facebook][SocialNetwork][Fun]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.132| 0.012| 0.032| 1010.732| 2.400]
- [PKTLEN......: 52.000| 1440.000| 555.500| 619.500| 383805.700| 4.100]
- [BINS(c->s)..: 12,0,1,0,0,0,0,0,0,0,0,0,1,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 4,0,0,0,0,1,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,10,0,0,0,0]
- [DIRECTIONS..: 0,1,0,0,0,1,1,1,0,0,1,0,1,1,1,1,1,1,1,1,1,1,1,1,0,0,0,0,0,0,0,0]
- [IATS(ms)....: 12.1,13.3,2.5,0.5,16.0,0.0,0.8,14.0,1.4,14.5,16.1,131.7,0.0,0.9,0.2,0.3,0.0,0.1,0.3,0.2,0.2,0.2,0.3,129.9,0.1,0.1,2.6,0.1,0.1,0.0,0.0]
- [PKTLENS.....: 64,60,52,456,578,52,52,274,52,136,230,52,826,75,1440,1440,1440,1440,1440,1440,1440,1440,1440,1440,52,52,52,52,52,52,52,52]
- [ENTROPIES...: 4.3,5.1,4.9,7.0,7.5,5.0,5.0,6.8,4.9,6.4,7.0,4.9,7.7,5.6,7.9,7.9,7.9,7.8,7.8,7.9,7.9,7.9,7.9,7.8,5.0,5.0,4.9,4.9,4.8,4.9,4.7,4.9]
- end: [....33] [ip4][..tcp] [...192.168.2.17][49355] -> [....31.13.86.52][..443] [TLS.Instagram][Facebook][SocialNetwork][Fun]
+ idle: [....33] [ip4][..tcp] [...192.168.2.17][49355] -> [....31.13.86.52][..443]
end: [....34] [ip4][..tcp] [...192.168.2.17][49357] -> [....31.13.86.52][..443] [TLS.Instagram][Facebook][SocialNetwork][Fun]
- end: [....35] [ip4][..tcp] [...192.168.2.17][49358] -> [....31.13.86.52][..443] [TLS.Instagram][Facebook][SocialNetwork][Fun]
- end: [....36] [ip4][..tcp] [...192.168.2.17][49359] -> [....31.13.86.52][..443] [TLS.Instagram][Facebook][SocialNetwork][Fun]
- end: [....37] [ip4][..tcp] [...192.168.2.17][49360] -> [....31.13.86.52][..443] [TLS.Instagram][Facebook][SocialNetwork][Fun]
- end: [....38] [ip4][..tcp] [...192.168.2.17][49361] -> [....31.13.86.52][..443] [TLS.Instagram][Facebook][SocialNetwork][Fun]
+ idle: [....35] [ip4][..tcp] [...192.168.2.17][49358] -> [....31.13.86.52][..443] [TLS.Instagram][Facebook][SocialNetwork][Fun]
+ idle: [....36] [ip4][..tcp] [...192.168.2.17][49359] -> [....31.13.86.52][..443]
+ idle: [....37] [ip4][..tcp] [...192.168.2.17][49360] -> [....31.13.86.52][..443]
+ idle: [....38] [ip4][..tcp] [...192.168.2.17][49361] -> [....31.13.86.52][..443]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/ip_fragmented_garbage.pcap.out b/test/results/flow-info/default/ip_fragmented_garbage.pcap.out
index 2c7fa73d1..2c7fa73d1 100644
--- a/test/results/flow-info/ip_fragmented_garbage.pcap.out
+++ b/test/results/flow-info/default/ip_fragmented_garbage.pcap.out
diff --git a/test/results/flow-info/iphone.pcap.out b/test/results/flow-info/default/iphone.pcap.out
index b68c30a95..fdea3d516 100644
--- a/test/results/flow-info/iphone.pcap.out
+++ b/test/results/flow-info/default/iphone.pcap.out
@@ -6,11 +6,11 @@
new: [.....2] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67]
detected: [.....2] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable][lucas-imac]
new: [.....3] [ip4][..udp] [....192.168.2.1][.5353] -> [....224.0.0.251][.5353]
- detected: [.....3] [ip4][..udp] [....192.168.2.1][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable][luca???s_imac._odisk._tcp.local]
+ detected: [.....3] [ip4][..udp] [....192.168.2.1][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable][lucas imac._odisk._tcp.local]
new: [.....4] [ip6][..udp] [...............fe80::c42c:3ff:fe60:6a64][.5353] -> [...............................ff02::fb][.5353]
- detected: [.....4] [ip6][..udp] [...............fe80::c42c:3ff:fe60:6a64][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable][luca???s_imac._odisk._tcp.local]
+ detected: [.....4] [ip6][..udp] [...............fe80::c42c:3ff:fe60:6a64][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable][lucas imac._odisk._tcp.local]
new: [.....5] [ip4][..udp] [169.254.225.216][.5353] -> [....224.0.0.251][.5353]
- detected: [.....5] [ip4][..udp] [169.254.225.216][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable][luca???s_imac._odisk._tcp.local]
+ detected: [.....5] [ip4][..udp] [169.254.225.216][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable][lucas imac._odisk._tcp.local]
new: [.....6] [ip4][..udp] [....192.168.2.1][57621] -> [..192.168.2.255][57621]
detected: [.....6] [ip4][..udp] [....192.168.2.1][57621] -> [..192.168.2.255][57621] [Spotify][Unknown][Music][Fun]
new: [.....7] [ip4][..udp] [....192.168.2.1][.5351] -> [......224.0.0.1][.5350]
@@ -20,6 +20,7 @@
detected: [.....9] [ip4][..udp] [....192.168.2.1][51411] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
new: [....10] [ip4][..udp] [....192.168.2.1][...67] -> [...192.168.2.17][...68]
detected: [....10] [ip4][..udp] [....192.168.2.1][...67] -> [...192.168.2.17][...68] [DHCP][Unknown][Network][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....11] [ip6][icmp6] [.....................................::] -> [......................ff02::1:ff98:a29c]
detected: [....11] [ip6][icmp6] [.....................................::] -> [......................ff02::1:ff98:a29c] [ICMPV6][Unknown][Network][Acceptable]
new: [....12] [ip6][icmp6] [...............fe80::823:3f17:8298:a29c] -> [................................ff02::2]
@@ -30,14 +31,19 @@
detected: [....14] [ip6][icmp6] [...............fe80::823:3f17:8298:a29c] -> [...............................ff02::16] [ICMPV6][Unknown][Network][Acceptable]
new: [....15] [ip4][..udp] [...192.168.2.17][63381] -> [....192.168.2.1][...53]
detected: [....15] [ip4][..udp] [...192.168.2.17][63381] -> [....192.168.2.1][...53] [DNS.AppleiCloud][Unknown][Network][Acceptable][p26-keyvalueservice.icloud.com]
+ RISK: Unidirectional Traffic
new: [....16] [ip4][..udp] [...192.168.2.17][63143] -> [....192.168.2.1][...53]
detected: [....16] [ip4][..udp] [...192.168.2.17][63143] -> [....192.168.2.1][...53] [DNS.AppleiCloud][Unknown][Network][Acceptable][p26-fmfmobile.icloud.com]
+ RISK: Unidirectional Traffic
new: [....17] [ip4][..udp] [...192.168.2.17][61862] -> [....192.168.2.1][...53]
detected: [....17] [ip4][..udp] [...192.168.2.17][61862] -> [....192.168.2.1][...53] [DNS.Apple][Unknown][Network][Safe][gspe35-ssl.ls.apple.com]
+ RISK: Unidirectional Traffic
new: [....18] [ip4][..udp] [...192.168.2.17][55914] -> [....192.168.2.1][...53]
detected: [....18] [ip4][..udp] [...192.168.2.17][55914] -> [....192.168.2.1][...53] [DNS.Apple][Unknown][Network][Safe][gsp85-ssl.ls.apple.com]
+ RISK: Unidirectional Traffic
new: [....19] [ip4][..udp] [...192.168.2.17][51007] -> [....192.168.2.1][...53]
detected: [....19] [ip4][..udp] [...192.168.2.17][51007] -> [....192.168.2.1][...53] [DNS.Apple][Unknown][Network][Safe][captive.apple.com]
+ RISK: Unidirectional Traffic
detection-update: [....16] [ip4][..udp] [...192.168.2.17][63143] -> [....192.168.2.1][...53] [DNS.AppleiCloud][Unknown][Network][Acceptable][p26-fmfmobile.icloud.com]
detection-update: [....15] [ip4][..udp] [...192.168.2.17][63381] -> [....192.168.2.1][...53] [DNS.AppleiCloud][Unknown][Network][Acceptable][p26-keyvalueservice.icloud.com]
detection-update: [....17] [ip4][..udp] [...192.168.2.17][61862] -> [....192.168.2.1][...53] [DNS.Apple][Unknown][Network][Safe][gspe35-ssl.ls.apple.com]
@@ -46,6 +52,7 @@
detection-update: [....19] [ip4][..udp] [...192.168.2.17][51007] -> [....192.168.2.1][...53] [DNS.Apple][Unknown][Network][Safe][captive.apple.com]
new: [....21] [ip4][..udp] [...192.168.2.17][55457] -> [....192.168.2.1][...53]
detected: [....21] [ip4][..udp] [...192.168.2.17][55457] -> [....192.168.2.1][...53] [DNS.Apple][Unknown][Network][Safe][mesu.apple.com]
+ RISK: Unidirectional Traffic
new: [....22] [ip4][..udp] [...192.168.2.17][.5353] -> [....224.0.0.251][.5353]
detected: [....22] [ip4][..udp] [...192.168.2.17][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable][_homekit._tcp.local]
new: [....23] [ip4][..tcp] [...192.168.2.17][50576] -> [...95.101.25.53][..443]
@@ -59,6 +66,7 @@
detection-update: [....23] [ip4][..tcp] [...192.168.2.17][50576] -> [...95.101.25.53][..443] [TLS.Apple][Unknown][Web][Safe][gspe35-ssl.ls.apple.com]
new: [....28] [ip4][..udp] [...192.168.2.17][52852] -> [....192.168.2.1][...53]
detected: [....28] [ip4][..udp] [...192.168.2.17][52852] -> [....192.168.2.1][...53] [DNS.AppleiCloud][Unknown][Network][Acceptable][gateway.icloud.com]
+ RISK: Unidirectional Traffic
detected: [....25] [ip4][..tcp] [...192.168.2.17][49152] -> [.17.253.105.202][...80] [HTTP.Apple][Apple][ConnCheck][Safe][captive.apple.com]
detected: [....24] [ip4][..tcp] [...192.168.2.17][50577] -> [....17.130.2.46][..443] [TLS.Apple][Apple][Web][Safe][gsp85-ssl.ls.apple.com]
detected: [....27] [ip4][..tcp] [...192.168.2.17][50579] -> [.17.253.105.202][..443] [TLS.Apple][Apple][Web][Safe][mesu.apple.com]
@@ -73,20 +81,28 @@
detection-update: [....24] [ip4][..tcp] [...192.168.2.17][50577] -> [....17.130.2.46][..443] [TLS.Apple][Apple][Web][Safe][gsp85-ssl.ls.apple.com]
new: [....30] [ip4][..udp] [...192.168.2.17][52682] -> [....192.168.2.1][...53]
detected: [....30] [ip4][..udp] [...192.168.2.17][52682] -> [....192.168.2.1][...53] [DNS.AppleiCloud][Unknown][Network][Acceptable][www.icloud.com]
+ RISK: Unidirectional Traffic
new: [....31] [ip4][..udp] [...192.168.2.17][64203] -> [....192.168.2.1][...53]
detected: [....31] [ip4][..udp] [...192.168.2.17][64203] -> [....192.168.2.1][...53] [DNS.Apple][Unknown][Network][Safe][basejumper.apple.com]
+ RISK: Unidirectional Traffic
new: [....32] [ip4][..udp] [...192.168.2.17][53317] -> [....192.168.2.1][...53]
detected: [....32] [ip4][..udp] [...192.168.2.17][53317] -> [....192.168.2.1][...53] [DNS.Apple][Unknown][Network][Safe][iphone-ld.apple.com]
+ RISK: Unidirectional Traffic
new: [....33] [ip4][..udp] [...192.168.2.17][62526] -> [....192.168.2.1][...53]
detected: [....33] [ip4][..udp] [...192.168.2.17][62526] -> [....192.168.2.1][...53] [DNS.Apple][Unknown][Network][Safe][cl4.apple.com]
+ RISK: Unidirectional Traffic
new: [....34] [ip4][..udp] [...192.168.2.17][63377] -> [....192.168.2.1][...53]
detected: [....34] [ip4][..udp] [...192.168.2.17][63377] -> [....192.168.2.1][...53] [DNS.AppleiTunes][Unknown][Network][Fun][bag.itunes.apple.com]
+ RISK: Unidirectional Traffic
new: [....35] [ip4][..udp] [...192.168.2.17][53272] -> [....192.168.2.1][...53]
detected: [....35] [ip4][..udp] [...192.168.2.17][53272] -> [....192.168.2.1][...53] [DNS.AppleiTunes][Unknown][Network][Fun][play.itunes.apple.com]
+ RISK: Unidirectional Traffic
new: [....36] [ip4][..udp] [...192.168.2.17][53983] -> [....192.168.2.1][...53]
detected: [....36] [ip4][..udp] [...192.168.2.17][53983] -> [....192.168.2.1][...53] [DNS.AppleiTunes][Unknown][Network][Fun][bag.itunes.apple.com]
+ RISK: Unidirectional Traffic
new: [....37] [ip4][..udp] [...192.168.2.17][49880] -> [....192.168.2.1][...53]
detected: [....37] [ip4][..udp] [...192.168.2.17][49880] -> [....192.168.2.1][...53] [DNS.AppleiTunes][Unknown][Network][Fun][init.itunes.apple.com]
+ RISK: Unidirectional Traffic
new: [....38] [ip4][..tcp] [...192.168.2.17][50581] -> [..17.248.185.87][..443]
detected: [....29] [ip4][..tcp] [...192.168.2.17][50580] -> [..17.248.176.75][..443] [TLS.AppleiCloud][Apple][Web][Acceptable][gateway.icloud.com]
detection-update: [....30] [ip4][..udp] [...192.168.2.17][52682] -> [....192.168.2.1][...53] [DNS.AppleiCloud][Unknown][Network][Acceptable][www.icloud.com]
@@ -102,6 +118,7 @@
detection-update: [....29] [ip4][..tcp] [...192.168.2.17][50580] -> [..17.248.176.75][..443] [TLS.AppleiCloud][Apple][Web][Acceptable][gateway.icloud.com]
new: [....40] [ip4][.icmp] [...192.168.2.17] -> [....192.168.2.1]
detected: [....40] [ip4][.icmp] [...192.168.2.17] -> [....192.168.2.1] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....41] [ip4][..tcp] [...192.168.2.17][50583] -> [...104.73.61.30][..443]
detected: [....39] [ip4][..tcp] [...192.168.2.17][50582] -> [..92.122.252.82][..443] [TLS.Apple][Unknown][Web][Safe][iphone-ld.apple.com]
detected: [....38] [ip4][..tcp] [...192.168.2.17][50581] -> [..17.248.185.87][..443] [TLS.AppleiCloud][Apple][Web][Acceptable][p26-keyvalueservice.icloud.com]
@@ -114,8 +131,10 @@
detected: [....42] [ip4][....2] [...192.168.2.17] -> [.....224.0.0.22] [IGMP][Unknown][Network][Acceptable]
new: [....43] [ip4][..udp] [...192.168.2.17][62160] -> [....192.168.2.1][...53]
detected: [....43] [ip4][..udp] [...192.168.2.17][62160] -> [....192.168.2.1][...53] [DNS.Apple][Unknown][Network][Safe][gsa.apple.com]
+ RISK: Unidirectional Traffic
new: [....44] [ip4][..udp] [...192.168.2.17][52031] -> [....192.168.2.1][...53]
detected: [....44] [ip4][..udp] [...192.168.2.17][52031] -> [....192.168.2.1][...53] [DNS.Apple][Unknown][Network][Safe][gsa.apple.com]
+ RISK: Unidirectional Traffic
detection-update: [....43] [ip4][..udp] [...192.168.2.17][62160] -> [....192.168.2.1][...53] [DNS.Apple][Unknown][Network][Safe][gsa.apple.com]
detection-update: [....44] [ip4][..udp] [...192.168.2.17][52031] -> [....192.168.2.1][...53] [DNS.Apple][Unknown][Network][Safe][gsa.apple.com]
new: [....45] [ip4][..tcp] [...192.168.2.17][50584] -> [..17.248.176.75][..443]
@@ -132,6 +151,7 @@
detection-update: [....47] [ip4][..tcp] [...192.168.2.17][50586] -> [..17.248.176.75][..443] [TLS.AppleiCloud][Apple][Web][Acceptable][gateway.icloud.com]
new: [....48] [ip4][..udp] [...192.168.2.17][65079] -> [....192.168.2.1][...53]
detected: [....48] [ip4][..udp] [...192.168.2.17][65079] -> [....192.168.2.1][...53] [DNS.AppleiTunes][Unknown][Network][Fun][play.itunes.apple.com]
+ RISK: Unidirectional Traffic
detection-update: [....48] [ip4][..udp] [...192.168.2.17][65079] -> [....192.168.2.1][...53] [DNS.AppleiTunes][Unknown][Network][Fun][play.itunes.apple.com]
analyse: [....29] [ip4][..tcp] [...192.168.2.17][50580] -> [..17.248.176.75][..443] [TLS.AppleiCloud][Apple][Web][Acceptable]
min| max| avg| stddev| variance| entropy
@@ -179,6 +199,7 @@
detection-update: [....38] [ip4][..tcp] [...192.168.2.17][50581] -> [..17.248.185.87][..443] [TLS.AppleiCloud][Apple][Web][Acceptable][p26-keyvalueservice.icloud.com]
new: [....50] [ip4][..udp] [...192.168.2.17][63677] -> [....192.168.2.1][...53]
detected: [....50] [ip4][..udp] [...192.168.2.17][63677] -> [....192.168.2.1][...53] [DNS.AppleiTunes][Unknown][Network][Fun][sync.itunes.apple.com]
+ RISK: Unidirectional Traffic
detection-update: [....50] [ip4][..udp] [...192.168.2.17][63677] -> [....192.168.2.1][...53] [DNS.AppleiTunes][Unknown][Network][Fun][sync.itunes.apple.com]
new: [....51] [ip4][..tcp] [...192.168.2.17][50588] -> [...95.101.24.53][..443]
detected: [....51] [ip4][..tcp] [...192.168.2.17][50588] -> [...95.101.24.53][..443] [TLS.AppleiTunes][Unknown][Streaming][Fun][sync.itunes.apple.com]
@@ -200,10 +221,12 @@
idle: [.....5] [ip4][..udp] [169.254.225.216][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable]
idle: [....41] [ip4][..tcp] [...192.168.2.17][50583] -> [...104.73.61.30][..443]
idle: [....40] [ip4][.icmp] [...192.168.2.17] -> [....192.168.2.1] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....42] [ip4][....2] [...192.168.2.17] -> [.....224.0.0.22] [IGMP][Unknown][Network][Acceptable]
idle: [....35] [ip4][..udp] [...192.168.2.17][53272] -> [....192.168.2.1][...53] [DNS.AppleiTunes][Unknown][Network][Fun]
idle: [....32] [ip4][..udp] [...192.168.2.17][53317] -> [....192.168.2.1][...53] [DNS.Apple][Unknown][Network][Safe]
idle: [....10] [ip4][..udp] [....192.168.2.1][...67] -> [...192.168.2.17][...68] [DHCP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....24] [ip4][..tcp] [...192.168.2.17][50577] -> [....17.130.2.46][..443]
idle: [.....1] [ip4][..udp] [....192.168.2.1][17500] -> [..192.168.2.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
idle: [....21] [ip4][..udp] [...192.168.2.17][55457] -> [....192.168.2.1][...53] [DNS.Apple][Unknown][Network][Safe]
diff --git a/test/results/flow-info/ipp.pcap.out b/test/results/flow-info/default/ipp.pcap.out
index 8aa079858..e79503ea1 100644
--- a/test/results/flow-info/ipp.pcap.out
+++ b/test/results/flow-info/default/ipp.pcap.out
@@ -3,10 +3,10 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [....10.10.10.49][55341] -> [...10.10.10.251][..631]
detected: [.....1] [ip4][..tcp] [....10.10.10.49][55341] -> [...10.10.10.251][..631] [HTTP.IPP][Unknown][System][Acceptable][10.10.10.251]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI
new: [.....2] [ip4][..tcp] [....10.10.10.49][55342] -> [...10.10.10.251][..631]
detected: [.....2] [ip4][..tcp] [....10.10.10.49][55342] -> [...10.10.10.251][..631] [HTTP.IPP][Unknown][System][Acceptable][10.10.10.251]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI
analyse: [.....2] [ip4][..tcp] [....10.10.10.49][55342] -> [...10.10.10.251][..631] [HTTP.IPP][Unknown][System][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.009| 0.004| 0.004| 12.440| 4.200]
@@ -19,11 +19,11 @@
[ENTROPIES...: 4.4,4.7,4.6,5.5,5.4,4.7,5.2,4.6,4.1,4.0,4.7,3.7,3.5,4.7,3.5,3.5,4.6,4.1,4.5,4.7,4.3,4.2,4.7,4.2,4.7,4.7,4.7,4.3,4.7,4.2,4.1,4.6]
new: [.....3] [ip4][..tcp] [....10.10.10.49][55343] -> [...10.10.10.251][..631]
detected: [.....3] [ip4][..tcp] [....10.10.10.49][55343] -> [...10.10.10.251][..631] [HTTP.IPP][Unknown][System][Acceptable][10.10.10.251]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI
end: [.....1] [ip4][..tcp] [....10.10.10.49][55341] -> [...10.10.10.251][..631] [HTTP.IPP][Unknown][System][Acceptable]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI
end: [.....2] [ip4][..tcp] [....10.10.10.49][55342] -> [...10.10.10.251][..631] [HTTP.IPP][Unknown][System][Acceptable]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI
end: [.....3] [ip4][..tcp] [....10.10.10.49][55343] -> [...10.10.10.251][..631] [HTTP.IPP][Unknown][System][Acceptable]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/ipsec_isakmp_esp.pcap.out b/test/results/flow-info/default/ipsec_isakmp_esp.pcap.out
index 840e90e5f..a6f1e1985 100644
--- a/test/results/flow-info/ipsec_isakmp_esp.pcap.out
+++ b/test/results/flow-info/default/ipsec_isakmp_esp.pcap.out
@@ -3,14 +3,20 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.193][.4500]
detected: [.....1] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.193][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.193][..500]
detected: [.....2] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.193][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.193][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
update: [.....2] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.193][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 23 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 2|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 2]
update: [.....1] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.193][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
update: [.....2] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.193][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
analyse: [.....1] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.193][.4500] [IPSec][Unknown][VPN][Safe]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 662.067| 70.207| 185.660|34469670203.425| 2.000]
@@ -22,102 +28,149 @@
[PKTLENS.....: 844,236,140,108,124,444,1360,1360,928,1360,160,160,160,928,160,844,236,140,108,124,444,1360,1360,928,160,160,160,1056,160,108,844,236]
[ENTROPIES...: 7.7,7.0,6.1,5.8,6.1,7.4,7.9,7.9,7.8,7.9,6.6,6.7,6.6,7.8,6.6,7.8,6.9,6.2,5.8,6.0,7.4,7.9,7.9,7.8,6.6,6.5,6.8,7.8,6.7,5.7,7.8,6.8]
update: [.....1] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.193][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
update: [.....2] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.193][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 61 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 2|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 6]
idle: [.....2] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.193][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.193][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.193][..500]
detected: [.....3] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.193][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.193][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.193][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 84 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 3|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 9]
idle: [.....1] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.193][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.193][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.195][.4500]
detected: [.....4] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.195][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.193][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.193][.4500]
detected: [.....5] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.193][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [.....6] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.195][..500]
detected: [.....6] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.195][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.193][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
update: [.....4] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.195][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 126 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 3 / 6|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 12]
idle: [.....5] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.193][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
update: [.....4] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.195][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
update: [.....6] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.195][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 145 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 6|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 14]
new: [.....7] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.194][..500]
detected: [.....7] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.194][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [.....8] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.194][.4500]
detected: [.....8] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.194][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.195][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.195][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 164 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 8|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 14]
update: [.....8] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.194][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
update: [.....7] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.194][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
update: [.....8] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.194][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
update: [.....7] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.194][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 187 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 8|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 18]
new: [.....9] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.225][..500]
detected: [.....9] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.225][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [....10] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.225][.4500]
detected: [....10] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.225][.4500] [IPSec][Unknown][VPN][Safe]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
idle: [.....8] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.194][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [.....7] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.194][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [....11] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.131][..500]
detected: [....11] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.131][..500] [IPSec][Unknown][VPN][Safe]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
new: [....12] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.131][.4500]
detected: [....12] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.131][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [....10] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.225][.4500] [IPSec][Unknown][VPN][Safe]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
idle: [.....9] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.225][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 225 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 12|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 18]
update: [....12] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.131][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
update: [....11] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.131][..500] [IPSec][Unknown][VPN][Safe]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
DAEMON-EVENT: [Processed: 244 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 12|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 20]
new: [....13] [ip4][..udp] [..192.168.2.100][43811] -> [109.237.187.193][.4500]
detected: [....13] [ip4][..udp] [..192.168.2.100][43811] -> [109.237.187.193][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [....14] [ip4][..udp] [..192.168.2.100][43811] -> [109.237.187.193][..500]
detected: [....14] [ip4][..udp] [..192.168.2.100][43811] -> [109.237.187.193][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [....12] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.131][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [....11] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.131][..500] [IPSec][Unknown][VPN][Safe]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
DAEMON-EVENT: [Processed: 267 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 14|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 20]
new: [....15] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.129][..500]
detected: [....15] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.129][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [....16] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.129][.4500]
detected: [....16] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.129][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [....13] [ip4][..udp] [..192.168.2.100][43811] -> [109.237.187.193][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [....14] [ip4][..udp] [..192.168.2.100][43811] -> [109.237.187.193][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [....17] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.225][..500]
detected: [....17] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.225][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [....18] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.225][.4500]
detected: [....18] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.225][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [....19] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.131][..500]
detected: [....19] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.131][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [....20] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.131][.4500]
detected: [....20] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.131][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [....21] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.193][..500]
detected: [....21] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.193][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [....22] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.193][.4500]
detected: [....22] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.193][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [....23] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.227][..500]
detected: [....23] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.227][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [....24] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.227][.4500]
detected: [....24] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.227][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
analyse: [....24] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.227][.4500] [IPSec][Unknown][VPN][Safe]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.000| 0.000| 0.000| 0.000| 0.000]
@@ -140,12 +193,16 @@
[ENTROPIES...: 4.9,4.6,5.0,6.6,5.0,4.6,5.0,6.6,4.9,4.6,5.0,6.4,4.9,4.6,5.0,6.6,4.9,4.6,5.0,6.5,4.9,4.6,5.0,6.6,4.9,4.7,5.0,6.6,4.9,4.6,5.0,6.5]
new: [....25] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.226][..500]
detected: [....25] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.226][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [....26] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.226][.4500]
detected: [....26] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.226][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [....27] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.130][..500]
detected: [....27] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.130][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [....28] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.130][.4500]
detected: [....28] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.130][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
analyse: [....28] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.130][.4500] [IPSec][Unknown][VPN][Safe]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.000| 0.000| 0.000| 0.000| 0.000]
@@ -158,20 +215,28 @@
[ENTROPIES...: 7.7,6.8,6.3,5.8,6.0,7.4,7.9,7.8,6.6,6.6,7.8,6.6,7.8,7.9,7.9,7.8,6.8,6.3,5.9,6.1,7.4,7.9,7.8,6.6,6.7,7.8,6.7,7.9,7.8,7.8,7.7,6.9]
new: [....29] [ip4][..udp] [..192.168.2.100][42593] -> [109.237.187.193][.4500]
detected: [....29] [ip4][..udp] [..192.168.2.100][42593] -> [109.237.187.193][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [....30] [ip4][..udp] [..192.168.2.100][42593] -> [109.237.187.193][..500]
detected: [....30] [ip4][..udp] [..192.168.2.100][42593] -> [109.237.187.193][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [....31] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.194][..500]
detected: [....31] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.194][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [....32] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.194][.4500]
detected: [....32] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.194][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [....33] [ip4][..udp] [..192.168.2.100][41618] -> [109.237.187.194][.4500]
detected: [....33] [ip4][..udp] [..192.168.2.100][41618] -> [109.237.187.194][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [....34] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.195][.4500]
detected: [....34] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.195][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [....35] [ip4][..udp] [..192.168.2.100][41618] -> [109.237.187.194][..500]
detected: [....35] [ip4][..udp] [..192.168.2.100][41618] -> [109.237.187.194][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
new: [....36] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.195][..500]
detected: [....36] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.195][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
analyse: [....34] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.195][.4500] [IPSec][Unknown][VPN][Safe]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.000| 0.000| 0.000| 0.000| 0.000]
@@ -193,25 +258,47 @@
[PKTLENS.....: 844,236,140,108,124,444,1360,1360,928,160,160,160,1056,160,108,844,236,140,108,124,444,1360,1360,912,160,160,160,1056,160,1360,844,236]
[ENTROPIES...: 7.7,6.9,6.3,5.8,6.2,7.5,7.8,7.8,7.8,6.7,6.6,6.6,7.8,6.6,5.7,7.8,7.0,6.2,5.9,6.2,7.5,7.9,7.9,7.8,6.7,6.6,6.6,7.8,6.6,7.8,7.7,6.9]
idle: [....28] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.130][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [....20] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.131][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [....26] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.226][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [....24] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.227][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [....34] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.195][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [....32] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.194][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [....22] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.193][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [....18] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.225][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [....16] [ip4][..udp] [..192.168.2.100][14500] -> [109.237.187.129][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [....27] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.130][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [....19] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.131][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [....25] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.226][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [....23] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.227][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [....36] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.195][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [....31] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.194][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [....21] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.193][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [....17] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.225][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [....15] [ip4][..udp] [..192.168.2.100][10500] -> [109.237.187.129][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [....33] [ip4][..udp] [..192.168.2.100][41618] -> [109.237.187.194][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [....35] [ip4][..udp] [..192.168.2.100][41618] -> [109.237.187.194][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [....29] [ip4][..udp] [..192.168.2.100][42593] -> [109.237.187.193][.4500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [....30] [ip4][..udp] [..192.168.2.100][42593] -> [109.237.187.193][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/ipv6_in_gtp.pcap.out b/test/results/flow-info/default/ipv6_in_gtp.pcap.out
index 91691f9ad..91691f9ad 100644
--- a/test/results/flow-info/ipv6_in_gtp.pcap.out
+++ b/test/results/flow-info/default/ipv6_in_gtp.pcap.out
diff --git a/test/results/flow-info/irc.pcap.out b/test/results/flow-info/default/irc.pcap.out
index 521693a95..f25c6f99d 100644
--- a/test/results/flow-info/irc.pcap.out
+++ b/test/results/flow-info/default/irc.pcap.out
@@ -3,7 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [.10.180.156.249][45921] -> [...38.229.70.20][.8000]
detected: [.....1] [ip4][..tcp] [.10.180.156.249][45921] -> [...38.229.70.20][.8000] [IRC][Unknown][Chat][Unsafe]
- RISK: Known Proto on Non Std Port, Unsafe Protocol
+ RISK: Known Proto on Non Std Port, Unsafe Protocol, Clear-Text Credentials
idle: [.....1] [ip4][..tcp] [.10.180.156.249][45921] -> [...38.229.70.20][.8000] [IRC][Unknown][Chat][Unsafe]
- RISK: Known Proto on Non Std Port, Unsafe Protocol
+ RISK: Known Proto on Non Std Port, Unsafe Protocol, Clear-Text Credentials
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/ja3_lots_of_cipher_suites.pcap.out b/test/results/flow-info/default/ja3_lots_of_cipher_suites.pcap.out
index e12c4dd29..e12c4dd29 100644
--- a/test/results/flow-info/ja3_lots_of_cipher_suites.pcap.out
+++ b/test/results/flow-info/default/ja3_lots_of_cipher_suites.pcap.out
diff --git a/test/results/flow-info/ja3_lots_of_cipher_suites_2_anon.pcap.out b/test/results/flow-info/default/ja3_lots_of_cipher_suites_2_anon.pcap.out
index 0fbd67a55..ac24df529 100644
--- a/test/results/flow-info/ja3_lots_of_cipher_suites_2_anon.pcap.out
+++ b/test/results/flow-info/default/ja3_lots_of_cipher_suites_2_anon.pcap.out
@@ -4,6 +4,7 @@
ERROR-EVENT: Captured packet size is smaller than expected packet size [1/16]
new: [.....1] [ip4][..udp] [.132.190.244.12][.2152] -> [.151.121.185.44][.2152]
detected: [.....1] [ip4][..udp] [.132.190.244.12][.2152] -> [.151.121.185.44][.2152] [GTP.GTP_U][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Captured packet size is smaller than expected packet size [2/16]
ERROR-EVENT: Captured packet size is smaller than expected packet size [3/16]
ERROR-EVENT: Captured packet size is smaller than expected packet size [4/16]
@@ -17,4 +18,5 @@
ERROR-EVENT: Captured packet size is smaller than expected packet size [12/16]
ERROR-EVENT: Captured packet size is smaller than expected packet size [13/16]
idle: [.....1] [ip4][..udp] [.132.190.244.12][.2152] -> [.151.121.185.44][.2152] [GTP.GTP_U][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/jabber.pcap.out b/test/results/flow-info/default/jabber.pcap.out
index 2b5cfdc2f..e549e4184 100644
--- a/test/results/flow-info/jabber.pcap.out
+++ b/test/results/flow-info/default/jabber.pcap.out
@@ -27,15 +27,19 @@
[ENTROPIES...: 4.3,5.1,4.8,5.4,4.9,5.4,4.8,5.6,4.7,5.4,4.8,5.6,6.1,4.8,6.1,4.9,6.0,4.7,5.4,4.8,5.4,4.6,5.4,4.9,5.6,4.8,5.4,4.7,5.4,4.8,5.5,4.7]
new: [.....3] [ip4][..tcp] [....172.16.0.62][57126] -> [...172.16.1.138][.5222] [MIDSTREAM]
detected: [.....3] [ip4][..tcp] [....172.16.0.62][57126] -> [...172.16.1.138][.5222] [Jabber][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..tcp] [....172.16.0.62][57129] -> [...172.16.1.138][.5222] [MIDSTREAM]
detected: [.....4] [ip4][..tcp] [....172.16.0.62][57129] -> [...172.16.1.138][.5222] [Jabber][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 189 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 4 / 4|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
end: [.....3] [ip4][..tcp] [....172.16.0.62][57126] -> [...172.16.1.138][.5222] [Jabber][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][..tcp] [....172.16.0.62][57147] -> [...172.16.1.138][.5222]
detected: [.....5] [ip4][..tcp] [....172.16.0.62][57147] -> [...172.16.1.138][.5222] [Jabber][Unknown][Web][Acceptable]
new: [.....6] [ip4][..tcp] [....172.16.0.62][57149] -> [...172.16.1.138][.5222] [MIDSTREAM]
detected: [.....6] [ip4][..tcp] [....172.16.0.62][57149] -> [...172.16.1.138][.5222] [Jabber][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
end: [.....5] [ip4][..tcp] [....172.16.0.62][57147] -> [...172.16.1.138][.5222] [Jabber][Unknown][Web][Acceptable]
DAEMON-EVENT: [Processed: 243 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 4 / 6|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
@@ -56,7 +60,9 @@
idle: [.....1] [ip4][..tcp] [....172.16.0.62][57094] -> [...172.16.1.138][.5222] [Jabber][Unknown][Web][Acceptable]
idle: [.....2] [ip4][..tcp] [....172.16.0.62][57122] -> [...172.16.1.138][.5222] [Jabber][Unknown][Web][Acceptable]
idle: [.....4] [ip4][..tcp] [....172.16.0.62][57129] -> [...172.16.1.138][.5222] [Jabber][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][..tcp] [....172.16.0.62][57149] -> [...172.16.1.138][.5222] [Jabber][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 283 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 7|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....8] [ip4][..tcp] [..192.168.2.100][34218] -> [.160.44.201.102][.5223]
diff --git a/test/results/flow-info/kerberos-error.pcap.out b/test/results/flow-info/default/kerberos-error.pcap.out
index 6a8aa1a74..2ee7a9f67 100644
--- a/test/results/flow-info/kerberos-error.pcap.out
+++ b/test/results/flow-info/default/kerberos-error.pcap.out
@@ -3,5 +3,6 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [.148.151.79.183][34473] -> [.144.199.10.233][...88]
detected: [.....1] [ip4][..udp] [.148.151.79.183][34473] -> [.144.199.10.233][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [.148.151.79.183][34473] -> [.144.199.10.233][...88] [Kerberos][Unknown][Network][Acceptable]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/kerberos-login.pcap.out b/test/results/flow-info/default/kerberos-login.pcap.out
index 774499db9..8908c8721 100644
--- a/test/results/flow-info/kerberos-login.pcap.out
+++ b/test/results/flow-info/default/kerberos-login.pcap.out
@@ -3,51 +3,82 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [......10.1.12.2][.1061] -> [.......10.5.3.1][...88]
detected: [.....1] [ip4][..udp] [......10.1.12.2][.1061] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..udp] [......10.1.12.2][.1065] -> [.......10.5.3.1][...88]
detected: [.....2] [ip4][..udp] [......10.1.12.2][.1065] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..udp] [......10.1.12.2][.1067] -> [.......10.5.3.1][...88]
detected: [.....3] [ip4][..udp] [......10.1.12.2][.1067] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..udp] [......10.1.12.2][.1068] -> [.......10.5.3.1][...88]
detected: [.....4] [ip4][..udp] [......10.1.12.2][.1068] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][..udp] [......10.1.12.2][.1069] -> [.......10.5.3.1][...88]
detected: [.....5] [ip4][..udp] [......10.1.12.2][.1069] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....6] [ip4][..udp] [......10.1.12.2][.1074] -> [.......10.5.3.1][...88]
detected: [.....6] [ip4][..udp] [......10.1.12.2][.1074] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....7] [ip4][..udp] [......10.1.12.2][.1076] -> [.......10.5.3.1][...88]
detected: [.....7] [ip4][..udp] [......10.1.12.2][.1076] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....8] [ip4][..udp] [......10.1.12.2][.1084] -> [.......10.5.3.1][...88]
detected: [.....8] [ip4][..udp] [......10.1.12.2][.1084] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....9] [ip4][..udp] [......10.1.12.2][.1089] -> [.......10.5.3.1][...88]
detected: [.....9] [ip4][..udp] [......10.1.12.2][.1089] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....10] [ip4][..udp] [......10.1.12.2][.1090] -> [.......10.5.3.1][...88]
detected: [....10] [ip4][..udp] [......10.1.12.2][.1090] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....11] [ip4][..udp] [......10.1.12.2][.1092] -> [.......10.5.3.1][...88]
detected: [....11] [ip4][..udp] [......10.1.12.2][.1092] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....12] [ip4][..udp] [......10.1.12.2][.1096] -> [.......10.5.3.1][...88]
detected: [....12] [ip4][..udp] [......10.1.12.2][.1096] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [......10.1.12.2][.1061] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....2] [ip4][..udp] [......10.1.12.2][.1065] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [......10.1.12.2][.1067] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....4] [ip4][..udp] [......10.1.12.2][.1068] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....5] [ip4][..udp] [......10.1.12.2][.1069] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....6] [ip4][..udp] [......10.1.12.2][.1074] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....7] [ip4][..udp] [......10.1.12.2][.1076] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 24 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 12 / 12|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 7]
new: [....13] [ip4][..tcp] [..192.168.10.12][44256] -> [...192.168.10.3][...88]
detected: [....13] [ip4][..tcp] [..192.168.10.12][44256] -> [...192.168.10.3][...88] [Kerberos][Unknown][Network][Acceptable]
detection-update: [....13] [ip4][..tcp] [..192.168.10.12][44256] -> [...192.168.10.3][...88] [Kerberos][Unknown][Network][Acceptable]
idle: [.....1] [ip4][..udp] [......10.1.12.2][.1061] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [......10.1.12.2][.1065] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [......10.1.12.2][.1067] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..udp] [......10.1.12.2][.1068] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....5] [ip4][..udp] [......10.1.12.2][.1069] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][..udp] [......10.1.12.2][.1074] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....7] [ip4][..udp] [......10.1.12.2][.1076] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....8] [ip4][..udp] [......10.1.12.2][.1084] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....9] [ip4][..udp] [......10.1.12.2][.1089] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....10] [ip4][..udp] [......10.1.12.2][.1090] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....11] [ip4][..udp] [......10.1.12.2][.1092] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....12] [ip4][..udp] [......10.1.12.2][.1096] -> [.......10.5.3.1][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
end: [....13] [ip4][..tcp] [..192.168.10.12][44256] -> [...192.168.10.3][...88] [Kerberos][Unknown][Network][Acceptable]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/kerberos.pcap.out b/test/results/flow-info/default/kerberos.pcap.out
index 46c55891d..8b9c19b95 100644
--- a/test/results/flow-info/kerberos.pcap.out
+++ b/test/results/flow-info/default/kerberos.pcap.out
@@ -3,46 +3,57 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [...172.16.8.201][49157] -> [.....172.16.8.8][...88] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [...172.16.8.201][49157] -> [.....172.16.8.8][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..tcp] [...172.16.8.201][49158] -> [.....172.16.8.8][...88] [MIDSTREAM]
detected: [.....2] [ip4][..tcp] [...172.16.8.201][49158] -> [.....172.16.8.8][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..tcp] [...172.16.8.201][49159] -> [.....172.16.8.8][...88] [MIDSTREAM]
new: [.....4] [ip4][..tcp] [...172.16.8.201][49160] -> [.....172.16.8.8][...88] [MIDSTREAM]
detected: [.....4] [ip4][..tcp] [...172.16.8.201][49160] -> [.....172.16.8.8][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
detection-update: [.....4] [ip4][..tcp] [...172.16.8.201][49160] -> [.....172.16.8.8][...88] [Kerberos][Unknown][Network][Acceptable]
new: [.....5] [ip4][..tcp] [...172.16.8.201][49156] -> [.....172.16.8.8][..445] [MIDSTREAM]
new: [.....6] [ip4][..tcp] [...172.16.8.201][49162] -> [.....172.16.8.8][...88] [MIDSTREAM]
new: [.....7] [ip4][..tcp] [...172.16.8.201][49161] -> [.....172.16.8.8][..389] [MIDSTREAM]
new: [.....8] [ip4][..tcp] [...172.16.8.201][49166] -> [.....172.16.8.8][...88] [MIDSTREAM]
detected: [.....8] [ip4][..tcp] [...172.16.8.201][49166] -> [.....172.16.8.8][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....9] [ip4][..tcp] [...172.16.8.201][49167] -> [.....172.16.8.8][...88] [MIDSTREAM]
detected: [.....9] [ip4][..tcp] [...172.16.8.201][49167] -> [.....172.16.8.8][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....10] [ip4][..tcp] [...172.16.8.201][49168] -> [.....172.16.8.8][...88] [MIDSTREAM]
new: [....11] [ip4][..tcp] [...172.16.8.201][49165] -> [.....172.16.8.8][49155] [MIDSTREAM]
new: [....12] [ip4][..tcp] [...172.16.8.201][49169] -> [.....172.16.8.8][..389] [MIDSTREAM]
new: [....13] [ip4][..tcp] [...172.16.8.201][49170] -> [.....172.16.8.8][...88] [MIDSTREAM]
new: [....14] [ip4][..tcp] [...172.16.8.201][49171] -> [.....172.16.8.8][...88] [MIDSTREAM]
detected: [....14] [ip4][..tcp] [...172.16.8.201][49171] -> [.....172.16.8.8][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
detection-update: [....14] [ip4][..tcp] [...172.16.8.201][49171] -> [.....172.16.8.8][...88] [Kerberos][Unknown][Network][Acceptable]
new: [....15] [ip4][..tcp] [...172.16.8.201][49173] -> [.....172.16.8.8][...88] [MIDSTREAM]
new: [....16] [ip4][..tcp] [...172.16.8.201][49172] -> [.....172.16.8.8][..389] [MIDSTREAM]
new: [....17] [ip4][..tcp] [...172.16.8.201][49175] -> [.....172.16.8.8][...88] [MIDSTREAM]
new: [....18] [ip4][..tcp] [...172.16.8.201][49176] -> [.....172.16.8.8][...88] [MIDSTREAM]
detected: [....18] [ip4][..tcp] [...172.16.8.201][49176] -> [.....172.16.8.8][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
detection-update: [....18] [ip4][..tcp] [...172.16.8.201][49176] -> [.....172.16.8.8][...88] [Kerberos][Unknown][Network][Acceptable]
new: [....19] [ip4][..tcp] [...172.16.8.201][49174] -> [.....172.16.8.8][..445] [MIDSTREAM]
new: [....20] [ip4][..tcp] [...172.16.8.201][49179] -> [.....172.16.8.8][..389] [MIDSTREAM]
new: [....21] [ip4][..tcp] [...172.16.8.201][49180] -> [.....172.16.8.8][..389] [MIDSTREAM]
new: [....22] [ip4][..tcp] [...172.16.8.201][49181] -> [.....172.16.8.8][...88] [MIDSTREAM]
detected: [....22] [ip4][..tcp] [...172.16.8.201][49181] -> [.....172.16.8.8][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....23] [ip4][..tcp] [...172.16.8.201][49182] -> [.....172.16.8.8][...88] [MIDSTREAM]
detected: [....23] [ip4][..tcp] [...172.16.8.201][49182] -> [.....172.16.8.8][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....24] [ip4][..tcp] [...172.16.8.201][49183] -> [.....172.16.8.8][...88] [MIDSTREAM]
new: [....25] [ip4][..tcp] [...172.16.8.201][49186] -> [.....172.16.8.8][...88] [MIDSTREAM]
new: [....26] [ip4][..tcp] [...172.16.8.201][49185] -> [.....172.16.8.8][49155] [MIDSTREAM]
new: [....27] [ip4][..tcp] [...172.16.8.201][49187] -> [.....172.16.8.8][...88] [MIDSTREAM]
detected: [....27] [ip4][..tcp] [...172.16.8.201][49187] -> [.....172.16.8.8][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....28] [ip4][..tcp] [...172.16.8.201][49188] -> [.....172.16.8.8][...88] [MIDSTREAM]
detected: [....28] [ip4][..tcp] [...172.16.8.201][49188] -> [.....172.16.8.8][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....29] [ip4][..tcp] [...172.16.8.201][49189] -> [.....172.16.8.8][...88] [MIDSTREAM]
new: [....30] [ip4][..tcp] [...172.16.8.201][49190] -> [.....172.16.8.8][...88] [MIDSTREAM]
new: [....31] [ip4][..tcp] [...172.16.8.201][49192] -> [.....172.16.8.8][...88] [MIDSTREAM]
diff --git a/test/results/flow-info/kerberos_fuzz.pcapng.out b/test/results/flow-info/default/kerberos_fuzz.pcapng.out
index 1e1f3b862..1e1f3b862 100644
--- a/test/results/flow-info/kerberos_fuzz.pcapng.out
+++ b/test/results/flow-info/default/kerberos_fuzz.pcapng.out
diff --git a/test/results/flow-info/kismet.pcap.out b/test/results/flow-info/default/kismet.pcap.out
index 9a3bec150..9a3bec150 100644
--- a/test/results/flow-info/kismet.pcap.out
+++ b/test/results/flow-info/default/kismet.pcap.out
diff --git a/test/results/flow-info/kontiki.pcap.out b/test/results/flow-info/default/kontiki.pcap.out
index f2a88263b..3256a7cdc 100644
--- a/test/results/flow-info/kontiki.pcap.out
+++ b/test/results/flow-info/default/kontiki.pcap.out
@@ -5,18 +5,22 @@
new: [.....2] [ip4][..udp] [....10.25.32.59][19948] -> [..64.200.148.82][.1948]
new: [.....3] [ip4][..udp] [....10.25.32.59][19948] -> [..64.200.148.86][.8888]
detected: [.....3] [ip4][..udp] [....10.25.32.59][19948] -> [..64.200.148.86][.8888] [Kontiki][Unknown][Media][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [.....4] [ip4][.icmp] [...10.25.249.14] -> [....10.25.32.59]
detected: [.....4] [ip4][.icmp] [...10.25.249.14] -> [....10.25.32.59] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][..udp] [....10.25.32.59][19948] -> [..64.200.148.88][...80]
detected: [.....5] [ip4][..udp] [....10.25.32.59][19948] -> [..64.200.148.88][...80] [Kontiki][Unknown][Media][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [.....6] [ip4][.icmp] [.....10.25.32.3] -> [....10.25.32.59]
detected: [.....6] [ip4][.icmp] [.....10.25.32.3] -> [....10.25.32.59] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....7] [ip4][.icmp] [216.168.241.157] -> [....10.25.32.59]
detected: [.....7] [ip4][.icmp] [216.168.241.157] -> [....10.25.32.59] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....8] [ip4][.icmp] [...4.79.219.125] -> [....10.25.32.59]
detected: [.....8] [ip4][.icmp] [...4.79.219.125] -> [....10.25.32.59] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
analyse: [.....3] [ip4][..udp] [....10.25.32.59][19948] -> [..64.200.148.86][.8888] [Kontiki][Unknown][Media][Potentially Dangerous]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.608| 0.045| 0.118| 13931.400| 2.600]
@@ -28,15 +32,19 @@
[PKTLENS.....: 32,32,32,48,56,245,499,232,204,118,1269,1269,1269,1269,44,1269,1269,1269,1269,1269,44,1269,1269,1269,1269,1269,1269,44,1269,1269,1269,1269]
[ENTROPIES...: 4.3,4.4,4.4,4.8,5.1,6.3,7.3,7.0,6.9,6.2,7.9,7.8,7.8,7.8,4.9,7.8,7.8,7.8,7.8,7.8,4.9,7.9,7.8,7.8,7.8,7.9,7.8,4.9,7.8,7.8,7.9,7.9]
idle: [.....8] [ip4][.icmp] [...4.79.219.125] -> [....10.25.32.59] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....7] [ip4][.icmp] [216.168.241.157] -> [....10.25.32.59] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [....10.25.32.59][19948] -> [..64.200.148.86][.8888] [Kontiki][Unknown][Media][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [.....6] [ip4][.icmp] [.....10.25.32.3] -> [....10.25.32.59] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][.icmp] [...10.25.249.14] -> [....10.25.32.59] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [.....1] [ip4][..udp] [....10.25.32.59][19948] -> [255.255.255.255][19948] [Unknown][Unknown][Unrated]
idle: [.....1] [ip4][..udp] [....10.25.32.59][19948] -> [255.255.255.255][19948]
not-detected: [.....2] [ip4][..udp] [....10.25.32.59][19948] -> [..64.200.148.82][.1948] [Unknown][Unknown][Unrated]
idle: [.....2] [ip4][..udp] [....10.25.32.59][19948] -> [..64.200.148.82][.1948]
idle: [.....5] [ip4][..udp] [....10.25.32.59][19948] -> [..64.200.148.88][...80] [Kontiki][Unknown][Media][Potentially Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/line.pcap.out b/test/results/flow-info/default/line.pcap.out
index 7cf312f03..bd1f27cf4 100644
--- a/test/results/flow-info/line.pcap.out
+++ b/test/results/flow-info/default/line.pcap.out
@@ -17,6 +17,7 @@
DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....2] [ip4][..tcp] [...10.200.3.125][57841] -> [.147.92.165.194][..443] [MIDSTREAM]
detected: [.....2] [ip4][..tcp] [...10.200.3.125][57841] -> [.147.92.165.194][..443] [TLS][Line][Web][Safe]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..tcp] [...10.200.3.125][58160] -> [.147.92.242.232][..443]
detected: [.....3] [ip4][..tcp] [...10.200.3.125][58160] -> [.147.92.242.232][..443] [TLS.Line][Line][Chat][Acceptable][uts-front.line-apps.com]
RISK: TLS (probably) Not Carrying HTTPS
diff --git a/test/results/flow-info/default/linecall_falsepositve.pcap.out b/test/results/flow-info/default/linecall_falsepositve.pcap.out
new file mode 100644
index 000000000..feb39ec90
--- /dev/null
+++ b/test/results/flow-info/default/linecall_falsepositve.pcap.out
@@ -0,0 +1,36 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ ERROR-EVENT: Unknown packet type [1/16]
+ ERROR-EVENT: Unknown packet type [2/16]
+ ERROR-EVENT: Unknown packet type [3/16]
+ ERROR-EVENT: Unknown packet type [4/16]
+ ERROR-EVENT: Unknown packet type [5/16]
+ ERROR-EVENT: Unknown packet type [6/16]
+ ERROR-EVENT: Unknown packet type [7/16]
+ ERROR-EVENT: Unknown packet type [8/16]
+ ERROR-EVENT: Unknown packet type [9/16]
+ ERROR-EVENT: Unknown packet type [10/16]
+ ERROR-EVENT: Unknown packet type [11/16]
+ ERROR-EVENT: Unknown packet type [12/16]
+ ERROR-EVENT: Unknown packet type [13/16]
+ ERROR-EVENT: Unknown packet type [14/16]
+ ERROR-EVENT: Unknown packet type [1/16]
+ ERROR-EVENT: Unknown packet type [2/16]
+ ERROR-EVENT: Unknown packet type [3/16]
+ ERROR-EVENT: Unknown packet type [4/16]
+ ERROR-EVENT: Unknown packet type [5/16]
+ ERROR-EVENT: Unknown packet type [6/16]
+ ERROR-EVENT: Unknown packet type [7/16]
+ ERROR-EVENT: Unknown packet type [8/16]
+ ERROR-EVENT: Unknown packet type [9/16]
+ ERROR-EVENT: Unknown packet type [10/16]
+ ERROR-EVENT: Unknown packet type [11/16]
+ ERROR-EVENT: Unknown packet type [12/16]
+ ERROR-EVENT: Unknown packet type [13/16]
+ ERROR-EVENT: Unknown packet type [14/16]
+ ERROR-EVENT: Unknown packet type [15/16]
+ ERROR-EVENT: Unknown packet type [16/16]
+ ERROR-EVENT: Unknown packet type [1/16]
+ ERROR-EVENT: Unknown packet type [2/16]
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/lisp_registration.pcap.out b/test/results/flow-info/default/lisp_registration.pcap.out
index 8bfc30640..d7be8d2e9 100644
--- a/test/results/flow-info/lisp_registration.pcap.out
+++ b/test/results/flow-info/default/lisp_registration.pcap.out
@@ -3,14 +3,18 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [.....10.0.123.2][.4342] -> [.....10.0.123.1][.4342]
detected: [.....1] [ip4][..udp] [.....10.0.123.2][.4342] -> [.....10.0.123.1][.4342] [LISP][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..tcp] [.....10.0.123.2][15373] -> [.....10.0.123.1][.4342]
detected: [.....2] [ip4][..tcp] [.....10.0.123.2][15373] -> [.....10.0.123.1][.4342] [LISP][Unknown][Cloud][Acceptable]
new: [.....3] [ip4][..udp] [.....10.0.123.3][.4342] -> [.....10.0.123.1][.4342]
detected: [.....3] [ip4][..udp] [.....10.0.123.3][.4342] -> [.....10.0.123.1][.4342] [LISP][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..tcp] [.....10.0.123.3][52995] -> [.....10.0.123.1][.4342]
detected: [.....4] [ip4][..tcp] [.....10.0.123.3][52995] -> [.....10.0.123.1][.4342] [LISP][Unknown][Cloud][Acceptable]
idle: [.....4] [ip4][..tcp] [.....10.0.123.3][52995] -> [.....10.0.123.1][.4342] [LISP][Unknown][Cloud][Acceptable]
idle: [.....3] [ip4][..udp] [.....10.0.123.3][.4342] -> [.....10.0.123.1][.4342] [LISP][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [.....10.0.123.2][.4342] -> [.....10.0.123.1][.4342] [LISP][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..tcp] [.....10.0.123.2][15373] -> [.....10.0.123.1][.4342] [LISP][Unknown][Cloud][Acceptable]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/log4j-webapp-exploit.pcap.out b/test/results/flow-info/default/log4j-webapp-exploit.pcap.out
index cd1524806..a366862ff 100644
--- a/test/results/flow-info/log4j-webapp-exploit.pcap.out
+++ b/test/results/flow-info/default/log4j-webapp-exploit.pcap.out
@@ -3,7 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [...172.16.238.1][.1984] -> [..172.16.238.10][.8080]
detected: [.....1] [ip4][..tcp] [...172.16.238.1][.1984] -> [..172.16.238.10][.8080] [HTTP][Unknown][Web][Acceptable][192.168.13.31]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address, HTTP Suspicious Header
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header, Possible Exploit
ERROR-EVENT: Unknown L3 protocol [1/16]
ERROR-EVENT: Unknown L3 protocol [2/16]
new: [.....2] [ip4][..tcp] [..172.16.238.10][57650] -> [..172.16.238.11][.1389]
@@ -11,9 +11,9 @@
RISK: Known Proto on Non Std Port
new: [.....3] [ip4][..tcp] [..172.16.238.10][48444] -> [..172.16.238.11][...80]
detected: [.....3] [ip4][..tcp] [..172.16.238.10][48444] -> [..172.16.238.11][...80] [HTTP][Unknown][Web][Acceptable][172.16.238.11]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
detection-update: [.....3] [ip4][..tcp] [..172.16.238.10][48444] -> [..172.16.238.11][...80] [HTTP][Unknown][Download][Acceptable][172.16.238.11]
- RISK: Binary App Transfer, HTTP Numeric IP Address
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI, Possible Exploit
new: [.....4] [ip4][..tcp] [..172.16.238.10][55408] -> [....10.10.10.31][.9001]
ERROR-EVENT: Unknown L3 protocol [3/16]
ERROR-EVENT: Unknown L3 protocol [4/16]
@@ -27,27 +27,28 @@
[IATS(ms)....: 0.1,0.2,7288.6,7288.6,60.5,60.7,0.3,0.2,0.1,0.1,0.1,0.1,0.1,0.1,0.2,0.2,0.1,0.1,0.1,0.1,0.1,0.1,0.1,0.0,0.0,0.0,0.0,0.0,0.0,0.0,0.1]
[PKTLENS.....: 60,60,52,55,52,53,52,53,52,53,52,53,52,53,52,53,52,53,52,55,52,57,52,55,52,55,52,55,52,55,52,55]
[ENTROPIES...: 4.5,5.1,5.0,5.1,4.9,5.0,4.9,5.0,4.8,4.9,4.9,5.0,4.9,5.0,4.9,4.9,4.9,4.9,4.9,4.9,4.9,5.0,4.8,5.0,4.9,5.0,4.9,5.0,4.9,5.0,4.9,4.9]
- not-detected: [.....4] [ip4][..tcp] [..172.16.238.10][55408] -> [....10.10.10.31][.9001] [Unknown][Unknown][Unrated]
new: [.....5] [ip4][..tcp] [..172.16.238.10][57742] -> [..172.16.238.11][.1389]
detected: [.....5] [ip4][..tcp] [..172.16.238.10][57742] -> [..172.16.238.11][.1389] [LDAP][Unknown][System][Acceptable]
RISK: Known Proto on Non Std Port
new: [.....6] [ip4][..tcp] [..172.16.238.10][48534] -> [..172.16.238.11][...80]
detected: [.....6] [ip4][..tcp] [..172.16.238.10][48534] -> [..172.16.238.11][...80] [HTTP][Unknown][Web][Acceptable][172.16.238.11]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
detection-update: [.....6] [ip4][..tcp] [..172.16.238.10][48534] -> [..172.16.238.11][...80] [HTTP][Unknown][Download][Acceptable][172.16.238.11]
- RISK: Binary App Transfer, HTTP Numeric IP Address
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI, Possible Exploit
new: [.....7] [ip4][..tcp] [..172.16.238.10][55498] -> [....10.10.10.31][.9001]
end: [.....5] [ip4][..tcp] [..172.16.238.10][57742] -> [..172.16.238.11][.1389] [LDAP][Unknown][System][Acceptable]
RISK: Known Proto on Non Std Port
idle: [.....1] [ip4][..tcp] [...172.16.238.1][.1984] -> [..172.16.238.10][.8080] [HTTP][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address, HTTP Suspicious Header
- end: [.....4] [ip4][..tcp] [..172.16.238.10][55408] -> [....10.10.10.31][.9001] [Unknown][Unknown][Unrated]
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header, Possible Exploit
+ not-detected: [.....4] [ip4][..tcp] [..172.16.238.10][55408] -> [....10.10.10.31][.9001] [Unknown][Unknown][Unrated]
+ end: [.....4] [ip4][..tcp] [..172.16.238.10][55408] -> [....10.10.10.31][.9001]
not-detected: [.....7] [ip4][..tcp] [..172.16.238.10][55498] -> [....10.10.10.31][.9001] [Unknown][Unknown][Unrated]
+ RISK: TCP Connection Issues
end: [.....7] [ip4][..tcp] [..172.16.238.10][55498] -> [....10.10.10.31][.9001]
end: [.....3] [ip4][..tcp] [..172.16.238.10][48444] -> [..172.16.238.11][...80] [HTTP][Unknown][Download][Acceptable]
- RISK: Binary App Transfer, HTTP Numeric IP Address
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI, Possible Exploit
end: [.....6] [ip4][..tcp] [..172.16.238.10][48534] -> [..172.16.238.11][...80] [HTTP][Unknown][Download][Acceptable]
- RISK: Binary App Transfer, HTTP Numeric IP Address
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI, Possible Exploit
end: [.....2] [ip4][..tcp] [..172.16.238.10][57650] -> [..172.16.238.11][.1389] [LDAP][Unknown][System][Acceptable]
RISK: Known Proto on Non Std Port
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/long_tls_certificate.pcap.out b/test/results/flow-info/default/long_tls_certificate.pcap.out
index b1ecba86f..b1ecba86f 100644
--- a/test/results/flow-info/long_tls_certificate.pcap.out
+++ b/test/results/flow-info/default/long_tls_certificate.pcap.out
diff --git a/test/results/flow-info/lru_ipv6_caches.pcapng.out b/test/results/flow-info/default/lru_ipv6_caches.pcapng.out
index 03109709f..51f07f585 100644
--- a/test/results/flow-info/lru_ipv6_caches.pcapng.out
+++ b/test/results/flow-info/default/lru_ipv6_caches.pcapng.out
@@ -7,38 +7,56 @@
new: [.....3] [ip6][..udp] [.2a2f:8509:1cb2:466d:ecbf:69d6:109c:608][62229] -> [.3991:72d:336e:65ec:c5bf:a5fa:83ad:23de][.6881]
new: [.....4] [ip6][..udp] [.3991:72d:336e:65ec:c5bf:a5fa:83ad:23de][.6881] -> [2fda:1f8a:c107:88a4:e509:d2e1:445f:f34c][.6881]
detected: [.....4] [ip6][..udp] [.3991:72d:336e:65ec:c5bf:a5fa:83ad:23de][.6881] -> [2fda:1f8a:c107:88a4:e509:d2e1:445f:f34c][.6881] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [.....5] [ip6][..udp] [.3991:72d:336e:65ec:c5bf:a5fa:83ad:23de][.6881] -> [2c7f:d7a0:44a9:49e9:e586:fb7f:5b85:9c83][....1]
+ detected: [.....5] [ip6][..udp] [.3991:72d:336e:65ec:c5bf:a5fa:83ad:23de][.6881] -> [2c7f:d7a0:44a9:49e9:e586:fb7f:5b85:9c83][....1] [BitTorrent][Unknown][Download][Acceptable]
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
+ detected: [.....3] [ip6][..udp] [.2a2f:8509:1cb2:466d:ecbf:69d6:109c:608][62229] -> [.3991:72d:336e:65ec:c5bf:a5fa:83ad:23de][.6881] [BitTorrent][Unknown][Download][Acceptable]
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [.....6] [ip6][..udp] [.3991:72d:336e:65ec:c5bf:a5fa:83ad:23de][.6881] -> [.38b2:46b7:27a4:94c3:c134:948:e069:d71f][....1]
+ detected: [.....6] [ip6][..udp] [.3991:72d:336e:65ec:c5bf:a5fa:83ad:23de][.6881] -> [.38b2:46b7:27a4:94c3:c134:948:e069:d71f][....1] [BitTorrent][Unknown][Download][Acceptable]
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
+ detected: [.....2] [ip6][..udp] [.3991:72d:336e:65ec:c5bf:a5fa:83ad:23de][.6881] -> [3024:e5ee:ac2f:cd76:5dd6:a7a1:f17f:5c27][60506] [BitTorrent][Unknown][Download][Acceptable]
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [.....7] [ip6][..udp] [2118:ec33:112b:7908:2c80:27ff:fef7:d71f][48415] -> [....32fb:f967:681e:e96b:face:b00c::74fd][.3478]
detected: [.....7] [ip6][..udp] [2118:ec33:112b:7908:2c80:27ff:fef7:d71f][48415] -> [....32fb:f967:681e:e96b:face:b00c::74fd][.3478] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [.....8] [ip6][..tcp] [........................2001:db8:200::1][..443] -> [..........................2001:db8:1::1][44144]
detected: [.....8] [ip6][..tcp] [........................2001:db8:200::1][..443] -> [..........................2001:db8:1::1][44144] [TLS][Unknown][Web][Safe][]
+ RISK: Unidirectional Traffic
detection-update: [.....8] [ip6][..tcp] [........................2001:db8:200::1][..443] -> [..........................2001:db8:1::1][44144] [TLS.Cloudflare][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
new: [.....9] [ip6][..tcp] [........................2001:db8:200::1][..443] -> [..........................2001:db8:1::1][44150]
detected: [.....9] [ip6][..tcp] [........................2001:db8:200::1][..443] -> [..........................2001:db8:1::1][44150] [TLS.Cloudflare][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
detection-update: [.....9] [ip6][..tcp] [........................2001:db8:200::1][..443] -> [..........................2001:db8:1::1][44150] [TLS.Cloudflare][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....10] [ip6][..tcp] [........................2001:db8:200::1][..443] -> [..........................2001:db8:1::1][44192]
detected: [....10] [ip6][..tcp] [........................2001:db8:200::1][..443] -> [..........................2001:db8:1::1][44192] [TLS.Cloudflare][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
detection-update: [....10] [ip6][..tcp] [........................2001:db8:200::1][..443] -> [..........................2001:db8:1::1][44192] [TLS.Cloudflare][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....11] [ip6][..udp] [.3297:a1af:5121:cfc:360b:2e07:872f:1ea0][43865] -> [....32fb:f967:681e:e96b:face:b00c::74fd][.3478]
detected: [....11] [ip6][..udp] [.3297:a1af:5121:cfc:360b:2e07:872f:1ea0][43865] -> [....32fb:f967:681e:e96b:face:b00c::74fd][.3478] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....12] [ip6][..udp] [.3069:c624:1d42:9469:98b1:67ff:fe43:325][56131] -> [....32fb:f967:681e:e96b:face:b00c::74fd][.3478]
detected: [....12] [ip6][..udp] [.3069:c624:1d42:9469:98b1:67ff:fe43:325][56131] -> [....32fb:f967:681e:e96b:face:b00c::74fd][.3478] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [.....8] [ip6][..tcp] [........................2001:db8:200::1][..443] -> [..........................2001:db8:1::1][44144]
idle: [.....9] [ip6][..tcp] [........................2001:db8:200::1][..443] -> [..........................2001:db8:1::1][44150]
idle: [....10] [ip6][..tcp] [........................2001:db8:200::1][..443] -> [..........................2001:db8:1::1][44192]
- not-detected: [.....5] [ip6][..udp] [.3991:72d:336e:65ec:c5bf:a5fa:83ad:23de][.6881] -> [2c7f:d7a0:44a9:49e9:e586:fb7f:5b85:9c83][....1] [Unknown][Unknown][Unrated]
idle: [.....5] [ip6][..udp] [.3991:72d:336e:65ec:c5bf:a5fa:83ad:23de][.6881] -> [2c7f:d7a0:44a9:49e9:e586:fb7f:5b85:9c83][....1]
- not-detected: [.....2] [ip6][..udp] [.3991:72d:336e:65ec:c5bf:a5fa:83ad:23de][.6881] -> [3024:e5ee:ac2f:cd76:5dd6:a7a1:f17f:5c27][60506] [Unknown][Unknown][Unrated]
- idle: [.....2] [ip6][..udp] [.3991:72d:336e:65ec:c5bf:a5fa:83ad:23de][.6881] -> [3024:e5ee:ac2f:cd76:5dd6:a7a1:f17f:5c27][60506]
+ idle: [.....2] [ip6][..udp] [.3991:72d:336e:65ec:c5bf:a5fa:83ad:23de][.6881] -> [3024:e5ee:ac2f:cd76:5dd6:a7a1:f17f:5c27][60506] [BitTorrent][Unknown][Download][Acceptable]
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....4] [ip6][..udp] [.3991:72d:336e:65ec:c5bf:a5fa:83ad:23de][.6881] -> [2fda:1f8a:c107:88a4:e509:d2e1:445f:f34c][.6881]
- not-detected: [.....6] [ip6][..udp] [.3991:72d:336e:65ec:c5bf:a5fa:83ad:23de][.6881] -> [.38b2:46b7:27a4:94c3:c134:948:e069:d71f][....1] [Unknown][Unknown][Unrated]
idle: [.....6] [ip6][..udp] [.3991:72d:336e:65ec:c5bf:a5fa:83ad:23de][.6881] -> [.38b2:46b7:27a4:94c3:c134:948:e069:d71f][....1]
idle: [.....7] [ip6][..udp] [2118:ec33:112b:7908:2c80:27ff:fef7:d71f][48415] -> [....32fb:f967:681e:e96b:face:b00c::74fd][.3478] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....11] [ip6][..udp] [.3297:a1af:5121:cfc:360b:2e07:872f:1ea0][43865] -> [....32fb:f967:681e:e96b:face:b00c::74fd][.3478] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip6][..udp] [....32fb:f967:681e:e96b:face:b00c::74fd][.3478] -> [20ed:470f:6f73:ce60:60be:8b4f:df37:b080][45658] [STUN][Unknown][Network][Acceptable]
idle: [....12] [ip6][..udp] [.3069:c624:1d42:9469:98b1:67ff:fe43:325][56131] -> [....32fb:f967:681e:e96b:face:b00c::74fd][.3478] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable]
- not-detected: [.....3] [ip6][..udp] [.2a2f:8509:1cb2:466d:ecbf:69d6:109c:608][62229] -> [.3991:72d:336e:65ec:c5bf:a5fa:83ad:23de][.6881] [Unknown][Unknown][Unrated]
- idle: [.....3] [ip6][..udp] [.2a2f:8509:1cb2:466d:ecbf:69d6:109c:608][62229] -> [.3991:72d:336e:65ec:c5bf:a5fa:83ad:23de][.6881]
+ RISK: Unidirectional Traffic
+ idle: [.....3] [ip6][..udp] [.2a2f:8509:1cb2:466d:ecbf:69d6:109c:608][62229] -> [.3991:72d:336e:65ec:c5bf:a5fa:83ad:23de][.6881] [BitTorrent][Unknown][Download][Acceptable]
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/malformed_dns.pcap.out b/test/results/flow-info/default/malformed_dns.pcap.out
index fd9c8b44d..04f5db790 100644
--- a/test/results/flow-info/malformed_dns.pcap.out
+++ b/test/results/flow-info/default/malformed_dns.pcap.out
@@ -3,8 +3,9 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [......127.0.0.1][50435] -> [......127.0.0.1][...53]
detected: [.....1] [ip4][..udp] [......127.0.0.1][50435] -> [......127.0.0.1][...53] [DNS][Unknown][Network][Acceptable][www.xt.com]
+ RISK: Unidirectional Traffic
detection-update: [.....1] [ip4][..udp] [......127.0.0.1][50435] -> [......127.0.0.1][...53] [DNS][Unknown][Network][Acceptable][www.xt.com]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Large DNS Packet (512+ bytes), Minor Issues
idle: [.....1] [ip4][..udp] [......127.0.0.1][50435] -> [......127.0.0.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Large DNS Packet (512+ bytes), Minor Issues
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/malformed_icmp.pcap.out b/test/results/flow-info/default/malformed_icmp.pcap.out
index e1ab101c6..69bb0882c 100644
--- a/test/results/flow-info/malformed_icmp.pcap.out
+++ b/test/results/flow-info/default/malformed_icmp.pcap.out
@@ -3,7 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][.icmp] [218.152.179.213] -> [.218.152.179.54]
detected: [.....1] [ip4][.icmp] [218.152.179.213] -> [.218.152.179.54] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
idle: [.....1] [ip4][.icmp] [218.152.179.213] -> [.218.152.179.54] [ICMP][Unknown][Network][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/malware.pcap.out b/test/results/flow-info/default/malware.pcap.out
index 7d9d68306..ef6c8aded 100644
--- a/test/results/flow-info/malware.pcap.out
+++ b/test/results/flow-info/default/malware.pcap.out
@@ -3,23 +3,28 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [....192.168.7.7][42370] -> [........1.1.1.1][...53]
detected: [.....1] [ip4][..udp] [....192.168.7.7][42370] -> [........1.1.1.1][...53] [DNS][Unknown][Network][Acceptable][www.internetbadguys.com]
+ RISK: Unidirectional Traffic
detection-update: [.....1] [ip4][..udp] [....192.168.7.7][42370] -> [........1.1.1.1][...53] [DNS][Unknown][Network][Acceptable][www.internetbadguys.com]
new: [.....2] [ip4][.icmp] [....192.168.7.7] -> [144.139.247.220]
detected: [.....2] [ip4][.icmp] [....192.168.7.7] -> [144.139.247.220] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..tcp] [....192.168.7.7][33706] -> [144.139.247.220][...80]
DAEMON-EVENT: [Processed: 4 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 3 / 3|skipped: 0|!detected: 0|guessed: 0|detection-updates: 1|updates: 0]
new: [.....4] [ip4][..tcp] [....192.168.7.7][48394] -> [..67.215.92.210][...80] [MIDSTREAM]
detected: [.....4] [ip4][..tcp] [....192.168.7.7][48394] -> [..67.215.92.210][...80] [HTTP][OpenDNS][Web][Acceptable][www.internetbadguys.com]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][..tcp] [....192.168.7.7][35236] -> [..67.215.92.210][..443]
detected: [.....5] [ip4][..tcp] [....192.168.7.7][35236] -> [..67.215.92.210][..443] [TLS][OpenDNS][Web][Safe][www.internetbadguys.com]
detection-update: [.....5] [ip4][..tcp] [....192.168.7.7][35236] -> [..67.215.92.210][..443] [TLS][OpenDNS][Web][Safe][www.internetbadguys.com]
detection-update: [.....5] [ip4][..tcp] [....192.168.7.7][35236] -> [..67.215.92.210][..443] [TLS.OpenDNS][OpenDNS][Network][Acceptable][www.internetbadguys.com]
RISK: TLS Cert Mismatch
guessed: [.....3] [ip4][..tcp] [....192.168.7.7][33706] -> [144.139.247.220][...80] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..tcp] [....192.168.7.7][33706] -> [144.139.247.220][...80]
end: [.....5] [ip4][..tcp] [....192.168.7.7][35236] -> [..67.215.92.210][..443]
idle: [.....2] [ip4][.icmp] [....192.168.7.7] -> [144.139.247.220] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..tcp] [....192.168.7.7][48394] -> [..67.215.92.210][...80]
idle: [.....1] [ip4][..udp] [....192.168.7.7][42370] -> [........1.1.1.1][...53] [DNS][Unknown][Network][Acceptable]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/memcached.cap.out b/test/results/flow-info/default/memcached.cap.out
index f7c85dbac..f7c85dbac 100644
--- a/test/results/flow-info/memcached.cap.out
+++ b/test/results/flow-info/default/memcached.cap.out
diff --git a/test/results/flow-info/default/merakicloud.pcapng.out b/test/results/flow-info/default/merakicloud.pcapng.out
new file mode 100644
index 000000000..1b394d43e
--- /dev/null
+++ b/test/results/flow-info/default/merakicloud.pcapng.out
@@ -0,0 +1,33 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..udp] [...2.36.234.133][47301] -> [..209.206.59.34][.7351]
+ detected: [.....1] [ip4][..udp] [...2.36.234.133][47301] -> [..209.206.59.34][.7351] [MerakiCloud][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
+ update: [.....1] [ip4][..udp] [...2.36.234.133][47301] -> [..209.206.59.34][.7351] [MerakiCloud][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
+ update: [.....1] [ip4][..udp] [...2.36.234.133][47301] -> [..209.206.59.34][.7351] [MerakiCloud][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
+ update: [.....1] [ip4][..udp] [...2.36.234.133][47301] -> [..209.206.59.34][.7351] [MerakiCloud][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
+ update: [.....1] [ip4][..udp] [...2.36.234.133][47301] -> [..209.206.59.34][.7351] [MerakiCloud][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
+ analyse: [.....1] [ip4][..udp] [...2.36.234.133][47301] -> [..209.206.59.34][.7351] [MerakiCloud][Unknown][Network][Acceptable]
+ min| max| avg| stddev| variance| entropy
+ [IAT.........: 0.185| 25.011| 16.136| 11.214| 125752330.682| 4.400]
+ [PKTLEN......: 74.000| 183.000| 129.700| 43.400| 1881.800| 4.900]
+ [BINS(c->s)..: 0,0,0,11,5,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+ [BINS(s->c)..: 0,11,0,0,5,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+ [DIRECTIONS..: 0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,1,0,1,0,1,0,1,0,1,0,0,1]
+ [IATS(ms)....: 185.1,25000.8,24997.1,25000.2,25005.1,25000.7,24996.1,25000.6,25010.6,25000.6,24997.5,25000.7,24998.6,25000.7,24997.3,25000.4,25005.7,25000.6,25008.6,6242.6,6445.4,200.9,201.8,201.0,201.1,200.0,200.0,199.9,199.0,17753.5,17954.0]
+ [PKTLENS.....: 140,74,140,74,140,74,140,74,140,74,140,74,140,74,140,74,140,74,140,74,176,183,176,183,176,183,176,183,176,183,140,74]
+ [ENTROPIES...: 5.8,4.6,5.8,4.6,5.8,4.6,5.8,4.6,5.8,4.7,5.9,4.6,5.8,4.7,5.8,4.6,5.8,4.6,5.8,4.7,6.5,6.5,6.4,6.6,6.5,6.6,6.5,6.5,6.5,6.6,5.8,4.7]
+ update: [.....1] [ip4][..udp] [...2.36.234.133][47301] -> [..209.206.59.34][.7351] [MerakiCloud][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
+ update: [.....1] [ip4][..udp] [...2.36.234.133][47301] -> [..209.206.59.34][.7351] [MerakiCloud][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
+ update: [.....1] [ip4][..udp] [...2.36.234.133][47301] -> [..209.206.59.34][.7351] [MerakiCloud][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [.....1] [ip4][..udp] [...2.36.234.133][47301] -> [..209.206.59.34][.7351] [MerakiCloud][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/mgcp.pcapng.out b/test/results/flow-info/default/mgcp.pcapng.out
index aa5fb06e8..014319700 100644
--- a/test/results/flow-info/mgcp.pcapng.out
+++ b/test/results/flow-info/default/mgcp.pcapng.out
@@ -3,11 +3,16 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [...172.16.1.116][.2427] -> [...172.16.1.119][.2427]
detected: [.....1] [ip4][..udp] [...172.16.1.116][.2427] -> [...172.16.1.119][.2427] [MGCP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [...172.16.1.116][.2427] -> [...172.16.1.119][.2427] [MGCP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 8 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 1]
new: [.....2] [ip4][..udp] [...10.10.228.72][.2427] -> [....10.10.244.2][.2427]
detected: [.....2] [ip4][..udp] [...10.10.228.72][.2427] -> [....10.10.244.2][.2427] [MGCP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [...172.16.1.116][.2427] -> [...172.16.1.119][.2427] [MGCP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [...10.10.228.72][.2427] -> [....10.10.244.2][.2427] [MGCP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/modbus.pcap.out b/test/results/flow-info/default/modbus.pcap.out
index 6e4dddbf2..66fee0c39 100644
--- a/test/results/flow-info/modbus.pcap.out
+++ b/test/results/flow-info/default/modbus.pcap.out
@@ -3,6 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [192.168.110.131][.2074] -> [192.168.110.138][..502] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [192.168.110.131][.2074] -> [192.168.110.138][..502] [Modbus][Unknown][IoT-Scada][Acceptable]
+ RISK: Unidirectional Traffic
analyse: [.....1] [ip4][..tcp] [192.168.110.131][.2074] -> [192.168.110.138][..502] [Modbus][Unknown][IoT-Scada][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.001| 1.014| 0.452| 0.497| 247304.159| 3.800]
@@ -14,4 +15,5 @@
[PKTLENS.....: 52,51,52,51,52,51,52,51,52,51,52,51,52,51,52,51,52,51,52,51,52,51,52,51,52,51,52,51,52,51,52,51]
[ENTROPIES...: 4.5,4.7,4.4,4.9,4.4,4.6,4.4,4.9,4.6,4.7,4.6,4.8,4.6,4.7,4.6,4.9,4.6,4.8,4.6,4.9,4.6,4.7,4.6,4.9,4.6,4.8,4.6,4.9,4.6,4.8,4.6,4.9]
idle: [.....1] [ip4][..tcp] [192.168.110.131][.2074] -> [192.168.110.138][..502] [Modbus][Unknown][IoT-Scada][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/monero.pcap.out b/test/results/flow-info/default/monero.pcap.out
index 35971e74e..35971e74e 100644
--- a/test/results/flow-info/monero.pcap.out
+++ b/test/results/flow-info/default/monero.pcap.out
diff --git a/test/results/flow-info/mongo_false_positive.pcapng.out b/test/results/flow-info/default/mongo_false_positive.pcapng.out
index 3b58d543d..3b58d543d 100644
--- a/test/results/flow-info/mongo_false_positive.pcapng.out
+++ b/test/results/flow-info/default/mongo_false_positive.pcapng.out
diff --git a/test/results/flow-info/mongodb.pcap.out b/test/results/flow-info/default/mongodb.pcap.out
index 806919c6b..806919c6b 100644
--- a/test/results/flow-info/mongodb.pcap.out
+++ b/test/results/flow-info/default/mongodb.pcap.out
diff --git a/test/results/flow-info/mpeg-dash.pcap.out b/test/results/flow-info/default/mpeg-dash.pcap.out
index e08564235..5db0ae278 100644
--- a/test/results/flow-info/mpeg-dash.pcap.out
+++ b/test/results/flow-info/default/mpeg-dash.pcap.out
@@ -3,21 +3,19 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [.....10.84.1.81][60926] -> [.166.248.152.10][...80]
detected: [.....1] [ip4][..tcp] [.....10.84.1.81][60926] -> [.166.248.152.10][...80] [HTTP.MpegDash][Unknown][Media][Fun][gdl.news-cdn.site]
- RISK: Suspicious DGA Domain name
DAEMON-EVENT: [Processed: 4 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....2] [ip4][..tcp] [..192.168.2.105][59142] -> [..54.161.101.85][...80]
detected: [.....2] [ip4][..tcp] [..192.168.2.105][59142] -> [..54.161.101.85][...80] [HTTP.MpegDash][AmazonAWS][Media][Fun][livesim.dashif.org]
new: [.....3] [ip4][..tcp] [..54.161.101.85][...80] -> [..192.168.2.105][59144] [MIDSTREAM]
detected: [.....3] [ip4][..tcp] [..54.161.101.85][...80] -> [..192.168.2.105][59144] [HTTP.MpegDash][AmazonAWS][Media][Fun][]
- RISK: HTTP Suspicious User-Agent
- detection-update: [.....3] [ip4][..tcp] [..54.161.101.85][...80] -> [..192.168.2.105][59144] [HTTP.MpegDash][AmazonAWS][Media][Fun][]
- RISK: HTTP Suspicious User-Agent
+ RISK: HTTP Susp User-Agent, Unidirectional Traffic
+ detection-update: [.....3] [ip4][..tcp] [..54.161.101.85][...80] -> [..192.168.2.105][59144] [HTTP.MpegDash][AmazonAWS][Media][Fun][livesim.dashif.org]
new: [.....4] [ip4][..tcp] [..192.168.2.105][59146] -> [..54.161.101.85][...80] [MIDSTREAM]
detected: [.....4] [ip4][..tcp] [..192.168.2.105][59146] -> [..54.161.101.85][...80] [HTTP.MpegDash][AmazonAWS][Media][Fun][livesim.dashif.org]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..tcp] [..192.168.2.105][59142] -> [..54.161.101.85][...80]
idle: [.....3] [ip4][..tcp] [..54.161.101.85][...80] -> [..192.168.2.105][59144]
idle: [.....4] [ip4][..tcp] [..192.168.2.105][59146] -> [..54.161.101.85][...80]
idle: [.....1] [ip4][..tcp] [.....10.84.1.81][60926] -> [.166.248.152.10][...80] [HTTP.MpegDash][Unknown][Media][Fun]
- RISK: Suspicious DGA Domain name
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/mpeg.pcap.out b/test/results/flow-info/default/mpeg.pcap.out
index 6e266bd5b..6e266bd5b 100644
--- a/test/results/flow-info/mpeg.pcap.out
+++ b/test/results/flow-info/default/mpeg.pcap.out
diff --git a/test/results/flow-info/mpegts.pcap.out b/test/results/flow-info/default/mpegts.pcap.out
index 0d9a788b1..0d9a788b1 100644
--- a/test/results/flow-info/mpegts.pcap.out
+++ b/test/results/flow-info/default/mpegts.pcap.out
diff --git a/test/results/flow-info/mqtt.pcap.out b/test/results/flow-info/default/mqtt.pcap.out
index a6c4aa86a..ae31b0116 100644
--- a/test/results/flow-info/mqtt.pcap.out
+++ b/test/results/flow-info/default/mqtt.pcap.out
@@ -5,6 +5,8 @@
detected: [.....1] [ip4][..tcp] [.....10.10.10.1][.1883] -> [....192.168.0.1][41892] [MQTT][Unknown][RPC][Acceptable]
new: [.....2] [ip4][..tcp] [..100.67.35.238][35035] -> [..51.137.28.239][.1883] [MIDSTREAM]
detected: [.....2] [ip4][..tcp] [..100.67.35.238][35035] -> [..51.137.28.239][.1883] [MQTT][Azure][RPC][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..tcp] [..100.67.35.238][35035] -> [..51.137.28.239][.1883] [MQTT][Azure][RPC][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..tcp] [.....10.10.10.1][.1883] -> [....192.168.0.1][41892] [MQTT][Unknown][RPC][Acceptable]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/mssql_tds.pcap.out b/test/results/flow-info/default/mssql_tds.pcap.out
index 0b523b9b4..10735e26d 100644
--- a/test/results/flow-info/mssql_tds.pcap.out
+++ b/test/results/flow-info/default/mssql_tds.pcap.out
@@ -3,42 +3,65 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [.10.111.111.111][.1111] -> [.......10.0.0.1][.1433] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [.10.111.111.111][.1111] -> [.......10.0.0.1][.1433] [MsSQL-TDS][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 4 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....2] [ip4][..tcp] [.10.111.111.111][.2222] -> [.......10.0.0.1][.1433] [MIDSTREAM]
detected: [.....2] [ip4][..tcp] [.10.111.111.111][.2222] -> [.......10.0.0.1][.1433] [MsSQL-TDS][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..tcp] [.10.111.111.111][.3333] -> [.......10.0.0.1][.1433] [MIDSTREAM]
detected: [.....3] [ip4][..tcp] [.10.111.111.111][.3333] -> [.......10.0.0.1][.1433] [MsSQL-TDS][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..tcp] [.10.111.111.111][.4444] -> [.......10.0.0.1][.1433] [MIDSTREAM]
detected: [.....4] [ip4][..tcp] [.10.111.111.111][.4444] -> [.......10.0.0.1][.1433] [MsSQL-TDS][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][..tcp] [.10.111.111.111][.5555] -> [.......10.0.0.1][.1433] [MIDSTREAM]
detected: [.....5] [ip4][..tcp] [.10.111.111.111][.5555] -> [.......10.0.0.1][.1433] [MsSQL-TDS][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..tcp] [.10.111.111.111][.1111] -> [.......10.0.0.1][.1433] [MsSQL-TDS][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....6] [ip4][..tcp] [.10.111.111.111][.6666] -> [.......10.0.0.1][.1433] [MIDSTREAM]
new: [.....7] [ip4][..tcp] [.10.111.111.111][.7777] -> [.......10.0.0.1][.1433] [MIDSTREAM]
detected: [.....7] [ip4][..tcp] [.10.111.111.111][.7777] -> [.......10.0.0.1][.1433] [MsSQL-TDS][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....8] [ip4][..tcp] [.10.111.111.111][.8888] -> [.......10.0.0.1][.1433] [MIDSTREAM]
detected: [.....8] [ip4][..tcp] [.10.111.111.111][.8888] -> [.......10.0.0.1][.1433] [MsSQL-TDS][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 34 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 7 / 8|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....9] [ip4][..tcp] [.10.111.111.111][.9999] -> [.......10.0.0.1][.1433] [MIDSTREAM]
detected: [.....9] [ip4][..tcp] [.10.111.111.111][.9999] -> [.......10.0.0.1][.1433] [MsSQL-TDS][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
new: [....10] [ip4][..tcp] [.10.111.111.111][11111] -> [.......10.0.0.1][.1433] [MIDSTREAM]
detected: [....10] [ip4][..tcp] [.10.111.111.111][11111] -> [.......10.0.0.1][.1433] [MsSQL-TDS][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
new: [....11] [ip4][..tcp] [.10.111.111.111][22222] -> [.......10.0.0.1][.1433] [MIDSTREAM]
detected: [....11] [ip4][..tcp] [.10.111.111.111][22222] -> [.......10.0.0.1][.1433] [MsSQL-TDS][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
new: [....12] [ip4][..tcp] [.10.111.111.111][33333] -> [.......10.0.0.1][.1433] [MIDSTREAM]
detected: [....12] [ip4][..tcp] [.10.111.111.111][33333] -> [.......10.0.0.1][.1433] [MsSQL-TDS][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....10] [ip4][..tcp] [.10.111.111.111][11111] -> [.......10.0.0.1][.1433] [MsSQL-TDS][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..tcp] [.10.111.111.111][.3333] -> [.......10.0.0.1][.1433] [MsSQL-TDS][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....5] [ip4][..tcp] [.10.111.111.111][.5555] -> [.......10.0.0.1][.1433] [MsSQL-TDS][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....7] [ip4][..tcp] [.10.111.111.111][.7777] -> [.......10.0.0.1][.1433] [MsSQL-TDS][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....11] [ip4][..tcp] [.10.111.111.111][22222] -> [.......10.0.0.1][.1433] [MsSQL-TDS][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....9] [ip4][..tcp] [.10.111.111.111][.9999] -> [.......10.0.0.1][.1433] [MsSQL-TDS][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..tcp] [.10.111.111.111][.2222] -> [.......10.0.0.1][.1433] [MsSQL-TDS][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..tcp] [.10.111.111.111][.4444] -> [.......10.0.0.1][.1433] [MsSQL-TDS][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [.....6] [ip4][..tcp] [.10.111.111.111][.6666] -> [.......10.0.0.1][.1433] [MsSQL-TDS][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][..tcp] [.10.111.111.111][.6666] -> [.......10.0.0.1][.1433]
idle: [....12] [ip4][..tcp] [.10.111.111.111][33333] -> [.......10.0.0.1][.1433] [MsSQL-TDS][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....8] [ip4][..tcp] [.10.111.111.111][.8888] -> [.......10.0.0.1][.1433] [MsSQL-TDS][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/munin.pcap.out b/test/results/flow-info/default/munin.pcap.out
index 308512e28..308512e28 100644
--- a/test/results/flow-info/munin.pcap.out
+++ b/test/results/flow-info/default/munin.pcap.out
diff --git a/test/results/flow-info/mysql-8.pcap.out b/test/results/flow-info/default/mysql-8.pcap.out
index 022d4df72..ebb14f340 100644
--- a/test/results/flow-info/mysql-8.pcap.out
+++ b/test/results/flow-info/default/mysql-8.pcap.out
@@ -3,5 +3,10 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [..192.168.1.105][.8738] -> [...10.42.18.198][.3306]
detected: [.....1] [ip4][..tcp] [..192.168.1.105][.8738] -> [...10.42.18.198][.3306] [MySQL][Unknown][Database][Acceptable]
+ DAEMON-EVENT: [Processed: 4 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....2] [ip4][..tcp] [..192.168.20.80][47044] -> [.192.168.20.108][.3306]
+ detected: [.....2] [ip4][..tcp] [..192.168.20.80][47044] -> [.192.168.20.108][.3306] [MySQL][Unknown][Database][Acceptable]
idle: [.....1] [ip4][..tcp] [..192.168.1.105][.8738] -> [...10.42.18.198][.3306] [MySQL][Unknown][Database][Acceptable]
+ end: [.....2] [ip4][..tcp] [..192.168.20.80][47044] -> [.192.168.20.108][.3306] [MySQL][Unknown][Database][Acceptable]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/natpmp.pcap.out b/test/results/flow-info/default/natpmp.pcap.out
index c7d7b0f8d..f27ee616d 100644
--- a/test/results/flow-info/natpmp.pcap.out
+++ b/test/results/flow-info/default/natpmp.pcap.out
@@ -3,17 +3,21 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..192.168.1.128][36852] -> [..192.168.1.254][.5351]
detected: [.....1] [ip4][..udp] [..192.168.1.128][36852] -> [..192.168.1.254][.5351] [NAT-PMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
detection-update: [.....1] [ip4][..udp] [..192.168.1.128][36852] -> [..192.168.1.254][.5351] [NAT-PMP][Unknown][Network][Acceptable]
detection-update: [.....1] [ip4][..udp] [..192.168.1.128][36852] -> [..192.168.1.254][.5351] [NAT-PMP][Unknown][Network][Acceptable]
DAEMON-EVENT: [Processed: 4 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 2|updates: 0]
new: [.....2] [ip4][..udp] [..192.168.2.100][36845] -> [....192.168.2.1][.5351]
detected: [.....2] [ip4][..udp] [..192.168.2.100][36845] -> [....192.168.2.1][.5351] [NAT-PMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [..192.168.1.128][36852] -> [..192.168.1.254][.5351]
new: [.....3] [ip4][..udp] [..192.168.2.100][59817] -> [....192.168.2.1][.5351]
detected: [.....3] [ip4][..udp] [..192.168.2.100][59817] -> [....192.168.2.1][.5351] [NAT-PMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..udp] [..192.168.2.100][35763] -> [....192.168.2.1][.5351]
detected: [.....4] [ip4][..udp] [..192.168.2.100][35763] -> [....192.168.2.1][.5351] [NAT-PMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [..192.168.2.100][59817] -> [....192.168.2.1][.5351]
idle: [.....4] [ip4][..udp] [..192.168.2.100][35763] -> [....192.168.2.1][.5351]
idle: [.....2] [ip4][..udp] [..192.168.2.100][36845] -> [....192.168.2.1][.5351]
diff --git a/test/results/flow-info/nats.pcap.out b/test/results/flow-info/default/nats.pcap.out
index 0b63d305c..0b63d305c 100644
--- a/test/results/flow-info/nats.pcap.out
+++ b/test/results/flow-info/default/nats.pcap.out
diff --git a/test/results/flow-info/ndpi_match_string_subprotocol__error.pcapng.out b/test/results/flow-info/default/ndpi_match_string_subprotocol__error.pcapng.out
index 64c5d1622..21e90f0ca 100644
--- a/test/results/flow-info/ndpi_match_string_subprotocol__error.pcapng.out
+++ b/test/results/flow-info/default/ndpi_match_string_subprotocol__error.pcapng.out
@@ -3,9 +3,9 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [......10.3.9.19][40632] -> [..10.68.137.118][.8091]
detected: [.....1] [ip4][..tcp] [......10.3.9.19][40632] -> [..10.68.137.118][.8091] [HTTP.SOAP][Unknown][RPC][Acceptable][10.68.137.118]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
DAEMON-EVENT: [Processed: 7 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
end: [.....1] [ip4][..tcp] [......10.3.9.19][40632] -> [..10.68.137.118][.8091] [HTTP.SOAP][Unknown][RPC][Acceptable]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/nest_log_sink.pcap.out b/test/results/flow-info/default/nest_log_sink.pcap.out
index 7df071699..283eb16d9 100644
--- a/test/results/flow-info/nest_log_sink.pcap.out
+++ b/test/results/flow-info/default/nest_log_sink.pcap.out
@@ -20,6 +20,7 @@
DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 1|detection-updates: 0|updates: 0]
new: [.....2] [ip4][..udp] [.192.168.242.15][52849] -> [..192.168.242.1][...53]
detected: [.....2] [ip4][..udp] [.192.168.242.15][52849] -> [..192.168.242.1][...53] [DNS][Unknown][Network][Acceptable][weave-logsink.nest.com]
+ RISK: Unidirectional Traffic
detection-update: [.....2] [ip4][..udp] [.192.168.242.15][52849] -> [..192.168.242.1][...53] [DNS][Unknown][Network][Acceptable][weave-logsink.nest.com]
new: [.....3] [ip4][..tcp] [.192.168.242.15][63342] -> [.35.188.154.186][11095]
detected: [.....3] [ip4][..tcp] [.192.168.242.15][63342] -> [.35.188.154.186][11095] [NestLogSink][GoogleCloud][Cloud][Acceptable]
@@ -61,6 +62,7 @@
DAEMON-EVENT: [Flows][active: 1 / 5|skipped: 0|!detected: 0|guessed: 1|detection-updates: 1|updates: 2]
new: [.....6] [ip4][..udp] [.192.168.242.15][52849] -> [..192.168.242.1][...53]
detected: [.....6] [ip4][..udp] [.192.168.242.15][52849] -> [..192.168.242.1][...53] [DNS][Unknown][Network][Acceptable][weave-logsink.nest.com]
+ RISK: Unidirectional Traffic
detection-update: [.....6] [ip4][..udp] [.192.168.242.15][52849] -> [..192.168.242.1][...53] [DNS][Unknown][Network][Acceptable][weave-logsink.nest.com]
new: [.....7] [ip4][..tcp] [.192.168.242.15][63345] -> [.35.188.154.186][11095]
detected: [.....7] [ip4][..tcp] [.192.168.242.15][63345] -> [.35.188.154.186][11095] [NestLogSink][GoogleCloud][Cloud][Acceptable]
@@ -100,6 +102,7 @@
DAEMON-EVENT: [Flows][active: 1 / 9|skipped: 0|!detected: 0|guessed: 1|detection-updates: 2|updates: 4]
new: [....10] [ip4][..udp] [.192.168.242.15][52849] -> [..192.168.242.1][...53]
detected: [....10] [ip4][..udp] [.192.168.242.15][52849] -> [..192.168.242.1][...53] [DNS][Unknown][Network][Acceptable][weave-logsink.nest.com]
+ RISK: Unidirectional Traffic
detection-update: [....10] [ip4][..udp] [.192.168.242.15][52849] -> [..192.168.242.1][...53] [DNS][Unknown][Network][Acceptable][weave-logsink.nest.com]
new: [....11] [ip4][..tcp] [.192.168.242.15][63348] -> [.35.188.154.186][11095]
detected: [....11] [ip4][..tcp] [.192.168.242.15][63348] -> [.35.188.154.186][11095] [NestLogSink][GoogleCloud][Cloud][Acceptable]
@@ -137,6 +140,7 @@
end: [....12] [ip4][..tcp] [.192.168.242.15][63349] -> [..35.174.82.237][11095] [NestLogSink][AmazonAWS][Cloud][Acceptable]
new: [....14] [ip4][..udp] [.192.168.242.15][52849] -> [..192.168.242.1][...53]
detected: [....14] [ip4][..udp] [.192.168.242.15][52849] -> [..192.168.242.1][...53] [DNS][Unknown][Network][Acceptable][weave-logsink.nest.com]
+ RISK: Unidirectional Traffic
detection-update: [....14] [ip4][..udp] [.192.168.242.15][52849] -> [..192.168.242.1][...53] [DNS][Unknown][Network][Acceptable][weave-logsink.nest.com]
new: [....15] [ip4][..tcp] [.192.168.242.15][63351] -> [.35.188.154.186][11095]
detected: [....15] [ip4][..tcp] [.192.168.242.15][63351] -> [.35.188.154.186][11095] [NestLogSink][GoogleCloud][Cloud][Acceptable]
diff --git a/test/results/flow-info/netbios.pcap.out b/test/results/flow-info/default/netbios.pcap.out
index fb107369b..1f42ab2e7 100644
--- a/test/results/flow-info/netbios.pcap.out
+++ b/test/results/flow-info/default/netbios.pcap.out
@@ -21,23 +21,27 @@
[ENTROPIES...: 4.1,4.1,4.2,4.1,4.1,4.1,4.1,4.1,4.2,4.2,4.2,4.2,4.2,4.2,4.2,4.1,4.1,4.2,4.1,4.2,4.1,4.2,4.1,4.2,4.1,4.2,4.2,4.2,4.1,4.2,4.2,4.2]
new: [.....5] [ip4][..udp] [......10.0.1.87][57836] -> [......10.0.4.24][..137]
detected: [.....5] [ip4][..udp] [......10.0.1.87][57836] -> [......10.0.4.24][..137] [NetBIOS][Unknown][System][Acceptable][*]
+ RISK: Unidirectional Traffic
new: [.....6] [ip4][..udp] [.....10.0.4.101][..137] -> [.....10.0.5.255][..137]
detected: [.....6] [ip4][..udp] [.....10.0.4.101][..137] -> [.....10.0.5.255][..137] [NetBIOS][Unknown][System][Acceptable][muli]
new: [.....7] [ip4][..udp] [.....10.0.4.165][..137] -> [.....10.0.5.255][..137]
detected: [.....7] [ip4][..udp] [.....10.0.4.165][..137] -> [.....10.0.5.255][..137] [NetBIOS][Unknown][System][Acceptable][gunnar]
new: [.....8] [ip4][..udp] [......10.0.4.24][..137] -> [.....10.0.4.165][..137]
detected: [.....8] [ip4][..udp] [......10.0.4.24][..137] -> [.....10.0.4.165][..137] [NetBIOS][Unknown][System][Acceptable][gunnar]
+ RISK: Unidirectional Traffic
new: [.....9] [ip4][..udp] [......10.0.4.66][..137] -> [.....10.0.5.255][..137]
detected: [.....9] [ip4][..udp] [......10.0.4.66][..137] -> [.....10.0.5.255][..137] [NetBIOS][Unknown][System][Acceptable][guru]
new: [....10] [ip4][..udp] [......10.0.4.24][..137] -> [.....10.0.5.255][..137]
detected: [....10] [ip4][..udp] [......10.0.4.24][..137] -> [.....10.0.5.255][..137] [NetBIOS][Unknown][System][Acceptable][guru]
new: [....11] [ip4][..udp] [.......10.0.5.1][..137] -> [......10.0.4.24][..137]
detected: [....11] [ip4][..udp] [.......10.0.5.1][..137] -> [......10.0.4.24][..137] [NetBIOS][Unknown][System][Acceptable][guru]
+ RISK: Unidirectional Traffic
new: [....12] [ip4][..udp] [......10.0.5.93][..138] -> [.....10.0.5.255][..138]
detected: [....12] [ip4][..udp] [......10.0.5.93][..138] -> [.....10.0.5.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous][bowie]
RISK: Unsafe Protocol
new: [....13] [ip4][..udp] [.....10.0.5.233][..137] -> [......10.0.4.24][..137]
detected: [....13] [ip4][..udp] [.....10.0.5.233][..137] -> [......10.0.4.24][..137] [NetBIOS][Unknown][System][Acceptable][*]
+ RISK: Unidirectional Traffic
new: [....14] [ip4][..udp] [......10.0.4.14][..137] -> [.....10.0.5.255][..137]
detected: [....14] [ip4][..udp] [......10.0.4.14][..137] -> [.....10.0.5.255][..137] [NetBIOS][Unknown][System][Acceptable][guru]
analyse: [.....2] [ip4][..udp] [.....10.0.5.233][..137] -> [.....10.0.5.255][..137] [NetBIOS][Unknown][System][Acceptable]
@@ -52,16 +56,20 @@
[ENTROPIES...: 3.9,3.9,3.9,3.9,3.8,3.9,3.9,3.9,3.9,3.9,3.9,3.9,3.9,3.9,3.9,3.9,3.9,3.9,3.9,3.9,3.9,3.9,3.9,3.9,3.9,3.9,3.9,3.9,3.9,3.9,3.8,3.9]
new: [....15] [ip4][..udp] [......10.0.1.87][57921] -> [......10.0.4.24][..137]
detected: [....15] [ip4][..udp] [......10.0.1.87][57921] -> [......10.0.4.24][..137] [NetBIOS][Unknown][System][Acceptable][*]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [.....10.0.4.131][..137] -> [.....10.0.5.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [.....2] [ip4][..udp] [.....10.0.5.233][..137] -> [.....10.0.5.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [.....3] [ip4][..udp] [.......10.0.5.9][..138] -> [.....10.0.5.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
idle: [.....8] [ip4][..udp] [......10.0.4.24][..137] -> [.....10.0.4.165][..137] [NetBIOS][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....7] [ip4][..udp] [.....10.0.4.165][..137] -> [.....10.0.5.255][..137] [NetBIOS][Unknown][System][Acceptable]
idle: [.....2] [ip4][..udp] [.....10.0.5.233][..137] -> [.....10.0.5.255][..137] [NetBIOS][Unknown][System][Acceptable]
idle: [....11] [ip4][..udp] [.......10.0.5.1][..137] -> [......10.0.4.24][..137] [NetBIOS][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....14] [ip4][..udp] [......10.0.4.14][..137] -> [.....10.0.5.255][..137] [NetBIOS][Unknown][System][Acceptable]
idle: [....13] [ip4][..udp] [.....10.0.5.233][..137] -> [......10.0.4.24][..137] [NetBIOS][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....10] [ip4][..udp] [......10.0.4.24][..137] -> [.....10.0.5.255][..137] [NetBIOS][Unknown][System][Acceptable]
idle: [.....9] [ip4][..udp] [......10.0.4.66][..137] -> [.....10.0.5.255][..137] [NetBIOS][Unknown][System][Acceptable]
idle: [.....6] [ip4][..udp] [.....10.0.4.101][..137] -> [.....10.0.5.255][..137] [NetBIOS][Unknown][System][Acceptable]
@@ -71,7 +79,9 @@
idle: [.....3] [ip4][..udp] [.......10.0.5.9][..138] -> [.....10.0.5.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
idle: [.....5] [ip4][..udp] [......10.0.1.87][57836] -> [......10.0.4.24][..137] [NetBIOS][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....15] [ip4][..udp] [......10.0.1.87][57921] -> [......10.0.4.24][..137] [NetBIOS][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [.....4] [ip4][..tcp] [......10.0.4.24][..139] -> [.....10.0.4.131][.1398] [NetBIOS][Unknown][System][Acceptable][]
idle: [.....4] [ip4][..tcp] [......10.0.4.24][..139] -> [.....10.0.4.131][.1398]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/netbios_wildcard_dns_query.pcap.out b/test/results/flow-info/default/netbios_wildcard_dns_query.pcap.out
index 22fa7100c..49b2ef239 100644
--- a/test/results/flow-info/netbios_wildcard_dns_query.pcap.out
+++ b/test/results/flow-info/default/netbios_wildcard_dns_query.pcap.out
@@ -3,5 +3,6 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [....10.1.67.250][41335] -> [.....10.1.66.20][...53]
detected: [.....1] [ip4][..udp] [....10.1.67.250][41335] -> [.....10.1.66.20][...53] [DNS][Unknown][Network][Acceptable][ckaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [....10.1.67.250][41335] -> [.....10.1.66.20][...53]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/netflix.pcap.out b/test/results/flow-info/default/netflix.pcap.out
index f4e81f69a..07c064aa2 100644
--- a/test/results/flow-info/netflix.pcap.out
+++ b/test/results/flow-info/default/netflix.pcap.out
@@ -4,10 +4,13 @@
new: [.....1] [ip4][..tcp] [....192.168.1.7][52929] -> [.....52.24.87.6][..443] [MIDSTREAM]
new: [.....2] [ip4][..udp] [....192.168.1.7][51543] -> [....192.168.1.1][...53]
detected: [.....2] [ip4][..udp] [....192.168.1.7][51543] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][ios.nccp.netflix.com]
+ RISK: Unidirectional Traffic
detection-update: [.....2] [ip4][..udp] [....192.168.1.7][51543] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][ios.nccp.netflix.com]
+ RISK: Unidirectional Traffic
detection-update: [.....2] [ip4][..udp] [....192.168.1.7][51543] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][ios.nccp.netflix.com]
new: [.....3] [ip4][..udp] [....192.168.1.7][52116] -> [....192.168.1.1][...53]
detected: [.....3] [ip4][..udp] [....192.168.1.7][52116] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][ichnaea.us-west-2.prodaa.netflix.com]
+ RISK: Unidirectional Traffic
detection-update: [.....3] [ip4][..udp] [....192.168.1.7][52116] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][ichnaea.us-west-2.prodaa.netflix.com]
new: [.....4] [ip4][..tcp] [....192.168.1.7][53105] -> [..54.69.204.241][..443]
new: [.....5] [ip4][..tcp] [....192.168.1.7][53114] -> [...54.191.17.51][..443]
@@ -43,17 +46,6 @@
[IATS(ms)....: 46.0,48.6,0.6,54.0,1.6,1.0,54.9,11.1,13.5,9.4,0.3,0.4,58.7,4.6,50.8,1.9,0.2,59.5,0.6,62.1,8.5,4.7,310.9,0.6,363.7,5.8,0.1,0.1,58.1,0.2,0.1]
[PKTLENS.....: 64,60,52,260,52,1500,1500,52,215,52,127,58,97,52,103,52,408,362,52,992,52,112,52,408,361,52,992,107,86,52,52,52]
[ENTROPIES...: 4.6,5.3,5.1,5.7,5.2,7.3,7.3,5.1,6.9,5.2,6.4,5.1,6.1,5.2,5.9,5.2,7.5,7.4,5.2,7.8,5.1,6.1,5.1,7.4,7.4,5.2,7.8,6.1,5.8,5.2,5.2,5.1]
- analyse: [.....7] [ip4][..tcp] [....192.168.1.7][53116] -> [...52.32.196.36][..443]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.200| 0.035| 0.048| 2263.883| 3.800]
- [PKTLEN......: 52.000| 1500.000| 430.800| 557.400| 310647.700| 4.000]
- [BINS(c->s)..: 10,1,1,0,0,0,0,1,0,0,0,0,0,0,0,0,1,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,1,0,0]
- [BINS(s->c)..: 5,2,0,0,0,0,2,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,4,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,1,0,1,0,0,0,0,1,1,0,0,0,1,1,1,1,0,1,0,1,0,1,0,0,0,1]
- [IATS(ms)....: 45.5,51.8,0.3,66.4,0.5,13.8,75.5,25.6,26.5,15.6,0.3,0.2,61.0,0.4,44.1,5.1,0.2,57.7,67.8,0.2,2.7,131.0,13.8,8.4,10.0,8.1,2.4,2.3,141.1,1.2,199.9]
- [PKTLENS.....: 64,60,52,284,52,1500,1500,52,245,52,127,58,97,52,103,52,1500,728,52,1500,415,1500,52,1116,52,261,52,101,52,1436,567,52]
- [ENTROPIES...: 4.6,5.3,5.2,5.9,5.2,7.2,7.3,5.2,7.1,5.1,6.3,5.1,6.0,5.1,6.0,5.2,7.9,7.7,5.2,7.9,7.5,7.9,5.2,7.8,5.1,7.1,5.1,6.1,5.2,7.9,7.6,5.2]
- detection-update: [.....7] [ip4][..tcp] [....192.168.1.7][53116] -> [...52.32.196.36][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][api-global.netflix.com]
new: [.....9] [ip4][..tcp] [....192.168.1.7][53118] -> [..54.69.204.241][..443]
detected: [.....9] [ip4][..tcp] [....192.168.1.7][53118] -> [..54.69.204.241][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ichnaea.netflix.com]
detection-update: [.....9] [ip4][..tcp] [....192.168.1.7][53118] -> [..54.69.204.241][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ichnaea.netflix.com]
@@ -68,6 +60,7 @@
detected: [....12] [ip4][....2] [....192.168.1.7] -> [239.255.255.250] [IGMP][Unknown][Network][Acceptable]
new: [....13] [ip4][..udp] [....192.168.1.7][51949] -> [....192.168.1.1][...53]
detected: [....13] [ip4][..udp] [....192.168.1.7][51949] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][api-global.latency.prodaa.netflix.com]
+ RISK: Unidirectional Traffic
detection-update: [....13] [ip4][..udp] [....192.168.1.7][51949] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][api-global.latency.prodaa.netflix.com]
new: [....14] [ip4][..tcp] [....192.168.1.7][53132] -> [...52.89.39.139][..443]
new: [....15] [ip4][..tcp] [....192.168.1.7][53133] -> [...52.89.39.139][..443]
@@ -102,6 +95,7 @@
RISK: TLS (probably) Not Carrying HTTPS
new: [....17] [ip4][..udp] [....192.168.1.7][57719] -> [....192.168.1.1][...53]
detected: [....17] [ip4][..udp] [....192.168.1.7][57719] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][sha2.san.akam.nflximg.net]
+ RISK: Unidirectional Traffic
detection-update: [....17] [ip4][..udp] [....192.168.1.7][57719] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][sha2.san.akam.nflximg.net]
new: [....18] [ip4][..tcp] [....192.168.1.7][53141] -> [..104.86.97.179][..443]
detected: [....18] [ip4][..tcp] [....192.168.1.7][53141] -> [..104.86.97.179][..443] [TLS.NetFlix][Unknown][Video][Fun][art-s.nflximg.net]
@@ -121,6 +115,7 @@
RISK: TLS (probably) Not Carrying HTTPS
new: [....19] [ip4][..udp] [....192.168.1.7][59180] -> [....192.168.1.1][...53]
detected: [....19] [ip4][..udp] [....192.168.1.7][59180] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][artwork.akam.nflximg.net]
+ RISK: Unidirectional Traffic
detection-update: [....19] [ip4][..udp] [....192.168.1.7][59180] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][artwork.akam.nflximg.net]
new: [....20] [ip4][..tcp] [....192.168.1.7][53148] -> [..184.25.204.25][...80]
new: [....21] [ip4][..tcp] [....192.168.1.7][53149] -> [..184.25.204.25][...80]
@@ -128,18 +123,9 @@
detected: [....21] [ip4][..tcp] [....192.168.1.7][53149] -> [..184.25.204.25][...80] [HTTP.NetFlix][Unknown][Video][Fun][art-2.nflximg.net]
new: [....22] [ip4][..tcp] [....192.168.1.7][53150] -> [..184.25.204.25][...80]
detected: [....22] [ip4][..tcp] [....192.168.1.7][53150] -> [..184.25.204.25][...80] [HTTP.NetFlix][Unknown][Video][Fun][art-2.nflximg.net]
- analyse: [....21] [ip4][..tcp] [....192.168.1.7][53149] -> [..184.25.204.25][...80] [HTTP.NetFlix][Unknown][Video][Fun]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.007| 1.300| 0.097| 0.230| 52797.755| 3.400]
- [PKTLEN......: 52.000| 1500.000| 1101.900| 637.700| 406609.600| 4.600]
- [BINS(c->s)..: 6,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,23,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,1,1,0,0,1,1,0,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,0]
- [IATS(ms)....: 22.7,29.1,36.8,70.3,13.3,32.4,26.0,101.8,6.9,28.0,25.2,45.0,56.4,27.1,27.2,53.8,54.3,26.1,52.1,80.7,53.8,398.5,54.3,39.9,109.6,40.5,26.1,51.5,108.1,13.3,1300.1]
- [PKTLENS.....: 64,60,52,297,52,1500,1500,1500,52,52,1500,1500,52,1500,1500,1500,1500,1500,1500,1500,1500,1500,1500,1500,1500,1500,1500,1500,1500,1500,1500,80]
- [ENTROPIES...: 4.5,5.3,5.1,5.9,5.3,7.3,7.7,7.7,5.2,5.0,7.8,7.8,5.2,7.8,7.8,7.8,7.7,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.9,7.8,7.8,7.8,7.8,7.8,5.4]
new: [....23] [ip4][..udp] [....192.168.1.7][58102] -> [....192.168.1.1][...53]
detected: [....23] [ip4][..udp] [....192.168.1.7][58102] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][appboot.netflix.com]
+ RISK: Unidirectional Traffic
detection-update: [....23] [ip4][..udp] [....192.168.1.7][58102] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][appboot.netflix.com]
new: [....24] [ip4][..tcp] [....192.168.1.7][53151] -> [.54.201.191.132][...80]
detected: [....24] [ip4][..tcp] [....192.168.1.7][53151] -> [.54.201.191.132][...80] [HTTP.NetFlix][AmazonAWS][Video][Fun][appboot.netflix.com]
@@ -155,11 +141,12 @@
[ENTROPIES...: 4.5,5.3,5.2,5.7,6.0,6.1,5.3,5.3,5.3,6.0,5.7,5.1,6.1,5.2,5.9,5.0,5.8,5.8,5.2,5.8,5.2,5.8,5.8,5.2,5.8,5.8,5.8,5.8,5.8,5.8,5.8,5.2]
new: [....25] [ip4][..tcp] [....192.168.1.7][53152] -> [...52.89.39.139][...80]
detected: [....25] [ip4][..tcp] [....192.168.1.7][53152] -> [...52.89.39.139][...80] [HTTP.NetFlix][AmazonAWS][Video][Fun][api-global.netflix.com]
- detection-update: [....25] [ip4][..tcp] [....192.168.1.7][53152] -> [...52.89.39.139][...80] [HTTP.NetFlix][AmazonAWS][Video][Fun][api-global.netflix.com]
new: [....26] [ip4][..udp] [....192.168.1.7][51728] -> [....192.168.1.1][...53]
detected: [....26] [ip4][..udp] [....192.168.1.7][51728] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][a803.dscg.akamai.net]
+ RISK: Unidirectional Traffic
new: [....27] [ip4][..udp] [....192.168.1.7][52347] -> [....192.168.1.1][...53]
detected: [....27] [ip4][..udp] [....192.168.1.7][52347] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][ios.nccp.netflix.com]
+ RISK: Unidirectional Traffic
analyse: [....20] [ip4][..tcp] [....192.168.1.7][53148] -> [..184.25.204.25][...80] [HTTP.NetFlix][Unknown][Video][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.001| 6.031| 0.428| 1.232| 1516791.529| 2.300]
@@ -178,15 +165,17 @@
detected: [....29] [ip4][..tcp] [....192.168.1.7][53162] -> [...54.191.17.51][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ios.nccp.netflix.com]
RISK: TLS (probably) Not Carrying HTTPS
detection-update: [....28] [ip4][..tcp] [....192.168.1.7][53153] -> [..184.25.204.24][...80] [HTTP.NetFlix][Unknown][Video][Fun][tp.akam.nflximg.com]
- RISK: HTTP Suspicious Content
+ RISK: HTTP Susp Content
detection-update: [....29] [ip4][..tcp] [....192.168.1.7][53162] -> [...54.191.17.51][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ios.nccp.netflix.com]
RISK: TLS (probably) Not Carrying HTTPS
detection-update: [....29] [ip4][..tcp] [....192.168.1.7][53162] -> [...54.191.17.51][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ios.nccp.netflix.com]
RISK: TLS (probably) Not Carrying HTTPS
new: [....30] [ip4][..tcp] [....192.168.1.7][53163] -> [..23.246.11.145][...80]
detected: [....30] [ip4][..tcp] [....192.168.1.7][53163] -> [..23.246.11.145][...80] [HTTP][NetFlix][Web][Acceptable][23.246.11.145]
- RISK: HTTP Numeric IP Address
- analyse: [....30] [ip4][..tcp] [....192.168.1.7][53163] -> [..23.246.11.145][...80] [HTTP][NetFlix][Web][Acceptable]
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
+ detection-update: [....30] [ip4][..tcp] [....192.168.1.7][53163] -> [..23.246.11.145][...80] [HTTP][NetFlix][Download][Acceptable][23.246.11.145]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
+ analyse: [....30] [ip4][..tcp] [....192.168.1.7][53163] -> [..23.246.11.145][...80] [HTTP][NetFlix][Download][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.004| 0.651| 0.082| 0.154| 23582.077| 3.600]
[PKTLEN......: 52.000| 1500.000| 940.800| 683.500| 467159.100| 4.500]
@@ -198,21 +187,15 @@
[ENTROPIES...: 4.6,5.3,5.1,6.4,5.9,3.6,5.2,2.5,2.5,5.1,2.5,5.1,2.5,2.6,2.6,3.8,3.8,3.8,5.3,3.9,3.5,3.5,3.5,5.1,5.2,3.5,3.5,5.2,3.5,5.0,3.6,3.6]
new: [....31] [ip4][..tcp] [....192.168.1.7][53164] -> [..23.246.10.139][...80]
detected: [....31] [ip4][..tcp] [....192.168.1.7][53164] -> [..23.246.10.139][...80] [HTTP][NetFlix][Web][Acceptable][23.246.10.139]
- RISK: HTTP Numeric IP Address
- analyse: [....31] [ip4][..tcp] [....192.168.1.7][53164] -> [..23.246.10.139][...80] [HTTP][NetFlix][Web][Acceptable]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.001| 0.639| 0.088| 0.152| 23073.200| 3.700]
- [PKTLEN......: 52.000| 1500.000| 851.900| 697.400| 486427.500| 4.400]
- [BINS(c->s)..: 12,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,17,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,1,0,1,0,1,0,1,0,1,1,1,1,1,1,1,0,1,0,1,0,1,0,0,1,0,1]
- [IATS(ms)....: 18.8,21.4,5.1,35.7,1.0,5.4,35.5,13.2,14.0,20.3,20.4,13.2,116.2,170.2,28.1,56.6,51.6,31.7,27.6,12.8,327.6,131.4,638.9,580.0,19.9,15.0,30.0,13.6,42.3,118.7,118.0]
- [PKTLENS.....: 64,60,52,408,568,1500,1500,52,1500,52,1500,52,1500,52,1500,1500,1500,1500,1500,1500,1500,80,1500,80,1500,72,1500,64,52,1500,52,1500]
- [ENTROPIES...: 4.5,5.2,5.0,6.4,5.8,3.6,2.5,5.1,2.6,5.0,2.5,5.0,2.6,5.0,2.6,2.6,3.3,3.8,3.8,3.8,3.8,5.3,3.9,5.3,3.5,5.3,3.5,5.1,4.9,3.5,4.9,3.6]
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
+ detection-update: [....31] [ip4][..tcp] [....192.168.1.7][53164] -> [..23.246.10.139][...80] [HTTP][NetFlix][Download][Acceptable][23.246.10.139]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
new: [....32] [ip4][..tcp] [....192.168.1.7][53171] -> [...23.246.3.140][...80]
detected: [....32] [ip4][..tcp] [....192.168.1.7][53171] -> [...23.246.3.140][...80] [HTTP][NetFlix][Web][Acceptable][23.246.3.140]
- RISK: HTTP Numeric IP Address
- analyse: [....32] [ip4][..tcp] [....192.168.1.7][53171] -> [...23.246.3.140][...80] [HTTP][NetFlix][Web][Acceptable]
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
+ detection-update: [....32] [ip4][..tcp] [....192.168.1.7][53171] -> [...23.246.3.140][...80] [HTTP][NetFlix][Download][Acceptable][23.246.3.140]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
+ analyse: [....32] [ip4][..tcp] [....192.168.1.7][53171] -> [...23.246.3.140][...80] [HTTP][NetFlix][Download][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.002| 0.044| 0.018| 0.010| 100.655| 4.700]
[PKTLEN......: 52.000| 1500.000| 984.900| 672.700| 452466.100| 4.500]
@@ -227,35 +210,57 @@
new: [....35] [ip4][..tcp] [....192.168.1.7][53174] -> [..23.246.11.141][...80]
new: [....36] [ip4][..tcp] [....192.168.1.7][53175] -> [..23.246.11.141][...80]
detected: [....33] [ip4][..tcp] [....192.168.1.7][53172] -> [..23.246.11.133][...80] [HTTP][NetFlix][Web][Acceptable][23.246.11.133]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
new: [....37] [ip4][..tcp] [....192.168.1.7][53176] -> [..23.246.11.141][...80]
new: [....38] [ip4][..tcp] [....192.168.1.7][53177] -> [..23.246.11.141][...80]
new: [....39] [ip4][..tcp] [....192.168.1.7][53178] -> [..23.246.11.141][...80]
new: [....40] [ip4][..tcp] [....192.168.1.7][53179] -> [..23.246.11.141][...80]
new: [....41] [ip4][..tcp] [....192.168.1.7][53180] -> [..23.246.11.141][...80]
detected: [....35] [ip4][..tcp] [....192.168.1.7][53174] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable][23.246.11.141]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
detected: [....34] [ip4][..tcp] [....192.168.1.7][53173] -> [..23.246.11.133][...80] [HTTP][NetFlix][Web][Acceptable][23.246.11.133]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
new: [....42] [ip4][..tcp] [....192.168.1.7][53181] -> [..23.246.11.141][...80]
new: [....43] [ip4][..tcp] [....192.168.1.7][53182] -> [..23.246.11.141][...80]
detected: [....36] [ip4][..tcp] [....192.168.1.7][53175] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable][23.246.11.141]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
+ detection-update: [....33] [ip4][..tcp] [....192.168.1.7][53172] -> [..23.246.11.133][...80] [HTTP][NetFlix][Download][Acceptable][23.246.11.133]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
detected: [....40] [ip4][..tcp] [....192.168.1.7][53179] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable][23.246.11.141]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
detected: [....39] [ip4][..tcp] [....192.168.1.7][53178] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable][23.246.11.141]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
detected: [....37] [ip4][..tcp] [....192.168.1.7][53176] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable][23.246.11.141]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
detected: [....38] [ip4][..tcp] [....192.168.1.7][53177] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable][23.246.11.141]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
+ detection-update: [....35] [ip4][..tcp] [....192.168.1.7][53174] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable][23.246.11.141]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
+ detection-update: [....34] [ip4][..tcp] [....192.168.1.7][53173] -> [..23.246.11.133][...80] [HTTP][NetFlix][Download][Acceptable][23.246.11.133]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
detected: [....41] [ip4][..tcp] [....192.168.1.7][53180] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable][23.246.11.141]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
+ detection-update: [....36] [ip4][..tcp] [....192.168.1.7][53175] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable][23.246.11.141]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
detected: [....42] [ip4][..tcp] [....192.168.1.7][53181] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable][23.246.11.141]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
detected: [....43] [ip4][..tcp] [....192.168.1.7][53182] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable][23.246.11.141]
- RISK: HTTP Numeric IP Address
- analyse: [....41] [ip4][..tcp] [....192.168.1.7][53180] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable]
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
+ detection-update: [....40] [ip4][..tcp] [....192.168.1.7][53179] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable][23.246.11.141]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
+ detection-update: [....37] [ip4][..tcp] [....192.168.1.7][53176] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable][23.246.11.141]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
+ detection-update: [....39] [ip4][..tcp] [....192.168.1.7][53178] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable][23.246.11.141]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
+ detection-update: [....38] [ip4][..tcp] [....192.168.1.7][53177] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable][23.246.11.141]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
+ detection-update: [....41] [ip4][..tcp] [....192.168.1.7][53180] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable][23.246.11.141]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
+ detection-update: [....42] [ip4][..tcp] [....192.168.1.7][53181] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable][23.246.11.141]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
+ detection-update: [....43] [ip4][..tcp] [....192.168.1.7][53182] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable][23.246.11.141]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
+ analyse: [....41] [ip4][..tcp] [....192.168.1.7][53180] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 2.098| 0.201| 0.403| 162731.114| 3.600]
[PKTLEN......: 52.000| 1500.000| 493.700| 638.100| 407212.300| 3.900]
@@ -265,7 +270,7 @@
[IATS(ms)....: 61.8,72.3,0.5,134.9,0.4,125.9,1162.3,73.6,0.9,212.9,11.5,409.2,101.1,1.9,70.9,2097.5,79.5,52.1,129.8,120.6,42.9,59.9,67.1,69.4,174.4,284.0,29.4,65.0,252.7,150.5,125.9]
[PKTLENS.....: 64,60,52,412,570,1500,52,80,80,80,80,80,80,64,64,52,1500,52,1500,52,1500,1500,52,1500,52,1500,64,52,52,1500,52,1500]
[ENTROPIES...: 4.6,5.3,5.0,6.3,5.8,4.4,5.1,5.2,5.2,5.3,5.3,5.4,5.3,5.2,5.2,5.2,4.8,5.2,4.8,5.1,4.8,4.8,5.2,4.8,5.0,4.8,5.2,5.2,5.2,4.6,5.0,4.6]
- analyse: [....38] [ip4][..tcp] [....192.168.1.7][53177] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable]
+ analyse: [....38] [ip4][..tcp] [....192.168.1.7][53177] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 1.047| 0.281| 0.301| 90549.584| 4.200]
[PKTLEN......: 52.000| 1500.000| 490.100| 638.900| 408170.900| 3.900]
@@ -275,7 +280,7 @@
[IATS(ms)....: 43.7,45.8,23.6,124.8,4.9,111.6,635.9,176.1,0.2,0.1,41.6,37.4,940.2,0.9,45.4,434.5,483.8,1047.0,74.7,202.4,418.9,472.2,955.3,169.9,525.3,694.3,167.2,252.3,98.0,326.3,148.9]
[PKTLENS.....: 64,60,52,412,571,1500,52,72,72,64,64,64,52,88,1476,52,52,52,1500,1500,52,52,52,1500,52,52,1500,52,1500,1500,52,1500]
[ENTROPIES...: 4.5,5.3,5.0,6.4,5.8,4.4,5.1,5.3,5.2,5.1,5.2,5.1,5.1,4.9,4.3,5.2,5.2,5.1,4.9,4.9,5.0,5.1,5.1,4.9,5.0,5.0,4.8,5.0,4.6,4.7,5.1,4.8]
- analyse: [....36] [ip4][..tcp] [....192.168.1.7][53175] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable]
+ analyse: [....36] [ip4][..tcp] [....192.168.1.7][53175] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.001| 1.636| 0.284| 0.363| 131453.321| 4.000]
[PKTLEN......: 52.000| 1500.000| 536.600| 657.900| 432827.800| 3.900]
@@ -285,7 +290,7 @@
[IATS(ms)....: 16.1,19.4,23.6,88.6,4.0,82.2,1105.3,26.9,21.8,19.6,0.6,13.1,381.6,1636.2,66.4,119.0,421.4,408.1,882.7,90.2,143.4,490.4,519.4,92.3,121.0,487.1,597.7,217.6,227.5,270.0,221.9]
[PKTLENS.....: 64,60,52,409,570,1500,52,72,72,72,64,64,64,64,1500,1500,52,64,52,1500,1500,52,52,1500,1500,52,52,1500,52,1500,64,1500]
[ENTROPIES...: 4.5,5.3,5.1,6.4,5.8,4.5,5.1,5.3,5.4,5.4,5.2,5.2,5.2,5.2,3.8,4.4,5.2,5.1,5.2,4.4,4.4,5.2,5.2,4.4,4.4,5.2,5.2,4.3,5.0,4.4,5.2,4.6]
- analyse: [....34] [ip4][..tcp] [....192.168.1.7][53173] -> [..23.246.11.133][...80] [HTTP][NetFlix][Web][Acceptable]
+ analyse: [....34] [ip4][..tcp] [....192.168.1.7][53173] -> [..23.246.11.133][...80] [HTTP][NetFlix][Download][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.005| 1.397| 0.291| 0.314| 98805.531| 4.200]
[PKTLEN......: 52.000| 1500.000| 716.200| 699.000| 488561.800| 4.200]
@@ -295,7 +300,7 @@
[IATS(ms)....: 23.9,25.1,18.2,72.5,4.9,71.3,152.2,249.5,985.6,26.7,1397.2,519.1,299.5,499.9,482.3,40.5,55.6,206.8,137.1,537.5,535.2,174.3,571.8,776.0,198.8,230.5,89.9,284.0,128.1,116.3,110.5]
[PKTLENS.....: 64,60,52,409,570,1500,52,1500,52,80,80,1500,72,1500,64,1500,1500,1500,52,1500,52,1500,52,52,1500,52,1500,1500,52,1500,52,1500]
[ENTROPIES...: 4.6,5.3,5.0,6.4,5.8,4.5,5.0,4.2,5.0,5.3,5.3,4.4,5.3,4.4,5.2,4.3,4.5,4.3,5.1,4.3,5.1,4.3,5.1,5.2,4.5,5.0,4.7,4.7,5.1,4.7,5.2,4.7]
- analyse: [....43] [ip4][..tcp] [....192.168.1.7][53182] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable]
+ analyse: [....43] [ip4][..tcp] [....192.168.1.7][53182] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 2.716| 0.300| 0.539| 290723.889| 3.600]
[PKTLEN......: 52.000| 1500.000| 492.600| 638.800| 408052.900| 3.900]
@@ -305,7 +310,7 @@
[IATS(ms)....: 61.7,63.1,19.4,172.7,0.3,153.9,1162.5,94.2,1.4,12.3,104.3,65.9,674.7,41.5,40.0,488.9,2716.4,44.9,75.7,28.7,32.8,29.5,133.6,256.1,743.0,71.3,1131.5,569.7,135.4,73.6,104.1]
[PKTLENS.....: 64,60,52,410,570,1500,52,80,72,72,72,72,72,72,64,52,52,1500,1500,52,1500,52,1500,52,1500,64,52,1500,52,1500,1500,52]
[ENTROPIES...: 4.6,5.4,5.1,6.4,5.8,4.4,5.2,5.3,5.4,5.3,5.4,5.3,5.3,5.3,5.3,5.2,5.0,4.6,4.5,5.1,4.6,5.0,4.5,5.0,4.6,5.2,5.1,4.3,5.0,4.4,4.5,5.1]
- analyse: [....35] [ip4][..tcp] [....192.168.1.7][53174] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable]
+ analyse: [....35] [ip4][..tcp] [....192.168.1.7][53174] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 3.094| 0.303| 0.556| 309287.715| 3.700]
[PKTLEN......: 52.000| 1500.000| 447.800| 616.500| 380048.700| 3.800]
@@ -315,7 +320,7 @@
[IATS(ms)....: 20.0,22.2,5.3,69.1,0.1,72.2,626.0,607.0,26.6,520.3,51.5,55.5,593.2,41.7,80.3,418.0,3094.3,65.6,425.7,470.0,40.8,85.0,52.1,54.3,117.7,383.1,387.3,709.4,53.7,73.8,158.6]
[PKTLENS.....: 64,60,52,410,570,1500,52,72,72,72,72,64,64,72,64,52,52,1500,64,64,1500,1500,52,1500,52,1500,52,64,1500,64,1500,52]
[ENTROPIES...: 4.5,5.3,5.1,6.4,5.8,4.4,5.1,5.3,5.4,5.4,5.2,5.3,5.2,5.3,5.3,5.3,5.1,4.7,5.2,5.2,4.7,4.7,5.1,4.7,5.1,4.6,5.2,5.3,4.4,5.3,4.5,5.2]
- analyse: [....42] [ip4][..tcp] [....192.168.1.7][53181] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable]
+ analyse: [....42] [ip4][..tcp] [....192.168.1.7][53181] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 2.609| 0.294| 0.529| 280024.056| 3.500]
[PKTLEN......: 52.000| 1500.000| 449.200| 615.600| 378913.200| 3.800]
@@ -325,7 +330,7 @@
[IATS(ms)....: 61.9,63.0,9.0,155.1,0.3,150.1,1152.4,92.1,0.5,591.4,113.7,141.7,52.3,0.5,39.9,381.1,2608.5,28.2,68.2,27.2,29.6,26.6,56.5,81.7,44.8,43.7,497.4,496.6,1208.9,807.4,91.6]
[PKTLENS.....: 64,60,52,411,569,1500,52,80,80,80,80,72,64,64,64,52,64,1500,1500,52,1500,52,1500,1500,52,1500,52,64,52,1500,72,72]
[ENTROPIES...: 4.6,5.3,5.1,6.4,5.8,4.4,5.1,5.4,5.3,5.3,5.3,5.3,5.2,5.2,5.2,5.2,5.2,5.0,5.0,5.2,5.0,5.0,5.0,5.0,5.2,5.0,5.0,5.1,5.0,4.7,5.2,5.3]
- analyse: [....33] [ip4][..tcp] [....192.168.1.7][53172] -> [..23.246.11.133][...80] [HTTP][NetFlix][Web][Acceptable]
+ analyse: [....33] [ip4][..tcp] [....192.168.1.7][53172] -> [..23.246.11.133][...80] [HTTP][NetFlix][Download][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 3.064| 0.322| 0.577| 332375.130| 3.600]
[PKTLEN......: 52.000| 1500.000| 495.000| 637.200| 406023.800| 3.900]
@@ -335,7 +340,7 @@
[IATS(ms)....: 11.7,15.7,2.4,60.2,1.2,0.1,57.1,107.8,316.9,313.9,536.7,811.2,71.2,122.5,693.7,84.7,585.6,3064.5,52.8,57.9,98.4,231.5,526.2,115.1,0.7,585.7,117.7,1178.9,25.8,79.1,64.3]
[PKTLENS.....: 64,60,52,410,570,1500,1500,52,52,1500,52,80,80,80,80,72,64,72,1500,72,1500,64,1500,80,64,52,64,52,1500,52,1500,1500]
[ENTROPIES...: 4.5,5.2,5.0,6.3,5.8,4.5,4.2,5.1,5.0,3.8,5.0,5.1,5.1,5.2,5.2,5.2,5.1,5.2,4.3,5.2,4.2,5.0,4.3,5.1,5.1,5.1,5.1,5.1,4.5,5.1,4.5,4.5]
- analyse: [....39] [ip4][..tcp] [....192.168.1.7][53178] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable]
+ analyse: [....39] [ip4][..tcp] [....192.168.1.7][53178] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 3.546| 0.356| 0.683| 466078.499| 3.500]
[PKTLEN......: 52.000| 1500.000| 493.200| 638.400| 407523.400| 3.900]
@@ -345,7 +350,7 @@
[IATS(ms)....: 43.2,45.3,13.2,106.7,4.9,97.9,1317.7,102.1,98.2,0.2,515.8,59.8,1148.4,57.2,54.9,165.2,3546.3,68.4,92.3,156.0,131.0,70.0,95.9,104.0,104.5,205.1,729.4,92.0,551.2,1189.4,68.2]
[PKTLENS.....: 64,60,52,409,570,1500,52,80,80,72,72,72,72,72,64,64,52,1500,52,1500,52,1500,1500,52,1500,52,1500,64,52,52,1500,1500]
[ENTROPIES...: 4.5,5.3,5.0,6.4,5.8,4.5,5.1,5.4,5.4,5.4,5.3,5.4,5.4,5.3,5.3,5.3,5.3,4.4,5.2,4.5,5.0,4.5,4.5,5.2,4.5,5.1,4.5,5.3,5.2,5.0,4.4,4.4]
- analyse: [....40] [ip4][..tcp] [....192.168.1.7][53179] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable]
+ analyse: [....40] [ip4][..tcp] [....192.168.1.7][53179] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 4.457| 0.415| 0.811| 658300.731| 3.600]
[PKTLEN......: 52.000| 1500.000| 538.100| 656.800| 431419.800| 3.900]
@@ -355,7 +360,7 @@
[IATS(ms)....: 41.4,43.5,2.9,82.1,0.1,78.7,1252.1,77.7,132.2,0.8,525.3,100.7,510.0,513.0,40.3,4457.1,87.0,1393.0,522.4,574.9,39.6,91.2,57.6,58.1,139.0,449.1,380.1,69.9,139.5,473.4,516.8]
[PKTLENS.....: 64,60,52,410,570,1500,52,80,80,72,72,72,72,72,64,64,1500,1500,52,52,1500,1500,52,1500,52,1500,52,1500,1500,52,52,1500]
[ENTROPIES...: 4.5,5.3,5.0,6.4,5.8,4.4,5.1,5.3,5.4,5.4,5.4,5.4,5.3,5.3,5.2,5.2,4.4,4.5,5.1,5.2,4.4,4.5,5.2,4.4,5.1,4.5,5.2,4.3,4.3,5.2,5.2,4.4]
- analyse: [....37] [ip4][..tcp] [....192.168.1.7][53176] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable]
+ analyse: [....37] [ip4][..tcp] [....192.168.1.7][53176] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.001| 4.432| 0.435| 0.814| 663375.512| 3.600]
[PKTLEN......: 52.000| 1500.000| 404.200| 589.200| 347103.400| 3.700]
@@ -379,13 +384,18 @@
new: [....44] [ip4][..tcp] [....192.168.1.7][53183] -> [...23.246.3.140][...80]
new: [....45] [ip4][..tcp] [....192.168.1.7][53184] -> [..23.246.11.141][...80]
detected: [....45] [ip4][..tcp] [....192.168.1.7][53184] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable][23.246.11.141]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
detected: [....44] [ip4][..tcp] [....192.168.1.7][53183] -> [...23.246.3.140][...80] [HTTP][NetFlix][Web][Acceptable][23.246.3.140]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
+ detection-update: [....45] [ip4][..tcp] [....192.168.1.7][53184] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable][23.246.11.141]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
new: [....46] [ip4][..tcp] [....192.168.1.7][53193] -> [...54.191.17.51][..443]
new: [....47] [ip4][..tcp] [....192.168.1.7][53202] -> [...54.191.17.51][..443]
new: [....48] [ip4][..udp] [....192.168.1.7][60962] -> [....192.168.1.1][...53]
detected: [....48] [ip4][..udp] [....192.168.1.7][60962] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][ichnaea.geo.netflix.com]
+ RISK: Unidirectional Traffic
+ detection-update: [....44] [ip4][..tcp] [....192.168.1.7][53183] -> [...23.246.3.140][...80] [HTTP][NetFlix][Download][Acceptable][23.246.3.140]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
detection-update: [....48] [ip4][..udp] [....192.168.1.7][60962] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][ichnaea.geo.netflix.com]
new: [....49] [ip4][..tcp] [....192.168.1.7][53203] -> [...52.37.36.252][..443]
analyse: [....11] [ip4][..tcp] [....192.168.1.7][53119] -> [..54.69.204.241][..443]
@@ -414,18 +424,6 @@
detection-update: [....47] [ip4][..tcp] [....192.168.1.7][53202] -> [...54.191.17.51][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ios.nccp.netflix.com]
RISK: TLS (probably) Not Carrying HTTPS
detection-update: [....49] [ip4][..tcp] [....192.168.1.7][53203] -> [...52.37.36.252][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ichnaea.netflix.com]
- analyse: [....46] [ip4][..tcp] [....192.168.1.7][53193] -> [...54.191.17.51][..443]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.266| 0.048| 0.057| 3291.764| 4.000]
- [PKTLEN......: 52.000| 1500.000| 865.400| 680.500| 463015.400| 4.400]
- [BINS(c->s)..: 5,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,15,0,0]
- [BINS(s->c)..: 5,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,1,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,1,0,0,1,0,0,1,0,0,0,0,0,1,0,0,0,0,1,0,0,0,0,0,0,0,1]
- [IATS(ms)....: 53.4,54.6,4.5,73.7,0.5,53.6,123.5,11.6,72.5,62.7,1.5,55.8,52.4,2.2,0.2,0.4,0.2,96.3,96.4,0.2,0.1,0.1,82.6,81.7,0.9,0.2,0.2,38.2,40.6,146.6,266.1]
- [PKTLENS.....: 64,60,52,569,52,1500,1132,52,178,103,52,1044,106,52,1500,1500,1500,1500,52,1500,1500,1500,1500,52,1500,1500,1500,1500,1500,1500,1500,72]
- [ENTROPIES...: 4.6,5.3,5.2,4.4,5.2,7.2,7.6,5.2,6.6,6.0,5.2,7.8,6.2,5.2,7.9,7.9,7.9,7.9,5.3,7.9,7.9,7.9,7.9,5.2,7.9,7.9,7.9,7.9,7.9,7.9,7.9,5.4]
- detection-update: [....46] [ip4][..tcp] [....192.168.1.7][53193] -> [...54.191.17.51][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ios.nccp.netflix.com]
- RISK: TLS (probably) Not Carrying HTTPS
analyse: [....47] [ip4][..tcp] [....192.168.1.7][53202] -> [...54.191.17.51][..443]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.282| 0.053| 0.058| 3383.537| 4.200]
@@ -449,17 +447,7 @@
[PKTLENS.....: 64,60,52,281,52,1500,1500,52,215,52,127,58,97,52,103,52,1403,1500,1500,52,1500,1500,1500,1500,52,1500,1500,1500,1500,52,1500,1500]
[ENTROPIES...: 4.6,5.3,5.2,5.8,5.1,7.2,7.3,5.2,6.9,5.2,6.2,5.1,6.1,5.2,6.0,5.2,7.9,7.9,7.9,5.2,7.9,7.8,7.9,7.9,5.2,7.9,7.9,7.9,7.9,5.2,7.9,7.9]
detection-update: [....49] [ip4][..tcp] [....192.168.1.7][53203] -> [...52.37.36.252][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ichnaea.netflix.com]
- analyse: [....45] [ip4][..tcp] [....192.168.1.7][53184] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.003| 0.472| 0.093| 0.119| 14235.635| 4.100]
- [PKTLEN......: 52.000| 1500.000| 684.800| 659.100| 434476.800| 4.200]
- [BINS(c->s)..: 14,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,1,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,12,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,0,1,0,0,1,1,0,1,0,1,1,0,1,0,0,1,1,0,1,0,1,0,0,0,1,1]
- [IATS(ms)....: 26.1,27.5,2.6,46.5,5.4,49.4,29.6,29.5,8.5,38.4,5.4,39.8,38.4,39.7,140.3,138.3,356.6,206.9,472.0,29.3,417.4,40.8,81.5,44.0,43.4,83.0,187.8,28.6,25.2,184.4,25.5]
- [PKTLENS.....: 64,60,52,561,621,1500,52,663,52,567,629,1500,52,1500,52,1500,1500,80,1500,64,52,1500,1500,52,1500,52,1500,72,64,52,1500,1500]
- [ENTROPIES...: 4.6,5.3,5.1,6.3,5.8,4.5,5.1,4.2,5.1,6.3,5.8,3.8,5.1,6.9,5.0,7.6,7.9,5.2,7.9,5.2,5.1,7.9,7.9,5.1,7.9,5.0,7.9,5.3,5.1,5.1,7.9,7.9]
- analyse: [....44] [ip4][..tcp] [....192.168.1.7][53183] -> [...23.246.3.140][...80] [HTTP][NetFlix][Web][Acceptable]
+ analyse: [....44] [ip4][..tcp] [....192.168.1.7][53183] -> [...23.246.3.140][...80] [HTTP][NetFlix][Download][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.005| 0.731| 0.102| 0.156| 24231.225| 4.000]
[PKTLEN......: 52.000| 1500.000| 648.300| 653.400| 426995.300| 4.200]
@@ -471,7 +459,9 @@
[ENTROPIES...: 4.5,5.2,5.2,6.2,5.8,3.9,5.1,6.2,5.7,3.2,5.1,7.9,7.8,7.8,5.3,5.2,5.1,7.8,7.8,5.1,7.8,5.0,5.9,7.8,5.1,7.8,5.0,7.8,5.0,5.2,5.1,5.1]
new: [....50] [ip4][..tcp] [....192.168.1.7][53210] -> [..23.246.11.133][...80]
detected: [....50] [ip4][..tcp] [....192.168.1.7][53210] -> [..23.246.11.133][...80] [HTTP][NetFlix][Web][Acceptable][23.246.11.133]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
+ detection-update: [....50] [ip4][..tcp] [....192.168.1.7][53210] -> [..23.246.11.133][...80] [HTTP][NetFlix][Download][Acceptable][23.246.11.133]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
update: [....10] [ip4][..udp] [....192.168.1.7][53776] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
update: [.....2] [ip4][..udp] [....192.168.1.7][51543] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun]
update: [....17] [ip4][..udp] [....192.168.1.7][57719] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun]
@@ -479,14 +469,18 @@
update: [.....3] [ip4][..udp] [....192.168.1.7][52116] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun]
new: [....51] [ip4][..tcp] [....192.168.1.7][53217] -> [..23.246.11.141][...80]
detected: [....51] [ip4][..tcp] [....192.168.1.7][53217] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable][23.246.11.141]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
+ detection-update: [....51] [ip4][..tcp] [....192.168.1.7][53217] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable][23.246.11.141]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
update: [....19] [ip4][..udp] [....192.168.1.7][59180] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun]
update: [....26] [ip4][..udp] [....192.168.1.7][51728] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....23] [ip4][..udp] [....192.168.1.7][58102] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun]
update: [....27] [ip4][..udp] [....192.168.1.7][52347] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun]
new: [....52] [ip4][..udp] [....192.168.1.7][51622] -> [....192.168.1.1][...53]
detected: [....52] [ip4][..udp] [....192.168.1.7][51622] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][ios.nccp.netflix.com]
+ RISK: Unidirectional Traffic
detection-update: [....52] [ip4][..udp] [....192.168.1.7][51622] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][ios.nccp.netflix.com]
+ RISK: Unidirectional Traffic
detection-update: [....52] [ip4][..udp] [....192.168.1.7][51622] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][ios.nccp.netflix.com]
new: [....53] [ip4][..tcp] [....192.168.1.7][53238] -> [...52.32.22.214][..443]
detected: [....53] [ip4][..tcp] [....192.168.1.7][53238] -> [...52.32.22.214][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ios.nccp.netflix.com]
@@ -497,6 +491,7 @@
RISK: TLS (probably) Not Carrying HTTPS
new: [....54] [ip4][..udp] [....192.168.1.7][52095] -> [....192.168.1.1][...53]
detected: [....54] [ip4][..udp] [....192.168.1.7][52095] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][api-global.latency.prodaa.netflix.com]
+ RISK: Unidirectional Traffic
detection-update: [....54] [ip4][..udp] [....192.168.1.7][52095] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][api-global.latency.prodaa.netflix.com]
new: [....55] [ip4][..tcp] [....192.168.1.7][53239] -> [.....52.41.30.5][..443]
new: [....56] [ip4][..tcp] [....192.168.1.7][53248] -> [...52.32.22.214][..443]
@@ -531,6 +526,7 @@
[ENTROPIES...: 4.5,5.3,5.1,6.0,5.2,6.5,5.1,5.2,6.0,7.9,7.6,5.1,5.2,7.9,7.0,7.8,5.1,7.6,5.1,7.8,5.2,7.5,5.1,7.8,5.2,7.9,5.1,7.7,5.1,7.8,5.1,7.7]
new: [....59] [ip4][..udp] [....192.168.1.7][57093] -> [....192.168.1.1][...53]
detected: [....59] [ip4][..udp] [....192.168.1.7][57093] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][a1907.dscg.akamai.net]
+ RISK: Unidirectional Traffic
detection-update: [....59] [ip4][..udp] [....192.168.1.7][57093] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][a1907.dscg.akamai.net]
new: [....60] [ip4][..tcp] [....192.168.1.7][53251] -> [..184.25.204.10][...80]
new: [....61] [ip4][..tcp] [....192.168.1.7][53252] -> [..184.25.204.10][...80]
@@ -574,23 +570,23 @@
end: [.....5] [ip4][..tcp] [....192.168.1.7][53114] -> [...54.191.17.51][..443]
end: [....29] [ip4][..tcp] [....192.168.1.7][53162] -> [...54.191.17.51][..443]
guessed: [.....1] [ip4][..tcp] [....192.168.1.7][52929] -> [.....52.24.87.6][..443] [TLS][AmazonAWS][Web][Safe]
+ RISK: Unidirectional Traffic
end: [.....1] [ip4][..tcp] [....192.168.1.7][52929] -> [.....52.24.87.6][..443]
- idle: [....46] [ip4][..tcp] [....192.168.1.7][53193] -> [...54.191.17.51][..443] [TLS.NetFlix][AmazonAWS][Video][Fun]
- RISK: TLS (probably) Not Carrying HTTPS
+ idle: [....46] [ip4][..tcp] [....192.168.1.7][53193] -> [...54.191.17.51][..443]
end: [....47] [ip4][..tcp] [....192.168.1.7][53202] -> [...54.191.17.51][..443] [TLS.NetFlix][AmazonAWS][Video][Fun]
RISK: TLS (probably) Not Carrying HTTPS
end: [....25] [ip4][..tcp] [....192.168.1.7][53152] -> [...52.89.39.139][...80] [HTTP.NetFlix][AmazonAWS][Video][Fun]
end: [....24] [ip4][..tcp] [....192.168.1.7][53151] -> [.54.201.191.132][...80] [HTTP.NetFlix][AmazonAWS][Video][Fun]
end: [.....6] [ip4][..tcp] [....192.168.1.7][53115] -> [...52.32.196.36][..443]
- end: [.....7] [ip4][..tcp] [....192.168.1.7][53116] -> [...52.32.196.36][..443] [TLS.NetFlix][AmazonAWS][Video][Fun]
+ idle: [.....7] [ip4][..tcp] [....192.168.1.7][53116] -> [...52.32.196.36][..443]
end: [.....8] [ip4][..tcp] [....192.168.1.7][53117] -> [...52.32.196.36][..443] [TLS.NetFlix][AmazonAWS][Video][Fun]
RISK: TLS (probably) Not Carrying HTTPS
idle: [....10] [ip4][..udp] [....192.168.1.7][53776] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
end: [....20] [ip4][..tcp] [....192.168.1.7][53148] -> [..184.25.204.25][...80] [HTTP.NetFlix][Unknown][Video][Fun]
- end: [....21] [ip4][..tcp] [....192.168.1.7][53149] -> [..184.25.204.25][...80] [HTTP.NetFlix][Unknown][Video][Fun]
+ idle: [....21] [ip4][..tcp] [....192.168.1.7][53149] -> [..184.25.204.25][...80] [HTTP.NetFlix][Unknown][Video][Fun]
end: [....22] [ip4][..tcp] [....192.168.1.7][53150] -> [..184.25.204.25][...80] [HTTP.NetFlix][Unknown][Video][Fun]
idle: [....28] [ip4][..tcp] [....192.168.1.7][53153] -> [..184.25.204.24][...80] [HTTP.NetFlix][Unknown][Video][Fun]
- RISK: HTTP Suspicious Content
+ RISK: HTTP Susp Content
end: [....53] [ip4][..tcp] [....192.168.1.7][53238] -> [...52.32.22.214][..443]
idle: [....56] [ip4][..tcp] [....192.168.1.7][53248] -> [...52.32.22.214][..443]
idle: [....60] [ip4][..tcp] [....192.168.1.7][53251] -> [..184.25.204.10][...80] [HTTP.NetFlix][Unknown][Video][Fun]
@@ -615,42 +611,42 @@
idle: [....54] [ip4][..udp] [....192.168.1.7][52095] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun]
idle: [.....3] [ip4][..udp] [....192.168.1.7][52116] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun]
idle: [....27] [ip4][..udp] [....192.168.1.7][52347] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun]
- end: [....30] [ip4][..tcp] [....192.168.1.7][53163] -> [..23.246.11.145][...80] [HTTP][NetFlix][Web][Acceptable]
- RISK: HTTP Numeric IP Address
- end: [....31] [ip4][..tcp] [....192.168.1.7][53164] -> [..23.246.10.139][...80] [HTTP][NetFlix][Web][Acceptable]
- RISK: HTTP Numeric IP Address
- end: [....32] [ip4][..tcp] [....192.168.1.7][53171] -> [...23.246.3.140][...80] [HTTP][NetFlix][Web][Acceptable]
- RISK: HTTP Numeric IP Address
- end: [....33] [ip4][..tcp] [....192.168.1.7][53172] -> [..23.246.11.133][...80] [HTTP][NetFlix][Web][Acceptable]
- RISK: HTTP Numeric IP Address
- end: [....34] [ip4][..tcp] [....192.168.1.7][53173] -> [..23.246.11.133][...80] [HTTP][NetFlix][Web][Acceptable]
- RISK: HTTP Numeric IP Address
- end: [....35] [ip4][..tcp] [....192.168.1.7][53174] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable]
- RISK: HTTP Numeric IP Address
- end: [....36] [ip4][..tcp] [....192.168.1.7][53175] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable]
- RISK: HTTP Numeric IP Address
- end: [....37] [ip4][..tcp] [....192.168.1.7][53176] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable]
- RISK: HTTP Numeric IP Address
- end: [....38] [ip4][..tcp] [....192.168.1.7][53177] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable]
- RISK: HTTP Numeric IP Address
- end: [....39] [ip4][..tcp] [....192.168.1.7][53178] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable]
- RISK: HTTP Numeric IP Address
- end: [....40] [ip4][..tcp] [....192.168.1.7][53179] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable]
- RISK: HTTP Numeric IP Address
- end: [....41] [ip4][..tcp] [....192.168.1.7][53180] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable]
- RISK: HTTP Numeric IP Address
- end: [....42] [ip4][..tcp] [....192.168.1.7][53181] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable]
- RISK: HTTP Numeric IP Address
- end: [....43] [ip4][..tcp] [....192.168.1.7][53182] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable]
- RISK: HTTP Numeric IP Address
- idle: [....44] [ip4][..tcp] [....192.168.1.7][53183] -> [...23.246.3.140][...80] [HTTP][NetFlix][Web][Acceptable]
- RISK: HTTP Numeric IP Address
- end: [....45] [ip4][..tcp] [....192.168.1.7][53184] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable]
- RISK: HTTP Numeric IP Address
- idle: [....50] [ip4][..tcp] [....192.168.1.7][53210] -> [..23.246.11.133][...80] [HTTP][NetFlix][Web][Acceptable]
- RISK: HTTP Numeric IP Address
- idle: [....51] [ip4][..tcp] [....192.168.1.7][53217] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable]
- RISK: HTTP Numeric IP Address
+ end: [....30] [ip4][..tcp] [....192.168.1.7][53163] -> [..23.246.11.145][...80] [HTTP][NetFlix][Download][Acceptable]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
+ idle: [....31] [ip4][..tcp] [....192.168.1.7][53164] -> [..23.246.10.139][...80] [HTTP][NetFlix][Download][Acceptable]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
+ end: [....32] [ip4][..tcp] [....192.168.1.7][53171] -> [...23.246.3.140][...80] [HTTP][NetFlix][Download][Acceptable]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
+ end: [....33] [ip4][..tcp] [....192.168.1.7][53172] -> [..23.246.11.133][...80] [HTTP][NetFlix][Download][Acceptable]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
+ end: [....34] [ip4][..tcp] [....192.168.1.7][53173] -> [..23.246.11.133][...80] [HTTP][NetFlix][Download][Acceptable]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
+ end: [....35] [ip4][..tcp] [....192.168.1.7][53174] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
+ end: [....36] [ip4][..tcp] [....192.168.1.7][53175] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
+ end: [....37] [ip4][..tcp] [....192.168.1.7][53176] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
+ end: [....38] [ip4][..tcp] [....192.168.1.7][53177] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
+ end: [....39] [ip4][..tcp] [....192.168.1.7][53178] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
+ end: [....40] [ip4][..tcp] [....192.168.1.7][53179] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
+ end: [....41] [ip4][..tcp] [....192.168.1.7][53180] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
+ end: [....42] [ip4][..tcp] [....192.168.1.7][53181] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
+ end: [....43] [ip4][..tcp] [....192.168.1.7][53182] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
+ idle: [....44] [ip4][..tcp] [....192.168.1.7][53183] -> [...23.246.3.140][...80] [HTTP][NetFlix][Download][Acceptable]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
+ idle: [....45] [ip4][..tcp] [....192.168.1.7][53184] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
+ idle: [....50] [ip4][..tcp] [....192.168.1.7][53210] -> [..23.246.11.133][...80] [HTTP][NetFlix][Download][Acceptable]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
+ idle: [....51] [ip4][..tcp] [....192.168.1.7][53217] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
end: [.....4] [ip4][..tcp] [....192.168.1.7][53105] -> [..54.69.204.241][..443] [TLS.NetFlix][AmazonAWS][Video][Fun]
end: [.....9] [ip4][..tcp] [....192.168.1.7][53118] -> [..54.69.204.241][..443] [TLS.NetFlix][AmazonAWS][Video][Fun]
end: [....11] [ip4][..tcp] [....192.168.1.7][53119] -> [..54.69.204.241][..443] [TLS.NetFlix][AmazonAWS][Video][Fun]
diff --git a/test/results/flow-info/netflow-fritz.pcap.out b/test/results/flow-info/default/netflow-fritz.pcap.out
index 1b8254f41..1b8254f41 100644
--- a/test/results/flow-info/netflow-fritz.pcap.out
+++ b/test/results/flow-info/default/netflow-fritz.pcap.out
diff --git a/test/results/flow-info/netflowv9.pcap.out b/test/results/flow-info/default/netflowv9.pcap.out
index 0da83c46e..0da83c46e 100644
--- a/test/results/flow-info/netflowv9.pcap.out
+++ b/test/results/flow-info/default/netflowv9.pcap.out
diff --git a/test/results/flow-info/nfsv2.pcap.out b/test/results/flow-info/default/nfsv2.pcap.out
index 944409d07..a4085e268 100644
--- a/test/results/flow-info/nfsv2.pcap.out
+++ b/test/results/flow-info/default/nfsv2.pcap.out
@@ -3,17 +3,19 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [....139.25.22.2][.3289] -> [..139.25.22.102][..111]
detected: [.....1] [ip4][..udp] [....139.25.22.2][.3289] -> [..139.25.22.102][..111] [NFS][Unknown][DataTransfer][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [.....2] [ip4][..udp] [....139.25.22.2][..671] -> [..139.25.22.102][.1048]
detected: [.....2] [ip4][..udp] [....139.25.22.2][..671] -> [..139.25.22.102][.1048] [NFS][Unknown][DataTransfer][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [.....3] [ip4][..udp] [....139.25.22.2][.3291] -> [..139.25.22.102][..111]
detected: [.....3] [ip4][..udp] [....139.25.22.2][.3291] -> [..139.25.22.102][..111] [NFS][Unknown][DataTransfer][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [.....4] [ip4][..udp] [....139.25.22.2][.3292] -> [..139.25.22.102][.2049]
detected: [.....4] [ip4][..udp] [....139.25.22.2][.3292] -> [..139.25.22.102][.2049] [NFS][Unknown][DataTransfer][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][..udp] [....139.25.22.2][.1023] -> [..139.25.22.102][.2049]
detected: [.....5] [ip4][..udp] [....139.25.22.2][.1023] -> [..139.25.22.102][.2049] [NFS][Unknown][DataTransfer][Acceptable]
+ RISK: Unidirectional Traffic
analyse: [.....5] [ip4][..udp] [....139.25.22.2][.1023] -> [..139.25.22.102][.2049] [NFS][Unknown][DataTransfer][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.040| 0.006| 0.010| 101.769| 3.300]
@@ -26,20 +28,22 @@
[ENTROPIES...: 3.4,3.5,3.4,3.5,3.3,3.3,3.3,3.3,3.3,3.3,3.4,3.3,3.4,3.5,3.3,3.3,3.7,3.4,3.3,3.4,3.4,3.3,3.4,3.2,3.3,3.4,3.4,3.3,3.2,3.2,3.4,3.5]
new: [.....6] [ip4][..udp] [....139.25.22.2][.3293] -> [..139.25.22.102][..111]
detected: [.....6] [ip4][..udp] [....139.25.22.2][.3293] -> [..139.25.22.102][..111] [NFS][Unknown][DataTransfer][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [.....7] [ip4][..udp] [....139.25.22.2][..686] -> [..139.25.22.102][.1048]
detected: [.....7] [ip4][..udp] [....139.25.22.2][..686] -> [..139.25.22.102][.1048] [NFS][Unknown][DataTransfer][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....4] [ip4][..udp] [....139.25.22.2][.3292] -> [..139.25.22.102][.2049] [NFS][Unknown][DataTransfer][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [....139.25.22.2][.3289] -> [..139.25.22.102][..111] [NFS][Unknown][DataTransfer][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....3] [ip4][..udp] [....139.25.22.2][.3291] -> [..139.25.22.102][..111] [NFS][Unknown][DataTransfer][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....6] [ip4][..udp] [....139.25.22.2][.3293] -> [..139.25.22.102][..111] [NFS][Unknown][DataTransfer][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....2] [ip4][..udp] [....139.25.22.2][..671] -> [..139.25.22.102][.1048] [NFS][Unknown][DataTransfer][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....7] [ip4][..udp] [....139.25.22.2][..686] -> [..139.25.22.102][.1048] [NFS][Unknown][DataTransfer][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....5] [ip4][..udp] [....139.25.22.2][.1023] -> [..139.25.22.102][.2049] [NFS][Unknown][DataTransfer][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/nfsv3.pcap.out b/test/results/flow-info/default/nfsv3.pcap.out
index 06e420b1b..d0ddb664f 100644
--- a/test/results/flow-info/nfsv3.pcap.out
+++ b/test/results/flow-info/default/nfsv3.pcap.out
@@ -3,20 +3,22 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [....139.25.22.2][.3295] -> [..139.25.22.102][..111]
detected: [.....1] [ip4][..udp] [....139.25.22.2][.3295] -> [..139.25.22.102][..111] [NFS][Unknown][DataTransfer][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [.....2] [ip4][..udp] [....139.25.22.2][.3296] -> [..139.25.22.102][.1048]
detected: [.....2] [ip4][..udp] [....139.25.22.2][.3296] -> [..139.25.22.102][.1048] [NFS][Unknown][DataTransfer][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [.....3] [ip4][..udp] [....139.25.22.2][..706] -> [..139.25.22.102][.1048]
detected: [.....3] [ip4][..udp] [....139.25.22.2][..706] -> [..139.25.22.102][.1048] [NFS][Unknown][DataTransfer][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [.....4] [ip4][..udp] [....139.25.22.2][.3297] -> [..139.25.22.102][..111]
detected: [.....4] [ip4][..udp] [....139.25.22.2][.3297] -> [..139.25.22.102][..111] [NFS][Unknown][DataTransfer][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [.....5] [ip4][..udp] [....139.25.22.2][.3298] -> [..139.25.22.102][.2049]
detected: [.....5] [ip4][..udp] [....139.25.22.2][.3298] -> [..139.25.22.102][.2049] [NFS][Unknown][DataTransfer][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....6] [ip4][..udp] [....139.25.22.2][.1022] -> [..139.25.22.102][.2049]
detected: [.....6] [ip4][..udp] [....139.25.22.2][.1022] -> [..139.25.22.102][.2049] [NFS][Unknown][DataTransfer][Acceptable]
+ RISK: Unidirectional Traffic
analyse: [.....6] [ip4][..udp] [....139.25.22.2][.1022] -> [..139.25.22.102][.2049] [NFS][Unknown][DataTransfer][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.050| 0.006| 0.012| 151.925| 3.200]
@@ -29,22 +31,24 @@
[ENTROPIES...: 3.3,3.3,3.3,3.2,3.3,3.2,3.3,3.1,3.3,3.2,3.3,3.1,2.9,3.3,3.3,3.1,3.2,3.3,3.3,3.1,3.3,3.1,3.3,3.2,3.3,3.2,3.2,3.3,3.3,3.4,3.5,3.2]
new: [.....7] [ip4][..udp] [....139.25.22.2][.3299] -> [..139.25.22.102][..111]
detected: [.....7] [ip4][..udp] [....139.25.22.2][.3299] -> [..139.25.22.102][..111] [NFS][Unknown][DataTransfer][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [.....8] [ip4][..udp] [....139.25.22.2][..722] -> [..139.25.22.102][.1048]
detected: [.....8] [ip4][..udp] [....139.25.22.2][..722] -> [..139.25.22.102][.1048] [NFS][Unknown][DataTransfer][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....5] [ip4][..udp] [....139.25.22.2][.3298] -> [..139.25.22.102][.2049] [NFS][Unknown][DataTransfer][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [....139.25.22.2][.3295] -> [..139.25.22.102][..111] [NFS][Unknown][DataTransfer][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....4] [ip4][..udp] [....139.25.22.2][.3297] -> [..139.25.22.102][..111] [NFS][Unknown][DataTransfer][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....7] [ip4][..udp] [....139.25.22.2][.3299] -> [..139.25.22.102][..111] [NFS][Unknown][DataTransfer][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....3] [ip4][..udp] [....139.25.22.2][..706] -> [..139.25.22.102][.1048] [NFS][Unknown][DataTransfer][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....8] [ip4][..udp] [....139.25.22.2][..722] -> [..139.25.22.102][.1048] [NFS][Unknown][DataTransfer][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....2] [ip4][..udp] [....139.25.22.2][.3296] -> [..139.25.22.102][.1048] [NFS][Unknown][DataTransfer][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....6] [ip4][..udp] [....139.25.22.2][.1022] -> [..139.25.22.102][.2049] [NFS][Unknown][DataTransfer][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/nintendo.pcap.out b/test/results/flow-info/default/nintendo.pcap.out
index d356ce978..dd69a0fd7 100644
--- a/test/results/flow-info/nintendo.pcap.out
+++ b/test/results/flow-info/default/nintendo.pcap.out
@@ -3,14 +3,19 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [.192.168.12.114][52119] -> [....91.8.243.35][49432]
detected: [.....1] [ip4][..udp] [.192.168.12.114][52119] -> [....91.8.243.35][49432] [Nintendo][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..udp] [.192.168.12.114][52119] -> [...134.3.248.25][56955]
detected: [.....2] [ip4][..udp] [.192.168.12.114][52119] -> [...134.3.248.25][56955] [Nintendo][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..udp] [.192.168.12.114][52119] -> [..109.21.255.11][50251]
detected: [.....3] [ip4][..udp] [.192.168.12.114][52119] -> [..109.21.255.11][50251] [Nintendo][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..tcp] [..54.187.10.185][..443] -> [.192.168.12.114][48328] [MIDSTREAM]
detected: [.....4] [ip4][..tcp] [..54.187.10.185][..443] -> [.192.168.12.114][48328] [TLS][AmazonAWS][Web][Safe]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][..udp] [.192.168.12.114][52119] -> [...35.158.74.61][33335]
detected: [.....5] [ip4][..udp] [.192.168.12.114][52119] -> [...35.158.74.61][33335] [Nintendo][AmazonAWS][Game][Fun]
+ RISK: Unidirectional Traffic
analyse: [.....1] [ip4][..udp] [.192.168.12.114][52119] -> [....91.8.243.35][49432] [Nintendo][Unknown][Game][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 1.730| 0.194| 0.332| 110172.324| 3.600]
@@ -24,6 +29,7 @@
new: [.....6] [ip4][..udp] [.192.168.12.114][52119] -> [..52.10.205.177][34343]
new: [.....7] [ip4][..udp] [.192.168.12.114][18874] -> [...192.168.12.1][...53]
detected: [.....7] [ip4][..udp] [.192.168.12.114][18874] -> [...192.168.12.1][...53] [DNS.Nintendo][Unknown][Network][Fun][e0d67c509fb203858ebcb2fe3f88c2aa.baas.nintendo.com]
+ RISK: Unidirectional Traffic
detection-update: [.....7] [ip4][..udp] [.192.168.12.114][18874] -> [...192.168.12.1][...53] [DNS.Nintendo][Unknown][Network][Fun][e0d67c509fb203858ebcb2fe3f88c2aa.baas.nintendo.com]
new: [.....8] [ip4][..tcp] [.192.168.12.114][41517] -> [..54.192.27.217][..443]
detected: [.....8] [ip4][..tcp] [.192.168.12.114][41517] -> [..54.192.27.217][..443] [TLS.Nintendo][AmazonAWS][Game][Fun][e0d67c509fb203858ebcb2fe3f88c2aa.baas.nintendo.com]
@@ -38,12 +44,14 @@
new: [....12] [ip4][..udp] [.192.168.12.114][55915] -> [...35.158.74.61][33335]
new: [....13] [ip4][..udp] [.192.168.12.114][10184] -> [...192.168.12.1][...53]
detected: [....13] [ip4][..udp] [.192.168.12.114][10184] -> [...192.168.12.1][...53] [DNS.Nintendo][Unknown][Network][Fun][g2df33d01-lp1.p.srv.nintendo.net]
+ RISK: Unidirectional Traffic
detection-update: [....13] [ip4][..udp] [.192.168.12.114][10184] -> [...192.168.12.1][...53] [DNS.Nintendo][Unknown][Network][Fun][g2df33d01-lp1.p.srv.nintendo.net]
detection-update: [....13] [ip4][..udp] [.192.168.12.114][10184] -> [...192.168.12.1][...53] [DNS.Nintendo][Unknown][Network][Fun][g2df33d01-lp1.p.srv.nintendo.net]
detection-update: [....13] [ip4][..udp] [.192.168.12.114][10184] -> [...192.168.12.1][...53] [DNS.Nintendo][Unknown][Network][Fun][g2df33d01-lp1.p.srv.nintendo.net]
new: [....14] [ip4][..udp] [.192.168.12.114][55915] -> [..52.10.205.177][34343]
new: [....15] [ip4][..udp] [.192.168.12.114][51035] -> [...192.168.12.1][...53]
detected: [....15] [ip4][..udp] [.192.168.12.114][51035] -> [...192.168.12.1][...53] [DNS.Nintendo][Unknown][Network][Fun][e0d67c509fb203858ebcb2fe3f88c2aa.baas.nintendo.com]
+ RISK: Unidirectional Traffic
detection-update: [....15] [ip4][..udp] [.192.168.12.114][51035] -> [...192.168.12.1][...53] [DNS.Nintendo][Unknown][Network][Fun][e0d67c509fb203858ebcb2fe3f88c2aa.baas.nintendo.com]
new: [....16] [ip4][..tcp] [.192.168.12.114][31329] -> [....54.192.27.8][..443]
detected: [....16] [ip4][..tcp] [.192.168.12.114][31329] -> [....54.192.27.8][..443] [TLS.Nintendo][AmazonAWS][Game][Fun][e0d67c509fb203858ebcb2fe3f88c2aa.baas.nintendo.com]
@@ -64,14 +72,19 @@
[ENTROPIES...: 6.5,5.8,5.0,6.0,5.0,6.0,6.0,5.0,5.7,6.6,6.6,5.0,5.1,5.7,5.0,7.5,5.1,6.1,7.4,6.5,5.0,5.8,5.1,7.3,5.1,6.2,6.0,5.1,5.8,5.1,6.7,5.7]
new: [....17] [ip4][..udp] [.192.168.12.114][55915] -> [.185.118.169.65][27520]
detected: [....17] [ip4][..udp] [.192.168.12.114][55915] -> [.185.118.169.65][27520] [Nintendo][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....18] [ip4][.icmp] [..151.6.184.100] -> [.192.168.12.114]
detected: [....18] [ip4][.icmp] [..151.6.184.100] -> [.192.168.12.114] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....19] [ip4][..udp] [.192.168.12.114][55915] -> [.93.237.131.235][56066]
detected: [....19] [ip4][..udp] [.192.168.12.114][55915] -> [.93.237.131.235][56066] [Nintendo][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....20] [ip4][..udp] [.192.168.12.114][55915] -> [..81.61.158.138][51769]
detected: [....20] [ip4][..udp] [.192.168.12.114][55915] -> [..81.61.158.138][51769] [Nintendo][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....21] [ip4][.icmp] [...151.6.184.98] -> [.192.168.12.114]
detected: [....21] [ip4][.icmp] [...151.6.184.98] -> [.192.168.12.114] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
analyse: [....17] [ip4][..udp] [.192.168.12.114][55915] -> [.185.118.169.65][27520] [Nintendo][Unknown][Game][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.754| 0.078| 0.153| 23284.658| 3.200]
@@ -102,7 +115,7 @@
[IATS(ms)....: 0.3,0.4,313.5,0.3,0.3,284.3,0.1,0.4,629.4,5.2,43.7,5.3,61.4,0.1,131.6,65.4,7.9,0.2,0.8,31.1,0.4,67.6,2.9,0.5,7.5,105.9,5.7,103.3,9.8,549.4,649.3]
[PKTLENS.....: 104,104,104,104,104,104,104,104,104,104,104,104,104,104,104,168,88,104,104,168,104,104,88,104,104,872,88,872,88,104,104,88]
[ENTROPIES...: 6.1,6.1,6.1,6.0,6.2,6.2,6.2,6.2,6.1,6.0,6.1,6.1,6.1,6.1,6.1,6.7,6.0,6.1,6.2,6.8,6.2,6.2,5.9,6.2,6.2,5.5,5.9,5.6,6.0,6.2,6.1,6.0]
- not-detected: [....11] [ip4][..udp] [.192.168.12.114][55915] -> [...35.158.74.61][10025] [Unknown][AmazonAWS][Unrated]
+ guessed: [....11] [ip4][..udp] [.192.168.12.114][55915] -> [...35.158.74.61][10025] [AmazonAWS][AmazonAWS][Cloud][Acceptable]
idle: [....11] [ip4][..udp] [.192.168.12.114][55915] -> [...35.158.74.61][10025]
idle: [....15] [ip4][..udp] [.192.168.12.114][51035] -> [...192.168.12.1][...53] [DNS.Nintendo][Unknown][Network][Fun]
idle: [....13] [ip4][..udp] [.192.168.12.114][10184] -> [...192.168.12.1][...53] [DNS.Nintendo][Unknown][Network][Fun]
@@ -110,23 +123,36 @@
idle: [.....9] [ip4][..tcp] [.192.168.12.114][11534] -> [..54.146.242.74][..443]
idle: [.....4] [ip4][..tcp] [..54.187.10.185][..443] -> [.192.168.12.114][48328] [TLS][AmazonAWS][Web][Safe]
idle: [....20] [ip4][..udp] [.192.168.12.114][55915] -> [..81.61.158.138][51769] [Nintendo][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....7] [ip4][..udp] [.192.168.12.114][18874] -> [...192.168.12.1][...53] [DNS.Nintendo][Unknown][Network][Fun]
- not-detected: [....10] [ip4][..udp] [.192.168.12.114][55915] -> [...35.158.74.61][33334] [Unknown][AmazonAWS][Unrated]
+ guessed: [....10] [ip4][..udp] [.192.168.12.114][55915] -> [...35.158.74.61][33334] [AmazonAWS][AmazonAWS][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....10] [ip4][..udp] [.192.168.12.114][55915] -> [...35.158.74.61][33334]
- not-detected: [....12] [ip4][..udp] [.192.168.12.114][55915] -> [...35.158.74.61][33335] [Unknown][AmazonAWS][Unrated]
+ guessed: [....12] [ip4][..udp] [.192.168.12.114][55915] -> [...35.158.74.61][33335] [AmazonAWS][AmazonAWS][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....12] [ip4][..udp] [.192.168.12.114][55915] -> [...35.158.74.61][33335]
- not-detected: [....14] [ip4][..udp] [.192.168.12.114][55915] -> [..52.10.205.177][34343] [Unknown][AmazonAWS][Unrated]
+ guessed: [....14] [ip4][..udp] [.192.168.12.114][55915] -> [..52.10.205.177][34343] [AmazonAWS][AmazonAWS][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....14] [ip4][..udp] [.192.168.12.114][55915] -> [..52.10.205.177][34343]
idle: [....19] [ip4][..udp] [.192.168.12.114][55915] -> [.93.237.131.235][56066] [Nintendo][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....5] [ip4][..udp] [.192.168.12.114][52119] -> [...35.158.74.61][33335] [Nintendo][AmazonAWS][Game][Fun]
- not-detected: [.....6] [ip4][..udp] [.192.168.12.114][52119] -> [..52.10.205.177][34343] [Unknown][AmazonAWS][Unrated]
+ RISK: Unidirectional Traffic
+ guessed: [.....6] [ip4][..udp] [.192.168.12.114][52119] -> [..52.10.205.177][34343] [AmazonAWS][AmazonAWS][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][..udp] [.192.168.12.114][52119] -> [..52.10.205.177][34343]
end: [.....8] [ip4][..tcp] [.192.168.12.114][41517] -> [..54.192.27.217][..443]
end: [....16] [ip4][..tcp] [.192.168.12.114][31329] -> [....54.192.27.8][..443]
idle: [....17] [ip4][..udp] [.192.168.12.114][55915] -> [.185.118.169.65][27520] [Nintendo][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [.192.168.12.114][52119] -> [....91.8.243.35][49432] [Nintendo][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [.192.168.12.114][52119] -> [..109.21.255.11][50251] [Nintendo][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [.192.168.12.114][52119] -> [...134.3.248.25][56955] [Nintendo][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....21] [ip4][.icmp] [...151.6.184.98] -> [.192.168.12.114] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....18] [ip4][.icmp] [..151.6.184.100] -> [.192.168.12.114] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/nntp.pcap.out b/test/results/flow-info/default/nntp.pcap.out
index c02818525..c02818525 100644
--- a/test/results/flow-info/nntp.pcap.out
+++ b/test/results/flow-info/default/nntp.pcap.out
diff --git a/test/results/flow-info/no_sni.pcap.out b/test/results/flow-info/default/no_sni.pcap.out
index 46a77be11..8a40dd4f7 100644
--- a/test/results/flow-info/no_sni.pcap.out
+++ b/test/results/flow-info/default/no_sni.pcap.out
@@ -3,6 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [..192.168.1.119][51331] -> [.104.16.249.249][..443] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [..192.168.1.119][51331] -> [.104.16.249.249][..443] [TLS][Cloudflare][Web][Safe]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..tcp] [..192.168.1.119][51606] -> [.104.16.249.249][..443]
detected: [.....2] [ip4][..tcp] [..192.168.1.119][51606] -> [.104.16.249.249][..443] [TLS.DoH_DoT][Cloudflare][Network][Acceptable][mozilla.cloudflare-dns.com]
detection-update: [.....2] [ip4][..tcp] [..192.168.1.119][51606] -> [.104.16.249.249][..443] [TLS.DoH_DoT][Cloudflare][Network][Acceptable][mozilla.cloudflare-dns.com]
diff --git a/test/results/flow-info/ocs.pcap.out b/test/results/flow-info/default/ocs.pcap.out
index 7904ec310..1175f9032 100644
--- a/test/results/flow-info/ocs.pcap.out
+++ b/test/results/flow-info/default/ocs.pcap.out
@@ -4,34 +4,44 @@
new: [.....1] [ip4][..tcp] [..192.168.180.2][47699] -> [.64.233.184.188][.5228]
new: [.....2] [ip4][..udp] [..192.168.180.2][38472] -> [........8.8.8.8][...53]
detected: [.....2] [ip4][..udp] [..192.168.180.2][38472] -> [........8.8.8.8][...53] [DNS.OCS][Google][Network][Fun][ocu03.labgency.ws]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..udp] [..192.168.180.2][40097] -> [........8.8.8.8][...53]
detected: [.....3] [ip4][..udp] [..192.168.180.2][40097] -> [........8.8.8.8][...53] [DNS.Crashlytics][Google][Network][Acceptable][settings.crashlytics.com]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..udp] [..192.168.180.2][.1291] -> [........8.8.8.8][...53]
detected: [.....4] [ip4][..udp] [..192.168.180.2][.1291] -> [........8.8.8.8][...53] [DNS][Google][Network][Acceptable][api.eu01.capptain.com]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][..tcp] [..192.168.180.2][48250] -> [.178.248.208.54][...80]
new: [.....6] [ip4][..tcp] [..192.168.180.2][39263] -> [..23.21.230.199][..443]
new: [.....7] [ip4][..tcp] [..192.168.180.2][53356] -> [137.135.129.206][...80]
detected: [.....5] [ip4][..tcp] [..192.168.180.2][48250] -> [.178.248.208.54][...80] [HTTP.OCS][OCS][Media][Fun][ocu03.labgency.ws]
+ RISK: Unidirectional Traffic
detected: [.....7] [ip4][..tcp] [..192.168.180.2][53356] -> [137.135.129.206][...80] [HTTP][Azure][Web][Acceptable][api.eu01.capptain.com]
+ RISK: HTTP Susp User-Agent, Unidirectional Traffic
new: [.....8] [ip4][..tcp] [..192.168.180.2][44959] -> [137.135.129.206][...80]
detected: [.....8] [ip4][..tcp] [..192.168.180.2][44959] -> [137.135.129.206][...80] [HTTP][Azure][Web][Acceptable][api.eu01.capptain.com]
+ RISK: HTTP Susp User-Agent, Unidirectional Traffic
new: [.....9] [ip4][..udp] [..192.168.180.2][48770] -> [........8.8.8.8][...53]
detected: [.....9] [ip4][..udp] [..192.168.180.2][48770] -> [........8.8.8.8][...53] [DNS.PlayStore][Google][Network][Safe][android.clients.google.com]
+ RISK: Unidirectional Traffic
new: [....10] [ip4][..tcp] [..192.168.180.2][41223] -> [..216.58.208.46][..443]
detected: [....10] [ip4][..tcp] [..192.168.180.2][41223] -> [..216.58.208.46][..443] [TLS][Google][Web][Safe][]
- RISK: Obsolete TLS (v1.1 or older)
+ RISK: Obsolete TLS (v1.1 or older), Unidirectional Traffic
detected: [.....6] [ip4][..tcp] [..192.168.180.2][39263] -> [..23.21.230.199][..443] [TLS.Crashlytics][AmazonAWS][DataTransfer][Acceptable][settings.crashlytics.com]
- RISK: Obsolete TLS (v1.1 or older)
+ RISK: Obsolete TLS (v1.1 or older), Unidirectional Traffic
new: [....11] [ip4][..udp] [..192.168.180.2][.3621] -> [........8.8.8.8][...53]
detected: [....11] [ip4][..udp] [..192.168.180.2][.3621] -> [........8.8.8.8][...53] [DNS][Google][Network][Acceptable][xmpp.device06.eu01.capptain.com]
+ RISK: Unidirectional Traffic
new: [....12] [ip4][..tcp] [..192.168.180.2][46166] -> [.137.135.131.52][.5122]
new: [....13] [ip4][..tcp] [..192.168.180.2][49881] -> [.178.248.208.54][...80]
new: [....14] [ip4][..udp] [..192.168.180.2][.2589] -> [........8.8.8.8][...53]
detected: [....14] [ip4][..udp] [..192.168.180.2][.2589] -> [........8.8.8.8][...53] [DNS.OCS][Google][Network][Fun][ocs.labgency.ws]
+ RISK: Unidirectional Traffic
detected: [....13] [ip4][..tcp] [..192.168.180.2][49881] -> [.178.248.208.54][...80] [HTTP.OCS][OCS][Media][Fun][ocu03.labgency.ws]
+ RISK: Unidirectional Traffic
new: [....15] [ip4][..tcp] [..192.168.180.2][36680] -> [.178.248.208.54][..443]
detected: [....15] [ip4][..tcp] [..192.168.180.2][36680] -> [.178.248.208.54][..443] [TLS.OCS][OCS][Media][Fun][ocs.labgency.ws]
- RISK: Obsolete TLS (v1.1 or older)
+ RISK: Obsolete TLS (v1.1 or older), Unidirectional Traffic
analyse: [....13] [ip4][..tcp] [..192.168.180.2][49881] -> [.178.248.208.54][...80] [HTTP.OCS][OCS][Media][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.929| 0.088| 0.173| 29794.175| 3.500]
@@ -44,12 +54,13 @@
[ENTROPIES...: 4.5,5.1,6.0,5.1,5.2,5.2,5.2,5.2,5.3,5.2,5.2,5.2,5.2,5.1,5.2,5.2,5.1,5.2,5.1,5.1,5.0,5.1,5.2,5.1,5.2,5.1,5.2,5.2,5.2,5.0,5.1,5.1]
new: [....16] [ip4][..tcp] [..192.168.180.2][32946] -> [.64.233.184.188][..443]
detected: [....16] [ip4][..tcp] [..192.168.180.2][32946] -> [.64.233.184.188][..443] [TLS.GoogleServices][Google][Web][Acceptable][mtalk.google.com]
- RISK: TLS (probably) Not Carrying HTTPS
+ RISK: TLS (probably) Not Carrying HTTPS, Unidirectional Traffic
new: [....17] [ip4][..udp] [..192.168.180.2][11793] -> [........8.8.8.8][...53]
detected: [....17] [ip4][..udp] [..192.168.180.2][11793] -> [........8.8.8.8][...53] [DNS.GoogleServices][Google][Network][Acceptable][play.googleapis.com]
+ RISK: Unidirectional Traffic
new: [....18] [ip4][..tcp] [..192.168.180.2][47803] -> [..64.233.166.95][..443]
detected: [....18] [ip4][..tcp] [..192.168.180.2][47803] -> [..64.233.166.95][..443] [TLS][Google][Web][Safe][]
- RISK: Obsolete TLS (v1.1 or older)
+ RISK: Obsolete TLS (v1.1 or older), Unidirectional Traffic
update: [....14] [ip4][..udp] [..192.168.180.2][.2589] -> [........8.8.8.8][...53]
update: [.....3] [ip4][..udp] [..192.168.180.2][40097] -> [........8.8.8.8][...53]
update: [.....4] [ip4][..udp] [..192.168.180.2][.1291] -> [........8.8.8.8][...53]
@@ -58,8 +69,10 @@
update: [.....9] [ip4][..udp] [..192.168.180.2][48770] -> [........8.8.8.8][...53]
new: [....19] [ip4][..udp] [..192.168.180.2][24245] -> [........8.8.8.8][...53]
detected: [....19] [ip4][..udp] [..192.168.180.2][24245] -> [........8.8.8.8][...53] [DNS.OCS][Google][Network][Fun][www.ocs.fr]
+ RISK: Unidirectional Traffic
new: [....20] [ip4][..tcp] [..192.168.180.2][42590] -> [178.248.208.210][...80]
detected: [....20] [ip4][..tcp] [..192.168.180.2][42590] -> [178.248.208.210][...80] [HTTP.OCS][OCS][Media][Fun][www.ocs.fr]
+ RISK: HTTP Susp User-Agent, Unidirectional Traffic
analyse: [....20] [ip4][..tcp] [..192.168.180.2][42590] -> [178.248.208.210][...80] [HTTP.OCS][OCS][Media][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.079| 0.027| 0.030| 875.550| 4.000]
@@ -72,27 +85,31 @@
[ENTROPIES...: 4.6,5.0,5.9,5.2,5.1,5.2,5.2,5.2,5.2,5.2,5.2,5.2,5.3,5.2,5.3,5.3,5.4,5.3,5.3,5.3,5.3,5.2,5.2,5.2,5.1,5.2,5.2,5.1,5.2,5.2,5.3,5.3]
update: [....17] [ip4][..udp] [..192.168.180.2][11793] -> [........8.8.8.8][...53]
idle: [....20] [ip4][..tcp] [..192.168.180.2][42590] -> [178.248.208.210][...80] [HTTP.OCS][OCS][Media][Fun]
+ RISK: HTTP Susp User-Agent, Unidirectional Traffic
end: [.....8] [ip4][..tcp] [..192.168.180.2][44959] -> [137.135.129.206][...80]
- not-detected: [....12] [ip4][..tcp] [..192.168.180.2][46166] -> [.137.135.131.52][.5122] [Unknown][Azure][Unrated]
+ guessed: [....12] [ip4][..tcp] [..192.168.180.2][46166] -> [.137.135.131.52][.5122] [Azure][Azure][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....12] [ip4][..tcp] [..192.168.180.2][46166] -> [.137.135.131.52][.5122]
- not-detected: [.....1] [ip4][..tcp] [..192.168.180.2][47699] -> [.64.233.184.188][.5228] [Unknown][Google][Unrated]
+ guessed: [.....1] [ip4][..tcp] [..192.168.180.2][47699] -> [.64.233.184.188][.5228] [Google][Google][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..tcp] [..192.168.180.2][47699] -> [.64.233.184.188][.5228]
end: [.....6] [ip4][..tcp] [..192.168.180.2][39263] -> [..23.21.230.199][..443] [TLS.Crashlytics][AmazonAWS][DataTransfer][Acceptable]
- RISK: Obsolete TLS (v1.1 or older)
+ RISK: Obsolete TLS (v1.1 or older), Unidirectional Traffic
end: [.....7] [ip4][..tcp] [..192.168.180.2][53356] -> [137.135.129.206][...80]
idle: [....15] [ip4][..tcp] [..192.168.180.2][36680] -> [.178.248.208.54][..443] [TLS.OCS][OCS][Media][Fun]
- RISK: Obsolete TLS (v1.1 or older)
+ RISK: Obsolete TLS (v1.1 or older), Unidirectional Traffic
idle: [....14] [ip4][..udp] [..192.168.180.2][.2589] -> [........8.8.8.8][...53]
idle: [....16] [ip4][..tcp] [..192.168.180.2][32946] -> [.64.233.184.188][..443] [TLS.GoogleServices][Google][Web][Acceptable]
- RISK: TLS (probably) Not Carrying HTTPS
+ RISK: TLS (probably) Not Carrying HTTPS, Unidirectional Traffic
end: [....13] [ip4][..tcp] [..192.168.180.2][49881] -> [.178.248.208.54][...80] [HTTP.OCS][OCS][Media][Fun]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [..192.168.180.2][40097] -> [........8.8.8.8][...53]
idle: [.....4] [ip4][..udp] [..192.168.180.2][.1291] -> [........8.8.8.8][...53]
idle: [.....5] [ip4][..tcp] [..192.168.180.2][48250] -> [.178.248.208.54][...80]
end: [....10] [ip4][..tcp] [..192.168.180.2][41223] -> [..216.58.208.46][..443] [TLS][Google][Web][Safe]
- RISK: Obsolete TLS (v1.1 or older)
+ RISK: Obsolete TLS (v1.1 or older), Unidirectional Traffic
idle: [....18] [ip4][..tcp] [..192.168.180.2][47803] -> [..64.233.166.95][..443] [TLS][Google][Web][Safe]
- RISK: Obsolete TLS (v1.1 or older)
+ RISK: Obsolete TLS (v1.1 or older), Unidirectional Traffic
idle: [....17] [ip4][..udp] [..192.168.180.2][11793] -> [........8.8.8.8][...53]
idle: [....11] [ip4][..udp] [..192.168.180.2][.3621] -> [........8.8.8.8][...53]
idle: [.....2] [ip4][..udp] [..192.168.180.2][38472] -> [........8.8.8.8][...53]
diff --git a/test/results/flow-info/ocsp.pcapng.out b/test/results/flow-info/default/ocsp.pcapng.out
index fe43c9038..3707facb1 100644
--- a/test/results/flow-info/ocsp.pcapng.out
+++ b/test/results/flow-info/default/ocsp.pcapng.out
@@ -6,11 +6,11 @@
DAEMON-EVENT: [Processed: 23 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....2] [ip4][..tcp] [..192.168.1.128][54154] -> [.142.250.184.99][...80]
- detected: [.....2] [ip4][..tcp] [..192.168.1.128][54154] -> [.142.250.184.99][...80] [HTTP.OCSP][Google][Cloud][Safe][ocsp.pki.goog]
- end: [.....1] [ip4][..tcp] [..192.168.1.227][49813] -> [.109.70.240.130][...80] [HTTP][Unknown][Web][Acceptable]
+ detected: [.....2] [ip4][..tcp] [..192.168.1.128][54154] -> [.142.250.184.99][...80] [HTTP.OCSP][Google][Network][Safe][ocsp.pki.goog]
+ end: [.....1] [ip4][..tcp] [..192.168.1.227][49813] -> [.109.70.240.130][...80] [HTTP.OCSP][Unknown][Web][Safe]
new: [.....3] [ip4][..tcp] [..192.168.1.128][43728] -> [..92.122.95.235][...80]
detected: [.....3] [ip4][..tcp] [..192.168.1.128][43728] -> [..92.122.95.235][...80] [HTTP.OCSP][Unknown][Network][Safe][r3.o.lencr.org]
- analyse: [.....2] [ip4][..tcp] [..192.168.1.128][54154] -> [.142.250.184.99][...80] [HTTP.OCSP][Google][Cloud][Safe]
+ analyse: [.....2] [ip4][..tcp] [..192.168.1.128][54154] -> [.142.250.184.99][...80] [HTTP.OCSP][Google][Network][Safe]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 10.243| 7.287| 4.408| 19431782.613| 4.500]
[PKTLEN......: 104.000| 806.000| 173.000| 189.100| 35745.500| 4.500]
@@ -35,7 +35,7 @@
new: [.....5] [ip4][..tcp] [..192.168.1.128][34340] -> [.151.139.128.14][...80]
detected: [.....5] [ip4][..tcp] [..192.168.1.128][34340] -> [.151.139.128.14][...80] [HTTP.OCSP][Unknown][Network][Safe][ocsp.usertrust.com]
end: [.....3] [ip4][..tcp] [..192.168.1.128][43728] -> [..92.122.95.235][...80] [HTTP.OCSP][Unknown][Network][Safe]
- end: [.....2] [ip4][..tcp] [..192.168.1.128][54154] -> [.142.250.184.99][...80] [HTTP.OCSP][Google][Cloud][Safe]
+ end: [.....2] [ip4][..tcp] [..192.168.1.128][54154] -> [.142.250.184.99][...80] [HTTP.OCSP][Google][Network][Safe]
DAEMON-EVENT: [Processed: 157 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 5|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....6] [ip4][..tcp] [..192.168.1.128][47904] -> [..93.184.220.29][...80]
diff --git a/test/results/flow-info/default/oicq.pcap.out b/test/results/flow-info/default/oicq.pcap.out
new file mode 100644
index 000000000..9978ac6e5
--- /dev/null
+++ b/test/results/flow-info/default/oicq.pcap.out
@@ -0,0 +1,203 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..udp] [..90.147.69.210][60213] -> [....58.60.10.45][.8000]
+ detected: [.....1] [ip4][..udp] [..90.147.69.210][60213] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ new: [.....2] [ip4][..udp] [..90.147.69.210][51884] -> [....58.60.10.45][.8000]
+ detected: [.....2] [ip4][..udp] [..90.147.69.210][51884] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [.....1] [ip4][..udp] [..90.147.69.210][60213] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 2 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 2|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....3] [ip4][..udp] [..90.147.69.210][52991] -> [....58.60.10.45][.8000]
+ detected: [.....3] [ip4][..udp] [..90.147.69.210][52991] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [.....2] [ip4][..udp] [..90.147.69.210][51884] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 3 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 3|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....4] [ip4][..udp] [..90.147.69.210][60288] -> [....58.60.10.45][.8000]
+ detected: [.....4] [ip4][..udp] [..90.147.69.210][60288] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [.....3] [ip4][..udp] [..90.147.69.210][52991] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ new: [.....5] [ip4][..udp] [..90.147.69.210][56476] -> [....58.60.10.45][.8000]
+ detected: [.....5] [ip4][..udp] [..90.147.69.210][56476] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [.....4] [ip4][..udp] [..90.147.69.210][60288] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 5 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 5|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....6] [ip4][..udp] [..90.147.69.210][63120] -> [....58.60.10.45][.8000]
+ detected: [.....6] [ip4][..udp] [..90.147.69.210][63120] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [.....5] [ip4][..udp] [..90.147.69.210][56476] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 6 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 6|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....7] [ip4][..udp] [..90.147.69.210][65276] -> [....58.60.10.45][.8000]
+ detected: [.....7] [ip4][..udp] [..90.147.69.210][65276] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [.....6] [ip4][..udp] [..90.147.69.210][63120] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ new: [.....8] [ip4][..udp] [..90.147.69.210][64916] -> [....58.60.10.45][.8000]
+ detected: [.....8] [ip4][..udp] [..90.147.69.210][64916] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [.....7] [ip4][..udp] [..90.147.69.210][65276] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 8 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 8|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....9] [ip4][..udp] [..90.147.69.210][49340] -> [....58.60.10.45][.8000]
+ detected: [.....9] [ip4][..udp] [..90.147.69.210][49340] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [.....8] [ip4][..udp] [..90.147.69.210][64916] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 9 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 9|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [....10] [ip4][..udp] [..90.147.69.210][58434] -> [....58.60.10.45][.8000]
+ detected: [....10] [ip4][..udp] [..90.147.69.210][58434] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [.....9] [ip4][..udp] [..90.147.69.210][49340] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ new: [....11] [ip4][..udp] [..90.147.69.210][55338] -> [....58.60.10.45][.8000]
+ detected: [....11] [ip4][..udp] [..90.147.69.210][55338] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....10] [ip4][..udp] [..90.147.69.210][58434] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 11 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 11|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [....12] [ip4][..udp] [..90.147.69.210][54233] -> [....58.60.10.45][.8000]
+ detected: [....12] [ip4][..udp] [..90.147.69.210][54233] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....11] [ip4][..udp] [..90.147.69.210][55338] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 12 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 12|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [....13] [ip4][..udp] [..90.147.69.210][55774] -> [....58.60.10.45][.8000]
+ detected: [....13] [ip4][..udp] [..90.147.69.210][55774] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....12] [ip4][..udp] [..90.147.69.210][54233] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ new: [....14] [ip4][..udp] [..90.147.69.210][52663] -> [....58.60.10.45][.8000]
+ detected: [....14] [ip4][..udp] [..90.147.69.210][52663] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....13] [ip4][..udp] [..90.147.69.210][55774] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 14 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 14|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [....15] [ip4][..udp] [..90.147.69.210][58797] -> [....58.60.10.45][.8000]
+ detected: [....15] [ip4][..udp] [..90.147.69.210][58797] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....14] [ip4][..udp] [..90.147.69.210][52663] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 15 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 15|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [....16] [ip4][..udp] [..90.147.69.210][50315] -> [....58.60.10.45][.8000]
+ detected: [....16] [ip4][..udp] [..90.147.69.210][50315] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....15] [ip4][..udp] [..90.147.69.210][58797] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ new: [....17] [ip4][..udp] [..90.147.69.210][65163] -> [....58.60.10.45][.8000]
+ detected: [....17] [ip4][..udp] [..90.147.69.210][65163] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....16] [ip4][..udp] [..90.147.69.210][50315] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 17 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 17|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [....18] [ip4][..udp] [..90.147.69.210][59802] -> [....58.60.10.45][.8000]
+ detected: [....18] [ip4][..udp] [..90.147.69.210][59802] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....17] [ip4][..udp] [..90.147.69.210][65163] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ new: [....19] [ip4][..udp] [..90.147.69.210][60434] -> [....58.60.10.45][.8000]
+ detected: [....19] [ip4][..udp] [..90.147.69.210][60434] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....18] [ip4][..udp] [..90.147.69.210][59802] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 19 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 19|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [....20] [ip4][..udp] [..90.147.69.210][60436] -> [....58.60.10.45][.8000]
+ detected: [....20] [ip4][..udp] [..90.147.69.210][60436] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ update: [....19] [ip4][..udp] [..90.147.69.210][60434] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ new: [....21] [ip4][..udp] [..90.147.69.210][57677] -> [....58.60.10.45][.8000]
+ detected: [....21] [ip4][..udp] [..90.147.69.210][57677] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ update: [....19] [ip4][..udp] [..90.147.69.210][60434] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ update: [....20] [ip4][..udp] [..90.147.69.210][60436] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ new: [....22] [ip4][..udp] [..90.147.69.210][61686] -> [....58.60.10.45][.8000]
+ detected: [....22] [ip4][..udp] [..90.147.69.210][61686] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....19] [ip4][..udp] [..90.147.69.210][60434] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ update: [....21] [ip4][..udp] [..90.147.69.210][57677] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ update: [....20] [ip4][..udp] [..90.147.69.210][60436] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ new: [....23] [ip4][..udp] [..90.147.69.210][54462] -> [....58.60.10.45][.8000]
+ detected: [....23] [ip4][..udp] [..90.147.69.210][54462] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....20] [ip4][..udp] [..90.147.69.210][60436] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ update: [....21] [ip4][..udp] [..90.147.69.210][57677] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ update: [....22] [ip4][..udp] [..90.147.69.210][61686] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ new: [....24] [ip4][..udp] [..90.147.69.210][64415] -> [....58.60.10.45][.8000]
+ detected: [....24] [ip4][..udp] [..90.147.69.210][64415] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....21] [ip4][..udp] [..90.147.69.210][57677] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....22] [ip4][..udp] [..90.147.69.210][61686] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ update: [....23] [ip4][..udp] [..90.147.69.210][54462] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ new: [....25] [ip4][..udp] [..90.147.69.210][57872] -> [....58.60.10.45][.8000]
+ detected: [....25] [ip4][..udp] [..90.147.69.210][57872] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....23] [ip4][..udp] [..90.147.69.210][54462] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ update: [....24] [ip4][..udp] [..90.147.69.210][64415] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ new: [....26] [ip4][..udp] [..90.147.69.210][59394] -> [....58.60.10.45][.8000]
+ detected: [....26] [ip4][..udp] [..90.147.69.210][59394] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....24] [ip4][..udp] [..90.147.69.210][64415] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ update: [....25] [ip4][..udp] [..90.147.69.210][57872] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ new: [....27] [ip4][..udp] [..90.147.69.210][49199] -> [....58.60.10.45][.8000]
+ detected: [....27] [ip4][..udp] [..90.147.69.210][49199] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ update: [....25] [ip4][..udp] [..90.147.69.210][57872] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ update: [....26] [ip4][..udp] [..90.147.69.210][59394] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 27 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 3 / 27|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 12]
+ new: [....28] [ip4][..udp] [..90.147.69.210][61163] -> [....58.60.10.45][.8000]
+ detected: [....28] [ip4][..udp] [..90.147.69.210][61163] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....25] [ip4][..udp] [..90.147.69.210][57872] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ update: [....26] [ip4][..udp] [..90.147.69.210][59394] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ update: [....27] [ip4][..udp] [..90.147.69.210][49199] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ new: [....29] [ip4][..udp] [..90.147.69.210][64420] -> [....58.60.10.45][.8000]
+ detected: [....29] [ip4][..udp] [..90.147.69.210][64420] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....29] [ip4][..udp] [..90.147.69.210][64420] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....28] [ip4][..udp] [..90.147.69.210][61163] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....26] [ip4][..udp] [..90.147.69.210][59394] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....27] [ip4][..udp] [..90.147.69.210][49199] -> [....58.60.10.45][.8000] [OICQ][Unknown][Chat][Acceptable]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/default/ookla.pcap.out b/test/results/flow-info/default/ookla.pcap.out
new file mode 100644
index 000000000..fe801e670
--- /dev/null
+++ b/test/results/flow-info/default/ookla.pcap.out
@@ -0,0 +1,30 @@
+ DAEMON-EVENT: init
+ new: [.....1] [ip4][..tcp] [..192.168.1.192][37790] -> [185.157.229.246][.8080]
+ detected: [.....1] [ip4][..tcp] [..192.168.1.192][37790] -> [185.157.229.246][.8080] [Ookla][Unknown][Network][Safe]
+ new: [.....2] [ip4][..tcp] [..192.168.1.192][51156] -> [..89.96.108.170][.8080]
+ DAEMON-EVENT: [Processed: 20 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 2 / 2|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....3] [ip4][..tcp] [....192.168.1.7][51207] -> [..46.44.253.187][...80]
+ detected: [.....3] [ip4][..tcp] [....192.168.1.7][51207] -> [..46.44.253.187][...80] [HTTP.Ookla][Unknown][Network][Safe][massarosa-1.speedtest.welcomeitalia.it]
+ new: [.....4] [ip4][..tcp] [....192.168.1.7][51215] -> [..46.44.253.187][.8080]
+ detected: [.....4] [ip4][..tcp] [....192.168.1.7][51215] -> [..46.44.253.187][.8080] [Ookla][Unknown][Network][Safe]
+ guessed: [.....2] [ip4][..tcp] [..192.168.1.192][51156] -> [..89.96.108.170][.8080] [Ookla][Unknown][Network][Safe]
+ idle: [.....2] [ip4][..tcp] [..192.168.1.192][51156] -> [..89.96.108.170][.8080]
+ idle: [.....1] [ip4][..tcp] [..192.168.1.192][37790] -> [185.157.229.246][.8080] [Ookla][Unknown][Network][Safe]
+ DAEMON-EVENT: [Processed: 70 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 2 / 4|skipped: 0|!detected: 0|guessed: 1|detection-updates: 0|updates: 0]
+ new: [.....5] [ip4][..tcp] [..192.168.1.128][48854] -> [..104.16.209.12][..443]
+ detected: [.....5] [ip4][..tcp] [..192.168.1.128][48854] -> [..104.16.209.12][..443] [TLS.Ookla][Cloudflare][Network][Safe][www.speedtest.net]
+ detection-update: [.....5] [ip4][..tcp] [..192.168.1.128][48854] -> [..104.16.209.12][..443] [TLS.Ookla][Cloudflare][Network][Safe][www.speedtest.net]
+ idle: [.....4] [ip4][..tcp] [....192.168.1.7][51215] -> [..46.44.253.187][.8080] [Ookla][Unknown][Network][Safe]
+ end: [.....3] [ip4][..tcp] [....192.168.1.7][51207] -> [..46.44.253.187][...80] [HTTP.Ookla][Unknown][Network][Safe]
+ RISK: HTTP Obsolete Server
+ new: [.....6] [ip4][..tcp] [..192.168.1.128][35830] -> [..89.96.108.170][.8080]
+ detected: [.....6] [ip4][..tcp] [..192.168.1.128][35830] -> [..89.96.108.170][.8080] [TLS][Unknown][Web][Safe][spd-pub-mi-01-01.fastwebnet.it]
+ RISK: Known Proto on Non Std Port
+ detection-update: [.....6] [ip4][..tcp] [..192.168.1.128][35830] -> [..89.96.108.170][.8080] [TLS][Unknown][Web][Safe][spd-pub-mi-01-01.fastwebnet.it]
+ RISK: Known Proto on Non Std Port
+ detection-update: [.....6] [ip4][..tcp] [..192.168.1.128][35830] -> [..89.96.108.170][.8080] [TLS.Ookla][Unknown][Web][Safe][spd-pub-mi-01-01.fastwebnet.it]
+ idle: [.....5] [ip4][..tcp] [..192.168.1.128][48854] -> [..104.16.209.12][..443]
+ idle: [.....6] [ip4][..tcp] [..192.168.1.128][35830] -> [..89.96.108.170][.8080] [TLS.Ookla][Unknown][Web][Safe]
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/openvpn.pcap.out b/test/results/flow-info/default/openvpn.pcap.out
index c336c5bcd..c336c5bcd 100644
--- a/test/results/flow-info/openvpn.pcap.out
+++ b/test/results/flow-info/default/openvpn.pcap.out
diff --git a/test/results/flow-info/oracle12.pcapng.out b/test/results/flow-info/default/oracle12.pcapng.out
index 9054ee68a..9054ee68a 100644
--- a/test/results/flow-info/oracle12.pcapng.out
+++ b/test/results/flow-info/default/oracle12.pcapng.out
diff --git a/test/results/flow-info/os_detected.pcapng.out b/test/results/flow-info/default/os_detected.pcapng.out
index acc1e6ee5..d39a14187 100644
--- a/test/results/flow-info/os_detected.pcapng.out
+++ b/test/results/flow-info/default/os_detected.pcapng.out
@@ -3,7 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..192.168.1.128][39821] -> [........8.8.8.8][..443]
detected: [.....1] [ip4][..udp] [..192.168.1.128][39821] -> [........8.8.8.8][..443] [QUIC][Google][Web][Acceptable][]
- RISK: Missing SNI TLS Extn
+ RISK: Missing SNI TLS Extn, Unidirectional Traffic
idle: [.....1] [ip4][..udp] [..192.168.1.128][39821] -> [........8.8.8.8][..443] [QUIC][Google][Web][Acceptable]
- RISK: Missing SNI TLS Extn
+ RISK: Missing SNI TLS Extn, Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/ospfv2_add_new_prefix.pcap.out b/test/results/flow-info/default/ospfv2_add_new_prefix.pcap.out
index 6bc1cb4c4..d52517559 100644
--- a/test/results/flow-info/ospfv2_add_new_prefix.pcap.out
+++ b/test/results/flow-info/default/ospfv2_add_new_prefix.pcap.out
@@ -3,5 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][...89] [.....10.1.10.10] -> [......10.1.10.1]
detected: [.....1] [ip4][...89] [.....10.1.10.10] -> [......10.1.10.1] [OSPF][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][...89] [.....10.1.10.10] -> [......10.1.10.1] [OSPF][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/default/ossfuzz_seed_fake_traces_1.pcapng.out b/test/results/flow-info/default/ossfuzz_seed_fake_traces_1.pcapng.out
new file mode 100644
index 000000000..28c187ad6
--- /dev/null
+++ b/test/results/flow-info/default/ossfuzz_seed_fake_traces_1.pcapng.out
@@ -0,0 +1,63 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..udp] [......127.0.0.1][....1] -> [......127.0.0.1][....2]
+ detected: [.....1] [ip4][..udp] [......127.0.0.1][....1] -> [......127.0.0.1][....2] [HalfLife2][Unknown][Game][Fun]
+ DAEMON-EVENT: [Processed: 2 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....2] [ip4][..udp] [......127.0.0.1][.1119] -> [......127.0.0.1][.1120]
+ idle: [.....1] [ip4][..udp] [......127.0.0.1][....1] -> [......127.0.0.1][....2] [HalfLife2][Unknown][Game][Fun]
+ update: [.....2] [ip4][..udp] [......127.0.0.1][.1119] -> [......127.0.0.1][.1120]
+ update: [.....2] [ip4][..udp] [......127.0.0.1][.1119] -> [......127.0.0.1][.1120]
+ detected: [.....2] [ip4][..udp] [......127.0.0.1][.1119] -> [......127.0.0.1][.1120] [Starcraft][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 10 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 2|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 2]
+ new: [.....3] [ip4][..tcp] [..192.168.1.128][....1] -> [.12.129.206.130][.1119] [MIDSTREAM]
+ detected: [.....3] [ip4][..tcp] [..192.168.1.128][....1] -> [.12.129.206.130][.1119] [Starcraft][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic, TCP Connection Issues
+ idle: [.....2] [ip4][..udp] [......127.0.0.1][.1119] -> [......127.0.0.1][.1120] [Starcraft][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ new: [.....4] [ip4][..tcp] [..192.168.1.128][....1] -> [121.254.200.130][.1119] [MIDSTREAM]
+ detected: [.....4] [ip4][..tcp] [..192.168.1.128][....1] -> [121.254.200.130][.1119] [Starcraft][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic, TCP Connection Issues
+ new: [.....5] [ip4][..tcp] [..192.168.1.128][....1] -> [....202.9.66.76][.1119] [MIDSTREAM]
+ detected: [.....5] [ip4][..tcp] [..192.168.1.128][....1] -> [....202.9.66.76][.1119] [Starcraft][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic, TCP Connection Issues
+ new: [.....6] [ip4][..tcp] [..192.168.1.128][....1] -> [.12.129.236.254][.1119] [MIDSTREAM]
+ detected: [.....6] [ip4][..tcp] [..192.168.1.128][....1] -> [.12.129.236.254][.1119] [Starcraft][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic, TCP Connection Issues
+ DAEMON-EVENT: [Processed: 14 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 4 / 6|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 2]
+ new: [.....7] [ip4][..udp] [......127.0.0.1][..100] -> [......127.0.0.1][..200]
+ idle: [.....4] [ip4][..tcp] [..192.168.1.128][....1] -> [121.254.200.130][.1119] [Starcraft][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic, TCP Connection Issues
+ idle: [.....6] [ip4][..tcp] [..192.168.1.128][....1] -> [.12.129.236.254][.1119] [Starcraft][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic, TCP Connection Issues
+ idle: [.....3] [ip4][..tcp] [..192.168.1.128][....1] -> [.12.129.206.130][.1119] [Starcraft][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic, TCP Connection Issues
+ idle: [.....5] [ip4][..tcp] [..192.168.1.128][....1] -> [....202.9.66.76][.1119] [Starcraft][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic, TCP Connection Issues
+ detected: [.....7] [ip4][..udp] [......127.0.0.1][..100] -> [......127.0.0.1][..200] [Steam][Unknown][Game][Fun]
+ update: [.....7] [ip4][..udp] [......127.0.0.1][..100] -> [......127.0.0.1][..200] [Steam][Unknown][Game][Fun]
+ DAEMON-EVENT: [Processed: 16 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 7|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 3]
+ new: [.....8] [ip4][..udp] [......127.0.0.1][17788] -> [......127.0.0.1][17788]
+ detected: [.....8] [ip4][..udp] [......127.0.0.1][17788] -> [......127.0.0.1][17788] [PPStream][Unknown][Streaming][Fun]
+ RISK: Unidirectional Traffic
+ idle: [.....7] [ip4][..udp] [......127.0.0.1][..100] -> [......127.0.0.1][..200] [Steam][Unknown][Game][Fun]
+ DAEMON-EVENT: [Processed: 17 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 8|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 3]
+ new: [.....9] [ip4][..tcp] [..192.168.1.128][....1] -> [........1.2.3.4][...10] [MIDSTREAM]
+ detected: [.....9] [ip4][..tcp] [..192.168.1.128][....1] -> [........1.2.3.4][...10] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic, TCP Connection Issues
+ idle: [.....8] [ip4][..udp] [......127.0.0.1][17788] -> [......127.0.0.1][17788] [PPStream][Unknown][Streaming][Fun]
+ RISK: Unidirectional Traffic
+ new: [....10] [ip4][..tcp] [..192.168.1.128][....1] -> [........1.2.3.4][...11] [MIDSTREAM]
+ detected: [....10] [ip4][..tcp] [..192.168.1.128][....1] -> [........1.2.3.4][...11] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic, TCP Connection Issues
+ idle: [.....9] [ip4][..tcp] [..192.168.1.128][....1] -> [........1.2.3.4][...10] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic, TCP Connection Issues
+ idle: [....10] [ip4][..tcp] [..192.168.1.128][....1] -> [........1.2.3.4][...11] [Gnutella][Unknown][Download][Potentially Dangerous]
+ RISK: Unsafe Protocol, Unidirectional Traffic, TCP Connection Issues
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/default/ossfuzz_seed_fake_traces_2.pcapng.out b/test/results/flow-info/default/ossfuzz_seed_fake_traces_2.pcapng.out
new file mode 100644
index 000000000..6f41be32b
--- /dev/null
+++ b/test/results/flow-info/default/ossfuzz_seed_fake_traces_2.pcapng.out
@@ -0,0 +1,18 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..tcp] [.172.26.235.166][55630] -> [...172.30.92.62][..119]
+ new: [.....2] [ip4][..tcp] [.192.168.190.20][55630] -> [..192.168.190.5][..119]
+ detected: [.....1] [ip4][..tcp] [.172.26.235.166][55630] -> [...172.30.92.62][..119] [Usenet][Unknown][Web][Acceptable]
+ detected: [.....2] [ip4][..tcp] [.192.168.190.20][55630] -> [..192.168.190.5][..119] [Usenet][Unknown][Web][Acceptable]
+ DAEMON-EVENT: [Processed: 12 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 2 / 2|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....3] [ip4][..udp] [..10.147.205.42][43462] -> [..10.45.123.132][51820]
+ new: [.....4] [ip4][..udp] [.......10.9.0.1][43462] -> [.......10.9.0.2][51820]
+ detected: [.....4] [ip4][..udp] [.......10.9.0.1][43462] -> [.......10.9.0.2][51820] [WireGuard][Unknown][VPN][Acceptable]
+ idle: [.....1] [ip4][..tcp] [.172.26.235.166][55630] -> [...172.30.92.62][..119] [Usenet][Unknown][Web][Acceptable]
+ idle: [.....2] [ip4][..tcp] [.192.168.190.20][55630] -> [..192.168.190.5][..119] [Usenet][Unknown][Web][Acceptable]
+ guessed: [.....3] [ip4][..udp] [..10.147.205.42][43462] -> [..10.45.123.132][51820] [WireGuard][Unknown][VPN][Acceptable]
+ idle: [.....3] [ip4][..udp] [..10.147.205.42][43462] -> [..10.45.123.132][51820]
+ idle: [.....4] [ip4][..udp] [.......10.9.0.1][43462] -> [.......10.9.0.2][51820] [WireGuard][Unknown][VPN][Acceptable]
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/default/ossfuzz_seed_fake_traces_3.pcapng.out b/test/results/flow-info/default/ossfuzz_seed_fake_traces_3.pcapng.out
new file mode 100644
index 000000000..770c67685
--- /dev/null
+++ b/test/results/flow-info/default/ossfuzz_seed_fake_traces_3.pcapng.out
@@ -0,0 +1,7 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..tcp] [.192.168.16.173][60546] -> [..93.184.216.34][...80]
+ detected: [.....1] [ip4][..tcp] [.192.168.16.173][60546] -> [..93.184.216.34][...80] [MapleStory][Edgecast][Game][Fun]
+ idle: [.....1] [ip4][..tcp] [.192.168.16.173][60546] -> [..93.184.216.34][...80]
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/default/ossfuzz_seed_fake_traces_4.pcapng.out b/test/results/flow-info/default/ossfuzz_seed_fake_traces_4.pcapng.out
new file mode 100644
index 000000000..fbe3a06c5
--- /dev/null
+++ b/test/results/flow-info/default/ossfuzz_seed_fake_traces_4.pcapng.out
@@ -0,0 +1,7 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..udp] [......127.0.0.1][..100] -> [......127.0.0.1][..200]
+ not-detected: [.....1] [ip4][..udp] [......127.0.0.1][..100] -> [......127.0.0.1][..200] [Unknown][Unknown][Unrated]
+ idle: [.....1] [ip4][..udp] [......127.0.0.1][..100] -> [......127.0.0.1][..200]
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/pgm.pcap.out b/test/results/flow-info/default/pgm.pcap.out
index cf260a764..cf260a764 100644
--- a/test/results/flow-info/pgm.pcap.out
+++ b/test/results/flow-info/default/pgm.pcap.out
diff --git a/test/results/flow-info/pgsql.pcap.out b/test/results/flow-info/default/pgsql.pcap.out
index a3a6c4476..a3a6c4476 100644
--- a/test/results/flow-info/pgsql.pcap.out
+++ b/test/results/flow-info/default/pgsql.pcap.out
diff --git a/test/results/flow-info/pim.pcap.out b/test/results/flow-info/default/pim.pcap.out
index fea5d9444..fea5d9444 100644
--- a/test/results/flow-info/pim.pcap.out
+++ b/test/results/flow-info/default/pim.pcap.out
diff --git a/test/results/flow-info/pinterest.pcap.out b/test/results/flow-info/default/pinterest.pcap.out
index 44df58e28..cf827d64d 100644
--- a/test/results/flow-info/pinterest.pcap.out
+++ b/test/results/flow-info/default/pinterest.pcap.out
@@ -120,16 +120,6 @@
detected: [....19] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][51292] -> [.........2a03:2880:f030:13:face:b00c::3][..443] [TLS.Facebook][Unknown][SocialNetwork][Fun][connect.facebook.net]
detection-update: [....18] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][54416] -> [...............2a00:1450:4007:806::200e][..443] [TLS.Google][Unknown][Web][Acceptable][apis.google.com]
detection-update: [....19] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][51292] -> [.........2a03:2880:f030:13:face:b00c::3][..443] [TLS.Facebook][Unknown][SocialNetwork][Fun][connect.facebook.net]
- analyse: [....18] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][54416] -> [...............2a00:1450:4007:806::200e][..443] [TLS.Google][Unknown][Web][Acceptable]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.079| 0.013| 0.022| 493.391| 3.300]
- [PKTLEN......: 72.000| 1280.000| 422.100| 496.100| 246097.600| 4.100]
- [BINS(c->s)..: 12,0,2,0,0,0,0,0,1,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 6,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,7,0,0,0,0,0,0,0,0,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,1,1,0,0,0,0,0,0,1,1,1,1,0,0,1,0,1,1,1,1,0,0,0,0,1,1]
- [IATS(ms)....: 51.6,51.7,0.6,28.0,20.5,0.0,0.0,47.7,0.0,0.0,3.3,0.2,0.1,70.0,0.0,0.0,13.2,79.5,0.3,8.7,8.4,16.7,0.0,0.0,0.0,16.7,0.0,0.0,0.0,0.2,0.0]
- [PKTLENS.....: 80,80,72,589,72,1280,1280,312,72,72,72,136,164,333,72,72,72,652,72,103,103,72,988,1280,1280,1280,72,72,72,72,1280,1280]
- [ENTROPIES...: 4.9,5.2,5.2,4.4,5.1,7.8,7.8,7.2,5.2,5.2,5.2,6.2,6.7,7.2,5.1,5.1,5.1,7.6,5.2,5.8,5.7,5.2,7.8,7.8,7.9,7.8,5.2,5.2,5.2,5.2,7.8,7.8]
analyse: [....19] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][51292] -> [.........2a03:2880:f030:13:face:b00c::3][..443] [TLS.Facebook][Unknown][SocialNetwork][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.093| 0.011| 0.022| 473.126| 3.000]
@@ -148,6 +138,7 @@
detection-update: [....21] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][47790] -> [...............2a00:1450:4007:816::200a][..443] [TLS.GoogleServices][Unknown][Web][Acceptable][content-autofill.googleapis.com]
new: [....22] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][43562] -> [...............2a00:1450:4007:805::2003][..443] [MIDSTREAM]
detected: [....22] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][43562] -> [...............2a00:1450:4007:805::2003][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
analyse: [....22] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][43562] -> [...............2a00:1450:4007:805::2003][..443] [TLS][Unknown][Web][Safe]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.029| 0.002| 0.006| 41.161| 1.800]
@@ -181,16 +172,6 @@
[IATS(ms)....: 23.4,23.6,0.6,27.8,5.3,0.0,0.0,32.3,0.0,0.0,3.2,0.2,0.2,43.0,0.9,0.0,0.2,40.4,0.9,3.4,2.5,21.4,0.0,21.3,0.0,7.8,0.0,0.0,0.0,7.8,0.0]
[PKTLENS.....: 80,80,72,589,72,1280,1280,322,72,72,72,136,164,327,72,72,72,652,72,103,103,72,876,1280,72,72,1280,1280,1280,1280,72,72]
[ENTROPIES...: 4.9,5.4,5.2,4.6,5.1,7.8,7.8,7.2,5.2,5.3,5.3,6.2,6.4,7.2,5.1,5.1,5.1,7.6,5.2,5.8,5.8,5.2,7.8,7.8,5.3,5.3,7.8,7.8,7.9,7.8,5.2,5.2]
- analyse: [....20] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][60340] -> [......2a03:2880:f11f:83:face:b00c::25de][..443] [TLS.Facebook][Unknown][SocialNetwork][Fun]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 1.522| 0.125| 0.366| 133718.884| 2.300]
- [PKTLEN......: 72.000| 1452.000| 259.400| 363.600| 132225.800| 4.100]
- [BINS(c->s)..: 11,0,2,0,0,0,0,0,0,0,0,1,0,0,0,0,1,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 8,2,1,0,0,1,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,1,0,0,1,0,0,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,1,0,0,0,0,0,1,1,1,1,1,1,0,0,0,0,1,0,1,1,0,0,1,1,0,1]
- [IATS(ms)....: 51.0,51.1,0.7,184.3,0.0,0.0,183.7,0.1,7.5,8.6,3.9,48.7,0.0,10.6,0.0,0.0,0.0,39.2,0.1,0.0,1.7,5.8,4.0,34.7,42.4,77.0,1489.8,1522.2,0.0,32.5,72.0]
- [PKTLENS.....: 80,80,72,589,72,1452,980,72,72,136,164,442,72,72,72,243,152,103,72,72,72,103,107,72,72,492,72,618,72,107,72,1374]
- [ENTROPIES...: 5.1,5.4,5.4,4.5,5.3,7.9,7.8,5.4,5.3,6.3,6.5,7.5,5.3,5.3,5.2,6.9,6.5,5.9,5.3,5.3,5.3,5.9,6.0,5.4,5.3,7.6,5.4,7.6,5.3,6.0,5.4,7.8]
new: [....24] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56940] -> [......................2a04:4e42:1d::720][..443] [MIDSTREAM]
new: [....25] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][51472] -> [...............2a00:1450:4007:816::2003][..443] [MIDSTREAM]
new: [....26] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][54308] -> [...............2a00:1450:4007:806::200e][..443] [MIDSTREAM]
@@ -279,14 +260,14 @@
idle: [....12] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][34626] -> [.....................64:ff9b::acd9:13e2][..443]
guessed: [....26] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][54308] -> [...............2a00:1450:4007:806::200e][..443] [TLS][Unknown][Web][Safe]
idle: [....26] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][54308] -> [...............2a00:1450:4007:806::200e][..443]
- idle: [....18] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][54416] -> [...............2a00:1450:4007:806::200e][..443] [TLS.Google][Unknown][Web][Acceptable]
+ idle: [....18] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][54416] -> [...............2a00:1450:4007:806::200e][..443]
guessed: [....10] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][33156] -> [.....................64:ff9b::9765:7854][..443] [TLS][Unknown][Web][Safe]
idle: [....10] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][33156] -> [.....................64:ff9b::9765:7854][..443]
guessed: [.....1] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][33164] -> [.....................64:ff9b::9765:7854][..443] [TLS][Unknown][Web][Safe]
idle: [.....1] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][33164] -> [.....................64:ff9b::9765:7854][..443]
guessed: [....11] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][58726] -> [...............2a00:1450:4007:80b::2002][..443] [TLS][Unknown][Web][Safe]
idle: [....11] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][58726] -> [...............2a00:1450:4007:80b::2002][..443]
- idle: [....20] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][60340] -> [......2a03:2880:f11f:83:face:b00c::25de][..443] [TLS.Facebook][Unknown][SocialNetwork][Fun]
+ idle: [....20] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][60340] -> [......2a03:2880:f11f:83:face:b00c::25de][..443]
idle: [.....3] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][33262] -> [.....................64:ff9b::9765:7854][..443] [TLS.Pinterest][Unknown][SocialNetwork][Fun]
idle: [....15] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][33280] -> [.....................64:ff9b::9765:7854][..443] [TLS.Pinterest][Unknown][SocialNetwork][Fun]
guessed: [....34] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][40560] -> [...............2a00:1450:4007:816::2004][..443] [TLS][Unknown][Web][Safe]
diff --git a/test/results/flow-info/pluralsight.pcap.out b/test/results/flow-info/default/pluralsight.pcap.out
index 822ff7aec..822ff7aec 100644
--- a/test/results/flow-info/pluralsight.pcap.out
+++ b/test/results/flow-info/default/pluralsight.pcap.out
diff --git a/test/results/flow-info/default/pop3.pcap.out b/test/results/flow-info/default/pop3.pcap.out
new file mode 100644
index 000000000..521949ea9
--- /dev/null
+++ b/test/results/flow-info/default/pop3.pcap.out
@@ -0,0 +1,44 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..tcp] [143.225.229.181][35287] -> [....74.208.5.28][..110]
+ detected: [.....1] [ip4][..tcp] [143.225.229.181][35287] -> [....74.208.5.28][..110] [POP3][Unknown][Email][Unsafe]
+ RISK: Unsafe Protocol, Clear-Text Credentials
+ DAEMON-EVENT: [Processed: 31 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....2] [ip4][..tcp] [....192.168.0.4][26272] -> [.212.227.15.166][..110]
+ detected: [.....2] [ip4][..tcp] [....192.168.0.4][26272] -> [.212.227.15.166][..110] [POP3][Unknown][Email][Unsafe]
+ RISK: Unsafe Protocol
+ end: [.....1] [ip4][..tcp] [143.225.229.181][35287] -> [....74.208.5.28][..110] [POP3][Unknown][Email][Unsafe]
+ RISK: Unsafe Protocol, Clear-Text Credentials
+ new: [.....3] [ip4][..tcp] [....192.168.0.4][26284] -> [.212.227.15.166][..110]
+ detected: [.....3] [ip4][..tcp] [....192.168.0.4][26284] -> [.212.227.15.166][..110] [POP3][Unknown][Email][Unsafe]
+ RISK: Unsafe Protocol
+ new: [.....4] [ip4][..tcp] [....192.168.0.4][26304] -> [.212.227.15.166][..110]
+ detected: [.....4] [ip4][..tcp] [....192.168.0.4][26304] -> [.212.227.15.166][..110] [POP3][Unknown][Email][Unsafe]
+ RISK: Unsafe Protocol
+ new: [.....5] [ip4][..tcp] [....192.168.0.4][26308] -> [.212.227.15.166][..110]
+ detected: [.....5] [ip4][..tcp] [....192.168.0.4][26308] -> [.212.227.15.166][..110] [POP3][Unknown][Email][Unsafe]
+ RISK: Unsafe Protocol
+ new: [.....6] [ip4][..tcp] [....192.168.0.4][26383] -> [.212.227.15.166][..110]
+ detected: [.....6] [ip4][..tcp] [....192.168.0.4][26383] -> [.212.227.15.166][..110] [POP3][Unknown][Email][Unsafe]
+ RISK: Unsafe Protocol
+ analyse: [.....6] [ip4][..tcp] [....192.168.0.4][26383] -> [.212.227.15.166][..110] [POP3][Unknown][Email][Unsafe]
+ min| max| avg| stddev| variance| entropy
+ [IAT.........: 0.000| 0.112| 0.063| 0.038| 1429.214| 4.600]
+ [PKTLEN......: 40.000| 1500.000| 324.900| 545.200| 297234.100| 3.500]
+ [BINS(c->s)..: 13,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+ [BINS(s->c)..: 7,2,3,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,5,0,0]
+ [DIRECTIONS..: 0,1,0,1,0,1,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,1,0,1,1,0,1,0,1,1,0,1]
+ [IATS(ms)....: 48.7,48.8,52.1,85.3,79.8,1.2,96.8,99.7,95.0,92.4,96.8,111.5,96.8,82.4,96.0,95.0,97.0,96.0,95.2,98.0,2.0,51.0,3.2,0.1,3.2,44.7,56.5,59.7,2.4,50.3,0.1]
+ [PKTLENS.....: 52,52,40,97,46,58,66,46,131,52,58,106,131,46,58,46,72,46,132,48,58,1500,40,1500,1500,40,1229,48,58,1500,40,1500]
+ [ENTROPIES...: 4.4,4.9,4.8,5.7,5.0,5.4,5.2,4.9,5.5,5.0,5.2,5.8,5.4,4.9,5.1,4.8,5.1,4.9,5.7,5.0,5.3,6.0,4.8,5.3,5.3,4.8,5.4,5.0,5.3,5.6,4.7,5.8]
+ end: [.....2] [ip4][..tcp] [....192.168.0.4][26272] -> [.212.227.15.166][..110]
+ end: [.....3] [ip4][..tcp] [....192.168.0.4][26284] -> [.212.227.15.166][..110] [POP3][Unknown][Email][Unsafe]
+ RISK: Unsafe Protocol
+ end: [.....4] [ip4][..tcp] [....192.168.0.4][26304] -> [.212.227.15.166][..110]
+ end: [.....5] [ip4][..tcp] [....192.168.0.4][26308] -> [.212.227.15.166][..110] [POP3][Unknown][Email][Unsafe]
+ RISK: Unsafe Protocol
+ end: [.....6] [ip4][..tcp] [....192.168.0.4][26383] -> [.212.227.15.166][..110] [POP3][Unknown][Email][Unsafe]
+ RISK: Unsafe Protocol
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/pop3_stls.pcap.out b/test/results/flow-info/default/pop3_stls.pcap.out
index 185b8b2dd..d5dba394f 100644
--- a/test/results/flow-info/pop3_stls.pcap.out
+++ b/test/results/flow-info/default/pop3_stls.pcap.out
@@ -2,14 +2,14 @@
DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [..192.168.20.18][50583] -> [...72.249.41.52][..110]
- detected: [.....1] [ip4][..tcp] [..192.168.20.18][50583] -> [...72.249.41.52][..110] [POPS][Unknown][Email][Safe]
- RISK: Known Proto on Non Std Port
+ detected: [.....1] [ip4][..tcp] [..192.168.20.18][50583] -> [...72.249.41.52][..110] [POP3][Unknown][Email][Unsafe]
+ RISK: Unsafe Protocol
detection-update: [.....1] [ip4][..tcp] [..192.168.20.18][50583] -> [...72.249.41.52][..110] [POPS][Unknown][Email][Safe]
- RISK: Known Proto on Non Std Port, Obsolete TLS (v1.1 or older)
+ RISK: Obsolete TLS (v1.1 or older), Unsafe Protocol
detection-update: [.....1] [ip4][..tcp] [..192.168.20.18][50583] -> [...72.249.41.52][..110] [POPS][Unknown][Email][Safe]
- RISK: Known Proto on Non Std Port, Obsolete TLS (v1.1 or older)
+ RISK: Obsolete TLS (v1.1 or older), Unsafe Protocol
detection-update: [.....1] [ip4][..tcp] [..192.168.20.18][50583] -> [...72.249.41.52][..110] [POPS][Unknown][Email][Safe]
- RISK: Known Proto on Non Std Port, Obsolete TLS (v1.1 or older)
+ RISK: Obsolete TLS (v1.1 or older), Unsafe Protocol
analyse: [.....1] [ip4][..tcp] [..192.168.20.18][50583] -> [...72.249.41.52][..110]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 2.072| 0.263| 0.525| 275477.529| 3.300]
@@ -21,7 +21,7 @@
[PKTLENS.....: 52,52,40,51,46,46,68,46,46,189,46,77,208,1500,1500,40,1500,400,40,354,46,278,71,46,93,71,46,208,84,89,82,89]
[ENTROPIES...: 4.5,4.8,4.7,5.2,5.0,4.5,5.4,5.0,4.5,5.5,5.0,5.4,5.5,7.1,7.1,4.7,6.9,7.2,4.8,7.4,4.5,7.0,5.8,4.5,5.8,5.7,4.5,7.0,5.9,6.0,5.7,5.9]
detection-update: [.....1] [ip4][..tcp] [..192.168.20.18][50583] -> [...72.249.41.52][..110] [POPS][Unknown][Email][Safe]
- RISK: Known Proto on Non Std Port, Obsolete TLS (v1.1 or older)
+ RISK: Obsolete TLS (v1.1 or older), Unsafe Protocol
end: [.....1] [ip4][..tcp] [..192.168.20.18][50583] -> [...72.249.41.52][..110] [POPS][Unknown][Email][Safe]
- RISK: Known Proto on Non Std Port, Obsolete TLS (v1.1 or older)
+ RISK: Obsolete TLS (v1.1 or older), Unsafe Protocol
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/pops.pcapng.out b/test/results/flow-info/default/pops.pcapng.out
index 1144ec099..1144ec099 100644
--- a/test/results/flow-info/pops.pcapng.out
+++ b/test/results/flow-info/default/pops.pcapng.out
diff --git a/test/results/flow-info/pps.pcap.out b/test/results/flow-info/default/pps.pcap.out
index d1d3ca05d..5a7f2868b 100644
--- a/test/results/flow-info/pps.pcap.out
+++ b/test/results/flow-info/default/pps.pcap.out
@@ -18,7 +18,6 @@
[IATS(ms)....: 0.3,0.3,3.0,2.0,4.7,0.3,0.1,0.0,0.6,0.6,2.0,0.9,0.2,1.9,1.1,0.1,11.9,11.8,0.1,13.6,13.5,0.1,2.8,2.6,0.2,1.3,1.0,0.1,1.6,1.9,0.3]
[PKTLENS.....: 1093,65,65,1093,1093,65,65,65,65,65,65,1093,65,65,1093,65,65,1093,65,65,1093,65,65,1093,65,65,1093,65,65,1093,65,65]
[ENTROPIES...: 7.8,5.1,5.1,7.8,7.8,5.2,5.1,5.2,5.1,5.2,5.2,7.8,5.1,5.1,7.8,5.2,5.2,7.8,5.1,5.1,7.8,5.2,5.2,7.8,5.1,5.1,7.6,5.2,5.2,7.8,5.2,5.2]
- not-detected: [.....1] [ip4][..udp] [....1.173.5.226][22636] -> [..192.168.115.8][22793] [Unknown][Unknown][Unrated]
analyse: [.....3] [ip4][..udp] [..192.168.115.8][22793] -> [...114.42.0.158][.7716]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.013| 0.002| 0.004| 13.731| 3.800]
@@ -29,7 +28,6 @@
[IATS(ms)....: 0.3,12.6,12.6,0.2,1.1,0.9,0.1,1.6,1.5,0.2,2.1,1.8,0.3,0.7,0.6,0.3,1.7,1.1,0.1,3.6,5.8,0.4,11.9,9.1,0.1,1.2,1.4,0.1,1.5,1.1,0.1]
[PKTLENS.....: 65,65,1093,65,65,1093,65,65,1093,65,65,1093,65,65,1093,65,65,1093,65,65,1093,65,65,1093,65,65,1093,65,65,1093,65,65]
[ENTROPIES...: 5.1,5.1,7.8,5.2,5.2,7.7,5.0,5.0,7.8,5.2,5.2,7.8,5.1,5.1,7.8,5.1,5.1,7.8,5.1,5.1,7.8,5.1,5.1,7.8,5.1,5.1,7.8,5.2,5.2,7.8,5.2,5.2]
- not-detected: [.....3] [ip4][..udp] [..192.168.115.8][22793] -> [...114.42.0.158][.7716] [Unknown][Unknown][Unrated]
new: [.....8] [ip4][..udp] [.183.228.182.44][13913] -> [..192.168.115.8][22793]
analyse: [.....2] [ip4][..udp] [..118.171.15.56][.5544] -> [..192.168.115.8][22793]
min| max| avg| stddev| variance| entropy
@@ -41,7 +39,6 @@
[IATS(ms)....: 0.4,0.2,4.9,0.2,24.3,18.9,0.1,5.4,6.9,0.2,19.1,17.6,0.1,13.8,13.8,0.1,13.1,15.4,0.1,27.0,24.4,0.2,9.0,11.0,0.4,2.0,0.9,14.1,8.3,0.1,12.1]
[PKTLENS.....: 1093,65,65,65,65,1093,65,65,1093,65,65,1093,65,65,1093,65,65,1093,65,65,1093,65,65,1093,65,65,65,65,1093,65,65,1093]
[ENTROPIES...: 7.7,5.1,5.1,5.1,5.1,7.8,5.1,5.1,7.8,5.2,5.2,7.8,5.1,5.1,7.8,5.0,5.0,7.8,5.1,5.1,7.8,5.2,5.2,7.8,5.1,5.1,5.0,5.0,7.8,5.1,5.1,7.8]
- not-detected: [.....2] [ip4][..udp] [..118.171.15.56][.5544] -> [..192.168.115.8][22793] [Unknown][Unknown][Unrated]
new: [.....9] [ip4][..tcp] [..192.168.115.8][50462] -> [.202.108.14.236][...80] [MIDSTREAM]
new: [....10] [ip4][..tcp] [...192.168.5.15][65125] -> [.68.233.253.133][...80] [MIDSTREAM]
analyse: [.....7] [ip4][..udp] [..192.168.115.8][22793] -> [219.228.107.156][.1250]
@@ -54,9 +51,9 @@
[IATS(ms)....: 0.4,29.9,29.7,0.1,32.0,32.8,0.3,45.7,0.3,69.6,23.0,0.1,42.0,41.6,0.1,36.0,0.3,59.5,23.0,0.1,31.8,32.2,0.3,44.4,0.3,68.3,22.7,0.2,30.9,30.8,0.2]
[PKTLENS.....: 65,65,1093,65,65,1093,65,65,65,65,1093,65,65,1093,65,65,65,65,1093,65,65,1093,65,65,65,65,1093,65,65,1093,65,65]
[ENTROPIES...: 5.1,5.1,7.8,5.2,5.2,7.8,5.2,5.2,5.2,5.2,7.8,5.3,5.3,7.8,5.1,5.1,5.1,5.1,7.8,5.2,5.2,7.8,5.2,5.2,5.2,5.2,7.8,5.1,5.1,7.8,4.9,4.9]
- not-detected: [.....7] [ip4][..udp] [..192.168.115.8][22793] -> [219.228.107.156][.1250] [Unknown][Unknown][Unrated]
new: [....11] [ip4][..udp] [..192.168.115.8][22793] -> [..218.61.39.103][17788]
detected: [....11] [ip4][..udp] [..192.168.115.8][22793] -> [..218.61.39.103][17788] [PPStream][Unknown][Streaming][Fun]
+ RISK: Unidirectional Traffic
new: [....12] [ip4][..udp] [..192.168.115.8][22793] -> [...210.44.171.1][29702]
new: [....13] [ip4][..udp] [..192.168.115.8][22793] -> [.111.250.102.66][.1107]
new: [....14] [ip4][..udp] [..192.168.115.8][22793] -> [..61.223.204.67][11102]
@@ -76,16 +73,20 @@
new: [....28] [ip4][..udp] [..192.168.115.8][22793] -> [.114.41.144.153][10492]
new: [....29] [ip4][..udp] [..192.168.115.8][22793] -> [..183.61.167.82][17788]
detected: [....29] [ip4][..udp] [..192.168.115.8][22793] -> [..183.61.167.82][17788] [PPStream][Unknown][Streaming][Fun]
+ RISK: Unidirectional Traffic
new: [....30] [ip4][..udp] [..192.168.115.8][22793] -> [...210.47.12.19][33738]
new: [....31] [ip4][..udp] [..192.168.115.8][22793] -> [...210.47.12.20][33738]
new: [....32] [ip4][..udp] [..192.168.115.8][22793] -> [..114.47.91.129][22576]
new: [....33] [ip4][..udp] [..192.168.115.8][22793] -> [.220.130.154.23][35941]
new: [....34] [ip4][..udp] [..192.168.115.8][22793] -> [...218.61.39.87][17788]
detected: [....34] [ip4][..udp] [..192.168.115.8][22793] -> [...218.61.39.87][17788] [PPStream][Unknown][Streaming][Fun]
+ RISK: Unidirectional Traffic
new: [....35] [ip4][..udp] [..192.168.115.8][22793] -> [119.188.133.182][17788]
detected: [....35] [ip4][..udp] [..192.168.115.8][22793] -> [119.188.133.182][17788] [PPStream][Unknown][Streaming][Fun]
+ RISK: Unidirectional Traffic
new: [....36] [ip4][..udp] [..192.168.115.8][22793] -> [.183.61.167.104][17788]
detected: [....36] [ip4][..udp] [..192.168.115.8][22793] -> [.183.61.167.104][17788] [PPStream][Unknown][Streaming][Fun]
+ RISK: Unidirectional Traffic
analyse: [.....4] [ip4][..udp] [..192.168.115.8][22793] -> [.222.197.138.12][.6956]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.108| 0.029| 0.031| 941.853| 4.000]
@@ -96,99 +97,133 @@
[IATS(ms)....: 0.9,52.8,52.3,0.3,55.5,0.1,77.7,22.0,0.2,78.3,79.3,0.5,0.4,0.1,46.5,44.4,0.1,18.4,18.5,0.3,36.0,0.1,108.0,71.5,0.7,28.3,0.5,45.9,16.1,0.4,33.5]
[PKTLENS.....: 65,65,1093,65,65,65,65,1093,65,65,1093,65,65,65,65,1093,65,65,1093,65,65,65,65,1093,65,65,65,65,1093,65,65,47]
[ENTROPIES...: 5.3,5.3,7.8,5.3,5.3,5.3,5.3,7.8,5.2,5.2,7.8,5.0,5.0,5.1,5.1,7.8,5.2,5.2,7.7,5.1,5.1,5.1,5.1,7.8,5.1,5.1,5.1,5.1,7.8,5.1,5.1,4.9]
- not-detected: [.....4] [ip4][..udp] [..192.168.115.8][22793] -> [.222.197.138.12][.6956] [Unknown][Unknown][Unrated]
new: [....37] [ip4][..tcp] [..192.168.115.8][50463] -> [.101.227.200.11][...80] [MIDSTREAM]
detected: [....37] [ip4][..tcp] [..192.168.115.8][50463] -> [.101.227.200.11][...80] [HTTP.PPStream][Unknown][Streaming][Fun][api.cupid.iqiyi.com]
+ RISK: Unidirectional Traffic
new: [....38] [ip4][..tcp] [..192.168.115.8][50464] -> [.123.125.112.49][...80] [MIDSTREAM]
detected: [....38] [ip4][..tcp] [..192.168.115.8][50464] -> [.123.125.112.49][...80] [HTTP][Unknown][Web][Acceptable][click.hm.baidu.com]
+ RISK: Unidirectional Traffic
new: [....39] [ip4][..tcp] [..192.168.115.8][50466] -> [..203.66.182.24][...80] [MIDSTREAM]
detected: [....39] [ip4][..tcp] [..192.168.115.8][50466] -> [..203.66.182.24][...80] [HTTP.Google][Unknown][Web][Acceptable][clients1.google.com]
+ RISK: Unidirectional Traffic
new: [....40] [ip4][..tcp] [..192.168.115.8][50467] -> [.202.108.14.219][...80] [MIDSTREAM]
detected: [....40] [ip4][..tcp] [..192.168.115.8][50467] -> [.202.108.14.219][...80] [HTTP][Unknown][Streaming][Acceptable][msg.71.am]
+ RISK: Unidirectional Traffic
new: [....41] [ip4][..tcp] [..192.168.115.8][50469] -> [.202.108.14.219][...80] [MIDSTREAM]
detected: [....41] [ip4][..tcp] [..192.168.115.8][50469] -> [.202.108.14.219][...80] [HTTP][Unknown][Streaming][Acceptable][msg.71.am]
+ RISK: Unidirectional Traffic
new: [....42] [ip4][..tcp] [..192.168.115.8][50470] -> [.202.108.14.236][...80] [MIDSTREAM]
detected: [....42] [ip4][..tcp] [..192.168.115.8][50470] -> [.202.108.14.236][...80] [HTTP.PPStream][Unknown][Streaming][Fun][msg.iqiyi.com]
+ RISK: Unidirectional Traffic
new: [....43] [ip4][..tcp] [..192.168.115.8][50471] -> [.202.108.14.236][...80] [MIDSTREAM]
detected: [....43] [ip4][..tcp] [..192.168.115.8][50471] -> [.202.108.14.236][...80] [HTTP][Unknown][Streaming][Acceptable][msg.71.am]
+ RISK: Unidirectional Traffic
new: [....44] [ip4][..tcp] [..192.168.115.8][50474] -> [.202.108.14.221][...80] [MIDSTREAM]
detected: [....44] [ip4][..tcp] [..192.168.115.8][50474] -> [.202.108.14.221][...80] [HTTP.PPStream][Unknown][Streaming][Fun][msg.iqiyi.com]
+ RISK: Unidirectional Traffic
new: [....45] [ip4][..tcp] [..192.168.115.8][50475] -> [.202.108.14.236][...80] [MIDSTREAM]
detected: [....45] [ip4][..tcp] [..192.168.115.8][50475] -> [.202.108.14.236][...80] [HTTP][Unknown][Streaming][Acceptable][msg.71.am]
+ RISK: Unidirectional Traffic
new: [....46] [ip4][..tcp] [..192.168.115.8][50473] -> [.202.108.14.219][...80] [MIDSTREAM]
detected: [....46] [ip4][..tcp] [..192.168.115.8][50473] -> [.202.108.14.219][...80] [HTTP][Unknown][Streaming][Acceptable][msg.71.am]
+ RISK: Unidirectional Traffic
new: [....47] [ip4][..tcp] [..192.168.115.8][50476] -> [..101.227.32.39][...80] [MIDSTREAM]
detected: [....47] [ip4][..tcp] [..192.168.115.8][50476] -> [..101.227.32.39][...80] [HTTP.PPStream][Unknown][Streaming][Fun][cache.video.iqiyi.com]
+ RISK: HTTP Susp User-Agent, Unidirectional Traffic
new: [....48] [ip4][..tcp] [..192.168.115.8][50477] -> [.202.108.14.219][...80] [MIDSTREAM]
detected: [....48] [ip4][..tcp] [..192.168.115.8][50477] -> [.202.108.14.219][...80] [HTTP][Unknown][Streaming][Acceptable][msg.71.am]
+ RISK: Unidirectional Traffic
new: [....49] [ip4][..tcp] [..117.79.81.135][...80] -> [..192.168.115.8][50443] [MIDSTREAM]
detected: [....49] [ip4][..tcp] [..117.79.81.135][...80] -> [..192.168.115.8][50443] [HTTP][Unknown][Web][Acceptable][]
- RISK: HTTP Suspicious User-Agent
+ RISK: HTTP Susp User-Agent, Unidirectional Traffic
new: [....50] [ip4][..tcp] [..192.168.115.8][50482] -> [.140.205.243.64][...80] [MIDSTREAM]
detected: [....50] [ip4][..tcp] [..192.168.115.8][50482] -> [.140.205.243.64][...80] [HTTP][Unknown][Web][Acceptable][cmc.tanx.com]
+ RISK: Unidirectional Traffic
new: [....51] [ip4][..tcp] [..192.168.115.8][50483] -> [.202.108.14.219][...80] [MIDSTREAM]
detected: [....51] [ip4][..tcp] [..192.168.115.8][50483] -> [.202.108.14.219][...80] [HTTP][Unknown][Streaming][Acceptable][msg.71.am]
+ RISK: Unidirectional Traffic
new: [....52] [ip4][..tcp] [..192.168.115.8][50484] -> [.202.108.14.219][...80] [MIDSTREAM]
detected: [....52] [ip4][..tcp] [..192.168.115.8][50484] -> [.202.108.14.219][...80] [HTTP][Unknown][Streaming][Acceptable][msg.71.am]
+ RISK: Unidirectional Traffic
new: [....53] [ip4][..tcp] [..192.168.115.8][50485] -> [.202.108.14.236][...80] [MIDSTREAM]
detected: [....53] [ip4][..tcp] [..192.168.115.8][50485] -> [.202.108.14.236][...80] [HTTP][Unknown][Streaming][Acceptable][msg.71.am]
+ RISK: Unidirectional Traffic
new: [....54] [ip4][..tcp] [..192.168.115.8][50486] -> [...77.234.40.96][...80] [MIDSTREAM]
detected: [....54] [ip4][..tcp] [..192.168.115.8][50486] -> [...77.234.40.96][...80] [HTTP.Cybersec][AVAST][Cybersecurity][Safe][bcu.ff.avast.com]
- RISK: HTTP Suspicious User-Agent
+ RISK: HTTP Susp User-Agent, Unidirectional Traffic
new: [....55] [ip4][..udp] [...192.168.5.57][59648] -> [239.255.255.250][.1900]
detected: [....55] [ip4][..udp] [...192.168.5.57][59648] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
+ detection-update: [....54] [ip4][..tcp] [..192.168.115.8][50486] -> [...77.234.40.96][...80] [HTTP.Cybersec][AVAST][Download][Safe][bcu.ff.avast.com]
+ RISK: HTTP Susp User-Agent, HTTP Obsolete Server
new: [....56] [ip4][..tcp] [..192.168.115.8][50487] -> [.202.108.14.219][...80] [MIDSTREAM]
detected: [....56] [ip4][..tcp] [..192.168.115.8][50487] -> [.202.108.14.219][...80] [HTTP][Unknown][Streaming][Acceptable][msg.71.am]
+ RISK: Unidirectional Traffic
new: [....57] [ip4][..tcp] [..192.168.115.8][50488] -> [..223.26.106.20][...80] [MIDSTREAM]
detected: [....57] [ip4][..tcp] [..192.168.115.8][50488] -> [..223.26.106.20][...80] [HTTP][Unknown][Web][Acceptable][meta.video.qiyi.com]
+ RISK: Unidirectional Traffic
new: [....58] [ip4][..tcp] [..192.168.115.8][50489] -> [.119.188.13.188][...80] [MIDSTREAM]
detected: [....58] [ip4][..tcp] [..192.168.115.8][50489] -> [.119.188.13.188][...80] [HTTP][Unknown][Web][Acceptable][pdata.video.qiyi.com]
+ RISK: Unidirectional Traffic
new: [....59] [ip4][..tcp] [..192.168.115.8][50490] -> [.119.188.13.188][...80] [MIDSTREAM]
detected: [....59] [ip4][..tcp] [..192.168.115.8][50490] -> [.119.188.13.188][...80] [HTTP][Unknown][Web][Acceptable][pdata.video.qiyi.com]
+ RISK: Unidirectional Traffic
new: [....60] [ip4][..tcp] [..192.168.115.8][50491] -> [..223.26.106.66][...80] [MIDSTREAM]
detected: [....60] [ip4][..tcp] [..192.168.115.8][50491] -> [..223.26.106.66][...80] [HTTP][Unknown][Web][Acceptable][223.26.106.66]
- RISK: HTTP Numeric IP Address
- detection-update: [....60] [ip4][..tcp] [..192.168.115.8][50491] -> [..223.26.106.66][...80] [HTTP][Unknown][Web][Acceptable][223.26.106.66]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....61] [ip4][..tcp] [..192.168.115.8][50492] -> [...111.206.13.3][...80] [MIDSTREAM]
detected: [....61] [ip4][..tcp] [..192.168.115.8][50492] -> [...111.206.13.3][...80] [HTTP][Unknown][Web][Acceptable][pdata.video.qiyi.com]
+ RISK: Unidirectional Traffic
new: [....62] [ip4][..tcp] [..192.168.115.8][50493] -> [.202.108.14.236][...80] [MIDSTREAM]
detected: [....62] [ip4][..tcp] [..192.168.115.8][50493] -> [.202.108.14.236][...80] [HTTP][Unknown][Streaming][Acceptable][msg.71.am]
+ RISK: Unidirectional Traffic
new: [....63] [ip4][..tcp] [..192.168.115.8][50494] -> [..223.26.106.66][...80] [MIDSTREAM]
detected: [....63] [ip4][..tcp] [..192.168.115.8][50494] -> [..223.26.106.66][...80] [HTTP][Unknown][Web][Acceptable][223.26.106.66]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....64] [ip4][..tcp] [...192.168.5.15][65127] -> [.68.233.253.133][...80] [MIDSTREAM]
detected: [....64] [ip4][..tcp] [...192.168.5.15][65127] -> [.68.233.253.133][...80] [HTTP][Unknown][Web][Acceptable][api.magicansoft.com]
+ RISK: Unidirectional Traffic
+ detection-update: [....63] [ip4][..tcp] [..192.168.115.8][50494] -> [..223.26.106.66][...80] [HTTP][Unknown][Download][Acceptable][223.26.106.66]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
new: [....65] [ip4][..udp] [...192.168.5.48][63930] -> [239.255.255.250][.1900]
detected: [....65] [ip4][..udp] [...192.168.5.48][63930] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
new: [....66] [ip4][..tcp] [..192.168.115.8][50495] -> [.202.108.14.236][...80] [MIDSTREAM]
detected: [....66] [ip4][..tcp] [..192.168.115.8][50495] -> [.202.108.14.236][...80] [HTTP][Unknown][Streaming][Acceptable][msg.71.am]
+ RISK: Unidirectional Traffic
new: [....67] [ip4][..tcp] [..192.168.115.8][50496] -> [.101.227.200.11][...80] [MIDSTREAM]
detected: [....67] [ip4][..tcp] [..192.168.115.8][50496] -> [.101.227.200.11][...80] [HTTP.PPStream][Unknown][Streaming][Fun][api.cupid.iqiyi.com]
+ RISK: Unidirectional Traffic
new: [....68] [ip4][..tcp] [..192.168.115.8][50497] -> [.123.125.112.49][...80] [MIDSTREAM]
detected: [....68] [ip4][..tcp] [..192.168.115.8][50497] -> [.123.125.112.49][...80] [HTTP][Unknown][Web][Acceptable][click.hm.baidu.com]
+ RISK: Unidirectional Traffic
new: [....69] [ip4][..udp] [...192.168.5.63][39383] -> [239.255.255.250][.1900]
detected: [....69] [ip4][..udp] [...192.168.5.63][39383] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
new: [....70] [ip4][..udp] [...192.168.5.63][60976] -> [239.255.255.250][.1900]
detected: [....70] [ip4][..udp] [...192.168.5.63][60976] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
new: [....71] [ip4][..tcp] [..192.168.115.8][50498] -> [..36.110.220.15][...80] [MIDSTREAM]
detected: [....71] [ip4][..tcp] [..192.168.115.8][50498] -> [..36.110.220.15][...80] [HTTP][Unknown][Web][Acceptable][msg.video.qiyi.com]
+ RISK: Unidirectional Traffic
new: [....72] [ip4][..tcp] [..192.168.115.8][50499] -> [..111.206.22.76][...80] [MIDSTREAM]
detected: [....72] [ip4][..tcp] [..192.168.115.8][50499] -> [..111.206.22.76][...80] [HTTP.PPStream][Unknown][Streaming][Fun][msg.iqiyi.com]
+ RISK: Unidirectional Traffic
new: [....73] [ip4][..tcp] [..192.168.115.8][50500] -> [..23.41.133.163][...80] [MIDSTREAM]
detected: [....73] [ip4][..tcp] [..192.168.115.8][50500] -> [..23.41.133.163][...80] [HTTP][Unknown][Web][Acceptable][s1.symcb.com]
+ RISK: Unidirectional Traffic
new: [....74] [ip4][..tcp] [..192.168.115.8][50501] -> [.202.108.14.236][...80] [MIDSTREAM]
detected: [....74] [ip4][..tcp] [..192.168.115.8][50501] -> [.202.108.14.236][...80] [HTTP][Unknown][Streaming][Acceptable][msg.71.am]
+ RISK: Unidirectional Traffic
new: [....75] [ip4][..udp] [...192.168.5.38][58897] -> [239.255.255.250][.1900]
detected: [....75] [ip4][..udp] [...192.168.5.38][58897] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
new: [....76] [ip4][..tcp] [..192.168.115.8][50502] -> [.202.108.14.236][...80] [MIDSTREAM]
detected: [....76] [ip4][..tcp] [..192.168.115.8][50502] -> [.202.108.14.236][...80] [HTTP][Unknown][Streaming][Acceptable][msg.71.am]
+ RISK: Unidirectional Traffic
new: [....77] [ip4][..udp] [...192.168.5.50][52529] -> [239.255.255.250][.1900]
detected: [....77] [ip4][..udp] [...192.168.5.50][52529] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
new: [....78] [ip4][..tcp] [...192.168.5.15][65128] -> [.68.233.253.133][...80] [MIDSTREAM]
detected: [....78] [ip4][..tcp] [...192.168.5.15][65128] -> [.68.233.253.133][...80] [HTTP][Unknown][Web][Acceptable][api.magicansoft.com]
+ RISK: Unidirectional Traffic
new: [....79] [ip4][..tcp] [..192.168.115.8][50503] -> [.202.108.14.219][...80] [MIDSTREAM]
detected: [....79] [ip4][..tcp] [..192.168.115.8][50503] -> [.202.108.14.219][...80] [HTTP][Unknown][Streaming][Acceptable][msg.71.am]
+ RISK: Unidirectional Traffic
new: [....80] [ip4][..udp] [...192.168.5.28][60023] -> [239.255.255.250][.1900]
detected: [....80] [ip4][..udp] [...192.168.5.28][60023] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
update: [....22] [ip4][..udp] [..192.168.115.8][22793] -> [.222.26.193.119][.7133]
@@ -200,14 +235,15 @@
update: [....33] [ip4][..udp] [..192.168.115.8][22793] -> [.220.130.154.23][35941]
update: [....32] [ip4][..udp] [..192.168.115.8][22793] -> [..114.47.91.129][22576]
update: [.....6] [ip4][..udp] [..192.168.115.8][22793] -> [.111.249.53.196][32443]
- update: [.....3] [ip4][..udp] [..192.168.115.8][22793] -> [...114.42.0.158][.7716] [Unknown][Unknown][Unrated]
+ update: [.....3] [ip4][..udp] [..192.168.115.8][22793] -> [...114.42.0.158][.7716]
update: [....12] [ip4][..udp] [..192.168.115.8][22793] -> [...210.44.171.1][29702]
- update: [.....4] [ip4][..udp] [..192.168.115.8][22793] -> [.222.197.138.12][.6956] [Unknown][Unknown][Unrated]
- update: [.....2] [ip4][..udp] [..118.171.15.56][.5544] -> [..192.168.115.8][22793] [Unknown][Unknown][Unrated]
+ update: [.....4] [ip4][..udp] [..192.168.115.8][22793] -> [.222.197.138.12][.6956]
+ update: [.....2] [ip4][..udp] [..118.171.15.56][.5544] -> [..192.168.115.8][22793]
update: [....23] [ip4][..udp] [..192.168.115.8][22793] -> [.114.37.142.173][.1074]
- update: [.....7] [ip4][..udp] [..192.168.115.8][22793] -> [219.228.107.156][.1250] [Unknown][Unknown][Unrated]
+ update: [.....7] [ip4][..udp] [..192.168.115.8][22793] -> [219.228.107.156][.1250]
update: [....16] [ip4][..udp] [..192.168.115.8][22793] -> [...36.233.39.81][18590]
update: [....35] [ip4][..udp] [..192.168.115.8][22793] -> [119.188.133.182][17788] [PPStream][Unknown][Streaming][Fun]
+ RISK: Unidirectional Traffic
update: [....18] [ip4][..udp] [..192.168.115.8][22793] -> [..61.227.170.88][20227]
update: [....20] [ip4][..udp] [..192.168.115.8][22793] -> [.121.248.133.93][12757]
update: [....19] [ip4][..udp] [..192.168.115.8][22793] -> [..202.112.31.89][29072]
@@ -215,208 +251,275 @@
update: [....14] [ip4][..udp] [..192.168.115.8][22793] -> [..61.223.204.67][11102]
update: [.....8] [ip4][..udp] [.183.228.182.44][13913] -> [..192.168.115.8][22793]
update: [....29] [ip4][..udp] [..192.168.115.8][22793] -> [..183.61.167.82][17788] [PPStream][Unknown][Streaming][Fun]
+ RISK: Unidirectional Traffic
update: [....36] [ip4][..udp] [..192.168.115.8][22793] -> [.183.61.167.104][17788] [PPStream][Unknown][Streaming][Fun]
+ RISK: Unidirectional Traffic
update: [....21] [ip4][..udp] [..192.168.115.8][22793] -> [..1.175.128.104][.5185]
update: [....11] [ip4][..udp] [..192.168.115.8][22793] -> [..218.61.39.103][17788] [PPStream][Unknown][Streaming][Fun]
+ RISK: Unidirectional Traffic
update: [....34] [ip4][..udp] [..192.168.115.8][22793] -> [...218.61.39.87][17788] [PPStream][Unknown][Streaming][Fun]
+ RISK: Unidirectional Traffic
update: [....30] [ip4][..udp] [..192.168.115.8][22793] -> [...210.47.12.19][33738]
update: [....31] [ip4][..udp] [..192.168.115.8][22793] -> [...210.47.12.20][33738]
update: [....17] [ip4][..udp] [..192.168.115.8][22793] -> [.111.117.101.81][10162]
- update: [.....1] [ip4][..udp] [....1.173.5.226][22636] -> [..192.168.115.8][22793] [Unknown][Unknown][Unrated]
+ update: [.....1] [ip4][..udp] [....1.173.5.226][22636] -> [..192.168.115.8][22793]
update: [.....5] [ip4][..udp] [..192.168.115.8][22793] -> [...202.198.7.89][16039]
update: [....15] [ip4][..udp] [..192.168.115.8][22793] -> [..36.237.154.69][.4316]
new: [....81] [ip4][..tcp] [..192.168.115.8][50505] -> [..223.26.106.19][...80] [MIDSTREAM]
detected: [....81] [ip4][..tcp] [..192.168.115.8][50505] -> [..223.26.106.19][...80] [HTTP][Unknown][Web][Acceptable][static.qiyi.com]
+ RISK: Unidirectional Traffic
+ detection-update: [....81] [ip4][..tcp] [..192.168.115.8][50505] -> [..223.26.106.19][...80] [HTTP][Unknown][Download][Acceptable][static.qiyi.com]
+ RISK: Binary App Transfer
new: [....82] [ip4][..tcp] [..192.168.115.8][50504] -> [.202.108.14.236][...80] [MIDSTREAM]
detected: [....82] [ip4][..tcp] [..192.168.115.8][50504] -> [.202.108.14.236][...80] [HTTP][Unknown][Streaming][Acceptable][msg.71.am]
- analyse: [....81] [ip4][..tcp] [..192.168.115.8][50505] -> [..223.26.106.19][...80] [HTTP][Unknown][Web][Acceptable]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.036| 0.003| 0.009| 74.977| 1.800]
- [PKTLEN......: 184.000| 1300.000| 1207.000| 293.900| 86398.000| 4.900]
- [BINS(c->s)..: 0,0,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,29,0,0,0,0,0,0,0,0]
- [DIRECTIONS..: 0,1,0,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1]
- [IATS(ms)....: 2.9,35.0,35.8,0.0,0.1,1.0,0.0,0.0,0.0,0.0,0.0,0.0,4.1,0.0,0.0,0.0,0.0,0.0,0.6,0.0,0.0,0.0,0.0,4.3,0.1,0.0,0.0,0.0,0.0,0.0,0.0]
- [PKTLENS.....: 184,552,188,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300]
- [ENTROPIES...: 5.6,5.7,5.6,4.4,0.3,0.3,3.7,6.1,5.9,6.1,6.0,6.2,6.1,6.0,6.1,5.9,6.3,6.2,6.3,6.4,5.8,6.2,6.0,6.1,6.1,6.4,6.3,6.0,6.1,6.0,6.4,6.3]
+ RISK: Unidirectional Traffic
new: [....83] [ip4][..udp] [...192.168.5.38][.1900] -> [239.255.255.250][.1900]
detected: [....83] [ip4][..udp] [...192.168.5.38][.1900] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
new: [....84] [ip4][..udp] [...192.168.5.41][50374] -> [239.255.255.250][.1900]
detected: [....84] [ip4][..udp] [...192.168.5.41][50374] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
new: [....85] [ip4][..tcp] [..192.168.115.8][50507] -> [..223.26.106.19][...80] [MIDSTREAM]
detected: [....85] [ip4][..tcp] [..192.168.115.8][50507] -> [..223.26.106.19][...80] [HTTP][Unknown][Web][Acceptable][static.qiyi.com]
+ RISK: Unidirectional Traffic
+ detection-update: [....85] [ip4][..tcp] [..192.168.115.8][50507] -> [..223.26.106.19][...80] [HTTP][Unknown][Download][Acceptable][static.qiyi.com]
+ RISK: Binary App Transfer
new: [....86] [ip4][..tcp] [.202.108.14.219][...80] -> [..192.168.115.8][50506] [MIDSTREAM]
detected: [....86] [ip4][..tcp] [.202.108.14.219][...80] -> [..192.168.115.8][50506] [HTTP][Unknown][Web][Acceptable][]
- RISK: HTTP Suspicious User-Agent
+ RISK: HTTP Susp User-Agent, Unidirectional Traffic, HTTP Obsolete Server
new: [....87] [ip4][..tcp] [.202.108.14.219][...80] -> [..192.168.115.8][50295] [MIDSTREAM]
detected: [....87] [ip4][..tcp] [.202.108.14.219][...80] -> [..192.168.115.8][50295] [HTTP][Unknown][Web][Acceptable][]
- RISK: HTTP Suspicious User-Agent
+ RISK: HTTP Susp User-Agent, Unidirectional Traffic, HTTP Obsolete Server
new: [....88] [ip4][..tcp] [..192.168.115.8][50508] -> [..223.26.106.19][...80] [MIDSTREAM]
detected: [....88] [ip4][..tcp] [..192.168.115.8][50508] -> [..223.26.106.19][...80] [HTTP][Unknown][Web][Acceptable][static.qiyi.com]
+ RISK: Unidirectional Traffic
+ detection-update: [....88] [ip4][..tcp] [..192.168.115.8][50508] -> [..223.26.106.19][...80] [HTTP][Unknown][Download][Acceptable][static.qiyi.com]
+ RISK: Binary App Transfer
new: [....89] [ip4][..tcp] [..192.168.115.8][50509] -> [.106.38.219.107][...80] [MIDSTREAM]
detected: [....89] [ip4][..tcp] [..192.168.115.8][50509] -> [.106.38.219.107][...80] [HTTP][Unknown][Web][Acceptable][iplocation.geo.qiyi.com]
+ RISK: Unidirectional Traffic
new: [....90] [ip4][..tcp] [..192.168.115.8][50766] -> [..223.26.106.20][...80] [MIDSTREAM]
detected: [....90] [ip4][..tcp] [..192.168.115.8][50766] -> [..223.26.106.20][...80] [HTTP][Unknown][Web][Acceptable][static.qiyi.com]
+ RISK: Unidirectional Traffic
+ detection-update: [....90] [ip4][..tcp] [..192.168.115.8][50766] -> [..223.26.106.20][...80] [HTTP][Unknown][Download][Acceptable][static.qiyi.com]
+ RISK: Binary App Transfer
new: [....91] [ip4][..tcp] [..192.168.115.8][50767] -> [..223.26.106.20][...80] [MIDSTREAM]
detected: [....91] [ip4][..tcp] [..192.168.115.8][50767] -> [..223.26.106.20][...80] [HTTP][Unknown][Web][Acceptable][static.qiyi.com]
+ RISK: Unidirectional Traffic
+ detection-update: [....91] [ip4][..tcp] [..192.168.115.8][50767] -> [..223.26.106.20][...80] [HTTP][Unknown][Download][Acceptable][static.qiyi.com]
+ RISK: Binary App Transfer
new: [....92] [ip4][..tcp] [..192.168.115.8][50765] -> [..36.110.220.15][...80] [MIDSTREAM]
detected: [....92] [ip4][..tcp] [..192.168.115.8][50765] -> [..36.110.220.15][...80] [HTTP][Unknown][Web][Acceptable][msg.video.qiyi.com]
+ RISK: Unidirectional Traffic
new: [....93] [ip4][..tcp] [..192.168.115.8][50768] -> [..223.26.106.19][...80] [MIDSTREAM]
detected: [....93] [ip4][..tcp] [..192.168.115.8][50768] -> [..223.26.106.19][...80] [HTTP][Unknown][Web][Acceptable][static.qiyi.com]
+ RISK: Unidirectional Traffic
+ detection-update: [....93] [ip4][..tcp] [..192.168.115.8][50768] -> [..223.26.106.19][...80] [HTTP][Unknown][Download][Acceptable][static.qiyi.com]
+ RISK: Binary App Transfer
new: [....94] [ip4][..tcp] [..192.168.115.8][50769] -> [.101.227.200.11][...80] [MIDSTREAM]
detected: [....94] [ip4][..tcp] [..192.168.115.8][50769] -> [.101.227.200.11][...80] [HTTP.PPStream][Unknown][Streaming][Fun][api.cupid.iqiyi.com]
+ RISK: Unidirectional Traffic
new: [....95] [ip4][..tcp] [..192.168.115.8][50771] -> [.202.108.14.236][...80] [MIDSTREAM]
detected: [....95] [ip4][..tcp] [..192.168.115.8][50771] -> [.202.108.14.236][...80] [HTTP][Unknown][Streaming][Acceptable][msg.71.am]
+ RISK: Unidirectional Traffic
new: [....96] [ip4][..tcp] [..192.168.115.8][50772] -> [.123.125.111.70][...80] [MIDSTREAM]
detected: [....96] [ip4][..tcp] [..192.168.115.8][50772] -> [.123.125.111.70][...80] [HTTP.PPStream][Unknown][Streaming][Fun][nl.rcd.iqiyi.com]
+ RISK: Unidirectional Traffic
new: [....97] [ip4][..tcp] [..192.168.115.8][50773] -> [.202.108.14.221][...80] [MIDSTREAM]
detected: [....97] [ip4][..tcp] [..192.168.115.8][50773] -> [.202.108.14.221][...80] [HTTP][Unknown][Streaming][Acceptable][msg.71.am]
+ RISK: Unidirectional Traffic
new: [....98] [ip4][..tcp] [..192.168.115.8][50775] -> [.123.125.111.70][...80] [MIDSTREAM]
detected: [....98] [ip4][..tcp] [..192.168.115.8][50775] -> [.123.125.111.70][...80] [HTTP.PPStream][Unknown][Streaming][Fun][nl.rcd.iqiyi.com]
+ RISK: Unidirectional Traffic
new: [....99] [ip4][..tcp] [..192.168.115.8][50774] -> [.202.108.14.219][...80] [MIDSTREAM]
detected: [....99] [ip4][..tcp] [..192.168.115.8][50774] -> [.202.108.14.219][...80] [HTTP][Unknown][Streaming][Acceptable][msg.71.am]
+ RISK: Unidirectional Traffic
new: [...100] [ip4][..tcp] [..192.168.115.8][50776] -> [..111.206.22.77][...80] [MIDSTREAM]
detected: [...100] [ip4][..tcp] [..192.168.115.8][50776] -> [..111.206.22.77][...80] [HTTP.PPStream][Unknown][Streaming][Fun][msg.iqiyi.com]
+ RISK: Unidirectional Traffic
new: [...101] [ip4][..tcp] [..192.168.115.8][50777] -> [..111.206.22.77][...80] [MIDSTREAM]
detected: [...101] [ip4][..tcp] [..192.168.115.8][50777] -> [..111.206.22.77][...80] [HTTP.PPStream][Unknown][Streaming][Fun][msg.iqiyi.com]
+ RISK: Unidirectional Traffic
new: [...102] [ip4][..tcp] [..192.168.115.8][50778] -> [..223.26.106.20][...80] [MIDSTREAM]
detected: [...102] [ip4][..tcp] [..192.168.115.8][50778] -> [..223.26.106.20][...80] [HTTP.PPStream][Unknown][Streaming][Fun][preimage1.qiyipic.com]
- analyse: [...102] [ip4][..tcp] [..192.168.115.8][50778] -> [..223.26.106.20][...80] [HTTP.PPStream][Unknown][Streaming][Fun]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.061| 0.004| 0.013| 157.316| 1.800]
- [PKTLEN......: 289.000| 1300.000| 1268.400| 175.900| 30943.100| 5.000]
- [BINS(c->s)..: 0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,31,0,0,0,0,0,0,0,0]
- [DIRECTIONS..: 0,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1]
- [IATS(ms)....: 61.4,0.0,0.0,0.0,0.0,0.0,30.3,0.0,0.0,0.0,25.9,0.0,0.0,0.5,0.0,0.0,0.0,0.0,0.6,0.0,0.0,3.5,0.0,0.8,0.0,0.0,0.0,0.0,0.0,0.0,2.2]
- [PKTLENS.....: 289,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300]
- [ENTROPIES...: 5.7,7.1,7.8,7.8,7.8,7.8,7.8,7.9,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.7,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8]
+ RISK: Unidirectional Traffic
new: [...103] [ip4][..udp] [..192.168.115.1][50945] -> [239.255.255.250][.1900]
detected: [...103] [ip4][..udp] [..192.168.115.1][50945] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
new: [...104] [ip4][..tcp] [..192.168.115.8][50779] -> [..111.206.22.77][...80] [MIDSTREAM]
detected: [...104] [ip4][..tcp] [..192.168.115.8][50779] -> [..111.206.22.77][...80] [HTTP.PPStream][Unknown][Streaming][Fun][msg.iqiyi.com]
+ RISK: Unidirectional Traffic
new: [...105] [ip4][..tcp] [..192.168.115.8][50780] -> [..223.26.106.20][...80] [MIDSTREAM]
detected: [...105] [ip4][..tcp] [..192.168.115.8][50780] -> [..223.26.106.20][...80] [HTTP.PPStream][Unknown][Streaming][Fun][preimage1.qiyipic.com]
- analyse: [...105] [ip4][..tcp] [..192.168.115.8][50780] -> [..223.26.106.20][...80] [HTTP.PPStream][Unknown][Streaming][Fun]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.063| 0.005| 0.015| 237.632| 1.700]
- [PKTLEN......: 289.000| 1300.000| 1268.400| 175.900| 30943.100| 5.000]
- [BINS(c->s)..: 0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,31,0,0,0,0,0,0,0,0]
- [DIRECTIONS..: 0,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1]
- [IATS(ms)....: 62.9,0.0,0.0,0.0,0.0,0.0,28.6,0.0,0.0,0.0,57.9,0.0,0.0,0.0,0.0,0.0,0.3,0.0,0.0,0.3,0.0,3.2,0.0,0.0,0.8,0.0,0.0,0.0,0.0,0.0,0.0]
- [PKTLENS.....: 289,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300,1300]
- [ENTROPIES...: 5.7,7.1,7.8,7.8,7.8,7.8,7.8,7.7,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8]
+ RISK: Unidirectional Traffic
update: [....55] [ip4][..udp] [...192.168.5.57][59648] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
new: [...106] [ip4][..tcp] [..192.168.115.8][50781] -> [..223.26.106.20][...80] [MIDSTREAM]
detected: [...106] [ip4][..tcp] [..192.168.115.8][50781] -> [..223.26.106.20][...80] [HTTP.PPStream][Unknown][Streaming][Fun][preimage1.qiyipic.com]
+ RISK: Unidirectional Traffic
new: [...107] [ip4][..tcp] [...77.234.41.35][...80] -> [..192.168.115.8][49174] [MIDSTREAM]
detected: [...107] [ip4][..tcp] [...77.234.41.35][...80] -> [..192.168.115.8][49174] [HTTP][AVAST][Download][Acceptable][]
- RISK: Binary App Transfer, HTTP Suspicious User-Agent
- detection-update: [...107] [ip4][..tcp] [...77.234.41.35][...80] -> [..192.168.115.8][49174] [HTTP][AVAST][Download][Acceptable][]
- RISK: Binary App Transfer, HTTP Suspicious User-Agent
+ RISK: Binary App Transfer, HTTP Susp User-Agent, Unidirectional Traffic
+ detection-update: [...107] [ip4][..tcp] [...77.234.41.35][...80] -> [..192.168.115.8][49174] [HTTP.Cybersec][AVAST][Cybersecurity][Safe][su.ff.avast.com]
+ RISK: HTTP Susp User-Agent
not-detected: [....22] [ip4][..udp] [..192.168.115.8][22793] -> [.222.26.193.119][.7133] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....22] [ip4][..udp] [..192.168.115.8][22793] -> [.222.26.193.119][.7133]
- idle: [....54] [ip4][..tcp] [..192.168.115.8][50486] -> [...77.234.40.96][...80] [HTTP.Cybersec][AVAST][Cybersecurity][Safe]
- RISK: HTTP Suspicious User-Agent
+ idle: [....54] [ip4][..tcp] [..192.168.115.8][50486] -> [...77.234.40.96][...80] [HTTP.Cybersec][AVAST][Download][Safe]
+ RISK: HTTP Susp User-Agent, HTTP Obsolete Server
not-detected: [....25] [ip4][..udp] [..192.168.115.8][22793] -> [.115.157.62.243][29006] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....25] [ip4][..udp] [..192.168.115.8][22793] -> [.115.157.62.243][29006]
not-detected: [....13] [ip4][..udp] [..192.168.115.8][22793] -> [.111.250.102.66][.1107] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....13] [ip4][..udp] [..192.168.115.8][22793] -> [.111.250.102.66][.1107]
guessed: [....10] [ip4][..tcp] [...192.168.5.15][65125] -> [.68.233.253.133][...80] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
end: [....10] [ip4][..tcp] [...192.168.5.15][65125] -> [.68.233.253.133][...80]
idle: [....64] [ip4][..tcp] [...192.168.5.15][65127] -> [.68.233.253.133][...80] [HTTP][Unknown][Web][Acceptable]
+ RISK: Error Code
idle: [....78] [ip4][..tcp] [...192.168.5.15][65128] -> [.68.233.253.133][...80] [HTTP][Unknown][Web][Acceptable]
+ RISK: Error Code
not-detected: [....24] [ip4][..udp] [..192.168.115.8][22793] -> [..222.26.74.190][.1037] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....24] [ip4][..udp] [..192.168.115.8][22793] -> [..222.26.74.190][.1037]
not-detected: [....26] [ip4][..udp] [..192.168.115.8][22793] -> [.210.44.232.243][21044] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....26] [ip4][..udp] [..192.168.115.8][22793] -> [.210.44.232.243][21044]
not-detected: [....27] [ip4][..udp] [..192.168.115.8][22793] -> [..1.169.136.116][17951] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....27] [ip4][..udp] [..192.168.115.8][22793] -> [..1.169.136.116][17951]
- idle: [....39] [ip4][..tcp] [..192.168.115.8][50466] -> [..203.66.182.24][...80] [HTTP.Google][Unknown][Web][Acceptable]
+ idle: [....39] [ip4][..tcp] [..192.168.115.8][50466] -> [..203.66.182.24][...80] [HTTP.OCSP][Unknown][Web][Safe]
not-detected: [....33] [ip4][..udp] [..192.168.115.8][22793] -> [.220.130.154.23][35941] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....33] [ip4][..udp] [..192.168.115.8][22793] -> [.220.130.154.23][35941]
idle: [....55] [ip4][..udp] [...192.168.5.57][59648] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [....57] [ip4][..tcp] [..192.168.115.8][50488] -> [..223.26.106.20][...80] [HTTP][Unknown][Web][Acceptable]
idle: [....60] [ip4][..tcp] [..192.168.115.8][50491] -> [..223.26.106.66][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: HTTP Numeric IP Address
- idle: [....63] [ip4][..tcp] [..192.168.115.8][50494] -> [..223.26.106.66][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: HTTP Numeric IP Address
- idle: [....81] [ip4][..tcp] [..192.168.115.8][50505] -> [..223.26.106.19][...80] [HTTP][Unknown][Web][Acceptable]
- idle: [....85] [ip4][..tcp] [..192.168.115.8][50507] -> [..223.26.106.19][...80] [HTTP][Unknown][Web][Acceptable]
- idle: [....88] [ip4][..tcp] [..192.168.115.8][50508] -> [..223.26.106.19][...80] [HTTP][Unknown][Web][Acceptable]
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
+ idle: [....63] [ip4][..tcp] [..192.168.115.8][50494] -> [..223.26.106.66][...80] [HTTP][Unknown][Download][Acceptable]
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
+ idle: [....81] [ip4][..tcp] [..192.168.115.8][50505] -> [..223.26.106.19][...80] [HTTP][Unknown][Download][Acceptable]
+ RISK: Binary App Transfer
+ idle: [....85] [ip4][..tcp] [..192.168.115.8][50507] -> [..223.26.106.19][...80] [HTTP][Unknown][Download][Acceptable]
+ RISK: Binary App Transfer
+ idle: [....88] [ip4][..tcp] [..192.168.115.8][50508] -> [..223.26.106.19][...80] [HTTP][Unknown][Download][Acceptable]
+ RISK: Binary App Transfer
not-detected: [....32] [ip4][..udp] [..192.168.115.8][22793] -> [..114.47.91.129][22576] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....32] [ip4][..udp] [..192.168.115.8][22793] -> [..114.47.91.129][22576]
idle: [....37] [ip4][..tcp] [..192.168.115.8][50463] -> [.101.227.200.11][...80] [HTTP.PPStream][Unknown][Streaming][Fun]
+ RISK: HTTP Obsolete Server
idle: [....47] [ip4][..tcp] [..192.168.115.8][50476] -> [..101.227.32.39][...80] [HTTP.PPStream][Unknown][Streaming][Fun]
+ RISK: HTTP Susp User-Agent
idle: [....67] [ip4][..tcp] [..192.168.115.8][50496] -> [.101.227.200.11][...80] [HTTP.PPStream][Unknown][Streaming][Fun]
+ RISK: HTTP Obsolete Server
idle: [....65] [ip4][..udp] [...192.168.5.48][63930] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [....69] [ip4][..udp] [...192.168.5.63][39383] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
not-detected: [.....6] [ip4][..udp] [..192.168.115.8][22793] -> [.111.249.53.196][32443] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][..udp] [..192.168.115.8][22793] -> [.111.249.53.196][32443]
- idle: [....90] [ip4][..tcp] [..192.168.115.8][50766] -> [..223.26.106.20][...80] [HTTP][Unknown][Web][Acceptable]
- idle: [....91] [ip4][..tcp] [..192.168.115.8][50767] -> [..223.26.106.20][...80] [HTTP][Unknown][Web][Acceptable]
- idle: [....93] [ip4][..tcp] [..192.168.115.8][50768] -> [..223.26.106.19][...80] [HTTP][Unknown][Web][Acceptable]
- end: [...102] [ip4][..tcp] [..192.168.115.8][50778] -> [..223.26.106.20][...80] [HTTP.PPStream][Unknown][Streaming][Fun]
- end: [...105] [ip4][..tcp] [..192.168.115.8][50780] -> [..223.26.106.20][...80] [HTTP.PPStream][Unknown][Streaming][Fun]
+ idle: [....90] [ip4][..tcp] [..192.168.115.8][50766] -> [..223.26.106.20][...80] [HTTP][Unknown][Download][Acceptable]
+ RISK: Binary App Transfer
+ idle: [....91] [ip4][..tcp] [..192.168.115.8][50767] -> [..223.26.106.20][...80] [HTTP][Unknown][Download][Acceptable]
+ RISK: Binary App Transfer
+ idle: [....93] [ip4][..tcp] [..192.168.115.8][50768] -> [..223.26.106.19][...80] [HTTP][Unknown][Download][Acceptable]
+ RISK: Binary App Transfer
+ idle: [...102] [ip4][..tcp] [..192.168.115.8][50778] -> [..223.26.106.20][...80] [HTTP.PPStream][Unknown][Streaming][Fun]
+ idle: [...105] [ip4][..tcp] [..192.168.115.8][50780] -> [..223.26.106.20][...80] [HTTP.PPStream][Unknown][Streaming][Fun]
idle: [...106] [ip4][..tcp] [..192.168.115.8][50781] -> [..223.26.106.20][...80]
idle: [....87] [ip4][..tcp] [.202.108.14.219][...80] -> [..192.168.115.8][50295]
- idle: [.....3] [ip4][..udp] [..192.168.115.8][22793] -> [...114.42.0.158][.7716] [Unknown][Unknown][Unrated]
+ not-detected: [.....3] [ip4][..udp] [..192.168.115.8][22793] -> [...114.42.0.158][.7716] [Unknown][Unknown][Unrated]
+ idle: [.....3] [ip4][..udp] [..192.168.115.8][22793] -> [...114.42.0.158][.7716]
idle: [....80] [ip4][..udp] [...192.168.5.28][60023] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
not-detected: [....12] [ip4][..udp] [..192.168.115.8][22793] -> [...210.44.171.1][29702] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....12] [ip4][..udp] [..192.168.115.8][22793] -> [...210.44.171.1][29702]
idle: [....58] [ip4][..tcp] [..192.168.115.8][50489] -> [.119.188.13.188][...80] [HTTP][Unknown][Web][Acceptable]
+ RISK: HTTP Obsolete Server
idle: [....59] [ip4][..tcp] [..192.168.115.8][50490] -> [.119.188.13.188][...80] [HTTP][Unknown][Web][Acceptable]
+ RISK: HTTP Obsolete Server
idle: [....94] [ip4][..tcp] [..192.168.115.8][50769] -> [.101.227.200.11][...80] [HTTP.PPStream][Unknown][Streaming][Fun]
- idle: [.....4] [ip4][..udp] [..192.168.115.8][22793] -> [.222.197.138.12][.6956] [Unknown][Unknown][Unrated]
- idle: [.....2] [ip4][..udp] [..118.171.15.56][.5544] -> [..192.168.115.8][22793] [Unknown][Unknown][Unrated]
+ RISK: HTTP Obsolete Server
+ not-detected: [.....4] [ip4][..udp] [..192.168.115.8][22793] -> [.222.197.138.12][.6956] [Unknown][Unknown][Unrated]
+ idle: [.....4] [ip4][..udp] [..192.168.115.8][22793] -> [.222.197.138.12][.6956]
+ not-detected: [.....2] [ip4][..udp] [..118.171.15.56][.5544] -> [..192.168.115.8][22793] [Unknown][Unknown][Unrated]
+ idle: [.....2] [ip4][..udp] [..118.171.15.56][.5544] -> [..192.168.115.8][22793]
guessed: [.....9] [ip4][..tcp] [..192.168.115.8][50462] -> [.202.108.14.236][...80] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [.....9] [ip4][..tcp] [..192.168.115.8][50462] -> [.202.108.14.236][...80]
idle: [....40] [ip4][..tcp] [..192.168.115.8][50467] -> [.202.108.14.219][...80] [HTTP][Unknown][Streaming][Acceptable]
+ RISK: HTTP Obsolete Server
idle: [....41] [ip4][..tcp] [..192.168.115.8][50469] -> [.202.108.14.219][...80] [HTTP][Unknown][Streaming][Acceptable]
+ RISK: HTTP Obsolete Server
idle: [....42] [ip4][..tcp] [..192.168.115.8][50470] -> [.202.108.14.236][...80] [HTTP.PPStream][Unknown][Streaming][Fun]
+ RISK: HTTP Obsolete Server
idle: [....43] [ip4][..tcp] [..192.168.115.8][50471] -> [.202.108.14.236][...80] [HTTP][Unknown][Streaming][Acceptable]
+ RISK: HTTP Obsolete Server
idle: [....46] [ip4][..tcp] [..192.168.115.8][50473] -> [.202.108.14.219][...80] [HTTP][Unknown][Streaming][Acceptable]
+ RISK: HTTP Obsolete Server
idle: [....44] [ip4][..tcp] [..192.168.115.8][50474] -> [.202.108.14.221][...80] [HTTP.PPStream][Unknown][Streaming][Fun]
+ RISK: HTTP Obsolete Server
idle: [....45] [ip4][..tcp] [..192.168.115.8][50475] -> [.202.108.14.236][...80] [HTTP][Unknown][Streaming][Acceptable]
+ RISK: HTTP Obsolete Server
idle: [....48] [ip4][..tcp] [..192.168.115.8][50477] -> [.202.108.14.219][...80] [HTTP][Unknown][Streaming][Acceptable]
+ RISK: HTTP Obsolete Server
idle: [....51] [ip4][..tcp] [..192.168.115.8][50483] -> [.202.108.14.219][...80] [HTTP][Unknown][Streaming][Acceptable]
+ RISK: HTTP Obsolete Server
idle: [....52] [ip4][..tcp] [..192.168.115.8][50484] -> [.202.108.14.219][...80] [HTTP][Unknown][Streaming][Acceptable]
+ RISK: HTTP Obsolete Server
idle: [....53] [ip4][..tcp] [..192.168.115.8][50485] -> [.202.108.14.236][...80] [HTTP][Unknown][Streaming][Acceptable]
+ RISK: HTTP Obsolete Server
idle: [....56] [ip4][..tcp] [..192.168.115.8][50487] -> [.202.108.14.219][...80]
idle: [....62] [ip4][..tcp] [..192.168.115.8][50493] -> [.202.108.14.236][...80] [HTTP][Unknown][Streaming][Acceptable]
+ RISK: HTTP Obsolete Server
idle: [....66] [ip4][..tcp] [..192.168.115.8][50495] -> [.202.108.14.236][...80] [HTTP][Unknown][Streaming][Acceptable]
+ RISK: HTTP Obsolete Server
idle: [....74] [ip4][..tcp] [..192.168.115.8][50501] -> [.202.108.14.236][...80] [HTTP][Unknown][Streaming][Acceptable]
+ RISK: HTTP Obsolete Server
idle: [....76] [ip4][..tcp] [..192.168.115.8][50502] -> [.202.108.14.236][...80] [HTTP][Unknown][Streaming][Acceptable]
+ RISK: HTTP Obsolete Server
idle: [....79] [ip4][..tcp] [..192.168.115.8][50503] -> [.202.108.14.219][...80] [HTTP][Unknown][Streaming][Acceptable]
+ RISK: HTTP Obsolete Server
idle: [....82] [ip4][..tcp] [..192.168.115.8][50504] -> [.202.108.14.236][...80]
idle: [....86] [ip4][..tcp] [.202.108.14.219][...80] -> [..192.168.115.8][50506]
idle: [...107] [ip4][..tcp] [...77.234.41.35][...80] -> [..192.168.115.8][49174]
not-detected: [....23] [ip4][..udp] [..192.168.115.8][22793] -> [.114.37.142.173][.1074] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....23] [ip4][..udp] [..192.168.115.8][22793] -> [.114.37.142.173][.1074]
- idle: [.....7] [ip4][..udp] [..192.168.115.8][22793] -> [219.228.107.156][.1250] [Unknown][Unknown][Unrated]
+ not-detected: [.....7] [ip4][..udp] [..192.168.115.8][22793] -> [219.228.107.156][.1250] [Unknown][Unknown][Unrated]
+ idle: [.....7] [ip4][..udp] [..192.168.115.8][22793] -> [219.228.107.156][.1250]
not-detected: [....16] [ip4][..udp] [..192.168.115.8][22793] -> [...36.233.39.81][18590] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....16] [ip4][..udp] [..192.168.115.8][22793] -> [...36.233.39.81][18590]
idle: [....38] [ip4][..tcp] [..192.168.115.8][50464] -> [.123.125.112.49][...80] [HTTP][Unknown][Web][Acceptable]
idle: [....35] [ip4][..udp] [..192.168.115.8][22793] -> [119.188.133.182][17788] [PPStream][Unknown][Streaming][Fun]
+ RISK: Unidirectional Traffic
end: [....68] [ip4][..tcp] [..192.168.115.8][50497] -> [.123.125.112.49][...80] [HTTP][Unknown][Web][Acceptable]
idle: [....50] [ip4][..tcp] [..192.168.115.8][50482] -> [.140.205.243.64][...80] [HTTP][Unknown][Web][Acceptable]
not-detected: [....18] [ip4][..udp] [..192.168.115.8][22793] -> [..61.227.170.88][20227] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....18] [ip4][..udp] [..192.168.115.8][22793] -> [..61.227.170.88][20227]
not-detected: [....20] [ip4][..udp] [..192.168.115.8][22793] -> [.121.248.133.93][12757] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....20] [ip4][..udp] [..192.168.115.8][22793] -> [.121.248.133.93][12757]
idle: [....95] [ip4][..tcp] [..192.168.115.8][50771] -> [.202.108.14.236][...80] [HTTP][Unknown][Streaming][Acceptable]
+ RISK: HTTP Obsolete Server
not-detected: [....19] [ip4][..udp] [..192.168.115.8][22793] -> [..202.112.31.89][29072] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....19] [ip4][..udp] [..192.168.115.8][22793] -> [..202.112.31.89][29072]
idle: [....97] [ip4][..tcp] [..192.168.115.8][50773] -> [.202.108.14.221][...80] [HTTP][Unknown][Streaming][Acceptable]
+ RISK: HTTP Obsolete Server
idle: [....99] [ip4][..tcp] [..192.168.115.8][50774] -> [.202.108.14.219][...80] [HTTP][Unknown][Streaming][Acceptable]
+ RISK: HTTP Obsolete Server
not-detected: [....28] [ip4][..udp] [..192.168.115.8][22793] -> [.114.41.144.153][10492] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....28] [ip4][..udp] [..192.168.115.8][22793] -> [.114.41.144.153][10492]
not-detected: [....14] [ip4][..udp] [..192.168.115.8][22793] -> [..61.223.204.67][11102] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....14] [ip4][..udp] [..192.168.115.8][22793] -> [..61.223.204.67][11102]
idle: [....71] [ip4][..tcp] [..192.168.115.8][50498] -> [..36.110.220.15][...80] [HTTP][Unknown][Web][Acceptable]
+ RISK: HTTP Obsolete Server
idle: [....61] [ip4][..tcp] [..192.168.115.8][50492] -> [...111.206.13.3][...80] [HTTP][Unknown][Web][Acceptable]
+ RISK: HTTP Obsolete Server
idle: [....72] [ip4][..tcp] [..192.168.115.8][50499] -> [..111.206.22.76][...80] [HTTP.PPStream][Unknown][Streaming][Fun]
+ RISK: HTTP Obsolete Server
idle: [....89] [ip4][..tcp] [..192.168.115.8][50509] -> [.106.38.219.107][...80] [HTTP][Unknown][Web][Acceptable]
idle: [....96] [ip4][..tcp] [..192.168.115.8][50772] -> [.123.125.111.70][...80] [HTTP.PPStream][Unknown][Streaming][Fun]
idle: [....98] [ip4][..tcp] [..192.168.115.8][50775] -> [.123.125.111.70][...80] [HTTP.PPStream][Unknown][Streaming][Fun]
@@ -424,31 +527,45 @@
idle: [.....8] [ip4][..udp] [.183.228.182.44][13913] -> [..192.168.115.8][22793]
idle: [....84] [ip4][..udp] [...192.168.5.41][50374] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [....36] [ip4][..udp] [..192.168.115.8][22793] -> [.183.61.167.104][17788] [PPStream][Unknown][Streaming][Fun]
+ RISK: Unidirectional Traffic
idle: [....29] [ip4][..udp] [..192.168.115.8][22793] -> [..183.61.167.82][17788] [PPStream][Unknown][Streaming][Fun]
+ RISK: Unidirectional Traffic
not-detected: [....21] [ip4][..udp] [..192.168.115.8][22793] -> [..1.175.128.104][.5185] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....21] [ip4][..udp] [..192.168.115.8][22793] -> [..1.175.128.104][.5185]
idle: [....34] [ip4][..udp] [..192.168.115.8][22793] -> [...218.61.39.87][17788] [PPStream][Unknown][Streaming][Fun]
+ RISK: Unidirectional Traffic
idle: [....11] [ip4][..udp] [..192.168.115.8][22793] -> [..218.61.39.103][17788] [PPStream][Unknown][Streaming][Fun]
+ RISK: Unidirectional Traffic
idle: [....77] [ip4][..udp] [...192.168.5.50][52529] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
not-detected: [....31] [ip4][..udp] [..192.168.115.8][22793] -> [...210.47.12.20][33738] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....31] [ip4][..udp] [..192.168.115.8][22793] -> [...210.47.12.20][33738]
not-detected: [....30] [ip4][..udp] [..192.168.115.8][22793] -> [...210.47.12.19][33738] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....30] [ip4][..udp] [..192.168.115.8][22793] -> [...210.47.12.19][33738]
idle: [....92] [ip4][..tcp] [..192.168.115.8][50765] -> [..36.110.220.15][...80] [HTTP][Unknown][Web][Acceptable]
+ RISK: HTTP Obsolete Server
idle: [....49] [ip4][..tcp] [..117.79.81.135][...80] -> [..192.168.115.8][50443]
idle: [...100] [ip4][..tcp] [..192.168.115.8][50776] -> [..111.206.22.77][...80] [HTTP.PPStream][Unknown][Streaming][Fun]
+ RISK: HTTP Obsolete Server
idle: [...101] [ip4][..tcp] [..192.168.115.8][50777] -> [..111.206.22.77][...80] [HTTP.PPStream][Unknown][Streaming][Fun]
+ RISK: HTTP Obsolete Server
idle: [...104] [ip4][..tcp] [..192.168.115.8][50779] -> [..111.206.22.77][...80] [HTTP.PPStream][Unknown][Streaming][Fun]
+ RISK: HTTP Obsolete Server
idle: [....75] [ip4][..udp] [...192.168.5.38][58897] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [....70] [ip4][..udp] [...192.168.5.63][60976] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
not-detected: [....17] [ip4][..udp] [..192.168.115.8][22793] -> [.111.117.101.81][10162] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....17] [ip4][..udp] [..192.168.115.8][22793] -> [.111.117.101.81][10162]
idle: [...103] [ip4][..udp] [..192.168.115.1][50945] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
- idle: [.....1] [ip4][..udp] [....1.173.5.226][22636] -> [..192.168.115.8][22793] [Unknown][Unknown][Unrated]
+ not-detected: [.....1] [ip4][..udp] [....1.173.5.226][22636] -> [..192.168.115.8][22793] [Unknown][Unknown][Unrated]
+ idle: [.....1] [ip4][..udp] [....1.173.5.226][22636] -> [..192.168.115.8][22793]
not-detected: [.....5] [ip4][..udp] [..192.168.115.8][22793] -> [...202.198.7.89][16039] [Unknown][Unknown][Unrated]
idle: [.....5] [ip4][..udp] [..192.168.115.8][22793] -> [...202.198.7.89][16039]
idle: [....73] [ip4][..tcp] [..192.168.115.8][50500] -> [..23.41.133.163][...80] [HTTP][Unknown][Web][Acceptable]
idle: [....83] [ip4][..udp] [...192.168.5.38][.1900] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
not-detected: [....15] [ip4][..udp] [..192.168.115.8][22793] -> [..36.237.154.69][.4316] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....15] [ip4][..udp] [..192.168.115.8][22793] -> [..36.237.154.69][.4316]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/pptp.pcap.out b/test/results/flow-info/default/pptp.pcap.out
index 2432dcdd8..2432dcdd8 100644
--- a/test/results/flow-info/pptp.pcap.out
+++ b/test/results/flow-info/default/pptp.pcap.out
diff --git a/test/results/flow-info/psiphon3.pcap.out b/test/results/flow-info/default/psiphon3.pcap.out
index ca4d3a03d..ca4d3a03d 100644
--- a/test/results/flow-info/psiphon3.pcap.out
+++ b/test/results/flow-info/default/psiphon3.pcap.out
diff --git a/test/results/flow-info/punycode-idn.pcap.out b/test/results/flow-info/default/punycode-idn.pcap.out
index f683a9b0e..1398736fb 100644
--- a/test/results/flow-info/punycode-idn.pcap.out
+++ b/test/results/flow-info/default/punycode-idn.pcap.out
@@ -3,13 +3,18 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..192.168.2.140][45520] -> [....192.168.2.1][...53]
detected: [.....1] [ip4][..udp] [..192.168.2.140][45520] -> [....192.168.2.1][...53] [DNS.Spotify][Unknown][Network][Fun][i.scdn.co]
+ RISK: Unidirectional Traffic
detection-update: [.....1] [ip4][..udp] [..192.168.2.140][45520] -> [....192.168.2.1][...53] [DNS.Spotify][Unknown][Network][Fun][i.scdn.co]
new: [.....2] [ip4][..udp] [..192.168.2.140][60156] -> [....192.168.2.1][...53]
detected: [.....2] [ip4][..udp] [..192.168.2.140][60156] -> [....192.168.2.1][...53] [DNS][Unknown][Network][Acceptable][www.xn--mnich-kva.com]
+ RISK: IDN Domain Name, Unidirectional Traffic
detection-update: [.....2] [ip4][..udp] [..192.168.2.140][60156] -> [....192.168.2.1][...53] [DNS][Unknown][Network][Acceptable][www.xn--mnich-kva.com]
+ RISK: IDN Domain Name, Error Code
new: [.....3] [ip4][..tcp] [..192.168.2.140][56011] -> [...170.33.9.230][...80]
detected: [.....3] [ip4][..tcp] [..192.168.2.140][56011] -> [...170.33.9.230][...80] [HTTP][Alibaba][Web][Acceptable][www.love.xn--55qx5d]
+ RISK: IDN Domain Name
idle: [.....1] [ip4][..udp] [..192.168.2.140][45520] -> [....192.168.2.1][...53] [DNS.Spotify][Unknown][Network][Fun]
idle: [.....2] [ip4][..udp] [..192.168.2.140][60156] -> [....192.168.2.1][...53]
end: [.....3] [ip4][..tcp] [..192.168.2.140][56011] -> [...170.33.9.230][...80] [HTTP][Alibaba][Web][Acceptable]
+ RISK: IDN Domain Name, Error Code
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/quic-23.pcap.out b/test/results/flow-info/default/quic-23.pcap.out
index 94058c828..f07e1a4f6 100644
--- a/test/results/flow-info/quic-23.pcap.out
+++ b/test/results/flow-info/default/quic-23.pcap.out
@@ -3,5 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip6][..udp] [2e4a:774d:26fd:7f9b:785b:2d1b:4f8a:63c7][50339] -> [3bcc:9991:faba:bae1:cd2a:e2fd:b3be:c5ab][..443]
detected: [.....1] [ip6][..udp] [2e4a:774d:26fd:7f9b:785b:2d1b:4f8a:63c7][50339] -> [3bcc:9991:faba:bae1:cd2a:e2fd:b3be:c5ab][..443] [QUIC][Unknown][Web][Acceptable][quic.aiortc.org]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip6][..udp] [2e4a:774d:26fd:7f9b:785b:2d1b:4f8a:63c7][50339] -> [3bcc:9991:faba:bae1:cd2a:e2fd:b3be:c5ab][..443] [QUIC][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/quic-24.pcap.out b/test/results/flow-info/default/quic-24.pcap.out
index c8d525960..ee74e8443 100644
--- a/test/results/flow-info/quic-24.pcap.out
+++ b/test/results/flow-info/default/quic-24.pcap.out
@@ -3,5 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [.......10.9.0.1][41436] -> [.......10.9.0.2][..443]
detected: [.....1] [ip4][..udp] [.......10.9.0.1][41436] -> [.......10.9.0.2][..443] [QUIC][Unknown][Web][Acceptable][localhost]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [.......10.9.0.1][41436] -> [.......10.9.0.2][..443] [QUIC][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/quic-27.pcap.out b/test/results/flow-info/default/quic-27.pcap.out
index 4cc28dd37..4fcf37f71 100644
--- a/test/results/flow-info/quic-27.pcap.out
+++ b/test/results/flow-info/default/quic-27.pcap.out
@@ -3,5 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip6][..udp] [...3ef4:2194:f4a6:3503:40cd:714:57:c4e4][64229] -> [..............2f3d:64d1:9d59:549b::200e][..443]
detected: [.....1] [ip6][..udp] [...3ef4:2194:f4a6:3503:40cd:714:57:c4e4][64229] -> [..............2f3d:64d1:9d59:549b::200e][..443] [QUIC.Google][Unknown][Web][Acceptable][play.google.com]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip6][..udp] [...3ef4:2194:f4a6:3503:40cd:714:57:c4e4][64229] -> [..............2f3d:64d1:9d59:549b::200e][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/quic-28.pcap.out b/test/results/flow-info/default/quic-28.pcap.out
index 1b2b989c0..b205d48d2 100644
--- a/test/results/flow-info/quic-28.pcap.out
+++ b/test/results/flow-info/default/quic-28.pcap.out
@@ -3,6 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [.......10.9.0.2][60106] -> [..104.26.11.240][..443]
detected: [.....1] [ip4][..udp] [.......10.9.0.2][60106] -> [..104.26.11.240][..443] [QUIC][Cloudflare][Web][Acceptable][www.wireshark.org]
+ RISK: Unidirectional Traffic
analyse: [.....1] [ip4][..udp] [.......10.9.0.2][60106] -> [..104.26.11.240][..443] [QUIC][Cloudflare][Web][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.021| 0.006| 0.007| 51.479| 3.900]
@@ -14,4 +15,5 @@
[PKTLENS.....: 1228,75,1228,99,189,1228,1224,1225,245,138,89,71,71,154,98,543,71,71,96,71,71,71,71,71,686,71,133,71,845,71,108,72]
[ENTROPIES...: 7.8,5.4,7.8,6.0,6.7,7.8,7.8,7.9,7.1,6.5,6.1,5.9,5.9,6.7,6.1,7.6,5.8,5.7,6.1,5.7,5.7,5.8,5.8,5.8,7.7,5.8,6.6,5.8,7.8,5.9,6.2,5.7]
idle: [.....1] [ip4][..udp] [.......10.9.0.2][60106] -> [..104.26.11.240][..443] [QUIC][Cloudflare][Web][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/quic-29.pcap.out b/test/results/flow-info/default/quic-29.pcap.out
index e12999ea0..2afedef2b 100644
--- a/test/results/flow-info/quic-29.pcap.out
+++ b/test/results/flow-info/default/quic-29.pcap.out
@@ -3,5 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [.......10.9.0.1][36588] -> [.......10.9.0.2][..443]
detected: [.....1] [ip4][..udp] [.......10.9.0.1][36588] -> [.......10.9.0.2][..443] [QUIC][Unknown][Web][Acceptable][localhost]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [.......10.9.0.1][36588] -> [.......10.9.0.2][..443] [QUIC][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/quic-33.pcapng.out b/test/results/flow-info/default/quic-33.pcapng.out
index 8cc283c11..2233edebe 100644
--- a/test/results/flow-info/quic-33.pcapng.out
+++ b/test/results/flow-info/default/quic-33.pcapng.out
@@ -3,7 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip6][..udp] [....................................::1][51430] -> [....................................::1][.4443]
detected: [.....1] [ip6][..udp] [....................................::1][51430] -> [....................................::1][.4443] [QUIC][Unknown][Web][Acceptable][]
- RISK: Known Proto on Non Std Port, Missing SNI TLS Extn
+ RISK: Known Proto on Non Std Port, Missing SNI TLS Extn, Unidirectional Traffic
idle: [.....1] [ip6][..udp] [....................................::1][51430] -> [....................................::1][.4443] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port, Missing SNI TLS Extn
+ RISK: Known Proto on Non Std Port, Missing SNI TLS Extn, Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/quic-34.pcap.out b/test/results/flow-info/default/quic-34.pcap.out
index 570f66ee6..1be4c0b0e 100644
--- a/test/results/flow-info/quic-34.pcap.out
+++ b/test/results/flow-info/default/quic-34.pcap.out
@@ -3,7 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [...192.168.56.1][55880] -> [.192.168.56.198][.4443]
detected: [.....1] [ip4][..udp] [...192.168.56.1][55880] -> [.192.168.56.198][.4443] [QUIC][Unknown][Web][Acceptable][]
- RISK: Known Proto on Non Std Port, Missing SNI TLS Extn
+ RISK: Known Proto on Non Std Port, Missing SNI TLS Extn, Unidirectional Traffic
idle: [.....1] [ip4][..udp] [...192.168.56.1][55880] -> [.192.168.56.198][.4443] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port, Missing SNI TLS Extn
+ RISK: Known Proto on Non Std Port, Missing SNI TLS Extn, Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/quic-fuzz-overflow.pcapng.out b/test/results/flow-info/default/quic-fuzz-overflow.pcapng.out
index c57f84a5a..c57f84a5a 100644
--- a/test/results/flow-info/quic-fuzz-overflow.pcapng.out
+++ b/test/results/flow-info/default/quic-fuzz-overflow.pcapng.out
diff --git a/test/results/flow-info/quic-mvfst-22.pcap.out b/test/results/flow-info/default/quic-mvfst-22.pcap.out
index aca2f88e1..a95b3ee84 100644
--- a/test/results/flow-info/quic-mvfst-22.pcap.out
+++ b/test/results/flow-info/default/quic-mvfst-22.pcap.out
@@ -1,6 +1,7 @@
DAEMON-EVENT: init
new: [.....1] [ip4][..udp] [......10.0.2.15][35601] -> [.....31.13.86.8][..443]
detected: [.....1] [ip4][..udp] [......10.0.2.15][35601] -> [.....31.13.86.8][..443] [QUIC.Facebook][Facebook][SocialNetwork][Fun][graph.facebook.com]
+ RISK: Unidirectional Traffic
analyse: [.....1] [ip4][..udp] [......10.0.2.15][35601] -> [.....31.13.86.8][..443] [QUIC.Facebook][Facebook][SocialNetwork][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 2.091| 0.163| 0.507| 257127.612| 2.100]
@@ -12,5 +13,7 @@
[PKTLENS.....: 1260,1280,1280,221,81,1260,106,95,66,261,59,52,1128,56,60,598,1260,1221,56,56,60,52,1280,1280,1280,1280,84,65,52,1280,1280,1280]
[ENTROPIES...: 7.9,7.8,7.9,6.9,5.8,7.8,6.0,6.1,5.4,7.1,5.4,5.2,7.8,5.2,5.4,7.6,7.8,7.8,5.4,5.2,5.4,5.1,7.8,7.8,7.9,7.8,5.9,5.5,5.2,7.9,7.8,7.8]
update: [.....1] [ip4][..udp] [......10.0.2.15][35601] -> [.....31.13.86.8][..443] [QUIC.Facebook][Facebook][SocialNetwork][Fun]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [......10.0.2.15][35601] -> [.....31.13.86.8][..443] [QUIC.Facebook][Facebook][SocialNetwork][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/default/quic-mvfst-22_decryption_error.pcap.out b/test/results/flow-info/default/quic-mvfst-22_decryption_error.pcap.out
new file mode 100644
index 000000000..5ae2e8bee
--- /dev/null
+++ b/test/results/flow-info/default/quic-mvfst-22_decryption_error.pcap.out
@@ -0,0 +1,9 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..udp] [..10.230.40.168][62196] -> [..94.97.225.146][..443]
+ detected: [.....1] [ip4][..udp] [..10.230.40.168][62196] -> [..94.97.225.146][..443] [QUIC][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [.....1] [ip4][..udp] [..10.230.40.168][62196] -> [..94.97.225.146][..443] [QUIC][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/quic-mvfst-27.pcapng.out b/test/results/flow-info/default/quic-mvfst-27.pcapng.out
index 47aa89e61..b00dff7d0 100644
--- a/test/results/flow-info/quic-mvfst-27.pcapng.out
+++ b/test/results/flow-info/default/quic-mvfst-27.pcapng.out
@@ -1,5 +1,7 @@
DAEMON-EVENT: init
new: [.....1] [ip4][..udp] [......10.0.2.15][35957] -> [..69.171.250.15][..443]
detected: [.....1] [ip4][..udp] [......10.0.2.15][35957] -> [..69.171.250.15][..443] [QUIC.Facebook][Facebook][SocialNetwork][Fun][graph.facebook.com]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [......10.0.2.15][35957] -> [..69.171.250.15][..443] [QUIC.Facebook][Facebook][SocialNetwork][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/quic-mvfst-exp.pcap.out b/test/results/flow-info/default/quic-mvfst-exp.pcap.out
index 4b56a7f0f..cbb70715a 100644
--- a/test/results/flow-info/quic-mvfst-exp.pcap.out
+++ b/test/results/flow-info/default/quic-mvfst-exp.pcap.out
@@ -2,6 +2,8 @@
DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip6][..udp] [.2aac:cdf7:d506:7807:9092:75f:a963:f4ab][57587] -> [....3f65:ece9:fe71:6e2a:face:b00c::358e][..443]
- detected: [.....1] [ip6][..udp] [.2aac:cdf7:d506:7807:9092:75f:a963:f4ab][57587] -> [....3f65:ece9:fe71:6e2a:face:b00c::358e][..443] [QUIC.Facebook][Unknown][SocialNetwork][Fun][video.fmct2-3.fna.fbcdn.net]
- idle: [.....1] [ip6][..udp] [.2aac:cdf7:d506:7807:9092:75f:a963:f4ab][57587] -> [....3f65:ece9:fe71:6e2a:face:b00c::358e][..443] [QUIC.Facebook][Unknown][SocialNetwork][Fun]
+ detected: [.....1] [ip6][..udp] [.2aac:cdf7:d506:7807:9092:75f:a963:f4ab][57587] -> [....3f65:ece9:fe71:6e2a:face:b00c::358e][..443] [QUIC.FbookReelStory][Unknown][SocialNetwork][Fun][video.fmct2-3.fna.fbcdn.net]
+ RISK: Unidirectional Traffic
+ idle: [.....1] [ip6][..udp] [.2aac:cdf7:d506:7807:9092:75f:a963:f4ab][57587] -> [....3f65:ece9:fe71:6e2a:face:b00c::358e][..443] [QUIC.FbookReelStory][Unknown][SocialNetwork][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/quic-v2-01.pcapng.out b/test/results/flow-info/default/quic-v2-01.pcapng.out
index a47d20b00..8a97bec80 100644
--- a/test/results/flow-info/quic-v2-01.pcapng.out
+++ b/test/results/flow-info/default/quic-v2-01.pcapng.out
@@ -3,7 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [...192.168.56.1][34229] -> [.192.168.56.198][.4443]
detected: [.....1] [ip4][..udp] [...192.168.56.1][34229] -> [.192.168.56.198][.4443] [QUIC][Unknown][Web][Acceptable][]
- RISK: Known Proto on Non Std Port, Missing SNI TLS Extn
+ RISK: Known Proto on Non Std Port, Missing SNI TLS Extn, Unidirectional Traffic
idle: [.....1] [ip4][..udp] [...192.168.56.1][34229] -> [.192.168.56.198][.4443] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port, Missing SNI TLS Extn
+ RISK: Known Proto on Non Std Port, Missing SNI TLS Extn, Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/quic.pcap.out b/test/results/flow-info/default/quic.pcap.out
index 0a18f1a43..1702ec5fd 100644
--- a/test/results/flow-info/quic.pcap.out
+++ b/test/results/flow-info/default/quic.pcap.out
@@ -3,6 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..192.168.1.109][57833] -> [.216.58.212.101][..443]
detected: [.....1] [ip4][..udp] [..192.168.1.109][57833] -> [.216.58.212.101][..443] [QUIC.GMail][Google][Email][Acceptable][mail.google.com]
+ RISK: Unidirectional Traffic
analyse: [.....1] [ip4][..udp] [..192.168.1.109][57833] -> [.216.58.212.101][..443] [QUIC.GMail][Google][Email][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 3.198| 0.584| 0.964| 929164.558| 3.400]
@@ -17,29 +18,37 @@
DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....2] [ip4][..udp] [.......10.0.0.4][40134] -> [.......10.0.0.3][.6121]
detected: [.....2] [ip4][..udp] [.......10.0.0.4][40134] -> [.......10.0.0.3][.6121] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port, Missing SNI TLS Extn
+ RISK: Known Proto on Non Std Port, Missing SNI TLS Extn, Unidirectional Traffic
idle: [.....1] [ip4][..udp] [..192.168.1.109][57833] -> [.216.58.212.101][..443] [QUIC.GMail][Google][Email][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 419 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 2|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....3] [ip4][..udp] [..192.168.1.105][45669] -> [...172.217.16.4][..443]
detected: [.....3] [ip4][..udp] [..192.168.1.105][45669] -> [...172.217.16.4][..443] [QUIC.Google][Google][Web][Acceptable][www.google.com]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..udp] [..192.168.1.105][40461] -> [...172.217.16.3][..443]
new: [.....5] [ip4][..udp] [..192.168.1.105][34438] -> [.216.58.210.238][..443]
detected: [.....5] [ip4][..udp] [..192.168.1.105][34438] -> [.216.58.210.238][..443] [QUIC.YouTube][Google][Media][Fun][www.youtube.com]
+ RISK: Unidirectional Traffic
new: [.....6] [ip4][..udp] [..192.168.1.105][48445] -> [.216.58.214.110][..443]
detected: [.....6] [ip4][..udp] [..192.168.1.105][48445] -> [.216.58.214.110][..443] [QUIC.YouTube][Google][Media][Fun][i.ytimg.com]
+ RISK: Unidirectional Traffic
new: [.....7] [ip4][..udp] [..192.168.1.105][40030] -> [.216.58.201.227][..443]
detected: [.....7] [ip4][..udp] [..192.168.1.105][40030] -> [.216.58.201.227][..443] [QUIC.Google][Google][Web][Acceptable][fonts.gstatic.com]
+ RISK: Unidirectional Traffic
new: [.....8] [ip4][..udp] [..192.168.1.105][55934] -> [.216.58.201.238][..443]
detected: [.....8] [ip4][..udp] [..192.168.1.105][55934] -> [.216.58.201.238][..443] [QUIC.YouTube][Google][Media][Fun][s.ytimg.com]
+ RISK: Unidirectional Traffic
new: [.....9] [ip4][..udp] [..192.168.1.105][53817] -> [.216.58.210.225][..443]
detected: [.....9] [ip4][..udp] [..192.168.1.105][53817] -> [.216.58.210.225][..443] [QUIC.YouTube][Google][Media][Fun][yt3.ggpht.com]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [.......10.0.0.4][40134] -> [.......10.0.0.3][.6121] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port, Missing SNI TLS Extn
+ RISK: Known Proto on Non Std Port, Missing SNI TLS Extn, Unidirectional Traffic
DAEMON-EVENT: [Processed: 449 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 7 / 9|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....10] [ip4][..udp] [..192.168.1.109][35236] -> [.216.58.210.206][..443]
detected: [....10] [ip4][..udp] [..192.168.1.109][35236] -> [.216.58.210.206][..443] [QUIC.YouTube][Google][Media][Fun][www.youtube.com]
+ RISK: Unidirectional Traffic
analyse: [....10] [ip4][..udp] [..192.168.1.109][35236] -> [.216.58.210.206][..443] [QUIC.YouTube][Google][Media][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.829| 0.062| 0.199| 39440.069| 2.000]
@@ -51,12 +60,19 @@
[PKTLENS.....: 1378,373,1378,1378,1378,369,65,68,1378,61,61,71,1378,1378,1174,68,65,1378,1378,68,1378,1378,1378,68,1378,68,1378,1378,1378,68,1378,1378]
[ENTROPIES...: 5.1,7.4,7.6,2.6,5.4,7.4,5.3,5.5,7.9,5.5,5.5,5.7,7.9,7.9,7.8,5.6,5.6,7.9,7.9,5.7,7.9,7.9,7.9,5.6,7.9,5.7,7.9,7.8,7.9,5.6,7.9,7.9]
idle: [.....7] [ip4][..udp] [..192.168.1.105][40030] -> [.216.58.201.227][..443] [QUIC.Google][Google][Web][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [.....4] [ip4][..udp] [..192.168.1.105][40461] -> [...172.217.16.3][..443] [QUIC][Google][Web][Acceptable]
idle: [.....4] [ip4][..udp] [..192.168.1.105][40461] -> [...172.217.16.3][..443]
idle: [.....6] [ip4][..udp] [..192.168.1.105][48445] -> [.216.58.214.110][..443] [QUIC.YouTube][Google][Media][Fun]
+ RISK: Unidirectional Traffic
idle: [.....5] [ip4][..udp] [..192.168.1.105][34438] -> [.216.58.210.238][..443] [QUIC.YouTube][Google][Media][Fun]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [..192.168.1.105][45669] -> [...172.217.16.4][..443] [QUIC.Google][Google][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....10] [ip4][..udp] [..192.168.1.109][35236] -> [.216.58.210.206][..443] [QUIC.YouTube][Google][Media][Fun]
+ RISK: Unidirectional Traffic
idle: [.....9] [ip4][..udp] [..192.168.1.105][53817] -> [.216.58.210.225][..443] [QUIC.YouTube][Google][Media][Fun]
+ RISK: Unidirectional Traffic
idle: [.....8] [ip4][..udp] [..192.168.1.105][55934] -> [.216.58.201.238][..443] [QUIC.YouTube][Google][Media][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/quic046.pcap.out b/test/results/flow-info/default/quic046.pcap.out
index 6d88815a5..80c7fc2cf 100644
--- a/test/results/flow-info/quic046.pcap.out
+++ b/test/results/flow-info/default/quic046.pcap.out
@@ -3,6 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..192.168.1.236][50587] -> [..216.58.206.86][..443]
detected: [.....1] [ip4][..udp] [..192.168.1.236][50587] -> [..216.58.206.86][..443] [QUIC.YouTube][Google][Media][Fun][i.ytimg.com]
+ RISK: Unidirectional Traffic
analyse: [.....1] [ip4][..udp] [..192.168.1.236][50587] -> [..216.58.206.86][..443] [QUIC.YouTube][Google][Media][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.029| 0.002| 0.006| 39.230| 2.600]
@@ -14,4 +15,5 @@
[PKTLENS.....: 1378,560,114,187,185,185,186,185,191,188,1378,1378,255,1378,1378,1378,1378,1378,1378,1378,1378,1378,1378,1378,1378,1378,1378,56,48,1378,56,1378]
[ENTROPIES...: 4.1,7.6,6.3,6.9,6.9,6.8,6.9,6.9,7.0,6.9,4.1,7.9,7.1,7.9,7.9,7.9,7.8,7.9,7.9,7.9,7.9,7.8,7.9,7.9,7.9,7.9,7.9,5.4,5.1,7.8,5.4,7.9]
idle: [.....1] [ip4][..udp] [..192.168.1.236][50587] -> [..216.58.206.86][..443] [QUIC.YouTube][Google][Media][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/quic_0RTT.pcap.out b/test/results/flow-info/default/quic_0RTT.pcap.out
index e30ba268f..147ed95e8 100644
--- a/test/results/flow-info/quic_0RTT.pcap.out
+++ b/test/results/flow-info/default/quic_0RTT.pcap.out
@@ -3,12 +3,14 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip6][..udp] [....................................::1][60459] -> [....................................::1][.4443]
detected: [.....1] [ip6][..udp] [....................................::1][60459] -> [....................................::1][.4443] [QUIC][Unknown][Web][Acceptable][abcd]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
DAEMON-EVENT: [Processed: 2 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....2] [ip4][..udp] [..192.168.2.100][51972] -> [142.250.181.227][..443]
detected: [.....2] [ip4][..udp] [..192.168.2.100][51972] -> [142.250.181.227][..443] [QUIC.Google][Google][Web][Acceptable][ssl.gstatic.com]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [..192.168.2.100][51972] -> [142.250.181.227][..443] [QUIC.Google][Google][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip6][..udp] [....................................::1][60459] -> [....................................::1][.4443] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/quic_crypto_aes_auth_size.pcap.out b/test/results/flow-info/default/quic_crypto_aes_auth_size.pcap.out
index 50ffc1c6a..616283540 100644
--- a/test/results/flow-info/quic_crypto_aes_auth_size.pcap.out
+++ b/test/results/flow-info/default/quic_crypto_aes_auth_size.pcap.out
@@ -3,8 +3,12 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [...134.53.36.43][34917] -> [..142.104.38.30][..443]
detected: [.....1] [ip4][..udp] [...134.53.36.43][34917] -> [..142.104.38.30][..443] [QUIC.Snapchat][Unknown][SocialNetwork][Fun][app-analytics-v2.snapchat.com]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..udp] [245.161.134.177][27636] -> [..77.242.114.14][..443]
detected: [.....2] [ip4][..udp] [245.161.134.177][27636] -> [..77.242.114.14][..443] [QUIC.Snapchat][Unknown][SocialNetwork][Fun][gcp.api.snapchat.com]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [...134.53.36.43][34917] -> [..142.104.38.30][..443] [QUIC.Snapchat][Unknown][SocialNetwork][Fun]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [245.161.134.177][27636] -> [..77.242.114.14][..443] [QUIC.Snapchat][Unknown][SocialNetwork][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/quic_frags_ch_in_multiple_packets.pcapng.out b/test/results/flow-info/default/quic_frags_ch_in_multiple_packets.pcapng.out
index 2cd69c6e9..d4855095c 100644
--- a/test/results/flow-info/quic_frags_ch_in_multiple_packets.pcapng.out
+++ b/test/results/flow-info/default/quic_frags_ch_in_multiple_packets.pcapng.out
@@ -3,9 +3,9 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip6][..udp] [....................................::1][58822] -> [....................................::1][.4443]
detected: [.....1] [ip6][..udp] [....................................::1][58822] -> [....................................::1][.4443] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
detection-update: [.....1] [ip6][..udp] [....................................::1][58822] -> [....................................::1][.4443] [QUIC][Unknown][Web][Acceptable][]
- RISK: Known Proto on Non Std Port, Missing SNI TLS Extn
+ RISK: Known Proto on Non Std Port, Missing SNI TLS Extn, Unidirectional Traffic
idle: [.....1] [ip6][..udp] [....................................::1][58822] -> [....................................::1][.4443] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port, Missing SNI TLS Extn
+ RISK: Known Proto on Non Std Port, Missing SNI TLS Extn, Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/quic_frags_ch_out_of_order_same_packet_craziness.pcapng.out b/test/results/flow-info/default/quic_frags_ch_out_of_order_same_packet_craziness.pcapng.out
index e063c60a5..2fa4dbf64 100644
--- a/test/results/flow-info/quic_frags_ch_out_of_order_same_packet_craziness.pcapng.out
+++ b/test/results/flow-info/default/quic_frags_ch_out_of_order_same_packet_craziness.pcapng.out
@@ -3,510 +3,848 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [.133.205.75.230][56528] -> [.208.229.157.81][..443]
detected: [.....1] [ip4][..udp] [.133.205.75.230][56528] -> [.208.229.157.81][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable][update.googleapis.com]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..udp] [..147.196.90.42][61647] -> [..177.86.46.206][..443]
detected: [.....2] [ip4][..udp] [..147.196.90.42][61647] -> [..177.86.46.206][..443] [QUIC.Google][Unknown][Web][Acceptable][sb-ssl.google.com]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [.133.205.75.230][56528] -> [.208.229.157.81][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 8 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 2|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....3] [ip4][..udp] [...168.144.64.5][55376] -> [.212.22.246.243][..443]
detected: [.....3] [ip4][..udp] [...168.144.64.5][55376] -> [.212.22.246.243][..443] [QUIC.Google][Unknown][Web][Acceptable][www.google.com]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..udp] [...168.144.64.5][64964] -> [.133.202.76.105][..443]
detected: [.....4] [ip4][..udp] [...168.144.64.5][64964] -> [.133.202.76.105][..443] [QUIC.Google][Unknown][Web][Acceptable][accounts.google.com]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][..udp] [...168.144.64.5][55844] -> [..112.1.105.138][..443]
detected: [.....5] [ip4][..udp] [...168.144.64.5][55844] -> [..112.1.105.138][..443] [QUIC.PlayStore][Unknown][SoftwareUpdate][Safe][android.clients.google.com]
+ RISK: Unidirectional Traffic
new: [.....6] [ip4][..udp] [...168.144.64.5][59827] -> [..37.47.218.224][..443]
detected: [.....6] [ip4][..udp] [...168.144.64.5][59827] -> [..37.47.218.224][..443] [QUIC.Google][Unknown][Advertisement][Acceptable][www.googleadservices.com]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [..147.196.90.42][61647] -> [..177.86.46.206][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....7] [ip4][..udp] [...168.144.64.5][51053] -> [241.138.147.133][..443]
detected: [.....7] [ip4][..udp] [...168.144.64.5][51053] -> [241.138.147.133][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable][content-autofill.googleapis.com]
update: [.....3] [ip4][..udp] [...168.144.64.5][55376] -> [.212.22.246.243][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....4] [ip4][..udp] [...168.144.64.5][64964] -> [.133.202.76.105][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....6] [ip4][..udp] [...168.144.64.5][59827] -> [..37.47.218.224][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....5] [ip4][..udp] [...168.144.64.5][55844] -> [..112.1.105.138][..443] [QUIC.PlayStore][Unknown][SoftwareUpdate][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 17 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 5 / 7|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 4]
new: [.....8] [ip4][..udp] [..10.117.78.100][44252] -> [.251.236.18.198][..443]
detected: [.....8] [ip4][..udp] [..10.117.78.100][44252] -> [.251.236.18.198][..443] [QUIC.Google][Unknown][Web][Acceptable][accounts.google.com]
idle: [.....3] [ip4][..udp] [...168.144.64.5][55376] -> [.212.22.246.243][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..udp] [...168.144.64.5][64964] -> [.133.202.76.105][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][..udp] [...168.144.64.5][59827] -> [..37.47.218.224][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....7] [ip4][..udp] [...168.144.64.5][51053] -> [241.138.147.133][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
idle: [.....5] [ip4][..udp] [...168.144.64.5][55844] -> [..112.1.105.138][..443] [QUIC.PlayStore][Unknown][SoftwareUpdate][Safe]
+ RISK: Unidirectional Traffic
new: [.....9] [ip4][..udp] [..10.117.78.100][55273] -> [202.152.155.121][..443]
detected: [.....9] [ip4][..udp] [..10.117.78.100][55273] -> [202.152.155.121][..443] [QUIC.Google][Unknown][Web][Acceptable][clients4.google.com]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 19 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 9|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 4]
new: [....10] [ip4][..udp] [...168.144.64.5][53404] -> [113.250.137.243][..443]
detected: [....10] [ip4][..udp] [...168.144.64.5][53404] -> [113.250.137.243][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable][update.googleapis.com]
+ RISK: Unidirectional Traffic
new: [....11] [ip4][..udp] [...168.144.64.5][53431] -> [...128.248.24.1][..443]
detected: [....11] [ip4][..udp] [...168.144.64.5][53431] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable][fonts.gstatic.com]
+ RISK: Unidirectional Traffic
new: [....12] [ip4][..udp] [...168.144.64.5][50482] -> [121.209.126.161][..443]
detected: [....12] [ip4][..udp] [...168.144.64.5][50482] -> [121.209.126.161][..443] [QUIC.YouTube][Unknown][Media][Fun][yt3.ggpht.com]
+ RISK: Unidirectional Traffic
new: [....13] [ip4][..udp] [...168.144.64.5][62652] -> [.158.146.215.30][..443]
detected: [....13] [ip4][..udp] [...168.144.64.5][62652] -> [.158.146.215.30][..443] [QUIC.Google][Unknown][Advertisement][Acceptable][static.doubleclick.net]
+ RISK: Unidirectional Traffic
new: [....14] [ip4][..udp] [...168.144.64.5][63136] -> [...9.65.169.252][..443]
detected: [....14] [ip4][..udp] [...168.144.64.5][63136] -> [...9.65.169.252][..443] [QUIC.YouTube][Unknown][Media][Fun][suggestqueries-clients6.youtube.com]
+ RISK: Unidirectional Traffic
idle: [.....8] [ip4][..udp] [..10.117.78.100][44252] -> [.251.236.18.198][..443] [QUIC.Google][Unknown][Web][Acceptable]
idle: [.....9] [ip4][..udp] [..10.117.78.100][55273] -> [202.152.155.121][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
new: [....15] [ip4][..udp] [...168.144.64.5][51456] -> [102.194.207.179][..443]
detected: [....15] [ip4][..udp] [...168.144.64.5][51456] -> [102.194.207.179][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable][clientservices.googleapis.com]
+ RISK: Unidirectional Traffic
update: [....12] [ip4][..udp] [...168.144.64.5][50482] -> [121.209.126.161][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
update: [....13] [ip4][..udp] [...168.144.64.5][62652] -> [.158.146.215.30][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
update: [....14] [ip4][..udp] [...168.144.64.5][63136] -> [...9.65.169.252][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
update: [....11] [ip4][..udp] [...168.144.64.5][53431] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....10] [ip4][..udp] [...168.144.64.5][53404] -> [113.250.137.243][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
new: [....16] [ip4][..udp] [...168.144.64.5][63163] -> [113.250.137.243][..443]
detected: [....16] [ip4][..udp] [...168.144.64.5][63163] -> [113.250.137.243][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable][update.googleapis.com]
+ RISK: Unidirectional Traffic
new: [....17] [ip4][..udp] [...168.144.64.5][54016] -> [...153.98.28.78][..443]
detected: [....17] [ip4][..udp] [...168.144.64.5][54016] -> [...153.98.28.78][..443] [QUIC.DoH_DoT][Unknown][Network][Acceptable][dns.google]
+ RISK: Unidirectional Traffic
new: [....18] [ip4][..udp] [...168.144.64.5][51248] -> [..99.42.133.245][..443]
detected: [....18] [ip4][..udp] [...168.144.64.5][51248] -> [..99.42.133.245][..443] [QUIC.Google][Unknown][Web][Acceptable][beacons.gcp.gvt2.com]
+ RISK: Unidirectional Traffic
new: [....19] [ip4][..udp] [...168.144.64.5][60896] -> [.45.228.175.189][..443]
detected: [....19] [ip4][..udp] [...168.144.64.5][60896] -> [.45.228.175.189][..443] [QUIC.Google][Unknown][Web][Acceptable][www.google.com]
+ RISK: Unidirectional Traffic
update: [....17] [ip4][..udp] [...168.144.64.5][54016] -> [...153.98.28.78][..443] [QUIC.DoH_DoT][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....12] [ip4][..udp] [...168.144.64.5][50482] -> [121.209.126.161][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
update: [....13] [ip4][..udp] [...168.144.64.5][62652] -> [.158.146.215.30][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
update: [....14] [ip4][..udp] [...168.144.64.5][63136] -> [...9.65.169.252][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
update: [....16] [ip4][..udp] [...168.144.64.5][63163] -> [113.250.137.243][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....11] [ip4][..udp] [...168.144.64.5][53431] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....18] [ip4][..udp] [...168.144.64.5][51248] -> [..99.42.133.245][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....10] [ip4][..udp] [...168.144.64.5][53404] -> [113.250.137.243][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....15] [ip4][..udp] [...168.144.64.5][51456] -> [102.194.207.179][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
new: [....20] [ip4][..udp] [...168.144.64.5][60551] -> [...128.248.24.1][..443]
detected: [....20] [ip4][..udp] [...168.144.64.5][60551] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable][beacons.gvt2.com]
+ RISK: Unidirectional Traffic
new: [....21] [ip4][..udp] [...168.144.64.5][56488] -> [..177.86.46.206][..443]
detected: [....21] [ip4][..udp] [...168.144.64.5][56488] -> [..177.86.46.206][..443] [QUIC.YouTube][Unknown][Media][Fun][www.youtube.com]
+ RISK: Unidirectional Traffic
idle: [....11] [ip4][..udp] [...168.144.64.5][53431] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....10] [ip4][..udp] [...168.144.64.5][53404] -> [113.250.137.243][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....17] [ip4][..udp] [...168.144.64.5][54016] -> [...153.98.28.78][..443] [QUIC.DoH_DoT][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....12] [ip4][..udp] [...168.144.64.5][50482] -> [121.209.126.161][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
update: [....13] [ip4][..udp] [...168.144.64.5][62652] -> [.158.146.215.30][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
update: [....14] [ip4][..udp] [...168.144.64.5][63136] -> [...9.65.169.252][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
update: [....16] [ip4][..udp] [...168.144.64.5][63163] -> [113.250.137.243][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....19] [ip4][..udp] [...168.144.64.5][60896] -> [.45.228.175.189][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....18] [ip4][..udp] [...168.144.64.5][51248] -> [..99.42.133.245][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....15] [ip4][..udp] [...168.144.64.5][51456] -> [102.194.207.179][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
new: [....22] [ip4][..udp] [...168.144.64.5][49153] -> [...153.98.28.78][..443]
detected: [....22] [ip4][..udp] [...168.144.64.5][49153] -> [...153.98.28.78][..443] [QUIC.DoH_DoT][Unknown][Network][Acceptable][dns.google]
+ RISK: Unidirectional Traffic
idle: [....12] [ip4][..udp] [...168.144.64.5][50482] -> [121.209.126.161][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
idle: [....13] [ip4][..udp] [...168.144.64.5][62652] -> [.158.146.215.30][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....14] [ip4][..udp] [...168.144.64.5][63136] -> [...9.65.169.252][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
update: [....20] [ip4][..udp] [...168.144.64.5][60551] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
new: [....23] [ip4][..udp] [...168.144.64.5][51296] -> [...128.248.24.1][..443]
detected: [....23] [ip4][..udp] [...168.144.64.5][51296] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable][beacons.gcp.gvt2.com]
+ RISK: Unidirectional Traffic
idle: [....17] [ip4][..udp] [...168.144.64.5][54016] -> [...153.98.28.78][..443] [QUIC.DoH_DoT][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....16] [ip4][..udp] [...168.144.64.5][63163] -> [113.250.137.243][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....18] [ip4][..udp] [...168.144.64.5][51248] -> [..99.42.133.245][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....15] [ip4][..udp] [...168.144.64.5][51456] -> [102.194.207.179][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....19] [ip4][..udp] [...168.144.64.5][60896] -> [.45.228.175.189][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....22] [ip4][..udp] [...168.144.64.5][49153] -> [...153.98.28.78][..443] [QUIC.DoH_DoT][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....21] [ip4][..udp] [...168.144.64.5][56488] -> [..177.86.46.206][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
update: [....20] [ip4][..udp] [...168.144.64.5][60551] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
new: [....24] [ip4][..udp] [...168.144.64.5][57767] -> [....76.83.40.87][..443]
detected: [....24] [ip4][..udp] [...168.144.64.5][57767] -> [....76.83.40.87][..443] [QUIC.YouTube][Unknown][Media][Fun][r11---sn-vh5ouxa-hjuk.googlevideo.com]
+ RISK: Unidirectional Traffic
idle: [....23] [ip4][..udp] [...168.144.64.5][51296] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....19] [ip4][..udp] [...168.144.64.5][60896] -> [.45.228.175.189][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....22] [ip4][..udp] [...168.144.64.5][49153] -> [...153.98.28.78][..443] [QUIC.DoH_DoT][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....21] [ip4][..udp] [...168.144.64.5][56488] -> [..177.86.46.206][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
idle: [....20] [ip4][..udp] [...168.144.64.5][60551] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
new: [....25] [ip4][..udp] [...168.144.64.5][63736] -> [.213.188.47.247][..443]
detected: [....25] [ip4][..udp] [...168.144.64.5][63736] -> [.213.188.47.247][..443] [QUIC.YouTube][Unknown][Media][Fun][r4---sn-vh5ouxa-hjud.googlevideo.com]
+ RISK: Unidirectional Traffic
new: [....26] [ip4][..udp] [...168.144.64.5][52273] -> [244.214.160.219][..443]
detected: [....26] [ip4][..udp] [...168.144.64.5][52273] -> [244.214.160.219][..443] [QUIC.YouTube][Unknown][Media][Fun][r3---sn-vh5ouxa-hju6.googlevideo.com]
new: [....27] [ip4][..udp] [...168.144.64.5][49324] -> [..35.194.157.47][..443]
- detected: [....27] [ip4][..udp] [...168.144.64.5][49324] -> [..35.194.157.47][..443] [QUIC.Google][GoogleCloud][Advertisement][Acceptable][pagead2.googlesyndication.com]
+ detected: [....27] [ip4][..udp] [...168.144.64.5][49324] -> [..35.194.157.47][..443] [QUIC.GoogleCloud][GoogleCloud][Advertisement][Acceptable][pagead2.googlesyndication.com]
+ RISK: Unidirectional Traffic
update: [....24] [ip4][..udp] [...168.144.64.5][57767] -> [....76.83.40.87][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 38 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 4 / 27|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 32]
new: [....28] [ip4][..udp] [...168.144.64.5][62047] -> [..136.125.67.96][..443]
detected: [....28] [ip4][..udp] [...168.144.64.5][62047] -> [..136.125.67.96][..443] [QUIC.Google][Google][Web][Acceptable][beacons4.gvt2.com]
+ RISK: Unidirectional Traffic
update: [....25] [ip4][..udp] [...168.144.64.5][63736] -> [.213.188.47.247][..443] [QUIC.YouTube][Unknown][Media][Fun]
- update: [....27] [ip4][..udp] [...168.144.64.5][49324] -> [..35.194.157.47][..443] [QUIC.Google][GoogleCloud][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
+ update: [....27] [ip4][..udp] [...168.144.64.5][49324] -> [..35.194.157.47][..443] [QUIC.GoogleCloud][GoogleCloud][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
update: [....26] [ip4][..udp] [...168.144.64.5][52273] -> [244.214.160.219][..443] [QUIC.YouTube][Unknown][Media][Fun]
update: [....24] [ip4][..udp] [...168.144.64.5][57767] -> [....76.83.40.87][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
new: [....29] [ip4][..udp] [...168.144.64.5][64976] -> [..220.80.126.73][..443]
detected: [....29] [ip4][..udp] [...168.144.64.5][64976] -> [..220.80.126.73][..443] [QUIC.YouTube][Unknown][Media][Fun][r1---sn-hju7enel.googlevideo.com]
+ RISK: Unidirectional Traffic
idle: [....25] [ip4][..udp] [...168.144.64.5][63736] -> [.213.188.47.247][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
idle: [....28] [ip4][..udp] [...168.144.64.5][62047] -> [..136.125.67.96][..443] [QUIC.Google][Google][Web][Acceptable]
- idle: [....27] [ip4][..udp] [...168.144.64.5][49324] -> [..35.194.157.47][..443] [QUIC.Google][GoogleCloud][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....27] [ip4][..udp] [...168.144.64.5][49324] -> [..35.194.157.47][..443] [QUIC.GoogleCloud][GoogleCloud][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....26] [ip4][..udp] [...168.144.64.5][52273] -> [244.214.160.219][..443] [QUIC.YouTube][Unknown][Media][Fun]
idle: [....24] [ip4][..udp] [...168.144.64.5][57767] -> [....76.83.40.87][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
new: [....30] [ip4][..udp] [...168.144.64.5][61209] -> [..35.194.157.47][..443]
- detected: [....30] [ip4][..udp] [...168.144.64.5][61209] -> [..35.194.157.47][..443] [QUIC.Google][GoogleCloud][Advertisement][Acceptable][www.googleadservices.com]
+ detected: [....30] [ip4][..udp] [...168.144.64.5][61209] -> [..35.194.157.47][..443] [QUIC.GoogleCloud][GoogleCloud][Advertisement][Acceptable][www.googleadservices.com]
+ RISK: Unidirectional Traffic
new: [....31] [ip4][..udp] [...168.144.64.5][50540] -> [...99.45.60.254][..443]
detected: [....31] [ip4][..udp] [...168.144.64.5][50540] -> [...99.45.60.254][..443] [QUIC.YouTube][Unknown][Media][Fun][i.ytimg.com]
+ RISK: Unidirectional Traffic
update: [....29] [ip4][..udp] [...168.144.64.5][64976] -> [..220.80.126.73][..443] [QUIC.YouTube][Unknown][Media][Fun]
- update: [....30] [ip4][..udp] [...168.144.64.5][61209] -> [..35.194.157.47][..443] [QUIC.Google][GoogleCloud][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
+ update: [....30] [ip4][..udp] [...168.144.64.5][61209] -> [..35.194.157.47][..443] [QUIC.GoogleCloud][GoogleCloud][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 42 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 3 / 31|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 38]
new: [....32] [ip4][..udp] [...168.144.64.5][60809] -> [...9.65.169.252][..443]
detected: [....32] [ip4][..udp] [...168.144.64.5][60809] -> [...9.65.169.252][..443] [QUIC.YouTube][Unknown][Media][Fun][suggestqueries-clients6.youtube.com]
+ RISK: Unidirectional Traffic
update: [....29] [ip4][..udp] [...168.144.64.5][64976] -> [..220.80.126.73][..443] [QUIC.YouTube][Unknown][Media][Fun]
- update: [....30] [ip4][..udp] [...168.144.64.5][61209] -> [..35.194.157.47][..443] [QUIC.Google][GoogleCloud][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
+ update: [....30] [ip4][..udp] [...168.144.64.5][61209] -> [..35.194.157.47][..443] [QUIC.GoogleCloud][GoogleCloud][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
update: [....31] [ip4][..udp] [...168.144.64.5][50540] -> [...99.45.60.254][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
new: [....33] [ip4][..udp] [...168.144.64.5][55637] -> [.169.81.163.225][..443]
detected: [....33] [ip4][..udp] [...168.144.64.5][55637] -> [.169.81.163.225][..443] [QUIC.YouTube][Unknown][Media][Fun][r3---sn-hju7enel.googlevideo.com]
+ RISK: Unidirectional Traffic
new: [....34] [ip4][..udp] [...168.144.64.5][53127] -> [113.250.137.243][..443]
detected: [....34] [ip4][..udp] [...168.144.64.5][53127] -> [113.250.137.243][..443] [QUIC.Google][Unknown][Cloud][Acceptable][b1.nel.goog]
+ RISK: Unidirectional Traffic
idle: [....29] [ip4][..udp] [...168.144.64.5][64976] -> [..220.80.126.73][..443] [QUIC.YouTube][Unknown][Media][Fun]
- idle: [....30] [ip4][..udp] [...168.144.64.5][61209] -> [..35.194.157.47][..443] [QUIC.Google][GoogleCloud][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....30] [ip4][..udp] [...168.144.64.5][61209] -> [..35.194.157.47][..443] [QUIC.GoogleCloud][GoogleCloud][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....31] [ip4][..udp] [...168.144.64.5][50540] -> [...99.45.60.254][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
update: [....32] [ip4][..udp] [...168.144.64.5][60809] -> [...9.65.169.252][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
update: [....33] [ip4][..udp] [...168.144.64.5][55637] -> [.169.81.163.225][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
new: [....35] [ip4][..udp] [...168.144.64.5][50073] -> [.152.128.87.238][..443]
detected: [....35] [ip4][..udp] [...168.144.64.5][50073] -> [.152.128.87.238][..443] [QUIC.YouTube][Unknown][Media][Fun][r3---sn-vh5ouxa-hjud.googlevideo.com]
+ RISK: Unidirectional Traffic
idle: [....32] [ip4][..udp] [...168.144.64.5][60809] -> [...9.65.169.252][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
idle: [....33] [ip4][..udp] [...168.144.64.5][55637] -> [.169.81.163.225][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
update: [....34] [ip4][..udp] [...168.144.64.5][53127] -> [113.250.137.243][..443] [QUIC.Google][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
new: [....36] [ip4][..udp] [.192.168.254.11][59048] -> [.251.236.18.198][..443]
detected: [....36] [ip4][..udp] [.192.168.254.11][59048] -> [.251.236.18.198][..443] [QUIC.Google][Unknown][Web][Acceptable][accounts.google.com]
idle: [....34] [ip4][..udp] [...168.144.64.5][53127] -> [113.250.137.243][..443] [QUIC.Google][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
update: [....35] [ip4][..udp] [...168.144.64.5][50073] -> [.152.128.87.238][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
new: [....37] [ip4][..udp] [.192.168.254.11][38331] -> [.93.100.151.221][..443]
detected: [....37] [ip4][..udp] [.192.168.254.11][38331] -> [.93.100.151.221][..443] [QUIC.DataSaver][Unknown][Web][Fun][litepages.googlezip.net]
+ RISK: Unidirectional Traffic
new: [....38] [ip4][..udp] [.192.168.254.11][45652] -> [.170.196.90.126][..443]
detected: [....38] [ip4][..udp] [.192.168.254.11][45652] -> [.170.196.90.126][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable][content-autofill.googleapis.com]
+ RISK: Unidirectional Traffic
new: [....39] [ip4][..udp] [.192.168.254.11][43427] -> [..98.251.203.81][..443]
detected: [....39] [ip4][..udp] [.192.168.254.11][43427] -> [..98.251.203.81][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable][optimizationguide-pa.googleapis.com]
+ RISK: Unidirectional Traffic
new: [....40] [ip4][..udp] [.192.168.254.11][54692] -> [.171.182.169.23][..443]
detected: [....40] [ip4][..udp] [.192.168.254.11][54692] -> [.171.182.169.23][..443] [QUIC][Unknown][Web][Acceptable][www.freearabianporn.com]
+ RISK: Unidirectional Traffic
update: [....36] [ip4][..udp] [.192.168.254.11][59048] -> [.251.236.18.198][..443] [QUIC.Google][Unknown][Web][Acceptable]
update: [....35] [ip4][..udp] [...168.144.64.5][50073] -> [.152.128.87.238][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
new: [....41] [ip4][..udp] [.192.168.254.11][35124] -> [..168.78.153.39][..443]
detected: [....41] [ip4][..udp] [.192.168.254.11][35124] -> [..168.78.153.39][..443] [QUIC][Unknown][Web][Acceptable][s-img.adskeeper.co.uk]
+ RISK: Unidirectional Traffic
idle: [....35] [ip4][..udp] [...168.144.64.5][50073] -> [.152.128.87.238][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
update: [....38] [ip4][..udp] [.192.168.254.11][45652] -> [.170.196.90.126][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....37] [ip4][..udp] [.192.168.254.11][38331] -> [.93.100.151.221][..443] [QUIC.DataSaver][Unknown][Web][Fun]
+ RISK: Unidirectional Traffic
update: [....36] [ip4][..udp] [.192.168.254.11][59048] -> [.251.236.18.198][..443] [QUIC.Google][Unknown][Web][Acceptable]
update: [....40] [ip4][..udp] [.192.168.254.11][54692] -> [.171.182.169.23][..443] [QUIC][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....39] [ip4][..udp] [.192.168.254.11][43427] -> [..98.251.203.81][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
new: [....42] [ip4][..udp] [.192.168.254.11][51075] -> [.117.148.117.30][..443]
detected: [....42] [ip4][..udp] [.192.168.254.11][51075] -> [.117.148.117.30][..443] [QUIC.Google][Unknown][Advertisement][Acceptable][pagead2.googlesyndication.com]
+ RISK: Unidirectional Traffic
new: [....43] [ip4][..udp] [.192.168.254.11][49689] -> [.87.179.155.149][..443]
detected: [....43] [ip4][..udp] [.192.168.254.11][49689] -> [.87.179.155.149][..443] [QUIC.Google][Unknown][Web][Acceptable][www.google.com]
+ RISK: Unidirectional Traffic
idle: [....36] [ip4][..udp] [.192.168.254.11][59048] -> [.251.236.18.198][..443] [QUIC.Google][Unknown][Web][Acceptable]
update: [....38] [ip4][..udp] [.192.168.254.11][45652] -> [.170.196.90.126][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....41] [ip4][..udp] [.192.168.254.11][35124] -> [..168.78.153.39][..443] [QUIC][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....37] [ip4][..udp] [.192.168.254.11][38331] -> [.93.100.151.221][..443] [QUIC.DataSaver][Unknown][Web][Fun]
+ RISK: Unidirectional Traffic
update: [....40] [ip4][..udp] [.192.168.254.11][54692] -> [.171.182.169.23][..443] [QUIC][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....39] [ip4][..udp] [.192.168.254.11][43427] -> [..98.251.203.81][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
new: [....44] [ip4][..udp] [...168.144.64.5][62818] -> [113.250.137.243][..443]
detected: [....44] [ip4][..udp] [...168.144.64.5][62818] -> [113.250.137.243][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable][clientservices.googleapis.com]
+ RISK: Unidirectional Traffic
idle: [....38] [ip4][..udp] [.192.168.254.11][45652] -> [.170.196.90.126][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....37] [ip4][..udp] [.192.168.254.11][38331] -> [.93.100.151.221][..443] [QUIC.DataSaver][Unknown][Web][Fun]
+ RISK: Unidirectional Traffic
idle: [....39] [ip4][..udp] [.192.168.254.11][43427] -> [..98.251.203.81][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
new: [....45] [ip4][..udp] [...168.144.64.5][56425] -> [..125.136.204.4][..443]
detected: [....45] [ip4][..udp] [...168.144.64.5][56425] -> [..125.136.204.4][..443] [QUIC.YouTube][Unknown][Media][Fun][r1---sn-vh5ouxa-hjuk.googlevideo.com]
+ RISK: Unidirectional Traffic
idle: [....40] [ip4][..udp] [.192.168.254.11][54692] -> [.171.182.169.23][..443] [QUIC][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 57 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 5 / 45|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 57]
new: [....46] [ip4][..udp] [...168.144.64.5][59622] -> [...153.98.28.78][..443]
detected: [....46] [ip4][..udp] [...168.144.64.5][59622] -> [...153.98.28.78][..443] [QUIC.DoH_DoT][Unknown][Network][Acceptable][dns.google]
+ RISK: Unidirectional Traffic
idle: [....44] [ip4][..udp] [...168.144.64.5][62818] -> [113.250.137.243][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....41] [ip4][..udp] [.192.168.254.11][35124] -> [..168.78.153.39][..443] [QUIC][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....42] [ip4][..udp] [.192.168.254.11][51075] -> [.117.148.117.30][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....43] [ip4][..udp] [.192.168.254.11][49689] -> [.87.179.155.149][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....45] [ip4][..udp] [...168.144.64.5][56425] -> [..125.136.204.4][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
new: [....47] [ip4][..udp] [...168.144.64.5][50552] -> [108.171.138.182][..443]
detected: [....47] [ip4][..udp] [...168.144.64.5][50552] -> [108.171.138.182][..443] [QUIC.Google][Unknown][Web][Acceptable][beacons.gvt2.com]
+ RISK: Unidirectional Traffic
idle: [....45] [ip4][..udp] [...168.144.64.5][56425] -> [..125.136.204.4][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
new: [....48] [ip4][..udp] [...168.144.64.5][56844] -> [113.250.137.243][..443]
detected: [....48] [ip4][..udp] [...168.144.64.5][56844] -> [113.250.137.243][..443] [QUIC.Google][Unknown][Cloud][Acceptable][b1.nel.goog]
+ RISK: Unidirectional Traffic
new: [....49] [ip4][..udp] [...168.144.64.5][58414] -> [...153.98.28.78][..443]
detected: [....49] [ip4][..udp] [...168.144.64.5][58414] -> [...153.98.28.78][..443] [QUIC.DoH_DoT][Unknown][Network][Acceptable][dns.google]
+ RISK: Unidirectional Traffic
update: [....48] [ip4][..udp] [...168.144.64.5][56844] -> [113.250.137.243][..443] [QUIC.Google][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
update: [....47] [ip4][..udp] [...168.144.64.5][50552] -> [108.171.138.182][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....46] [ip4][..udp] [...168.144.64.5][59622] -> [...153.98.28.78][..443] [QUIC.DoH_DoT][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....50] [ip4][..udp] [...168.144.64.5][61341] -> [.16.232.218.117][..443]
detected: [....50] [ip4][..udp] [...168.144.64.5][61341] -> [.16.232.218.117][..443] [QUIC.YouTube][Unknown][Media][Fun][r9---sn-vh5ouxa-hjuk.googlevideo.com]
+ RISK: Unidirectional Traffic
new: [....51] [ip4][..udp] [...168.144.64.5][56683] -> [113.250.137.243][..443]
detected: [....51] [ip4][..udp] [...168.144.64.5][56683] -> [113.250.137.243][..443] [QUIC.Google][Unknown][Cloud][Acceptable][b1.nel.goog]
+ RISK: Unidirectional Traffic
update: [....49] [ip4][..udp] [...168.144.64.5][58414] -> [...153.98.28.78][..443] [QUIC.DoH_DoT][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....48] [ip4][..udp] [...168.144.64.5][56844] -> [113.250.137.243][..443] [QUIC.Google][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
update: [....47] [ip4][..udp] [...168.144.64.5][50552] -> [108.171.138.182][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....46] [ip4][..udp] [...168.144.64.5][59622] -> [...153.98.28.78][..443] [QUIC.DoH_DoT][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....52] [ip4][..udp] [...168.144.64.5][64700] -> [.16.232.218.117][..443]
detected: [....52] [ip4][..udp] [...168.144.64.5][64700] -> [.16.232.218.117][..443] [QUIC.YouTube][Unknown][Media][Fun][r9---sn-vh5ouxa-hjuk.googlevideo.com]
+ RISK: Unidirectional Traffic
idle: [....48] [ip4][..udp] [...168.144.64.5][56844] -> [113.250.137.243][..443] [QUIC.Google][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....47] [ip4][..udp] [...168.144.64.5][50552] -> [108.171.138.182][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....46] [ip4][..udp] [...168.144.64.5][59622] -> [...153.98.28.78][..443] [QUIC.DoH_DoT][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....49] [ip4][..udp] [...168.144.64.5][58414] -> [...153.98.28.78][..443] [QUIC.DoH_DoT][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....50] [ip4][..udp] [...168.144.64.5][61341] -> [.16.232.218.117][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
update: [....51] [ip4][..udp] [...168.144.64.5][56683] -> [113.250.137.243][..443] [QUIC.Google][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
new: [....53] [ip4][..udp] [...168.144.64.5][60936] -> [...9.65.169.252][..443]
detected: [....53] [ip4][..udp] [...168.144.64.5][60936] -> [...9.65.169.252][..443] [QUIC.YouTube][Unknown][Media][Fun][suggestqueries-clients6.youtube.com]
+ RISK: Unidirectional Traffic
update: [....49] [ip4][..udp] [...168.144.64.5][58414] -> [...153.98.28.78][..443] [QUIC.DoH_DoT][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....50] [ip4][..udp] [...168.144.64.5][61341] -> [.16.232.218.117][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
update: [....51] [ip4][..udp] [...168.144.64.5][56683] -> [113.250.137.243][..443] [QUIC.Google][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
update: [....52] [ip4][..udp] [...168.144.64.5][64700] -> [.16.232.218.117][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
new: [....54] [ip4][..udp] [...168.144.64.5][59965] -> [..22.12.150.194][..443]
detected: [....54] [ip4][..udp] [...168.144.64.5][59965] -> [..22.12.150.194][..443] [QUIC.YouTube][Unknown][Media][Fun][r1---sn-vh5ouxa-hju6.googlevideo.com]
+ RISK: Unidirectional Traffic
idle: [....49] [ip4][..udp] [...168.144.64.5][58414] -> [...153.98.28.78][..443] [QUIC.DoH_DoT][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....55] [ip4][..udp] [...168.144.64.5][64693] -> [113.250.137.243][..443]
detected: [....55] [ip4][..udp] [...168.144.64.5][64693] -> [113.250.137.243][..443] [QUIC.Google][Unknown][Cloud][Acceptable][b1.nel.goog]
+ RISK: Unidirectional Traffic
idle: [....50] [ip4][..udp] [...168.144.64.5][61341] -> [.16.232.218.117][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
idle: [....51] [ip4][..udp] [...168.144.64.5][56683] -> [113.250.137.243][..443] [QUIC.Google][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
update: [....54] [ip4][..udp] [...168.144.64.5][59965] -> [..22.12.150.194][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
update: [....53] [ip4][..udp] [...168.144.64.5][60936] -> [...9.65.169.252][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
update: [....52] [ip4][..udp] [...168.144.64.5][64700] -> [.16.232.218.117][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
new: [....56] [ip4][..udp] [...168.144.64.5][59680] -> [.117.148.117.30][..443]
detected: [....56] [ip4][..udp] [...168.144.64.5][59680] -> [.117.148.117.30][..443] [QUIC.Google][Unknown][Advertisement][Acceptable][googleads.g.doubleclick.net]
+ RISK: Unidirectional Traffic
idle: [....54] [ip4][..udp] [...168.144.64.5][59965] -> [..22.12.150.194][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
idle: [....53] [ip4][..udp] [...168.144.64.5][60936] -> [...9.65.169.252][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
idle: [....55] [ip4][..udp] [...168.144.64.5][64693] -> [113.250.137.243][..443] [QUIC.Google][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....52] [ip4][..udp] [...168.144.64.5][64700] -> [.16.232.218.117][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
new: [....57] [ip4][..udp] [...168.144.64.5][57565] -> [217.254.108.174][..443]
detected: [....57] [ip4][..udp] [...168.144.64.5][57565] -> [217.254.108.174][..443] [QUIC.YouTube][Unknown][Media][Fun][r2---sn-vh5ouxa-hjuk.googlevideo.com]
+ RISK: Unidirectional Traffic
new: [....58] [ip4][..udp] [...168.144.64.5][52387] -> [..143.52.137.18][..443]
detected: [....58] [ip4][..udp] [...168.144.64.5][52387] -> [..143.52.137.18][..443] [QUIC.Google][Unknown][Advertisement][Acceptable][pagead2.googlesyndication.com]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 70 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 3 / 58|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 75]
new: [....59] [ip4][..udp] [...168.144.64.5][49860] -> [113.250.137.243][..443]
detected: [....59] [ip4][..udp] [...168.144.64.5][49860] -> [113.250.137.243][..443] [QUIC.Google][Unknown][Cloud][Acceptable][b1.nel.goog]
+ RISK: Unidirectional Traffic
update: [....56] [ip4][..udp] [...168.144.64.5][59680] -> [.117.148.117.30][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
update: [....57] [ip4][..udp] [...168.144.64.5][57565] -> [217.254.108.174][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
update: [....58] [ip4][..udp] [...168.144.64.5][52387] -> [..143.52.137.18][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
new: [....60] [ip4][..udp] [...168.144.64.5][60949] -> [185.186.183.185][..443]
detected: [....60] [ip4][..udp] [...168.144.64.5][60949] -> [185.186.183.185][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable][content-autofill.googleapis.com]
+ RISK: Unidirectional Traffic
update: [....56] [ip4][..udp] [...168.144.64.5][59680] -> [.117.148.117.30][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
update: [....57] [ip4][..udp] [...168.144.64.5][57565] -> [217.254.108.174][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
update: [....58] [ip4][..udp] [...168.144.64.5][52387] -> [..143.52.137.18][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
update: [....59] [ip4][..udp] [...168.144.64.5][49860] -> [113.250.137.243][..443] [QUIC.Google][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
new: [....61] [ip4][..udp] [...168.144.64.5][57735] -> [..137.238.249.2][..443]
detected: [....61] [ip4][..udp] [...168.144.64.5][57735] -> [..137.238.249.2][..443] [QUIC.Google][Unknown][Advertisement][Acceptable][ade.googlesyndication.com]
+ RISK: Unidirectional Traffic
idle: [....56] [ip4][..udp] [...168.144.64.5][59680] -> [.117.148.117.30][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....57] [ip4][..udp] [...168.144.64.5][57565] -> [217.254.108.174][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
idle: [....60] [ip4][..udp] [...168.144.64.5][60949] -> [185.186.183.185][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....58] [ip4][..udp] [...168.144.64.5][52387] -> [..143.52.137.18][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....59] [ip4][..udp] [...168.144.64.5][49860] -> [113.250.137.243][..443] [QUIC.Google][Unknown][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 73 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 61|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 82]
new: [....62] [ip4][..udp] [..52.187.20.175][50588] -> [.208.229.157.81][..443]
detected: [....62] [ip4][..udp] [..52.187.20.175][50588] -> [.208.229.157.81][..443] [QUIC.GoogleServices][Azure][Web][Acceptable][update.googleapis.com]
+ RISK: Unidirectional Traffic
idle: [....61] [ip4][..udp] [...168.144.64.5][57735] -> [..137.238.249.2][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
new: [....63] [ip4][..udp] [..52.187.20.175][61089] -> [..99.42.133.245][..443]
detected: [....63] [ip4][..udp] [..52.187.20.175][61089] -> [..99.42.133.245][..443] [QUIC.GoogleServices][Azure][Web][Acceptable][clientservices.googleapis.com]
+ RISK: Unidirectional Traffic
update: [....62] [ip4][..udp] [..52.187.20.175][50588] -> [.208.229.157.81][..443] [QUIC.GoogleServices][Azure][Web][Acceptable]
+ RISK: Unidirectional Traffic
new: [....64] [ip4][..udp] [..52.187.20.175][49880] -> [.208.229.157.81][..443]
detected: [....64] [ip4][..udp] [..52.187.20.175][49880] -> [.208.229.157.81][..443] [QUIC.GoogleServices][Azure][Web][Acceptable][update.googleapis.com]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 85 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 3 / 64|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 83]
new: [....65] [ip4][..udp] [159.117.176.124][58337] -> [.208.229.157.81][..443]
detected: [....65] [ip4][..udp] [159.117.176.124][58337] -> [.208.229.157.81][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable][clientservices.googleapis.com]
+ RISK: Unidirectional Traffic
idle: [....62] [ip4][..udp] [..52.187.20.175][50588] -> [.208.229.157.81][..443] [QUIC.GoogleServices][Azure][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....64] [ip4][..udp] [..52.187.20.175][49880] -> [.208.229.157.81][..443] [QUIC.GoogleServices][Azure][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....63] [ip4][..udp] [..52.187.20.175][61089] -> [..99.42.133.245][..443] [QUIC.GoogleServices][Azure][Web][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 89 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 65|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 83]
new: [....66] [ip4][..udp] [159.117.176.124][49867] -> [...198.74.29.79][..443]
detected: [....66] [ip4][..udp] [159.117.176.124][49867] -> [...198.74.29.79][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable][content-autofill.googleapis.com]
+ RISK: Unidirectional Traffic
idle: [....65] [ip4][..udp] [159.117.176.124][58337] -> [.208.229.157.81][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 93 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 66|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 83]
new: [....67] [ip4][..udp] [..52.187.20.175][58123] -> [..118.89.218.46][..443]
detected: [....67] [ip4][..udp] [..52.187.20.175][58123] -> [..118.89.218.46][..443] [QUIC.Google][Tencent][Web][Acceptable][accounts.google.com]
+ RISK: Unidirectional Traffic
new: [....68] [ip4][..udp] [..52.187.20.175][63507] -> [121.209.126.161][..443]
detected: [....68] [ip4][..udp] [..52.187.20.175][63507] -> [121.209.126.161][..443] [QUIC.Google][Azure][Web][Acceptable][clients2.googleusercontent.com]
+ RISK: Unidirectional Traffic
idle: [....66] [ip4][..udp] [159.117.176.124][49867] -> [...198.74.29.79][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
new: [....69] [ip4][..udp] [..52.187.20.175][57066] -> [108.171.138.182][..443]
detected: [....69] [ip4][..udp] [..52.187.20.175][57066] -> [108.171.138.182][..443] [QUIC.GoogleServices][Azure][Web][Acceptable][clientservices.googleapis.com]
+ RISK: Unidirectional Traffic
update: [....67] [ip4][..udp] [..52.187.20.175][58123] -> [..118.89.218.46][..443] [QUIC.Google][Tencent][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....68] [ip4][..udp] [..52.187.20.175][63507] -> [121.209.126.161][..443] [QUIC.Google][Azure][Web][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 102 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 3 / 69|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 85]
new: [....70] [ip4][..udp] [..52.187.20.175][52512] -> [..196.245.61.64][..443]
detected: [....70] [ip4][..udp] [..52.187.20.175][52512] -> [..196.245.61.64][..443] [QUIC.GoogleServices][Azure][Web][Acceptable][safebrowsing.googleapis.com]
+ RISK: Unidirectional Traffic
idle: [....67] [ip4][..udp] [..52.187.20.175][58123] -> [..118.89.218.46][..443] [QUIC.Google][Tencent][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....68] [ip4][..udp] [..52.187.20.175][63507] -> [121.209.126.161][..443] [QUIC.Google][Azure][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....69] [ip4][..udp] [..52.187.20.175][57066] -> [108.171.138.182][..443] [QUIC.GoogleServices][Azure][Web][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 106 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 70|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 85]
new: [....71] [ip4][..udp] [..52.187.20.175][51619] -> [.208.229.157.81][..443]
detected: [....71] [ip4][..udp] [..52.187.20.175][51619] -> [.208.229.157.81][..443] [QUIC.GoogleServices][Azure][Web][Acceptable][clientservices.googleapis.com]
+ RISK: Unidirectional Traffic
idle: [....70] [ip4][..udp] [..52.187.20.175][52512] -> [..196.245.61.64][..443] [QUIC.GoogleServices][Azure][Web][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 110 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 71|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 85]
new: [....72] [ip4][..udp] [...168.144.64.5][58703] -> [.93.100.151.221][..443]
detected: [....72] [ip4][..udp] [...168.144.64.5][58703] -> [.93.100.151.221][..443] [QUIC.PlayStore][Unknown][SoftwareUpdate][Safe][android.clients.google.com]
+ RISK: Unidirectional Traffic
new: [....73] [ip4][..udp] [...168.144.64.5][55066] -> [...128.248.24.1][..443]
detected: [....73] [ip4][..udp] [...168.144.64.5][55066] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable][fonts.gstatic.com]
+ RISK: Unidirectional Traffic
new: [....74] [ip4][..udp] [...168.144.64.5][61886] -> [....65.33.51.74][..443]
detected: [....74] [ip4][..udp] [...168.144.64.5][61886] -> [....65.33.51.74][..443] [QUIC.Google][Unknown][Web][Acceptable][adservice.google.com]
+ RISK: Unidirectional Traffic
new: [....75] [ip4][..udp] [...168.144.64.5][65391] -> [...128.248.24.1][..443]
detected: [....75] [ip4][..udp] [...168.144.64.5][65391] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable][fonts.gstatic.com]
+ RISK: Unidirectional Traffic
new: [....76] [ip4][..udp] [...168.144.64.5][58832] -> [.117.148.117.30][..443]
detected: [....76] [ip4][..udp] [...168.144.64.5][58832] -> [.117.148.117.30][..443] [QUIC.Google][Unknown][Advertisement][Acceptable][googleads.g.doubleclick.net]
+ RISK: Unidirectional Traffic
new: [....77] [ip4][..udp] [...168.144.64.5][58429] -> [....38.57.8.121][..443]
detected: [....77] [ip4][..udp] [...168.144.64.5][58429] -> [....38.57.8.121][..443] [QUIC.Google][Unknown][Advertisement][Acceptable][static.doubleclick.net]
+ RISK: Unidirectional Traffic
idle: [....71] [ip4][..udp] [..52.187.20.175][51619] -> [.208.229.157.81][..443] [QUIC.GoogleServices][Azure][Web][Acceptable]
+ RISK: Unidirectional Traffic
new: [....78] [ip4][..udp] [...168.144.64.5][55479] -> [113.250.137.243][..443]
detected: [....78] [ip4][..udp] [...168.144.64.5][55479] -> [113.250.137.243][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable][clientservices.googleapis.com]
+ RISK: Unidirectional Traffic
update: [....73] [ip4][..udp] [...168.144.64.5][55066] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....75] [ip4][..udp] [...168.144.64.5][65391] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....72] [ip4][..udp] [...168.144.64.5][58703] -> [.93.100.151.221][..443] [QUIC.PlayStore][Unknown][SoftwareUpdate][Safe]
+ RISK: Unidirectional Traffic
update: [....76] [ip4][..udp] [...168.144.64.5][58832] -> [.117.148.117.30][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
update: [....74] [ip4][..udp] [...168.144.64.5][61886] -> [....65.33.51.74][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....77] [ip4][..udp] [...168.144.64.5][58429] -> [....38.57.8.121][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
new: [....79] [ip4][..udp] [...168.144.64.5][60934] -> [...128.248.24.1][..443]
detected: [....79] [ip4][..udp] [...168.144.64.5][60934] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable][beacons.gcp.gvt2.com]
+ RISK: Unidirectional Traffic
new: [....80] [ip4][..udp] [...168.144.64.5][59785] -> [...128.248.24.1][..443]
detected: [....80] [ip4][..udp] [...168.144.64.5][59785] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable][beacons.gcp.gvt2.com]
+ RISK: Unidirectional Traffic
new: [....81] [ip4][..udp] [...168.144.64.5][59327] -> [...153.98.28.78][..443]
detected: [....81] [ip4][..udp] [...168.144.64.5][59327] -> [...153.98.28.78][..443] [QUIC.DoH_DoT][Unknown][Network][Acceptable][dns.google]
+ RISK: Unidirectional Traffic
new: [....82] [ip4][..udp] [...168.144.64.5][63925] -> [...39.227.72.32][..443]
detected: [....82] [ip4][..udp] [...168.144.64.5][63925] -> [...39.227.72.32][..443] [QUIC.Google][Unknown][Web][Acceptable][beacons2.gvt2.com]
+ RISK: Unidirectional Traffic
update: [....79] [ip4][..udp] [...168.144.64.5][60934] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....73] [ip4][..udp] [...168.144.64.5][55066] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....75] [ip4][..udp] [...168.144.64.5][65391] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....72] [ip4][..udp] [...168.144.64.5][58703] -> [.93.100.151.221][..443] [QUIC.PlayStore][Unknown][SoftwareUpdate][Safe]
+ RISK: Unidirectional Traffic
update: [....76] [ip4][..udp] [...168.144.64.5][58832] -> [.117.148.117.30][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
update: [....74] [ip4][..udp] [...168.144.64.5][61886] -> [....65.33.51.74][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....78] [ip4][..udp] [...168.144.64.5][55479] -> [113.250.137.243][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....77] [ip4][..udp] [...168.144.64.5][58429] -> [....38.57.8.121][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
new: [....83] [ip4][..udp] [...168.144.64.5][49926] -> [.103.179.40.184][..443]
detected: [....83] [ip4][..udp] [...168.144.64.5][49926] -> [.103.179.40.184][..443] [QUIC.YouTube][Unknown][Media][Fun][r5---sn-vh5ouxa-hju6.googlevideo.com]
+ RISK: Unidirectional Traffic
new: [....84] [ip4][..udp] [...168.144.64.5][56384] -> [.117.148.117.30][..443]
detected: [....84] [ip4][..udp] [...168.144.64.5][56384] -> [.117.148.117.30][..443] [QUIC.Google][Unknown][Advertisement][Acceptable][pagead2.googlesyndication.com]
+ RISK: Unidirectional Traffic
new: [....85] [ip4][..udp] [...168.144.64.5][57398] -> [..137.238.249.2][..443]
detected: [....85] [ip4][..udp] [...168.144.64.5][57398] -> [..137.238.249.2][..443] [QUIC.Google][Unknown][Advertisement][Acceptable][www.googleadservices.com]
+ RISK: Unidirectional Traffic
update: [....79] [ip4][..udp] [...168.144.64.5][60934] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....73] [ip4][..udp] [...168.144.64.5][55066] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....75] [ip4][..udp] [...168.144.64.5][65391] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....72] [ip4][..udp] [...168.144.64.5][58703] -> [.93.100.151.221][..443] [QUIC.PlayStore][Unknown][SoftwareUpdate][Safe]
+ RISK: Unidirectional Traffic
update: [....80] [ip4][..udp] [...168.144.64.5][59785] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....76] [ip4][..udp] [...168.144.64.5][58832] -> [.117.148.117.30][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
update: [....81] [ip4][..udp] [...168.144.64.5][59327] -> [...153.98.28.78][..443] [QUIC.DoH_DoT][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....74] [ip4][..udp] [...168.144.64.5][61886] -> [....65.33.51.74][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....78] [ip4][..udp] [...168.144.64.5][55479] -> [113.250.137.243][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....82] [ip4][..udp] [...168.144.64.5][63925] -> [...39.227.72.32][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....77] [ip4][..udp] [...168.144.64.5][58429] -> [....38.57.8.121][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
new: [....86] [ip4][..udp] [...168.144.64.5][64497] -> [102.194.207.179][..443]
detected: [....86] [ip4][..udp] [...168.144.64.5][64497] -> [102.194.207.179][..443] [QUIC.Google][Unknown][Web][Acceptable][beacons.gvt2.com]
+ RISK: Unidirectional Traffic
idle: [....73] [ip4][..udp] [...168.144.64.5][55066] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....75] [ip4][..udp] [...168.144.64.5][65391] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....72] [ip4][..udp] [...168.144.64.5][58703] -> [.93.100.151.221][..443] [QUIC.PlayStore][Unknown][SoftwareUpdate][Safe]
+ RISK: Unidirectional Traffic
idle: [....76] [ip4][..udp] [...168.144.64.5][58832] -> [.117.148.117.30][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....74] [ip4][..udp] [...168.144.64.5][61886] -> [....65.33.51.74][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....77] [ip4][..udp] [...168.144.64.5][58429] -> [....38.57.8.121][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
new: [....87] [ip4][..udp] [...168.144.64.5][55572] -> [.117.148.117.30][..443]
detected: [....87] [ip4][..udp] [...168.144.64.5][55572] -> [.117.148.117.30][..443] [QUIC.Google][Unknown][Advertisement][Acceptable][googleads.g.doubleclick.net]
+ RISK: Unidirectional Traffic
new: [....88] [ip4][..udp] [...168.144.64.5][58956] -> [...128.248.24.1][..443]
detected: [....88] [ip4][..udp] [...168.144.64.5][58956] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable][beacons.gcp.gvt2.com]
+ RISK: Unidirectional Traffic
new: [....89] [ip4][..udp] [...168.144.64.5][54449] -> [102.194.207.179][..443]
detected: [....89] [ip4][..udp] [...168.144.64.5][54449] -> [102.194.207.179][..443] [QUIC.Google][Unknown][Web][Acceptable][beacons3.gvt2.com]
+ RISK: Unidirectional Traffic
idle: [....79] [ip4][..udp] [...168.144.64.5][60934] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....78] [ip4][..udp] [...168.144.64.5][55479] -> [113.250.137.243][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....86] [ip4][..udp] [...168.144.64.5][64497] -> [102.194.207.179][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....83] [ip4][..udp] [...168.144.64.5][49926] -> [.103.179.40.184][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
update: [....85] [ip4][..udp] [...168.144.64.5][57398] -> [..137.238.249.2][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
update: [....88] [ip4][..udp] [...168.144.64.5][58956] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....84] [ip4][..udp] [...168.144.64.5][56384] -> [.117.148.117.30][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
update: [....80] [ip4][..udp] [...168.144.64.5][59785] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....81] [ip4][..udp] [...168.144.64.5][59327] -> [...153.98.28.78][..443] [QUIC.DoH_DoT][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....82] [ip4][..udp] [...168.144.64.5][63925] -> [...39.227.72.32][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....87] [ip4][..udp] [...168.144.64.5][55572] -> [.117.148.117.30][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
new: [....90] [ip4][..udp] [...168.144.64.5][60342] -> [.93.100.151.221][..443]
detected: [....90] [ip4][..udp] [...168.144.64.5][60342] -> [.93.100.151.221][..443] [QUIC.YouTube][Unknown][Media][Fun][suggestqueries-clients6.youtube.com]
+ RISK: Unidirectional Traffic
idle: [....86] [ip4][..udp] [...168.144.64.5][64497] -> [102.194.207.179][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....83] [ip4][..udp] [...168.144.64.5][49926] -> [.103.179.40.184][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
idle: [....85] [ip4][..udp] [...168.144.64.5][57398] -> [..137.238.249.2][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....88] [ip4][..udp] [...168.144.64.5][58956] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....89] [ip4][..udp] [...168.144.64.5][54449] -> [102.194.207.179][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....84] [ip4][..udp] [...168.144.64.5][56384] -> [.117.148.117.30][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....80] [ip4][..udp] [...168.144.64.5][59785] -> [...128.248.24.1][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....81] [ip4][..udp] [...168.144.64.5][59327] -> [...153.98.28.78][..443] [QUIC.DoH_DoT][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....82] [ip4][..udp] [...168.144.64.5][63925] -> [...39.227.72.32][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....87] [ip4][..udp] [...168.144.64.5][55572] -> [.117.148.117.30][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 129 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 90|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 119]
new: [....91] [ip4][..udp] [...168.144.64.5][65186] -> [...9.65.169.252][..443]
detected: [....91] [ip4][..udp] [...168.144.64.5][65186] -> [...9.65.169.252][..443] [QUIC.YouTube][Unknown][Media][Fun][www.youtube.com]
+ RISK: Unidirectional Traffic
idle: [....90] [ip4][..udp] [...168.144.64.5][60342] -> [.93.100.151.221][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
new: [....92] [ip4][..udp] [...168.144.64.5][52942] -> [.93.100.151.221][..443]
detected: [....92] [ip4][..udp] [...168.144.64.5][52942] -> [.93.100.151.221][..443] [QUIC.Google][Unknown][Web][Acceptable][clients2.google.com]
+ RISK: Unidirectional Traffic
idle: [....91] [ip4][..udp] [...168.144.64.5][65186] -> [...9.65.169.252][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
new: [....93] [ip4][..udp] [..52.187.20.175][62114] -> [...198.74.29.79][..443]
detected: [....93] [ip4][..udp] [..52.187.20.175][62114] -> [...198.74.29.79][..443] [QUIC.GoogleServices][Azure][Web][Acceptable][safebrowsing.googleapis.com]
+ RISK: Unidirectional Traffic
idle: [....92] [ip4][..udp] [...168.144.64.5][52942] -> [.93.100.151.221][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 135 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 93|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 119]
new: [....94] [ip4][..udp] [...168.144.64.5][55561] -> [..35.194.157.47][..443]
- detected: [....94] [ip4][..udp] [...168.144.64.5][55561] -> [..35.194.157.47][..443] [QUIC.Google][GoogleCloud][Advertisement][Acceptable][googleads.g.doubleclick.net]
+ detected: [....94] [ip4][..udp] [...168.144.64.5][55561] -> [..35.194.157.47][..443] [QUIC.GoogleCloud][GoogleCloud][Advertisement][Acceptable][googleads.g.doubleclick.net]
+ RISK: Unidirectional Traffic
idle: [....93] [ip4][..udp] [..52.187.20.175][62114] -> [...198.74.29.79][..443] [QUIC.GoogleServices][Azure][Web][Acceptable]
+ RISK: Unidirectional Traffic
new: [....95] [ip4][..udp] [159.117.176.124][61202] -> [...198.74.29.79][..443]
detected: [....95] [ip4][..udp] [159.117.176.124][61202] -> [...198.74.29.79][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable][safebrowsing.googleapis.com]
- idle: [....94] [ip4][..udp] [...168.144.64.5][55561] -> [..35.194.157.47][..443] [QUIC.Google][GoogleCloud][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....94] [ip4][..udp] [...168.144.64.5][55561] -> [..35.194.157.47][..443] [QUIC.GoogleCloud][GoogleCloud][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 140 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 95|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 119]
new: [....96] [ip4][..udp] [159.117.176.124][49521] -> [...128.248.24.1][..443]
detected: [....96] [ip4][..udp] [159.117.176.124][49521] -> [...128.248.24.1][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable][clientservices.googleapis.com]
+ RISK: Unidirectional Traffic
update: [....95] [ip4][..udp] [159.117.176.124][61202] -> [...198.74.29.79][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 144 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 96|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 120]
new: [....97] [ip4][..udp] [...168.144.64.5][49217] -> [185.186.183.185][..443]
detected: [....97] [ip4][..udp] [...168.144.64.5][49217] -> [185.186.183.185][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable][safebrowsing.googleapis.com]
+ RISK: Unidirectional Traffic
idle: [....95] [ip4][..udp] [159.117.176.124][61202] -> [...198.74.29.79][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....96] [ip4][..udp] [159.117.176.124][49521] -> [...128.248.24.1][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
new: [....98] [ip4][..udp] [..52.187.20.175][61286] -> [...198.74.29.79][..443]
detected: [....98] [ip4][..udp] [..52.187.20.175][61286] -> [...198.74.29.79][..443] [QUIC.GoogleServices][Azure][Web][Acceptable][safebrowsing.googleapis.com]
+ RISK: Unidirectional Traffic
update: [....97] [ip4][..udp] [...168.144.64.5][49217] -> [185.186.183.185][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 149 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 98|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 121]
new: [....99] [ip4][..udp] [..52.187.20.175][53260] -> [102.194.207.179][..443]
detected: [....99] [ip4][..udp] [..52.187.20.175][53260] -> [102.194.207.179][..443] [QUIC.GoogleServices][Azure][Web][Acceptable][clientservices.googleapis.com]
+ RISK: Unidirectional Traffic
idle: [....97] [ip4][..udp] [...168.144.64.5][49217] -> [185.186.183.185][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....98] [ip4][..udp] [..52.187.20.175][61286] -> [...198.74.29.79][..443] [QUIC.GoogleServices][Azure][Web][Acceptable]
+ RISK: Unidirectional Traffic
new: [...100] [ip4][..udp] [...168.144.64.5][50023] -> [..76.231.104.92][..443]
detected: [...100] [ip4][..udp] [...168.144.64.5][50023] -> [..76.231.104.92][..443] [QUIC.YouTube][Unknown][Media][Fun][www.youtube.com]
+ RISK: Unidirectional Traffic
update: [....99] [ip4][..udp] [..52.187.20.175][53260] -> [102.194.207.179][..443] [QUIC.GoogleServices][Azure][Web][Acceptable]
+ RISK: Unidirectional Traffic
new: [...101] [ip4][..udp] [...168.144.64.5][65360] -> [....65.33.51.74][..443]
detected: [...101] [ip4][..udp] [...168.144.64.5][65360] -> [....65.33.51.74][..443] [QUIC.Google][Unknown][Advertisement][Acceptable][googleads.g.doubleclick.net]
+ RISK: Unidirectional Traffic
idle: [...100] [ip4][..udp] [...168.144.64.5][50023] -> [..76.231.104.92][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
idle: [....99] [ip4][..udp] [..52.187.20.175][53260] -> [102.194.207.179][..443] [QUIC.GoogleServices][Azure][Web][Acceptable]
+ RISK: Unidirectional Traffic
new: [...102] [ip4][..udp] [159.117.176.124][64134] -> [..207.121.63.92][..443]
detected: [...102] [ip4][..udp] [159.117.176.124][64134] -> [..207.121.63.92][..443] [QUIC.Google][Unknown][Web][Acceptable][www.google.com]
+ RISK: Unidirectional Traffic
new: [...103] [ip4][..udp] [..52.187.20.175][61484] -> [202.152.155.121][..443]
detected: [...103] [ip4][..udp] [..52.187.20.175][61484] -> [202.152.155.121][..443] [QUIC.Google][Azure][Web][Acceptable][ogs.google.com]
+ RISK: Unidirectional Traffic
update: [...101] [ip4][..udp] [...168.144.64.5][65360] -> [....65.33.51.74][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
new: [...104] [ip4][..udp] [159.117.176.124][51856] -> [.16.205.123.234][..443]
detected: [...104] [ip4][..udp] [159.117.176.124][51856] -> [.16.205.123.234][..443] [QUIC.WhatsAppFiles][Unknown][Download][Acceptable][media.fmct2-1.fna.whatsapp.net]
+ RISK: Unidirectional Traffic
idle: [...101] [ip4][..udp] [...168.144.64.5][65360] -> [....65.33.51.74][..443] [QUIC.Google][Unknown][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 164 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 3 / 104|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 123]
new: [...105] [ip4][..udp] [...168.144.64.5][54120] -> [...153.98.28.78][..443]
detected: [...105] [ip4][..udp] [...168.144.64.5][54120] -> [...153.98.28.78][..443] [QUIC.DoH_DoT][Unknown][Network][Acceptable][dns.google]
+ RISK: Unidirectional Traffic
idle: [...102] [ip4][..udp] [159.117.176.124][64134] -> [..207.121.63.92][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...103] [ip4][..udp] [..52.187.20.175][61484] -> [202.152.155.121][..443] [QUIC.Google][Azure][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...104] [ip4][..udp] [159.117.176.124][51856] -> [.16.205.123.234][..443] [QUIC.WhatsAppFiles][Unknown][Download][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 165 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 105|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 123]
new: [...106] [ip4][..udp] [...168.144.64.5][52396] -> [...153.98.28.78][..443]
detected: [...106] [ip4][..udp] [...168.144.64.5][52396] -> [...153.98.28.78][..443] [QUIC.DoH_DoT][Unknown][Network][Acceptable][dns.google]
+ RISK: Unidirectional Traffic
idle: [...105] [ip4][..udp] [...168.144.64.5][54120] -> [...153.98.28.78][..443] [QUIC.DoH_DoT][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 166 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 106|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 123]
new: [...107] [ip4][..udp] [...168.144.64.5][50224] -> [....126.3.93.89][..443]
detected: [...107] [ip4][..udp] [...168.144.64.5][50224] -> [....126.3.93.89][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable][www.googleapis.com]
+ RISK: Unidirectional Traffic
new: [...108] [ip4][..udp] [...168.144.64.5][62719] -> [..31.219.210.96][..443]
detected: [...108] [ip4][..udp] [...168.144.64.5][62719] -> [..31.219.210.96][..443] [QUIC.Google][Unknown][Web][Acceptable][lh4.googleusercontent.com]
+ RISK: Unidirectional Traffic
idle: [...106] [ip4][..udp] [...168.144.64.5][52396] -> [...153.98.28.78][..443] [QUIC.DoH_DoT][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...109] [ip4][..udp] [...168.144.64.5][58351] -> [.193.68.169.100][..443]
detected: [...109] [ip4][..udp] [...168.144.64.5][58351] -> [.193.68.169.100][..443] [QUIC.Google][Unknown][Web][Acceptable][www.gstatic.com]
+ RISK: Unidirectional Traffic
new: [...110] [ip4][..udp] [...168.144.64.5][57319] -> [....7.71.118.27][..443]
detected: [...110] [ip4][..udp] [...168.144.64.5][57319] -> [....7.71.118.27][..443] [QUIC.PlayStore][Unknown][SoftwareUpdate][Safe][android.clients.google.com]
+ RISK: Unidirectional Traffic
new: [...111] [ip4][..udp] [...168.144.64.5][60919] -> [.53.101.228.200][..443]
detected: [...111] [ip4][..udp] [...168.144.64.5][60919] -> [.53.101.228.200][..443] [QUIC.Google][Unknown][Web][Acceptable][adservice.google.com]
+ RISK: Unidirectional Traffic
new: [...112] [ip4][..udp] [...168.144.64.5][50423] -> [.144.237.113.58][..443]
detected: [...112] [ip4][..udp] [...168.144.64.5][50423] -> [.144.237.113.58][..443] [QUIC.Google][Unknown][Web][Acceptable][www.google.com]
+ RISK: Unidirectional Traffic
idle: [...110] [ip4][..udp] [...168.144.64.5][57319] -> [....7.71.118.27][..443] [QUIC.PlayStore][Unknown][SoftwareUpdate][Safe]
+ RISK: Unidirectional Traffic
idle: [...107] [ip4][..udp] [...168.144.64.5][50224] -> [....126.3.93.89][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...108] [ip4][..udp] [...168.144.64.5][62719] -> [..31.219.210.96][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...109] [ip4][..udp] [...168.144.64.5][58351] -> [.193.68.169.100][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...111] [ip4][..udp] [...168.144.64.5][60919] -> [.53.101.228.200][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 178 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 112|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 123]
new: [...113] [ip4][..udp] [...168.144.64.5][59206] -> [..76.231.104.92][..443]
detected: [...113] [ip4][..udp] [...168.144.64.5][59206] -> [..76.231.104.92][..443] [QUIC.Google][Unknown][Web][Acceptable][ogs.google.com]
+ RISK: Unidirectional Traffic
idle: [...113] [ip4][..udp] [...168.144.64.5][59206] -> [..76.231.104.92][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...112] [ip4][..udp] [...168.144.64.5][50423] -> [.144.237.113.58][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/quic_interop_V.pcapng.out b/test/results/flow-info/default/quic_interop_V.pcapng.out
index ee12c2ab5..d2a999874 100644
--- a/test/results/flow-info/quic_interop_V.pcapng.out
+++ b/test/results/flow-info/default/quic_interop_V.pcapng.out
@@ -3,317 +3,387 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][38077] -> [.........2400:8902::f03c:91ff:fe69:a454][..443]
detected: [.....1] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][38077] -> [.........2400:8902::f03c:91ff:fe69:a454][..443] [QUIC][Unknown][Web][Acceptable][nghttp2.org]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..udp] [..192.168.1.128][37643] -> [..71.202.41.169][..443]
detected: [.....2] [ip4][..udp] [..192.168.1.128][37643] -> [..71.202.41.169][..443] [QUIC][Unknown][Web][Acceptable][71.202.41.169]
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [.....3] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][37876] -> [.2a05:d018:ce9:8100:cd2a:e2fd:b3be:c5ab][..443]
detected: [.....3] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][37876] -> [.2a05:d018:ce9:8100:cd2a:e2fd:b3be:c5ab][..443] [QUIC][Unknown][Web][Acceptable][quic.aiortc.org]
+ RISK: Unidirectional Traffic
new: [.....4] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][34442] -> [.2001:4800:7817:101:be76:4eff:fe04:631d][..443]
detected: [.....4] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][34442] -> [.2001:4800:7817:101:be76:4eff:fe04:631d][..443] [QUIC][Unknown][Web][Acceptable][quic.ogre.com]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][..udp] [..192.168.1.128][47010] -> [...3.121.242.54][..443]
detected: [.....5] [ip4][..udp] [..192.168.1.128][47010] -> [...3.121.242.54][..443] [QUIC][AmazonAWS][Web][Acceptable][ietf.akaquic.com]
+ RISK: Unidirectional Traffic
new: [.....6] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][48707] -> [..2a00:ac00:4000:400:2e0:4cff:fe68:199d][..443]
detected: [.....6] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][48707] -> [..2a00:ac00:4000:400:2e0:4cff:fe68:199d][..443] [QUIC][Unknown][Web][Acceptable][quant.eggert.org]
+ RISK: Unidirectional Traffic
new: [.....7] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][60346] -> [..................2001:bc8:47a4:1c25::1][..443]
detected: [.....7] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][60346] -> [..................2001:bc8:47a4:1c25::1][..443] [QUIC][Unknown][Web][Acceptable][h3.stammw.eu]
+ RISK: Unidirectional Traffic
new: [.....8] [ip4][..udp] [..192.168.1.128][46576] -> [..40.112.191.60][.4433]
detected: [.....8] [ip4][..udp] [..192.168.1.128][46576] -> [..40.112.191.60][.4433] [QUIC][Azure][Web][Acceptable][f5quic.com]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [.....9] [ip4][..udp] [..192.168.1.128][46334] -> [..40.112.191.60][..443]
detected: [.....9] [ip4][..udp] [..192.168.1.128][46334] -> [..40.112.191.60][..443] [QUIC][Azure][Web][Acceptable][f5quic.com]
+ RISK: Unidirectional Traffic
new: [....10] [ip4][..udp] [..192.168.1.128][38366] -> [.202.238.220.92][.4433]
detected: [....10] [ip4][..udp] [..192.168.1.128][38366] -> [.202.238.220.92][.4433] [QUIC][Unknown][Web][Acceptable][mew.org]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....11] [ip4][.icmp] [...3.121.242.54] -> [..192.168.1.128]
detected: [....11] [ip4][.icmp] [...3.121.242.54] -> [..192.168.1.128] [ICMP][AmazonAWS][Network][Acceptable]
+ RISK: Susp Entropy, Unidirectional Traffic
new: [....12] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][32957] -> [.................2606:4700:10::6816:826][.4433]
detected: [....12] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][32957] -> [.................2606:4700:10::6816:826][.4433] [QUIC][Unknown][Web][Acceptable][cloudflare-quic.com]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....13] [ip4][..udp] [..192.168.1.128][60784] -> [...3.121.242.54][.4433]
detected: [....13] [ip4][..udp] [..192.168.1.128][60784] -> [...3.121.242.54][.4433] [QUIC][AmazonAWS][Web][Acceptable][ietf.akaquic.com]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....14] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][51185] -> [..................2001:bc8:47a4:1c25::1][.4433]
detected: [....14] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][51185] -> [..................2001:bc8:47a4:1c25::1][.4433] [QUIC][Unknown][Web][Acceptable][h3.stammw.eu]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....15] [ip4][..udp] [..192.168.1.128][34511] -> [.131.159.24.198][..443]
detected: [....15] [ip4][..udp] [..192.168.1.128][34511] -> [.131.159.24.198][..443] [QUIC][Unknown][Web][Acceptable][pandora.cm.in.tum.de]
+ RISK: Unidirectional Traffic
new: [....16] [ip4][..udp] [..192.168.1.128][51887] -> [..51.158.105.98][..443]
detected: [....16] [ip4][..udp] [..192.168.1.128][51887] -> [..51.158.105.98][..443] [QUIC][Unknown][Web][Acceptable][quic.seemann.io]
+ RISK: Unidirectional Traffic
new: [....17] [ip4][..udp] [..192.168.1.128][43475] -> [..18.189.84.245][.4433]
detected: [....17] [ip4][..udp] [..192.168.1.128][43475] -> [..18.189.84.245][.4433] [QUIC][AmazonAWS][Web][Acceptable][fb.mvfst.net]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....18] [ip4][..udp] [..192.168.1.128][49151] -> [133.242.206.244][.4433]
detected: [....18] [ip4][..udp] [..192.168.1.128][49151] -> [133.242.206.244][.4433] [QUIC][Unknown][Web][Acceptable][h2o.examp1e.net]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....19] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][39945] -> [.2a05:d018:ce9:8100:cd2a:e2fd:b3be:c5ab][.4433]
detected: [....19] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][39945] -> [.2a05:d018:ce9:8100:cd2a:e2fd:b3be:c5ab][.4433] [QUIC][Unknown][Web][Acceptable][quic.aiortc.org]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....20] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][39624] -> [.....2001:19f0:5:c21:5400:1ff:fe33:3b96][..443]
detected: [....20] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][39624] -> [.....2001:19f0:5:c21:5400:1ff:fe33:3b96][..443] [QUIC][Unknown][Web][Acceptable][quic.tech]
+ RISK: Unidirectional Traffic
new: [....21] [ip4][..udp] [..192.168.1.128][59171] -> [..193.190.10.98][.4433]
detected: [....21] [ip4][..udp] [..192.168.1.128][59171] -> [..193.190.10.98][.4433] [QUIC][Unknown][Web][Acceptable][quicker.edm.uhasselt.be]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....22] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][35643] -> [......................2001:19f0:4:34::1][.4433]
detected: [....22] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][35643] -> [......................2001:19f0:4:34::1][.4433] [QUIC][Unknown][Web][Acceptable][quic.rocks]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....23] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][56213] -> [.........2400:8902::f03c:91ff:fe69:a454][.4433]
detected: [....23] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][56213] -> [.........2400:8902::f03c:91ff:fe69:a454][.4433] [QUIC][Unknown][Web][Acceptable][nghttp2.org]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....24] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][52080] -> [2600:1f18:2310:d230:5103:7d9e:7d75:374f][.4434]
detected: [....24] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][52080] -> [2600:1f18:2310:d230:5103:7d9e:7d75:374f][.4434] [QUIC][Unknown][Web][Acceptable][test.privateoctopus.com]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....25] [ip4][..udp] [..192.168.1.128][37661] -> [..71.202.41.169][.4433]
detected: [....25] [ip4][..udp] [..192.168.1.128][37661] -> [..71.202.41.169][.4433] [QUIC][Unknown][Web][Acceptable][71.202.41.169]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....26] [ip4][..udp] [..192.168.1.128][37784] -> [..140.227.52.92][..443]
detected: [....26] [ip4][..udp] [..192.168.1.128][37784] -> [..140.227.52.92][..443] [QUIC][Unknown][Web][Acceptable][quic.examp1e.net]
+ RISK: Unidirectional Traffic
new: [....27] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][60983] -> [..2a00:ac00:4000:400:2e0:4cff:fe68:199d][.4433]
detected: [....27] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][60983] -> [..2a00:ac00:4000:400:2e0:4cff:fe68:199d][.4433] [QUIC][Unknown][Web][Acceptable][quant.eggert.org]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....28] [ip4][..udp] [..192.168.1.128][49658] -> [..193.190.10.98][..443]
detected: [....28] [ip4][..udp] [..192.168.1.128][49658] -> [..193.190.10.98][..443] [QUIC][Unknown][Web][Acceptable][quicker.edm.uhasselt.be]
+ RISK: Unidirectional Traffic
new: [....29] [ip4][..udp] [..192.168.1.128][41587] -> [.131.159.24.198][.4433]
detected: [....29] [ip4][..udp] [..192.168.1.128][41587] -> [.131.159.24.198][.4433] [QUIC][Unknown][Web][Acceptable][pandora.cm.in.tum.de]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....30] [ip4][.icmp] [..51.158.105.98] -> [..192.168.1.128]
detected: [....30] [ip4][.icmp] [..51.158.105.98] -> [..192.168.1.128] [ICMP][Unknown][Network][Acceptable]
+ RISK: Susp Entropy, Unidirectional Traffic
new: [....31] [ip4][..udp] [..192.168.1.128][38933] -> [.202.238.220.92][..443]
detected: [....31] [ip4][..udp] [..192.168.1.128][38933] -> [.202.238.220.92][..443] [QUIC][Unknown][Web][Acceptable][mew.org]
+ RISK: Unidirectional Traffic
new: [....32] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][52271] -> [..2a00:ac00:4000:400:2e0:4cff:fe68:199d][.4434]
detected: [....32] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][52271] -> [..2a00:ac00:4000:400:2e0:4cff:fe68:199d][.4434] [QUIC][Unknown][Web][Acceptable][quant.eggert.org]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....33] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][51040] -> [............2604:a880:800:a1::1279:3001][.4433]
detected: [....33] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][51040] -> [............2604:a880:800:a1::1279:3001][.4433] [QUIC][Unknown][Web][Acceptable][http3-test.litespeedtech.com]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....34] [ip4][.icmp] [.131.159.24.198] -> [..192.168.1.128]
detected: [....34] [ip4][.icmp] [.131.159.24.198] -> [..192.168.1.128] [ICMP][Unknown][Network][Acceptable]
+ RISK: Susp Entropy, Unidirectional Traffic
new: [....35] [ip4][..udp] [..192.168.1.128][45250] -> [..51.158.105.98][.4433]
detected: [....35] [ip4][..udp] [..192.168.1.128][45250] -> [..51.158.105.98][.4433] [QUIC][Unknown][Web][Acceptable][quic.seemann.io]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....36] [ip4][..udp] [..192.168.1.128][42456] -> [133.242.206.244][..443]
detected: [....36] [ip4][..udp] [..192.168.1.128][42456] -> [133.242.206.244][..443] [QUIC][Unknown][Web][Acceptable][h2o.examp1e.net]
+ RISK: Unidirectional Traffic
new: [....37] [ip6][icmp6] [.2001:4800:7817:101:be76:4eff:fe04:631d] -> [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d]
detected: [....37] [ip6][icmp6] [.2001:4800:7817:101:be76:4eff:fe04:631d] -> [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d] [ICMPV6][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....38] [ip4][..udp] [..192.168.1.128][50289] -> [..71.202.41.169][.4434]
detected: [....38] [ip4][..udp] [..192.168.1.128][50289] -> [..71.202.41.169][.4434] [QUIC][Unknown][Web][Acceptable][71.202.41.169]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
new: [....39] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][49270] -> [..................2001:bc8:47a4:1c25::1][.4434]
detected: [....39] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][49270] -> [..................2001:bc8:47a4:1c25::1][.4434] [QUIC][Unknown][Web][Acceptable][h3.stammw.eu]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....40] [ip4][..udp] [..192.168.1.128][34903] -> [..18.189.84.245][..443]
detected: [....40] [ip4][..udp] [..192.168.1.128][34903] -> [..18.189.84.245][..443] [QUIC][AmazonAWS][Web][Acceptable][fb.mvfst.net]
+ RISK: Unidirectional Traffic
new: [....41] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][45852] -> [.....2001:19f0:5:c21:5400:1ff:fe33:3b96][.4433]
detected: [....41] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][45852] -> [.....2001:19f0:5:c21:5400:1ff:fe33:3b96][.4433] [QUIC][Unknown][Web][Acceptable][quic.tech]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....42] [ip4][..udp] [..192.168.1.128][45855] -> [133.242.206.244][.4434]
detected: [....42] [ip4][..udp] [..192.168.1.128][45855] -> [133.242.206.244][.4434] [QUIC][Unknown][Web][Acceptable][h2o.examp1e.net]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....43] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][46353] -> [.................2606:4700:10::6816:826][..443]
detected: [....43] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][46353] -> [.................2606:4700:10::6816:826][..443] [QUIC][Unknown][Web][Acceptable][cloudflare-quic.com]
+ RISK: Unidirectional Traffic
new: [....44] [ip4][..udp] [..192.168.1.128][53791] -> [..40.112.191.60][.4434]
detected: [....44] [ip4][..udp] [..192.168.1.128][53791] -> [..40.112.191.60][.4434] [QUIC][Azure][Web][Acceptable][f5quic.com]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....45] [ip4][..udp] [..192.168.1.128][59515] -> [..193.190.10.98][.4434]
detected: [....45] [ip4][..udp] [..192.168.1.128][59515] -> [..193.190.10.98][.4434] [QUIC][Unknown][Web][Acceptable][quicker.edm.uhasselt.be]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....46] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][49788] -> [.2001:4800:7817:101:be76:4eff:fe04:631d][.4434]
detected: [....46] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][49788] -> [.2001:4800:7817:101:be76:4eff:fe04:631d][.4434] [QUIC][Unknown][Web][Acceptable][quic.ogre.com]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....47] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][46242] -> [2600:1f18:2310:d230:5103:7d9e:7d75:374f][..443]
detected: [....47] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][46242] -> [2600:1f18:2310:d230:5103:7d9e:7d75:374f][..443] [QUIC][Unknown][Web][Acceptable][test.privateoctopus.com]
+ RISK: Unidirectional Traffic
new: [....48] [ip4][..udp] [..192.168.1.128][44619] -> [..140.227.52.92][.4433]
detected: [....48] [ip4][..udp] [..192.168.1.128][44619] -> [..140.227.52.92][.4433] [QUIC][Unknown][Web][Acceptable][quic.examp1e.net]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....49] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][44243] -> [......................2001:19f0:4:34::1][.4434]
detected: [....49] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][44243] -> [......................2001:19f0:4:34::1][.4434] [QUIC][Unknown][Web][Acceptable][quic.rocks]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....50] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][38394] -> [2600:1f18:2310:d230:5103:7d9e:7d75:374f][.4433]
detected: [....50] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][38394] -> [2600:1f18:2310:d230:5103:7d9e:7d75:374f][.4433] [QUIC][Unknown][Web][Acceptable][test.privateoctopus.com]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....51] [ip6][icmp6] [.....2001:19f0:5:c21:5400:1ff:fe33:3b96] -> [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d]
detected: [....51] [ip6][icmp6] [.....2001:19f0:5:c21:5400:1ff:fe33:3b96] -> [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d] [ICMPV6][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....52] [ip4][..udp] [..192.168.1.128][35263] -> [.202.238.220.92][.4434]
detected: [....52] [ip4][..udp] [..192.168.1.128][35263] -> [.202.238.220.92][.4434] [QUIC][Unknown][Web][Acceptable][mew.org]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....53] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][53760] -> [............2604:a880:800:a1::1279:3001][.4434]
detected: [....53] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][53760] -> [............2604:a880:800:a1::1279:3001][.4434] [QUIC][Unknown][Web][Acceptable][http3-test.litespeedtech.com]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....54] [ip4][..udp] [..192.168.1.128][54570] -> [..18.189.84.245][.4434]
detected: [....54] [ip4][..udp] [..192.168.1.128][54570] -> [..18.189.84.245][.4434] [QUIC][AmazonAWS][Web][Acceptable][fb.mvfst.net]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....55] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][44924] -> [.........2400:8902::f03c:91ff:fe69:a454][.4434]
detected: [....55] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][44924] -> [.........2400:8902::f03c:91ff:fe69:a454][.4434] [QUIC][Unknown][Web][Acceptable][nghttp2.org]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....56] [ip4][..udp] [..192.168.1.128][39975] -> [.138.91.188.147][..443]
detected: [....56] [ip4][..udp] [..192.168.1.128][39975] -> [.138.91.188.147][..443] [QUIC.Azure][Azure][Cloud][Acceptable][quic.westus.cloudapp.azure.com]
+ RISK: Unidirectional Traffic
new: [....57] [ip4][..udp] [..192.168.1.128][50705] -> [.138.91.188.147][.4434]
detected: [....57] [ip4][..udp] [..192.168.1.128][50705] -> [.138.91.188.147][.4434] [QUIC.Azure][Azure][Cloud][Acceptable][quic.westus.cloudapp.azure.com]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....58] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][41857] -> [.................2606:4700:10::6816:826][.4434]
detected: [....58] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][41857] -> [.................2606:4700:10::6816:826][.4434] [QUIC][Unknown][Web][Acceptable][cloudflare-quic.com]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....59] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][56073] -> [............2604:a880:800:a1::1279:3001][..443]
detected: [....59] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][56073] -> [............2604:a880:800:a1::1279:3001][..443] [QUIC][Unknown][Web][Acceptable][http3-test.litespeedtech.com]
+ RISK: Unidirectional Traffic
new: [....60] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][43645] -> [......................2001:19f0:4:34::1][..443]
detected: [....60] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][43645] -> [......................2001:19f0:4:34::1][..443] [QUIC][Unknown][Web][Acceptable][quic.rocks]
+ RISK: Unidirectional Traffic
new: [....61] [ip4][..udp] [..192.168.1.128][48644] -> [.131.159.24.198][.4434]
detected: [....61] [ip4][..udp] [..192.168.1.128][48644] -> [.131.159.24.198][.4434] [QUIC][Unknown][Web][Acceptable][pandora.cm.in.tum.de]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....62] [ip4][..udp] [..192.168.1.128][42468] -> [.138.91.188.147][.4433]
detected: [....62] [ip4][..udp] [..192.168.1.128][42468] -> [.138.91.188.147][.4433] [QUIC.Azure][Azure][Cloud][Acceptable][quic.westus.cloudapp.azure.com]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....63] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][38689] -> [.....2001:19f0:5:c21:5400:1ff:fe33:3b96][.4434]
detected: [....63] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][38689] -> [.....2001:19f0:5:c21:5400:1ff:fe33:3b96][.4434] [QUIC][Unknown][Web][Acceptable][quic.tech]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....64] [ip4][..udp] [..192.168.1.128][53402] -> [...3.121.242.54][.4434]
detected: [....64] [ip4][..udp] [..192.168.1.128][53402] -> [...3.121.242.54][.4434] [QUIC][AmazonAWS][Web][Acceptable][ietf.akaquic.com]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....65] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][53140] -> [.2001:4800:7817:101:be76:4eff:fe04:631d][.4433]
detected: [....65] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][53140] -> [.2001:4800:7817:101:be76:4eff:fe04:631d][.4433] [QUIC][Unknown][Web][Acceptable][quic.ogre.com]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....66] [ip4][..udp] [..192.168.1.128][57926] -> [..140.227.52.92][.4434]
detected: [....66] [ip4][..udp] [..192.168.1.128][57926] -> [..140.227.52.92][.4434] [QUIC][Unknown][Web][Acceptable][quic.examp1e.net]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....67] [ip6][icmp6] [.........2400:8902::f03c:91ff:fe69:a454] -> [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d]
detected: [....67] [ip6][icmp6] [.........2400:8902::f03c:91ff:fe69:a454] -> [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d] [ICMPV6][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....68] [ip6][icmp6] [......................2001:19f0:4:34::1] -> [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d]
detected: [....68] [ip6][icmp6] [......................2001:19f0:4:34::1] -> [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d] [ICMPV6][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....69] [ip4][..udp] [..192.168.1.128][43735] -> [..51.158.105.98][.4434]
detected: [....69] [ip4][..udp] [..192.168.1.128][43735] -> [..51.158.105.98][.4434] [QUIC][Unknown][Web][Acceptable][quic.seemann.io]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....70] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][44605] -> [.2a05:d018:ce9:8100:cd2a:e2fd:b3be:c5ab][.4434]
detected: [....70] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][44605] -> [.2a05:d018:ce9:8100:cd2a:e2fd:b3be:c5ab][.4434] [QUIC][Unknown][Web][Acceptable][quic.aiortc.org]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....71] [ip4][.icmp] [.202.238.220.92] -> [..192.168.1.128]
detected: [....71] [ip4][.icmp] [.202.238.220.92] -> [..192.168.1.128] [ICMP][Unknown][Network][Acceptable]
+ RISK: Susp Entropy, Unidirectional Traffic
new: [....72] [ip4][.icmp] [..18.189.84.245] -> [..192.168.1.128]
detected: [....72] [ip4][.icmp] [..18.189.84.245] -> [..192.168.1.128] [ICMP][AmazonAWS][Network][Acceptable]
+ RISK: Susp Entropy, Unidirectional Traffic
new: [....73] [ip6][icmp6] [............2604:a880:800:a1::1279:3001] -> [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d]
detected: [....73] [ip6][icmp6] [............2604:a880:800:a1::1279:3001] -> [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d] [ICMPV6][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....74] [ip4][.icmp] [..192.168.1.128] -> [..40.112.191.60]
detected: [....74] [ip4][.icmp] [..192.168.1.128] -> [..40.112.191.60] [ICMP][Azure][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....75] [ip4][.icmp] [133.242.206.244] -> [..192.168.1.128]
detected: [....75] [ip4][.icmp] [133.242.206.244] -> [..192.168.1.128] [ICMP][Unknown][Network][Acceptable]
+ RISK: Susp Entropy, Unidirectional Traffic
new: [....76] [ip4][.icmp] [..192.168.1.128] -> [..140.227.52.92]
detected: [....76] [ip4][.icmp] [..192.168.1.128] -> [..140.227.52.92] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....77] [ip4][.icmp] [..192.168.1.128] -> [.138.91.188.147]
detected: [....77] [ip4][.icmp] [..192.168.1.128] -> [.138.91.188.147] [ICMP][Azure][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....21] [ip4][..udp] [..192.168.1.128][59171] -> [..193.190.10.98][.4433] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....8] [ip4][..udp] [..192.168.1.128][46576] -> [..40.112.191.60][.4433] [QUIC][Azure][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....34] [ip4][.icmp] [.131.159.24.198] -> [..192.168.1.128] [ICMP][Unknown][Network][Acceptable]
+ RISK: Susp Entropy, Unidirectional Traffic
idle: [.....1] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][38077] -> [.........2400:8902::f03c:91ff:fe69:a454][..443] [QUIC][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....46] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][49788] -> [.2001:4800:7817:101:be76:4eff:fe04:631d][.4434] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....13] [ip4][..udp] [..192.168.1.128][60784] -> [...3.121.242.54][.4433] [QUIC][AmazonAWS][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....38] [ip4][..udp] [..192.168.1.128][50289] -> [..71.202.41.169][.4434] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
idle: [....15] [ip4][..udp] [..192.168.1.128][34511] -> [.131.159.24.198][..443] [QUIC][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....74] [ip4][.icmp] [..192.168.1.128] -> [..40.112.191.60] [ICMP][Azure][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....17] [ip4][..udp] [..192.168.1.128][43475] -> [..18.189.84.245][.4433] [QUIC][AmazonAWS][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....35] [ip4][..udp] [..192.168.1.128][45250] -> [..51.158.105.98][.4433] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....73] [ip6][icmp6] [............2604:a880:800:a1::1279:3001] -> [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d] [ICMPV6][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....45] [ip4][..udp] [..192.168.1.128][59515] -> [..193.190.10.98][.4434] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....31] [ip4][..udp] [..192.168.1.128][38933] -> [.202.238.220.92][..443] [QUIC][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....33] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][51040] -> [............2604:a880:800:a1::1279:3001][.4433] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....26] [ip4][..udp] [..192.168.1.128][37784] -> [..140.227.52.92][..443] [QUIC][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....11] [ip4][.icmp] [...3.121.242.54] -> [..192.168.1.128] [ICMP][AmazonAWS][Network][Acceptable]
+ RISK: Susp Entropy, Unidirectional Traffic
idle: [....43] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][46353] -> [.................2606:4700:10::6816:826][..443] [QUIC][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....67] [ip6][icmp6] [.........2400:8902::f03c:91ff:fe69:a454] -> [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d] [ICMPV6][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....19] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][39945] -> [.2a05:d018:ce9:8100:cd2a:e2fd:b3be:c5ab][.4433] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....60] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][43645] -> [......................2001:19f0:4:34::1][..443] [QUIC][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....56] [ip4][..udp] [..192.168.1.128][39975] -> [.138.91.188.147][..443] [QUIC.Azure][Azure][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][37876] -> [.2a05:d018:ce9:8100:cd2a:e2fd:b3be:c5ab][..443] [QUIC][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....22] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][35643] -> [......................2001:19f0:4:34::1][.4433] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....32] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][52271] -> [..2a00:ac00:4000:400:2e0:4cff:fe68:199d][.4434] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....52] [ip4][..udp] [..192.168.1.128][35263] -> [.202.238.220.92][.4434] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....41] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][45852] -> [.....2001:19f0:5:c21:5400:1ff:fe33:3b96][.4433] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....55] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][44924] -> [.........2400:8902::f03c:91ff:fe69:a454][.4434] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....20] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][39624] -> [.....2001:19f0:5:c21:5400:1ff:fe33:3b96][..443] [QUIC][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....36] [ip4][..udp] [..192.168.1.128][42456] -> [133.242.206.244][..443] [QUIC][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....69] [ip4][..udp] [..192.168.1.128][43735] -> [..51.158.105.98][.4434] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....5] [ip4][..udp] [..192.168.1.128][47010] -> [...3.121.242.54][..443] [QUIC][AmazonAWS][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....75] [ip4][.icmp] [133.242.206.244] -> [..192.168.1.128] [ICMP][Unknown][Network][Acceptable]
+ RISK: Susp Entropy, Unidirectional Traffic
idle: [....28] [ip4][..udp] [..192.168.1.128][49658] -> [..193.190.10.98][..443] [QUIC][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....7] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][60346] -> [..................2001:bc8:47a4:1c25::1][..443] [QUIC][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....16] [ip4][..udp] [..192.168.1.128][51887] -> [..51.158.105.98][..443] [QUIC][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....62] [ip4][..udp] [..192.168.1.128][42468] -> [.138.91.188.147][.4433] [QUIC.Azure][Azure][Cloud][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....57] [ip4][..udp] [..192.168.1.128][50705] -> [.138.91.188.147][.4434] [QUIC.Azure][Azure][Cloud][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....64] [ip4][..udp] [..192.168.1.128][53402] -> [...3.121.242.54][.4434] [QUIC][AmazonAWS][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....48] [ip4][..udp] [..192.168.1.128][44619] -> [..140.227.52.92][.4433] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....29] [ip4][..udp] [..192.168.1.128][41587] -> [.131.159.24.198][.4433] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....49] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][44243] -> [......................2001:19f0:4:34::1][.4434] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....77] [ip4][.icmp] [..192.168.1.128] -> [.138.91.188.147] [ICMP][Azure][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....76] [ip4][.icmp] [..192.168.1.128] -> [..140.227.52.92] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....53] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][53760] -> [............2604:a880:800:a1::1279:3001][.4434] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....70] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][44605] -> [.2a05:d018:ce9:8100:cd2a:e2fd:b3be:c5ab][.4434] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....54] [ip4][..udp] [..192.168.1.128][54570] -> [..18.189.84.245][.4434] [QUIC][AmazonAWS][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....44] [ip4][..udp] [..192.168.1.128][53791] -> [..40.112.191.60][.4434] [QUIC][Azure][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....27] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][60983] -> [..2a00:ac00:4000:400:2e0:4cff:fe68:199d][.4433] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....18] [ip4][..udp] [..192.168.1.128][49151] -> [133.242.206.244][.4433] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....37] [ip6][icmp6] [.2001:4800:7817:101:be76:4eff:fe04:631d] -> [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d] [ICMPV6][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][34442] -> [.2001:4800:7817:101:be76:4eff:fe04:631d][..443] [QUIC][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][48707] -> [..2a00:ac00:4000:400:2e0:4cff:fe68:199d][..443] [QUIC][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....12] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][32957] -> [.................2606:4700:10::6816:826][.4433] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....24] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][52080] -> [2600:1f18:2310:d230:5103:7d9e:7d75:374f][.4434] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....65] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][53140] -> [.2001:4800:7817:101:be76:4eff:fe04:631d][.4433] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....59] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][56073] -> [............2604:a880:800:a1::1279:3001][..443] [QUIC][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....72] [ip4][.icmp] [..18.189.84.245] -> [..192.168.1.128] [ICMP][AmazonAWS][Network][Acceptable]
+ RISK: Susp Entropy, Unidirectional Traffic
idle: [....68] [ip6][icmp6] [......................2001:19f0:4:34::1] -> [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d] [ICMPV6][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....51] [ip6][icmp6] [.....2001:19f0:5:c21:5400:1ff:fe33:3b96] -> [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d] [ICMPV6][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....47] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][46242] -> [2600:1f18:2310:d230:5103:7d9e:7d75:374f][..443] [QUIC][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....63] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][38689] -> [.....2001:19f0:5:c21:5400:1ff:fe33:3b96][.4434] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....10] [ip4][..udp] [..192.168.1.128][38366] -> [.202.238.220.92][.4433] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....23] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][56213] -> [.........2400:8902::f03c:91ff:fe69:a454][.4433] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....30] [ip4][.icmp] [..51.158.105.98] -> [..192.168.1.128] [ICMP][Unknown][Network][Acceptable]
+ RISK: Susp Entropy, Unidirectional Traffic
idle: [....14] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][51185] -> [..................2001:bc8:47a4:1c25::1][.4433] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....25] [ip4][..udp] [..192.168.1.128][37661] -> [..71.202.41.169][.4433] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
idle: [....71] [ip4][.icmp] [.202.238.220.92] -> [..192.168.1.128] [ICMP][Unknown][Network][Acceptable]
+ RISK: Susp Entropy, Unidirectional Traffic
idle: [....50] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][38394] -> [2600:1f18:2310:d230:5103:7d9e:7d75:374f][.4433] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....61] [ip4][..udp] [..192.168.1.128][48644] -> [.131.159.24.198][.4434] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....9] [ip4][..udp] [..192.168.1.128][46334] -> [..40.112.191.60][..443] [QUIC][Azure][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....39] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][49270] -> [..................2001:bc8:47a4:1c25::1][.4434] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....42] [ip4][..udp] [..192.168.1.128][45855] -> [133.242.206.244][.4434] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....58] [ip6][..udp] [..2001:b07:ac9:d5ae:a4d3:fe47:691e:807d][41857] -> [.................2606:4700:10::6816:826][.4434] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....2] [ip4][..udp] [..192.168.1.128][37643] -> [..71.202.41.169][..443] [QUIC][Unknown][Web][Acceptable]
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
idle: [....66] [ip4][..udp] [..192.168.1.128][57926] -> [..140.227.52.92][.4434] [QUIC][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....40] [ip4][..udp] [..192.168.1.128][34903] -> [..18.189.84.245][..443] [QUIC][AmazonAWS][Web][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/quic_q39.pcap.out b/test/results/flow-info/default/quic_q39.pcap.out
index 7ae575ecf..cdfe5ba33 100644
--- a/test/results/flow-info/quic_q39.pcap.out
+++ b/test/results/flow-info/default/quic_q39.pcap.out
@@ -3,6 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [.170.216.16.209][38620] -> [.21.157.183.227][..443]
detected: [.....1] [ip4][..udp] [.170.216.16.209][38620] -> [.21.157.183.227][..443] [QUIC.YouTube][Unknown][Media][Fun][s.youtube.com]
+ RISK: Unidirectional Traffic
analyse: [.....1] [ip4][..udp] [.170.216.16.209][38620] -> [.21.157.183.227][..443] [QUIC.YouTube][Unknown][Media][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 6.515| 0.578| 1.532| 2346988.339| 2.700]
@@ -14,4 +15,5 @@
[PKTLENS.....: 1378,1160,63,1378,59,69,69,58,291,46,69,256,1378,64,1378,1378,61,1378,60,1378,62,1378,62,1378,62,1378,716,62,62,90,46,84]
[ENTROPIES...: 4.2,7.8,5.0,7.8,5.4,5.6,5.7,5.3,7.3,4.8,5.8,7.1,7.9,5.4,7.8,7.9,5.5,7.9,5.4,7.9,5.4,7.9,5.4,7.9,5.5,7.8,7.7,5.5,5.5,6.0,4.8,6.0]
idle: [.....1] [ip4][..udp] [.170.216.16.209][38620] -> [.21.157.183.227][..443] [QUIC.YouTube][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/quic_q43.pcap.out b/test/results/flow-info/default/quic_q43.pcap.out
index 06bd013a5..bbeb79df6 100644
--- a/test/results/flow-info/quic_q43.pcap.out
+++ b/test/results/flow-info/default/quic_q43.pcap.out
@@ -3,5 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..51.120.20.202][49241] -> [..72.119.217.29][..443]
detected: [.....1] [ip4][..udp] [..51.120.20.202][49241] -> [..72.119.217.29][..443] [QUIC.DoH_DoT][Azure][Network][Acceptable][dns.google.com]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [..51.120.20.202][49241] -> [..72.119.217.29][..443] [QUIC.DoH_DoT][Azure][Network][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/quic_q46.pcap.out b/test/results/flow-info/default/quic_q46.pcap.out
index b373260ee..f40d37c35 100644
--- a/test/results/flow-info/quic_q46.pcap.out
+++ b/test/results/flow-info/default/quic_q46.pcap.out
@@ -3,5 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..172.29.42.236][38292] -> [.153.20.183.203][..443]
detected: [.....1] [ip4][..udp] [..172.29.42.236][38292] -> [.153.20.183.203][..443] [QUIC.Google][Unknown][Web][Acceptable][play.google.com]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [..172.29.42.236][38292] -> [.153.20.183.203][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/quic_q46_b.pcap.out b/test/results/flow-info/default/quic_q46_b.pcap.out
index cec0f2b61..0123d7879 100644
--- a/test/results/flow-info/quic_q46_b.pcap.out
+++ b/test/results/flow-info/default/quic_q46_b.pcap.out
@@ -3,5 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..172.27.69.216][45530] -> [.110.231.134.35][..443]
detected: [.....1] [ip4][..udp] [..172.27.69.216][45530] -> [.110.231.134.35][..443] [QUIC.YouTubeUpload][Unknown][Media][Fun][upload.youtube.com]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [..172.27.69.216][45530] -> [.110.231.134.35][..443] [QUIC.YouTubeUpload][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/quic_q50.pcap.out b/test/results/flow-info/default/quic_q50.pcap.out
index 5afd952e3..bd3ad53c8 100644
--- a/test/results/flow-info/quic_q50.pcap.out
+++ b/test/results/flow-info/default/quic_q50.pcap.out
@@ -3,5 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [248.144.129.147][39203] -> [184.151.193.237][..443]
detected: [.....1] [ip4][..udp] [248.144.129.147][39203] -> [184.151.193.237][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable][www.googletagmanager.com]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [248.144.129.147][39203] -> [184.151.193.237][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/quic_t50.pcap.out b/test/results/flow-info/default/quic_t50.pcap.out
index 4983054af..0533ee61e 100644
--- a/test/results/flow-info/quic_t50.pcap.out
+++ b/test/results/flow-info/default/quic_t50.pcap.out
@@ -3,5 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [.40.154.127.200][49836] -> [166.240.188.209][..443]
detected: [.....1] [ip4][..udp] [.40.154.127.200][49836] -> [166.240.188.209][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable][fonts.googleapis.com]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [.40.154.127.200][49836] -> [166.240.188.209][..443] [QUIC.GoogleServices][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/quic_t51.pcap.out b/test/results/flow-info/default/quic_t51.pcap.out
index 3eed957fd..1b9be9861 100644
--- a/test/results/flow-info/quic_t51.pcap.out
+++ b/test/results/flow-info/default/quic_t51.pcap.out
@@ -3,5 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [187.227.136.152][55356] -> [.211.247.147.90][..443]
detected: [.....1] [ip4][..udp] [187.227.136.152][55356] -> [.211.247.147.90][..443] [QUIC.Google][Unknown][Web][Acceptable][www.google.com]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [187.227.136.152][55356] -> [.211.247.147.90][..443] [QUIC.Google][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/quickplay.pcap.out b/test/results/flow-info/default/quickplay.pcap.out
index e8cf509a7..6df2a4d12 100644
--- a/test/results/flow-info/quickplay.pcap.out
+++ b/test/results/flow-info/default/quickplay.pcap.out
@@ -3,36 +3,52 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [..10.54.169.250][50668] -> [...120.28.35.41][...80] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [..10.54.169.250][50668] -> [...120.28.35.41][...80] [HTTP][Unknown][Streaming][Acceptable][api-singtelhawk.quickplay.com]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..tcp] [..10.54.169.250][50669] -> [...120.28.35.41][...80] [MIDSTREAM]
detected: [.....2] [ip4][..tcp] [..10.54.169.250][50669] -> [...120.28.35.41][...80] [HTTP][Unknown][Streaming][Acceptable][api-singtelhawk.quickplay.com]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..tcp] [..10.54.169.250][33064] -> [....120.28.5.18][...80] [MIDSTREAM]
detected: [.....3] [ip4][..tcp] [..10.54.169.250][33064] -> [....120.28.5.18][...80] [HTTP][Unknown][Streaming][Acceptable][api-singtelhawk.quickplay.com]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..tcp] [..10.54.169.250][52285] -> [..173.252.74.22][...80] [MIDSTREAM]
detected: [.....4] [ip4][..tcp] [..10.54.169.250][52285] -> [..173.252.74.22][...80] [HTTP.Facebook][Facebook][SocialNetwork][Fun][www.facebook.com]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][..tcp] [..10.54.169.250][52288] -> [..173.252.74.22][...80] [MIDSTREAM]
detected: [.....5] [ip4][..tcp] [..10.54.169.250][52288] -> [..173.252.74.22][...80] [HTTP.Facebook][Facebook][SocialNetwork][Fun][www.facebook.com]
+ RISK: Unidirectional Traffic
new: [.....6] [ip4][..tcp] [..10.54.169.250][33277] -> [..120.28.26.231][...80] [MIDSTREAM]
detected: [.....6] [ip4][..tcp] [..10.54.169.250][33277] -> [..120.28.26.231][...80] [HTTP.Google][Unknown][Web][Acceptable][clients3.google.com]
+ RISK: Unidirectional Traffic
new: [.....7] [ip4][..tcp] [..10.54.169.250][44793] -> [....31.13.68.49][...80] [MIDSTREAM]
detected: [.....7] [ip4][..tcp] [..10.54.169.250][44793] -> [....31.13.68.49][...80] [HTTP.Facebook][Facebook][SocialNetwork][Fun][www.facebook.com]
+ RISK: Unidirectional Traffic
new: [.....8] [ip4][..tcp] [..10.54.169.250][44256] -> [....120.28.5.41][...80] [MIDSTREAM]
detected: [.....8] [ip4][..tcp] [..10.54.169.250][44256] -> [....120.28.5.41][...80] [HTTP][Unknown][Streaming][Acceptable][play-singtelhawk.quickplay.com]
+ RISK: Unidirectional Traffic
new: [.....9] [ip4][..tcp] [..10.54.169.250][52007] -> [...120.28.35.40][...80] [MIDSTREAM]
detected: [.....9] [ip4][..tcp] [..10.54.169.250][52007] -> [...120.28.35.40][...80] [HTTP][Unknown][Streaming][Acceptable][vod-singtelhawk.quickplay.com]
+ RISK: Unidirectional Traffic
new: [....10] [ip4][..tcp] [..10.54.169.250][54883] -> [203.205.151.160][...80] [MIDSTREAM]
detected: [....10] [ip4][..tcp] [..10.54.169.250][54883] -> [203.205.151.160][...80] [HTTP_Proxy.QQ][Unknown][Chat][Fun][hkextshort.weixin.qq.com]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....11] [ip4][..tcp] [..10.54.169.250][52009] -> [...120.28.35.40][...80] [MIDSTREAM]
detected: [....11] [ip4][..tcp] [..10.54.169.250][52009] -> [...120.28.35.40][...80] [HTTP][Unknown][Streaming][Acceptable][vod-singtelhawk.quickplay.com]
+ RISK: Unidirectional Traffic
new: [....12] [ip4][..tcp] [..10.54.169.250][42761] -> [203.205.129.101][...80] [MIDSTREAM]
detected: [....12] [ip4][..tcp] [..10.54.169.250][42761] -> [203.205.129.101][...80] [HTTP_Proxy.QQ][Tencent][Chat][Fun][hkextshort.weixin.qq.com]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....13] [ip4][..tcp] [..10.54.169.250][54885] -> [203.205.151.160][...80] [MIDSTREAM]
detected: [....13] [ip4][..tcp] [..10.54.169.250][54885] -> [203.205.151.160][...80] [HTTP_Proxy.QQ][Unknown][Chat][Fun][hkextshort.weixin.qq.com]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
+ detection-update: [....12] [ip4][..tcp] [..10.54.169.250][42761] -> [203.205.129.101][...80] [HTTP_Proxy.QQ][Tencent][Download][Fun][hkextshort.weixin.qq.com]
+ RISK: Binary App Transfer, Known Proto on Non Std Port
+ detection-update: [....13] [ip4][..tcp] [..10.54.169.250][54885] -> [203.205.151.160][...80] [HTTP_Proxy.QQ][Unknown][Download][Fun][hkextshort.weixin.qq.com]
+ RISK: Binary App Transfer, Known Proto on Non Std Port
new: [....14] [ip4][..tcp] [..10.54.169.250][42762] -> [203.205.129.101][...80] [MIDSTREAM]
detected: [....14] [ip4][..tcp] [..10.54.169.250][42762] -> [203.205.129.101][...80] [HTTP_Proxy.QQ][Tencent][Chat][Fun][hkextshort.weixin.qq.com]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
+ detection-update: [....14] [ip4][..tcp] [..10.54.169.250][42762] -> [203.205.129.101][...80] [HTTP_Proxy.QQ][Tencent][Download][Fun][hkextshort.weixin.qq.com]
+ RISK: Binary App Transfer, Known Proto on Non Std Port
analyse: [....11] [ip4][..tcp] [..10.54.169.250][52009] -> [...120.28.35.40][...80] [HTTP][Unknown][Streaming][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.183| 5.871| 2.460| 1.331| 1772261.736| 4.700]
@@ -45,29 +61,37 @@
[ENTROPIES...: 5.9,7.9,6.0,7.1,5.9,5.9,7.8,5.9,5.9,7.7,6.0,5.0,6.0,7.8,6.0,5.9,6.6,5.9,7.7,6.0,7.8,5.9,7.8,6.0,7.3,5.9,7.9,5.9,7.8,5.9,7.6,5.9]
new: [....15] [ip4][..tcp] [..10.54.169.250][35670] -> [203.205.147.215][...80] [MIDSTREAM]
detected: [....15] [ip4][..tcp] [..10.54.169.250][35670] -> [203.205.147.215][...80] [HTTP_Proxy.QQ][Tencent][Chat][Fun][hkminorshort.weixin.qq.com]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
+ detection-update: [....15] [ip4][..tcp] [..10.54.169.250][35670] -> [203.205.147.215][...80] [HTTP_Proxy.QQ][Tencent][Download][Fun][hkminorshort.weixin.qq.com]
+ RISK: Binary App Transfer, Known Proto on Non Std Port
new: [....16] [ip4][..tcp] [..10.54.169.250][56381] -> [..54.179.140.65][...80] [MIDSTREAM]
detected: [....16] [ip4][..tcp] [..10.54.169.250][56381] -> [..54.179.140.65][...80] [HTTP.Xiaomi][AmazonAWS][Web][Acceptable][api.account.xiaomi.com]
+ RISK: Unidirectional Traffic
new: [....17] [ip4][..tcp] [..10.54.169.250][52017] -> [...120.28.35.40][...80] [MIDSTREAM]
detected: [....17] [ip4][..tcp] [..10.54.169.250][52017] -> [...120.28.35.40][...80] [HTTP][Unknown][Streaming][Acceptable][vod-singtelhawk.quickplay.com]
- end: [....13] [ip4][..tcp] [..10.54.169.250][54885] -> [203.205.151.160][...80] [HTTP_Proxy.QQ][Unknown][Chat][Fun]
- RISK: Known Proto on Non Std Port
+ RISK: Unidirectional Traffic
+ end: [....13] [ip4][..tcp] [..10.54.169.250][54885] -> [203.205.151.160][...80] [HTTP_Proxy.QQ][Unknown][Download][Fun]
+ RISK: Binary App Transfer, Known Proto on Non Std Port
new: [....18] [ip4][..tcp] [..10.54.169.250][52018] -> [...120.28.35.40][...80] [MIDSTREAM]
detected: [....18] [ip4][..tcp] [..10.54.169.250][52018] -> [...120.28.35.40][...80] [HTTP][Unknown][Streaming][Acceptable][vod-singtelhawk.quickplay.com]
+ RISK: Unidirectional Traffic
new: [....19] [ip4][..tcp] [..10.54.169.250][52019] -> [...120.28.35.40][...80] [MIDSTREAM]
detected: [....19] [ip4][..tcp] [..10.54.169.250][52019] -> [...120.28.35.40][...80] [HTTP][Unknown][Streaming][Acceptable][vod-singtelhawk.quickplay.com]
+ RISK: Unidirectional Traffic
new: [....20] [ip4][..tcp] [..10.54.169.250][52021] -> [...120.28.35.40][...80] [MIDSTREAM]
detected: [....20] [ip4][..tcp] [..10.54.169.250][52021] -> [...120.28.35.40][...80] [HTTP][Unknown][Streaming][Acceptable][vod-singtelhawk.quickplay.com]
+ RISK: Unidirectional Traffic
new: [....21] [ip4][..tcp] [..10.54.169.250][52022] -> [...120.28.35.40][...80] [MIDSTREAM]
detected: [....21] [ip4][..tcp] [..10.54.169.250][52022] -> [...120.28.35.40][...80] [HTTP][Unknown][Streaming][Acceptable][vod-singtelhawk.quickplay.com]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..tcp] [..10.54.169.250][50668] -> [...120.28.35.41][...80] [HTTP][Unknown][Streaming][Acceptable]
idle: [.....2] [ip4][..tcp] [..10.54.169.250][50669] -> [...120.28.35.41][...80] [HTTP][Unknown][Streaming][Acceptable]
idle: [.....7] [ip4][..tcp] [..10.54.169.250][44793] -> [....31.13.68.49][...80] [HTTP.Facebook][Facebook][SocialNetwork][Fun]
idle: [....10] [ip4][..tcp] [..10.54.169.250][54883] -> [203.205.151.160][...80]
- idle: [....12] [ip4][..tcp] [..10.54.169.250][42761] -> [203.205.129.101][...80] [HTTP_Proxy.QQ][Tencent][Chat][Fun]
- RISK: Known Proto on Non Std Port
- idle: [....14] [ip4][..tcp] [..10.54.169.250][42762] -> [203.205.129.101][...80] [HTTP_Proxy.QQ][Tencent][Chat][Fun]
- RISK: Known Proto on Non Std Port
+ idle: [....12] [ip4][..tcp] [..10.54.169.250][42761] -> [203.205.129.101][...80] [HTTP_Proxy.QQ][Tencent][Download][Fun]
+ RISK: Binary App Transfer, Known Proto on Non Std Port
+ idle: [....14] [ip4][..tcp] [..10.54.169.250][42762] -> [203.205.129.101][...80] [HTTP_Proxy.QQ][Tencent][Download][Fun]
+ RISK: Binary App Transfer, Known Proto on Non Std Port
idle: [.....3] [ip4][..tcp] [..10.54.169.250][33064] -> [....120.28.5.18][...80]
idle: [.....6] [ip4][..tcp] [..10.54.169.250][33277] -> [..120.28.26.231][...80] [HTTP.Google][Unknown][Web][Acceptable]
idle: [....16] [ip4][..tcp] [..10.54.169.250][56381] -> [..54.179.140.65][...80] [HTTP.Xiaomi][AmazonAWS][Web][Acceptable]
@@ -80,7 +104,7 @@
idle: [....21] [ip4][..tcp] [..10.54.169.250][52022] -> [...120.28.35.40][...80]
idle: [.....4] [ip4][..tcp] [..10.54.169.250][52285] -> [..173.252.74.22][...80] [HTTP.Facebook][Facebook][SocialNetwork][Fun]
idle: [.....5] [ip4][..tcp] [..10.54.169.250][52288] -> [..173.252.74.22][...80] [HTTP.Facebook][Facebook][SocialNetwork][Fun]
- idle: [....15] [ip4][..tcp] [..10.54.169.250][35670] -> [203.205.147.215][...80] [HTTP_Proxy.QQ][Tencent][Chat][Fun]
- RISK: Known Proto on Non Std Port
+ idle: [....15] [ip4][..tcp] [..10.54.169.250][35670] -> [203.205.147.215][...80] [HTTP_Proxy.QQ][Tencent][Download][Fun]
+ RISK: Binary App Transfer, Known Proto on Non Std Port
idle: [.....8] [ip4][..tcp] [..10.54.169.250][44256] -> [....120.28.5.41][...80]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/radius_false_positive.pcapng.out b/test/results/flow-info/default/radius_false_positive.pcapng.out
index 9628c93df..6a9217e89 100644
--- a/test/results/flow-info/radius_false_positive.pcapng.out
+++ b/test/results/flow-info/default/radius_false_positive.pcapng.out
@@ -3,5 +3,6 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip6][..udp] [................2bc6:b5ac:cb3b:676b::18][..443] -> [3dba:3762:c186:e122:89b0:5170:a86c:ecff][53129]
guessed: [.....1] [ip6][..udp] [................2bc6:b5ac:cb3b:676b::18][..443] -> [3dba:3762:c186:e122:89b0:5170:a86c:ecff][53129] [QUIC][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip6][..udp] [................2bc6:b5ac:cb3b:676b::18][..443] -> [3dba:3762:c186:e122:89b0:5170:a86c:ecff][53129]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/raknet.pcap.out b/test/results/flow-info/default/raknet.pcap.out
index a1414a385..71ab4cfc1 100644
--- a/test/results/flow-info/raknet.pcap.out
+++ b/test/results/flow-info/default/raknet.pcap.out
@@ -12,50 +12,83 @@
detected: [.....3] [ip4][..udp] [..192.168.2.100][32951] -> [.148.153.35.205][60021] [RakNet][Unknown][Game][Fun]
new: [.....4] [ip4][..udp] [.148.153.35.205][60022] -> [..192.168.2.100][32951]
detected: [.....4] [ip4][..udp] [.148.153.35.205][60022] -> [..192.168.2.100][32951] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][..udp] [..192.168.2.100][32952] -> [.148.153.35.205][60021]
detected: [.....5] [ip4][..udp] [..192.168.2.100][32952] -> [.148.153.35.205][60021] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [.....6] [ip4][..udp] [.148.153.35.205][60025] -> [..192.168.2.100][32951]
detected: [.....6] [ip4][..udp] [.148.153.35.205][60025] -> [..192.168.2.100][32951] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [.....7] [ip4][..udp] [..192.168.2.100][32953] -> [.148.153.35.205][60021]
detected: [.....7] [ip4][..udp] [..192.168.2.100][32953] -> [.148.153.35.205][60021] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [.....8] [ip4][..udp] [..192.168.2.100][60690] -> [.148.153.35.205][60028]
detected: [.....8] [ip4][..udp] [..192.168.2.100][60690] -> [.148.153.35.205][60028] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [.....9] [ip4][..udp] [.148.153.35.205][60005] -> [..192.168.2.100][32951]
detected: [.....9] [ip4][..udp] [.148.153.35.205][60005] -> [..192.168.2.100][32951] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [..192.168.2.100][60689] -> [.148.153.35.205][60028] [RakNet][Unknown][Game][Fun]
idle: [.....1] [ip4][..udp] [..192.168.2.100][44501] -> [.148.153.35.205][60030] [RakNet][Unknown][Game][Fun]
new: [....10] [ip4][..udp] [..192.168.2.100][44501] -> [.148.153.35.205][60031]
detected: [....10] [ip4][..udp] [..192.168.2.100][44501] -> [.148.153.35.205][60031] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....11] [ip4][..udp] [..192.168.2.100][44501] -> [.148.153.35.205][59935]
update: [.....8] [ip4][..udp] [..192.168.2.100][60690] -> [.148.153.35.205][60028] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
update: [....10] [ip4][..udp] [..192.168.2.100][44501] -> [.148.153.35.205][60031] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
update: [.....9] [ip4][..udp] [.148.153.35.205][60005] -> [..192.168.2.100][32951] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [..192.168.2.100][32951] -> [.148.153.35.205][60021] [RakNet][Unknown][Game][Fun]
update: [.....4] [ip4][..udp] [.148.153.35.205][60022] -> [..192.168.2.100][32951] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
update: [.....5] [ip4][..udp] [..192.168.2.100][32952] -> [.148.153.35.205][60021] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
update: [.....7] [ip4][..udp] [..192.168.2.100][32953] -> [.148.153.35.205][60021] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
update: [.....6] [ip4][..udp] [.148.153.35.205][60025] -> [..192.168.2.100][32951] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
update: [.....8] [ip4][..udp] [..192.168.2.100][60690] -> [.148.153.35.205][60028] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
update: [....11] [ip4][..udp] [..192.168.2.100][44501] -> [.148.153.35.205][59935]
update: [....10] [ip4][..udp] [..192.168.2.100][44501] -> [.148.153.35.205][60031] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
update: [.....9] [ip4][..udp] [.148.153.35.205][60005] -> [..192.168.2.100][32951] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [..192.168.2.100][32951] -> [.148.153.35.205][60021] [RakNet][Unknown][Game][Fun]
update: [.....4] [ip4][..udp] [.148.153.35.205][60022] -> [..192.168.2.100][32951] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
update: [.....5] [ip4][..udp] [..192.168.2.100][32952] -> [.148.153.35.205][60021] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
update: [.....7] [ip4][..udp] [..192.168.2.100][32953] -> [.148.153.35.205][60021] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
update: [.....6] [ip4][..udp] [.148.153.35.205][60025] -> [..192.168.2.100][32951] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
detected: [....11] [ip4][..udp] [..192.168.2.100][44501] -> [.148.153.35.205][59935] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....8] [ip4][..udp] [..192.168.2.100][60690] -> [.148.153.35.205][60028] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....10] [ip4][..udp] [..192.168.2.100][44501] -> [.148.153.35.205][60031] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....9] [ip4][..udp] [.148.153.35.205][60005] -> [..192.168.2.100][32951] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [..192.168.2.100][32951] -> [.148.153.35.205][60021] [RakNet][Unknown][Game][Fun]
idle: [.....5] [ip4][..udp] [..192.168.2.100][32952] -> [.148.153.35.205][60021] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..udp] [.148.153.35.205][60022] -> [..192.168.2.100][32951] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....7] [ip4][..udp] [..192.168.2.100][32953] -> [.148.153.35.205][60021] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][..udp] [.148.153.35.205][60025] -> [..192.168.2.100][32951] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
update: [....11] [ip4][..udp] [..192.168.2.100][44501] -> [.148.153.35.205][59935] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....12] [ip4][..udp] [.148.153.35.205][43582] -> [..192.168.2.100][44501]
detected: [....12] [ip4][..udp] [.148.153.35.205][43582] -> [..192.168.2.100][44501] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....11] [ip4][..udp] [..192.168.2.100][44501] -> [.148.153.35.205][59935] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....12] [ip4][..udp] [.148.153.35.205][43582] -> [..192.168.2.100][44501] [RakNet][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/rdp.pcap.out b/test/results/flow-info/default/rdp.pcap.out
index 48fb6ffe8..48fb6ffe8 100644
--- a/test/results/flow-info/rdp.pcap.out
+++ b/test/results/flow-info/default/rdp.pcap.out
diff --git a/test/results/flow-info/reasm_crash_anon.pcapng.out b/test/results/flow-info/default/reasm_crash_anon.pcapng.out
index 0bba71f63..859cea665 100644
--- a/test/results/flow-info/reasm_crash_anon.pcapng.out
+++ b/test/results/flow-info/default/reasm_crash_anon.pcapng.out
@@ -12,10 +12,10 @@
[IATS(ms)....: 0.0,1.5,1.5,0.0,1.2,1.2,0.0,30097.7,30099.5,1.8,0.0,1.2,1.2,30097.5,0.0,30099.3,1.8,1.2,30097.4,1.8,0.0,30101.7,1.2,30097.5,30165.6,1.3,69.4,30031.1,0.0,30032.8,1.7]
[PKTLENS.....: 65,65,126,52,52,777,52,52,65,106,52,52,765,52,65,65,106,52,52,65,52,52,777,52,65,106,777,52,65,65,106,52]
[ENTROPIES...: 5.5,5.5,3.0,5.2,5.2,5.3,5.2,5.2,5.4,5.6,5.1,5.1,0.5,5.1,5.4,5.4,5.6,5.2,5.2,5.5,5.1,5.2,5.3,5.1,5.4,5.6,5.3,5.0,5.4,5.4,5.6,5.2]
- not-detected: [.....1] [ip4][..tcp] [192.168.145.147][51218] -> [...10.209.8.148][21999] [Unknown][Unknown][Unrated]
DAEMON-EVENT: [Processed: 93 pkts][ZLib][compressions: 0|diff: 0 / 0]
- DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 1|guessed: 0|detection-updates: 0|updates: 0]
+ DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
DAEMON-EVENT: [Processed: 169 pkts][ZLib][compressions: 0|diff: 0 / 0]
- DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 1|guessed: 0|detection-updates: 0|updates: 0]
- end: [.....1] [ip4][..tcp] [192.168.145.147][51218] -> [...10.209.8.148][21999] [Unknown][Unknown][Unrated]
+ DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ not-detected: [.....1] [ip4][..tcp] [192.168.145.147][51218] -> [...10.209.8.148][21999] [Unknown][Unknown][Unrated]
+ end: [.....1] [ip4][..tcp] [192.168.145.147][51218] -> [...10.209.8.148][21999]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/reasm_segv_anon.pcapng.out b/test/results/flow-info/default/reasm_segv_anon.pcapng.out
index 436c4129e..5b3b89d16 100644
--- a/test/results/flow-info/reasm_segv_anon.pcapng.out
+++ b/test/results/flow-info/default/reasm_segv_anon.pcapng.out
@@ -4,6 +4,7 @@
ERROR-EVENT: Captured packet size is smaller than expected packet size [1/16]
new: [.....1] [ip4][..udp] [...145.76.2.236][.2152] -> [...187.96.52.85][.2152]
detected: [.....1] [ip4][..udp] [...145.76.2.236][.2152] -> [...187.96.52.85][.2152] [GTP.GTP_U][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Captured packet size is smaller than expected packet size [2/16]
ERROR-EVENT: Captured packet size is smaller than expected packet size [3/16]
ERROR-EVENT: Captured packet size is smaller than expected packet size [4/16]
@@ -30,4 +31,5 @@
ERROR-EVENT: Captured packet size is smaller than expected packet size [15/16]
ERROR-EVENT: Captured packet size is smaller than expected packet size [16/16]
idle: [.....1] [ip4][..udp] [...145.76.2.236][.2152] -> [...187.96.52.85][.2152] [GTP.GTP_U][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/reddit.pcap.out b/test/results/flow-info/default/reddit.pcap.out
index ec11c7bfd..90cdeeb31 100644
--- a/test/results/flow-info/reddit.pcap.out
+++ b/test/results/flow-info/default/reddit.pcap.out
@@ -25,17 +25,6 @@
[IATS(ms)....: 24.9,25.0,0.5,75.6,0.0,0.0,0.0,75.2,0.0,0.0,8.8,5.0,0.6,0.7,37.6,3.5,25.9,1.2,0.5,1.6,1.1,59.9,0.0,0.0,0.0,0.0,0.0,0.0,58.8,0.0,0.0]
[PKTLENS.....: 80,80,72,589,72,1280,1280,572,72,72,72,136,164,896,710,72,652,72,72,103,72,103,72,72,384,422,285,111,139,72,72,72]
[ENTROPIES...: 4.7,5.2,5.1,4.6,4.9,7.8,7.8,7.5,5.2,5.0,5.1,6.1,6.5,7.8,7.7,5.0,7.6,5.1,5.1,5.7,5.1,5.8,5.1,5.0,7.3,7.4,7.1,6.0,6.2,5.1,5.1,5.1]
- analyse: [.....3] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56558] -> [.....................64:ff9b::9765:798c][..443]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 1.288| 0.092| 0.307| 94216.675| 1.800]
- [PKTLEN......: 72.000| 1120.000| 399.800| 437.600| 191482.000| 4.200]
- [BINS(c->s)..: 9,1,1,1,0,0,0,0,0,0,0,1,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 6,0,1,0,1,0,0,0,1,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,8,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,1,1,1,0,0,0,0,0,0,0,1,1,1,0,1,0,0,1,1,1,0,1,1,1,1,1]
- [IATS(ms)....: 33.2,33.2,0.9,66.6,0.0,0.0,0.0,0.0,65.7,0.0,0.0,0.0,13.2,0.7,0.5,42.1,0.0,0.0,27.6,0.5,0.5,1.4,59.9,0.1,1228.9,1287.6,0.9,0.0,0.0,0.0,0.0]
- [PKTLENS.....: 80,80,72,589,72,1120,1120,1120,587,72,72,72,72,165,171,445,72,330,72,72,138,72,110,72,72,1120,72,1120,1120,1120,203,1120]
- [ENTROPIES...: 4.9,5.3,5.2,4.5,5.1,6.9,7.4,7.3,7.6,5.3,5.2,5.3,5.3,6.1,6.3,7.4,5.1,7.1,5.1,5.2,6.2,5.2,5.7,5.1,5.1,7.8,5.2,7.8,7.8,7.8,6.7,7.8]
- detection-update: [.....3] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56558] -> [.....................64:ff9b::9765:798c][..443] [TLS.Reddit][Unknown][SocialNetwork][Fun][www.reddit.com]
new: [.....5] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56562] -> [.....................64:ff9b::9765:798c][..443]
new: [.....6] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56564] -> [.....................64:ff9b::9765:798c][..443]
new: [.....7] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56566] -> [.....................64:ff9b::9765:798c][..443]
@@ -100,17 +89,6 @@
detection-update: [....20] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56592] -> [.....................64:ff9b::9765:798c][..443] [TLS.Reddit][Unknown][SocialNetwork][Fun][emoji.redditmedia.com]
detection-update: [....19] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56590] -> [.....................64:ff9b::9765:798c][..443] [TLS.Reddit][Unknown][SocialNetwork][Fun][emoji.redditmedia.com]
detection-update: [....19] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56590] -> [.....................64:ff9b::9765:798c][..443] [TLS.Reddit][Unknown][SocialNetwork][Fun][emoji.redditmedia.com]
- analyse: [....13] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56578] -> [.....................64:ff9b::9765:798c][..443]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.048| 0.009| 0.016| 242.495| 3.200]
- [PKTLEN......: 72.000| 1120.000| 409.600| 435.500| 189657.000| 4.200]
- [BINS(c->s)..: 8,2,1,1,0,0,0,0,0,0,0,1,1,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 6,0,1,0,0,0,0,0,1,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,8,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,0,1,0,1,1,0,0,0,0,0,0,0,1,1,0,1,1,1,0,0,1,1,1,1,1,1]
- [IATS(ms)....: 38.7,38.7,0.2,38.5,0.0,38.3,0.0,0.0,0.3,0.0,0.3,0.0,2.2,2.8,0.2,0.2,6.5,48.3,2.9,39.3,6.8,2.7,0.0,9.6,0.3,0.8,2.1,0.0,0.0,0.0,0.0]
- [PKTLENS.....: 80,80,72,589,72,1120,72,1120,72,1120,602,72,72,165,171,436,468,115,72,330,72,72,72,138,72,110,72,1120,1120,1120,1120,1120]
- [ENTROPIES...: 4.7,5.2,5.3,4.6,5.1,6.9,5.3,7.3,5.3,7.4,7.6,5.3,5.3,6.0,6.4,7.4,7.2,5.8,5.1,7.1,5.2,5.1,5.1,6.2,5.2,5.7,5.1,7.8,7.8,7.8,7.8,7.8]
- detection-update: [....13] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56578] -> [.....................64:ff9b::9765:798c][..443] [TLS.Reddit][Unknown][SocialNetwork][Fun][styles.redditmedia.com]
analyse: [....20] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56592] -> [.....................64:ff9b::9765:798c][..443]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.052| 0.010| 0.019| 355.472| 2.800]
@@ -167,16 +145,6 @@
[PKTLENS.....: 80,80,72,589,72,1460,1460,1460,1460,387,72,72,72,72,72,136,164,330,72,72,72,143,72,103,1460,1460,1460,1460,72,72,72,72]
[ENTROPIES...: 4.8,5.2,5.2,4.5,5.1,7.8,7.8,7.9,7.8,7.4,5.2,5.2,5.2,5.2,5.1,6.1,6.5,7.3,5.0,5.0,5.1,6.3,5.2,5.9,7.9,7.8,7.9,7.8,5.2,5.2,5.3,5.3]
detection-update: [....23] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][43492] -> [......................64:ff9b::df9:21c6][..443] [TLS.Amazon][Unknown][Web][Acceptable][c.amazon-adsystem.com]
- analyse: [....24] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][38320] -> [.....................64:ff9b::6853:b3b6][..443] [TLS][Unknown][Web][Safe]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.072| 0.012| 0.019| 342.578| 3.400]
- [PKTLEN......: 72.000| 1460.000| 432.900| 553.500| 306346.900| 4.000]
- [BINS(c->s)..: 11,0,2,0,0,0,0,0,1,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 6,0,1,0,0,0,0,1,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,2,5,0,0,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,1,1,0,0,0,0,0,0,1,1,1,1,1,1,0,0,0,0,1,1,0,1,1,1,1,0]
- [IATS(ms)....: 27.4,27.4,0.3,37.3,35.3,0.0,0.0,72.3,0.0,0.0,2.5,0.1,0.1,31.2,0.0,2.1,15.1,0.0,0.0,45.6,0.0,0.0,0.2,29.8,10.3,39.8,0.7,0.0,0.0,0.0,0.7]
- [PKTLENS.....: 80,80,72,589,72,1460,1460,310,72,72,72,152,164,350,72,72,72,343,343,142,72,72,72,103,72,1460,72,1445,1460,1445,1460,72]
- [ENTROPIES...: 4.9,5.3,5.2,4.4,5.1,7.8,7.8,7.2,5.3,5.2,5.2,6.3,6.5,7.4,5.1,5.1,5.1,7.2,7.3,6.3,5.2,5.3,5.2,5.9,5.1,7.9,5.2,7.9,7.8,7.9,7.9,5.3]
new: [....25] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][51026] -> [.....................64:ff9b::acd9:12c2][..443]
detected: [....25] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][51026] -> [.....................64:ff9b::acd9:12c2][..443] [TLS.Google][Unknown][Advertisement][Acceptable][securepubads.g.doubleclick.net]
new: [....26] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][48240] -> [.....................64:ff9b::9765:789d][..443]
@@ -184,27 +152,6 @@
detection-update: [....25] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][51026] -> [.....................64:ff9b::acd9:12c2][..443] [TLS.Google][Unknown][Advertisement][Acceptable][securepubads.g.doubleclick.net]
detection-update: [....26] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][48240] -> [.....................64:ff9b::9765:789d][..443] [TLS.Twitter][Unknown][SocialNetwork][Fun][platform.twitter.com]
detection-update: [....26] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][48240] -> [.....................64:ff9b::9765:789d][..443] [TLS.Twitter][Unknown][SocialNetwork][Fun][platform.twitter.com]
- analyse: [....25] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][51026] -> [.....................64:ff9b::acd9:12c2][..443] [TLS.Google][Unknown][Advertisement][Acceptable]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.049| 0.008| 0.014| 205.184| 3.100]
- [PKTLEN......: 72.000| 1460.000| 442.600| 558.600| 312025.400| 4.000]
- [BINS(c->s)..: 12,0,2,0,0,0,0,0,1,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 6,0,0,1,0,0,0,0,0,0,0,0,0,1,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,7,0,0,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,0,1,1,0,0,0,0,0,1,1,1,1,1,0,0,0,1,1,1,0,0,0,1,0,1,1]
- [IATS(ms)....: 27.2,27.2,0.3,32.1,7.5,39.3,0.5,0.0,0.5,0.0,1.9,0.1,0.1,39.4,0.3,0.0,11.8,0.0,49.5,0.0,0.2,1.9,0.0,0.0,1.7,0.0,0.0,0.1,0.1,1.6,0.0]
- [PKTLENS.....: 80,80,72,589,72,1460,72,1460,174,72,72,136,164,346,72,72,72,652,103,72,72,103,508,1460,1460,72,72,72,1460,72,1460,1460]
- [ENTROPIES...: 4.9,5.2,5.2,4.7,5.1,7.8,5.2,7.8,6.6,5.3,5.2,6.1,6.5,7.2,5.0,5.0,5.0,7.6,5.7,5.1,5.1,5.8,7.5,7.9,7.9,5.2,5.2,5.2,7.9,5.2,7.8,7.8]
- analyse: [....26] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][48240] -> [.....................64:ff9b::9765:789d][..443]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.061| 0.008| 0.016| 251.050| 2.900]
- [PKTLEN......: 72.000| 1120.000| 363.200| 425.800| 181298.700| 4.100]
- [BINS(c->s)..: 12,1,1,1,0,0,0,0,1,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 5,0,1,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,7,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,0,1,1,1,0,0,0,0,0,0,1,1,1,1,0,1,0,0,1,1,1,1,0,0,0,0]
- [IATS(ms)....: 30.4,30.4,0.3,47.5,14.0,61.1,0.1,0.0,0.0,0.0,0.0,0.0,3.3,0.1,0.1,30.6,2.1,0.1,0.0,29.2,1.3,1.3,0.2,0.4,0.0,0.0,0.0,0.2,0.0,0.0,0.0]
- [PKTLENS.....: 80,80,72,589,72,1120,72,1120,1120,704,72,72,72,165,171,337,72,72,72,330,72,138,72,110,1120,1120,1120,1120,72,72,72,72]
- [ENTROPIES...: 4.9,5.3,5.2,4.5,5.0,6.9,5.1,7.2,7.3,7.6,5.2,5.2,5.1,6.0,6.4,7.2,5.1,5.1,5.1,7.0,5.2,6.3,5.2,5.6,7.8,7.8,7.8,7.8,5.2,5.2,5.2,5.2]
- detection-update: [....26] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][48240] -> [.....................64:ff9b::9765:789d][..443] [TLS.Twitter][Unknown][SocialNetwork][Fun][platform.twitter.com]
new: [....27] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][39520] -> [...............2a00:1450:4007:816::2008][..443]
detected: [....27] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][39520] -> [...............2a00:1450:4007:816::2008][..443] [TLS.GoogleServices][Unknown][Web][Acceptable][www.googletagmanager.com]
detection-update: [....27] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][39520] -> [...............2a00:1450:4007:816::2008][..443] [TLS.GoogleServices][Unknown][Web][Acceptable][www.googletagmanager.com]
@@ -230,10 +177,10 @@
new: [....33] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][44264] -> [.....................64:ff9b::1736:86f1][..443]
detected: [....31] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][54862] -> [...............2a00:1450:4007:806::200e][..443] [TLS.YouTube][Unknown][Media][Fun][www.youtube.com]
detected: [....32] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][48648] -> [...2620:116:800d:21:f916:5049:f87f:108e][..443] [TLS][Unknown][Web][Safe][secure.quantserve.com]
- detected: [....33] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][44264] -> [.....................64:ff9b::1736:86f1][..443] [TLS][Unknown][Advertisement][Safe][sb.scorecardresearch.com]
+ detected: [....33] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][44264] -> [.....................64:ff9b::1736:86f1][..443] [TLS.ADS_Analytic_Track][Unknown][Advertisement][Tracker/Ads][sb.scorecardresearch.com]
detection-update: [....30] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][39626] -> [.....................64:ff9b::2278:cf94][..443] [TLS][Unknown][Web][Safe][id.rlcdn.com]
detection-update: [....31] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][54862] -> [...............2a00:1450:4007:806::200e][..443] [TLS.YouTube][Unknown][Media][Fun][www.youtube.com]
- detection-update: [....33] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][44264] -> [.....................64:ff9b::1736:86f1][..443] [TLS][Unknown][Advertisement][Safe][sb.scorecardresearch.com]
+ detection-update: [....33] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][44264] -> [.....................64:ff9b::1736:86f1][..443] [TLS.ADS_Analytic_Track][Unknown][Advertisement][Tracker/Ads][sb.scorecardresearch.com]
detection-update: [....32] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][48648] -> [...2620:116:800d:21:f916:5049:f87f:108e][..443] [TLS][Unknown][Web][Safe][secure.quantserve.com]
detection-update: [....32] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][48648] -> [...2620:116:800d:21:f916:5049:f87f:108e][..443] [TLS][Unknown][Web][Safe][secure.quantserve.com]
detection-update: [....29] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56782] -> [.....................64:ff9b::68f4:2ac8][..443] [TLS.Twitter][Unknown][SocialNetwork][Fun][syndication.twitter.com]
@@ -330,26 +277,6 @@
[IATS(ms)....: 63.7,63.8,0.2,68.5,0.7,0.0,0.0,0.0,69.0,0.0,0.0,0.0,0.0,0.0,8.3,2.6,2.5,40.2,1.0,0.0,0.0,27.8,0.2,1.6,0.0,1.4,0.0,0.1,0.0,0.0,0.0]
[PKTLENS.....: 80,80,72,589,72,1280,1280,1280,1280,72,72,72,72,469,72,136,164,407,72,652,72,72,72,103,103,503,72,72,1280,1280,328,111]
[ENTROPIES...: 4.8,5.2,5.1,4.5,5.1,7.8,7.8,7.8,7.8,5.2,5.2,5.2,5.2,7.4,5.2,6.1,6.6,7.5,5.1,7.6,5.0,5.1,5.1,5.8,5.6,7.6,5.2,5.2,7.8,7.9,7.2,5.9]
- analyse: [....42] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][47302] -> [...............2a00:1450:4007:80c::2003][..443] [TLS.Google][Unknown][Web][Acceptable]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.073| 0.011| 0.020| 418.282| 3.000]
- [PKTLEN......: 72.000| 1280.000| 409.500| 484.500| 234727.200| 4.100]
- [BINS(c->s)..: 11,0,3,0,0,0,0,0,0,1,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 6,0,0,0,0,0,0,0,1,0,0,0,1,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,7,0,0,0,0,0,0,0,0,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,0,1,1,0,0,0,0,0,0,1,1,0,0,1,1,1,1,1,1,1,0,0,0,0,1,1]
- [IATS(ms)....: 45.3,45.4,0.4,65.7,8.2,73.5,0.0,0.0,0.0,0.0,12.6,0.9,0.2,0.2,41.2,1.6,28.9,0.1,3.3,0.0,0.0,3.7,0.0,0.0,0.0,7.0,0.0,0.0,0.0,0.1,0.0]
- [PKTLENS.....: 80,80,72,589,72,1280,72,1280,341,72,72,136,164,373,153,72,652,72,103,72,72,72,466,1280,1280,1280,72,72,72,72,1280,1280]
- [ENTROPIES...: 4.9,5.3,5.2,4.5,5.1,7.8,5.2,7.9,7.3,5.2,5.1,6.1,6.5,7.4,6.4,5.1,7.6,5.3,5.8,5.1,5.2,5.1,7.5,7.8,7.8,7.8,5.3,5.3,5.3,5.3,7.8,7.8]
- analyse: [....41] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][52296] -> [...............2a00:1450:4007:815::2016][..443] [TLS.YouTube][Unknown][Media][Fun]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.068| 0.013| 0.022| 499.229| 3.200]
- [PKTLEN......: 72.000| 1280.000| 420.500| 488.800| 238946.400| 4.100]
- [BINS(c->s)..: 12,0,2,0,0,0,0,0,0,1,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 6,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,1,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,7,0,0,0,0,0,0,0,0,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,1,1,0,0,0,0,0,0,1,1,0,0,1,1,1,0,1,0,1,0,1,1,1,1,0,0]
- [IATS(ms)....: 63.3,63.4,1.1,67.8,0.8,0.0,0.0,67.4,0.0,0.0,11.7,1.8,0.2,41.6,0.4,28.5,0.5,4.2,0.0,1.9,5.5,17.9,17.9,0.1,0.1,0.2,0.0,0.0,0.0,0.2,0.0]
- [PKTLENS.....: 80,80,72,589,72,1280,1280,751,72,72,72,136,164,375,72,652,72,103,72,72,103,72,456,72,1280,72,1280,1280,1280,1280,72,72]
- [ENTROPIES...: 4.9,5.3,5.2,4.4,5.1,7.8,7.9,7.7,5.2,5.2,5.3,6.3,6.6,7.4,5.1,7.7,5.1,5.9,5.1,5.1,5.8,5.2,7.5,5.3,7.9,5.3,7.8,7.8,7.8,7.8,5.2,5.3]
new: [....44] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56640] -> [.....................64:ff9b::9765:798c][..443]
detected: [....44] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56640] -> [.....................64:ff9b::9765:798c][..443] [TLS.Reddit][Unknown][SocialNetwork][Fun][gateway.reddit.com]
detection-update: [....44] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56640] -> [.....................64:ff9b::9765:798c][..443] [TLS.Reddit][Unknown][SocialNetwork][Fun][gateway.reddit.com]
@@ -429,16 +356,6 @@
detection-update: [....56] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][36966] -> [...............2a00:1450:4007:80f::2001][..443] [TLS.Google][Unknown][Advertisement][Acceptable][tpc.googlesyndication.com]
detection-update: [....58] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][36970] -> [...............2a00:1450:4007:80f::2001][..443] [TLS.Google][Unknown][Advertisement][Acceptable][tpc.googlesyndication.com]
detection-update: [....57] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][36968] -> [...............2a00:1450:4007:80f::2001][..443] [TLS.Google][Unknown][Advertisement][Acceptable][tpc.googlesyndication.com]
- analyse: [....49] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][46806] -> [...............2a00:1450:4007:808::2001][..443] [TLS.Google][Unknown][Web][Acceptable]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.042| 0.008| 0.012| 149.897| 3.300]
- [PKTLEN......: 72.000| 1280.000| 468.500| 513.400| 263601.800| 4.200]
- [BINS(c->s)..: 10,0,2,0,0,0,0,0,1,1,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 6,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,8,0,0,0,0,0,0,0,0,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,1,0,0,1,1,1,1,1,0,0,0,0,0,0,1,1,0,0,1,1,1,1,1,1,0,0]
- [IATS(ms)....: 25.6,25.6,1.1,31.5,7.2,0.0,37.6,0.0,0.1,0.0,0.0,0.0,0.0,0.1,0.0,7.1,13.6,0.6,0.2,42.2,0.0,20.7,0.3,10.1,0.0,0.3,0.0,0.0,0.0,10.1,0.1]
- [PKTLENS.....: 80,80,72,589,72,1280,1280,72,72,1280,1280,1280,1280,220,72,72,136,164,342,389,72,652,72,103,72,72,72,1062,1280,1280,72,72]
- [ENTROPIES...: 4.8,5.3,5.1,4.6,5.0,7.8,7.8,5.2,5.2,7.9,7.9,7.8,7.8,6.8,5.1,5.1,6.1,6.4,7.3,7.3,5.0,7.6,5.1,5.7,5.1,5.0,5.1,7.8,7.9,7.8,5.1,5.1]
analyse: [....55] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][36964] -> [...............2a00:1450:4007:80f::2001][..443] [TLS.Google][Unknown][Advertisement][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.046| 0.009| 0.014| 200.064| 3.400]
@@ -465,16 +382,17 @@
detection-update: [....60] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][47006] -> [.....................64:ff9b::34d3:acec][..443] [TLS][Unknown][Web][Safe][d9.flashtalking.com]
idle: [....39] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][57282] -> [...............2a00:1450:4007:805::2004][..443] [TLS.Google][Unknown][Web][Acceptable]
idle: [....46] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][59336] -> [...............2a00:1450:4007:80b::2002][..443] [TLS.Google][Unknown][Web][Acceptable]
- idle: [....26] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][48240] -> [.....................64:ff9b::9765:789d][..443] [TLS.Twitter][Unknown][SocialNetwork][Fun]
+ idle: [....26] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][48240] -> [.....................64:ff9b::9765:789d][..443]
idle: [....55] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][36964] -> [...............2a00:1450:4007:80f::2001][..443] [TLS.Google][Unknown][Advertisement][Acceptable]
end: [....56] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][36966] -> [...............2a00:1450:4007:80f::2001][..443]
end: [....57] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][36968] -> [...............2a00:1450:4007:80f::2001][..443]
end: [....58] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][36970] -> [...............2a00:1450:4007:80f::2001][..443]
guessed: [....59] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][36972] -> [...............2a00:1450:4007:80f::2001][..443] [TLS][Unknown][Web][Safe]
+ RISK: TCP Connection Issues
end: [....59] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][36972] -> [...............2a00:1450:4007:80f::2001][..443]
idle: [....33] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][44264] -> [.....................64:ff9b::1736:86f1][..443]
- idle: [.....3] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56558] -> [.....................64:ff9b::9765:798c][..443] [TLS.Reddit][Unknown][SocialNetwork][Fun]
- idle: [....42] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][47302] -> [...............2a00:1450:4007:80c::2003][..443] [TLS.Google][Unknown][Web][Acceptable]
+ idle: [.....3] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56558] -> [.....................64:ff9b::9765:798c][..443]
+ idle: [....42] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][47302] -> [...............2a00:1450:4007:80c::2003][..443]
idle: [.....4] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56560] -> [.....................64:ff9b::9765:798c][..443]
end: [....43] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][47304] -> [...............2a00:1450:4007:80c::2003][..443]
end: [.....5] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56562] -> [.....................64:ff9b::9765:798c][..443]
@@ -485,7 +403,7 @@
end: [....10] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56572] -> [.....................64:ff9b::9765:798c][..443]
end: [....11] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56574] -> [.....................64:ff9b::9765:798c][..443]
end: [....12] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56576] -> [.....................64:ff9b::9765:798c][..443]
- idle: [....13] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56578] -> [.....................64:ff9b::9765:798c][..443] [TLS.Reddit][Unknown][SocialNetwork][Fun]
+ idle: [....13] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56578] -> [.....................64:ff9b::9765:798c][..443]
end: [....14] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56580] -> [.....................64:ff9b::9765:798c][..443]
idle: [....15] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56582] -> [.....................64:ff9b::9765:798c][..443]
end: [....16] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56584] -> [.....................64:ff9b::9765:798c][..443]
@@ -497,17 +415,17 @@
idle: [....21] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56594] -> [.....................64:ff9b::9765:798c][..443] [TLS.Reddit][Unknown][SocialNetwork][Fun]
idle: [....44] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56640] -> [.....................64:ff9b::9765:798c][..443] [TLS.Reddit][Unknown][SocialNetwork][Fun]
idle: [....36] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56186] -> [...2600:9000:219c:ee00:6:44e3:f8c0:93a1][..443]
- idle: [....24] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][38320] -> [.....................64:ff9b::6853:b3b6][..443] [TLS][Unknown][Web][Safe]
+ idle: [....24] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][38320] -> [.....................64:ff9b::6853:b3b6][..443]
idle: [....29] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56782] -> [.....................64:ff9b::68f4:2ac8][..443] [TLS.Twitter][Unknown][SocialNetwork][Fun]
idle: [....47] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][46646] -> [.....................64:ff9b::345f:7ca5][..443]
idle: [....37] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][39736] -> [.....2606:2800:134:1a0d:1429:742:782:b6][..443] [TLS.Twitter][Unknown][SocialNetwork][Fun]
idle: [....27] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][39520] -> [...............2a00:1450:4007:816::2008][..443] [TLS.GoogleServices][Unknown][Web][Acceptable]
idle: [....40] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][58122] -> [...............2a00:1450:4007:805::2001][..443] [TLS.YouTube][Unknown][Media][Fun]
- idle: [....25] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][51026] -> [.....................64:ff9b::acd9:12c2][..443] [TLS.Google][Unknown][Advertisement][Acceptable]
+ idle: [....25] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][51026] -> [.....................64:ff9b::acd9:12c2][..443]
idle: [....34] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][51100] -> [.....................64:ff9b::d83a:d1e6][..443] [TLS.Google][Unknown][Advertisement][Acceptable]
idle: [....60] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][47006] -> [.....................64:ff9b::34d3:acec][..443]
end: [....35] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][51102] -> [.....................64:ff9b::d83a:d1e6][..443]
- idle: [....41] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][52296] -> [...............2a00:1450:4007:815::2016][..443] [TLS.YouTube][Unknown][Media][Fun]
+ idle: [....41] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][52296] -> [...............2a00:1450:4007:815::2016][..443]
idle: [.....1] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][40028] -> [...............2a00:1450:4007:80a::200a][..443] [TLS.GoogleServices][Unknown][Web][Acceptable]
end: [.....2] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][40030] -> [...............2a00:1450:4007:80a::200a][..443]
idle: [....28] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][32970] -> [.....................64:ff9b::6853:b3d1][..443]
diff --git a/test/results/flow-info/default/riot.pcapng.out b/test/results/flow-info/default/riot.pcapng.out
new file mode 100644
index 000000000..8d091d64c
--- /dev/null
+++ b/test/results/flow-info/default/riot.pcapng.out
@@ -0,0 +1,14 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..tcp] [..52.41.135.135][..443] -> [..192.168.26.22][51817] [MIDSTREAM]
+ new: [.....2] [ip4][..tcp] [..35.234.85.218][..443] -> [..192.168.26.22][51949] [MIDSTREAM]
+ detected: [.....2] [ip4][..tcp] [..35.234.85.218][..443] -> [..192.168.26.22][51949] [TLS][GoogleCloud][Web][Safe][]
+ RISK: Unidirectional Traffic
+ detection-update: [.....2] [ip4][..tcp] [..35.234.85.218][..443] -> [..192.168.26.22][51949] [TLS.RiotGames][GoogleCloud][Game][Fun][]
+ RISK: Unidirectional Traffic
+ guessed: [.....1] [ip4][..tcp] [..52.41.135.135][..443] -> [..192.168.26.22][51817] [TLS][AmazonAWS][Web][Safe]
+ RISK: Unidirectional Traffic
+ idle: [.....1] [ip4][..tcp] [..52.41.135.135][..443] -> [..192.168.26.22][51817]
+ idle: [.....2] [ip4][..tcp] [..35.234.85.218][..443] -> [..192.168.26.22][51949]
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/riotgames.pcap.out b/test/results/flow-info/default/riotgames.pcap.out
index 55854aca0..f5ebcb307 100644
--- a/test/results/flow-info/riotgames.pcap.out
+++ b/test/results/flow-info/default/riotgames.pcap.out
@@ -3,45 +3,63 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..192.168.2.100][59956] -> [...162.249.72.1][.7194]
detected: [.....1] [ip4][..udp] [..192.168.2.100][59956] -> [...162.249.72.1][.7194] [RiotGames][RiotGames][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 15 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....2] [ip4][..udp] [..192.168.2.100][48526] -> [213.179.216.242][50004]
detected: [.....2] [ip4][..udp] [..192.168.2.100][48526] -> [213.179.216.242][50004] [Discord][Discord][Collaborative][Fun]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [..192.168.2.100][59956] -> [...162.249.72.1][.7194] [RiotGames][RiotGames][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 17 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 2|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....3] [ip4][..udp] [..192.168.2.100][62854] -> [...162.249.72.1][.8181]
detected: [.....3] [ip4][..udp] [..192.168.2.100][62854] -> [...162.249.72.1][.8181] [RiotGames][RiotGames][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [..192.168.2.100][48526] -> [213.179.216.242][50004] [Discord][Discord][Collaborative][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 19 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 3|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....4] [ip4][..udp] [..192.168.2.100][54231] -> [....43.229.65.1][.7998]
detected: [.....4] [ip4][..udp] [..192.168.2.100][54231] -> [....43.229.65.1][.7998] [RiotGames][RiotGames][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [..192.168.2.100][62854] -> [...162.249.72.1][.8181] [RiotGames][RiotGames][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 21 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 4|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....5] [ip4][..udp] [..192.168.2.100][58106] -> [...162.249.72.1][.8181]
detected: [.....5] [ip4][..udp] [..192.168.2.100][58106] -> [...162.249.72.1][.8181] [RiotGames][RiotGames][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..udp] [..192.168.2.100][54231] -> [....43.229.65.1][.7998] [RiotGames][RiotGames][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 23 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 5|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....6] [ip4][..udp] [..192.168.2.100][50004] -> [...162.249.72.1][.8181]
detected: [.....6] [ip4][..udp] [..192.168.2.100][50004] -> [...162.249.72.1][.8181] [RiotGames][RiotGames][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....5] [ip4][..udp] [..192.168.2.100][58106] -> [...162.249.72.1][.8181] [RiotGames][RiotGames][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 25 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 6|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....7] [ip4][..udp] [..192.168.2.100][63038] -> [....43.229.65.1][.7998]
detected: [.....7] [ip4][..udp] [..192.168.2.100][63038] -> [....43.229.65.1][.7998] [RiotGames][RiotGames][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][..udp] [..192.168.2.100][50004] -> [...162.249.72.1][.8181] [RiotGames][RiotGames][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 27 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 7|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....8] [ip4][..udp] [..192.168.2.100][61099] -> [....66.22.241.8][50004]
detected: [.....8] [ip4][..udp] [..192.168.2.100][61099] -> [....66.22.241.8][50004] [Discord][Discord][Collaborative][Fun]
+ RISK: Unidirectional Traffic
idle: [.....7] [ip4][..udp] [..192.168.2.100][63038] -> [....43.229.65.1][.7998] [RiotGames][RiotGames][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 29 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 8|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....9] [ip4][..udp] [..192.168.2.100][49298] -> [...162.249.72.1][.7194]
detected: [.....9] [ip4][..udp] [..192.168.2.100][49298] -> [...162.249.72.1][.7194] [RiotGames][RiotGames][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....8] [ip4][..udp] [..192.168.2.100][61099] -> [....66.22.241.8][50004] [Discord][Discord][Collaborative][Fun]
+ RISK: Unidirectional Traffic
idle: [.....9] [ip4][..udp] [..192.168.2.100][49298] -> [...162.249.72.1][.7194] [RiotGames][RiotGames][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/rsh-syslog-false-positive.pcap.out b/test/results/flow-info/default/rsh-syslog-false-positive.pcap.out
index 703b11c94..abde4e11a 100644
--- a/test/results/flow-info/rsh-syslog-false-positive.pcap.out
+++ b/test/results/flow-info/default/rsh-syslog-false-positive.pcap.out
@@ -3,7 +3,9 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [..172.31.78.129][.9039] -> [..172.29.43.201][..514] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [..172.31.78.129][.9039] -> [..172.29.43.201][..514] [Syslog][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Captured packet size is smaller than expected packet size [1/16]
ERROR-EVENT: Captured packet size is smaller than expected packet size [2/16]
idle: [.....1] [ip4][..tcp] [..172.31.78.129][.9039] -> [..172.29.43.201][..514] [Syslog][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/rsh.pcap.out b/test/results/flow-info/default/rsh.pcap.out
index 4f5f8e393..dbff3be51 100644
--- a/test/results/flow-info/rsh.pcap.out
+++ b/test/results/flow-info/default/rsh.pcap.out
@@ -3,12 +3,12 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [......127.0.0.1][.1023] -> [......127.0.0.1][..514]
detected: [.....1] [ip4][..tcp] [......127.0.0.1][.1023] -> [......127.0.0.1][..514] [RSH][Unknown][RemoteAccess][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Clear-Text Credentials
new: [.....2] [ip4][..tcp] [......127.0.0.1][.1021] -> [......127.0.0.1][..514]
detected: [.....2] [ip4][..tcp] [......127.0.0.1][.1021] -> [......127.0.0.1][..514] [RSH][Unknown][RemoteAccess][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Clear-Text Credentials
end: [.....2] [ip4][..tcp] [......127.0.0.1][.1021] -> [......127.0.0.1][..514] [RSH][Unknown][RemoteAccess][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Clear-Text Credentials
end: [.....1] [ip4][..tcp] [......127.0.0.1][.1023] -> [......127.0.0.1][..514] [RSH][Unknown][RemoteAccess][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Clear-Text Credentials
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/rsync.pcap.out b/test/results/flow-info/default/rsync.pcap.out
index 914718b2b..914718b2b 100644
--- a/test/results/flow-info/rsync.pcap.out
+++ b/test/results/flow-info/default/rsync.pcap.out
diff --git a/test/results/flow-info/rtmp.pcap.out b/test/results/flow-info/default/rtmp.pcap.out
index 3f77fc4e9..3f77fc4e9 100644
--- a/test/results/flow-info/rtmp.pcap.out
+++ b/test/results/flow-info/default/rtmp.pcap.out
diff --git a/test/results/flow-info/rtsp.pcap.out b/test/results/flow-info/default/rtsp.pcap.out
index a16868f98..f5106e3f4 100644
--- a/test/results/flow-info/rtsp.pcap.out
+++ b/test/results/flow-info/default/rtsp.pcap.out
@@ -3,7 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [......10.1.1.10][52470] -> [.......10.2.2.2][.8554] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [......10.1.1.10][52470] -> [.......10.2.2.2][.8554] [RTSP][Unknown][Media][Fun]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [.....2] [ip4][..tcp] [......10.1.1.10][52472] -> [.......10.2.2.2][.8554]
detected: [.....2] [ip4][..tcp] [......10.1.1.10][52472] -> [.......10.2.2.2][.8554] [RTSP][Unknown][Media][Fun]
RISK: Known Proto on Non Std Port
@@ -57,7 +57,7 @@
[PKTLENS.....: 52,52,52,52,46,40,46,46,52,52,52,52,52,52,52,52,46,46,40,46,156,156,156,156,46,46,40,46,165,165,165,165]
[ENTROPIES...: 4.4,4.4,4.4,4.4,3.5,3.8,3.5,3.5,4.4,4.4,4.4,4.4,4.6,4.7,4.6,4.7,4.3,4.3,4.6,4.3,5.7,5.7,5.7,5.7,4.3,4.3,4.6,4.3,5.7,5.7,5.7,5.7]
end: [.....1] [ip4][..tcp] [......10.1.1.10][52470] -> [.......10.2.2.2][.8554] [RTSP][Unknown][Media][Fun]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [.....6] [ip4][..tcp] [......10.1.1.10][52480] -> [.......10.2.2.2][.8554]
detected: [.....6] [ip4][..tcp] [......10.1.1.10][52480] -> [.......10.2.2.2][.8554] [RTSP][Unknown][Media][Fun]
RISK: Known Proto on Non Std Port
diff --git a/test/results/flow-info/rtsp_setup_http.pcapng.out b/test/results/flow-info/default/rtsp_setup_http.pcapng.out
index 8291bb485..9d621c5a8 100644
--- a/test/results/flow-info/rtsp_setup_http.pcapng.out
+++ b/test/results/flow-info/default/rtsp_setup_http.pcapng.out
@@ -3,7 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [...172.28.5.170][63840] -> [....172.28.4.26][.8554] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [...172.28.5.170][63840] -> [....172.28.4.26][.8554] [RTSP][Unknown][Media][Fun]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....1] [ip4][..tcp] [...172.28.5.170][63840] -> [....172.28.4.26][.8554] [RTSP][Unknown][Media][Fun]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/rx.pcap.out b/test/results/flow-info/default/rx.pcap.out
index bf56d4d6b..bf56d4d6b 100644
--- a/test/results/flow-info/rx.pcap.out
+++ b/test/results/flow-info/default/rx.pcap.out
diff --git a/test/results/flow-info/s7comm.pcap.out b/test/results/flow-info/default/s7comm.pcap.out
index ac0e670d5..eb5e7becd 100644
--- a/test/results/flow-info/s7comm.pcap.out
+++ b/test/results/flow-info/default/s7comm.pcap.out
@@ -3,6 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [...192.168.1.10][.4185] -> [...192.168.1.40][..102] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [...192.168.1.10][.4185] -> [...192.168.1.40][..102] [s7comm][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
analyse: [.....1] [ip4][..tcp] [...192.168.1.10][.4185] -> [...192.168.1.40][..102] [s7comm][Unknown][Network][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.009| 0.005| 0.003| 11.033| 4.500]
@@ -14,4 +15,5 @@
[PKTLENS.....: 62,62,65,67,47,73,121,47,73,121,47,73,261,47,73,121,47,69,101,47,69,101,47,69,101,47,69,101,47,71,77,47]
[ENTROPIES...: 4.4,4.3,4.3,3.9,4.5,4.6,3.9,4.5,4.4,3.5,4.5,4.5,2.4,4.4,4.5,3.9,4.5,4.4,4.4,4.5,4.4,4.4,4.4,4.4,4.4,4.5,4.4,4.4,4.4,4.7,4.4,4.5]
idle: [.....1] [ip4][..tcp] [...192.168.1.10][.4185] -> [...192.168.1.40][..102] [s7comm][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/default/safari.pcap.out b/test/results/flow-info/default/safari.pcap.out
new file mode 100644
index 000000000..27bc4bfb8
--- /dev/null
+++ b/test/results/flow-info/default/safari.pcap.out
@@ -0,0 +1,59 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..tcp] [..192.168.1.178][55262] -> [...146.48.58.18][..443]
+ detected: [.....1] [ip4][..tcp] [..192.168.1.178][55262] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ detection-update: [.....1] [ip4][..tcp] [..192.168.1.178][55262] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ detection-update: [.....1] [ip4][..tcp] [..192.168.1.178][55262] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ new: [.....2] [ip4][..tcp] [..192.168.1.178][55265] -> [...146.48.58.18][..443]
+ new: [.....3] [ip4][..tcp] [..192.168.1.178][55266] -> [...146.48.58.18][..443]
+ new: [.....4] [ip4][..tcp] [..192.168.1.178][55267] -> [...146.48.58.18][..443]
+ new: [.....5] [ip4][..tcp] [..192.168.1.178][55268] -> [...146.48.58.18][..443]
+ new: [.....6] [ip4][..tcp] [..192.168.1.178][55269] -> [...146.48.58.18][..443]
+ detected: [.....4] [ip4][..tcp] [..192.168.1.178][55267] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ RISK: TLS (probably) Not Carrying HTTPS
+ detected: [.....2] [ip4][..tcp] [..192.168.1.178][55265] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ RISK: TLS (probably) Not Carrying HTTPS
+ detected: [.....5] [ip4][..tcp] [..192.168.1.178][55268] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ RISK: TLS (probably) Not Carrying HTTPS
+ detected: [.....3] [ip4][..tcp] [..192.168.1.178][55266] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ RISK: TLS (probably) Not Carrying HTTPS
+ detected: [.....6] [ip4][..tcp] [..192.168.1.178][55269] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ RISK: TLS (probably) Not Carrying HTTPS
+ detection-update: [.....4] [ip4][..tcp] [..192.168.1.178][55267] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ RISK: TLS (probably) Not Carrying HTTPS
+ detection-update: [.....2] [ip4][..tcp] [..192.168.1.178][55265] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ RISK: TLS (probably) Not Carrying HTTPS
+ detection-update: [.....5] [ip4][..tcp] [..192.168.1.178][55268] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ RISK: TLS (probably) Not Carrying HTTPS
+ detection-update: [.....3] [ip4][..tcp] [..192.168.1.178][55266] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ RISK: TLS (probably) Not Carrying HTTPS
+ detection-update: [.....6] [ip4][..tcp] [..192.168.1.178][55269] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ RISK: TLS (probably) Not Carrying HTTPS
+ analyse: [.....4] [ip4][..tcp] [..192.168.1.178][55267] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
+ min| max| avg| stddev| variance| entropy
+ [IAT.........: 0.000| 0.119| 0.018| 0.029| 823.374| 3.500]
+ [PKTLEN......: 52.000| 1492.000| 618.000| 660.500| 436248.100| 4.100]
+ [BINS(c->s)..: 10,1,0,0,0,0,1,0,0,0,0,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+ [BINS(s->c)..: 5,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,11,0,0]
+ [DIRECTIONS..: 0,1,0,0,1,1,0,0,0,1,1,1,1,0,1,1,0,1,1,0,1,1,0,1,1,0,1,0,0,0,1,1]
+ [IATS(ms)....: 29.6,29.7,2.4,30.5,0.0,28.2,51.9,8.9,77.9,8.5,0.6,1.2,27.4,0.1,0.1,0.2,0.1,0.1,0.3,0.1,0.1,0.2,0.5,0.1,0.6,24.0,24.0,84.5,7.8,118.9,0.9]
+ [PKTLENS.....: 64,60,52,263,52,193,52,103,494,52,52,1492,1492,52,1492,1492,52,1492,1492,52,1492,1492,52,1492,1492,52,1029,52,52,483,52,1492]
+ [ENTROPIES...: 4.4,5.2,4.9,5.8,5.0,6.4,4.9,5.5,7.5,5.0,4.8,7.9,7.9,5.0,7.9,7.9,5.0,7.9,7.9,4.9,7.9,7.9,5.0,7.9,7.9,4.9,7.8,5.0,4.8,7.5,5.1,7.9]
+ new: [.....7] [ip4][..tcp] [..192.168.1.178][55285] -> [...146.48.58.18][..443]
+ detected: [.....7] [ip4][..tcp] [..192.168.1.178][55285] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ detection-update: [.....7] [ip4][..tcp] [..192.168.1.178][55285] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ detection-update: [.....7] [ip4][..tcp] [..192.168.1.178][55285] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
+ idle: [.....1] [ip4][..tcp] [..192.168.1.178][55262] -> [...146.48.58.18][..443]
+ idle: [.....2] [ip4][..tcp] [..192.168.1.178][55265] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
+ RISK: TLS (probably) Not Carrying HTTPS
+ idle: [.....3] [ip4][..tcp] [..192.168.1.178][55266] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
+ RISK: TLS (probably) Not Carrying HTTPS
+ idle: [.....4] [ip4][..tcp] [..192.168.1.178][55267] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
+ RISK: TLS (probably) Not Carrying HTTPS
+ idle: [.....5] [ip4][..tcp] [..192.168.1.178][55268] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
+ RISK: TLS (probably) Not Carrying HTTPS
+ idle: [.....6] [ip4][..tcp] [..192.168.1.178][55269] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
+ RISK: TLS (probably) Not Carrying HTTPS
+ idle: [.....7] [ip4][..tcp] [..192.168.1.178][55285] -> [...146.48.58.18][..443]
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/salesforce.pcap.out b/test/results/flow-info/default/salesforce.pcap.out
index 795e2c77c..795e2c77c 100644
--- a/test/results/flow-info/salesforce.pcap.out
+++ b/test/results/flow-info/default/salesforce.pcap.out
diff --git a/test/results/flow-info/sccp_hw_conf_register.pcapng.out b/test/results/flow-info/default/sccp_hw_conf_register.pcapng.out
index 3fd89e9c8..3fd89e9c8 100644
--- a/test/results/flow-info/sccp_hw_conf_register.pcapng.out
+++ b/test/results/flow-info/default/sccp_hw_conf_register.pcapng.out
diff --git a/test/results/flow-info/sctp.cap.out b/test/results/flow-info/default/sctp.cap.out
index 7f23e72bc..fa1070f7e 100644
--- a/test/results/flow-info/sctp.cap.out
+++ b/test/results/flow-info/default/sctp.cap.out
@@ -3,8 +3,12 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..132] [.....10.28.6.43] -> [.....10.28.6.44]
detected: [.....1] [ip4][..132] [.....10.28.6.43] -> [.....10.28.6.44] [SCTP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..132] [.....10.28.6.42] -> [.....10.28.6.44]
detected: [.....2] [ip4][..132] [.....10.28.6.42] -> [.....10.28.6.44] [SCTP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..132] [.....10.28.6.42] -> [.....10.28.6.44] [SCTP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..132] [.....10.28.6.43] -> [.....10.28.6.44] [SCTP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/selfsigned.pcap.out b/test/results/flow-info/default/selfsigned.pcap.out
index eaf890614..eaf890614 100644
--- a/test/results/flow-info/selfsigned.pcap.out
+++ b/test/results/flow-info/default/selfsigned.pcap.out
diff --git a/test/results/flow-info/sflow.pcap.out b/test/results/flow-info/default/sflow.pcap.out
index aee44e076..aee44e076 100644
--- a/test/results/flow-info/sflow.pcap.out
+++ b/test/results/flow-info/default/sflow.pcap.out
diff --git a/test/results/flow-info/signal.pcap.out b/test/results/flow-info/default/signal.pcap.out
index 8f130be85..2d344d729 100644
--- a/test/results/flow-info/signal.pcap.out
+++ b/test/results/flow-info/default/signal.pcap.out
@@ -5,6 +5,7 @@
detected: [.....1] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable][lucas-imac]
new: [.....2] [ip4][..udp] [...192.168.2.17][60793] -> [....192.168.2.1][...53]
detected: [.....2] [ip4][..udp] [...192.168.2.17][60793] -> [....192.168.2.1][...53] [DNS][Unknown][Network][Acceptable][e673.dsce9.akamaiedge.net]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..tcp] [...192.168.2.17][49226] -> [.34.225.240.173][..443]
new: [.....4] [ip4][..tcp] [...192.168.2.17][57018] -> [....23.57.24.16][..443]
new: [.....5] [ip4][..tcp] [...192.168.2.17][57019] -> [.34.225.240.173][..443]
@@ -40,18 +41,22 @@
detection-update: [.....6] [ip4][..tcp] [...192.168.2.17][57020] -> [.34.225.240.173][..443] [TLS.Signal][AmazonAWS][Chat][Fun][textsecure-service.whispersystems.org]
new: [.....8] [ip4][..tcp] [...192.168.2.17][56996] -> [.17.248.146.144][..443] [MIDSTREAM]
detected: [.....8] [ip4][..tcp] [...192.168.2.17][56996] -> [.17.248.146.144][..443] [TLS][Apple][Web][Safe]
+ RISK: Unidirectional Traffic
new: [.....9] [ip4][..tcp] [...192.168.2.17][57017] -> [...2.18.232.118][..443] [MIDSTREAM]
detected: [.....9] [ip4][..tcp] [...192.168.2.17][57017] -> [...2.18.232.118][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
new: [....10] [ip4][..tcp] [...192.168.2.17][49227] -> [....35.169.3.40][..443]
new: [....11] [ip4][..tcp] [...192.168.2.17][57022] -> [....23.57.24.16][..443]
new: [....12] [ip4][..udp] [...192.168.2.17][56263] -> [....192.168.2.1][...53]
detected: [....12] [ip4][..udp] [...192.168.2.17][56263] -> [....192.168.2.1][...53] [DNS.Signal][Unknown][Network][Fun][textsecure-service.whispersystems.org]
+ RISK: Unidirectional Traffic
new: [....13] [ip4][..tcp] [...192.168.2.17][57023] -> [....35.169.3.40][..443]
new: [....14] [ip4][..tcp] [...192.168.2.17][57024] -> [....35.169.3.40][..443]
new: [....15] [ip4][..tcp] [...192.168.2.17][57025] -> [....35.169.3.40][..443]
detection-update: [....12] [ip4][..udp] [...192.168.2.17][56263] -> [....192.168.2.1][...53] [DNS.Signal][Unknown][Network][Fun][textsecure-service.whispersystems.org]
new: [....16] [ip4][.icmp] [...192.168.2.17] -> [....192.168.2.1]
detected: [....16] [ip4][.icmp] [...192.168.2.17] -> [....192.168.2.1] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
detected: [....11] [ip4][..tcp] [...192.168.2.17][57022] -> [....23.57.24.16][..443] [TLS.AppleiTunes][Unknown][Streaming][Fun][itunes.apple.com]
detection-update: [....11] [ip4][..tcp] [...192.168.2.17][57022] -> [....23.57.24.16][..443] [TLS.AppleiTunes][Unknown][Streaming][Fun][itunes.apple.com]
detected: [....10] [ip4][..tcp] [...192.168.2.17][49227] -> [....35.169.3.40][..443] [TLS.Signal][AmazonAWS][Chat][Fun][textsecure-service.whispersystems.org]
@@ -95,6 +100,7 @@
[ENTROPIES...: 4.4,5.2,5.1,4.6,5.2,7.1,7.7,5.0,6.5,5.8,6.4,5.1,5.7,5.6,5.6,7.1,7.9,7.9,7.9,7.4,5.2,5.9,7.7,5.1,5.1,7.9,7.9,7.9,7.9,6.1,5.2,5.0]
new: [....18] [ip4][..tcp] [....23.57.24.16][..443] -> [...192.168.2.17][57016] [MIDSTREAM]
detected: [....18] [ip4][..tcp] [....23.57.24.16][..443] -> [...192.168.2.17][57016] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
new: [....19] [ip4][..tcp] [...192.168.2.17][57027] -> [...13.35.253.42][..443]
detected: [....19] [ip4][..tcp] [...192.168.2.17][57027] -> [...13.35.253.42][..443] [TLS.Signal][AmazonAWS][Chat][Fun][cdn.signal.org]
detection-update: [....19] [ip4][..tcp] [...192.168.2.17][57027] -> [...13.35.253.42][..443] [TLS.Signal][AmazonAWS][Chat][Fun][cdn.signal.org]
@@ -112,7 +118,9 @@
detection-update: [....19] [ip4][..tcp] [...192.168.2.17][57027] -> [...13.35.253.42][..443] [TLS.Signal][AmazonAWS][Chat][Fun][cdn.signal.org]
idle: [.....1] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable]
end: [.....8] [ip4][..tcp] [...192.168.2.17][56996] -> [.17.248.146.144][..443] [TLS][Apple][Web][Safe]
+ RISK: Unidirectional Traffic
idle: [....16] [ip4][.icmp] [...192.168.2.17] -> [....192.168.2.1] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
end: [....18] [ip4][..tcp] [....23.57.24.16][..443] -> [...192.168.2.17][57016]
end: [.....4] [ip4][..tcp] [...192.168.2.17][57018] -> [....23.57.24.16][..443] [TLS.AppleiTunes][Unknown][Streaming][Fun]
end: [....11] [ip4][..tcp] [...192.168.2.17][57022] -> [....23.57.24.16][..443] [TLS.AppleiTunes][Unknown][Streaming][Fun]
@@ -124,6 +132,7 @@
idle: [....15] [ip4][..tcp] [...192.168.2.17][57025] -> [....35.169.3.40][..443] [TLS.Signal][AmazonAWS][Chat][Fun]
idle: [....17] [ip4][..tcp] [...192.168.2.17][57026] -> [....35.169.3.40][..443] [TLS.Signal][AmazonAWS][Chat][Fun]
end: [.....9] [ip4][..tcp] [...192.168.2.17][57017] -> [...2.18.232.118][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
end: [.....3] [ip4][..tcp] [...192.168.2.17][49226] -> [.34.225.240.173][..443]
idle: [....10] [ip4][..tcp] [...192.168.2.17][49227] -> [....35.169.3.40][..443]
idle: [....19] [ip4][..tcp] [...192.168.2.17][57027] -> [...13.35.253.42][..443] [TLS.Signal][AmazonAWS][Chat][Fun]
diff --git a/test/results/flow-info/simple-dnscrypt.pcap.out b/test/results/flow-info/default/simple-dnscrypt.pcap.out
index b80c755bb..b80c755bb 100644
--- a/test/results/flow-info/simple-dnscrypt.pcap.out
+++ b/test/results/flow-info/default/simple-dnscrypt.pcap.out
diff --git a/test/results/flow-info/sip.pcap.out b/test/results/flow-info/default/sip.pcap.out
index 7bde4f3dd..6fb09f272 100644
--- a/test/results/flow-info/sip.pcap.out
+++ b/test/results/flow-info/default/sip.pcap.out
@@ -3,21 +3,34 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][.5060]
detected: [.....1] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.5060]
detected: [.....2] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....2] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....2] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 43 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 2|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 9]
update: [.....1] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....2] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
analyse: [.....1] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.026| 279.042| 42.751| 57.874| 3349363405.357| 4.000]
@@ -29,27 +42,44 @@
[PKTLENS.....: 495,514,708,334,374,495,514,708,519,495,514,708,519,495,514,708,334,498,33,33,33,33,33,33,33,33,33,853,853,853,621,368]
[ENTROPIES...: 5.7,5.7,5.7,5.7,5.7,5.7,5.8,5.7,5.7,5.7,5.7,5.7,5.7,5.7,5.7,5.7,5.7,5.6,4.1,4.1,4.1,4.1,4.1,4.1,4.0,4.1,4.1,5.7,5.7,5.7,5.8,5.7]
update: [.....1] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....2] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 68 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 2|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 17]
update: [.....1] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..udp] [....192.168.1.2][30000] -> [..212.242.33.36][40392]
detected: [.....3] [ip4][..udp] [....192.168.1.2][30000] -> [..212.242.33.36][40392] [RTP][Unknown][Media][Acceptable]
new: [.....4] [ip4][..udp] [....192.168.1.2][30001] -> [..212.242.33.36][40393]
detected: [.....4] [ip4][..udp] [....192.168.1.2][30001] -> [..212.242.33.36][40393] [RTCP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [....192.168.1.2][30000] -> [..212.242.33.36][40392] [RTP][Unknown][Media][Acceptable]
update: [.....4] [ip4][..udp] [....192.168.1.2][30001] -> [..212.242.33.36][40393] [RTCP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [....192.168.1.2][30000] -> [..212.242.33.36][40392] [RTP][Unknown][Media][Acceptable]
idle: [.....4] [ip4][..udp] [....192.168.1.2][30001] -> [..212.242.33.36][40393] [RTCP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/sip_hello.pcapng.out b/test/results/flow-info/default/sip_hello.pcapng.out
index 8c99d0823..8c99d0823 100644
--- a/test/results/flow-info/sip_hello.pcapng.out
+++ b/test/results/flow-info/default/sip_hello.pcapng.out
diff --git a/test/results/flow-info/sites.pcapng.out b/test/results/flow-info/default/sites.pcapng.out
index be112795e..24da00684 100644
--- a/test/results/flow-info/sites.pcapng.out
+++ b/test/results/flow-info/default/sites.pcapng.out
@@ -72,6 +72,7 @@
DAEMON-EVENT: [Flows][active: 1 / 8|skipped: 0|!detected: 0|guessed: 0|detection-updates: 10|updates: 0]
new: [.....9] [ip4][..udp] [..192.168.1.123][59102] -> [..216.58.209.46][..443]
detected: [.....9] [ip4][..udp] [..192.168.1.123][59102] -> [..216.58.209.46][..443] [QUIC.GoogleClassroom][Google][Collaborative][Safe][classroom.google.com]
+ RISK: Unidirectional Traffic
end: [.....8] [ip4][..tcp] [.192.168.12.169][39248] -> [...23.12.104.83][..443]
DAEMON-EVENT: [Processed: 315 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 9|skipped: 0|!detected: 0|guessed: 0|detection-updates: 10|updates: 0]
@@ -79,6 +80,7 @@
detected: [....10] [ip4][..tcp] [..192.168.1.128][35054] -> [..31.222.67.112][..443] [TLS.Badoo][Unknown][SocialNetwork][Fun][www.badoo.com]
detection-update: [....10] [ip4][..tcp] [..192.168.1.128][35054] -> [..31.222.67.112][..443] [TLS.Badoo][Unknown][SocialNetwork][Fun][www.badoo.com]
idle: [.....9] [ip4][..udp] [..192.168.1.123][59102] -> [..216.58.209.46][..443] [QUIC.GoogleClassroom][Google][Collaborative][Safe]
+ RISK: Unidirectional Traffic
new: [....11] [ip4][..tcp] [..192.168.1.128][53998] -> [..172.65.251.78][..443]
detected: [....11] [ip4][..tcp] [..192.168.1.128][53998] -> [..172.65.251.78][..443] [TLS.GitLab][Cloudflare][Collaborative][Fun][www.gitlab.com]
detection-update: [....11] [ip4][..tcp] [..192.168.1.128][53998] -> [..172.65.251.78][..443] [TLS.GitLab][Cloudflare][Collaborative][Fun][www.gitlab.com]
@@ -203,7 +205,7 @@
detected: [....40] [ip4][..tcp] [..192.168.1.128][56458] -> [142.250.185.142][..443] [TLS.GoogleDrive][Google][Cloud][Acceptable][drive.google.com]
detection-update: [....40] [ip4][..tcp] [..192.168.1.128][56458] -> [142.250.185.142][..443] [TLS.GoogleDrive][Google][Cloud][Acceptable][drive.google.com]
new: [....41] [ip4][..tcp] [..192.168.1.128][33102] -> [...13.81.118.91][..443]
- detected: [....41] [ip4][..tcp] [..192.168.1.128][33102] -> [...13.81.118.91][..443] [TLS][Azure][Web][Safe][onedrive.com]
+ detected: [....41] [ip4][..tcp] [..192.168.1.128][33102] -> [...13.81.118.91][..443] [TLS.Skype_Teams][Azure][VoIP][Acceptable][onedrive.com]
detection-update: [....41] [ip4][..tcp] [..192.168.1.128][33102] -> [...13.81.118.91][..443] [TLS.Microsoft][Azure][Cloud][Safe][onedrive.com]
new: [....42] [ip4][..tcp] [..192.168.1.128][56836] -> [...13.107.42.13][..443]
detected: [....42] [ip4][..tcp] [..192.168.1.128][56836] -> [...13.107.42.13][..443] [TLS.MS_OneDrive][Azure][Cloud][Acceptable][onedrive.live.com]
@@ -214,12 +216,15 @@
detection-update: [....43] [ip4][..tcp] [..192.168.1.128][45014] -> [129.226.107.210][..443] [TLS.IFLIX][Tencent][Video][Fun][www.iflix.com]
new: [....44] [ip4][..udp] [..192.168.1.128][38642] -> [.216.58.212.142][..443]
detected: [....44] [ip4][..udp] [..192.168.1.128][38642] -> [.216.58.212.142][..443] [QUIC.Google][Google][Web][Acceptable][hangouts.google.com]
+ RISK: Unidirectional Traffic
new: [....45] [ip4][..tcp] [..192.168.1.128][50608] -> [142.250.185.206][..443]
detected: [....45] [ip4][..tcp] [..192.168.1.128][50608] -> [142.250.185.206][..443] [TLS][Google][Web][Safe][googleplus.com]
detection-update: [....45] [ip4][..tcp] [..192.168.1.128][50608] -> [142.250.185.206][..443] [TLS][Google][Web][Safe][googleplus.com]
new: [....46] [ip4][..udp] [..192.168.1.128][36832] -> [142.250.181.238][..443]
detected: [....46] [ip4][..udp] [..192.168.1.128][36832] -> [142.250.181.238][..443] [QUIC.GooglePlus][Google][SocialNetwork][Fun][plus.google.com]
+ RISK: Unidirectional Traffic
update: [....44] [ip4][..udp] [..192.168.1.128][38642] -> [.216.58.212.142][..443] [QUIC.Google][Google][Web][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 512 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 10 / 46|skipped: 0|!detected: 0|guessed: 4|detection-updates: 48|updates: 1]
new: [....47] [ip4][..tcp] [..192.168.1.128][53978] -> [..208.85.40.158][..443]
@@ -232,9 +237,11 @@
idle: [....47] [ip4][..tcp] [..192.168.1.128][53978] -> [..208.85.40.158][..443]
idle: [....42] [ip4][..tcp] [..192.168.1.128][56836] -> [...13.107.42.13][..443]
idle: [....44] [ip4][..udp] [..192.168.1.128][38642] -> [.216.58.212.142][..443] [QUIC.Google][Google][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....43] [ip4][..tcp] [..192.168.1.128][45014] -> [129.226.107.210][..443]
idle: [....41] [ip4][..tcp] [..192.168.1.128][33102] -> [...13.81.118.91][..443]
idle: [....46] [ip4][..udp] [..192.168.1.128][36832] -> [142.250.181.238][..443] [QUIC.GooglePlus][Google][SocialNetwork][Fun]
+ RISK: Unidirectional Traffic
idle: [....38] [ip4][..tcp] [..192.168.1.128][57878] -> [.52.113.194.132][..443]
idle: [....37] [ip4][..tcp] [..192.168.1.128][45898] -> [..15.160.39.187][..443]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/skinny.pcap.out b/test/results/flow-info/default/skinny.pcap.out
index 60d0e9db5..f80564046 100644
--- a/test/results/flow-info/skinny.pcap.out
+++ b/test/results/flow-info/default/skinny.pcap.out
@@ -3,8 +3,10 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [.192.168.195.58][49399] -> [.192.168.193.12][.2000] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [.192.168.195.58][49399] -> [.192.168.193.12][.2000] [CiscoSkinny][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..tcp] [.192.168.193.12][.2000] -> [.192.168.195.50][51532] [MIDSTREAM]
detected: [.....2] [ip4][..tcp] [.192.168.193.12][.2000] -> [.192.168.195.50][51532] [CiscoSkinny][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
analyse: [.....1] [ip4][..tcp] [.192.168.195.58][49399] -> [.192.168.193.12][.2000] [CiscoSkinny][Unknown][VoIP][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 3.610| 0.245| 0.877| 769437.794| 1.500]
@@ -77,6 +79,7 @@
[ENTROPIES...: 4.9,5.0,5.1,5.2,5.8,5.2,4.8,5.0,5.2,4.8,4.8,4.9,4.7,4.5,4.6,4.6,4.5,4.5,4.3,4.4,4.6,4.4,4.4,4.5,4.8,4.7,4.7,3.9,4.3,5.2,5.6,5.5]
new: [.....8] [ip4][..tcp] [.192.168.195.58][50917] -> [.....10.16.2.25][.2000] [MIDSTREAM]
detected: [.....8] [ip4][..tcp] [.192.168.195.58][50917] -> [.....10.16.2.25][.2000] [CiscoSkinny][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
analyse: [.....2] [ip4][..tcp] [.192.168.193.12][.2000] -> [.192.168.195.50][51532] [CiscoSkinny][Unknown][VoIP][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 7.046| 0.705| 1.877| 3523893.789| 2.200]
@@ -89,13 +92,18 @@
[ENTROPIES...: 4.2,4.7,4.6,4.6,4.3,4.5,4.2,4.5,4.6,4.1,4.5,4.3,4.4,3.3,4.4,2.7,2.6,4.4,2.7,4.4,3.8,4.8,4.5,4.0,3.9,4.6,4.0,4.6,4.5,4.6,4.4,4.6]
new: [.....9] [ip4][.icmp] [.192.168.195.50] -> [.192.168.195.58]
detected: [.....9] [ip4][.icmp] [.192.168.195.50] -> [.192.168.195.58] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....9] [ip4][.icmp] [.192.168.195.50] -> [.192.168.195.58] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..tcp] [.192.168.195.58][49399] -> [.192.168.193.12][.2000] [CiscoSkinny][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..tcp] [.192.168.193.12][.2000] -> [.192.168.195.50][51532] [CiscoSkinny][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....5] [ip4][..udp] [.192.168.195.50][17726] -> [.192.168.193.24][.9399] [RTP][Unknown][Media][Acceptable]
idle: [.....7] [ip4][..udp] [.192.168.195.50][17732] -> [.192.168.193.24][.9400] [RTP][Unknown][Media][Acceptable]
idle: [.....3] [ip4][..udp] [.192.168.195.58][32150] -> [.192.168.193.24][.9395] [RTP][Unknown][Media][Acceptable]
idle: [.....6] [ip4][..udp] [.192.168.195.58][32152] -> [.192.168.193.24][.9396] [RTP][Unknown][Media][Acceptable]
idle: [.....4] [ip4][..udp] [.192.168.195.58][32144] -> [.192.168.195.50][17718] [RTP][Unknown][Media][Acceptable]
idle: [.....8] [ip4][..tcp] [.192.168.195.58][50917] -> [.....10.16.2.25][.2000] [CiscoSkinny][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/skype-conference-call.pcap.out b/test/results/flow-info/default/skype-conference-call.pcap.out
index 83759e2ec..3c53e65de 100644
--- a/test/results/flow-info/skype-conference-call.pcap.out
+++ b/test/results/flow-info/default/skype-conference-call.pcap.out
@@ -3,7 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [...192.168.2.20][49282] -> [...104.46.40.49][60642]
detected: [.....1] [ip4][..udp] [...192.168.2.20][49282] -> [...104.46.40.49][60642] [STUN.Skype_TeamsCall][Azure][VoIP][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
analyse: [.....1] [ip4][..udp] [...192.168.2.20][49282] -> [...104.46.40.49][60642] [STUN.Skype_TeamsCall][Azure][VoIP][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.100| 0.011| 0.022| 503.840| 3.000]
@@ -15,5 +15,5 @@
[PKTLENS.....: 132,132,100,100,132,100,136,138,131,123,195,63,155,155,155,155,155,155,155,155,155,155,100,71,943,943,943,943,943,943,155,121]
[ENTROPIES...: 5.5,5.4,5.7,5.6,5.4,5.7,5.6,6.5,6.5,6.4,6.8,5.2,6.5,6.5,6.6,6.6,6.5,6.5,6.4,6.6,6.5,6.5,5.6,5.6,7.8,7.8,7.8,7.8,7.8,7.8,6.6,6.3]
idle: [.....1] [ip4][..udp] [...192.168.2.20][49282] -> [...104.46.40.49][60642] [STUN.Skype_TeamsCall][Azure][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/skype.pcap.out b/test/results/flow-info/default/skype.pcap.out
index 00c056c7e..e4d5f3760 100644
--- a/test/results/flow-info/skype.pcap.out
+++ b/test/results/flow-info/default/skype.pcap.out
@@ -3,31 +3,43 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [...192.168.1.34][49163] -> [....192.168.1.1][...53]
detected: [.....1] [ip4][..udp] [...192.168.1.34][49163] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][b.config.skype.com]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..udp] [...192.168.1.34][57406] -> [....192.168.1.1][...53]
detected: [.....2] [ip4][..udp] [...192.168.1.34][57406] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][b.config.skype.com]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..udp] [...192.168.1.34][55711] -> [....192.168.1.1][...53]
detected: [.....3] [ip4][..udp] [...192.168.1.34][55711] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][conn.skype.akadns.net]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..udp] [...192.168.1.34][52850] -> [....192.168.1.1][...53]
detected: [.....4] [ip4][..udp] [...192.168.1.34][52850] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][conn.skype.akadns.net]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][..udp] [...192.168.1.34][54396] -> [....192.168.1.1][...53]
detected: [.....5] [ip4][..udp] [...192.168.1.34][54396] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][api.skype.com]
+ RISK: Unidirectional Traffic
new: [.....6] [ip4][..udp] [...192.168.1.34][65426] -> [....192.168.1.1][...53]
detected: [.....6] [ip4][..udp] [...192.168.1.34][65426] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][api.skype.com]
+ RISK: Unidirectional Traffic
new: [.....7] [ip4][..udp] [...192.168.1.34][64085] -> [....192.168.1.1][...53]
detected: [.....7] [ip4][..udp] [...192.168.1.34][64085] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][e7768.b.akamaiedge.net]
+ RISK: Unidirectional Traffic
new: [.....8] [ip4][..udp] [...192.168.1.34][58681] -> [....192.168.1.1][...53]
detected: [.....8] [ip4][..udp] [...192.168.1.34][58681] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][db3msgr5011709.gateway.messenger.live.com]
+ RISK: Unidirectional Traffic
new: [.....9] [ip4][..tcp] [...192.168.1.34][50026] -> [...65.55.223.33][40002]
new: [....10] [ip4][..udp] [...192.168.1.34][49793] -> [....192.168.1.1][...53]
detected: [....10] [ip4][..udp] [...192.168.1.34][49793] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][dsn4.d.skype.net]
+ RISK: Unidirectional Traffic
new: [....11] [ip4][..udp] [...192.168.1.34][65045] -> [....192.168.1.1][...53]
detected: [....11] [ip4][..udp] [...192.168.1.34][65045] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][dsn4.d.skype.net]
+ RISK: Unidirectional Traffic
detection-update: [.....7] [ip4][..udp] [...192.168.1.34][64085] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][e7768.b.akamaiedge.net]
new: [....12] [ip4][..tcp] [...192.168.1.34][50027] -> [...23.223.73.34][..443]
new: [....13] [ip4][..udp] [...192.168.1.34][49990] -> [....192.168.1.1][...53]
detected: [....13] [ip4][..udp] [...192.168.1.34][49990] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][335.0.7.7.3.rst6.r.skype.net]
+ RISK: Unidirectional Traffic
new: [....14] [ip4][..udp] [...192.168.1.34][57288] -> [....192.168.1.1][...53]
detected: [....14] [ip4][..udp] [...192.168.1.34][57288] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][335.0.7.7.3.rst6.r.skype.net]
+ RISK: Unidirectional Traffic
detection-update: [.....8] [ip4][..udp] [...192.168.1.34][58681] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][db3msgr5011709.gateway.messenger.live.com]
detected: [....12] [ip4][..tcp] [...192.168.1.34][50027] -> [...23.223.73.34][..443] [TLS.Skype_Teams][Unknown][VoIP][Acceptable][apps.skypeassets.com]
RISK: TLS (probably) Not Carrying HTTPS
@@ -38,8 +50,10 @@
RISK: Obsolete TLS (v1.1 or older)
new: [....16] [ip4][..udp] [...192.168.1.34][49903] -> [....192.168.1.1][...53]
detected: [....16] [ip4][..udp] [...192.168.1.34][49903] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][ui.skype.com]
+ RISK: Unidirectional Traffic
new: [....17] [ip4][..udp] [...192.168.1.34][51879] -> [....192.168.1.1][...53]
detected: [....17] [ip4][..udp] [...192.168.1.34][51879] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][e4593.g.akamaiedge.net]
+ RISK: Unidirectional Traffic
detection-update: [....17] [ip4][..udp] [...192.168.1.34][51879] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][e4593.g.akamaiedge.net]
new: [....18] [ip4][..tcp] [...192.168.1.34][50029] -> [..23.206.33.166][..443]
detected: [....18] [ip4][..tcp] [...192.168.1.34][50029] -> [..23.206.33.166][..443] [TLS.Skype_Teams][Unknown][VoIP][Acceptable][apps.skype.com]
@@ -57,54 +71,78 @@
new: [....19] [ip4][..tcp] [...192.168.1.34][50030] -> [...65.55.223.33][..443]
new: [....20] [ip4][..udp] [...192.168.1.34][60288] -> [....192.168.1.1][...53]
detected: [....20] [ip4][..udp] [...192.168.1.34][60288] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][pipe.prd.skypedata.akadns.net]
+ RISK: Unidirectional Traffic
new: [....21] [ip4][..udp] [...192.168.1.34][57726] -> [....192.168.1.1][...53]
detected: [....21] [ip4][..udp] [...192.168.1.34][57726] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][pipe.prd.skypedata.akadns.net]
+ RISK: Unidirectional Traffic
new: [....22] [ip4][..udp] [..192.168.0.254][.1025] -> [239.255.255.250][.1900]
detected: [....22] [ip4][..udp] [..192.168.0.254][.1025] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
new: [....23] [ip4][..tcp] [.108.160.170.46][..443] -> [...192.168.1.34][49445] [MIDSTREAM]
detected: [....23] [ip4][..tcp] [.108.160.170.46][..443] -> [...192.168.1.34][49445] [TLS][Dropbox][Web][Safe]
+ RISK: Unidirectional Traffic
new: [....24] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.166][40022]
detected: [....24] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.166][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....25] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.155][40020]
detected: [....25] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.155][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....26] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.142][40023]
detected: [....26] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.142][40023] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....27] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.15][40024]
detected: [....27] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.15][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....28] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.46][40027]
detected: [....28] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.46][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....29] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.15][40026]
detected: [....29] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.15][40026] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....30] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.160][40028]
detected: [....30] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.160][40028] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....31] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.28][40009]
detected: [....31] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.28][40009] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....32] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.176][40022]
detected: [....32] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.176][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....33] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.15][40027]
detected: [....33] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.15][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....34] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.165][40020]
detected: [....34] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.165][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....35] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.150][40004]
detected: [....35] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.150][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....36] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.24][40001]
detected: [....36] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.24][40001] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....37] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.48][40008]
detected: [....37] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.48][40008] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....38] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.42][40024]
detected: [....38] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.42][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....39] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.146][33033]
detected: [....39] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....40] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.175][40006]
detected: [....40] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.175][40006] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....41] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.162][40004]
detected: [....41] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.162][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....42] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.33][40011]
detected: [....42] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.33][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....43] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.172][40010]
detected: [....43] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.172][40010] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....44] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.160][40029]
detected: [....44] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.160][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....45] [ip4][..udp] [...192.168.1.34][17500] -> [255.255.255.255][17500]
detected: [....45] [ip4][..udp] [...192.168.1.34][17500] -> [255.255.255.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
new: [....46] [ip4][..udp] [...192.168.1.34][17500] -> [..192.168.1.255][17500]
@@ -118,309 +156,445 @@
new: [....51] [ip4][..tcp] [...192.168.1.34][50034] -> [.157.55.130.140][40033]
new: [....52] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.145][40027]
detected: [....52] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.145][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....53] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.140][40012]
detected: [....53] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.140][40012] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....54] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.150][40004]
detected: [....54] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.150][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....55] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.25][40028]
detected: [....55] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.25][40028] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....56] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.153][40024]
detected: [....56] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.153][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....57] [ip4][..tcp] [...192.168.1.34][50035] -> [213.199.179.175][40021]
new: [....58] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.38][40015]
detected: [....58] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.38][40015] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....59] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.175][40008]
detected: [....59] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.175][40008] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....60] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.43][40002]
detected: [....60] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.43][40002] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....61] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.161][40012]
detected: [....61] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.161][40012] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....62] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.17][40022]
detected: [....62] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.17][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....63] [ip4][..tcp] [...192.168.1.34][50036] -> [...157.56.52.44][..443]
new: [....64] [ip4][..tcp] [...192.168.1.34][50037] -> [..157.55.56.170][..443]
new: [....65] [ip4][..tcp] [...192.168.1.34][50038] -> [.157.55.130.140][..443]
new: [....66] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.18][33033]
detected: [....66] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.18][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....67] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.154][40005]
detected: [....67] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.154][40005] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....68] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.45][40012]
detected: [....68] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.45][40012] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....69] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.24][40001]
detected: [....69] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.24][40001] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....70] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.45][40012]
detected: [....70] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.45][40012] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....71] [ip4][..tcp] [...192.168.1.34][50039] -> [213.199.179.175][..443]
new: [....72] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.17][40022]
detected: [....72] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.17][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....73] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.159][40009]
detected: [....73] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.159][40009] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....74] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.142][40025]
detected: [....74] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.142][40025] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....75] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.143][40030]
detected: [....75] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.143][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....76] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.21][40004]
detected: [....76] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.21][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....77] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.151][40027]
detected: [....77] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.151][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....78] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.17][40013]
detected: [....78] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.17][40013] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....79] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.170][40011]
detected: [....79] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.170][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....80] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.168][40007]
detected: [....80] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.168][40007] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....81] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.44][40031]
detected: [....81] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.44][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....82] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.152][40001]
detected: [....82] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.152][40001] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....83] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.146][33033]
detected: [....83] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....84] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.143][40018]
detected: [....84] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.143][40018] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....85] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.25][40028]
detected: [....85] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.25][40028] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....86] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.151][40027]
detected: [....86] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.151][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....87] [ip4][..tcp] [...192.168.1.34][50044] -> [.157.55.130.167][40031]
new: [....88] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.166][40022]
detected: [....88] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.166][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....89] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.155][40004]
detected: [....89] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.155][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....90] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.27][40027]
detected: [....90] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.27][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....91] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.173][40012]
detected: [....91] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.173][40012] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....92] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.157][40010]
detected: [....92] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.157][40010] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....93] [ip4][....2] [..192.168.0.254] -> [......224.0.0.1]
detected: [....93] [ip4][....2] [..192.168.0.254] -> [......224.0.0.1] [IGMP][Unknown][Network][Acceptable]
new: [....94] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.165][40007]
detected: [....94] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.165][40007] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....95] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.20][40033]
detected: [....95] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.20][40033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....96] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.148][40010]
detected: [....96] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.148][40010] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....97] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.148][40029]
detected: [....97] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.148][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....98] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.141][40020]
detected: [....98] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.141][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....99] [ip4][..tcp] [...192.168.1.34][50045] -> [.157.55.130.167][..443]
new: [...100] [ip4][....2] [...192.168.1.92] -> [....224.0.0.251]
detected: [...100] [ip4][....2] [...192.168.1.92] -> [....224.0.0.251] [IGMP][Unknown][Network][Acceptable]
new: [...101] [ip4][..tcp] [...192.168.1.34][50046] -> [.157.55.130.150][40011]
new: [...102] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.24][40032]
detected: [...102] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.24][40032] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...103] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.175][40013]
detected: [...103] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.175][40013] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...104] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.146][33033]
detected: [...104] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...105] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.145][40027]
detected: [...105] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.145][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...106] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.43][40001]
detected: [...106] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.43][40001] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...107] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.44][40013]
detected: [...107] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.44][40013] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...108] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.26][40026]
detected: [...108] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.26][40026] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...109] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.155][40004]
detected: [...109] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.155][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...110] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.41][40027]
detected: [...110] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.41][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...111] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.47][40029]
detected: [...111] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.47][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...112] [ip4][..tcp] [...192.168.1.34][50048] -> [.157.55.130.150][..443]
new: [...113] [ip4][..tcp] [...192.168.1.34][50049] -> [.157.55.130.166][40021]
new: [...114] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.141][40015]
detected: [...114] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.141][40015] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...115] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.168][40006]
detected: [...115] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.168][40006] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...116] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.142][40023]
detected: [...116] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.142][40023] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...117] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.143][40022]
detected: [...117] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.143][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...118] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.33][40011]
detected: [...118] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.33][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...119] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.155][40004]
detected: [...119] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.155][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...120] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.143][40017]
detected: [...120] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.143][40017] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...121] [ip4][..udp] [...192.168.1.92][57621] -> [..192.168.1.255][57621]
detected: [...121] [ip4][..udp] [...192.168.1.92][57621] -> [..192.168.1.255][57621] [Spotify][Unknown][Music][Fun]
new: [...122] [ip4][..tcp] [...192.168.1.34][50051] -> [.157.55.130.166][..443]
new: [...123] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.168][40006]
detected: [...123] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.168][40006] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...124] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.18][33033]
detected: [...124] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.18][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...125] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.154][40034]
detected: [...125] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.154][40034] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...126] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.146][40030]
detected: [...126] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.146][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...127] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.32][40009]
detected: [...127] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.32][40009] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...128] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.141][40004]
detected: [...128] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.141][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...129] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.28][40026]
detected: [...129] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.28][40026] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...130] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.161][40011]
detected: [...130] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.161][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...131] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.144][40034]
detected: [...131] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.144][40034] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...132] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.19][40001]
detected: [...132] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.19][40001] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...133] [ip4][..tcp] [...192.168.1.34][50053] -> [..157.55.56.146][40030]
new: [...134] [ip4][..tcp] [...192.168.1.34][50054] -> [.157.55.130.153][40005]
new: [...135] [ip4][..tcp] [...192.168.1.34][50055] -> [..111.221.74.47][40030]
new: [...136] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.173][40017]
detected: [...136] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.173][40017] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...137] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.153][40023]
detected: [...137] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.153][40023] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...138] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.149][40030]
detected: [...138] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.149][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...139] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.146][40026]
detected: [...139] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.146][40026] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...140] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.143][40022]
detected: [...140] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.143][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...141] [ip4][..tcp] [...192.168.1.34][50056] -> [..157.55.56.146][..443]
new: [...142] [ip4][..tcp] [...192.168.1.34][50057] -> [.157.55.130.153][..443]
new: [...143] [ip4][..tcp] [...192.168.1.34][50058] -> [..111.221.74.47][..443]
new: [...144] [ip4][..tcp] [...192.168.1.34][50059] -> [..111.221.74.38][40015]
new: [...145] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.21][40027]
detected: [...145] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.21][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...146] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.140][40003]
detected: [...146] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.140][40003] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...147] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.146][33033]
detected: [...147] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...148] [ip4][..tcp] [...192.168.1.34][50024] -> [..17.172.100.36][..443] [MIDSTREAM]
new: [...149] [ip4][..udp] [...192.168.1.34][55159] -> [....192.168.1.1][...53]
detected: [...149] [ip4][..udp] [...192.168.1.34][55159] -> [....192.168.1.1][...53] [DNS.Microsoft][Unknown][Network][Safe][a.config.skype.trafficmanager.net]
+ RISK: Unidirectional Traffic
new: [...150] [ip4][..udp] [...192.168.1.34][63108] -> [....192.168.1.1][...53]
detected: [...150] [ip4][..udp] [...192.168.1.34][63108] -> [....192.168.1.1][...53] [DNS.Microsoft][Unknown][Network][Safe][a.config.skype.trafficmanager.net]
+ RISK: Unidirectional Traffic
new: [...151] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.147][40020]
detected: [...151] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.147][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...152] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.165][40020]
detected: [...152] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.165][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...153] [ip4][..tcp] [...192.168.1.34][50063] -> [..111.221.74.38][..443]
new: [...154] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.166][40011]
detected: [...154] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.166][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...155] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.165][40026]
detected: [...155] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.165][40026] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...156] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.157][40013]
detected: [...156] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.157][40013] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...157] [ip4][..udp] [...192.168.1.34][58458] -> [....192.168.1.1][...53]
detected: [...157] [ip4][..udp] [...192.168.1.34][58458] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][pipe.prd.skypedata.akadns.net]
+ RISK: Unidirectional Traffic
new: [...158] [ip4][..udp] [...192.168.1.34][49360] -> [....192.168.1.1][...53]
detected: [...158] [ip4][..udp] [...192.168.1.34][49360] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][pipe.prd.skypedata.akadns.net]
+ RISK: Unidirectional Traffic
new: [...159] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.145][40022]
detected: [...159] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.145][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...160] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.26][40004]
detected: [...160] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.26][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...161] [ip4][..tcp] [...192.168.1.34][50065] -> [...65.55.223.12][40031]
new: [...162] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.151][40017]
detected: [...162] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.151][40017] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...163] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.170][40011]
detected: [...163] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.170][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...164] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.176][40020]
detected: [...164] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.176][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...165] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.148][40010]
detected: [...165] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.148][40010] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...166] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.158][40031]
detected: [...166] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.158][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...167] [ip4][..tcp] [...192.168.1.34][50066] -> [...65.55.223.12][..443]
new: [...168] [ip4][..tcp] [...192.168.1.34][50067] -> [..157.55.56.160][40027]
new: [...169] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.162][40029]
detected: [...169] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.162][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...170] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.16][40032]
detected: [...170] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.16][40032] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...171] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.159][40021]
detected: [...171] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.159][40021] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...172] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.146][33033]
detected: [...172] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...173] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.28][40014]
detected: [...173] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.28][40014] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...174] [ip4][..tcp] [...192.168.1.34][50069] -> [..157.55.56.160][..443]
new: [...175] [ip4][..udp] [...192.168.1.34][54343] -> [....192.168.1.1][...53]
detected: [...175] [ip4][..udp] [...192.168.1.34][54343] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][335.0.7.7.3.rst13.r.skype.net]
+ RISK: Unidirectional Traffic
new: [...176] [ip4][..udp] [...192.168.1.34][58368] -> [....192.168.1.1][...53]
detected: [...176] [ip4][..udp] [...192.168.1.34][58368] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][335.0.7.7.3.rst13.r.skype.net]
+ RISK: Unidirectional Traffic
new: [...177] [ip4][..tcp] [...192.168.1.34][50070] -> [.157.55.130.170][40018]
new: [...178] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.148][40019]
detected: [...178] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.148][40019] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...179] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.37][40032]
detected: [...179] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.37][40032] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...180] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.154][40017]
detected: [...180] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.154][40017] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...181] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.172][40019]
detected: [...181] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.172][40019] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...182] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.40][40018]
detected: [...182] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.40][40018] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...183] [ip4][..tcp] [...192.168.1.34][50072] -> [.157.55.130.170][..443]
new: [...184] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.12][40031]
detected: [...184] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.12][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...185] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.156][40034]
detected: [...185] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.156][40034] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...186] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.31][40021]
detected: [...186] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.31][40021] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...187] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.29][40024]
detected: [...187] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.29][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...188] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.147][40019]
detected: [...188] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.147][40019] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...189] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.168][40006]
detected: [...189] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.168][40006] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...190] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.29][40010]
detected: [...190] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.29][40010] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...191] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.166][40015]
detected: [...191] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.166][40015] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...192] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.159][40009]
detected: [...192] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.159][40009] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...193] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.18][33033]
detected: [...193] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.18][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...194] [ip4][..tcp] [...192.168.1.34][50074] -> [.157.55.130.173][40003]
new: [...195] [ip4][..tcp] [...192.168.1.34][50075] -> [213.199.179.142][40003]
new: [...196] [ip4][..tcp] [...192.168.1.34][50076] -> [.157.55.235.156][40014]
new: [...197] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.151][40029]
detected: [...197] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.151][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...198] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.172][40032]
detected: [...198] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.172][40032] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...199] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.152][40023]
detected: [...199] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.152][40023] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....4] [ip4][..udp] [...192.168.1.34][52850] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....6] [ip4][..udp] [...192.168.1.34][65426] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....14] [ip4][..udp] [...192.168.1.34][57288] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [...192.168.1.34][49163] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....2] [ip4][..udp] [...192.168.1.34][57406] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....21] [ip4][..udp] [...192.168.1.34][57726] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [...192.168.1.34][55711] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....7] [ip4][..udp] [...192.168.1.34][64085] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
update: [....10] [ip4][..udp] [...192.168.1.34][49793] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....17] [ip4][..udp] [...192.168.1.34][51879] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
update: [....16] [ip4][..udp] [...192.168.1.34][49903] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....13] [ip4][..udp] [...192.168.1.34][49990] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....20] [ip4][..udp] [...192.168.1.34][60288] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....5] [ip4][..udp] [...192.168.1.34][54396] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....8] [ip4][..udp] [...192.168.1.34][58681] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....11] [ip4][..udp] [...192.168.1.34][65045] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...200] [ip4][..tcp] [...192.168.1.34][50077] -> [.157.55.130.176][40022]
new: [...201] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.145][40024]
detected: [...201] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.145][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...202] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.165][40020]
detected: [...202] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.165][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...203] [ip4][..tcp] [...192.168.1.34][50078] -> [.157.55.130.173][..443]
new: [...204] [ip4][..tcp] [...192.168.1.34][50079] -> [213.199.179.142][..443]
new: [...205] [ip4][..tcp] [...192.168.1.34][50080] -> [.157.55.235.156][..443]
new: [...206] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.145][40027]
detected: [...206] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.145][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...207] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.160][40027]
detected: [...207] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.160][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...208] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.155][40003]
detected: [...208] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.155][40003] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...209] [ip4][..tcp] [...192.168.1.34][50081] -> [.157.55.130.176][..443]
new: [...210] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.146][33033]
detected: [...210] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...211] [ip4][..tcp] [...192.168.1.34][50086] -> [.111.221.77.142][40023]
new: [...212] [ip4][..tcp] [...192.168.1.34][50087] -> [.111.221.77.142][..443]
new: [...213] [ip4][..tcp] [...192.168.1.34][50088] -> [.157.55.235.146][33033]
new: [...214] [ip4][..udp] [...192.168.1.34][63321] -> [....192.168.1.1][...53]
detected: [...214] [ip4][..udp] [...192.168.1.34][63321] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][e4593.g.akamaiedge.net]
+ RISK: Unidirectional Traffic
detection-update: [...214] [ip4][..udp] [...192.168.1.34][63321] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][e4593.g.akamaiedge.net]
new: [...215] [ip4][..tcp] [...192.168.1.34][50090] -> [..23.206.33.166][..443]
detected: [...215] [ip4][..tcp] [...192.168.1.34][50090] -> [..23.206.33.166][..443] [TLS.Skype_Teams][Unknown][VoIP][Acceptable][apps.skype.com]
@@ -428,17 +602,28 @@
new: [...216] [ip4][..tcp] [...192.168.1.34][50091] -> [.157.55.235.146][..443]
new: [...217] [ip4][..tcp] [...192.168.1.34][50092] -> [.157.55.130.155][40020]
update: [....31] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.28][40009] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....33] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.15][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....22] [ip4][..udp] [..192.168.0.254][.1025] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
update: [....34] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.165][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....24] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.166][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....26] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.142][40023] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....27] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.15][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....28] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.46][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....30] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.160][40028] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....29] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.15][40026] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....25] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.155][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....32] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.176][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...218] [ip4][..tcp] [...192.168.1.34][50094] -> [.157.55.130.155][..443]
new: [...219] [ip4][..tcp] [...192.168.1.34][50096] -> [..111.221.74.46][40027]
new: [...220] [ip4][..tcp] [...192.168.1.34][50097] -> [.157.55.235.176][40022]
@@ -459,59 +644,109 @@
[PKTLENS.....: 319,337,391,383,313,355,387,333,385,379,319,337,391,383,385,379,319,337,391,383,313,355,387,333,385,379,319,337,391,383,313,355]
[ENTROPIES...: 5.8,5.7,5.7,5.7,5.7,5.7,5.7,5.7,5.7,5.7,5.8,5.7,5.7,5.7,5.7,5.7,5.8,5.7,5.7,5.7,5.7,5.7,5.7,5.7,5.7,5.7,5.8,5.7,5.7,5.8,5.7,5.7]
update: [....69] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.24][40001] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....76] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.21][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....42] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.33][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....70] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.45][40012] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....78] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.17][40013] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....90] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.27][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....45] [ip4][..udp] [...192.168.1.34][17500] -> [255.255.255.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
update: [....47] [ip4][..udp] [...192.168.1.92][17500] -> [255.255.255.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
update: [....46] [ip4][..udp] [...192.168.1.34][17500] -> [..192.168.1.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
update: [....48] [ip4][..udp] [...192.168.1.92][17500] -> [..192.168.1.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
update: [....66] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.18][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....54] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.150][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....73] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.159][40009] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....96] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.148][40010] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....79] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.170][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....53] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.140][40012] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....84] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.143][40018] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....83] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....39] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....36] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.24][40001] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....80] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.168][40007] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....37] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.48][40008] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....43] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.172][40010] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....98] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.141][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....62] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.17][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....38] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.42][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....56] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.153][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....52] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.145][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....77] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.151][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....55] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.25][40028] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....97] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.148][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....81] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.44][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....60] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.43][40002] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....68] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.45][40012] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....58] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.38][40015] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....72] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.17][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....85] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.25][40028] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....95] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.20][40033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....82] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.152][40001] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....41] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.162][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....67] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.154][40005] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....40] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.175][40006] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....59] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.175][40008] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....92] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.157][40010] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....61] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.161][40012] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....91] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.173][40012] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....88] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.166][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....74] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.142][40025] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....86] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.151][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....44] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.160][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....75] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.143][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....35] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.150][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....89] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.155][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....94] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.165][40007] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...227] [ip4][..tcp] [...192.168.1.34][50108] -> [...157.56.52.28][40009]
new: [...228] [ip4][..udp] [...192.168.1.34][49485] -> [239.255.255.250][.1900]
detected: [...228] [ip4][..udp] [...192.168.1.34][49485] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
@@ -519,8 +754,10 @@
detected: [...229] [ip4][..udp] [...192.168.1.34][51066] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
new: [...230] [ip4][..udp] [...192.168.1.34][54067] -> [....192.168.1.1][.5351]
detected: [...230] [ip4][..udp] [...192.168.1.34][54067] -> [....192.168.1.1][.5351] [NAT-PMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...231] [ip4][.icmp] [....192.168.1.1] -> [...192.168.1.34]
detected: [...231] [ip4][.icmp] [....192.168.1.1] -> [...192.168.1.34] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...232] [ip4][..tcp] [...192.168.1.34][50109] -> [.91.190.216.125][12350]
analyse: [...227] [ip4][..tcp] [...192.168.1.34][50108] -> [...157.56.52.28][40009]
min| max| avg| stddev| variance| entropy
@@ -532,24 +769,29 @@
[IATS(ms)....: 244.0,244.1,0.5,204.3,761.0,964.7,0.5,202.0,201.5,40.2,40.2,162.2,162.2,40.2,40.2,200.9,0.0,201.0,204.1,204.1,0.1,240.8,240.6,207.5,0.0,207.6,3.0,4.5,199.6,198.0,41.6]
[PKTLENS.....: 64,60,52,124,52,109,52,60,60,52,52,88,120,52,52,91,52,55,52,196,52,56,52,661,52,56,52,1492,106,605,535,52]
[ENTROPIES...: 4.7,5.2,5.1,6.4,5.1,6.1,5.1,5.5,5.4,5.2,5.1,6.1,6.4,5.1,5.2,6.0,5.1,5.1,5.2,6.8,5.1,5.3,5.1,7.7,5.1,5.2,5.1,7.9,6.3,7.7,7.6,5.0]
- not-detected: [...227] [ip4][..tcp] [...192.168.1.34][50108] -> [...157.56.52.28][40009] [Unknown][Unknown][Unrated]
new: [...233] [ip4][..tcp] [...192.168.1.34][50110] -> [.91.190.216.125][12350]
new: [...234] [ip4][..udp] [...192.168.1.34][13021] -> [..176.26.55.167][63773]
detected: [...234] [ip4][..udp] [...192.168.1.34][13021] -> [..176.26.55.167][63773] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...235] [ip4][..udp] [...192.168.1.34][13021] -> [..76.185.207.12][45493]
detected: [...235] [ip4][..udp] [...192.168.1.34][13021] -> [..76.185.207.12][45493] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...236] [ip4][..udp] [...192.168.1.34][13021] -> [.176.97.100.249][26635]
detected: [...236] [ip4][..udp] [...192.168.1.34][13021] -> [.176.97.100.249][26635] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...237] [ip4][..udp] [...192.168.1.34][13021] -> [.....71.62.0.85][33647]
detected: [...237] [ip4][..udp] [...192.168.1.34][13021] -> [.....71.62.0.85][33647] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...238] [ip4][..udp] [...192.168.1.92][.5353] -> [....224.0.0.251][.5353]
detected: [...238] [ip4][..udp] [...192.168.1.92][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable][_afpovertcp._tcp.local]
new: [...239] [ip6][..udp] [...............fe80::c62c:3ff:fe06:49fe][.5353] -> [...............................ff02::fb][.5353]
detected: [...239] [ip6][..udp] [...............fe80::c62c:3ff:fe06:49fe][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable][_afpovertcp._tcp.local]
new: [...240] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.145][..443]
detected: [...240] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.145][..443] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...241] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.39][..443]
detected: [...241] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.39][..443] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...242] [ip4][..tcp] [...192.168.1.34][50111] -> [.91.190.216.125][..443]
new: [...243] [ip4][..tcp] [...192.168.1.34][50112] -> [...76.167.161.6][20274]
new: [...244] [ip4][..tcp] [...192.168.1.34][50113] -> [...71.238.7.203][18767]
@@ -571,17 +813,17 @@
[IATS(ms)....: 83.4,83.5,0.1,64.1,64.0,0.4,68.5,68.1,2.9,71.2,68.2,199.8,199.7,154.2,154.1,2.6,133.8,131.2,0.2,0.1,0.1,64.3,8.4,55.5,127.9,0.2,0.2,70.5,0.0,70.1,0.2]
[PKTLENS.....: 64,60,52,112,99,52,69,66,52,806,66,52,52,56,1235,52,609,152,130,80,119,109,52,52,132,52,80,73,347,52,52,79]
[ENTROPIES...: 4.7,5.3,5.2,6.3,6.2,5.2,5.5,5.4,5.1,7.7,5.5,5.1,5.1,5.3,7.9,5.1,7.6,6.6,6.4,5.7,6.4,6.3,5.2,5.2,6.4,5.2,5.9,5.7,7.3,5.2,5.1,5.7]
- not-detected: [...250] [ip4][..tcp] [...192.168.1.34][50119] -> [....86.31.35.30][59621] [Unknown][Unknown][Unrated]
new: [...253] [ip4][..tcp] [...192.168.1.34][50123] -> [...80.14.46.121][.4415]
new: [...254] [ip4][..tcp] [...192.168.1.34][50124] -> [..81.133.19.185][44431]
new: [...255] [ip4][..tcp] [..17.143.160.22][.5223] -> [...192.168.1.34][49447] [MIDSTREAM]
detected: [...255] [ip4][..tcp] [..17.143.160.22][.5223] -> [...192.168.1.34][49447] [TLS][Apple][Web][Safe]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [...256] [ip4][..tcp] [...192.168.1.34][50125] -> [.91.190.218.125][12350]
new: [...257] [ip4][..tcp] [...192.168.1.34][50126] -> [..91.190.216.23][12350]
new: [...258] [ip4][..tcp] [...192.168.1.34][50127] -> [...80.14.46.121][.4415]
new: [...259] [ip4][..udp] [...192.168.1.34][62454] -> [....192.168.1.1][...53]
detected: [...259] [ip4][..udp] [...192.168.1.34][62454] -> [....192.168.1.1][...53] [DNS.AppleiCloud][Unknown][Network][Acceptable][p05-keyvalueservice.icloud.com.akadns.net]
+ RISK: Unidirectional Traffic
detection-update: [...259] [ip4][..udp] [...192.168.1.34][62454] -> [....192.168.1.1][...53] [DNS.AppleiCloud][Unknown][Network][Acceptable][p05-keyvalueservice.icloud.com.akadns.net]
new: [...260] [ip4][..tcp] [...192.168.1.34][50128] -> [..17.172.100.36][..443]
detected: [...260] [ip4][..tcp] [...192.168.1.34][50128] -> [..17.172.100.36][..443] [TLS.AppleiCloud][Apple][Web][Acceptable][p05-keyvalueservice.icloud.com]
@@ -600,45 +842,82 @@
[PKTLENS.....: 64,46,40,273,46,132,77,40,40,46,77,666,606,46,46,46,46,373,76,40,40,1480,1207,66,40,40,659,618,46,46,373,76]
[ENTROPIES...: 4.6,5.0,4.8,6.0,4.6,6.1,5.8,4.8,4.8,4.8,5.7,7.7,7.7,4.6,4.6,4.7,4.5,7.4,5.7,4.7,4.8,7.9,7.8,5.5,4.8,4.8,7.7,7.6,4.6,4.6,7.4,5.8]
update: [...108] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.26][40026] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...111] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.47][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...104] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...121] [ip4][..udp] [...192.168.1.92][57621] -> [..192.168.1.255][57621] [Spotify][Unknown][Music][Fun]
update: [...128] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.141][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...109] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.155][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...115] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.168][40006] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...136] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.173][40017] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...147] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...124] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.18][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...132] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.19][40001] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...106] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.43][40001] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...146] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.140][40003] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...119] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.155][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...127] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.32][40009] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...117] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.143][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...138] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.149][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...118] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.33][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...107] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.44][40013] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...129] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.28][40026] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...110] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.41][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...145] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.21][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...102] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.24][40032] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...130] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.161][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...103] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.175][40013] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...120] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.143][40017] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...116] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.142][40023] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...137] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.153][40023] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...139] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.146][40026] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...105] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.145][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...131] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.144][40034] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...123] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.168][40006] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...114] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.141][40015] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...140] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.143][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...126] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.146][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...125] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.154][40034] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...262] [ip4][..udp] [...192.168.1.34][52742] -> [....192.168.1.1][...53]
detected: [...262] [ip4][..udp] [...192.168.1.34][52742] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][335.0.7.7.3.rst5.r.skype.net]
+ RISK: Unidirectional Traffic
new: [...263] [ip4][..udp] [...192.168.1.34][56387] -> [....192.168.1.1][...53]
detected: [...263] [ip4][..udp] [...192.168.1.34][56387] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][335.0.7.7.3.rst5.r.skype.net]
+ RISK: Unidirectional Traffic
analyse: [...251] [ip4][..tcp] [...192.168.1.34][50121] -> [...81.83.77.141][17639]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 1.782| 0.325| 0.510| 259840.393| 3.600]
@@ -649,16 +928,19 @@
[IATS(ms)....: 60.8,60.9,0.1,60.1,60.0,0.4,72.4,72.0,2.9,63.2,60.3,262.3,262.3,157.4,157.5,3.6,187.8,184.1,1.9,62.9,110.0,171.0,0.2,63.7,63.5,1468.1,1782.0,746.1,1060.0,1410.3,1410.3]
[PKTLENS.....: 64,60,52,97,113,52,68,66,52,805,66,52,52,56,1176,52,609,97,88,72,52,95,52,81,80,52,89,52,90,52,91,52]
[ENTROPIES...: 4.7,5.3,5.2,6.0,6.4,5.2,5.6,5.5,5.2,7.8,5.6,5.2,5.2,5.3,7.8,5.2,7.6,6.1,5.9,5.6,5.2,5.9,5.2,5.7,5.8,5.2,5.9,5.2,6.0,5.1,6.0,5.2]
- not-detected: [...251] [ip4][..tcp] [...192.168.1.34][50121] -> [...81.83.77.141][17639] [Unknown][Unknown][Unrated]
new: [...264] [ip4][..udp] [...192.168.1.34][52714] -> [....192.168.1.1][...53]
detected: [...264] [ip4][..udp] [...192.168.1.34][52714] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][b.config.skype.com]
+ RISK: Unidirectional Traffic
new: [...265] [ip4][..udp] [...192.168.1.34][51802] -> [....192.168.1.1][...53]
detected: [...265] [ip4][..udp] [...192.168.1.34][51802] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][b.config.skype.com]
+ RISK: Unidirectional Traffic
new: [...266] [ip4][..tcp] [...192.168.1.34][50130] -> [...212.161.8.36][13392]
new: [...267] [ip4][..udp] [...192.168.1.34][63421] -> [....192.168.1.1][...53]
detected: [...267] [ip4][..udp] [...192.168.1.34][63421] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][pipe.prd.skypedata.akadns.net]
+ RISK: Unidirectional Traffic
new: [...268] [ip4][..udp] [...192.168.1.34][65037] -> [....192.168.1.1][...53]
detected: [...268] [ip4][..udp] [...192.168.1.34][65037] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][pipe.prd.skypedata.akadns.net]
+ RISK: Unidirectional Traffic
new: [...269] [ip4][..tcp] [...192.168.1.34][50131] -> [...212.161.8.36][13392]
detected: [...269] [ip4][..tcp] [...192.168.1.34][50131] -> [...212.161.8.36][13392] [TLS][Unknown][Web][Safe]
RISK: Known Proto on Non Std Port
@@ -670,70 +952,131 @@
new: [...272] [ip4][..udp] [...192.168.1.92][50084] -> [239.255.255.250][.1900]
detected: [...272] [ip4][..udp] [...192.168.1.92][50084] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
update: [...150] [ip4][..udp] [...192.168.1.34][63108] -> [....192.168.1.1][...53] [DNS.Microsoft][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
update: [...179] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.37][40032] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...149] [ip4][..udp] [...192.168.1.34][55159] -> [....192.168.1.1][...53] [DNS.Microsoft][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
update: [...158] [ip4][..udp] [...192.168.1.34][49360] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...172] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...154] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.166][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...173] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.28][40014] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...180] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.154][40017] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...182] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.40][40018] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...152] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.165][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...164] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.176][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...186] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.31][40021] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...184] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.12][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...170] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.16][40032] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...176] [ip4][..udp] [...192.168.1.34][58368] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...175] [ip4][..udp] [...192.168.1.34][54343] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...157] [ip4][..udp] [...192.168.1.34][58458] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...160] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.26][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...165] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.148][40010] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...156] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.157][40013] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...162] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.151][40017] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...178] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.148][40019] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...181] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.172][40019] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...151] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.147][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...171] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.159][40021] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...159] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.145][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...155] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.165][40026] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...166] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.158][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...185] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.156][40034] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...163] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.170][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...169] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.162][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...273] [ip4][..udp] [...192.168.1.34][13021] -> [106.188.249.186][15120]
detected: [...273] [ip4][..udp] [...192.168.1.34][13021] -> [106.188.249.186][15120] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....4] [ip4][..udp] [...192.168.1.34][52850] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....6] [ip4][..udp] [...192.168.1.34][65426] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....14] [ip4][..udp] [...192.168.1.34][57288] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [...192.168.1.34][49163] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....2] [ip4][..udp] [...192.168.1.34][57406] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...193] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.18][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...210] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....21] [ip4][..udp] [...192.168.1.34][57726] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [...192.168.1.34][55711] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....7] [ip4][..udp] [...192.168.1.34][64085] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
update: [...201] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.145][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....10] [ip4][..udp] [...192.168.1.34][49793] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...197] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.151][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....17] [ip4][..udp] [...192.168.1.34][51879] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
update: [....16] [ip4][..udp] [...192.168.1.34][49903] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....13] [ip4][..udp] [...192.168.1.34][49990] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....20] [ip4][..udp] [...192.168.1.34][60288] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...192] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.159][40009] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...187] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.29][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....5] [ip4][..udp] [...192.168.1.34][54396] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....8] [ip4][..udp] [...192.168.1.34][58681] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...190] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.29][40010] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...208] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.155][40003] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...189] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.168][40006] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...191] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.166][40015] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...188] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.147][40019] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...202] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.165][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...207] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.160][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...198] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.172][40032] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...199] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.152][40023] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....11] [ip4][..udp] [...192.168.1.34][65045] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...206] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.145][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
analyse: [...248] [ip4][..tcp] [...192.168.1.34][50117] -> [...71.238.7.203][18767]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 25.524| 1.927| 6.197| 38401982.071| 2.000]
@@ -744,38 +1087,57 @@
[IATS(ms)....: 228.1,228.2,0.1,219.6,219.5,0.4,214.5,214.2,209.7,209.7,0.1,381.8,2061.0,2011.7,148.2,480.5,212.1,212.2,3.6,275.2,271.5,0.2,220.2,0.0,220.1,0.1,216.1,216.0,136.2,25387.6,25523.8]
[PKTLENS.....: 64,64,52,109,87,52,69,66,52,66,52,56,52,829,52,1076,52,142,52,609,94,120,79,52,98,52,81,108,52,52,67,52]
[ENTROPIES...: 4.6,4.7,4.9,6.2,5.9,5.3,5.7,5.6,5.3,5.7,5.3,5.3,5.2,7.8,5.1,7.8,5.2,6.5,5.1,7.7,5.9,6.4,5.9,5.2,6.1,5.2,5.9,6.1,5.3,5.3,5.8,5.3]
- not-detected: [...248] [ip4][..tcp] [...192.168.1.34][50117] -> [...71.238.7.203][18767] [Unknown][Unknown][Unrated]
new: [...274] [ip4][..udp] [...192.168.1.34][56886] -> [239.255.255.250][.1900]
detected: [...274] [ip4][..udp] [...192.168.1.34][56886] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
new: [...275] [ip4][..udp] [...192.168.1.34][64560] -> [239.255.255.250][.1900]
detected: [...275] [ip4][..udp] [...192.168.1.34][64560] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
new: [...276] [ip4][..udp] [...192.168.1.34][49511] -> [....192.168.1.1][.5351]
detected: [...276] [ip4][..udp] [...192.168.1.34][49511] -> [....192.168.1.1][.5351] [NAT-PMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...277] [ip4][..tcp] [...192.168.1.34][50134] -> [...157.56.53.47][12350]
update: [....31] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.28][40009] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....33] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.15][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...214] [ip4][..udp] [...192.168.1.34][63321] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
update: [...231] [ip4][.icmp] [....192.168.1.1] -> [...192.168.1.34] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....22] [ip4][..udp] [..192.168.0.254][.1025] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
update: [....34] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.165][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....24] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.166][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....26] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.142][40023] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....27] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.15][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....28] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.46][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....30] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.160][40028] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....29] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.15][40026] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....25] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.155][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....32] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.176][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...278] [ip4][....2] [....192.168.1.1] -> [......224.0.0.1]
detected: [...278] [ip4][....2] [....192.168.1.1] -> [......224.0.0.1] [IGMP][Unknown][Network][Acceptable]
new: [...279] [ip4][..udp] [...192.168.1.34][..123] -> [..17.253.48.245][..123]
detected: [...279] [ip4][..udp] [...192.168.1.34][..123] -> [..17.253.48.245][..123] [NTP][Apple][System][Acceptable]
+ RISK: Unidirectional Traffic
update: [....69] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.24][40001] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....76] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.21][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....42] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.33][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....70] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.45][40012] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....78] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.17][40013] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....90] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.27][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...228] [ip4][..udp] [...192.168.1.34][49485] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
update: [....45] [ip4][..udp] [...192.168.1.34][17500] -> [255.255.255.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
update: [....47] [ip4][..udp] [...192.168.1.92][17500] -> [255.255.255.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
@@ -785,139 +1147,263 @@
update: [...239] [ip6][..udp] [...............fe80::c62c:3ff:fe06:49fe][.5353] -> [...............................ff02::fb][.5353]
update: [...238] [ip4][..udp] [...192.168.1.92][.5353] -> [....224.0.0.251][.5353]
update: [....66] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.18][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....54] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.150][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....73] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.159][40009] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....96] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.148][40010] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....79] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.170][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....53] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.140][40012] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....84] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.143][40018] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....83] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....39] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...241] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.39][..443] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...240] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.145][..443] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....36] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.24][40001] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....80] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.168][40007] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...237] [ip4][..udp] [...192.168.1.34][13021] -> [.....71.62.0.85][33647] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....37] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.48][40008] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....43] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.172][40010] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...236] [ip4][..udp] [...192.168.1.34][13021] -> [.176.97.100.249][26635] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....98] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.141][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....62] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.17][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....38] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.42][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....56] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.153][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....52] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.145][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....77] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.151][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....55] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.25][40028] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....97] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.148][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....81] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.44][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...235] [ip4][..udp] [...192.168.1.34][13021] -> [..76.185.207.12][45493] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....60] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.43][40002] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....68] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.45][40012] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....58] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.38][40015] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....72] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.17][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....85] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.25][40028] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....95] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.20][40033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...234] [ip4][..udp] [...192.168.1.34][13021] -> [..176.26.55.167][63773] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....82] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.152][40001] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....41] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.162][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....67] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.154][40005] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....40] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.175][40006] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....59] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.175][40008] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....92] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.157][40010] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....61] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.161][40012] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....91] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.173][40012] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....88] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.166][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....74] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.142][40025] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....86] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.151][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...229] [ip4][..udp] [...192.168.1.34][51066] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
update: [....44] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.160][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....75] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.143][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....35] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.150][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....89] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.155][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....94] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.165][40007] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...280] [ip4][..tcp] [...192.168.1.34][50135] -> [...76.167.161.6][20274]
new: [...281] [ip4][..tcp] [...192.168.1.34][50136] -> [...71.238.7.203][18767]
new: [...282] [ip4][..tcp] [...192.168.1.34][50137] -> [..5.248.186.221][31010]
update: [...108] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.26][40026] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...111] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.47][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...104] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...267] [ip4][..udp] [...192.168.1.34][63421] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...121] [ip4][..udp] [...192.168.1.92][57621] -> [..192.168.1.255][57621] [Spotify][Unknown][Music][Fun]
update: [...265] [ip4][..udp] [...192.168.1.34][51802] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...128] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.141][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...109] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.155][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...115] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.168][40006] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...136] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.173][40017] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...147] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...124] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.18][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...132] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.19][40001] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...106] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.43][40001] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...146] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.140][40003] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...119] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.155][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...127] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.32][40009] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...117] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.143][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...138] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.149][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...259] [ip4][..udp] [...192.168.1.34][62454] -> [....192.168.1.1][...53] [DNS.AppleiCloud][Unknown][Network][Acceptable]
update: [...263] [ip4][..udp] [...192.168.1.34][56387] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...118] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.33][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...107] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.44][40013] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...129] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.28][40026] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...110] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.41][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...145] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.21][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...102] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.24][40032] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...130] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.161][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...103] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.175][40013] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...120] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.143][40017] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...116] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.142][40023] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...137] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.153][40023] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...139] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.146][40026] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...105] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.145][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...131] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.144][40034] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...264] [ip4][..udp] [...192.168.1.34][52714] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...123] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.168][40006] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...262] [ip4][..udp] [...192.168.1.34][52742] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...114] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.141][40015] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...268] [ip4][..udp] [...192.168.1.34][65037] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...140] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.143][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...126] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.146][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...125] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.154][40034] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...283] [ip4][..tcp] [...192.168.1.34][50138] -> [...71.238.7.203][18767]
new: [...284] [ip4][..tcp] [...192.168.1.34][50139] -> [..5.248.186.221][31010]
new: [...285] [ip4][..tcp] [...192.168.1.34][50140] -> [...76.167.161.6][20274]
update: [...150] [ip4][..udp] [...192.168.1.34][63108] -> [....192.168.1.1][...53] [DNS.Microsoft][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
update: [...179] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.37][40032] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...149] [ip4][..udp] [...192.168.1.34][55159] -> [....192.168.1.1][...53] [DNS.Microsoft][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
update: [...231] [ip4][.icmp] [....192.168.1.1] -> [...192.168.1.34] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...158] [ip4][..udp] [...192.168.1.34][49360] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...273] [ip4][..udp] [...192.168.1.34][13021] -> [106.188.249.186][15120] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...272] [ip4][..udp] [...192.168.1.92][50084] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
update: [...172] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...154] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.166][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...173] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.28][40014] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...180] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.154][40017] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...182] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.40][40018] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...152] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.165][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...164] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.176][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...186] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.31][40021] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...184] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.12][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...170] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.16][40032] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...176] [ip4][..udp] [...192.168.1.34][58368] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...175] [ip4][..udp] [...192.168.1.34][54343] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...157] [ip4][..udp] [...192.168.1.34][58458] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...160] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.26][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...165] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.148][40010] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...156] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.157][40013] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...162] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.151][40017] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...178] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.148][40019] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...181] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.172][40019] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...151] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.147][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...171] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.159][40021] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...159] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.145][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...155] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.165][40026] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...166] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.158][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...185] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.156][40034] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...163] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.170][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...169] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.162][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...286] [ip4][..tcp] [...192.168.1.34][50141] -> [...80.14.46.121][.4415]
new: [...287] [ip4][..tcp] [...192.168.1.34][50142] -> [...80.14.46.121][.4415]
new: [...288] [ip4][..tcp] [...192.168.1.34][50143] -> [.78.202.226.115][29059]
@@ -930,43 +1416,73 @@
not-detected: [.....9] [ip4][..tcp] [...192.168.1.34][50026] -> [...65.55.223.33][40002] [Unknown][Unknown][Unrated]
end: [.....9] [ip4][..tcp] [...192.168.1.34][50026] -> [...65.55.223.33][40002]
update: [.....4] [ip4][..udp] [...192.168.1.34][52850] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....6] [ip4][..udp] [...192.168.1.34][65426] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....14] [ip4][..udp] [...192.168.1.34][57288] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [...192.168.1.34][49163] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....2] [ip4][..udp] [...192.168.1.34][57406] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...193] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.18][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...210] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....21] [ip4][..udp] [...192.168.1.34][57726] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [...192.168.1.34][55711] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....7] [ip4][..udp] [...192.168.1.34][64085] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
update: [...201] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.145][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....10] [ip4][..udp] [...192.168.1.34][49793] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...197] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.151][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...275] [ip4][..udp] [...192.168.1.34][64560] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
update: [....17] [ip4][..udp] [...192.168.1.34][51879] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
update: [....16] [ip4][..udp] [...192.168.1.34][49903] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....13] [ip4][..udp] [...192.168.1.34][49990] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....20] [ip4][..udp] [...192.168.1.34][60288] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...192] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.159][40009] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...187] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.29][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....5] [ip4][..udp] [...192.168.1.34][54396] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...274] [ip4][..udp] [...192.168.1.34][56886] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
update: [.....8] [ip4][..udp] [...192.168.1.34][58681] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...190] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.29][40010] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...208] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.155][40003] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...189] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.168][40006] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...191] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.166][40015] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...188] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.147][40019] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...202] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.165][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...207] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.160][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...198] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.172][40032] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...199] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.152][40023] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....11] [ip4][..udp] [...192.168.1.34][65045] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [...206] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.145][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...276] [ip4][..udp] [...192.168.1.34][49511] -> [....192.168.1.1][.5351]
new: [...292] [ip4][..tcp] [...192.168.1.34][50146] -> [...157.56.53.51][..443]
new: [...293] [ip4][..udp] [...192.168.1.34][55893] -> [....192.168.1.1][...53]
detected: [...293] [ip4][..udp] [...192.168.1.34][55893] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][ui.skype.com]
+ RISK: Unidirectional Traffic
not-detected: [....50] [ip4][..tcp] [...192.168.1.34][50033] -> [..157.55.56.170][40015] [Unknown][Unknown][Unrated]
end: [....50] [ip4][..tcp] [...192.168.1.34][50033] -> [..157.55.56.170][40015]
not-detected: [....51] [ip4][..tcp] [...192.168.1.34][50034] -> [.157.55.130.140][40033] [Unknown][Unknown][Unrated]
@@ -978,18 +1494,29 @@
guessed: [....63] [ip4][..tcp] [...192.168.1.34][50036] -> [...157.56.52.44][..443] [TLS][Unknown][Web][Safe]
end: [....63] [ip4][..tcp] [...192.168.1.34][50036] -> [...157.56.52.44][..443]
update: [....31] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.28][40009] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....33] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.15][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...214] [ip4][..udp] [...192.168.1.34][63321] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
update: [....22] [ip4][..udp] [..192.168.0.254][.1025] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
update: [....34] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.165][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....24] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.166][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....26] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.142][40023] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....27] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.15][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....28] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.46][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....30] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.160][40028] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....29] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.15][40026] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....25] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.155][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....32] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.176][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
analyse: [...283] [ip4][..tcp] [...192.168.1.34][50138] -> [...71.238.7.203][18767]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 30.126| 1.349| 5.301| 28102044.418| 1.900]
@@ -1000,7 +1527,6 @@
[IATS(ms)....: 214.7,214.8,0.1,223.5,223.4,0.4,217.5,217.2,213.6,213.7,0.1,315.3,2988.5,3022.2,145.3,494.2,215.9,215.9,3.6,275.6,272.1,0.2,291.4,291.1,0.2,75.0,137.0,211.9,164.3,30125.6,821.1]
[PKTLENS.....: 64,64,52,92,87,52,69,66,52,66,52,56,52,828,52,1076,52,142,52,608,87,132,81,97,52,81,52,100,52,52,52,52]
[ENTROPIES...: 4.7,4.7,4.9,6.0,6.0,5.3,5.7,5.7,5.3,5.7,5.3,5.3,5.3,7.7,5.4,7.8,5.1,6.6,5.2,7.6,6.1,6.5,5.9,6.2,5.2,5.8,5.2,6.2,5.2,5.3,5.2,5.3]
- not-detected: [...283] [ip4][..tcp] [...192.168.1.34][50138] -> [...71.238.7.203][18767] [Unknown][Unknown][Unrated]
not-detected: [...221] [ip4][..tcp] [...192.168.1.34][50098] -> [...65.55.223.15][40026] [Unknown][Unknown][Unrated]
end: [...221] [ip4][..tcp] [...192.168.1.34][50098] -> [...65.55.223.15][40026]
not-detected: [...101] [ip4][..tcp] [...192.168.1.34][50046] -> [.157.55.130.150][40011] [Unknown][Unknown][Unrated]
@@ -1008,6 +1534,7 @@
not-detected: [...134] [ip4][..tcp] [...192.168.1.34][50054] -> [.157.55.130.153][40005] [Unknown][Unknown][Unrated]
end: [...134] [ip4][..tcp] [...192.168.1.34][50054] -> [.157.55.130.153][40005]
idle: [.....4] [ip4][..udp] [...192.168.1.34][52850] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [...113] [ip4][..tcp] [...192.168.1.34][50049] -> [.157.55.130.166][40021] [Unknown][Unknown][Unrated]
end: [...113] [ip4][..tcp] [...192.168.1.34][50049] -> [.157.55.130.166][40021]
not-detected: [....87] [ip4][..tcp] [...192.168.1.34][50044] -> [.157.55.130.167][40031] [Unknown][Unknown][Unrated]
@@ -1017,6 +1544,7 @@
not-detected: [...133] [ip4][..tcp] [...192.168.1.34][50053] -> [..157.55.56.146][40030] [Unknown][Unknown][Unrated]
end: [...133] [ip4][..tcp] [...192.168.1.34][50053] -> [..157.55.56.146][40030]
idle: [...150] [ip4][..udp] [...192.168.1.34][63108] -> [....192.168.1.1][...53] [DNS.Microsoft][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
not-detected: [...177] [ip4][..tcp] [...192.168.1.34][50070] -> [.157.55.130.170][40018] [Unknown][Unknown][Unrated]
end: [...177] [ip4][..tcp] [...192.168.1.34][50070] -> [.157.55.130.170][40018]
not-detected: [...196] [ip4][..tcp] [...192.168.1.34][50076] -> [.157.55.235.156][40014] [Unknown][Unknown][Unrated]
@@ -1038,38 +1566,60 @@
not-detected: [...195] [ip4][..tcp] [...192.168.1.34][50075] -> [213.199.179.142][40003] [Unknown][Unknown][Unrated]
end: [...195] [ip4][..tcp] [...192.168.1.34][50075] -> [213.199.179.142][40003]
idle: [....69] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.24][40001] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....76] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.21][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....31] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.28][40009] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....42] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.33][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....70] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.45][40012] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....78] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.17][40013] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...108] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.26][40026] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....90] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.27][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....33] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.15][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...111] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.47][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...179] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.37][40032] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...104] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...214] [ip4][..udp] [...192.168.1.34][63321] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
not-detected: [....49] [ip4][..tcp] [...192.168.1.34][50032] -> [...157.56.52.44][40032] [Unknown][Unknown][Unrated]
end: [....49] [ip4][..tcp] [...192.168.1.34][50032] -> [...157.56.52.44][40032]
idle: [...149] [ip4][..udp] [...192.168.1.34][55159] -> [....192.168.1.1][...53] [DNS.Microsoft][Unknown][Network][Safe]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][..udp] [...192.168.1.34][65426] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
- end: [...227] [ip4][..tcp] [...192.168.1.34][50108] -> [...157.56.52.28][40009] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ not-detected: [...227] [ip4][..tcp] [...192.168.1.34][50108] -> [...157.56.52.28][40009] [Unknown][Unknown][Unrated]
+ end: [...227] [ip4][..tcp] [...192.168.1.34][50108] -> [...157.56.52.28][40009]
idle: [...228] [ip4][..udp] [...192.168.1.34][49485] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [...231] [ip4][.icmp] [....192.168.1.1] -> [...192.168.1.34] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...267] [ip4][..udp] [...192.168.1.34][63421] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....47] [ip4][..udp] [...192.168.1.92][17500] -> [255.255.255.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
idle: [....45] [ip4][..udp] [...192.168.1.34][17500] -> [255.255.255.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
idle: [....14] [ip4][..udp] [...192.168.1.34][57288] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...290] [ip4][....2] [...192.168.1.34] -> [....224.0.0.251] [IGMP][Unknown][Network][Acceptable]
idle: [...278] [ip4][....2] [....192.168.1.1] -> [......224.0.0.1] [IGMP][Unknown][Network][Acceptable]
idle: [...100] [ip4][....2] [...192.168.1.92] -> [....224.0.0.251] [IGMP][Unknown][Network][Acceptable]
idle: [....93] [ip4][....2] [..192.168.0.254] -> [......224.0.0.1] [IGMP][Unknown][Network][Acceptable]
idle: [...230] [ip4][..udp] [...192.168.1.34][54067] -> [....192.168.1.1][.5351]
idle: [.....1] [ip4][..udp] [...192.168.1.34][49163] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [...192.168.1.34][57406] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...210] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...193] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.18][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....48] [ip4][..udp] [...192.168.1.92][17500] -> [..192.168.1.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
idle: [....46] [ip4][..udp] [...192.168.1.34][17500] -> [..192.168.1.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
idle: [...260] [ip4][..tcp] [...192.168.1.34][50128] -> [..17.172.100.36][..443] [TLS.AppleiCloud][Apple][Web][Acceptable]
@@ -1077,6 +1627,7 @@
guessed: [...226] [ip4][..tcp] [...192.168.1.34][50103] -> [....64.4.23.166][..443] [TLS][Unknown][Web][Safe]
end: [...226] [ip4][..tcp] [...192.168.1.34][50103] -> [....64.4.23.166][..443]
idle: [...158] [ip4][..udp] [...192.168.1.34][49360] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...239] [ip6][..udp] [...............fe80::c62c:3ff:fe06:49fe][.5353] -> [...............................ff02::fb][.5353]
not-detected: [...266] [ip4][..tcp] [...192.168.1.34][50130] -> [...212.161.8.36][13392] [Unknown][Unknown][Unrated]
end: [...266] [ip4][..tcp] [...192.168.1.34][50130] -> [...212.161.8.36][13392]
@@ -1091,8 +1642,10 @@
not-detected: [...233] [ip4][..tcp] [...192.168.1.34][50110] -> [.91.190.216.125][12350] [Unknown][Unknown][Unrated]
end: [...233] [ip4][..tcp] [...192.168.1.34][50110] -> [.91.190.216.125][12350]
not-detected: [...285] [ip4][..tcp] [...192.168.1.34][50140] -> [...76.167.161.6][20274] [Unknown][Unknown][Unrated]
+ RISK: TCP Connection Issues
end: [...285] [ip4][..tcp] [...192.168.1.34][50140] -> [...76.167.161.6][20274]
idle: [...273] [ip4][..udp] [...192.168.1.34][13021] -> [106.188.249.186][15120] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [...256] [ip4][..tcp] [...192.168.1.34][50125] -> [.91.190.218.125][12350] [Unknown][Unknown][Unrated]
end: [...256] [ip4][..tcp] [...192.168.1.34][50125] -> [.91.190.218.125][12350]
not-detected: [...257] [ip4][..tcp] [...192.168.1.34][50126] -> [..91.190.216.23][12350] [Unknown][Unknown][Unrated]
@@ -1100,7 +1653,9 @@
not-detected: [...261] [ip4][..tcp] [...192.168.1.34][50129] -> [.91.190.218.125][12350] [Unknown][Unknown][Unrated]
end: [...261] [ip4][..tcp] [...192.168.1.34][50129] -> [.91.190.218.125][12350]
idle: [....21] [ip4][..udp] [...192.168.1.34][57726] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [...192.168.1.34][55711] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [...143] [ip4][..tcp] [...192.168.1.34][50058] -> [..111.221.74.47][..443] [TLS][Unknown][Web][Safe]
end: [...143] [ip4][..tcp] [...192.168.1.34][50058] -> [..111.221.74.47][..443]
guessed: [...153] [ip4][..tcp] [...192.168.1.34][50063] -> [..111.221.74.38][..443] [TLS][Unknown][Web][Safe]
@@ -1113,6 +1668,7 @@
idle: [...121] [ip4][..udp] [...192.168.1.92][57621] -> [..192.168.1.255][57621] [Spotify][Unknown][Music][Fun]
idle: [...272] [ip4][..udp] [...192.168.1.92][50084] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [....66] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.18][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
end: [....18] [ip4][..tcp] [...192.168.1.34][50029] -> [..23.206.33.166][..443]
idle: [....23] [ip4][..tcp] [.108.160.170.46][..443] -> [...192.168.1.34][49445] [TLS][Dropbox][Web][Safe]
idle: [...293] [ip4][..udp] [...192.168.1.34][55893] -> [....192.168.1.1][...53]
@@ -1120,105 +1676,173 @@
not-detected: [...244] [ip4][..tcp] [...192.168.1.34][50113] -> [...71.238.7.203][18767] [Unknown][Unknown][Unrated]
end: [...244] [ip4][..tcp] [...192.168.1.34][50113] -> [...71.238.7.203][18767]
idle: [...265] [ip4][..udp] [...192.168.1.34][51802] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [...253] [ip4][..tcp] [...192.168.1.34][50123] -> [...80.14.46.121][.4415] [Unknown][Unknown][Unrated]
end: [...253] [ip4][..tcp] [...192.168.1.34][50123] -> [...80.14.46.121][.4415]
- end: [...248] [ip4][..tcp] [...192.168.1.34][50117] -> [...71.238.7.203][18767] [Unknown][Unknown][Unrated]
+ not-detected: [...248] [ip4][..tcp] [...192.168.1.34][50117] -> [...71.238.7.203][18767] [Unknown][Unknown][Unrated]
+ end: [...248] [ip4][..tcp] [...192.168.1.34][50117] -> [...71.238.7.203][18767]
not-detected: [...258] [ip4][..tcp] [...192.168.1.34][50127] -> [...80.14.46.121][.4415] [Unknown][Unknown][Unrated]
end: [...258] [ip4][..tcp] [...192.168.1.34][50127] -> [...80.14.46.121][.4415]
idle: [....22] [ip4][..udp] [..192.168.0.254][.1025] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [...109] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.155][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [...286] [ip4][..tcp] [...192.168.1.34][50141] -> [...80.14.46.121][.4415] [Unknown][Unknown][Unrated]
end: [...286] [ip4][..tcp] [...192.168.1.34][50141] -> [...80.14.46.121][.4415]
idle: [...128] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.141][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....54] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.150][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [...287] [ip4][..tcp] [...192.168.1.34][50142] -> [...80.14.46.121][.4415] [Unknown][Unknown][Unrated]
end: [...287] [ip4][..tcp] [...192.168.1.34][50142] -> [...80.14.46.121][.4415]
not-detected: [...281] [ip4][..tcp] [...192.168.1.34][50136] -> [...71.238.7.203][18767] [Unknown][Unknown][Unrated]
end: [...281] [ip4][..tcp] [...192.168.1.34][50136] -> [...71.238.7.203][18767]
idle: [...115] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.168][40006] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
- end: [...283] [ip4][..tcp] [...192.168.1.34][50138] -> [...71.238.7.203][18767] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
+ not-detected: [...283] [ip4][..tcp] [...192.168.1.34][50138] -> [...71.238.7.203][18767] [Unknown][Unknown][Unrated]
+ end: [...283] [ip4][..tcp] [...192.168.1.34][50138] -> [...71.238.7.203][18767]
idle: [....73] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.159][40009] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....96] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.148][40010] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....79] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.170][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....53] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.140][40012] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...136] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.173][40017] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....84] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.143][40018] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
end: [...215] [ip4][..tcp] [...192.168.1.34][50090] -> [..23.206.33.166][..443]
idle: [....34] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.165][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....24] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.166][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...201] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.145][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....10] [ip4][..udp] [...192.168.1.34][49793] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...197] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.151][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...172] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...147] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....83] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...275] [ip4][..udp] [...192.168.1.34][64560] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [....17] [ip4][..udp] [...192.168.1.34][51879] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
idle: [....39] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
end: [...242] [ip4][..tcp] [...192.168.1.34][50111] -> [.91.190.216.125][..443]
idle: [...241] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.39][..443] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....16] [ip4][..udp] [...192.168.1.34][49903] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [...247] [ip4][..tcp] [...192.168.1.34][50116] -> [...81.83.77.141][17639] [Unknown][Unknown][Unrated]
end: [...247] [ip4][..tcp] [...192.168.1.34][50116] -> [...81.83.77.141][17639]
not-detected: [...246] [ip4][..tcp] [...192.168.1.34][50115] -> [....86.31.35.30][59621] [Unknown][Unknown][Unrated]
end: [...246] [ip4][..tcp] [...192.168.1.34][50115] -> [....86.31.35.30][59621]
- end: [...251] [ip4][..tcp] [...192.168.1.34][50121] -> [...81.83.77.141][17639] [Unknown][Unknown][Unrated]
- end: [...250] [ip4][..tcp] [...192.168.1.34][50119] -> [....86.31.35.30][59621] [Unknown][Unknown][Unrated]
+ not-detected: [...251] [ip4][..tcp] [...192.168.1.34][50121] -> [...81.83.77.141][17639] [Unknown][Unknown][Unrated]
+ end: [...251] [ip4][..tcp] [...192.168.1.34][50121] -> [...81.83.77.141][17639]
+ not-detected: [...250] [ip4][..tcp] [...192.168.1.34][50119] -> [....86.31.35.30][59621] [Unknown][Unknown][Unrated]
+ end: [...250] [ip4][..tcp] [...192.168.1.34][50119] -> [....86.31.35.30][59621]
end: [....12] [ip4][..tcp] [...192.168.1.34][50027] -> [...23.223.73.34][..443]
idle: [...240] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.145][..443] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....13] [ip4][..udp] [...192.168.1.34][49990] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [...222] [ip4][..tcp] [...192.168.1.34][50099] -> [....64.4.23.166][40022] [Unknown][Unknown][Unrated]
end: [...222] [ip4][..tcp] [...192.168.1.34][50099] -> [....64.4.23.166][40022]
not-detected: [...213] [ip4][..tcp] [...192.168.1.34][50088] -> [.157.55.235.146][33033] [Unknown][Unknown][Unrated]
end: [...213] [ip4][..tcp] [...192.168.1.34][50088] -> [.157.55.235.146][33033]
idle: [....20] [ip4][..udp] [...192.168.1.34][60288] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [...167] [ip4][..tcp] [...192.168.1.34][50066] -> [...65.55.223.12][..443] [TLS][Unknown][Web][Safe]
end: [...167] [ip4][..tcp] [...192.168.1.34][50066] -> [...65.55.223.12][..443]
idle: [...124] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.18][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...106] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.43][40001] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...132] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.19][40001] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....36] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.24][40001] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...146] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.140][40003] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...119] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.155][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...237] [ip4][..udp] [...192.168.1.34][13021] -> [.....71.62.0.85][33647] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....80] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.168][40007] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...255] [ip4][..tcp] [..17.143.160.22][.5223] -> [...192.168.1.34][49447] [TLS][Apple][Web][Safe]
RISK: Known Proto on Non Std Port
idle: [....37] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.48][40008] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...192] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.159][40009] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...127] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.32][40009] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....43] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.172][40010] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...154] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.166][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...236] [ip4][..udp] [...192.168.1.34][13021] -> [.176.97.100.249][26635] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...173] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.28][40014] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...180] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.154][40017] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...182] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.40][40018] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...164] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.176][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...152] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.165][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....98] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.141][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...186] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.31][40021] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...117] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.143][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....62] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.17][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....26] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.142][40023] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....56] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.153][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...187] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.29][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....38] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.42][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....27] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.15][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [...277] [ip4][..tcp] [...192.168.1.34][50134] -> [...157.56.53.47][12350] [Unknown][Unknown][Unrated]
end: [...277] [ip4][..tcp] [...192.168.1.34][50134] -> [...157.56.53.47][12350]
idle: [....77] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.151][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....52] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.145][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [...225] [ip4][..tcp] [...192.168.1.34][50102] -> [...65.55.223.15][..443] [TLS][Unknown][Web][Safe]
end: [...225] [ip4][..tcp] [...192.168.1.34][50102] -> [...65.55.223.15][..443]
idle: [....28] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.46][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....55] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.25][40028] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....30] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.160][40028] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....97] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.148][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...138] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.149][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...184] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.12][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....81] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.44][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...170] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.16][40032] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [...291] [ip4][..tcp] [...192.168.1.34][50145] -> [...157.56.53.51][12350] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...291] [ip4][..tcp] [...192.168.1.34][50145] -> [...157.56.53.51][12350]
guessed: [....64] [ip4][..tcp] [...192.168.1.34][50037] -> [..157.55.56.170][..443] [TLS][Unknown][Web][Safe]
end: [....64] [ip4][..tcp] [...192.168.1.34][50037] -> [..157.55.56.170][..443]
@@ -1250,6 +1874,7 @@
not-detected: [...282] [ip4][..tcp] [...192.168.1.34][50137] -> [..5.248.186.221][31010] [Unknown][Unknown][Unrated]
end: [...282] [ip4][..tcp] [...192.168.1.34][50137] -> [..5.248.186.221][31010]
idle: [...176] [ip4][..udp] [...192.168.1.34][58368] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [...284] [ip4][..tcp] [...192.168.1.34][50139] -> [..5.248.186.221][31010] [Unknown][Unknown][Unrated]
end: [...284] [ip4][..tcp] [...192.168.1.34][50139] -> [..5.248.186.221][31010]
guessed: [...216] [ip4][..tcp] [...192.168.1.34][50091] -> [.157.55.235.146][..443] [TLS][Unknown][Web][Safe]
@@ -1263,17 +1888,21 @@
guessed: [...204] [ip4][..tcp] [...192.168.1.34][50079] -> [213.199.179.142][..443] [TLS][Unknown][Web][Safe]
end: [...204] [ip4][..tcp] [...192.168.1.34][50079] -> [213.199.179.142][..443]
idle: [...263] [ip4][..udp] [...192.168.1.34][56387] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...175] [ip4][..udp] [...192.168.1.34][54343] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [...144] [ip4][..tcp] [...192.168.1.34][50059] -> [..111.221.74.38][40015] [Unknown][Unknown][Unrated]
end: [...144] [ip4][..tcp] [...192.168.1.34][50059] -> [..111.221.74.38][40015]
not-detected: [...135] [ip4][..tcp] [...192.168.1.34][50055] -> [..111.221.74.47][40030] [Unknown][Unknown][Unrated]
end: [...135] [ip4][..tcp] [...192.168.1.34][50055] -> [..111.221.74.47][40030]
idle: [...157] [ip4][..udp] [...192.168.1.34][58458] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [...211] [ip4][..tcp] [...192.168.1.34][50086] -> [.111.221.77.142][40023] [Unknown][Unknown][Unrated]
end: [...211] [ip4][..tcp] [...192.168.1.34][50086] -> [.111.221.77.142][40023]
not-detected: [...219] [ip4][..tcp] [...192.168.1.34][50096] -> [..111.221.74.46][40027] [Unknown][Unknown][Unrated]
end: [...219] [ip4][..tcp] [...192.168.1.34][50096] -> [..111.221.74.46][40027]
idle: [.....5] [ip4][..udp] [...192.168.1.34][54396] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...274] [ip4][..udp] [...192.168.1.34][56886] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
not-detected: [...270] [ip4][..tcp] [...192.168.1.34][50132] -> [...149.13.32.15][13392] [Unknown][Unknown][Unrated]
end: [...270] [ip4][..tcp] [...192.168.1.34][50132] -> [...149.13.32.15][13392]
@@ -1281,89 +1910,165 @@
end: [....15] [ip4][..tcp] [...192.168.1.34][50028] -> [.157.56.126.211][..443] [TLS.Skype_Teams][Unknown][VoIP][Acceptable]
RISK: Obsolete TLS (v1.1 or older)
idle: [...235] [ip4][..udp] [...192.168.1.34][13021] -> [..76.185.207.12][45493] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...279] [ip4][..udp] [...192.168.1.34][..123] -> [..17.253.48.245][..123] [NTP][Apple][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....8] [ip4][..udp] [...192.168.1.34][58681] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
guessed: [...292] [ip4][..tcp] [...192.168.1.34][50146] -> [...157.56.53.51][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
idle: [...292] [ip4][..tcp] [...192.168.1.34][50146] -> [...157.56.53.51][..443]
idle: [....60] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.43][40002] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...160] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.26][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...190] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.29][40010] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...118] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.33][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....68] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.45][40012] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...107] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.44][40013] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....58] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.38][40015] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....72] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.17][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...129] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.28][40026] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....29] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.15][40026] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...145] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.21][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...110] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.41][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....85] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.25][40028] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...102] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.24][40032] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....95] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.20][40033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [...252] [ip4][..tcp] [...192.168.1.34][50122] -> [..81.133.19.185][44431] [Unknown][Unknown][Unrated]
end: [...252] [ip4][..tcp] [...192.168.1.34][50122] -> [..81.133.19.185][44431]
not-detected: [...254] [ip4][..tcp] [...192.168.1.34][50124] -> [..81.133.19.185][44431] [Unknown][Unknown][Unrated]
end: [...254] [ip4][..tcp] [...192.168.1.34][50124] -> [..81.133.19.185][44431]
idle: [...234] [ip4][..udp] [...192.168.1.34][13021] -> [..176.26.55.167][63773] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....82] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.152][40001] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...208] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.155][40003] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....41] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.162][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....67] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.154][40005] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...189] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.168][40006] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....40] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.175][40006] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....59] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.175][40008] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...165] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.148][40010] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....92] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.157][40010] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...130] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.161][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....91] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.173][40012] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....61] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.161][40012] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...156] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.157][40013] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...103] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.175][40013] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...191] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.166][40015] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...162] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.151][40017] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...120] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.143][40017] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...181] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.172][40019] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...188] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.147][40019] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...178] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.148][40019] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...202] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.165][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...151] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.147][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....25] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.155][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...171] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.159][40021] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...159] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.145][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....88] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.166][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....32] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.176][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...137] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.153][40023] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...116] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.142][40023] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....74] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.142][40025] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...155] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.165][40026] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...139] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.146][40026] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...207] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.160][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...229] [ip4][..udp] [...192.168.1.34][51066] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [...105] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.145][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....86] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.151][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....44] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.160][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....75] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.143][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...166] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.158][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...198] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.172][40032] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...185] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.156][40034] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...131] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.144][40034] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...264] [ip4][..udp] [...192.168.1.34][52714] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....89] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.155][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....35] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.150][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...123] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.168][40006] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....94] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.165][40007] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...262] [ip4][..udp] [...192.168.1.34][52742] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...163] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.170][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...114] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.141][40015] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...268] [ip4][..udp] [...192.168.1.34][65037] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...140] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.143][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...199] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.152][40023] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....11] [ip4][..udp] [...192.168.1.34][65045] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...206] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.145][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...276] [ip4][..udp] [...192.168.1.34][49511] -> [....192.168.1.1][.5351]
idle: [...169] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.162][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...126] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.146][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...125] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.154][40034] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [...161] [ip4][..tcp] [...192.168.1.34][50065] -> [...65.55.223.12][40031] [Unknown][Unknown][Unrated]
end: [...161] [ip4][..tcp] [...192.168.1.34][50065] -> [...65.55.223.12][40031]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/skype_no_unknown.pcap.out b/test/results/flow-info/default/skype_no_unknown.pcap.out
index c31a4d788..0e33e3ed4 100644
--- a/test/results/flow-info/skype_no_unknown.pcap.out
+++ b/test/results/flow-info/default/skype_no_unknown.pcap.out
@@ -5,46 +5,60 @@
detected: [.....1] [ip4][....2] [..192.168.1.219] -> [.....224.0.0.22] [IGMP][Unknown][Network][Acceptable]
new: [.....2] [ip4][..udp] [...192.168.1.34][55028] -> [....192.168.1.1][...53]
detected: [.....2] [ip4][..udp] [...192.168.1.34][55028] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][a.config.skype.com]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..udp] [...192.168.1.34][64971] -> [....192.168.1.1][...53]
detected: [.....3] [ip4][..udp] [...192.168.1.34][64971] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][a.config.skype.com]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..udp] [...192.168.1.34][60688] -> [....192.168.1.1][...53]
detected: [.....4] [ip4][..udp] [...192.168.1.34][60688] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][conn.skype.akadns.net]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][..udp] [...192.168.1.34][58631] -> [....192.168.1.1][...53]
detected: [.....5] [ip4][..udp] [...192.168.1.34][58631] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][conn.skype.akadns.net]
+ RISK: Unidirectional Traffic
new: [.....6] [ip4][..udp] [...192.168.1.34][64240] -> [....192.168.1.1][...53]
detected: [.....6] [ip4][..udp] [...192.168.1.34][64240] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][api.skype.com]
+ RISK: Unidirectional Traffic
new: [.....7] [ip4][..udp] [...192.168.1.34][49864] -> [....192.168.1.1][...53]
detected: [.....7] [ip4][..udp] [...192.168.1.34][49864] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][api.skype.com]
+ RISK: Unidirectional Traffic
new: [.....8] [ip4][..udp] [...192.168.1.34][61016] -> [....192.168.1.1][...53]
detected: [.....8] [ip4][..udp] [...192.168.1.34][61016] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][apps.skypeassets.com]
+ RISK: Unidirectional Traffic
new: [.....9] [ip4][..udp] [...192.168.1.34][57694] -> [....192.168.1.1][...53]
detected: [.....9] [ip4][..udp] [...192.168.1.34][57694] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][db3msgr5011709.gateway.messenger.live.com]
+ RISK: Unidirectional Traffic
detection-update: [.....9] [ip4][..udp] [...192.168.1.34][57694] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][db3msgr5011709.gateway.messenger.live.com]
new: [....10] [ip4][..tcp] [...192.168.1.34][51229] -> [...157.56.52.28][40009]
new: [....11] [ip4][..udp] [...192.168.1.34][62875] -> [....192.168.1.1][...53]
detected: [....11] [ip4][..udp] [...192.168.1.34][62875] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][dsn13.d.skype.net]
+ RISK: Unidirectional Traffic
new: [....12] [ip4][..udp] [...192.168.1.34][59113] -> [....192.168.1.1][...53]
detected: [....12] [ip4][..udp] [...192.168.1.34][59113] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][dsn13.d.skype.net]
+ RISK: Unidirectional Traffic
new: [....13] [ip4][..tcp] [...192.168.1.34][51230] -> [.157.56.126.211][..443]
new: [....14] [ip4][..udp] [...192.168.1.34][57592] -> [....192.168.1.1][...53]
detected: [....14] [ip4][..udp] [...192.168.1.34][57592] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][335.0.7.7.3.rst11.r.skype.net]
+ RISK: Unidirectional Traffic
new: [....15] [ip4][..udp] [...192.168.1.34][53372] -> [....192.168.1.1][...53]
detected: [....15] [ip4][..udp] [...192.168.1.34][53372] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][335.0.7.7.3.rst11.r.skype.net]
+ RISK: Unidirectional Traffic
detected: [....13] [ip4][..tcp] [...192.168.1.34][51230] -> [.157.56.126.211][..443] [TLS][Unknown][Web][Safe][]
RISK: Obsolete TLS (v1.1 or older)
detection-update: [....13] [ip4][..tcp] [...192.168.1.34][51230] -> [.157.56.126.211][..443] [TLS.Skype_Teams][Unknown][VoIP][Acceptable][]
RISK: Obsolete TLS (v1.1 or older)
new: [....16] [ip4][..udp] [...192.168.1.34][63514] -> [....192.168.1.1][...53]
detected: [....16] [ip4][..udp] [...192.168.1.34][63514] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][ui.skype.com]
+ RISK: Unidirectional Traffic
new: [....17] [ip4][..udp] [...192.168.1.34][63661] -> [....192.168.1.1][...53]
detected: [....17] [ip4][..udp] [...192.168.1.34][63661] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][e4593.g.akamaiedge.net]
+ RISK: Unidirectional Traffic
detection-update: [....17] [ip4][..udp] [...192.168.1.34][63661] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][e4593.g.akamaiedge.net]
new: [....18] [ip4][..tcp] [...192.168.1.34][51231] -> [..23.206.33.166][..443]
detected: [....18] [ip4][..tcp] [...192.168.1.34][51231] -> [..23.206.33.166][..443] [TLS.Skype_Teams][Unknown][VoIP][Acceptable][apps.skype.com]
RISK: TLS (probably) Not Carrying HTTPS
new: [....19] [ip4][..tcp] [.17.143.160.149][.5223] -> [...192.168.1.34][50407] [MIDSTREAM]
detected: [....19] [ip4][..tcp] [.17.143.160.149][.5223] -> [...192.168.1.34][50407] [TLS][Apple][Web][Safe]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
analyse: [....13] [ip4][..tcp] [...192.168.1.34][51230] -> [.157.56.126.211][..443] [TLS.Skype_Teams][Unknown][VoIP][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.302| 0.085| 0.091| 8331.101| 4.100]
@@ -57,11 +71,14 @@
[ENTROPIES...: 4.6,5.2,5.2,5.7,7.0,5.6,5.1,7.5,7.7,5.1,6.7,5.2,6.0,6.1,5.1,7.3,7.0,5.1,7.7,7.0,5.1,7.2,7.7,5.2,7.2,5.2,7.7,6.6,7.9,5.2,7.9,5.3]
new: [....20] [ip4][..udp] [...192.168.1.34][50055] -> [....192.168.1.1][...53]
detected: [....20] [ip4][..udp] [...192.168.1.34][50055] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][pipe.prd.skypedata.akadns.net]
+ RISK: Unidirectional Traffic
new: [....21] [ip4][..udp] [...192.168.1.34][51753] -> [....192.168.1.1][...53]
detected: [....21] [ip4][..udp] [...192.168.1.34][51753] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][pipe.prd.skypedata.akadns.net]
+ RISK: Unidirectional Traffic
new: [....22] [ip4][..tcp] [...192.168.1.34][51232] -> [...157.56.52.28][..443]
new: [....23] [ip4][..tcp] [...192.168.1.34][51227] -> [..17.172.100.36][..443] [MIDSTREAM]
detected: [....23] [ip4][..tcp] [...192.168.1.34][51227] -> [..17.172.100.36][..443] [TLS][Apple][Web][Safe]
+ RISK: Unidirectional Traffic
analyse: [....23] [ip4][..tcp] [...192.168.1.34][51227] -> [..17.172.100.36][..443] [TLS][Apple][Web][Safe]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 1.077| 0.148| 0.323| 104108.532| 2.700]
@@ -76,12 +93,13 @@
detected: [....24] [ip4][..udp] [...192.168.1.34][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][__msbrowse__]
new: [....25] [ip4][..udp] [....192.168.1.1][..137] -> [...192.168.1.34][..137]
detected: [....25] [ip4][..udp] [....192.168.1.1][..137] -> [...192.168.1.34][..137] [NetBIOS][Unknown][System][Acceptable][__msbrowse__]
+ RISK: Unidirectional Traffic
new: [....26] [ip4][..udp] [...192.168.1.34][..138] -> [..192.168.1.255][..138]
detected: [....26] [ip4][..udp] [...192.168.1.34][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous][lucasmacbookpro]
RISK: Unsafe Protocol
new: [....27] [ip4][..udp] [....192.168.1.1][..138] -> [...192.168.1.34][..138]
detected: [....27] [ip4][..udp] [....192.168.1.1][..138] -> [...192.168.1.34][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous][alicegate]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
new: [....28] [ip4][..udp] [...192.168.1.92][..137] -> [..192.168.1.255][..137]
detected: [....28] [ip4][..udp] [...192.168.1.92][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][workgroup]
new: [....29] [ip4][..udp] [...192.168.1.92][..138] -> [..192.168.1.255][..138]
@@ -96,48 +114,69 @@
detection-update: [....31] [ip6][..udp] [...............fe80::c62c:3ff:fe06:49fe][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable][lucas-imac.local]
new: [....33] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.170][40015]
detected: [....33] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.170][40015] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....34] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.15][40026]
detected: [....34] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.15][40026] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....35] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.33][40002]
detected: [....35] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.33][40002] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....36] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.145][40027]
detected: [....36] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.145][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....37] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.165][40028]
detected: [....37] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.165][40028] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....38] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.27][40025]
detected: [....38] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.27][40025] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....39] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.34][40027]
detected: [....39] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.34][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....40] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.168][40024]
detected: [....40] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.168][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....41] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.143][40030]
detected: [....41] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.143][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....42] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.143][40022]
detected: [....42] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.143][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....43] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.44][40019]
detected: [....43] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.44][40019] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....44] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.173][40013]
detected: [....44] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.173][40013] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....45] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.167][40024]
detected: [....45] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.167][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....46] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.165][40004]
detected: [....46] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.165][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....47] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.17][40025]
detected: [....47] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.17][40025] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....48] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.18][33033]
detected: [....48] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.18][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....49] [ip4][..udp] [..192.168.0.254][.1025] -> [239.255.255.250][.1900]
detected: [....49] [ip4][..udp] [..192.168.0.254][.1025] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
new: [....50] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.32][40022]
detected: [....50] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.32][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....51] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.33][40011]
detected: [....51] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.33][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....52] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.145][40008]
detected: [....52] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.145][40008] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....53] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.13][40009]
detected: [....53] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.13][40009] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....54] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.19][40020]
detected: [....54] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.19][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....55] [ip4][..udp] [...192.168.1.34][17500] -> [255.255.255.255][17500]
detected: [....55] [ip4][..udp] [...192.168.1.34][17500] -> [255.255.255.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
new: [....56] [ip4][..udp] [...192.168.1.34][17500] -> [..192.168.1.255][17500]
@@ -151,161 +190,232 @@
new: [....61] [ip4][..tcp] [...192.168.1.34][51236] -> [..111.221.74.45][40008]
new: [....62] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.171][40012]
detected: [....62] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.171][40012] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....63] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.65][33033]
detected: [....63] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.65][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....64] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.140][40003]
detected: [....64] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.140][40003] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....65] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.39][40031]
detected: [....65] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.39][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....66] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.25][40010]
detected: [....66] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.25][40010] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....67] [ip4][..tcp] [...192.168.1.34][51237] -> [.157.55.130.176][40022]
new: [....68] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.28][40014]
detected: [....68] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.28][40014] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....69] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.154][40013]
detected: [....69] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.154][40013] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....70] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.44][40020]
detected: [....70] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.44][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....71] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.173][40017]
detected: [....71] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.173][40017] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....72] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.154][40017]
detected: [....72] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.154][40017] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....73] [ip4][..tcp] [...192.168.1.34][51238] -> [.157.55.235.147][..443]
new: [....74] [ip4][..tcp] [...192.168.1.34][51239] -> [...65.55.223.45][..443]
new: [....75] [ip4][..tcp] [...192.168.1.34][51240] -> [..111.221.74.45][..443]
new: [....76] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.146][33033]
detected: [....76] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....77] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.160][40030]
detected: [....77] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.160][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....78] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.12][40031]
detected: [....78] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.12][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....79] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.143][40018]
detected: [....79] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.143][40018] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....80] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.174][40025]
detected: [....80] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.174][40025] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....81] [ip4][..tcp] [...192.168.1.34][51241] -> [.157.55.130.176][..443]
new: [....82] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.13][40009]
detected: [....82] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.13][40009] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....83] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.46][40027]
detected: [....83] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.46][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....84] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.174][40019]
detected: [....84] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.174][40019] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....85] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.22][40009]
detected: [....85] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.22][40009] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....86] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.145][40024]
detected: [....86] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.145][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....87] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.150][40007]
detected: [....87] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.150][40007] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....88] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.15][40027]
detected: [....88] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.15][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....89] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.162][40033]
detected: [....89] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.162][40033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....90] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.159][40031]
detected: [....90] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.159][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....91] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.148][40029]
detected: [....91] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.148][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....92] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.142][40023]
detected: [....92] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.142][40023] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....93] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.146][33033]
detected: [....93] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....94] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.149][40011]
detected: [....94] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.149][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....95] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.151][40029]
detected: [....95] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.151][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....96] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.165][40004]
detected: [....96] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.165][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....97] [ip4][..tcp] [...192.168.1.34][51246] -> [...157.56.52.44][40020]
new: [....98] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.156][40019]
detected: [....98] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.156][40019] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....99] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.27][40029]
detected: [....99] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.27][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...100] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.142][40013]
detected: [...100] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.142][40013] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...101] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.154][40032]
detected: [...101] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.154][40032] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...102] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.33][40002]
detected: [...102] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.33][40002] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...103] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.42][40006]
detected: [...103] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.42][40006] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...104] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.172][40020]
detected: [...104] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.172][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...105] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.167][40029]
detected: [...105] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.167][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...106] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.140][40003]
detected: [...106] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.140][40003] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...107] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.156][40031]
detected: [...107] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.156][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...108] [ip4][..tcp] [...192.168.1.34][51247] -> [...157.56.52.44][..443]
new: [...109] [ip4][..tcp] [...192.168.1.34][51248] -> [.111.221.77.175][40030]
new: [...110] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.13][40021]
detected: [...110] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.13][40021] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...111] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.27][40027]
detected: [...111] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.27][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...112] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.146][33033]
detected: [...112] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...113] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.160][40008]
detected: [...113] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.160][40008] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...114] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.42][40005]
detected: [...114] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.42][40005] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...115] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.16][40032]
detected: [...115] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.16][40032] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...116] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.143][40018]
detected: [...116] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.143][40018] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...117] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.176][40031]
detected: [...117] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.176][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...118] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.24][40032]
detected: [...118] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.24][40032] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...119] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.20][40033]
detected: [...119] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.20][40033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...120] [ip4][..tcp] [...192.168.1.34][51250] -> [.111.221.77.175][..443]
new: [...121] [ip4][..tcp] [...192.168.1.34][51251] -> [....64.4.23.166][40029]
new: [...122] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.144][40016]
detected: [...122] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.144][40016] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...123] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.20][40033]
detected: [...123] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.20][40033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...124] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.144][40032]
detected: [...124] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.144][40032] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...125] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.165][40004]
detected: [...125] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.165][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...126] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.146][40033]
detected: [...126] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.146][40033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...127] [ip4][..tcp] [108.160.163.108][..443] -> [...192.168.1.34][51222] [MIDSTREAM]
detected: [...127] [ip4][..tcp] [108.160.163.108][..443] -> [...192.168.1.34][51222] [TLS][Dropbox][Web][Safe]
+ RISK: Unidirectional Traffic
new: [...128] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.24][40032]
detected: [...128] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.24][40032] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...129] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.160][40016]
detected: [...129] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.160][40016] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...130] [ip4][..tcp] [...192.168.1.34][51253] -> [....64.4.23.166][..443]
new: [...131] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.28][40026]
detected: [...131] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.28][40026] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...132] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.146][33033]
detected: [...132] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...133] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.152][40022]
detected: [...133] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.152][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...134] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.172][40011]
detected: [...134] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.172][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...135] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.151][40029]
detected: [...135] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.151][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...136] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.176][40001]
detected: [...136] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.176][40001] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...137] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.148][40019]
detected: [...137] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.148][40019] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...138] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.155][40027]
detected: [...138] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.155][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...139] [ip4][....2] [..192.168.0.254] -> [......224.0.0.1]
detected: [...139] [ip4][....2] [..192.168.0.254] -> [......224.0.0.1] [IGMP][Unknown][Network][Acceptable]
new: [...140] [ip4][....2] [..192.168.1.229] -> [....224.0.0.251]
detected: [...140] [ip4][....2] [..192.168.1.229] -> [....224.0.0.251] [IGMP][Unknown][Network][Acceptable]
new: [...141] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.154][40017]
detected: [...141] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.154][40017] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...142] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.149][40030]
detected: [...142] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.149][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...143] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.171][40030]
detected: [...143] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.171][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...144] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.161][40031]
detected: [...144] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.161][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...145] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.148][40033]
detected: [...145] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.148][40033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
new: [...146] [ip4][..tcp] [...192.168.1.34][51255] -> [.157.55.130.142][40005]
new: [...147] [ip4][..tcp] [...192.168.1.34][51256] -> [.111.221.77.142][40013]
@@ -313,156 +423,225 @@
new: [...149] [ip4][..tcp] [...192.168.1.34][51258] -> [213.199.179.176][40021]
new: [...150] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.149][40016]
detected: [...150] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.149][40016] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...151] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.19][40001]
detected: [...151] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.19][40001] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...152] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.140][40011]
detected: [...152] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.140][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...153] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.167][40031]
detected: [...153] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.167][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...154] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.146][33033]
detected: [...154] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...155] [ip4][..udp] [...192.168.1.34][63342] -> [....192.168.1.1][...53]
detected: [...155] [ip4][..udp] [...192.168.1.34][63342] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][b.config.skype.com]
+ RISK: Unidirectional Traffic
new: [...156] [ip4][..udp] [...192.168.1.34][64258] -> [....192.168.1.1][...53]
detected: [...156] [ip4][..udp] [...192.168.1.34][64258] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][b.config.skype.com]
+ RISK: Unidirectional Traffic
new: [...157] [ip4][..tcp] [...192.168.1.34][51259] -> [.111.221.77.142][..443]
new: [...158] [ip4][..tcp] [...192.168.1.34][51260] -> [.157.55.130.142][..443]
new: [...159] [ip4][..tcp] [...192.168.1.34][51261] -> [.157.55.235.170][..443]
new: [...160] [ip4][..tcp] [...192.168.1.34][51262] -> [213.199.179.176][..443]
new: [...161] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.166][40015]
detected: [...161] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.166][40015] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...162] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.145][40024]
detected: [...162] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.145][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...163] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.42][40024]
detected: [...163] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.42][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...164] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.146][40030]
detected: [...164] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.146][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...165] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.38][40015]
detected: [...165] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.38][40015] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...166] [ip4][..udp] [...192.168.1.34][61095] -> [....192.168.1.1][...53]
detected: [...166] [ip4][..udp] [...192.168.1.34][61095] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][pipe.prd.skypedata.akadns.net]
+ RISK: Unidirectional Traffic
new: [...167] [ip4][..udp] [...192.168.1.34][55866] -> [....192.168.1.1][...53]
detected: [...167] [ip4][..udp] [...192.168.1.34][55866] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][pipe.prd.skypedata.akadns.net]
+ RISK: Unidirectional Traffic
new: [...168] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.38][40015]
detected: [...168] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.38][40015] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...169] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.40][40017]
detected: [...169] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.40][40017] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...170] [ip4][..tcp] [...192.168.1.34][51267] -> [..111.221.74.18][40025]
new: [...171] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.171][40031]
detected: [...171] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.171][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...172] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.43][40001]
detected: [...172] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.43][40001] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...173] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.20][40023]
detected: [...173] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.20][40023] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...174] [ip4][....2] [..192.168.1.219] -> [...233.89.188.1]
detected: [...174] [ip4][....2] [..192.168.1.219] -> [...233.89.188.1] [IGMP][Unknown][Network][Acceptable]
new: [...175] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.140][40003]
detected: [...175] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.140][40003] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...176] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.158][40021]
detected: [...176] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.158][40021] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...177] [ip4][..tcp] [...192.168.1.34][51268] -> [..111.221.74.18][..443]
new: [...178] [ip4][..tcp] [...192.168.1.34][51269] -> [213.199.179.175][40029]
new: [...179] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.171][40006]
detected: [...179] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.171][40006] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...180] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.173][40003]
detected: [...180] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.173][40003] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...181] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.143][40018]
detected: [...181] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.143][40018] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...182] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.18][33033]
detected: [...182] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.18][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...183] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.43][40006]
detected: [...183] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.43][40006] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...184] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.150][40014]
detected: [...184] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.150][40014] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...185] [ip4][..tcp] [...192.168.1.34][51271] -> [213.199.179.175][..443]
new: [...186] [ip4][..tcp] [...192.168.1.34][51272] -> [.157.55.235.152][40029]
new: [...187] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.147][40014]
detected: [...187] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.147][40014] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...188] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.18][40025]
detected: [...188] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.18][40025] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...189] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.160][40022]
detected: [...189] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.160][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...190] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.146][40030]
detected: [...190] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.146][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...191] [ip4][..tcp] [...192.168.1.34][51274] -> [.157.55.235.152][..443]
new: [...192] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.170][40018]
detected: [...192] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.170][40018] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...193] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.159][40016]
detected: [...193] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.159][40016] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...194] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.170][40021]
detected: [...194] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.170][40021] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...195] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.24][40029]
detected: [...195] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.24][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...196] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.158][40027]
detected: [...196] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.158][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...197] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.16][40032]
detected: [...197] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.16][40032] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...198] [ip4][..udp] [...192.168.1.34][60413] -> [....192.168.1.1][...53]
detected: [...198] [ip4][..udp] [...192.168.1.34][60413] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][335.0.7.7.3.rst0.r.skype.net]
+ RISK: Unidirectional Traffic
new: [...199] [ip4][..udp] [...192.168.1.34][64364] -> [....192.168.1.1][...53]
detected: [...199] [ip4][..udp] [...192.168.1.34][64364] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][335.0.7.7.3.rst0.r.skype.net]
+ RISK: Unidirectional Traffic
new: [...200] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.149][40030]
detected: [...200] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.149][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...201] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.29][40010]
detected: [...201] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.29][40010] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...202] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.43][40006]
detected: [...202] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.43][40006] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...203] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.18][33033]
detected: [...203] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.18][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...204] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.15][40030]
detected: [...204] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.15][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...205] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.144][40009]
detected: [...205] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.144][40009] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...206] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.40][40025]
detected: [...206] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.40][40025] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....8] [ip4][..udp] [...192.168.1.34][61016] -> [....192.168.1.1][...53]
update: [....12] [ip4][..udp] [...192.168.1.34][59113] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....2] [ip4][..udp] [...192.168.1.34][55028] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....16] [ip4][..udp] [...192.168.1.34][63514] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....15] [ip4][..udp] [...192.168.1.34][53372] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....17] [ip4][..udp] [...192.168.1.34][63661] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
update: [....14] [ip4][..udp] [...192.168.1.34][57592] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....9] [ip4][..udp] [...192.168.1.34][57694] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....21] [ip4][..udp] [...192.168.1.34][51753] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....7] [ip4][..udp] [...192.168.1.34][49864] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....6] [ip4][..udp] [...192.168.1.34][64240] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....20] [ip4][..udp] [...192.168.1.34][50055] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....5] [ip4][..udp] [...192.168.1.34][58631] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....4] [ip4][..udp] [...192.168.1.34][60688] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....11] [ip4][..udp] [...192.168.1.34][62875] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [...192.168.1.34][64971] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...207] [ip4][..tcp] [...192.168.1.34][51276] -> [.157.55.235.146][40021]
new: [...208] [ip4][..tcp] [...192.168.1.34][51277] -> [.157.55.235.156][40026]
new: [...209] [ip4][..tcp] [...192.168.1.34][51278] -> [....64.4.23.159][40009]
new: [...210] [ip4][..tcp] [...192.168.1.34][51279] -> [..111.221.74.48][40008]
new: [...211] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.175][40006]
detected: [...211] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.175][40006] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...212] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.173][40012]
detected: [...212] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.173][40012] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...213] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.175][40023]
detected: [...213] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.175][40023] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...214] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.17][40013]
detected: [...214] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.17][40013] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...215] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.170][40011]
detected: [...215] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.170][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...216] [ip4][..tcp] [...192.168.1.34][51280] -> [.157.55.235.146][..443]
new: [...217] [ip4][..tcp] [...192.168.1.34][51281] -> [.157.55.235.156][..443]
new: [...218] [ip4][..tcp] [...192.168.1.34][51282] -> [....64.4.23.159][..443]
new: [...219] [ip4][..tcp] [...192.168.1.34][51283] -> [..111.221.74.48][..443]
new: [...220] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.157][40013]
detected: [...220] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.157][40013] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...221] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.155][40004]
detected: [...221] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.155][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...222] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.141][40015]
detected: [...222] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.141][40015] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...223] [ip4][..udp] [...192.168.1.34][59237] -> [239.255.255.250][.1900]
detected: [...223] [ip4][..udp] [...192.168.1.34][59237] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
new: [...224] [ip4][..udp] [...192.168.1.34][58061] -> [239.255.255.250][.1900]
detected: [...224] [ip4][..udp] [...192.168.1.34][58061] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
new: [...225] [ip4][..udp] [...192.168.1.34][59052] -> [....192.168.1.1][.5351]
detected: [...225] [ip4][..udp] [...192.168.1.34][59052] -> [....192.168.1.1][.5351] [NAT-PMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...226] [ip4][.icmp] [....192.168.1.1] -> [...192.168.1.34]
detected: [...226] [ip4][.icmp] [....192.168.1.1] -> [...192.168.1.34] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [...227] [ip4][..tcp] [...192.168.1.34][51284] -> [.91.190.218.125][12350]
new: [...228] [ip4][..tcp] [...192.168.1.34][51285] -> [.91.190.218.125][12350]
analyse: [...210] [ip4][..tcp] [...192.168.1.34][51279] -> [..111.221.74.48][40008]
@@ -475,29 +654,35 @@
[IATS(ms)....: 1006.2,1296.9,290.8,0.6,292.8,2.2,294.3,0.5,293.3,292.8,39.6,39.6,253.3,253.3,40.1,40.1,350.4,0.0,350.4,293.9,293.9,0.1,334.3,334.2,300.0,0.0,300.0,2.1,4.2,292.4,290.3]
[PKTLENS.....: 64,64,60,52,102,52,155,52,60,60,52,52,98,81,52,52,91,52,55,52,196,52,56,52,661,52,56,52,1492,106,603,595]
[ENTROPIES...: 4.6,4.7,5.4,5.2,6.1,5.3,6.7,5.2,5.4,5.4,5.2,5.2,6.3,6.0,5.2,5.1,6.2,5.3,5.2,5.3,6.9,5.2,5.3,5.2,7.7,5.2,5.3,5.2,7.9,6.2,7.7,7.6]
- not-detected: [...210] [ip4][..tcp] [...192.168.1.34][51279] -> [..111.221.74.48][40008] [Unknown][Unknown][Unrated]
new: [...229] [ip4][..tcp] [...192.168.1.34][51286] -> [.91.190.218.125][..443]
new: [...230] [ip4][..udp] [...192.168.1.34][13021] -> [.174.49.171.224][32011]
detected: [...230] [ip4][..udp] [...192.168.1.34][13021] -> [.174.49.171.224][32011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...231] [ip4][..udp] [...192.168.1.34][13021] -> [...83.31.12.173][23939]
detected: [...231] [ip4][..udp] [...192.168.1.34][13021] -> [...83.31.12.173][23939] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...232] [ip4][..udp] [...192.168.1.34][13021] -> [.189.138.161.88][19521]
detected: [...232] [ip4][..udp] [...192.168.1.34][13021] -> [.189.138.161.88][19521] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...233] [ip4][..udp] [...192.168.1.34][13021] -> [189.188.134.174][22436]
detected: [...233] [ip4][..udp] [...192.168.1.34][13021] -> [189.188.134.174][22436] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...234] [ip4][..tcp] [...192.168.1.34][51288] -> [...76.167.161.6][20274]
new: [...235] [ip4][..tcp] [...192.168.1.34][51289] -> [...71.238.7.203][18767]
new: [...236] [ip4][..tcp] [...192.168.1.34][51290] -> [..5.248.186.221][31010]
new: [...237] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.14][..443]
detected: [...237] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.14][..443] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...238] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.141][..443]
detected: [...238] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.141][..443] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...239] [ip4][..tcp] [...192.168.1.34][51291] -> [...81.83.77.141][17639]
new: [...240] [ip4][..tcp] [...192.168.1.34][51292] -> [...71.238.7.203][18767]
new: [...241] [ip4][..tcp] [...192.168.1.34][51293] -> [..5.248.186.221][31010]
new: [...242] [ip4][..tcp] [...192.168.1.34][51294] -> [...81.83.77.141][17639]
new: [...243] [ip4][..udp] [...192.168.1.34][59788] -> [....192.168.1.1][...53]
detected: [...243] [ip4][..udp] [...192.168.1.34][59788] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][e4593.g.akamaiedge.net]
+ RISK: Unidirectional Traffic
detection-update: [...243] [ip4][..udp] [...192.168.1.34][59788] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][e4593.g.akamaiedge.net]
new: [...244] [ip4][..tcp] [...192.168.1.34][51295] -> [..23.206.33.166][..443]
detected: [...244] [ip4][..tcp] [...192.168.1.34][51295] -> [..23.206.33.166][..443] [TLS.Skype_Teams][Unknown][VoIP][Acceptable][apps.skype.com]
@@ -508,28 +693,40 @@
new: [...248] [ip4][..tcp] [...192.168.1.34][51299] -> [.91.190.216.125][12350]
new: [...249] [ip4][..tcp] [...192.168.1.34][51300] -> [...76.167.161.6][20274]
update: [....38] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.27][40025] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....24] [ip4][..udp] [...192.168.1.34][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....25] [ip4][..udp] [....192.168.1.1][..137] -> [...192.168.1.34][..137] [NetBIOS][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
update: [....28] [ip4][..udp] [...192.168.1.92][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....26] [ip4][..udp] [...192.168.1.34][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
update: [....27] [ip4][..udp] [....192.168.1.1][..138] -> [...192.168.1.34][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
update: [....29] [ip4][..udp] [...192.168.1.92][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
update: [....31] [ip6][..udp] [...............fe80::c62c:3ff:fe06:49fe][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable]
update: [....32] [ip4][..udp] [...192.168.1.92][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable]
update: [....36] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.145][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....30] [ip4][..udp] [...192.168.1.92][53826] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....43] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.44][40019] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....42] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.143][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....34] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.15][40026] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....39] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.34][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....35] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.33][40002] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....33] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.170][40015] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....40] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.168][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....37] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.165][40028] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....41] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.143][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...250] [ip4][..tcp] [...192.168.1.34][51301] -> [.82.224.110.241][38895]
new: [...251] [ip4][..tcp] [...192.168.1.34][51302] -> [.91.190.216.125][..443]
new: [...252] [ip4][..tcp] [...192.168.1.34][51303] -> [...80.121.84.93][62381]
@@ -543,7 +740,6 @@
[IATS(ms)....: 69.8,69.9,0.1,64.1,63.9,0.4,65.4,65.0,2.0,66.7,64.9,268.0,267.9,126.5,126.5,3.7,173.4,169.7,0.2,68.9,95.7,164.4,0.2,67.0,66.9,198.4,1936.2,2004.1,795.9,1062.3,592.6]
[PKTLENS.....: 64,60,52,117,80,52,68,66,52,804,66,52,52,56,1176,52,608,95,96,78,52,95,52,79,73,52,52,90,52,91,52,97]
[ENTROPIES...: 4.6,5.3,5.2,6.3,5.7,5.2,5.6,5.6,5.2,7.7,5.6,5.2,5.2,5.3,7.8,5.2,7.7,6.1,6.2,5.7,5.1,6.0,5.1,5.9,5.7,5.2,5.2,6.0,5.2,6.0,5.2,6.1]
- not-detected: [...242] [ip4][..tcp] [...192.168.1.34][51294] -> [...81.83.77.141][17639] [Unknown][Unknown][Unrated]
new: [...253] [ip4][..tcp] [...192.168.1.34][51305] -> [...149.13.32.15][13392]
new: [...254] [ip4][..tcp] [...192.168.1.34][51306] -> [...80.121.84.93][62381]
new: [...255] [ip4][..tcp] [...192.168.1.34][51307] -> [...149.13.32.15][13392]
@@ -558,60 +754,110 @@
new: [...260] [ip4][..tcp] [...192.168.1.34][51313] -> [...212.161.8.36][13392]
new: [...261] [ip4][..tcp] [...192.168.1.34][51314] -> [..93.79.224.176][14506]
update: [...102] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.33][40002] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....66] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.25][40010] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....54] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.19][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....88] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.15][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....65] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.39][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....78] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.12][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....93] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....55] [ip4][..udp] [...192.168.1.34][17500] -> [255.255.255.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
update: [....57] [ip4][..udp] [...192.168.1.92][17500] -> [255.255.255.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
update: [....56] [ip4][..udp] [...192.168.1.34][17500] -> [..192.168.1.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
update: [....58] [ip4][..udp] [...192.168.1.92][17500] -> [..192.168.1.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
update: [....48] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.18][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....63] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.65][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....49] [ip4][..udp] [..192.168.0.254][.1025] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
update: [....46] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.165][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....71] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.173][40017] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....79] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.143][40018] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....92] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.142][40023] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....91] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.148][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...101] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.154][40032] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....76] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...103] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.42][40006] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....82] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.13][40009] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....51] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.33][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....86] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.145][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....83] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.46][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....95] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.151][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....90] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.159][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....53] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.13][40009] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....85] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.22][40009] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....68] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.28][40014] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....70] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.44][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....50] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.32][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....47] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.17][40025] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....99] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.27][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...106] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.140][40003] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....87] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.150][40007] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....52] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.145][40008] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....94] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.149][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....62] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.171][40012] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....69] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.154][40013] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...100] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.142][40013] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....84] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.174][40019] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....98] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.156][40019] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...104] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.172][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....45] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.167][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...105] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.167][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....89] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.162][40033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....64] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.140][40003] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....96] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.165][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....44] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.173][40013] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....72] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.154][40017] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....80] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.174][40025] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....77] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.160][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [...107] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.156][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [...262] [ip4][..tcp] [...192.168.1.34][51315] -> [...212.161.8.36][13392]
detected: [...262] [ip4][..tcp] [...192.168.1.34][51315] -> [...212.161.8.36][13392] [TLS][Unknown][Web][Safe]
RISK: Known Proto on Non Std Port
@@ -622,6 +868,7 @@
new: [...265] [ip4][..tcp] [...192.168.1.34][51318] -> [...212.161.8.36][13392]
new: [...266] [ip4][..udp] [...192.168.1.34][13021] -> [..133.236.67.25][49195]
detected: [...266] [ip4][..udp] [...192.168.1.34][13021] -> [..133.236.67.25][49195] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
analyse: [....49] [ip4][..udp] [..192.168.0.254][.1025] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 19.857| 1.935| 5.865| 34398418.239| 1.700]
@@ -634,6 +881,7 @@
[ENTROPIES...: 5.8,5.7,5.7,5.7,5.7,5.7,5.7,5.7,5.7,5.7,5.7,5.7,5.7,5.7,5.7,5.7,5.8,5.7,5.7,5.7,5.7,5.7,5.7,5.7,5.7,5.7,5.8,5.7,5.7,5.7,5.7,5.7]
new: [...267] [ip4][..tcp] [...192.168.1.34][51319] -> [...212.161.8.36][13392]
idle: [...233] [ip4][..udp] [...192.168.1.34][13021] -> [189.188.134.174][22436] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [....75] [ip4][..tcp] [...192.168.1.34][51240] -> [..111.221.74.45][..443] [TLS][Unknown][Web][Safe]
end: [....75] [ip4][..tcp] [...192.168.1.34][51240] -> [..111.221.74.45][..443]
idle: [.....8] [ip4][..udp] [...192.168.1.34][61016] -> [....192.168.1.1][...53]
@@ -644,40 +892,65 @@
guessed: [...177] [ip4][..tcp] [...192.168.1.34][51268] -> [..111.221.74.18][..443] [TLS][Unknown][Web][Safe]
end: [...177] [ip4][..tcp] [...192.168.1.34][51268] -> [..111.221.74.18][..443]
guessed: [...219] [ip4][..tcp] [...192.168.1.34][51283] -> [..111.221.74.48][..443] [TLS][Unknown][Web][Safe]
+ RISK: TCP Connection Issues
end: [...219] [ip4][..tcp] [...192.168.1.34][51283] -> [..111.221.74.48][..443]
idle: [...266] [ip4][..udp] [...192.168.1.34][13021] -> [..133.236.67.25][49195] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...166] [ip4][..udp] [...192.168.1.34][61095] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...231] [ip4][..udp] [...192.168.1.34][13021] -> [...83.31.12.173][23939] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...102] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.33][40002] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...114] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.42][40005] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...202] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.43][40006] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...201] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.29][40010] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....66] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.25][40010] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...214] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.17][40013] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...165] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.38][40015] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...169] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.40][40017] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....54] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.19][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...110] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.13][40021] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....38] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.27][40025] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....88] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.15][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....78] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.12][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....65] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.39][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...118] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.24][40032] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...115] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.16][40032] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...123] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.20][40033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....12] [ip4][..udp] [...192.168.1.34][59113] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [...235] [ip4][..tcp] [...192.168.1.34][51289] -> [...71.238.7.203][18767] [Unknown][Unknown][Unrated]
end: [...235] [ip4][..tcp] [...192.168.1.34][51289] -> [...71.238.7.203][18767]
end: [....18] [ip4][..tcp] [...192.168.1.34][51231] -> [..23.206.33.166][..443]
not-detected: [...240] [ip4][..tcp] [...192.168.1.34][51292] -> [...71.238.7.203][18767] [Unknown][Unknown][Unrated]
idle: [...240] [ip4][..tcp] [...192.168.1.34][51292] -> [...71.238.7.203][18767]
idle: [.....2] [ip4][..udp] [...192.168.1.34][55028] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
end: [...244] [ip4][..tcp] [...192.168.1.34][51295] -> [..23.206.33.166][..443]
idle: [....93] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....19] [ip4][..tcp] [.17.143.160.149][.5223] -> [...192.168.1.34][50407]
guessed: [...229] [ip4][..tcp] [...192.168.1.34][51286] -> [.91.190.218.125][..443] [TLS][Unknown][Web][Safe]
end: [...229] [ip4][..tcp] [...192.168.1.34][51286] -> [.91.190.218.125][..443]
idle: [...155] [ip4][..udp] [...192.168.1.34][63342] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [...258] [ip4][..tcp] [...192.168.1.34][51311] -> [..93.79.224.176][14506] [Unknown][Unknown][Unrated]
end: [...258] [ip4][..tcp] [...192.168.1.34][51311] -> [..93.79.224.176][14506]
not-detected: [...261] [ip4][..tcp] [...192.168.1.34][51314] -> [..93.79.224.176][14506] [Unknown][Unknown][Unrated]
@@ -686,12 +959,14 @@
end: [...251] [ip4][..tcp] [...192.168.1.34][51302] -> [.91.190.216.125][..443]
not-detected: [...239] [ip4][..tcp] [...192.168.1.34][51291] -> [...81.83.77.141][17639] [Unknown][Unknown][Unrated]
end: [...239] [ip4][..tcp] [...192.168.1.34][51291] -> [...81.83.77.141][17639]
- idle: [...242] [ip4][..tcp] [...192.168.1.34][51294] -> [...81.83.77.141][17639] [Unknown][Unknown][Unrated]
+ not-detected: [...242] [ip4][..tcp] [...192.168.1.34][51294] -> [...81.83.77.141][17639] [Unknown][Unknown][Unrated]
+ idle: [...242] [ip4][..tcp] [...192.168.1.34][51294] -> [...81.83.77.141][17639]
not-detected: [...247] [ip4][..tcp] [...192.168.1.34][51298] -> [.82.224.110.241][38895] [Unknown][Unknown][Unrated]
end: [...247] [ip4][..tcp] [...192.168.1.34][51298] -> [.82.224.110.241][38895]
not-detected: [...250] [ip4][..tcp] [...192.168.1.34][51301] -> [.82.224.110.241][38895] [Unknown][Unknown][Unrated]
idle: [...250] [ip4][..tcp] [...192.168.1.34][51301] -> [.82.224.110.241][38895]
idle: [...226] [ip4][.icmp] [....192.168.1.1] -> [...192.168.1.34] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....57] [ip4][..udp] [...192.168.1.92][17500] -> [255.255.255.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
idle: [....55] [ip4][..udp] [...192.168.1.34][17500] -> [255.255.255.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
not-detected: [...121] [ip4][..tcp] [...192.168.1.34][51251] -> [....64.4.23.166][40029] [Unknown][Unknown][Unrated]
@@ -702,11 +977,15 @@
idle: [...140] [ip4][....2] [..192.168.1.229] -> [....224.0.0.251] [IGMP][Unknown][Network][Acceptable]
idle: [.....1] [ip4][....2] [..192.168.1.219] -> [.....224.0.0.22] [IGMP][Unknown][Network][Acceptable]
idle: [....16] [ip4][..udp] [...192.168.1.34][63514] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [....74] [ip4][..tcp] [...192.168.1.34][51239] -> [...65.55.223.45][..443] [TLS][Unknown][Web][Safe]
end: [....74] [ip4][..tcp] [...192.168.1.34][51239] -> [...65.55.223.45][..443]
idle: [...203] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.18][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...154] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....15] [ip4][..udp] [...192.168.1.34][53372] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [....73] [ip4][..tcp] [...192.168.1.34][51238] -> [.157.55.235.147][..443] [TLS][Unknown][Web][Safe]
end: [....73] [ip4][..tcp] [...192.168.1.34][51238] -> [.157.55.235.147][..443]
not-detected: [...236] [ip4][..tcp] [...192.168.1.34][51290] -> [..5.248.186.221][31010] [Unknown][Unknown][Unrated]
@@ -722,6 +1001,7 @@
guessed: [...159] [ip4][..tcp] [...192.168.1.34][51261] -> [.157.55.235.170][..443] [TLS][Unknown][Web][Safe]
end: [...159] [ip4][..tcp] [...192.168.1.34][51261] -> [.157.55.235.170][..443]
idle: [...230] [ip4][..udp] [...192.168.1.34][13021] -> [.174.49.171.224][32011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [...191] [ip4][..tcp] [...192.168.1.34][51274] -> [.157.55.235.152][..443] [TLS][Unknown][Web][Safe]
end: [...191] [ip4][..tcp] [...192.168.1.34][51274] -> [.157.55.235.152][..443]
guessed: [...216] [ip4][..tcp] [...192.168.1.34][51280] -> [.157.55.235.146][..443] [TLS][Unknown][Web][Safe]
@@ -737,25 +1017,30 @@
end: [....61] [ip4][..tcp] [...192.168.1.34][51236] -> [..111.221.74.45][40008]
idle: [....28] [ip4][..udp] [...192.168.1.92][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
idle: [....25] [ip4][..udp] [....192.168.1.1][..137] -> [...192.168.1.34][..137] [NetBIOS][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....24] [ip4][..udp] [...192.168.1.34][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
idle: [....29] [ip4][..udp] [...192.168.1.92][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
idle: [....27] [ip4][..udp] [....192.168.1.1][..138] -> [...192.168.1.34][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....26] [ip4][..udp] [...192.168.1.34][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
idle: [....31] [ip6][..udp] [...............fe80::c62c:3ff:fe06:49fe][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable]
idle: [...174] [ip4][....2] [..192.168.1.219] -> [...233.89.188.1] [IGMP][Unknown][Network][Acceptable]
idle: [...232] [ip4][..udp] [...192.168.1.34][13021] -> [.189.138.161.88][19521] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [...147] [ip4][..tcp] [...192.168.1.34][51256] -> [.111.221.77.142][40013] [Unknown][Unknown][Unrated]
end: [...147] [ip4][..tcp] [...192.168.1.34][51256] -> [.111.221.77.142][40013]
idle: [....14] [ip4][..udp] [...192.168.1.34][57592] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [...109] [ip4][..tcp] [...192.168.1.34][51248] -> [.111.221.77.175][40030] [Unknown][Unknown][Unrated]
end: [...109] [ip4][..tcp] [...192.168.1.34][51248] -> [.111.221.77.175][40030]
- idle: [...210] [ip4][..tcp] [...192.168.1.34][51279] -> [..111.221.74.48][40008] [Unknown][Unknown][Unrated]
+ not-detected: [...210] [ip4][..tcp] [...192.168.1.34][51279] -> [..111.221.74.48][40008] [Unknown][Unknown][Unrated]
+ idle: [...210] [ip4][..tcp] [...192.168.1.34][51279] -> [..111.221.74.48][40008]
not-detected: [...170] [ip4][..tcp] [...192.168.1.34][51267] -> [..111.221.74.18][40025] [Unknown][Unknown][Unrated]
end: [...170] [ip4][..tcp] [...192.168.1.34][51267] -> [..111.221.74.18][40025]
idle: [...237] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.14][..443] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...224] [ip4][..udp] [...192.168.1.34][58061] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [...127] [ip4][..tcp] [108.160.163.108][..443] -> [...192.168.1.34][51222]
not-detected: [...253] [ip4][..tcp] [...192.168.1.34][51305] -> [...149.13.32.15][13392] [Unknown][Unknown][Unrated]
@@ -779,38 +1064,64 @@
idle: [...243] [ip4][..udp] [...192.168.1.34][59788] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
idle: [....32] [ip4][..udp] [...192.168.1.92][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable]
idle: [....21] [ip4][..udp] [...192.168.1.34][51753] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....63] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.65][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....48] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.18][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...167] [ip4][..udp] [...192.168.1.34][55866] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....49] [ip4][..udp] [..192.168.0.254][.1025] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [...136] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.176][40001] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...175] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.140][40003] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...221] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.155][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....46] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.165][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...215] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.170][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [...256] [ip4][..tcp] [...192.168.1.34][51308] -> [...80.121.84.93][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
idle: [...256] [ip4][..tcp] [...192.168.1.34][51308] -> [...80.121.84.93][..443]
idle: [....71] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.173][40017] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....79] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.143][40018] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...176] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.158][40021] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....92] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.142][40023] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....36] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.145][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...135] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.151][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....91] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.148][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...142] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.149][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...171] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.171][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...101] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.154][40032] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...132] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...112] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....30] [ip4][..udp] [...192.168.1.92][53826] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
not-detected: [....60] [ip4][..tcp] [...192.168.1.34][51235] -> [...65.55.223.45][40009] [Unknown][Unknown][Unrated]
end: [....60] [ip4][..tcp] [...192.168.1.34][51235] -> [...65.55.223.45][40009]
idle: [....76] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.146][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....7] [ip4][..udp] [...192.168.1.34][49864] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][..udp] [...192.168.1.34][64240] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [....59] [ip4][..tcp] [...192.168.1.34][51234] -> [.157.55.235.147][40001] [Unknown][Unknown][Unrated]
end: [....59] [ip4][..tcp] [...192.168.1.34][51234] -> [.157.55.235.147][40001]
idle: [...156] [ip4][..udp] [...192.168.1.34][64258] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [....67] [ip4][..tcp] [...192.168.1.34][51237] -> [.157.55.130.176][40022] [Unknown][Unknown][Unrated]
end: [....67] [ip4][..tcp] [...192.168.1.34][51237] -> [.157.55.130.176][40022]
not-detected: [...146] [ip4][..tcp] [...192.168.1.34][51255] -> [.157.55.130.142][40005] [Unknown][Unknown][Unrated]
@@ -820,6 +1131,7 @@
not-detected: [...207] [ip4][..tcp] [...192.168.1.34][51276] -> [.157.55.235.146][40021] [Unknown][Unknown][Unrated]
end: [...207] [ip4][..tcp] [...192.168.1.34][51276] -> [.157.55.235.146][40021]
idle: [...238] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.141][..443] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [...186] [ip4][..tcp] [...192.168.1.34][51272] -> [.157.55.235.152][40029] [Unknown][Unknown][Unrated]
end: [...186] [ip4][..tcp] [...192.168.1.34][51272] -> [.157.55.235.152][40029]
not-detected: [...208] [ip4][..tcp] [...192.168.1.34][51277] -> [.157.55.235.156][40026] [Unknown][Unknown][Unrated]
@@ -828,124 +1140,220 @@
not-detected: [...149] [ip4][..tcp] [...192.168.1.34][51258] -> [213.199.179.176][40021] [Unknown][Unknown][Unrated]
end: [...149] [ip4][..tcp] [...192.168.1.34][51258] -> [213.199.179.176][40021]
idle: [...199] [ip4][..udp] [...192.168.1.34][64364] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [...178] [ip4][..tcp] [...192.168.1.34][51269] -> [213.199.179.175][40029] [Unknown][Unknown][Unrated]
end: [...178] [ip4][..tcp] [...192.168.1.34][51269] -> [213.199.179.175][40029]
idle: [....20] [ip4][..udp] [...192.168.1.34][50055] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...182] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.18][33033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...172] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.43][40001] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...151] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.19][40001] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...125] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.165][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...103] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.42][40006] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....82] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.13][40009] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....51] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.33][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...212] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.173][40012] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...168] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.38][40015] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...150] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.149][40016] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...129] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.160][40016] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...141] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.154][40017] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....43] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.44][40019] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...194] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.170][40021] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....42] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.143][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....86] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.145][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...206] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.40][40025] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...131] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.28][40026] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....34] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.15][40026] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....83] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.46][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...111] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.27][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....39] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.34][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....95] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.151][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...143] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.171][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....90] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.159][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...128] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.24][40032] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...119] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.20][40033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...198] [ip4][..udp] [...192.168.1.34][60413] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [....10] [ip4][..tcp] [...192.168.1.34][51229] -> [...157.56.52.28][40009] [Unknown][Unknown][Unrated]
end: [....10] [ip4][..tcp] [...192.168.1.34][51229] -> [...157.56.52.28][40009]
not-detected: [....97] [ip4][..tcp] [...192.168.1.34][51246] -> [...157.56.52.44][40020] [Unknown][Unknown][Unrated]
end: [....97] [ip4][..tcp] [...192.168.1.34][51246] -> [...157.56.52.44][40020]
not-detected: [...252] [ip4][..tcp] [...192.168.1.34][51303] -> [...80.121.84.93][62381] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...252] [ip4][..tcp] [...192.168.1.34][51303] -> [...80.121.84.93][62381]
not-detected: [...254] [ip4][..tcp] [...192.168.1.34][51306] -> [...80.121.84.93][62381] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...254] [ip4][..tcp] [...192.168.1.34][51306] -> [...80.121.84.93][62381]
end: [....23] [ip4][..tcp] [...192.168.1.34][51227] -> [..17.172.100.36][..443] [TLS][Apple][Web][Safe]
idle: [.....5] [ip4][..udp] [...192.168.1.34][58631] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..udp] [...192.168.1.34][60688] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [...130] [ip4][..tcp] [...192.168.1.34][51253] -> [....64.4.23.166][..443] [TLS][Unknown][Web][Safe]
end: [...130] [ip4][..tcp] [...192.168.1.34][51253] -> [....64.4.23.166][..443]
guessed: [...218] [ip4][..tcp] [...192.168.1.34][51282] -> [....64.4.23.159][..443] [TLS][Unknown][Web][Safe]
end: [...218] [ip4][..tcp] [...192.168.1.34][51282] -> [....64.4.23.159][..443]
idle: [....35] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.33][40002] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...183] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.43][40006] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....85] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.22][40009] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....53] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.13][40009] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....68] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.28][40014] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....70] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.44][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....50] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.32][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...173] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.20][40023] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...163] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.42][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...188] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.18][40025] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....47] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.17][40025] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...195] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.24][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....99] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.27][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...204] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.15][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...197] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.16][40032] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [...260] [ip4][..tcp] [...192.168.1.34][51313] -> [...212.161.8.36][13392] [Unknown][Unknown][Unrated]
end: [...260] [ip4][..tcp] [...192.168.1.34][51313] -> [...212.161.8.36][13392]
end: [...262] [ip4][..tcp] [...192.168.1.34][51315] -> [...212.161.8.36][13392]
not-detected: [...265] [ip4][..tcp] [...192.168.1.34][51318] -> [...212.161.8.36][13392] [Unknown][Unknown][Unrated]
idle: [...265] [ip4][..tcp] [...192.168.1.34][51318] -> [...212.161.8.36][13392]
not-detected: [...267] [ip4][..tcp] [...192.168.1.34][51319] -> [...212.161.8.36][13392] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...267] [ip4][..tcp] [...192.168.1.34][51319] -> [...212.161.8.36][13392]
idle: [....11] [ip4][..udp] [...192.168.1.34][62875] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...180] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.173][40003] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...106] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.140][40003] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...211] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.175][40006] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...179] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.171][40006] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...223] [ip4][..udp] [...192.168.1.34][59237] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [.....3] [ip4][..udp] [...192.168.1.34][64971] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....87] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.150][40007] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...113] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.160][40008] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....52] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.145][40008] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...152] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.140][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....94] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.149][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....62] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.171][40012] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...220] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.157][40013] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...100] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.142][40013] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....69] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.154][40013] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...187] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.147][40014] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...184] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.150][40014] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...161] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.166][40015] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....33] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.170][40015] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...193] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.159][40016] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...122] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.144][40016] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [...234] [ip4][..tcp] [...192.168.1.34][51288] -> [...76.167.161.6][20274] [Unknown][Unknown][Unrated]
end: [...234] [ip4][..tcp] [...192.168.1.34][51288] -> [...76.167.161.6][20274]
idle: [...192] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.170][40018] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...181] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.143][40018] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...137] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.148][40019] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....98] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.156][40019] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....84] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.174][40019] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...104] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.172][40020] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...189] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.160][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...133] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.152][40022] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...213] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.175][40023] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....45] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.167][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....40] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.168][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...196] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.158][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...138] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.155][40027] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....37] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.165][40028] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [...249] [ip4][..tcp] [...192.168.1.34][51300] -> [...76.167.161.6][20274] [Unknown][Unknown][Unrated]
+ RISK: TCP Connection Issues
end: [...249] [ip4][..tcp] [...192.168.1.34][51300] -> [...76.167.161.6][20274]
idle: [...105] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.167][40029] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...190] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.146][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....41] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.143][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...153] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.167][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...144] [ip4][..udp] [...192.168.1.34][13021] -> [..157.55.56.161][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...117] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.176][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...124] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.144][40032] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...145] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.148][40033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...126] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.146][40033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....89] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.162][40033] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [...227] [ip4][..tcp] [...192.168.1.34][51284] -> [.91.190.218.125][12350] [Unknown][Unknown][Unrated]
end: [...227] [ip4][..tcp] [...192.168.1.34][51284] -> [.91.190.218.125][12350]
not-detected: [...228] [ip4][..tcp] [...192.168.1.34][51285] -> [.91.190.218.125][12350] [Unknown][Unknown][Unrated]
@@ -957,17 +1365,31 @@
not-detected: [...248] [ip4][..tcp] [...192.168.1.34][51299] -> [.91.190.216.125][12350] [Unknown][Unknown][Unrated]
end: [...248] [ip4][..tcp] [...192.168.1.34][51299] -> [.91.190.216.125][12350]
idle: [....64] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.140][40003] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....96] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.165][40004] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...205] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.144][40009] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...134] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.172][40011] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....44] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.173][40013] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...222] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.141][40015] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....72] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.154][40017] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...116] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.143][40018] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...162] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.145][40024] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....80] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.174][40025] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...200] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.149][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...164] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.146][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....77] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.160][40030] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...107] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.156][40031] [Skype_Teams.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/skype_udp.pcap.out b/test/results/flow-info/default/skype_udp.pcap.out
index 9cfd305f2..97131e95b 100644
--- a/test/results/flow-info/skype_udp.pcap.out
+++ b/test/results/flow-info/default/skype_udp.pcap.out
@@ -3,5 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [....192.168.1.2][35990] -> [.24.224.190.149][39262]
detected: [.....1] [ip4][..udp] [....192.168.1.2][35990] -> [.24.224.190.149][39262] [Skype_Teams][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [....192.168.1.2][35990] -> [.24.224.190.149][39262] [Skype_Teams][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/smb_deletefile.pcap.out b/test/results/flow-info/default/smb_deletefile.pcap.out
index c1a6b1560..9c6454baf 100644
--- a/test/results/flow-info/smb_deletefile.pcap.out
+++ b/test/results/flow-info/default/smb_deletefile.pcap.out
@@ -3,6 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [..192.168.1.118][56848] -> [..192.168.1.187][..445] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [..192.168.1.118][56848] -> [..192.168.1.187][..445] [NetBIOS.SMBv23][Unknown][System][Acceptable][]
+ RISK: Unidirectional Traffic
analyse: [.....1] [ip4][..tcp] [..192.168.1.118][56848] -> [..192.168.1.187][..445] [NetBIOS.SMBv23][Unknown][System][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 2.158| 0.143| 0.529| 280112.169| 1.200]
@@ -14,4 +15,5 @@
[PKTLENS.....: 420,540,40,364,508,40,380,524,40,452,166,40,540,40,144,140,46,144,40,116,40,380,524,40,420,396,40,284,356,40,388,452]
[ENTROPIES...: 3.1,3.4,4.5,2.7,3.0,4.5,2.9,3.2,4.5,3.0,3.5,4.5,2.9,4.5,3.5,3.2,4.4,3.7,4.5,3.4,4.5,2.9,3.2,4.5,3.1,2.8,4.5,2.8,3.0,4.5,2.6,3.0]
idle: [.....1] [ip4][..tcp] [..192.168.1.118][56848] -> [..192.168.1.187][..445] [NetBIOS.SMBv23][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/smb_frags.pcap.out b/test/results/flow-info/default/smb_frags.pcap.out
index b379823ad..b379823ad 100644
--- a/test/results/flow-info/smb_frags.pcap.out
+++ b/test/results/flow-info/default/smb_frags.pcap.out
diff --git a/test/results/flow-info/smbv1.pcap.out b/test/results/flow-info/default/smbv1.pcap.out
index 00a1026a6..00a1026a6 100644
--- a/test/results/flow-info/smbv1.pcap.out
+++ b/test/results/flow-info/default/smbv1.pcap.out
diff --git a/test/results/flow-info/smpp_in_general.pcap.out b/test/results/flow-info/default/smpp_in_general.pcap.out
index 1b4513344..1b4513344 100644
--- a/test/results/flow-info/smpp_in_general.pcap.out
+++ b/test/results/flow-info/default/smpp_in_general.pcap.out
diff --git a/test/results/flow-info/smtp-starttls.pcap.out b/test/results/flow-info/default/smtp-starttls.pcap.out
index c101ece45..8fc28daf2 100644
--- a/test/results/flow-info/smtp-starttls.pcap.out
+++ b/test/results/flow-info/default/smtp-starttls.pcap.out
@@ -25,9 +25,9 @@
new: [.....2] [ip6][..tcp] [...2003:de:2016:125:fc36:8317:4e86:cb72][.7562] -> [...............2003:de:2016:120::a08:53][...25]
detected: [.....2] [ip6][..tcp] [...2003:de:2016:125:fc36:8317:4e86:cb72][.7562] -> [...............2003:de:2016:120::a08:53][...25] [SMTP][Unknown][Email][Acceptable][jw-vm08-int-dns.webernetz.net]
detection-update: [.....2] [ip6][..tcp] [...2003:de:2016:125:fc36:8317:4e86:cb72][.7562] -> [...............2003:de:2016:120::a08:53][...25] [SMTPS][Unknown][Email][Safe]
- RISK: TLS (probably) Not Carrying HTTPS
+ RISK: TLS (probably) Not Carrying HTTPS, TLS Susp Extn
detection-update: [.....2] [ip6][..tcp] [...2003:de:2016:125:fc36:8317:4e86:cb72][.7562] -> [...............2003:de:2016:120::a08:53][...25] [SMTPS][Unknown][Email][Safe]
- RISK: Self-signed Cert, TLS (probably) Not Carrying HTTPS
+ RISK: Self-signed Cert, TLS (probably) Not Carrying HTTPS, TLS Susp Extn
analyse: [.....2] [ip6][..tcp] [...2003:de:2016:125:fc36:8317:4e86:cb72][.7562] -> [...............2003:de:2016:120::a08:53][...25] [SMTPS][Unknown][Email][Safe]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.203| 0.019| 0.049| 2372.381| 2.800]
@@ -39,7 +39,7 @@
[PKTLENS.....: 72,72,60,118,110,60,212,70,90,242,1200,186,139,318,227,60,149,103,123,103,95,126,60,1094,60,125,95,104,91,60,91,60]
[ENTROPIES...: 4.3,5.0,4.6,5.6,5.4,4.8,5.6,4.9,5.2,5.4,7.6,6.2,5.9,7.2,6.9,4.7,6.1,5.7,5.6,5.7,5.2,6.1,4.8,7.8,4.8,6.1,5.1,5.8,5.0,4.6,5.5,4.4]
end: [.....2] [ip6][..tcp] [...2003:de:2016:125:fc36:8317:4e86:cb72][.7562] -> [...............2003:de:2016:120::a08:53][...25] [SMTPS][Unknown][Email][Safe]
- RISK: Self-signed Cert, TLS (probably) Not Carrying HTTPS
+ RISK: Self-signed Cert, TLS (probably) Not Carrying HTTPS, TLS Susp Extn
end: [.....1] [ip4][..tcp] [.......10.0.0.1][57406] -> [..173.194.68.26][...25] [SMTPS.Google][Google][Email][Acceptable]
RISK: Obsolete TLS (v1.1 or older)
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/smtp.pcap.out b/test/results/flow-info/default/smtp.pcap.out
index d93f98ee0..d93f98ee0 100644
--- a/test/results/flow-info/smtp.pcap.out
+++ b/test/results/flow-info/default/smtp.pcap.out
diff --git a/test/results/flow-info/smtps.pcapng.out b/test/results/flow-info/default/smtps.pcapng.out
index d82e298f7..d82e298f7 100644
--- a/test/results/flow-info/smtps.pcapng.out
+++ b/test/results/flow-info/default/smtps.pcapng.out
diff --git a/test/results/flow-info/snapchat.pcap.out b/test/results/flow-info/default/snapchat.pcap.out
index 0c05e1d1a..0c05e1d1a 100644
--- a/test/results/flow-info/snapchat.pcap.out
+++ b/test/results/flow-info/default/snapchat.pcap.out
diff --git a/test/results/flow-info/snapchat_call.pcapng.out b/test/results/flow-info/default/snapchat_call.pcapng.out
index e21a0548e..ee2cf1f04 100644
--- a/test/results/flow-info/snapchat_call.pcapng.out
+++ b/test/results/flow-info/default/snapchat_call.pcapng.out
@@ -3,7 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [.192.168.12.169][42083] -> [.18.184.138.142][..443]
detected: [.....1] [ip4][..udp] [.192.168.12.169][42083] -> [.18.184.138.142][..443] [QUIC][AmazonAWS][Web][Acceptable]
- RISK: Missing SNI TLS Extn
+ RISK: Missing SNI TLS Extn, Unidirectional Traffic
detection-update: [.....1] [ip4][..udp] [.192.168.12.169][42083] -> [.18.184.138.142][..443] [QUIC.SnapchatCall][AmazonAWS][VoIP][Acceptable]
RISK: Missing SNI TLS Extn
analyse: [.....1] [ip4][..udp] [.192.168.12.169][42083] -> [.18.184.138.142][..443] [QUIC.SnapchatCall][AmazonAWS][VoIP][Acceptable]
diff --git a/test/results/flow-info/default/snapchat_call_v1.pcapng.out b/test/results/flow-info/default/snapchat_call_v1.pcapng.out
new file mode 100644
index 000000000..2a97db288
--- /dev/null
+++ b/test/results/flow-info/default/snapchat_call_v1.pcapng.out
@@ -0,0 +1,19 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..udp] [.192.168.12.169][47520] -> [.34.246.231.140][..443]
+ detected: [.....1] [ip4][..udp] [.192.168.12.169][47520] -> [.34.246.231.140][..443] [QUIC.Snapchat][AmazonAWS][SocialNetwork][Fun][str1-euwest1-34-246-231-140.addlive.io]
+ RISK: Unidirectional Traffic
+ detection-update: [.....1] [ip4][..udp] [.192.168.12.169][47520] -> [.34.246.231.140][..443] [QUIC.SnapchatCall][AmazonAWS][VoIP][Acceptable][str1-euwest1-34-246-231-140.addlive.io]
+ analyse: [.....1] [ip4][..udp] [.192.168.12.169][47520] -> [.34.246.231.140][..443] [QUIC.SnapchatCall][AmazonAWS][VoIP][Acceptable]
+ min| max| avg| stddev| variance| entropy
+ [IAT.........: 0.000| 0.284| 0.040| 0.070| 4893.651| 3.500]
+ [PKTLEN......: 53.000| 1228.000| 476.600| 428.300| 183471.500| 4.400]
+ [BINS(c->s)..: 0,6,1,0,0,1,0,0,0,0,0,0,0,0,0,6,0,0,1,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,1,2,0,2,0,0,0,0,0,0,0,0,0,0]
+ [BINS(s->c)..: 3,1,2,0,0,0,0,0,0,0,1,0,1,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,2,0,0,0,0,0,0,0,0,0,0]
+ [DIRECTIONS..: 0,1,1,1,0,0,0,1,1,0,1,0,0,1,0,0,0,1,1,0,0,0,0,0,0,1,1,0,0,0,0,0]
+ [IATS(ms)....: 43.8,0.0,0.0,47.2,5.9,7.2,49.2,0.1,34.7,7.9,33.2,29.7,120.5,284.3,0.7,11.8,262.1,35.2,126.4,0.3,9.4,12.6,6.5,7.1,102.9,0.0,6.2,0.3,1.3,2.4,3.1]
+ [PKTLENS.....: 1228,1228,1228,433,1228,117,610,446,104,62,360,61,90,53,70,70,198,53,53,88,1147,1148,1148,703,523,72,104,525,525,525,525,525]
+ [ENTROPIES...: 7.8,7.8,7.8,7.5,7.8,6.4,7.7,7.5,6.2,5.8,7.4,5.6,6.1,5.5,6.0,5.7,6.9,5.4,5.4,5.9,7.8,7.8,7.8,7.7,7.6,5.7,6.2,7.6,7.6,7.6,7.6,7.6]
+ idle: [.....1] [ip4][..udp] [.192.168.12.169][47520] -> [.34.246.231.140][..443] [QUIC.SnapchatCall][AmazonAWS][VoIP][Acceptable]
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/snmp.pcap.out b/test/results/flow-info/default/snmp.pcap.out
index 91b6bca5e..cb0cf31ec 100644
--- a/test/results/flow-info/snmp.pcap.out
+++ b/test/results/flow-info/default/snmp.pcap.out
@@ -3,15 +3,19 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..176.211.60.43][43015] -> [...97.0.115.163][..161]
detected: [.....1] [ip4][..udp] [..176.211.60.43][43015] -> [...97.0.115.163][..161] [SNMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
detection-update: [.....1] [ip4][..udp] [..176.211.60.43][43015] -> [...97.0.115.163][..161] [SNMP][Unknown][Network][Acceptable]
new: [.....2] [ip4][..udp] [...65.2.162.193][59988] -> [.130.70.149.185][..161]
detected: [.....2] [ip4][..udp] [...65.2.162.193][59988] -> [.130.70.149.185][..161] [SNMP][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
detection-update: [.....2] [ip4][..udp] [...65.2.162.193][59988] -> [.130.70.149.185][..161] [SNMP][AmazonAWS][Network][Acceptable]
new: [.....3] [ip4][..udp] [..176.211.60.43][37224] -> [...97.0.115.163][..161]
detected: [.....3] [ip4][..udp] [..176.211.60.43][37224] -> [...97.0.115.163][..161] [SNMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
detection-update: [.....3] [ip4][..udp] [..176.211.60.43][37224] -> [...97.0.115.163][..161] [SNMP][Unknown][Network][Acceptable]
new: [.....4] [ip4][..udp] [...65.2.162.193][58433] -> [.130.70.149.185][..161]
detected: [.....4] [ip4][..udp] [...65.2.162.193][58433] -> [.130.70.149.185][..161] [SNMP][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
detection-update: [.....4] [ip4][..udp] [...65.2.162.193][58433] -> [.130.70.149.185][..161] [SNMP][AmazonAWS][Network][Acceptable]
update: [.....1] [ip4][..udp] [..176.211.60.43][43015] -> [...97.0.115.163][..161] [SNMP][Unknown][Network][Acceptable]
new: [.....5] [ip4][..udp] [..30.54.142.240][56251] -> [..250.58.112.87][..161]
@@ -26,8 +30,10 @@
DAEMON-EVENT: [Flows][active: 6 / 6|skipped: 0|!detected: 0|guessed: 0|detection-updates: 4|updates: 5]
new: [.....7] [ip4][..udp] [..35.95.158.217][60440] -> [...30.79.214.36][..161]
detected: [.....7] [ip4][..udp] [..35.95.158.217][60440] -> [...30.79.214.36][..161] [SNMP][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....8] [ip4][..udp] [..35.95.158.217][49306] -> [...30.79.214.36][..161]
detected: [.....8] [ip4][..udp] [..35.95.158.217][49306] -> [...30.79.214.36][..161] [SNMP][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [...65.2.162.193][59988] -> [.130.70.149.185][..161] [SNMP][AmazonAWS][Network][Acceptable]
idle: [.....1] [ip4][..udp] [..176.211.60.43][43015] -> [...97.0.115.163][..161] [SNMP][Unknown][Network][Acceptable]
idle: [.....5] [ip4][..udp] [..30.54.142.240][56251] -> [..250.58.112.87][..161] [SNMP][Unknown][Network][Acceptable]
@@ -39,38 +45,56 @@
new: [....10] [ip4][..udp] [.131.179.49.165][35970] -> [..254.158.1.169][..161]
detected: [....10] [ip4][..udp] [.131.179.49.165][35970] -> [..254.158.1.169][..161] [SNMP][Unknown][Network][Acceptable]
update: [.....7] [ip4][..udp] [..35.95.158.217][60440] -> [...30.79.214.36][..161] [SNMP][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....8] [ip4][..udp] [..35.95.158.217][49306] -> [...30.79.214.36][..161] [SNMP][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 52 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 4 / 10|skipped: 0|!detected: 0|guessed: 0|detection-updates: 4|updates: 7]
new: [....11] [ip4][..udp] [..92.135.15.240][54318] -> [.137.49.110.186][..162]
detected: [....11] [ip4][..udp] [..92.135.15.240][54318] -> [.137.49.110.186][..162] [SNMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....9] [ip4][..udp] [.131.179.49.165][60694] -> [..254.158.1.169][..161] [SNMP][Unknown][Network][Acceptable]
idle: [.....7] [ip4][..udp] [..35.95.158.217][60440] -> [...30.79.214.36][..161] [SNMP][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....8] [ip4][..udp] [..35.95.158.217][49306] -> [...30.79.214.36][..161] [SNMP][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....10] [ip4][..udp] [.131.179.49.165][35970] -> [..254.158.1.169][..161] [SNMP][Unknown][Network][Acceptable]
new: [....12] [ip4][..udp] [.200.76.132.137][54318] -> [189.111.255.214][..162]
detected: [....12] [ip4][..udp] [.200.76.132.137][54318] -> [189.111.255.214][..162] [SNMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....11] [ip4][..udp] [..92.135.15.240][54318] -> [.137.49.110.186][..162]
new: [....13] [ip4][..udp] [.113.19.156.111][54318] -> [.135.201.124.55][..162]
detected: [....13] [ip4][..udp] [.113.19.156.111][54318] -> [.135.201.124.55][..162] [SNMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....12] [ip4][..udp] [.200.76.132.137][54318] -> [189.111.255.214][..162]
new: [....14] [ip4][..udp] [..205.83.36.228][54318] -> [.160.174.106.32][..162]
detected: [....14] [ip4][..udp] [..205.83.36.228][54318] -> [.160.174.106.32][..162] [SNMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....15] [ip4][..udp] [.124.53.196.176][54318] -> [..103.248.22.47][..162]
detected: [....15] [ip4][..udp] [.124.53.196.176][54318] -> [..103.248.22.47][..162] [SNMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....12] [ip4][..udp] [.200.76.132.137][54318] -> [189.111.255.214][..162]
update: [....13] [ip4][..udp] [.113.19.156.111][54318] -> [.135.201.124.55][..162] [SNMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 62 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 4 / 15|skipped: 0|!detected: 0|guessed: 0|detection-updates: 4|updates: 10]
new: [....16] [ip4][..udp] [...10.231.2.134][..161] -> [....10.72.247.4][61088]
detected: [....16] [ip4][..udp] [...10.231.2.134][..161] -> [....10.72.247.4][61088] [SNMP][Unknown][Network][Acceptable]
+ RISK: Error Code, Unidirectional Traffic
idle: [....12] [ip4][..udp] [.200.76.132.137][54318] -> [189.111.255.214][..162]
idle: [....13] [ip4][..udp] [.113.19.156.111][54318] -> [.135.201.124.55][..162] [SNMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....15] [ip4][..udp] [.124.53.196.176][54318] -> [..103.248.22.47][..162] [SNMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....14] [ip4][..udp] [..205.83.36.228][54318] -> [.160.174.106.32][..162] [SNMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....17] [ip4][..udp] [.....10.99.8.88][43242] -> [.10.100.253.146][..161]
detected: [....17] [ip4][..udp] [.....10.99.8.88][43242] -> [.10.100.253.146][..161] [SNMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
detection-update: [....17] [ip4][..udp] [.....10.99.8.88][43242] -> [.10.100.253.146][..161] [SNMP][Unknown][Network][Acceptable]
+ RISK: Error Code
idle: [....17] [ip4][..udp] [.....10.99.8.88][43242] -> [.10.100.253.146][..161] [SNMP][Unknown][Network][Acceptable]
+ RISK: Error Code
idle: [....16] [ip4][..udp] [...10.231.2.134][..161] -> [....10.72.247.4][61088] [SNMP][Unknown][Network][Acceptable]
+ RISK: Error Code, Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/soap.pcap.out b/test/results/flow-info/default/soap.pcap.out
index 39efffee2..e3f42b449 100644
--- a/test/results/flow-info/soap.pcap.out
+++ b/test/results/flow-info/default/soap.pcap.out
@@ -4,7 +4,7 @@
new: [.....1] [ip4][..tcp] [..192.168.2.100][50100] -> [...23.2.213.165][...80]
new: [.....2] [ip4][..tcp] [..192.168.2.100][50100] -> [...23.2.213.165][.4176] [MIDSTREAM]
detected: [.....2] [ip4][..tcp] [..192.168.2.100][50100] -> [...23.2.213.165][.4176] [HTTP.SOAP][Unknown][Cloud][Acceptable][go.microsoft.com]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
DAEMON-EVENT: [Processed: 15 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 2|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....3] [ip4][..tcp] [..185.32.192.30][...80] -> [.85.154.114.113][56028]
diff --git a/test/results/flow-info/socks-http-example.pcap.out b/test/results/flow-info/default/socks-http-example.pcap.out
index 0c88716e2..0c88716e2 100644
--- a/test/results/flow-info/socks-http-example.pcap.out
+++ b/test/results/flow-info/default/socks-http-example.pcap.out
diff --git a/test/results/flow-info/softether.pcap.out b/test/results/flow-info/default/softether.pcap.out
index e9533cfa4..03e235a48 100644
--- a/test/results/flow-info/softether.pcap.out
+++ b/test/results/flow-info/default/softether.pcap.out
@@ -25,7 +25,7 @@
DAEMON-EVENT: [Flows][active: 1 / 3|skipped: 0|!detected: 0|guessed: 0|detection-updates: 2|updates: 6]
new: [.....4] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.105][.5004]
detected: [.....4] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.105][.5004] [Softether][Unknown][VPN][Acceptable]
- detection-update: [.....4] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.105][.5004] [Softether][Unknown][VPN][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.113][.5004] [Softether][Unknown][VPN][Acceptable]
detection-update: [.....4] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.105][.5004] [Softether][Unknown][VPN][Acceptable]
detection-update: [.....4] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.105][.5004] [Softether][Unknown][VPN][Acceptable]
@@ -34,14 +34,14 @@
update: [.....3] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.113][.5004] [Softether][Unknown][VPN][Acceptable]
update: [.....4] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.105][.5004] [Softether][Unknown][VPN][Acceptable]
DAEMON-EVENT: [Processed: 55 pkts][ZLib][compressions: 0|diff: 0 / 0]
- DAEMON-EVENT: [Flows][active: 2 / 4|skipped: 0|!detected: 0|guessed: 0|detection-updates: 5|updates: 11]
+ DAEMON-EVENT: [Flows][active: 2 / 4|skipped: 0|!detected: 0|guessed: 0|detection-updates: 4|updates: 11]
idle: [.....3] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.113][.5004] [Softether][Unknown][VPN][Acceptable]
update: [.....4] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.105][.5004] [Softether][Unknown][VPN][Acceptable]
update: [.....4] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.105][.5004] [Softether][Unknown][VPN][Acceptable]
update: [.....4] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.105][.5004] [Softether][Unknown][VPN][Acceptable]
update: [.....4] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.105][.5004] [Softether][Unknown][VPN][Acceptable]
DAEMON-EVENT: [Processed: 70 pkts][ZLib][compressions: 0|diff: 0 / 0]
- DAEMON-EVENT: [Flows][active: 1 / 4|skipped: 0|!detected: 0|guessed: 0|detection-updates: 5|updates: 15]
+ DAEMON-EVENT: [Flows][active: 1 / 4|skipped: 0|!detected: 0|guessed: 0|detection-updates: 4|updates: 15]
new: [.....5] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.112][.5004]
detected: [.....5] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.112][.5004] [Softether][Unknown][VPN][Acceptable]
idle: [.....4] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.105][.5004] [Softether][Unknown][VPN][Acceptable]
@@ -49,13 +49,13 @@
update: [.....5] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.112][.5004]
update: [.....5] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.112][.5004]
DAEMON-EVENT: [Processed: 85 pkts][ZLib][compressions: 0|diff: 0 / 0]
- DAEMON-EVENT: [Flows][active: 1 / 5|skipped: 0|!detected: 0|guessed: 0|detection-updates: 5|updates: 18]
+ DAEMON-EVENT: [Flows][active: 1 / 5|skipped: 0|!detected: 0|guessed: 0|detection-updates: 4|updates: 18]
update: [.....5] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.112][.5004] [Softether][Unknown][VPN][Acceptable]
update: [.....5] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.112][.5004] [Softether][Unknown][VPN][Acceptable]
update: [.....5] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.112][.5004] [Softether][Unknown][VPN][Acceptable]
update: [.....5] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.112][.5004] [Softether][Unknown][VPN][Acceptable]
DAEMON-EVENT: [Processed: 100 pkts][ZLib][compressions: 0|diff: 0 / 0]
- DAEMON-EVENT: [Flows][active: 1 / 5|skipped: 0|!detected: 0|guessed: 0|detection-updates: 5|updates: 22]
+ DAEMON-EVENT: [Flows][active: 1 / 5|skipped: 0|!detected: 0|guessed: 0|detection-updates: 4|updates: 22]
new: [.....6] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.113][.5004]
detected: [.....6] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.113][.5004] [Softether][Unknown][VPN][Acceptable]
idle: [.....5] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.112][.5004] [Softether][Unknown][VPN][Acceptable]
@@ -64,16 +64,16 @@
update: [.....6] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.113][.5004] [Softether][Unknown][VPN][Acceptable]
update: [.....6] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.113][.5004] [Softether][Unknown][VPN][Acceptable]
DAEMON-EVENT: [Processed: 115 pkts][ZLib][compressions: 0|diff: 0 / 0]
- DAEMON-EVENT: [Flows][active: 1 / 6|skipped: 0|!detected: 0|guessed: 0|detection-updates: 6|updates: 25]
+ DAEMON-EVENT: [Flows][active: 1 / 6|skipped: 0|!detected: 0|guessed: 0|detection-updates: 5|updates: 25]
update: [.....6] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.113][.5004] [Softether][Unknown][VPN][Acceptable]
update: [.....6] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.113][.5004] [Softether][Unknown][VPN][Acceptable]
update: [.....6] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.113][.5004] [Softether][Unknown][VPN][Acceptable]
update: [.....6] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.113][.5004] [Softether][Unknown][VPN][Acceptable]
DAEMON-EVENT: [Processed: 130 pkts][ZLib][compressions: 0|diff: 0 / 0]
- DAEMON-EVENT: [Flows][active: 1 / 6|skipped: 0|!detected: 0|guessed: 0|detection-updates: 6|updates: 29]
+ DAEMON-EVENT: [Flows][active: 1 / 6|skipped: 0|!detected: 0|guessed: 0|detection-updates: 5|updates: 29]
analyse: [.....6] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.113][.5004] [Softether][Unknown][VPN][Acceptable]
min| max| avg| stddev| variance| entropy
- [IAT.........: 0.257| 1566.080| 36.711| 451.865|204182401654.456| 2.700]
+ [IAT.........: 0.257| 1566.080| 36.711| 215.702|46527500976.652| 2.700]
[PKTLEN......: 29.000| 508.000| 90.300| 132.500| 17556.200| 4.100]
[BINS(c->s)..: 15,0,0,0,0,0,0,0,0,0,0,0,0,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
[BINS(s->c)..: 13,0,0,0,0,0,0,0,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
@@ -86,13 +86,13 @@
update: [.....6] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.113][.5004] [Softether][Unknown][VPN][Acceptable]
update: [.....6] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.113][.5004] [Softether][Unknown][VPN][Acceptable]
DAEMON-EVENT: [Processed: 145 pkts][ZLib][compressions: 0|diff: 0 / 0]
- DAEMON-EVENT: [Flows][active: 1 / 6|skipped: 0|!detected: 0|guessed: 0|detection-updates: 6|updates: 33]
+ DAEMON-EVENT: [Flows][active: 1 / 6|skipped: 0|!detected: 0|guessed: 0|detection-updates: 5|updates: 33]
update: [.....6] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.113][.5004] [Softether][Unknown][VPN][Acceptable]
update: [.....6] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.113][.5004] [Softether][Unknown][VPN][Acceptable]
update: [.....6] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.113][.5004] [Softether][Unknown][VPN][Acceptable]
update: [.....6] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.113][.5004] [Softether][Unknown][VPN][Acceptable]
DAEMON-EVENT: [Processed: 162 pkts][ZLib][compressions: 0|diff: 0 / 0]
- DAEMON-EVENT: [Flows][active: 1 / 6|skipped: 0|!detected: 0|guessed: 0|detection-updates: 6|updates: 37]
+ DAEMON-EVENT: [Flows][active: 1 / 6|skipped: 0|!detected: 0|guessed: 0|detection-updates: 5|updates: 37]
update: [.....6] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.113][.5004] [Softether][Unknown][VPN][Acceptable]
update: [.....6] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.113][.5004] [Softether][Unknown][VPN][Acceptable]
update: [.....6] [ip4][..udp] [..192.168.2.100][51381] -> [..130.158.6.113][.5004] [Softether][Unknown][VPN][Acceptable]
diff --git a/test/results/flow-info/someip-tp.pcap.out b/test/results/flow-info/default/someip-tp.pcap.out
index f6b599674..ed9faf888 100644
--- a/test/results/flow-info/someip-tp.pcap.out
+++ b/test/results/flow-info/default/someip-tp.pcap.out
@@ -3,7 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [.....10.0.1.207][56772] -> [.......10.0.1.1][18193]
detected: [.....1] [ip4][..udp] [.....10.0.1.207][56772] -> [.......10.0.1.1][18193] [SOMEIP][Unknown][RPC][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....1] [ip4][..udp] [.....10.0.1.207][56772] -> [.......10.0.1.1][18193] [SOMEIP][Unknown][RPC][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/someip-udp-method-call.pcapng.out b/test/results/flow-info/default/someip-udp-method-call.pcapng.out
index f03431f0b..cbe58a2c6 100644
--- a/test/results/flow-info/someip-udp-method-call.pcapng.out
+++ b/test/results/flow-info/default/someip-udp-method-call.pcapng.out
@@ -6,9 +6,9 @@
RISK: Known Proto on Non Std Port
new: [.....2] [ip4][..udp] [..192.168.0.125][49191] -> [....192.168.0.1][49201]
detected: [.....2] [ip4][..udp] [..192.168.0.125][49191] -> [....192.168.0.1][49201] [SOMEIP][Unknown][RPC][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....2] [ip4][..udp] [..192.168.0.125][49191] -> [....192.168.0.1][49201] [SOMEIP][Unknown][RPC][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....1] [ip4][..udp] [....192.168.0.1][49190] -> [......224.0.0.1][49190] [SOMEIP][Unknown][RPC][Acceptable]
RISK: Known Proto on Non Std Port
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/someip_sd_sample.pcap.out b/test/results/flow-info/default/someip_sd_sample.pcap.out
index 21476aadc..21476aadc 100644
--- a/test/results/flow-info/someip_sd_sample.pcap.out
+++ b/test/results/flow-info/default/someip_sd_sample.pcap.out
diff --git a/test/results/flow-info/default/source_engine.pcap.out b/test/results/flow-info/default/source_engine.pcap.out
new file mode 100644
index 000000000..07faea3f6
--- /dev/null
+++ b/test/results/flow-info/default/source_engine.pcap.out
@@ -0,0 +1,117 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..udp] [.222.204.159.87][20595] -> [206.125.246.211][27015]
+ detected: [.....1] [ip4][..udp] [.222.204.159.87][20595] -> [206.125.246.211][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 1 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....2] [ip4][..udp] [.174.134.158.83][47464] -> [206.125.246.217][27015]
+ detected: [.....2] [ip4][..udp] [.174.134.158.83][47464] -> [206.125.246.217][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ idle: [.....1] [ip4][..udp] [.222.204.159.87][20595] -> [206.125.246.211][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 2 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 2|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....3] [ip4][..udp] [237.117.185.247][41251] -> [206.125.246.219][27015]
+ detected: [.....3] [ip4][..udp] [237.117.185.247][41251] -> [206.125.246.219][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ idle: [.....2] [ip4][..udp] [.174.134.158.83][47464] -> [206.125.246.217][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 3 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 3|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....4] [ip4][..udp] [.252.187.173.26][42155] -> [206.125.246.211][27015]
+ detected: [.....4] [ip4][..udp] [.252.187.173.26][42155] -> [206.125.246.211][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ idle: [.....3] [ip4][..udp] [237.117.185.247][41251] -> [206.125.246.219][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 4 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 4|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....5] [ip4][..udp] [167.166.182.152][53321] -> [206.125.246.212][27015]
+ detected: [.....5] [ip4][..udp] [167.166.182.152][53321] -> [206.125.246.212][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ idle: [.....4] [ip4][..udp] [.252.187.173.26][42155] -> [206.125.246.211][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ new: [.....6] [ip4][..udp] [.151.182.246.17][52464] -> [206.125.246.217][27015]
+ detected: [.....6] [ip4][..udp] [.151.182.246.17][52464] -> [206.125.246.217][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ update: [.....5] [ip4][..udp] [167.166.182.152][53321] -> [206.125.246.212][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ new: [.....7] [ip4][..udp] [197.114.186.247][64888] -> [206.125.246.213][27015]
+ detected: [.....7] [ip4][..udp] [197.114.186.247][64888] -> [206.125.246.213][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ idle: [.....5] [ip4][..udp] [167.166.182.152][53321] -> [206.125.246.212][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ update: [.....6] [ip4][..udp] [.151.182.246.17][52464] -> [206.125.246.217][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ new: [.....8] [ip4][..udp] [197.114.186.247][38846] -> [206.125.246.222][27015]
+ detected: [.....8] [ip4][..udp] [197.114.186.247][38846] -> [206.125.246.222][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ idle: [.....6] [ip4][..udp] [.151.182.246.17][52464] -> [206.125.246.217][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ idle: [.....7] [ip4][..udp] [197.114.186.247][64888] -> [206.125.246.213][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 8 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 8|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 2]
+ new: [.....9] [ip4][..udp] [237.117.153.178][24647] -> [206.125.246.215][27015]
+ detected: [.....9] [ip4][..udp] [237.117.153.178][24647] -> [206.125.246.215][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ update: [.....8] [ip4][..udp] [197.114.186.247][38846] -> [206.125.246.222][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ new: [....10] [ip4][..udp] [.252.141.177.26][21572] -> [206.125.246.216][27015]
+ detected: [....10] [ip4][..udp] [.252.141.177.26][21572] -> [206.125.246.216][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ update: [.....8] [ip4][..udp] [197.114.186.247][38846] -> [206.125.246.222][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ update: [.....9] [ip4][..udp] [237.117.153.178][24647] -> [206.125.246.215][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ new: [....11] [ip4][..udp] [165.165.117.188][48822] -> [206.125.246.211][27015]
+ detected: [....11] [ip4][..udp] [165.165.117.188][48822] -> [206.125.246.211][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ idle: [....10] [ip4][..udp] [.252.141.177.26][21572] -> [206.125.246.216][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ idle: [.....8] [ip4][..udp] [197.114.186.247][38846] -> [206.125.246.222][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ idle: [.....9] [ip4][..udp] [237.117.153.178][24647] -> [206.125.246.215][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 11 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 11|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 5]
+ new: [....12] [ip4][..udp] [.140.151.209.84][.8335] -> [206.125.246.214][27015]
+ detected: [....12] [ip4][..udp] [.140.151.209.84][.8335] -> [206.125.246.214][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ idle: [....11] [ip4][..udp] [165.165.117.188][48822] -> [206.125.246.211][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ new: [....13] [ip4][..udp] [197.114.186.247][41194] -> [206.125.246.214][27015]
+ detected: [....13] [ip4][..udp] [197.114.186.247][41194] -> [206.125.246.214][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ idle: [....12] [ip4][..udp] [.140.151.209.84][.8335] -> [206.125.246.214][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 13 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 13|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 5]
+ new: [....14] [ip4][..udp] [222.158.181.242][58235] -> [206.125.246.222][27015]
+ detected: [....14] [ip4][..udp] [222.158.181.242][58235] -> [206.125.246.222][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ idle: [....13] [ip4][..udp] [197.114.186.247][41194] -> [206.125.246.214][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ new: [....15] [ip4][..udp] [237.139.153.112][.3722] -> [206.125.246.219][27015]
+ detected: [....15] [ip4][..udp] [237.139.153.112][.3722] -> [206.125.246.219][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ idle: [....14] [ip4][..udp] [222.158.181.242][58235] -> [206.125.246.222][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 15 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 15|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 5]
+ new: [....16] [ip4][..udp] [118.149.186.147][21285] -> [206.125.246.214][27015]
+ detected: [....16] [ip4][..udp] [118.149.186.147][21285] -> [206.125.246.214][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ idle: [....15] [ip4][..udp] [237.139.153.112][.3722] -> [206.125.246.219][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 16 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 16|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 5]
+ new: [....17] [ip4][..udp] [.151.182.246.17][17890] -> [206.125.246.221][27015]
+ detected: [....17] [ip4][..udp] [.151.182.246.17][17890] -> [206.125.246.221][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ idle: [....16] [ip4][..udp] [118.149.186.147][21285] -> [206.125.246.214][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ idle: [....17] [ip4][..udp] [.151.182.246.17][17890] -> [206.125.246.221][27015] [Source_Engine][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/sql_injection.pcap.out b/test/results/flow-info/default/sql_injection.pcap.out
index 9070e3063..942a74760 100644
--- a/test/results/flow-info/sql_injection.pcap.out
+++ b/test/results/flow-info/default/sql_injection.pcap.out
@@ -3,7 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [..192.168.3.109][53528] -> [..192.168.3.107][...80] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [..192.168.3.109][53528] -> [..192.168.3.107][...80] [HTTP][Unknown][Web][Acceptable][192.168.3.107]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, Unidirectional Traffic
idle: [.....1] [ip4][..tcp] [..192.168.3.109][53528] -> [..192.168.3.107][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: SQL Injection, HTTP Numeric IP Address
+ RISK: SQL Injection, HTTP/TLS/QUIC Numeric Hostname/SNI
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/ssdp-m-search-ua.pcap.out b/test/results/flow-info/default/ssdp-m-search-ua.pcap.out
index b676c9b16..b676c9b16 100644
--- a/test/results/flow-info/ssdp-m-search-ua.pcap.out
+++ b/test/results/flow-info/default/ssdp-m-search-ua.pcap.out
diff --git a/test/results/flow-info/ssdp-m-search.pcap.out b/test/results/flow-info/default/ssdp-m-search.pcap.out
index 2ae7e5961..2ae7e5961 100644
--- a/test/results/flow-info/ssdp-m-search.pcap.out
+++ b/test/results/flow-info/default/ssdp-m-search.pcap.out
diff --git a/test/results/flow-info/ssh.pcap.out b/test/results/flow-info/default/ssh.pcap.out
index 6b34663cb..6b34663cb 100644
--- a/test/results/flow-info/ssh.pcap.out
+++ b/test/results/flow-info/default/ssh.pcap.out
diff --git a/test/results/flow-info/ssl-cert-name-mismatch.pcap.out b/test/results/flow-info/default/ssl-cert-name-mismatch.pcap.out
index 0d536972c..0d536972c 100644
--- a/test/results/flow-info/ssl-cert-name-mismatch.pcap.out
+++ b/test/results/flow-info/default/ssl-cert-name-mismatch.pcap.out
diff --git a/test/results/flow-info/starcraft_battle.pcap.out b/test/results/flow-info/default/starcraft_battle.pcap.out
index 9137b09e0..c17d67b50 100644
--- a/test/results/flow-info/starcraft_battle.pcap.out
+++ b/test/results/flow-info/default/starcraft_battle.pcap.out
@@ -3,25 +3,36 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [..192.30.252.91][..443] -> [..192.168.1.100][.3213] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [..192.30.252.91][..443] -> [..192.168.1.100][.3213] [TLS][Github][Web][Safe]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..udp] [..192.168.1.100][58818] -> [..192.168.1.254][...53]
detected: [.....2] [ip4][..udp] [..192.168.1.100][58818] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][91.252.30.192.in-addr.arpa]
+ RISK: Unidirectional Traffic
detection-update: [.....2] [ip4][..udp] [..192.168.1.100][58818] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][100.1.168.192.in-addr.arpa]
+ RISK: Unidirectional Traffic
detection-update: [.....2] [ip4][..udp] [..192.168.1.100][58818] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][100.1.168.192.in-addr.arpa]
+ RISK: Minor Issues
new: [.....3] [ip4][..tcp] [..80.239.186.26][..443] -> [..192.168.1.100][.3476] [MIDSTREAM]
new: [.....4] [ip4][..udp] [..192.168.1.100][58831] -> [..192.168.1.254][...53]
detected: [.....4] [ip4][..udp] [..192.168.1.100][58831] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][254.1.168.192.in-addr.arpa]
+ RISK: Unidirectional Traffic
detection-update: [.....4] [ip4][..udp] [..192.168.1.100][58831] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][26.186.239.80.in-addr.arpa]
+ RISK: Unidirectional Traffic
detection-update: [.....4] [ip4][..udp] [..192.168.1.100][58831] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][254.1.168.192.in-addr.arpa]
+ RISK: Error Code
detection-update: [.....4] [ip4][..udp] [..192.168.1.100][58831] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][26.186.239.80.in-addr.arpa]
+ RISK: Error Code
new: [.....5] [ip4][..tcp] [..80.239.186.40][..443] -> [..192.168.1.100][.3478] [MIDSTREAM]
new: [.....6] [ip4][..udp] [..173.194.40.22][..443] -> [..192.168.1.100][53568]
new: [.....7] [ip4][..udp] [..192.168.1.100][58844] -> [..192.168.1.254][...53]
detected: [.....7] [ip4][..udp] [..192.168.1.100][58844] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][40.186.239.80.in-addr.arpa]
+ RISK: Unidirectional Traffic
detection-update: [.....7] [ip4][..udp] [..192.168.1.100][58844] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][40.186.239.80.in-addr.arpa]
new: [.....8] [ip4][..tcp] [..192.168.1.100][.3052] -> [.216.58.212.110][..443] [MIDSTREAM]
new: [.....9] [ip4][..udp] [..192.168.1.100][58851] -> [..192.168.1.254][...53]
detected: [.....9] [ip4][..udp] [..192.168.1.100][58851] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][22.40.194.173.in-addr.arpa]
+ RISK: Unidirectional Traffic
detection-update: [.....9] [ip4][..udp] [..192.168.1.100][58851] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][110.212.58.216.in-addr.arpa]
+ RISK: Unidirectional Traffic
detection-update: [.....9] [ip4][..udp] [..192.168.1.100][58851] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][110.212.58.216.in-addr.arpa]
new: [....10] [ip4][..tcp] [..192.168.1.100][.3427] -> [.80.239.208.193][.1119] [MIDSTREAM]
new: [....11] [ip4][..tcp] [..192.168.1.100][.2759] -> [.64.233.184.188][.5228] [MIDSTREAM]
@@ -32,14 +43,14 @@
detected: [....13] [ip4][..tcp] [..192.168.1.100][.3506] -> [173.194.113.224][...80] [HTTP.Google][Google][Advertisement][Acceptable][www.google-analytics.com]
new: [....14] [ip4][..udp] [..192.168.1.100][60026] -> [..192.168.1.254][...53]
detected: [....14] [ip4][..udp] [..192.168.1.100][60026] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][llnw.blizzard.com]
- RISK: Suspicious DGA Domain name
+ RISK: Susp DGA Domain name, Unidirectional Traffic
detection-update: [....14] [ip4][..udp] [..192.168.1.100][60026] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][llnw.blizzard.com]
- RISK: Suspicious DGA Domain name, Risky Domain Name
+ RISK: Susp DGA Domain name, Risky Domain Name
new: [....15] [ip4][..tcp] [..192.168.1.100][.3508] -> [.87.248.221.254][...80]
detected: [....15] [ip4][..tcp] [..192.168.1.100][.3508] -> [.87.248.221.254][...80] [HTTP][Unknown][Web][Acceptable][llnw.blizzard.com]
- RISK: Suspicious DGA Domain name
+ RISK: Susp DGA Domain name
detection-update: [....15] [ip4][..tcp] [..192.168.1.100][.3508] -> [.87.248.221.254][...80] [HTTP][Unknown][Download][Acceptable][llnw.blizzard.com]
- RISK: Binary App Transfer, Suspicious DGA Domain name
+ RISK: Binary App Transfer, Susp DGA Domain name
analyse: [....15] [ip4][..tcp] [..192.168.1.100][.3508] -> [.87.248.221.254][...80] [HTTP][Unknown][Download][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.072| 0.012| 0.024| 562.008| 2.800]
@@ -52,8 +63,7 @@
[ENTROPIES...: 4.6,4.9,4.7,5.8,4.5,5.3,4.7,5.1,4.6,5.2,4.7,5.1,4.7,5.1,4.6,5.2,4.6,5.2,4.6,5.1,4.7,5.2,4.7,5.1,4.7,5.1,4.7,5.2,4.7,5.2,4.7,5.1]
new: [....16] [ip4][..tcp] [..192.168.1.100][.3512] -> [..12.129.222.54][...80]
detected: [....16] [ip4][..tcp] [..192.168.1.100][.3512] -> [..12.129.222.54][...80] [HTTP.WorldOfWarcraft][Unknown][Game][Fun][us.scan.worldofwarcraft.com]
- detection-update: [....16] [ip4][..tcp] [..192.168.1.100][.3512] -> [..12.129.222.54][...80] [HTTP.WorldOfWarcraft][Unknown][Game][Fun][us.scan.worldofwarcraft.com]
- RISK: HTTP Suspicious User-Agent
+ RISK: HTTP Susp User-Agent
new: [....17] [ip4][..tcp] [..192.168.1.100][.3492] -> [...2.228.46.104][..443] [MIDSTREAM]
new: [....18] [ip4][..tcp] [..192.168.1.100][.3489] -> [...2.228.46.104][..443] [MIDSTREAM]
new: [....19] [ip4][..tcp] [..192.168.1.100][.3490] -> [...2.228.46.104][..443] [MIDSTREAM]
@@ -76,6 +86,7 @@
detected: [....27] [ip4][....2] [..192.168.1.107] -> [.....224.0.0.22] [IGMP][Unknown][Network][Acceptable]
new: [....28] [ip4][..udp] [..192.168.1.100][53145] -> [..192.168.1.254][...53]
detected: [....28] [ip4][..udp] [..192.168.1.100][53145] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][nydus.battle.net]
+ RISK: Unidirectional Traffic
detection-update: [....28] [ip4][..udp] [..192.168.1.100][53145] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][nydus.battle.net]
new: [....29] [ip4][..tcp] [..192.168.1.100][.3515] -> [..80.239.186.26][...80]
detected: [....29] [ip4][..tcp] [..192.168.1.100][.3515] -> [..80.239.186.26][...80] [HTTP][Unknown][Web][Acceptable][nydus.battle.net]
@@ -115,6 +126,7 @@
detected: [....43] [ip4][..tcp] [..192.168.1.100][.3526] -> [..80.239.186.40][...80] [HTTP][Unknown][Web][Acceptable][eu.battle.net]
new: [....44] [ip4][..udp] [..192.168.1.100][55468] -> [..192.168.1.254][...53]
detected: [....44] [ip4][..udp] [..192.168.1.100][55468] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][bnetcmsus-a.akamaihd.net]
+ RISK: Unidirectional Traffic
detection-update: [....44] [ip4][..udp] [..192.168.1.100][55468] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][bnetcmsus-a.akamaihd.net]
new: [....45] [ip4][..tcp] [..192.168.1.100][.3527] -> [...2.228.46.112][...80]
new: [....46] [ip4][..tcp] [..192.168.1.100][.3528] -> [...2.228.46.112][...80]
@@ -143,7 +155,7 @@
[ENTROPIES...: 4.5,4.8,4.7,5.8,4.5,5.9,7.7,4.7,7.8,7.8,4.7,7.8,7.7,4.7,7.7,7.8,4.7,7.8,7.8,4.7,7.8,7.8,4.7,7.7,7.8,4.7,7.8,7.7,4.7,7.8,7.8,4.7]
guessed: [....35] [ip4][..udp] [..192.168.1.100][53146] -> [..62.115.246.51][.1119] [Starcraft][Unknown][Game][Fun]
idle: [....35] [ip4][..udp] [..192.168.1.100][53146] -> [..62.115.246.51][.1119]
- not-detected: [....11] [ip4][..tcp] [..192.168.1.100][.2759] -> [.64.233.184.188][.5228] [Unknown][Google][Unrated]
+ guessed: [....11] [ip4][..tcp] [..192.168.1.100][.2759] -> [.64.233.184.188][.5228] [Google][Google][Web][Acceptable]
idle: [....11] [ip4][..tcp] [..192.168.1.100][.2759] -> [.64.233.184.188][.5228]
guessed: [.....8] [ip4][..tcp] [..192.168.1.100][.3052] -> [.216.58.212.110][..443] [TLS][Google][Web][Safe]
idle: [.....8] [ip4][..tcp] [..192.168.1.100][.3052] -> [.216.58.212.110][..443]
@@ -163,6 +175,7 @@
idle: [....50] [ip4][..tcp] [..192.168.1.100][.3532] -> [...2.228.46.112][...80]
idle: [....51] [ip4][..tcp] [..192.168.1.100][.3533] -> [...2.228.46.112][...80]
guessed: [....52] [ip4][..tcp] [..192.168.1.100][.3534] -> [...2.228.46.112][...80] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [....52] [ip4][..tcp] [..192.168.1.100][.3534] -> [...2.228.46.112][...80]
idle: [....31] [ip4][..tcp] [..192.168.1.100][.3517] -> [213.248.127.130][.1119] [Starcraft][Unknown][Game][Fun]
end: [....24] [ip4][..tcp] [..192.168.1.100][.3479] -> [...2.228.46.114][..443] [TLS][Unknown][Web][Safe]
@@ -174,7 +187,7 @@
end: [....20] [ip4][..tcp] [..192.168.1.100][.3491] -> [...2.228.46.104][..443] [TLS][Unknown][Web][Safe]
end: [....17] [ip4][..tcp] [..192.168.1.100][.3492] -> [...2.228.46.104][..443] [TLS][Unknown][Web][Safe]
idle: [....14] [ip4][..udp] [..192.168.1.100][60026] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Suspicious DGA Domain name, Risky Domain Name
+ RISK: Susp DGA Domain name, Risky Domain Name
idle: [.....1] [ip4][..tcp] [..192.30.252.91][..443] -> [..192.168.1.100][.3213]
guessed: [....37] [ip4][..udp] [..192.168.1.100][.6113] -> [213.248.127.166][.1119] [Starcraft][Unknown][Game][Fun]
idle: [....37] [ip4][..udp] [..192.168.1.100][.6113] -> [213.248.127.166][.1119]
@@ -198,15 +211,19 @@
end: [....25] [ip4][..tcp] [..192.168.1.100][.3486] -> [.199.38.164.156][..443]
idle: [....12] [ip4][..udp] [..192.168.1.254][38605] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
end: [....15] [ip4][..tcp] [..192.168.1.100][.3508] -> [.87.248.221.254][...80] [HTTP][Unknown][Download][Acceptable]
- RISK: Binary App Transfer, Suspicious DGA Domain name
+ RISK: Binary App Transfer, Susp DGA Domain name
guessed: [.....3] [ip4][..tcp] [..80.239.186.26][..443] -> [..192.168.1.100][.3476] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic, TCP Connection Issues
end: [.....3] [ip4][..tcp] [..80.239.186.26][..443] -> [..192.168.1.100][.3476]
guessed: [.....5] [ip4][..tcp] [..80.239.186.40][..443] -> [..192.168.1.100][.3478] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic, TCP Connection Issues
end: [.....5] [ip4][..tcp] [..80.239.186.40][..443] -> [..192.168.1.100][.3478]
idle: [.....2] [ip4][..udp] [..192.168.1.100][58818] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Minor Issues
idle: [.....4] [ip4][..udp] [..192.168.1.100][58831] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Error Code
idle: [.....7] [ip4][..udp] [..192.168.1.100][58844] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable]
idle: [.....9] [ip4][..udp] [..192.168.1.100][58851] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable]
end: [....16] [ip4][..tcp] [..192.168.1.100][.3512] -> [..12.129.222.54][...80] [HTTP.WorldOfWarcraft][Unknown][Game][Fun]
- RISK: HTTP Suspicious User-Agent
+ RISK: HTTP Susp User-Agent, HTTP Obsolete Server
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/steam.pcap.out b/test/results/flow-info/default/steam.pcap.out
index cbcb05416..549cf1db9 100644
--- a/test/results/flow-info/steam.pcap.out
+++ b/test/results/flow-info/default/steam.pcap.out
@@ -3,167 +3,277 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.13][27018]
detected: [.....1] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.13][27018] [Steam][Steam][Game][Fun]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.12][27019]
detected: [.....2] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.12][27019] [Steam][Steam][Game][Fun]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.8][27018]
detected: [.....3] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.8][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.6][27017]
detected: [.....4] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.6][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][..udp] [192.168.188.149][45665] -> [..69.28.145.172][27018]
detected: [.....5] [ip4][..udp] [192.168.188.149][45665] -> [..69.28.145.172][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [.....6] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.8][27017]
detected: [.....6] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.8][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [.....7] [ip4][..udp] [192.168.188.149][45665] -> [...68.142.91.36][27017]
detected: [.....7] [ip4][..udp] [192.168.188.149][45665] -> [...68.142.91.36][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [.....8] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.12][27018]
detected: [.....8] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.12][27018] [Steam][Steam][Game][Fun]
+ RISK: Unidirectional Traffic
new: [.....9] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.7][27018]
detected: [.....9] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.7][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....10] [ip4][..udp] [192.168.188.149][45665] -> [.208.111.171.83][27017]
detected: [....10] [ip4][..udp] [192.168.188.149][45665] -> [.208.111.171.83][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....11] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.8][27019]
detected: [....11] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.8][27019] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....12] [ip4][..udp] [192.168.188.149][45665] -> [..69.28.145.170][27017]
detected: [....12] [ip4][..udp] [192.168.188.149][45665] -> [..69.28.145.170][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....13] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.14][27019]
detected: [....13] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.14][27019] [Steam][Steam][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....14] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.187][27018]
detected: [....14] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.187][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....15] [ip4][..udp] [192.168.188.149][45665] -> [..69.28.145.172][27017]
detected: [....15] [ip4][..udp] [192.168.188.149][45665] -> [..69.28.145.172][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....16] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.6][27019]
detected: [....16] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.6][27019] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....17] [ip4][..udp] [192.168.188.149][45665] -> [...68.142.91.34][27017]
detected: [....17] [ip4][..udp] [192.168.188.149][45665] -> [...68.142.91.34][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....18] [ip4][..udp] [192.168.188.149][45665] -> [...203.77.185.4][27017]
detected: [....18] [ip4][..udp] [192.168.188.149][45665] -> [...203.77.185.4][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....19] [ip4][..udp] [192.168.188.149][45665] -> [.68.142.116.179][27017]
detected: [....19] [ip4][..udp] [192.168.188.149][45665] -> [.68.142.116.179][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....20] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.188][27017]
detected: [....20] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.188][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....21] [ip4][..udp] [192.168.188.149][45665] -> [.208.111.171.82][27017]
detected: [....21] [ip4][..udp] [192.168.188.149][45665] -> [.208.111.171.82][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....22] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.185][27018]
detected: [....22] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.185][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....23] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.5][27019]
detected: [....23] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.5][27019] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....24] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.13][27017]
detected: [....24] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.13][27017] [Steam][Steam][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....25] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.14][27017]
detected: [....25] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.14][27017] [Steam][Steam][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....26] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.174][27017]
detected: [....26] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.174][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....27] [ip4][..udp] [192.168.188.149][45665] -> [..69.28.145.171][27017]
detected: [....27] [ip4][..udp] [192.168.188.149][45665] -> [..69.28.145.171][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....28] [ip4][..udp] [192.168.188.149][45665] -> [.208.111.133.85][27018]
detected: [....28] [ip4][..udp] [192.168.188.149][45665] -> [.208.111.133.85][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....29] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.5][27018]
detected: [....29] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.5][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....30] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.175][27017]
detected: [....30] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.175][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....31] [ip4][..udp] [192.168.188.149][45665] -> [...203.77.185.5][27017]
detected: [....31] [ip4][..udp] [192.168.188.149][45665] -> [...203.77.185.5][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....32] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.15][27018]
detected: [....32] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.15][27018] [Steam][Steam][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....33] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.15][27019]
detected: [....33] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.15][27019] [Steam][Steam][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....34] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.174][27018]
detected: [....34] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.174][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....35] [ip4][..udp] [192.168.188.149][45665] -> [.208.111.133.84][27017]
detected: [....35] [ip4][..udp] [192.168.188.149][45665] -> [.208.111.133.84][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....36] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.12][27017]
detected: [....36] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.12][27017] [Steam][Steam][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....37] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.7][27017]
detected: [....37] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.7][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....38] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.187][27017]
detected: [....38] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.187][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....39] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.5][27017]
detected: [....39] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.5][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....40] [ip4][..udp] [192.168.188.149][45665] -> [.208.111.133.84][27018]
detected: [....40] [ip4][..udp] [192.168.188.149][45665] -> [.208.111.133.84][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....41] [ip4][..udp] [192.168.188.149][45665] -> [.208.111.133.85][27017]
detected: [....41] [ip4][..udp] [192.168.188.149][45665] -> [.208.111.133.85][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....42] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.176][27018]
detected: [....42] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.176][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....43] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.185][27017]
detected: [....43] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.185][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....44] [ip4][..udp] [192.168.188.149][45665] -> [...68.142.91.35][27017]
detected: [....44] [ip4][..udp] [192.168.188.149][45665] -> [...68.142.91.35][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....45] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.13][27019]
detected: [....45] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.13][27019] [Steam][Steam][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....46] [ip4][..udp] [192.168.188.149][45665] -> [..69.28.145.170][27018]
detected: [....46] [ip4][..udp] [192.168.188.149][45665] -> [..69.28.145.170][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....47] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.15][27017]
detected: [....47] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.15][27017] [Steam][Steam][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....48] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.175][27018]
detected: [....48] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.175][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....49] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.7][27019]
detected: [....49] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.7][27019] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....50] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.188][27018]
detected: [....50] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.188][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....51] [ip4][..udp] [192.168.188.149][45665] -> [.68.142.116.178][27017]
detected: [....51] [ip4][..udp] [192.168.188.149][45665] -> [.68.142.116.178][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....52] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.6][27018]
detected: [....52] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.6][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....53] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.14][27018]
detected: [....53] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.14][27018] [Steam][Steam][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....54] [ip4][..udp] [192.168.188.149][45665] -> [..69.28.145.171][27018]
detected: [....54] [ip4][..udp] [192.168.188.149][45665] -> [..69.28.145.171][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....55] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.176][27017]
detected: [....55] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.176][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....37] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.7][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.8][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....39] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.5][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.6][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....52] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.6][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....29] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.5][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....9] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.7][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.8][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....49] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.7][27019] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....23] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.5][27019] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....16] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.6][27019] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....11] [ip4][..udp] [192.168.188.149][45665] -> [...81.171.115.8][27019] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....27] [ip4][..udp] [192.168.188.149][45665] -> [..69.28.145.171][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....15] [ip4][..udp] [192.168.188.149][45665] -> [..69.28.145.172][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....12] [ip4][..udp] [192.168.188.149][45665] -> [..69.28.145.170][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....54] [ip4][..udp] [192.168.188.149][45665] -> [..69.28.145.171][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....46] [ip4][..udp] [192.168.188.149][45665] -> [..69.28.145.170][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....5] [ip4][..udp] [192.168.188.149][45665] -> [..69.28.145.172][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....55] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.176][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....43] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.185][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....38] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.187][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....30] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.175][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....26] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.174][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....20] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.188][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....50] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.188][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....48] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.175][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....42] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.176][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....34] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.174][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....22] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.185][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....14] [ip4][..udp] [192.168.188.149][45665] -> [..72.165.61.187][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....31] [ip4][..udp] [192.168.188.149][45665] -> [...203.77.185.5][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....18] [ip4][..udp] [192.168.188.149][45665] -> [...203.77.185.4][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....44] [ip4][..udp] [192.168.188.149][45665] -> [...68.142.91.35][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....51] [ip4][..udp] [192.168.188.149][45665] -> [.68.142.116.178][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....19] [ip4][..udp] [192.168.188.149][45665] -> [.68.142.116.179][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....17] [ip4][..udp] [192.168.188.149][45665] -> [...68.142.91.34][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....7] [ip4][..udp] [192.168.188.149][45665] -> [...68.142.91.36][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....41] [ip4][..udp] [192.168.188.149][45665] -> [.208.111.133.85][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....35] [ip4][..udp] [192.168.188.149][45665] -> [.208.111.133.84][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....21] [ip4][..udp] [192.168.188.149][45665] -> [.208.111.171.82][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....10] [ip4][..udp] [192.168.188.149][45665] -> [.208.111.171.83][27017] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....40] [ip4][..udp] [192.168.188.149][45665] -> [.208.111.133.84][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....28] [ip4][..udp] [192.168.188.149][45665] -> [.208.111.133.85][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....47] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.15][27017] [Steam][Steam][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....25] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.14][27017] [Steam][Steam][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....36] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.12][27017] [Steam][Steam][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....24] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.13][27017] [Steam][Steam][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....53] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.14][27018] [Steam][Steam][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....32] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.15][27018] [Steam][Steam][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....8] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.12][27018] [Steam][Steam][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.13][27018] [Steam][Steam][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....33] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.15][27019] [Steam][Steam][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....45] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.13][27019] [Steam][Steam][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....13] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.14][27019] [Steam][Steam][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [192.168.188.149][45665] -> [..146.66.152.12][27019] [Steam][Steam][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/steam_datagram_relay_ping.pcapng.out b/test/results/flow-info/default/steam_datagram_relay_ping.pcapng.out
index 58171cc0b..5892974c7 100644
--- a/test/results/flow-info/steam_datagram_relay_ping.pcapng.out
+++ b/test/results/flow-info/default/steam_datagram_relay_ping.pcapng.out
@@ -3,5 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..192.168.2.100][52157] -> [..139.45.193.10][27018]
detected: [.....1] [ip4][..udp] [..192.168.2.100][52157] -> [..139.45.193.10][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [..192.168.2.100][52157] -> [..139.45.193.10][27018] [Steam][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/stun.pcap.out b/test/results/flow-info/default/stun.pcap.out
index 2768afaa3..2768afaa3 100644
--- a/test/results/flow-info/stun.pcap.out
+++ b/test/results/flow-info/default/stun.pcap.out
diff --git a/test/results/flow-info/stun_signal.pcapng.out b/test/results/flow-info/default/stun_signal.pcapng.out
index 5e2f3403c..d7b438044 100644
--- a/test/results/flow-info/stun_signal.pcapng.out
+++ b/test/results/flow-info/default/stun_signal.pcapng.out
@@ -9,26 +9,29 @@
new: [.....6] [ip4][..udp] [.192.168.12.169][39518] -> [.35.158.183.167][..443]
new: [.....7] [ip4][.icmp] [.35.158.183.167] -> [.192.168.12.169]
detected: [.....7] [ip4][.icmp] [.35.158.183.167] -> [.192.168.12.169] [ICMP][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
detected: [.....5] [ip4][..udp] [.192.168.12.169][39518] -> [.35.158.183.167][.3478] [STUN.SignalVoip][AmazonAWS][VoIP][Acceptable][signal.org]
detected: [.....4] [ip4][..udp] [.192.168.12.169][47204] -> [.35.158.183.167][.3478] [STUN.SignalVoip][AmazonAWS][VoIP][Acceptable][]
detected: [.....1] [ip4][..udp] [.192.168.12.169][39518] -> [172.253.121.127][19302] [STUN.SignalVoip][Google][VoIP][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
detected: [.....6] [ip4][..udp] [.192.168.12.169][39518] -> [.35.158.183.167][..443] [STUN.SignalVoip][AmazonAWS][VoIP][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
detected: [.....3] [ip4][..udp] [.192.168.12.169][47204] -> [.35.158.183.167][..443] [STUN][AmazonAWS][Network][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [.....8] [ip4][..udp] [.192.168.12.169][43068] -> [.35.158.183.167][.3478]
detected: [.....8] [ip4][..udp] [.192.168.12.169][43068] -> [.35.158.183.167][.3478] [STUN.SignalVoip][AmazonAWS][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [.....9] [ip4][..udp] [.192.168.12.169][43068] -> [.35.158.183.167][..443]
new: [....10] [ip4][..udp] [.192.168.12.169][43068] -> [172.253.121.127][19302]
new: [....11] [ip4][..udp] [.192.168.12.169][39950] -> [172.253.121.127][19302]
new: [....12] [ip4][..udp] [.192.168.12.169][39950] -> [.35.158.183.167][..443]
new: [....13] [ip4][..udp] [.192.168.12.169][39950] -> [.35.158.183.167][.3478]
detected: [....13] [ip4][..udp] [.192.168.12.169][39950] -> [.35.158.183.167][.3478] [STUN.SignalVoip][AmazonAWS][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
detected: [.....9] [ip4][..udp] [.192.168.12.169][43068] -> [.35.158.183.167][..443] [STUN][AmazonAWS][Network][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
detected: [....12] [ip4][..udp] [.192.168.12.169][39950] -> [.35.158.183.167][..443] [STUN][AmazonAWS][Network][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....14] [ip4][..udp] [.192.168.12.169][43068] -> [.18.195.131.143][61156]
detected: [....14] [ip4][..udp] [.192.168.12.169][43068] -> [.18.195.131.143][61156] [STUN][AmazonAWS][Network][Acceptable][]
RISK: Known Proto on Non Std Port
@@ -43,6 +46,7 @@
[PKTLENS.....: 124,92,124,92,132,132,92,124,92,92,124,92,84,56,84,56,124,92,84,84,124,92,56,84,56,56,56,124,92,84,56,84]
[ENTROPIES...: 5.8,5.8,5.9,5.8,5.7,5.6,5.9,5.9,5.8,5.8,5.9,5.8,5.7,5.1,5.8,5.3,5.9,5.8,5.8,5.7,5.9,5.8,5.1,5.8,5.2,5.2,5.1,5.8,5.8,5.6,5.1,5.8]
update: [.....7] [ip4][.icmp] [.35.158.183.167] -> [.192.168.12.169] [ICMP][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
detected: [....10] [ip4][..udp] [.192.168.12.169][43068] -> [172.253.121.127][19302] [STUN.GoogleHangoutDuo][Google][VoIP][Acceptable][]
RISK: Known Proto on Non Std Port
detected: [....11] [ip4][..udp] [.192.168.12.169][39950] -> [172.253.121.127][19302] [STUN.GoogleHangoutDuo][Google][VoIP][Acceptable][]
@@ -58,38 +62,39 @@
[PKTLENS.....: 76,76,84,84,76,76,76,76,76,124,124,76,76,84,84,76,76,76,76,76,76,76,84,84,76,76,84,84,76,76,84,84]
[ENTROPIES...: 5.0,5.2,5.1,5.0,5.1,5.1,5.0,5.0,5.1,5.5,5.7,5.0,5.0,5.0,5.0,4.9,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.1,5.1,5.0,5.0,5.0,5.0,5.1]
update: [.....3] [ip4][..udp] [.192.168.12.169][47204] -> [.35.158.183.167][..443] [STUN][AmazonAWS][Network][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
update: [.....2] [ip4][..udp] [.192.168.12.169][47204] -> [172.253.121.127][19302]
update: [.....6] [ip4][..udp] [.192.168.12.169][39518] -> [.35.158.183.167][..443] [STUN.SignalVoip][AmazonAWS][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
update: [.....1] [ip4][..udp] [.192.168.12.169][39518] -> [172.253.121.127][19302] [STUN.SignalVoip][Google][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
update: [.....4] [ip4][..udp] [.192.168.12.169][47204] -> [.35.158.183.167][.3478] [STUN.SignalVoip][AmazonAWS][VoIP][Acceptable]
update: [.....5] [ip4][..udp] [.192.168.12.169][39518] -> [.35.158.183.167][.3478] [STUN.SignalVoip][AmazonAWS][VoIP][Acceptable]
new: [....15] [ip4][..udp] [.192.168.12.169][47767] -> [172.253.121.127][19302]
detected: [....15] [ip4][..udp] [.192.168.12.169][47767] -> [172.253.121.127][19302] [STUN.GoogleHangoutDuo][Google][VoIP][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....16] [ip4][..udp] [.192.168.12.169][37970] -> [172.253.121.127][19302]
detected: [....16] [ip4][..udp] [.192.168.12.169][37970] -> [172.253.121.127][19302] [STUN.GoogleHangoutDuo][Google][VoIP][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....17] [ip4][..udp] [.192.168.12.169][47767] -> [.35.158.122.211][..443]
new: [....18] [ip4][..udp] [.192.168.12.169][37970] -> [.35.158.122.211][..443]
new: [....19] [ip4][..udp] [.192.168.12.169][47767] -> [.35.158.122.211][.3478]
new: [....20] [ip4][..udp] [.192.168.12.169][37970] -> [.35.158.122.211][.3478]
new: [....21] [ip4][.icmp] [.35.158.122.211] -> [.192.168.12.169]
detected: [....21] [ip4][.icmp] [.35.158.122.211] -> [.192.168.12.169] [ICMP][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
detected: [....19] [ip4][..udp] [.192.168.12.169][47767] -> [.35.158.122.211][.3478] [STUN.SignalVoip][AmazonAWS][VoIP][Acceptable][signal.org]
detected: [....20] [ip4][..udp] [.192.168.12.169][37970] -> [.35.158.122.211][.3478] [STUN.SignalVoip][AmazonAWS][VoIP][Acceptable][]
detected: [....17] [ip4][..udp] [.192.168.12.169][47767] -> [.35.158.122.211][..443] [STUN.SignalVoip][AmazonAWS][VoIP][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
detected: [....18] [ip4][..udp] [.192.168.12.169][37970] -> [.35.158.122.211][..443] [STUN][AmazonAWS][Network][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....22] [ip4][..udp] [.192.168.12.169][47767] -> [.18.195.131.143][54054]
detected: [....22] [ip4][..udp] [.192.168.12.169][47767] -> [.18.195.131.143][54054] [STUN.SignalVoip][AmazonAWS][VoIP][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....23] [ip4][..udp] [.192.168.12.169][47767] -> [.18.195.131.143][61498]
detected: [....23] [ip4][..udp] [.192.168.12.169][47767] -> [.18.195.131.143][61498] [STUN.SignalVoip][AmazonAWS][VoIP][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
analyse: [....23] [ip4][..udp] [.192.168.12.169][47767] -> [.18.195.131.143][61498] [STUN.SignalVoip][AmazonAWS][VoIP][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.665| 0.153| 0.189| 35784.253| 4.000]
@@ -101,26 +106,30 @@
[PKTLENS.....: 124,92,124,92,132,132,92,124,92,92,124,92,84,56,84,56,124,92,124,92,84,84,56,56,56,84,124,84,56,92,124,92]
[ENTROPIES...: 5.9,5.8,5.9,5.7,5.9,5.8,5.8,6.0,5.8,5.8,5.9,5.8,5.8,5.2,5.7,5.1,5.8,5.8,5.9,5.7,5.7,5.9,5.2,5.1,5.1,5.8,5.9,5.8,5.1,5.8,5.8,5.8]
update: [....13] [ip4][..udp] [.192.168.12.169][39950] -> [.35.158.183.167][.3478] [STUN.SignalVoip][AmazonAWS][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....9] [ip4][..udp] [.192.168.12.169][43068] -> [.35.158.183.167][..443] [STUN][AmazonAWS][Network][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
update: [....10] [ip4][..udp] [.192.168.12.169][43068] -> [172.253.121.127][19302] [STUN.GoogleHangoutDuo][Google][VoIP][Acceptable]
RISK: Known Proto on Non Std Port
update: [....14] [ip4][..udp] [.192.168.12.169][43068] -> [.18.195.131.143][61156] [STUN][AmazonAWS][Network][Acceptable]
RISK: Known Proto on Non Std Port
update: [....12] [ip4][..udp] [.192.168.12.169][39950] -> [.35.158.183.167][..443] [STUN][AmazonAWS][Network][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
update: [.....8] [ip4][..udp] [.192.168.12.169][43068] -> [.35.158.183.167][.3478] [STUN.SignalVoip][AmazonAWS][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....11] [ip4][..udp] [.192.168.12.169][39950] -> [172.253.121.127][19302] [STUN.GoogleHangoutDuo][Google][VoIP][Acceptable]
RISK: Known Proto on Non Std Port
update: [.....7] [ip4][.icmp] [.35.158.183.167] -> [.192.168.12.169] [ICMP][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....13] [ip4][..udp] [.192.168.12.169][39950] -> [.35.158.183.167][.3478] [STUN.SignalVoip][AmazonAWS][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....20] [ip4][..udp] [.192.168.12.169][37970] -> [.35.158.122.211][.3478] [STUN.SignalVoip][AmazonAWS][VoIP][Acceptable]
idle: [.....9] [ip4][..udp] [.192.168.12.169][43068] -> [.35.158.183.167][..443] [STUN][AmazonAWS][Network][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....3] [ip4][..udp] [.192.168.12.169][47204] -> [.35.158.183.167][..443] [STUN][AmazonAWS][Network][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....22] [ip4][..udp] [.192.168.12.169][47767] -> [.18.195.131.143][54054] [STUN.SignalVoip][AmazonAWS][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....10] [ip4][..udp] [.192.168.12.169][43068] -> [172.253.121.127][19302] [STUN.GoogleHangoutDuo][Google][VoIP][Acceptable]
RISK: Known Proto on Non Std Port
guessed: [.....2] [ip4][..udp] [.192.168.12.169][47204] -> [172.253.121.127][19302] [STUN][Google][Network][Acceptable][]
@@ -128,27 +137,30 @@
idle: [....14] [ip4][..udp] [.192.168.12.169][43068] -> [.18.195.131.143][61156] [STUN][AmazonAWS][Network][Acceptable]
RISK: Known Proto on Non Std Port
idle: [.....6] [ip4][..udp] [.192.168.12.169][39518] -> [.35.158.183.167][..443] [STUN.SignalVoip][AmazonAWS][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....17] [ip4][..udp] [.192.168.12.169][47767] -> [.35.158.122.211][..443] [STUN.SignalVoip][AmazonAWS][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....1] [ip4][..udp] [.192.168.12.169][39518] -> [172.253.121.127][19302] [STUN.SignalVoip][Google][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....15] [ip4][..udp] [.192.168.12.169][47767] -> [172.253.121.127][19302] [STUN.GoogleHangoutDuo][Google][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....12] [ip4][..udp] [.192.168.12.169][39950] -> [.35.158.183.167][..443] [STUN][AmazonAWS][Network][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....8] [ip4][..udp] [.192.168.12.169][43068] -> [.35.158.183.167][.3478] [STUN.SignalVoip][AmazonAWS][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..udp] [.192.168.12.169][47204] -> [.35.158.183.167][.3478] [STUN.SignalVoip][AmazonAWS][VoIP][Acceptable]
idle: [....18] [ip4][..udp] [.192.168.12.169][37970] -> [.35.158.122.211][..443] [STUN][AmazonAWS][Network][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....11] [ip4][..udp] [.192.168.12.169][39950] -> [172.253.121.127][19302] [STUN.GoogleHangoutDuo][Google][VoIP][Acceptable]
RISK: Known Proto on Non Std Port
idle: [....16] [ip4][..udp] [.192.168.12.169][37970] -> [172.253.121.127][19302] [STUN.GoogleHangoutDuo][Google][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....23] [ip4][..udp] [.192.168.12.169][47767] -> [.18.195.131.143][61498] [STUN.SignalVoip][AmazonAWS][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....21] [ip4][.icmp] [.35.158.122.211] -> [.192.168.12.169] [ICMP][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....7] [ip4][.icmp] [.35.158.183.167] -> [.192.168.12.169] [ICMP][AmazonAWS][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....5] [ip4][..udp] [.192.168.12.169][39518] -> [.35.158.183.167][.3478] [STUN.SignalVoip][AmazonAWS][VoIP][Acceptable]
idle: [....19] [ip4][..udp] [.192.168.12.169][47767] -> [.35.158.122.211][.3478] [STUN.SignalVoip][AmazonAWS][VoIP][Acceptable]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/syncthing.pcap.out b/test/results/flow-info/default/syncthing.pcap.out
index 22f5aee55..22f5aee55 100644
--- a/test/results/flow-info/syncthing.pcap.out
+++ b/test/results/flow-info/default/syncthing.pcap.out
diff --git a/test/results/flow-info/synscan.pcap.out b/test/results/flow-info/default/synscan.pcap.out
index 577074123..63572c6a3 100644
--- a/test/results/flow-info/synscan.pcap.out
+++ b/test/results/flow-info/default/synscan.pcap.out
@@ -1996,4003 +1996,5982 @@
new: [..1993] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5002]
new: [..1994] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4998]
guessed: [....15] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3389] [RDP][Unknown][RemoteAccess][Acceptable]
- RISK: Desktop/File Sharing
+ RISK: Desktop/File Sharing, Unidirectional Traffic
idle: [....15] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3389]
not-detected: [...716] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3390] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...716] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3390]
guessed: [....18] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3389] [RDP][Unknown][RemoteAccess][Acceptable]
- RISK: Desktop/File Sharing
+ RISK: Desktop/File Sharing, Unidirectional Traffic
idle: [....18] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3389]
not-detected: [..1633] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9535] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1633] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9535]
not-detected: [...789] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3390] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...789] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3390]
not-detected: [..1708] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9535] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1708] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9535]
not-detected: [...378] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5440] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...378] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5440]
not-detected: [...406] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5440] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...406] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5440]
not-detected: [...990] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][50500] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...990] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][50500]
not-detected: [...381] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][19780] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...381] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][19780]
not-detected: [..1057] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][50500] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1057] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][50500]
not-detected: [...403] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][19780] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...403] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][19780]
guessed: [..1324] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1352] [LotusNotes][Unknown][Collaborative][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1324] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1352]
not-detected: [...206] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7496] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...206] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7496]
guessed: [..1421] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1352] [LotusNotes][Unknown][Collaborative][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1421] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1352]
not-detected: [...250] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7496] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...250] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7496]
not-detected: [..1073] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3404] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1073] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3404]
not-detected: [..1124] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3404] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1124] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3404]
not-detected: [...597] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7512] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...597] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7512]
not-detected: [...996] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][19801] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...996] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][19801]
not-detected: [...658] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7512] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...658] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7512]
not-detected: [..1051] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][19801] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1051] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][19801]
not-detected: [...184] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9575] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...184] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9575]
not-detected: [...231] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9575] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...231] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9575]
not-detected: [...423] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9593] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...423] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9593]
not-detected: [..1044] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9594] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1044] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9594]
not-detected: [...443] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9593] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...443] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9593]
not-detected: [..1111] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9594] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1111] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9594]
not-detected: [...511] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9595] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...511] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9595]
not-detected: [...560] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9595] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...560] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9595]
not-detected: [...275] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5500] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...275] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5500]
not-detected: [...304] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5500] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...304] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5500]
not-detected: [...455] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][15742] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...455] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][15742]
not-detected: [...493] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][15742] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...493] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][15742]
not-detected: [...687] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][19842] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...687] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][19842]
not-detected: [...760] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][19842] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...760] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][19842]
not-detected: [...794] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5510] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...794] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5510]
not-detected: [...861] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5510] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...861] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5510]
not-detected: [....55] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1417] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....55] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1417]
not-detected: [....73] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1417] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....73] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1417]
not-detected: [...920] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9618] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...920] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9618]
not-detected: [...977] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9618] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...977] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9618]
not-detected: [..1317] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][38292] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1317] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][38292]
not-detected: [...351] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3476] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...351] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3476]
not-detected: [..1380] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][38292] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1380] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][38292]
not-detected: [...392] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3476] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...392] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3476]
guessed: [...181] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1433] [MsSQL-TDS][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...181] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1433]
not-detected: [..1651] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][13722] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1651] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][13722]
not-detected: [..1288] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][44442] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1288] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][44442]
guessed: [..1777] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1434] [MsSQL-TDS][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1777] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1434]
guessed: [...234] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1433] [MsSQL-TDS][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...234] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1433]
not-detected: [..1362] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][44442] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1362] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][44442]
guessed: [..1880] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1434] [MsSQL-TDS][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1880] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1434]
not-detected: [..1720] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][13722] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1720] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][13722]
not-detected: [...919] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][44443] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...919] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][44443]
not-detected: [...978] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][44443] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...978] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][44443]
not-detected: [..1335] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][56737] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1335] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][56737]
not-detected: [..1643] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][56738] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1643] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][56738]
not-detected: [..1410] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][56737] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1410] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][56737]
not-detected: [..1728] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][56738] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1728] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][56738]
not-detected: [...997] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1443] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...997] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1443]
not-detected: [..1050] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1443] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1050] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1443]
not-detected: [...336] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3493] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...336] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3493]
not-detected: [...366] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3493] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...366] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3493]
not-detected: [..1254] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5544] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1254] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5544]
not-detected: [..1306] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5544] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1306] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5544]
not-detected: [..1621] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5550] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1621] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5550]
not-detected: [..1684] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5550] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1684] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5550]
not-detected: [...575] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1455] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...575] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1455]
not-detected: [...645] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1455] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...645] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1455]
not-detected: [..1790] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5555] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1790] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5555]
not-detected: [..1867] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5555] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1867] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5555]
not-detected: [...432] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1461] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...432] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1461]
not-detected: [...475] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1461] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...475] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1461]
not-detected: [...868] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5560] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...868] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5560]
not-detected: [...937] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5560] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...937] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5560]
not-detected: [...520] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3517] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...520] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3517]
not-detected: [...795] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5566] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...795] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5566]
not-detected: [...551] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3517] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...551] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3517]
not-detected: [...860] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5566] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...860] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5566]
not-detected: [..1441] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][52673] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1441] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][52673]
not-detected: [..1505] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][52673] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1505] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][52673]
not-detected: [...264] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9666] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...264] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9666]
not-detected: [...315] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9666] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...315] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9666]
not-detected: [..1098] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3527] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1098] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3527]
not-detected: [..1157] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3527] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1157] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3527]
not-detected: [...625] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7625] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...625] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7625]
not-detected: [...712] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7625] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...712] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7625]
not-detected: [..1539] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7627] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1539] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7627]
not-detected: [..1799] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][50636] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1799] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][50636]
not-detected: [..1614] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7627] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1614] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7627]
not-detected: [..1858] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][50636] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1858] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][50636]
not-detected: [...370] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][44501] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...370] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][44501]
not-detected: [....90] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][17877] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....90] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][17877]
not-detected: [...414] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][44501] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...414] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][44501]
guessed: [..1773] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1494] [Citrix][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1773] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1494]
not-detected: [..1021] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][13782] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1021] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][13782]
not-detected: [...119] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][17877] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...119] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][17877]
guessed: [..1836] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1494] [Citrix][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1836] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1494]
not-detected: [..1175] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][13783] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1175] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][13783]
not-detected: [..1084] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][13782] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1084] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][13782]
not-detected: [..1232] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][13783] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1232] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][13783]
not-detected: [...688] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3546] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...688] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3546]
not-detected: [...759] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3546] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...759] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3546]
not-detected: [..1488] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1500] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1488] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1500]
not-detected: [..1561] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1500] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1561] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1500]
not-detected: [..1244] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1501] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1244] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1501]
not-detected: [..1316] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1501] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1316] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1501]
not-detected: [..1482] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1503] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1482] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1503]
not-detected: [..1256] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3551] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1256] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3551]
not-detected: [..1567] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1503] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1567] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1503]
not-detected: [..1304] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3551] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1304] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3551]
not-detected: [....96] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][65000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....96] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][65000]
not-detected: [...113] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][65000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...113] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][65000]
guessed: [...843] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1521] [Oracle][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...843] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1521]
guessed: [...904] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1521] [Oracle][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...904] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1521]
not-detected: [...344] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1524] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...344] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1524]
not-detected: [...399] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1524] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...399] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1524]
not-detected: [..1039] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3580] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1039] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3580]
not-detected: [...107] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7676] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...107] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7676]
not-detected: [..1116] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3580] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1116] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3580]
not-detected: [..1072] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1533] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1072] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1533]
not-detected: [...143] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7676] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...143] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7676]
not-detected: [..1125] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1533] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1125] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1533]
not-detected: [...356] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5631] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...356] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5631]
not-detected: [...387] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5631] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...387] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5631]
not-detected: [..1697] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5633] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1697] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5633]
not-detected: [..1760] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5633] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1760] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5633]
not-detected: [..1829] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][42510] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1829] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][42510]
not-detected: [..1902] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][42510] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1902] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][42510]
not-detected: [..1528] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1556] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1528] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1556]
not-detected: [..1605] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1556] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1605] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1556]
guessed: [..1328] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][20000] [DNP3][Unknown][IoT-Scada][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1328] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][20000]
guessed: [..1417] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][20000] [DNP3][Unknown][IoT-Scada][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1417] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][20000]
not-detected: [..1475] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5666] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1475] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5666]
not-detected: [..1574] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5666] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1574] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5666]
not-detected: [...580] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][20005] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...580] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][20005]
not-detected: [...640] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][20005] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...640] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][20005]
not-detected: [...948] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][28201] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...948] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][28201]
not-detected: [..1007] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][28201] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1007] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][28201]
not-detected: [..1784] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1580] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1784] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1580]
not-detected: [..1873] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1580] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1873] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1580]
not-detected: [..1839] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5678] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1839] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5678]
not-detected: [..1922] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5678] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1922] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5678]
not-detected: [...915] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5679] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...915] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5679]
not-detected: [...190] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1583] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...190] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1583]
not-detected: [...982] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5679] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...982] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5679]
not-detected: [...225] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1583] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...225] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1583]
not-detected: [....95] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1594] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....95] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1594]
not-detected: [...114] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1594] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...114] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1594]
not-detected: [...458] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7741] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...458] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7741]
not-detected: [...490] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7741] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...490] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7741]
not-detected: [...540] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][20031] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...540] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][20031]
not-detected: [...873] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1600] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...873] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1600]
not-detected: [...607] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][20031] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...607] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][20031]
not-detected: [...932] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1600] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...932] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1600]
not-detected: [...801] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][17988] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...801] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][17988]
not-detected: [...854] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][17988] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...854] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][17988]
not-detected: [...890] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3659] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...890] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3659]
not-detected: [...965] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3659] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...965] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3659]
not-detected: [..1737] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][52822] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1737] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][52822]
not-detected: [...804] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5718] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...804] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5718]
not-detected: [..1817] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][52822] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1817] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][52822]
not-detected: [...851] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5718] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...851] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5718]
not-detected: [....91] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7777] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....91] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7777]
not-detected: [...913] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7778] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...913] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7778]
not-detected: [...518] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5730] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...518] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5730]
not-detected: [...118] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7777] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...118] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7777]
not-detected: [...984] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7778] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...984] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7778]
not-detected: [...553] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5730] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...553] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5730]
not-detected: [..1594] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][26214] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1594] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][26214]
not-detected: [..1656] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][26214] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1656] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][26214]
not-detected: [..1838] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3689] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1838] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3689]
not-detected: [...565] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][65129] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...565] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][65129]
not-detected: [...186] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1641] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...186] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1641]
not-detected: [..1923] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3689] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1923] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3689]
not-detected: [..1093] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3690] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1093] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3690]
not-detected: [...655] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][65129] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...655] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][65129]
not-detected: [...229] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1641] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...229] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1641]
not-detected: [..1162] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3690] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1162] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3690]
not-detected: [...922] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][50800] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...922] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][50800]
not-detected: [...134] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][52848] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...134] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][52848]
not-detected: [...975] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][50800] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...975] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][50800]
not-detected: [...158] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][52848] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...158] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][52848]
not-detected: [..1589] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3703] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1589] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3703]
not-detected: [...888] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][18040] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...888] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][18040]
not-detected: [..1661] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3703] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1661] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3703]
not-detected: [...382] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7800] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...382] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7800]
not-detected: [...967] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][18040] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...967] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][18040]
not-detected: [...402] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7800] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...402] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7800]
not-detected: [...724] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1658] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...724] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1658]
not-detected: [...781] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1658] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...781] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1658]
not-detected: [...722] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][16000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...722] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][16000]
not-detected: [...783] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][16000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...783] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][16000]
not-detected: [...354] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][16001] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...354] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][16001]
not-detected: [...389] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][16001] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...389] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][16001]
not-detected: [...384] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1666] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...384] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1666]
not-detected: [...400] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1666] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...400] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1666]
not-detected: [...334] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][52869] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...334] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][52869]
not-detected: [...368] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][52869] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...368] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][52869]
not-detected: [..1472] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][16012] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1472] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][16012]
not-detected: [..1577] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][16012] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1577] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][16012]
not-detected: [...698] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][16016] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...698] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][16016]
not-detected: [...749] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][16016] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...749] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][16016]
not-detected: [..1738] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][16018] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1738] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][16018]
not-detected: [..1816] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][16018] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1816] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][16018]
not-detected: [...743] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9876] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...743] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9876]
not-detected: [..1893] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9877] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1893] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9877]
not-detected: [...812] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9876] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...812] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9876]
not-detected: [..1959] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9877] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1959] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9877]
not-detected: [..1023] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9878] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1023] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9878]
not-detected: [..1082] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9878] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1082] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9878]
not-detected: [....51] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1687] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....51] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1687]
not-detected: [...440] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1688] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...440] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1688]
not-detected: [....77] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1687] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....77] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1687]
not-detected: [...467] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1688] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...467] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1688]
not-detected: [...337] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3737] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...337] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3737]
not-detected: [...365] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3737] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...365] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3737]
not-detected: [..1296] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1700] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1296] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1700]
not-detected: [..1354] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1700] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1354] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1700]
guessed: [...375] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5800] [VNC][Unknown][RemoteAccess][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...375] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5800]
not-detected: [..1374] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5801] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1374] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5801]
guessed: [...409] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5800] [VNC][Unknown][RemoteAccess][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...409] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5800]
not-detected: [..1445] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5801] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1445] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5801]
not-detected: [...995] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5802] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...995] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5802]
not-detected: [...188] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9898] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...188] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9898]
not-detected: [..1052] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5802] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1052] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5802]
not-detected: [...227] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9898] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...227] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9898]
not-detected: [...881] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9900] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...881] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9900]
not-detected: [...924] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9900] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...924] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9900]
not-detected: [...172] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][14000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...172] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][14000]
not-detected: [...202] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][14000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...202] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][14000]
not-detected: [...629] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5810] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...629] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5810]
not-detected: [...708] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5810] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...708] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5810]
not-detected: [...430] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5811] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...430] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5811]
not-detected: [...477] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5811] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...477] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5811]
not-detected: [..1221] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1717] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1221] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1717]
not-detected: [...953] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][18101] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...953] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][18101]
not-detected: [..1002] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][18101] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1002] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][18101]
not-detected: [..1277] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1717] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1277] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1717]
not-detected: [...872] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3766] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...872] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3766]
not-detected: [...721] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1718] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...721] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1718]
not-detected: [..1469] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5815] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1469] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5815]
not-detected: [...933] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3766] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...933] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3766]
not-detected: [...784] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1718] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...784] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1718]
guessed: [...537] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1719] [H323][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...537] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1719]
not-detected: [..1532] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5815] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1532] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5815]
guessed: [...610] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1719] [H323][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...610] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1719]
guessed: [....34] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1720] [H323][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....34] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1720]
not-detected: [...719] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1721] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...719] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1721]
guessed: [....65] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1720] [H323][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....65] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1720]
not-detected: [...786] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1721] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...786] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1721]
not-detected: [....30] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1723] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....30] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1723]
not-detected: [....69] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1723] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....69] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1723]
not-detected: [...112] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9917] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...112] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9917]
not-detected: [...139] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9917] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...139] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9917]
not-detected: [...129] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5822] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...129] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5822]
not-detected: [...255] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][11967] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...255] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][11967]
not-detected: [...163] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5822] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...163] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5822]
not-detected: [...283] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][11967] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...283] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][11967]
not-detected: [...187] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5825] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...187] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5825]
not-detected: [...228] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5825] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...228] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5825]
not-detected: [...420] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3784] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...420] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3784]
not-detected: [...446] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3784] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...446] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3784]
not-detected: [....94] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][16080] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....94] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][16080]
not-detected: [...115] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][16080] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...115] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][16080]
not-detected: [...729] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9943] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...729] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9943]
not-detected: [...776] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9943] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...776] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9943]
not-detected: [..1251] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3800] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1251] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3800]
not-detected: [...499] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9944] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...499] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9944]
not-detected: [..1309] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3800] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1309] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3800]
not-detected: [...800] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3801] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...800] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3801]
not-detected: [...532] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9944] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...532] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9944]
not-detected: [...855] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3801] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...855] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3801]
not-detected: [...596] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5850] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...596] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5850]
not-detected: [..1626] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1755] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1626] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1755]
not-detected: [...659] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5850] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...659] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5850]
not-detected: [..1715] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1755] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1715] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1755]
not-detected: [...986] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][12000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...986] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][12000]
not-detected: [..1061] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][12000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1061] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][12000]
not-detected: [...545] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1761] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...545] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1761]
not-detected: [...358] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3809] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...358] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3809]
not-detected: [...602] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1761] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...602] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1761]
not-detected: [...385] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3809] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...385] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3809]
not-detected: [..1641] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5859] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1641] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5859]
not-detected: [..1700] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5859] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1700] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5859]
not-detected: [..1889] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5862] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1889] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5862]
not-detected: [...291] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3814] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...291] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3814]
not-detected: [..1963] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5862] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1963] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5862]
not-detected: [...502] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7911] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...502] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7911]
not-detected: [...329] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3814] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...329] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3814]
not-detected: [...529] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7911] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...529] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7911]
not-detected: [..1847] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7920] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1847] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7920]
not-detected: [...879] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9968] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...879] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9968]
not-detected: [..1350] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][16113] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1350] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][16113]
not-detected: [..1914] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7920] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1914] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7920]
not-detected: [..1171] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7921] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1171] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7921]
not-detected: [...926] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9968] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...926] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9968]
not-detected: [..1426] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][16113] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1426] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][16113]
not-detected: [..1236] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7921] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1236] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7921]
not-detected: [...125] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3826] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...125] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3826]
not-detected: [...357] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3827] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...357] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3827]
not-detected: [...167] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3826] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...167] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3826]
not-detected: [..1787] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3828] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1787] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3828]
not-detected: [...386] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3827] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...386] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3827]
not-detected: [..1870] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3828] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1870] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3828]
not-detected: [..1027] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5877] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1027] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5877]
not-detected: [..1104] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1782] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1104] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1782]
not-detected: [..1078] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5877] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1078] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5877]
not-detected: [..1151] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1782] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1151] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1782]
not-detected: [..1014] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1783] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1014] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1783]
not-detected: [..1091] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1783] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1091] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1783]
not-detected: [..1674] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][20221] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1674] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][20221]
not-detected: [..1753] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][20221] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1753] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][20221]
not-detected: [...342] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][20222] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...342] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][20222]
not-detected: [...360] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][20222] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...360] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][20222]
not-detected: [...848] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7937] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...848] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7937]
not-detected: [..1197] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7938] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1197] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7938]
not-detected: [...899] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7937] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...899] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7937]
not-detected: [..1259] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7938] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1259] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7938]
not-detected: [..1841] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1801] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1841] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1801]
not-detected: [..1920] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1801] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1920] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1801]
not-detected: [...885] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][34571] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...885] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][34571]
not-detected: [...614] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3851] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...614] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3851]
not-detected: [...970] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][34571] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...970] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][34571]
not-detected: [...590] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][34572] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...590] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][34572]
not-detected: [...683] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3851] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...683] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3851]
guessed: [....10] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5900] [VNC][Unknown][RemoteAccess][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....10] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5900]
not-detected: [..1046] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][34573] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1046] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][34573]
not-detected: [...665] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][34572] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...665] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][34572]
guessed: [...838] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5901] [VNC][Unknown][RemoteAccess][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...838] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5901]
not-detected: [...453] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1805] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...453] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1805]
guessed: [....21] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5900] [VNC][Unknown][RemoteAccess][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....21] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5900]
not-detected: [..1691] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9998] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1691] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9998]
not-detected: [..1109] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][34573] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1109] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][34573]
not-detected: [..1022] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5902] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1022] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5902]
guessed: [...909] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5901] [VNC][Unknown][RemoteAccess][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...909] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5901]
not-detected: [...495] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1805] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...495] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1805]
not-detected: [..1766] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9998] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1766] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9998]
not-detected: [..1534] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][55055] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1534] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][55055]
not-detected: [..1083] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5902] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1083] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5902]
guessed: [...796] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9999] [TPLINK_SHP][Unknown][IoT-Scada][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...796] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9999]
not-detected: [...103] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5903] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...103] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5903]
not-detected: [..1791] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][55056] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1791] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][55056]
not-detected: [..1619] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][55055] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1619] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][55055]
guessed: [...859] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9999] [TPLINK_SHP][Unknown][IoT-Scada][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...859] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9999]
guessed: [...539] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10000] [CiscoVPN][Unknown][VPN][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...539] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10000]
not-detected: [..1653] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5904] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1653] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5904]
not-detected: [...147] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5903] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...147] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5903]
not-detected: [..1866] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][55056] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1866] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][55056]
guessed: [...608] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10000] [CiscoVPN][Unknown][VPN][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...608] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10000]
not-detected: [..1718] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5904] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1718] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5904]
not-detected: [...577] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10001] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...577] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10001]
not-detected: [...643] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10001] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...643] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10001]
not-detected: [...535] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5906] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...535] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5906]
not-detected: [...272] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10002] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...272] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10002]
not-detected: [...733] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10003] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...733] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10003]
not-detected: [..1029] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5907] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1029] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5907]
not-detected: [...612] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5906] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...612] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5906]
not-detected: [...307] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10002] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...307] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10002]
not-detected: [...822] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10003] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...822] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10003]
guessed: [..1940] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1940] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1812]
not-detected: [..1076] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5907] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1076] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5907]
not-detected: [...626] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10004] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...626] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10004]
guessed: [..1982] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1812] [Radius][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1982] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1812]
not-detected: [...711] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10004] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...711] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10004]
not-detected: [..1298] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5910] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1298] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5910]
not-detected: [..1774] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5911] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1774] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5911]
not-detected: [..1352] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5910] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1352] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5910]
not-detected: [..1835] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5911] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1835] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5911]
not-detected: [...421] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10009] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...421] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10009]
not-detected: [...803] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10010] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...803] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10010]
not-detected: [...445] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10009] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...445] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10009]
not-detected: [..1803] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5915] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1803] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5915]
not-detected: [...852] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10010] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...852] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10010]
not-detected: [..1925] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10012] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1925] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10012]
not-detected: [..1854] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5915] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1854] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5915]
not-detected: [..1969] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10012] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1969] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10012]
not-detected: [..1348] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3869] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1348] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3869]
not-detected: [..1397] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3869] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1397] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3869]
not-detected: [..1372] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3871] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1372] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3871]
not-detected: [..1447] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3871] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1447] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3871]
not-detected: [...769] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5922] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...769] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5922]
not-detected: [...828] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5922] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...828] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5922]
not-detected: [..1805] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5925] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1805] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5925]
not-detected: [..1852] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5925] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1852] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5925]
not-detected: [...798] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3878] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...798] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3878]
not-detected: [...857] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3878] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...857] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3878]
not-detected: [..1216] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10024] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1216] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10024]
not-detected: [....89] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3880] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....89] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3880]
not-detected: [..1536] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10025] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1536] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10025]
not-detected: [..1282] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10024] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1282] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10024]
not-detected: [...120] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3880] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...120] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3880]
not-detected: [..1617] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10025] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1617] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10025]
not-detected: [...728] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1839] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...728] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1839]
not-detected: [...777] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1839] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...777] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1839]
not-detected: [...269] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1840] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...269] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1840]
not-detected: [..1430] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3889] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1430] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3889]
not-detected: [...310] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1840] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...310] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1840]
not-detected: [..1516] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3889] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1516] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3889]
not-detected: [..1522] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5950] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1522] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5950]
not-detected: [..1601] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5950] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1601] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5950]
not-detected: [..1388] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7999] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1388] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7999]
not-detected: [..1461] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7999] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1461] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7999]
not-detected: [..1292] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5952] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1292] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5952]
not-detected: [...427] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...427] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8000]
not-detected: [..1358] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5952] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1358] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5952]
not-detected: [..1344] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8001] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1344] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8001]
not-detected: [...624] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3905] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...624] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3905]
not-detected: [...480] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...480] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8000]
not-detected: [..1401] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8001] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1401] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8001]
not-detected: [...713] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3905] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...713] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3905]
not-detected: [...633] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8002] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...633] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8002]
not-detected: [...704] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8002] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...704] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8002]
not-detected: [...500] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1862] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...500] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1862]
not-detected: [..1176] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8007] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1176] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8007]
not-detected: [..1936] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1863] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1936] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1863]
not-detected: [...531] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1862] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...531] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1862]
not-detected: [...169] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5959] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...169] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5959]
guessed: [..1394] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8008] [CiscoVPN][Unknown][VPN][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1394] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8008]
not-detected: [..1231] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8007] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1231] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8007]
not-detected: [..1986] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1863] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1986] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1863]
not-detected: [..1142] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5960] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1142] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5960]
not-detected: [...865] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1864] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...865] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1864]
not-detected: [...205] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5959] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...205] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5959]
guessed: [..1455] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8008] [CiscoVPN][Unknown][VPN][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1455] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8008]
not-detected: [..1336] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5961] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1336] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5961]
not-detected: [..1205] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5960] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1205] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5960]
not-detected: [...940] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1864] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...940] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1864]
guessed: [...621] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8009] [AJP][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...621] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8009]
not-detected: [..1947] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5962] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1947] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5962]
not-detected: [..1743] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3914] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1743] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3914]
not-detected: [..1409] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5961] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1409] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5961]
guessed: [...923] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8010] [AJP][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...923] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8010]
guessed: [...676] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8009] [AJP][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...676] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8009]
not-detected: [..1975] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5962] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1975] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5962]
not-detected: [..1478] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8011] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1478] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8011]
guessed: [...974] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8010] [AJP][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...974] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8010]
not-detected: [..1811] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3914] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1811] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3914]
not-detected: [...343] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5963] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...343] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5963]
not-detected: [..1571] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8011] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1571] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8011]
not-detected: [...359] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5963] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...359] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5963]
not-detected: [...300] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3918] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...300] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3918]
not-detected: [...320] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3918] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...320] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3918]
not-detected: [..1652] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3920] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1652] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3920]
not-detected: [..1719] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3920] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1719] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3920]
not-detected: [...717] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1875] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...717] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1875]
not-detected: [...788] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1875] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...788] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1875]
not-detected: [...519] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8021] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...519] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8021]
not-detected: [..1789] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8022] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1789] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8022]
not-detected: [...552] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8021] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...552] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8021]
not-detected: [..1868] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8022] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1868] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8022]
not-detected: [..1383] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8031] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1383] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8031]
not-detected: [..1466] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8031] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1466] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8031]
not-detected: [...513] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10082] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...513] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10082]
not-detected: [..1776] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][63331] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1776] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][63331]
not-detected: [...942] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5987] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...942] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5987]
not-detected: [...558] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10082] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...558] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10082]
not-detected: [..1881] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][63331] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1881] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][63331]
not-detected: [..1013] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5987] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1013] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5987]
not-detected: [...570] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5988] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...570] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5988]
not-detected: [...897] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5989] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...897] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5989]
not-detected: [...650] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5988] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...650] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5988]
not-detected: [...958] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5989] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...958] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5989]
not-detected: [...256] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3945] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...256] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3945]
not-detected: [...839] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8042] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...839] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8042]
not-detected: [...282] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3945] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...282] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3945]
not-detected: [...908] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8042] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...908] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8042]
not-detected: [...992] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1900] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...992] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1900]
not-detected: [..1744] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][65389] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1744] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][65389]
not-detected: [..1055] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1900] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1055] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1900]
not-detected: [...258] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8045] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...258] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8045]
not-detected: [..1810] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][65389] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1810] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][65389]
not-detected: [..1064] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5998] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1064] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5998]
not-detected: [...280] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8045] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...280] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8045]
not-detected: [..1133] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5998] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1133] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5998]
not-detected: [...628] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5999] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...628] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5999]
not-detected: [...709] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5999] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...709] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5999]
not-detected: [....50] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....50] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6000]
not-detected: [..1481] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6001] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1481] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6001]
not-detected: [....78] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....78] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6000]
not-detected: [..1568] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6001] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1568] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6001]
not-detected: [..1392] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6002] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1392] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6002]
not-detected: [..1457] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6002] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1457] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6002]
not-detected: [..1217] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6003] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1217] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6003]
not-detected: [..1741] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6004] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1741] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6004]
not-detected: [..1281] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6003] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1281] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6003]
not-detected: [..1944] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6005] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1944] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6005]
not-detected: [..1813] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6004] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1813] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6004]
not-detected: [..1978] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6005] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1978] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6005]
not-detected: [..1695] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6006] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1695] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6006]
not-detected: [..1762] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6006] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1762] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6006]
not-detected: [..1190] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6007] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1190] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6007]
not-detected: [..1266] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6007] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1266] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6007]
not-detected: [..1347] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6009] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1347] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6009]
not-detected: [..1398] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6009] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1398] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6009]
not-detected: [...847] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1914] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...847] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1914]
not-detected: [...900] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1914] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...900] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1914]
not-detected: [...292] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][24444] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...292] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][24444]
not-detected: [...328] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][24444] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...328] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][24444]
not-detected: [...955] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3971] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...955] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3971]
not-detected: [..1000] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3971] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1000] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3971]
not-detected: [...517] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6025] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...517] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6025]
not-detected: [...554] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6025] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...554] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6025]
not-detected: [...875] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][12174] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...875] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][12174]
guessed: [..1547] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1935] [RTMP][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1547] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1935]
not-detected: [...930] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][12174] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...930] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][12174]
guessed: [..1606] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1935] [RTMP][Unknown][Media][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1606] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1935]
guessed: [....33] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8080] [HTTP_Proxy][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [....33] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8080]
not-detected: [..1442] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8081] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1442] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8081]
guessed: [....66] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8080] [HTTP_Proxy][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [....66] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8080]
not-detected: [..1504] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8081] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1504] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8081]
not-detected: [..1518] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3986] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1518] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3986]
not-detected: [...736] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8082] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...736] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8082]
not-detected: [..1648] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8083] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1648] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8083]
not-detected: [..1580] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3986] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1580] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3986]
not-detected: [...819] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8082] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...819] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8082]
not-detected: [..1896] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8084] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1896] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8084]
not-detected: [..1723] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8083] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1723] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8083]
not-detected: [..1956] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8084] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1956] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8084]
not-detected: [..1147] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8085] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1147] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8085]
not-detected: [..1200] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8085] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1200] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8085]
not-detected: [...346] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8086] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...346] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8086]
not-detected: [..1043] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8087] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1043] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8087]
not-detected: [...397] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8086] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...397] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8086]
not-detected: [..1218] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8088] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1218] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8088]
not-detected: [..1112] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8087] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1112] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8087]
not-detected: [..1280] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8088] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1280] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8088]
not-detected: [..1094] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8089] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1094] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8089]
not-detected: [..1161] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8089] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1161] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8089]
not-detected: [...846] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8090] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...846] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8090]
not-detected: [...901] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8090] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...901] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8090]
not-detected: [..1474] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1947] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1474] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1947]
not-detected: [...691] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3995] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...691] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3995]
not-detected: [..1575] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1947] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1575] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1947]
not-detected: [...756] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3995] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...756] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3995]
not-detected: [..1890] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8093] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1890] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8093]
not-detected: [..1962] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8093] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1962] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8093]
not-detected: [..1692] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3998] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1692] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3998]
not-detected: [....87] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][14238] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....87] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][14238]
not-detected: [..1371] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][51103] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1371] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][51103]
not-detected: [..1765] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3998] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1765] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3998]
not-detected: [...122] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][14238] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...122] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][14238]
not-detected: [..1448] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][51103] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1448] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][51103]
not-detected: [...182] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...182] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4000]
not-detected: [..1842] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4001] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1842] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4001]
not-detected: [...233] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...233] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4000]
not-detected: [..1919] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4001] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1919] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4001]
not-detected: [..1484] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4002] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1484] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4002]
not-detected: [..1565] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4002] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1565] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4002]
not-detected: [...634] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8099] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...634] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8099]
not-detected: [...105] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4003] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...105] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4003]
not-detected: [...703] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8099] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...703] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8099]
not-detected: [...501] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8100] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...501] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8100]
not-detected: [..1290] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4004] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1290] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4004]
not-detected: [...145] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4003] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...145] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4003]
not-detected: [..1360] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4004] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1360] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4004]
not-detected: [...530] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8100] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...530] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8100]
not-detected: [...374] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4005] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...374] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4005]
not-detected: [...410] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4005] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...410] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4005]
not-detected: [...335] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4006] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...335] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4006]
not-detected: [...367] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4006] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...367] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4006]
not-detected: [..1781] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6059] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1781] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6059]
not-detected: [..1876] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6059] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1876] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6059]
not-detected: [..1164] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1971] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1164] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1971]
not-detected: [..1250] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1972] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1250] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1972]
not-detected: [..1243] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1971] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1243] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1971]
not-detected: [..1310] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1972] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1310] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1972]
not-detected: [...880] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1974] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...880] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1974]
not-detected: [...925] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1974] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...925] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1974]
not-detected: [..1892] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1984] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1892] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1984]
not-detected: [..1960] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1984] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1960] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1984]
not-detected: [...615] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10180] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...615] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10180]
not-detected: [...682] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10180] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...682] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10180]
not-detected: [..1645] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4045] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1645] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4045]
not-detected: [..1726] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4045] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1726] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4045]
not-detected: [..1322] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][57294] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1322] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][57294]
not-detected: [..1319] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1998] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1319] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1998]
not-detected: [..1423] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][57294] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1423] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][57294]
not-detected: [..1378] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1998] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1378] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1998]
not-detected: [...764] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1999] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...764] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1999]
not-detected: [...263] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][40911] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...263] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][40911]
guessed: [..1631] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2000] [CiscoSkinny][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1631] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2000]
not-detected: [...833] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1999] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...833] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1999]
not-detected: [...316] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][40911] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...316] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][40911]
guessed: [..1710] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2000] [CiscoSkinny][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1710] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2000]
not-detected: [...355] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2001] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...355] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2001]
not-detected: [..1496] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2002] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1496] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2002]
not-detected: [...388] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2001] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...388] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2001]
not-detected: [..1553] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2002] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1553] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2002]
not-detected: [..1185] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2003] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1185] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2003]
not-detected: [..1381] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6100] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1381] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6100]
not-detected: [..1271] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2003] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1271] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2003]
not-detected: [...893] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2004] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...893] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2004]
not-detected: [..1468] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6100] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1468] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6100]
not-detected: [..1035] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6101] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1035] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6101]
not-detected: [...962] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2004] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...962] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2004]
not-detected: [...101] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2005] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...101] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2005]
not-detected: [..1120] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6101] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1120] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6101]
not-detected: [..1693] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2006] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1693] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2006]
not-detected: [...149] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2005] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...149] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2005]
not-detected: [..1764] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2006] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1764] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2006]
not-detected: [..1432] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2007] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1432] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2007]
not-detected: [..1822] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2008] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1822] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2008]
not-detected: [..1514] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2007] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1514] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2007]
not-detected: [..1884] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2008] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1884] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2008]
not-detected: [...951] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2009] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...951] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2009]
not-detected: [..1677] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2010] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1677] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2010]
not-detected: [..1004] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2009] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1004] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2009]
not-detected: [...582] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6106] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...582] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6106]
not-detected: [..1750] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2010] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1750] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2010]
not-detected: [...673] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6106] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...673] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6106]
not-detected: [...515] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2013] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...515] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2013]
not-detected: [...556] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2013] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...556] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2013]
not-detected: [..1172] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6112] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1172] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6112]
not-detected: [..1235] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6112] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1235] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6112]
not-detected: [...340] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2020] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...340] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2020]
not-detected: [..1376] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2021] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1376] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2021]
not-detected: [...362] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2020] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...362] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2020]
not-detected: [..1453] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2021] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1453] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2021]
not-detected: [...741] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2022] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...741] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2022]
not-detected: [..1540] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10215] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1540] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10215]
not-detected: [...814] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2022] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...814] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2022]
not-detected: [..1613] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10215] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1613] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10215]
not-detected: [...766] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][12265] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...766] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][12265]
not-detected: [...831] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][12265] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...831] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][12265]
not-detected: [..1786] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6123] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1786] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6123]
not-detected: [..1871] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6123] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1871] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6123]
not-detected: [....53] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2030] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....53] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2030]
not-detected: [....75] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2030] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....75] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2030]
not-detected: [..1888] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2033] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1888] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2033]
not-detected: [..1735] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6129] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1735] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6129]
not-detected: [..1964] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2033] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1964] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2033]
not-detected: [..1945] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2034] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1945] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2034]
not-detected: [..1819] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6129] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1819] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6129]
not-detected: [..1977] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2034] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1977] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2034]
not-detected: [..1031] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2035] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1031] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2035]
not-detected: [..1074] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2035] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1074] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2035]
not-detected: [...916] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8180] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...916] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8180]
not-detected: [...981] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8180] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...981] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8180]
not-detected: [...746] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8181] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...746] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8181]
not-detected: [...809] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8181] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...809] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8181]
not-detected: [....86] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2038] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....86] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2038]
not-detected: [...123] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2038] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...123] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2038]
not-detected: [..1785] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2040] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1785] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2040]
not-detected: [..1872] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2040] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1872] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2040]
not-detected: [..1258] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2041] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1258] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2041]
not-detected: [..1302] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2041] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1302] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2041]
not-detected: [..1140] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2042] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1140] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2042]
not-detected: [..1545] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2043] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1545] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2043]
not-detected: [..1207] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2042] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1207] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2042]
not-detected: [..1608] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2043] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1608] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2043]
not-detected: [..1779] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2045] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1779] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2045]
not-detected: [..1878] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2045] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1878] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2045]
not-detected: [...350] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2046] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...350] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2046]
not-detected: [...208] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][30718] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...208] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][30718]
not-detected: [...587] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2047] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...587] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2047]
not-detected: [...393] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2046] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...393] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2046]
not-detected: [...248] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][30718] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...248] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][30718]
not-detected: [..1935] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49152] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1935] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49152]
not-detected: [...696] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8192] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...696] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8192]
not-detected: [...668] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2047] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...668] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2047]
not-detected: [...637] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2048] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...637] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2048]
not-detected: [...185] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32768] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...185] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32768]
not-detected: [..1987] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49152] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1987] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49152]
not-detected: [..1343] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49153] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1343] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49153]
not-detected: [..1225] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32769] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1225] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32769]
not-detected: [...751] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8192] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...751] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8192]
guessed: [..1825] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2049] [NFS][Unknown][DataTransfer][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1825] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2049]
not-detected: [...944] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][....1] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...944] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][....1]
not-detected: [...700] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2048] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...700] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2048]
not-detected: [...542] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8193] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...542] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8193]
not-detected: [...230] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32768] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...230] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32768]
not-detected: [..1402] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49153] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1402] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49153]
not-detected: [..1775] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32770] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1775] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32770]
not-detected: [..1300] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32769] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1300] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32769]
not-detected: [...802] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49154] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...802] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49154]
guessed: [..1906] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2049] [NFS][Unknown][DataTransfer][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1906] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2049]
not-detected: [..1193] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8194] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1193] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8194]
not-detected: [..1011] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][....1] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1011] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][....1]
not-detected: [...605] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8193] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...605] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8193]
not-detected: [...853] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49154] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...853] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49154]
not-detected: [..1834] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32770] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1834] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32770]
not-detected: [..1887] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10243] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1887] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10243]
not-detected: [..1480] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32771] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1480] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32771]
not-detected: [..1263] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8194] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1263] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8194]
not-detected: [...544] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][....3] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...544] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][....3]
not-detected: [...194] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49155] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...194] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49155]
not-detected: [..1569] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32771] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1569] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32771]
not-detected: [..1965] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10243] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1965] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10243]
not-detected: [..1332] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32772] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1332] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32772]
not-detected: [...793] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49156] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...793] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49156]
not-detected: [...841] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][....4] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...841] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][....4]
not-detected: [...603] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][....3] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...603] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][....3]
not-detected: [...221] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49155] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...221] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49155]
not-detected: [..1951] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49157] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1951] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49157]
not-detected: [..1413] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32772] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1413] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32772]
not-detected: [..1177] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32773] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1177] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32773]
not-detected: [...906] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][....4] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...906] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][....4]
not-detected: [...862] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49156] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...862] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49156]
not-detected: [..1971] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49157] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1971] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49157]
not-detected: [..1230] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32773] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1230] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32773]
not-detected: [...954] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49158] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...954] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49158]
not-detected: [...585] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32774] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...585] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32774]
not-detected: [....54] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][....6] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....54] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][....6]
not-detected: [..1627] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49159] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1627] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49159]
not-detected: [..1001] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49158] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1001] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49158]
not-detected: [..1843] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32775] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1843] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32775]
not-detected: [...670] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32774] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...670] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32774]
not-detected: [...514] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][....7] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...514] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][....7]
not-detected: [....74] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][....6] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....74] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][....6]
not-detected: [..1918] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32775] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1918] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32775]
not-detected: [..1848] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49160] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1848] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49160]
not-detected: [..1714] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49159] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1714] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49159]
not-detected: [...588] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8200] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...588] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8200]
not-detected: [...557] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][....7] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...557] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][....7]
not-detected: [...509] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32776] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...509] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32776]
not-detected: [..1913] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49160] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1913] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49160]
not-detected: [..1489] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49161] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1489] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49161]
not-detected: [..1642] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32777] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1642] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32777]
not-detected: [...667] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8200] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...667] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8200]
not-detected: [...562] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32776] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...562] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32776]
not-detected: [...371] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][....9] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...371] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][....9]
not-detected: [..1729] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32777] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1729] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32777]
not-detected: [..1560] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49161] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1560] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49161]
not-detected: [...413] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][....9] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...413] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][....9]
not-detected: [....93] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32778] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....93] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32778]
not-detected: [...767] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49163] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...767] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49163]
not-detected: [...792] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32779] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...792] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32779]
not-detected: [...116] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32778] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...116] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32778]
not-detected: [...863] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32779] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...863] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32779]
not-detected: [...830] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49163] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...830] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49163]
not-detected: [..1174] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6156] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1174] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6156]
not-detected: [...503] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32780] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...503] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32780]
not-detected: [...727] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49165] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...727] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49165]
not-detected: [...528] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32780] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...528] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32780]
not-detected: [..1373] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...13] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1373] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...13]
not-detected: [..1233] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6156] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1233] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6156]
not-detected: [...276] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32781] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...276] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32781]
not-detected: [...778] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49165] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...778] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49165]
not-detected: [..1446] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...13] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1446] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...13]
not-detected: [...770] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32782] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...770] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32782]
not-detected: [...303] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32781] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...303] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32781]
not-detected: [..1739] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49167] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1739] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49167]
not-detected: [...998] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32783] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...998] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32783]
not-detected: [...827] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32782] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...827] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32782]
not-detected: [...380] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4111] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...380] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4111]
not-detected: [..1815] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49167] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1815] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49167]
not-detected: [..1527] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32784] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1527] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32784]
not-detected: [..1049] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32783] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1049] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32783]
not-detected: [...404] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4111] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...404] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4111]
not-detected: [..1596] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32784] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1596] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32784]
not-detected: [..1833] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2065] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1833] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2065]
not-detected: [...436] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32785] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...436] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][32785]
not-detected: [...289] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...17] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...289] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...17]
not-detected: [..1908] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2065] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1908] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2065]
not-detected: [...471] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32785] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...471] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][32785]
not-detected: [...331] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...17] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...331] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...17]
not-detected: [..1139] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...19] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1139] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...19]
not-detected: [..1647] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2068] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1647] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2068]
guessed: [..1320] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...20] [FTP_DATA][Unknown][Download][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1320] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...20]
not-detected: [..1208] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...19] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1208] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...19]
not-detected: [..1724] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2068] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1724] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2068]
guessed: [..1425] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...20] [FTP_DATA][Unknown][Download][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1425] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...20]
guessed: [....11] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...21] [FTP_CONTROL][Unknown][Download][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....11] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...21]
guessed: [....40] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...22] [SSH][Unknown][RemoteAccess][Acceptable]
idle: [....40] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...22]
guessed: [....20] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...21] [FTP_CONTROL][Unknown][Download][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....20] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...21]
not-detected: [..1443] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49175] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1443] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49175]
guessed: [....16] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...23] [Telnet][Unknown][RemoteAccess][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....16] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...23]
not-detected: [..1503] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49175] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1503] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49175]
not-detected: [...426] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49176] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...426] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49176]
not-detected: [...135] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...24] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...135] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...24]
guessed: [....17] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...23] [Telnet][Unknown][RemoteAccess][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....17] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...23]
not-detected: [...481] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49176] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...481] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49176]
not-detected: [...157] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...24] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...157] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...24]
guessed: [....35] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...25] [SMTP][Unknown][Email][Acceptable][]
+ RISK: TCP Connection Issues
end: [....35] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...25]
not-detected: [...293] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...26] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...293] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...26]
not-detected: [...327] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...26] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...327] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...26]
not-detected: [...765] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4125] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...765] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4125]
not-detected: [...832] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4125] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...832] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4125]
not-detected: [...463] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4126] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...463] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4126]
not-detected: [...429] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...30] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...429] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...30]
not-detected: [....56] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8222] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....56] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8222]
not-detected: [...485] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4126] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...485] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4126]
not-detected: [...478] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...30] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...478] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...30]
not-detected: [....72] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8222] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....72] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8222]
not-detected: [...132] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...32] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...132] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...32]
not-detected: [...353] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4129] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...353] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4129]
not-detected: [..1640] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...33] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1640] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...33]
not-detected: [...160] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...32] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...160] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...32]
not-detected: [..1701] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...33] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1701] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...33]
not-detected: [...390] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4129] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...390] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4129]
not-detected: [..1368] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...37] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1368] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...37]
not-detected: [..1451] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...37] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1451] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...37]
not-detected: [...694] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...42] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...694] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...42]
guessed: [..1222] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...43] [Whois-DAS][Unknown][Network][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [..1222] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...43]
not-detected: [...753] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...42] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...753] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...42]
guessed: [..1276] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...43] [Whois-DAS][Unknown][Network][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [..1276] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...43]
not-detected: [..1017] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][45100] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1017] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][45100]
not-detected: [..1088] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][45100] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1088] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][45100]
not-detected: [..1485] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...49] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1485] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...49]
not-detected: [..1564] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...49] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1564] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...49]
not-detected: [...217] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2099] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...217] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2099]
not-detected: [...844] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2100] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...844] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2100]
not-detected: [...239] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2099] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...239] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2099]
not-detected: [...903] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2100] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...903] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2100]
guessed: [.....9] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...53] [DNS][Unknown][Network][Acceptable][]
idle: [.....9] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...53]
not-detected: [..1931] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2103] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1931] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2103]
not-detected: [..1991] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2103] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1991] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2103]
not-detected: [..1636] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2105] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1636] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2105]
not-detected: [...878] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][12345] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...878] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][12345]
not-detected: [..1705] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2105] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1705] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2105]
not-detected: [...927] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][12345] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...927] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][12345]
not-detected: [...176] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2106] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...176] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2106]
not-detected: [...730] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2107] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...730] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2107]
not-detected: [...198] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2106] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...198] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2106]
not-detected: [...775] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2107] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...775] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2107]
not-detected: [..1628] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8254] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1628] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8254]
not-detected: [..1713] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8254] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1713] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8254]
not-detected: [..1486] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2111] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1486] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2111]
not-detected: [..1563] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2111] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1563] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2111]
not-detected: [..1184] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...70] [Unknown][Unknown][Unrated]
+ RISK: TCP Connection Issues
end: [..1184] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...70]
not-detected: [..1148] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2119] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1148] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2119]
not-detected: [..1199] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2119] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1199] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2119]
not-detected: [...595] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2121] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...595] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2121]
not-detected: [...660] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2121] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...660] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2121]
not-detected: [...572] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2126] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...572] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2126]
not-detected: [..1196] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...79] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1196] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...79]
not-detected: [...648] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2126] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...648] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2126]
not-detected: [..1260] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...79] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1260] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...79]
guessed: [....13] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...80] [HTTP][Unknown][Web][Acceptable][]
idle: [....13] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...80]
not-detected: [..1365] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...81] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1365] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...81]
not-detected: [..1429] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...81] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1429] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...81]
not-detected: [...466] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...82] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...466] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...82]
not-detected: [...619] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...83] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...619] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...83]
not-detected: [...482] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...82] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...482] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...82]
not-detected: [...799] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...84] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...799] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...84]
not-detected: [...678] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...83] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...678] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...83]
not-detected: [..1824] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...85] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1824] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...85]
not-detected: [...856] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...84] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...856] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...84]
not-detected: [..1907] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...85] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1907] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...85]
not-detected: [..1369] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2135] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1369] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2135]
not-detected: [..1450] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2135] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1450] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2135]
guessed: [..1330] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1330] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...88]
guessed: [..1415] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...88] [Kerberos][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1415] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...88]
not-detected: [..1040] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...89] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1040] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...89]
not-detected: [..1895] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...90] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1895] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...90]
not-detected: [..1115] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...89] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1115] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...89]
not-detected: [..1957] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...90] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1957] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...90]
not-detected: [...177] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][61532] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...177] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][61532]
not-detected: [...197] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][61532] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...197] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][61532]
not-detected: [..1143] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2144] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1143] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2144]
not-detected: [..1204] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2144] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1204] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2144]
not-detected: [..1544] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8290] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1544] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8290]
not-detected: [..1609] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8290] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1609] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8290]
not-detected: [...377] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...99] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...377] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][...99]
not-detected: [...124] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8291] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...124] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8291]
not-detected: [...578] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8292] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...578] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8292]
not-detected: [..1588] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..100] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1588] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..100]
not-detected: [...407] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...99] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...407] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][...99]
not-detected: [...168] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8291] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...168] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8291]
not-detected: [..1662] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..100] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1662] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..100]
not-detected: [...642] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8292] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...642] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8292]
not-detected: [...918] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][14441] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...918] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][14441]
not-detected: [...979] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][14441] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...979] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][14441]
not-detected: [..1248] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..106] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1248] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..106]
not-detected: [...108] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][14442] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...108] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][14442]
not-detected: [..1312] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..106] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1312] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..106]
not-detected: [...142] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][14442] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...142] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][14442]
not-detected: [...254] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8300] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...254] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8300]
not-detected: [...763] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..109] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...763] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..109]
not-detected: [...284] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8300] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...284] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8300]
not-detected: [...834] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..109] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...834] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..109]
guessed: [....32] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..110] [POP3][Unknown][Email][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....32] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..110]
guessed: [....67] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..110] [POP3][Unknown][Email][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....67] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..110]
not-detected: [.....5] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..111] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [.....5] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..111]
not-detected: [..1792] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2160] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1792] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2160]
not-detected: [....25] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..111] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....25] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..111]
not-detected: [..1865] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2160] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1865] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2160]
not-detected: [...465] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2161] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...465] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2161]
not-detected: [....12] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..113] [Unknown][Unknown][Unrated]
+ RISK: TCP Connection Issues
end: [....12] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..113]
not-detected: [...483] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2161] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...483] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2161]
not-detected: [..1593] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..119] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1593] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..119]
not-detected: [..1657] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..119] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1657] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..119]
not-detected: [..1034] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2170] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1034] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2170]
not-detected: [..1121] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2170] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1121] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2170]
not-detected: [...523] [ip4][..tcp] [.....172.16.0.8][36061] -> [...64.13.134.52][..113] [Unknown][Unknown][Unrated]
+ RISK: TCP Connection Issues
end: [...523] [ip4][..tcp] [.....172.16.0.8][36061] -> [...64.13.134.52][..113]
not-detected: [...723] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..125] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...723] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..125]
not-detected: [...782] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..125] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...782] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..125]
not-detected: [...425] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4224] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...425] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4224]
not-detected: [...441] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4224] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...441] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4224]
not-detected: [..1286] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2179] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1286] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2179]
not-detected: [..1364] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2179] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1364] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2179]
guessed: [....39] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..135] [RPC][Unknown][RPC][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....39] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..135]
guessed: [....61] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..135] [RPC][Unknown][RPC][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....61] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..135]
guessed: [....14] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..139] [NetBIOS][Unknown][System][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [....14] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..139]
guessed: [....19] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..139] [NetBIOS][Unknown][System][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [....19] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..139]
guessed: [..1788] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8333] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [..1788] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8333]
guessed: [..1869] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8333] [Mining][Unknown][Mining][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [..1869] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8333]
guessed: [...193] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2190] [TiVoConnect][Unknown][Network][Fun]
+ RISK: Unidirectional Traffic
idle: [...193] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2190]
not-detected: [..1327] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2191] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1327] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2191]
guessed: [...222] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2190] [TiVoConnect][Unknown][Network][Fun]
+ RISK: Unidirectional Traffic
idle: [...222] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2190]
guessed: [.....2] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..143] [IMAP][Unknown][Email][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [.....2] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..143]
not-detected: [..1418] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2191] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1418] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2191]
not-detected: [..1032] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..144] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1032] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..144]
guessed: [....28] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..143] [IMAP][Unknown][Email][Unsafe]
- RISK: Unsafe Protocol
+ RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....28] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..143]
not-detected: [..1123] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..144] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1123] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..144]
not-detected: [..1384] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..146] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1384] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..146]
not-detected: [..1346] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4242] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1346] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4242]
not-detected: [..1465] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..146] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1465] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..146]
not-detected: [..1399] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4242] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1399] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4242]
not-detected: [...594] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2196] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...594] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2196]
not-detected: [...661] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2196] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...661] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2196]
not-detected: [...506] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2200] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...506] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2200]
not-detected: [...525] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2200] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...525] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2200]
not-detected: [..1634] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..161] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1634] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..161]
not-detected: [..1707] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..161] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1707] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..161]
not-detected: [...504] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..163] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...504] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..163]
not-detected: [...527] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..163] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...527] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..163]
not-detected: [....49] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2222] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....49] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2222]
not-detected: [....79] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2222] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....79] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2222]
guessed: [..1891] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..179] [BGP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1891] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..179]
guessed: [..1961] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..179] [BGP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1961] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..179]
not-detected: [...917] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4279] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...917] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4279]
not-detected: [...980] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4279] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...980] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4279]
not-detected: [..1669] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8383] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1669] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8383]
not-detected: [..1733] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8383] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1733] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8383]
not-detected: [.....4] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..199] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..199]
not-detected: [....26] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..199] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....26] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..199]
not-detected: [...461] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...461] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6346]
not-detected: [..1851] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2251] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1851] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2251]
not-detected: [...487] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6346] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...487] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6346]
not-detected: [..1910] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2251] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1910] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2251]
not-detected: [...435] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8400] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...435] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8400]
not-detected: [...472] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8400] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...472] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8400]
not-detected: [..1096] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8402] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1096] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8402]
not-detected: [..1159] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8402] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1159] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8402]
not-detected: [..1030] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..211] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1030] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..211]
not-detected: [..1075] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..211] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1075] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..211]
not-detected: [...564] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..212] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...564] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..212]
not-detected: [...431] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2260] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...431] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2260]
not-detected: [...656] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..212] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...656] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..212]
not-detected: [...476] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2260] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...476] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2260]
not-detected: [..1192] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..222] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1192] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..222]
not-detected: [..1264] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..222] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1264] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..222]
not-detected: [..1387] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][24800] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1387] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][24800]
not-detected: [..1699] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4321] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1699] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4321]
not-detected: [..1462] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][24800] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1462] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][24800]
not-detected: [..1758] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4321] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1758] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4321]
not-detected: [..1678] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][30951] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1678] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][30951]
not-detected: [..1749] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][30951] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1749] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][30951]
not-detected: [...536] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2288] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...536] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2288]
not-detected: [...611] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2288] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...611] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2288]
not-detected: [...266] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6389] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...266] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6389]
not-detected: [...313] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6389] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...313] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6389]
guessed: [...622] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4343] [Whois-DAS][Unknown][Network][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [...622] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4343]
not-detected: [..1524] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49400] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1524] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49400]
guessed: [...675] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4343] [Whois-DAS][Unknown][Network][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [...675] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4343]
not-detected: [..1599] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49400] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1599] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49400]
not-detected: [..1519] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8443] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1519] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8443]
not-detected: [..1579] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8443] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1579] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8443]
not-detected: [...921] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2301] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...921] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2301]
not-detected: [...976] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2301] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...976] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2301]
not-detected: [...419] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..254] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...419] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..254]
not-detected: [..1101] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..255] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1101] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..255]
not-detected: [...447] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..254] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...447] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..254]
not-detected: [..1154] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..255] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1154] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..255]
not-detected: [....37] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..256] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....37] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..256]
not-detected: [....63] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..256] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....63] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..256]
not-detected: [..1886] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..259] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1886] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..259]
not-detected: [...871] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][55555] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...871] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][55555]
not-detected: [..1966] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..259] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1966] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..259]
not-detected: [...934] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][55555] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...934] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][55555]
not-detected: [..1487] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..264] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1487] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..264]
not-detected: [..1562] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..264] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1562] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..264]
not-detected: [..1543] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2323] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1543] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2323]
not-detected: [..1610] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2323] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1610] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2323]
not-detected: [...270] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..280] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...270] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..280]
not-detected: [...309] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..280] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...309] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..280]
not-detected: [...695] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][51493] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...695] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][51493]
not-detected: [...752] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][51493] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...752] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][51493]
not-detected: [...747] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..301] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...747] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..301]
not-detected: [...808] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..301] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...808] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..301]
not-detected: [...579] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][55600] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...579] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][55600]
not-detected: [...641] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][55600] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...641] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][55600]
not-detected: [..1939] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..306] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1939] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..306]
not-detected: [..1983] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..306] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1983] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..306]
not-detected: [..1470] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8500] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1470] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8500]
not-detected: [..1531] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8500] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1531] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8500]
not-detected: [..1898] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..311] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1898] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..311]
not-detected: [..1954] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..311] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1954] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..311]
not-detected: [..1795] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2366] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1795] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2366]
not-detected: [...985] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][31038] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...985] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][31038]
not-detected: [..1862] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2366] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1862] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2366]
not-detected: [..1062] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][31038] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1062] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][31038]
not-detected: [...546] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10566] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...546] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10566]
not-detected: [...601] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10566] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...601] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10566]
not-detected: [..1016] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2381] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1016] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2381]
not-detected: [..1089] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2381] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1089] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2381]
not-detected: [...295] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2382] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...295] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2382]
not-detected: [...740] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2383] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...740] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2383]
not-detected: [...325] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2382] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...325] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2382]
not-detected: [...815] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2383] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...815] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2383]
not-detected: [..1497] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..340] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1497] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..340]
not-detected: [..1552] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..340] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1552] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..340]
not-detected: [...417] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2393] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...417] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2393]
not-detected: [..1291] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2394] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1291] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2394]
not-detected: [...449] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2393] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...449] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2393]
not-detected: [..1359] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2394] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1359] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2394]
not-detected: [...991] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4443] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...991] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4443]
not-detected: [..1595] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][20828] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1595] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][20828]
not-detected: [..1195] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4444] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1195] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4444]
not-detected: [..1056] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4443] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1056] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4443]
not-detected: [..1655] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][20828] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1655] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][20828]
not-detected: [..1261] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4444] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1261] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4444]
not-detected: [..1015] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4445] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1015] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4445]
not-detected: [..1145] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4446] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1145] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4446]
not-detected: [..1090] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4445] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1090] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4445]
not-detected: [..1202] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4446] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1202] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4446]
not-detected: [..1038] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2399] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1038] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2399]
not-detected: [..1117] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2399] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1117] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2399]
not-detected: [..1937] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2401] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1937] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2401]
not-detected: [...617] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4449] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...617] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4449]
not-detected: [..1985] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2401] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1985] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2401]
not-detected: [...680] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4449] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...680] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4449]
not-detected: [..1745] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6502] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1745] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6502]
not-detected: [..1809] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6502] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1809] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6502]
not-detected: [...742] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6510] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...742] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6510]
not-detected: [...726] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..366] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...726] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..366]
not-detected: [...813] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6510] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...813] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6510]
not-detected: [...779] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..366] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...779] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..366]
not-detected: [..1253] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][27000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1253] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][27000]
not-detected: [...987] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10616] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...987] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10616]
not-detected: [..1307] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][27000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1307] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][27000]
not-detected: [..1060] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10616] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1060] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10616]
not-detected: [...731] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10617] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...731] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10617]
not-detected: [...774] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10617] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...774] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10617]
not-detected: [....46] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10621] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....46] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10621]
not-detected: [....82] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10621] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....82] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10621]
not-detected: [...131] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10626] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...131] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10626]
not-detected: [...161] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10626] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...161] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10626]
not-detected: [..1194] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10628] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1194] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10628]
not-detected: [..1262] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10628] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1262] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10628]
guessed: [..1844] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..389] [LDAP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1844] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..389]
not-detected: [....44] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10629] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....44] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10629]
guessed: [..1917] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..389] [LDAP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1917] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..389]
not-detected: [....84] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10629] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....84] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10629]
not-detected: [...210] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6543] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...210] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6543]
not-detected: [...246] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6543] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...246] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6543]
not-detected: [...638] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6547] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...638] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6547]
not-detected: [...699] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6547] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...699] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6547]
not-detected: [..1105] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..406] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1105] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..406]
not-detected: [..1385] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..407] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1385] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..407]
not-detected: [..1150] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..406] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1150] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..406]
not-detected: [..1464] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..407] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1464] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..407]
not-detected: [..1168] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8600] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1168] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8600]
not-detected: [..1239] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8600] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1239] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8600]
not-detected: [..1106] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][22939] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1106] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][22939]
not-detected: [..1149] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][22939] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1149] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][22939]
not-detected: [..1318] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..416] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1318] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..416]
not-detected: [..1479] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..417] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1479] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..417]
not-detected: [..1379] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..416] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1379] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..416]
not-detected: [..1570] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..417] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1570] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..417]
not-detected: [..1431] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6565] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1431] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6565]
not-detected: [..1515] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6565] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1515] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6565]
not-detected: [..1334] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6566] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1334] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6566]
not-detected: [..1492] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6567] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1492] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6567]
not-detected: [..1411] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6566] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1411] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6566]
not-detected: [..1557] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6567] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1557] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6567]
not-detected: [...170] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..425] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...170] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..425]
not-detected: [...204] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..425] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...204] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..425]
not-detected: [..1289] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..427] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1289] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..427]
not-detected: [..1361] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..427] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1361] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..427]
not-detected: [...191] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6580] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...191] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6580]
not-detected: [...224] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6580] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...224] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6580]
guessed: [.....1] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..443]
not-detected: [..1435] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2492] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1435] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2492]
not-detected: [..1672] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..444] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1672] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..444]
guessed: [....29] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
idle: [....29] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..443]
not-detected: [..1755] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..444] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1755] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..444]
not-detected: [..1511] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2492] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1511] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2492]
guessed: [....36] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..445] [SMBv23][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....36] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..445]
guessed: [....64] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..445] [SMBv23][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....64] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..445]
not-detected: [..1491] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2500] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1491] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2500]
not-detected: [..1558] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2500] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1558] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2500]
not-detected: [...462] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][57797] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...462] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][57797]
not-detected: [...898] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4550] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...898] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4550]
not-detected: [...486] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][57797] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...486] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][57797]
not-detected: [...957] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4550] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...957] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4550]
not-detected: [...216] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8649] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...216] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8649]
not-detected: [..1294] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..458] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1294] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..458]
not-detected: [...240] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8649] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...240] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8649]
not-detected: [..1356] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..458] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1356] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..458]
not-detected: [...452] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8651] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...452] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8651]
not-detected: [..1390] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][61900] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1390] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][61900]
not-detected: [..1100] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8652] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1100] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8652]
not-detected: [...496] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8651] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...496] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8651]
not-detected: [..1459] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][61900] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1459] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][61900]
not-detected: [..1155] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8652] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1155] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8652]
not-detected: [..1793] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8654] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1793] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8654]
not-detected: [..1864] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8654] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1864] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8654]
not-detected: [...516] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..464] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...516] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..464]
guessed: [..1830] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..465] [SMTPS][Unknown][Email][Safe]
+ RISK: Unidirectional Traffic
idle: [..1830] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..465]
not-detected: [...555] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..464] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...555] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..464]
guessed: [..1901] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..465] [SMTPS][Unknown][Email][Safe]
+ RISK: Unidirectional Traffic
idle: [..1901] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..465]
not-detected: [...541] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4567] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...541] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4567]
not-detected: [...606] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4567] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...606] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4567]
not-detected: [...349] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2522] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...349] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2522]
not-detected: [...394] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2522] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...394] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2522]
not-detected: [...267] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2525] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...267] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2525]
not-detected: [...312] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2525] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...312] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2525]
not-detected: [...837] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..481] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...837] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..481]
not-detected: [...910] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..481] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...910] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..481]
not-detected: [...178] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..497] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...178] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..497]
not-detected: [...196] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..497] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...196] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..497]
guessed: [...886] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [...886] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..500]
guessed: [...969] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..500] [IPSec][Unknown][VPN][Safe]
+ RISK: Unidirectional Traffic
idle: [...969] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..500]
not-detected: [..1826] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6646] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1826] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6646]
not-detected: [..1905] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6646] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1905] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6646]
not-detected: [..1367] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2557] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1367] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2557]
not-detected: [...715] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8701] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...715] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8701]
not-detected: [..1427] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2557] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1427] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2557]
not-detected: [...790] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8701] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...790] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8701]
not-detected: [..1950] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..512] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1950] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..512]
not-detected: [..1972] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..512] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1972] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..512]
not-detected: [..1341] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..513] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1341] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..513]
not-detected: [..1404] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..513] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1404] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..513]
guessed: [....88] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..514] [Syslog][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....88] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..514]
not-detected: [..1623] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..515] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1623] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..515]
guessed: [...121] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..514] [Syslog][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...121] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..514]
not-detected: [..1682] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..515] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1682] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..515]
not-detected: [..1899] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6666] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1899] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6666]
not-detected: [..1953] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6666] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1953] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6666]
not-detected: [..1675] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6667] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1675] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6667]
not-detected: [..1752] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6667] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1752] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6667]
not-detected: [..1167] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6668] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1167] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6668]
not-detected: [..1135] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..524] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1135] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..524]
not-detected: [..1240] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6668] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1240] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6668]
not-detected: [..1212] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..524] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1212] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..524]
not-detected: [...180] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6669] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...180] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6669]
not-detected: [...235] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6669] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...235] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6669]
not-detected: [...720] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10778] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...720] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][10778]
not-detected: [...785] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10778] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...785] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][10778]
not-detected: [..1323] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..541] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1323] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..541]
not-detected: [..1422] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..541] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1422] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..541]
not-detected: [..1187] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..543] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1187] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..543]
not-detected: [..1670] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..544] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1670] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..544]
not-detected: [..1269] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..543] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1269] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..543]
not-detected: [..1732] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..544] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1732] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..544]
not-detected: [...956] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6689] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...956] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6689]
not-detected: [...892] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..545] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...892] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..545]
not-detected: [...999] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6689] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...999] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6689]
not-detected: [...963] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..545] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...963] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..545]
not-detected: [..1541] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6692] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1541] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6692]
guessed: [....42] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..548] [AFP][Unknown][DataTransfer][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....42] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..548]
not-detected: [..1612] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6692] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1612] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6692]
guessed: [....59] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..548] [AFP][Unknown][DataTransfer][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....59] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..548]
not-detected: [..1219] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][41511] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1219] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][41511]
not-detected: [..1279] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][41511] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1279] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][41511]
not-detected: [...895] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2601] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...895] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2601]
not-detected: [..1245] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2602] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1245] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2602]
not-detected: [...960] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2601] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...960] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2601]
guessed: [....38] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..554] [RTSP][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
idle: [....38] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..554]
not-detected: [..1315] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2602] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1315] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2602]
not-detected: [...290] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6699] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...290] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6699]
not-detected: [..1624] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..555] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1624] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..555]
guessed: [....62] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..554] [RTSP][Unknown][Media][Fun]
+ RISK: Unidirectional Traffic
idle: [....62] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..554]
not-detected: [..1638] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][18988] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1638] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][18988]
not-detected: [..1717] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..555] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1717] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..555]
guessed: [...989] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2604] [OSPF][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...989] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2604]
not-detected: [...330] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6699] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...330] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6699]
not-detected: [..1703] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][18988] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1703] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][18988]
guessed: [..1058] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2604] [OSPF][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1058] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2604]
guessed: [....45] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2605] [BGP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....45] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2605]
guessed: [....83] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2605] [BGP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....83] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2605]
not-detected: [..1840] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2607] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1840] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2607]
not-detected: [..1921] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2607] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1921] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2607]
not-detected: [..1293] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2608] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1293] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2608]
not-detected: [..1357] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2608] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1357] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2608]
not-detected: [..1894] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..563] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1894] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..563]
not-detected: [..1958] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..563] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1958] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..563]
not-detected: [...459] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4662] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...459] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4662]
not-detected: [...489] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4662] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...489] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4662]
not-detected: [..1102] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][33354] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1102] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][33354]
not-detected: [..1153] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][33354] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1153] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][33354]
guessed: [.....8] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..587] [SMTP][Unknown][Email][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [.....8] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..587]
guessed: [....22] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..587] [SMTP][Unknown][Email][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [....22] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..587]
not-detected: [..1622] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2638] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1622] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2638]
not-detected: [..1683] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2638] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1683] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2638]
not-detected: [..1391] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..593] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1391] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..593]
not-detected: [..1458] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..593] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1458] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..593]
not-detected: [..1933] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8800] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1933] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8800]
not-detected: [..1019] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][16992] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1019] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][16992]
not-detected: [..1989] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8800] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1989] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8800]
not-detected: [..1746] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][16993] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1746] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][16993]
not-detected: [..1086] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][16992] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1086] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][16992]
not-detected: [..1808] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][16993] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1808] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][16993]
not-detected: [..1537] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..616] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1537] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..616]
not-detected: [..1616] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..616] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1616] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..616]
not-detected: [...773] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..617] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...773] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..617]
not-detected: [...109] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][31337] [Unknown][Unknown][Unrated]
+ RISK: TCP Connection Issues
end: [...109] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][31337]
not-detected: [...824] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..617] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...824] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..617]
not-detected: [..1832] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..625] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1832] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..625]
not-detected: [..1909] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..625] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1909] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..625]
not-detected: [..1927] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][60020] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1927] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][60020]
not-detected: [..1967] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][60020] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1967] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][60020]
not-detected: [..1494] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..631] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1494] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..631]
not-detected: [..1555] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..631] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1555] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..631]
not-detected: [...627] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6779] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...627] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6779]
not-detected: [..1583] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..636] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1583] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..636]
not-detected: [...710] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6779] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...710] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6779]
not-detected: [..1667] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..636] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1667] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..636]
not-detected: [...299] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][62078] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...299] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][62078]
not-detected: [...321] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][62078] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...321] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][62078]
not-detected: [...259] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6788] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...259] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6788]
not-detected: [..1740] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6789] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1740] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6789]
not-detected: [...279] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6788] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...279] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6788]
not-detected: [..1814] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6789] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1814] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6789]
not-detected: [...497] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..646] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...497] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..646]
not-detected: [...534] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..646] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...534] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..646]
not-detected: [..1499] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6792] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1499] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6792]
not-detected: [..1495] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..648] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1495] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..648]
not-detected: [..1554] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..648] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1554] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..648]
not-detected: [..1550] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6792] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1550] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6792]
not-detected: [....99] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2701] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....99] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2701]
not-detected: [..1048] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2702] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1048] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2702]
not-detected: [...151] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2701] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...151] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2701]
not-detected: [..1107] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2702] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1107] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2702]
not-detected: [..1436] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2710] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1436] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2710]
not-detected: [..1510] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2710] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1510] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2710]
not-detected: [..1138] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][15000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1138] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][15000]
not-detected: [..1209] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][15000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1209] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][15000]
not-detected: [...877] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][15002] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...877] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][15002]
not-detected: [...296] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..666] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...296] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..666]
not-detected: [..1183] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][15003] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1183] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][15003]
not-detected: [...928] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][15002] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...928] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][15002]
not-detected: [..1024] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..667] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1024] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..667]
not-detected: [...324] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..666] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...324] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..666]
not-detected: [..1272] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][15003] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1272] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][15003]
not-detected: [..1639] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..668] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1639] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..668]
not-detected: [..1081] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..667] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1081] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..667]
not-detected: [...133] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][15004] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...133] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][15004]
not-detected: [...302] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][19101] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...302] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][19101]
not-detected: [..1702] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..668] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1702] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..668]
not-detected: [...732] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2717] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...732] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2717]
not-detected: [...159] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][15004] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...159] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][15004]
not-detected: [..1942] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2718] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1942] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2718]
not-detected: [...823] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2717] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...823] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2717]
not-detected: [...318] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][19101] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...318] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][19101]
not-detected: [..1980] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2718] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1980] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2718]
not-detected: [..1897] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2725] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1897] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2725]
not-detected: [..1955] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2725] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1955] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2725]
not-detected: [..1041] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8873] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1041] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8873]
not-detected: [..1114] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8873] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1114] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8873]
not-detected: [....57] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..683] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....57] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..683]
not-detected: [...512] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][35500] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...512] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][35500]
not-detected: [....71] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..683] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....71] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..683]
not-detected: [...559] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][35500] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...559] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][35500]
not-detected: [..1846] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..687] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1846] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..687]
not-detected: [..1915] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..687] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1915] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..687]
not-detected: [..1297] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..691] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1297] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..691]
not-detected: [..1353] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..691] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1353] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..691]
not-detected: [...262] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6839] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...262] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6839]
not-detected: [...317] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6839] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...317] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6839]
not-detected: [....41] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8888] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....41] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8888]
not-detected: [....60] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8888] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....60] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8888]
not-detected: [...274] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..700] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...274] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..700]
not-detected: [...305] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..700] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...305] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..700]
not-detected: [...950] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..705] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...950] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..705]
not-detected: [..1005] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..705] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1005] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..705]
not-detected: [..1214] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8899] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1214] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8899]
not-detected: [..1284] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8899] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1284] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8899]
not-detected: [..1224] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..711] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1224] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..711]
not-detected: [..1301] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..711] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1301] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..711]
not-detected: [..1170] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..714] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1170] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..714]
not-detected: [..1237] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..714] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1237] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..714]
not-detected: [..1382] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..720] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1382] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..720]
not-detected: [..1467] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..720] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1467] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..720]
not-detected: [..1342] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..722] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1342] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..722]
not-detected: [..1403] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..722] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1403] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..722]
not-detected: [...457] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..726] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...457] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..726]
not-detected: [...491] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..726] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...491] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..726]
not-detected: [..1439] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][27352] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1439] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][27352]
not-detected: [..1801] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][27353] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1801] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][27353]
not-detected: [..1507] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][27352] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1507] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][27352]
not-detected: [..1856] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][27353] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1856] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][27353]
not-detected: [...189] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][27355] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...189] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][27355]
not-detected: [...379] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][27356] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...379] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][27356]
not-detected: [...226] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][27355] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...226] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][27355]
not-detected: [...405] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][27356] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...405] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][27356]
not-detected: [..1337] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][58080] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1337] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][58080]
not-detected: [..1408] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][58080] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1408] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][58080]
not-detected: [...884] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6881] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...884] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6881]
not-detected: [...971] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6881] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...971] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6881]
not-detected: [...631] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..749] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...631] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..749]
not-detected: [...706] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..749] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...706] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..749]
not-detected: [...460] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2800] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...460] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2800]
not-detected: [....92] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4848] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....92] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4848]
not-detected: [...488] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2800] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...488] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2800]
not-detected: [...117] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4848] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...117] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4848]
not-detected: [..1685] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6901] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1685] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6901]
not-detected: [..1772] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6901] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1772] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6901]
not-detected: [..1370] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2809] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1370] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2809]
not-detected: [..1449] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2809] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1449] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2809]
not-detected: [...352] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2811] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...352] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2811]
not-detected: [...391] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2811] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...391] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2811]
not-detected: [...218] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..765] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...218] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..765]
not-detected: [...238] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..765] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...238] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..765]
not-detected: [..1649] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..777] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1649] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..777]
not-detected: [..1722] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..777] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1722] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..777]
not-detected: [..1500] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..783] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1500] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..783]
not-detected: [..1549] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..783] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1549] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..783]
not-detected: [..1654] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..787] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1654] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..787]
not-detected: [..1730] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..787] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1730] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..787]
not-detected: [..1502] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][54045] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1502] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][54045]
not-detected: [..1578] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][54045] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1578] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][54045]
not-detected: [..1036] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..800] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1036] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..800]
not-detected: [..1119] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..800] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1119] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..800]
not-detected: [...301] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..801] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...301] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..801]
not-detected: [..1037] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8994] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1037] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.8994]
not-detected: [...319] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..801] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...319] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..801]
not-detected: [..1118] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8994] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1118] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.8994]
not-detected: [...333] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4899] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...333] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4899]
not-detected: [...692] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4900] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...692] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4900]
not-detected: [...369] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4899] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...369] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4899]
not-detected: [...755] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4900] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...755] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4900]
not-detected: [..1635] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1635] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9000]
not-detected: [...209] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..808] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...209] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..808]
not-detected: [..1706] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1706] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9000]
not-detected: [..1182] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9001] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1182] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9001]
not-detected: [...247] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..808] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...247] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..808]
not-detected: [..1273] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9001] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1273] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9001]
not-detected: [..1063] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9002] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1063] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9002]
not-detected: [..1134] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9002] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1134] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9002]
not-detected: [...592] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9003] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...592] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9003]
not-detected: [...663] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9003] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...663] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9003]
not-detected: [...567] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9009] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...567] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9009]
not-detected: [...653] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9009] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...653] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9009]
not-detected: [...219] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9010] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...219] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9010]
not-detected: [..1783] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9011] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1783] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9011]
not-detected: [...237] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9010] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...237] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9010]
not-detected: [..1874] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9011] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1874] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9011]
not-detected: [...179] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2869] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...179] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2869]
not-detected: [...195] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2869] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...195] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2869]
not-detected: [..1687] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6969] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1687] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.6969]
not-detected: [..1770] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6969] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1770] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.6969]
not-detected: [..1526] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2875] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1526] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2875]
not-detected: [..1597] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2875] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1597] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2875]
not-detected: [...100] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..843] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...100] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..843]
not-detected: [...150] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..843] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...150] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..843]
not-detected: [...253] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49999] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...253] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][49999]
not-detected: [..1734] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][50000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1734] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][50000]
not-detected: [..1477] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9040] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1477] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9040]
not-detected: [...285] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49999] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...285] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][49999]
not-detected: [..1820] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][50000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1820] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][50000]
not-detected: [..1572] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9040] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1572] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9040]
not-detected: [..1068] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][50001] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1068] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][50001]
not-detected: [..1690] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][50002] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1690] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][50002]
not-detected: [..1129] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][50001] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1129] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][50001]
not-detected: [..1767] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][50002] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1767] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][50002]
not-detected: [..1632] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][50003] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1632] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][50003]
not-detected: [..1340] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][19283] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1340] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][19283]
not-detected: [..1709] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][50003] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1709] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][50003]
not-detected: [..1405] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][19283] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1405] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][19283]
not-detected: [..1794] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][50006] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1794] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][50006]
not-detected: [..1863] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][50006] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1863] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][50006]
not-detected: [...268] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...268] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7000]
not-detected: [...616] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7001] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...616] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7001]
not-detected: [...311] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...311] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7000]
not-detected: [...947] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7002] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...947] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7002]
not-detected: [...681] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7001] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...681] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7001]
not-detected: [...623] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9050] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...623] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9050]
not-detected: [..1008] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7002] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1008] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7002]
not-detected: [...674] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9050] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...674] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9050]
not-detected: [..1440] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7004] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1440] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7004]
not-detected: [..1506] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7004] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1506] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7004]
not-detected: [...416] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2909] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...416] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2909]
not-detected: [..1680] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2910] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1680] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2910]
not-detected: [...450] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2909] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...450] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2909]
not-detected: [..1802] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7007] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1802] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7007]
not-detected: [..1757] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2910] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1757] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2910]
not-detected: [..1855] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7007] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1855] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7007]
not-detected: [...876] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][11110] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...876] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][11110]
not-detected: [...929] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][11110] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...929] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][11110]
not-detected: [...498] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][11111] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...498] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][11111]
not-detected: [..1837] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2920] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1837] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2920]
not-detected: [...533] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][11111] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...533] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][11111]
not-detected: [..1924] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2920] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1924] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2920]
guessed: [..1592] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..873] [RSYNC][Unknown][DataTransfer][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1592] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..873]
guessed: [..1658] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..873] [RSYNC][Unknown][DataTransfer][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1658] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..873]
not-detected: [..1018] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7019] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1018] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7019]
not-detected: [..1087] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7019] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1087] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7019]
not-detected: [...220] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9071] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...220] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9071]
not-detected: [..1625] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..880] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1625] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..880]
not-detected: [...236] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9071] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...236] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9071]
not-detected: [..1716] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..880] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1716] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..880]
not-detected: [..1255] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7025] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1255] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7025]
not-detected: [..1305] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7025] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1305] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7025]
not-detected: [...686] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][19315] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...686] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][19315]
not-detected: [...761] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][19315] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...761] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][19315]
not-detected: [..1025] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9080] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1025] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9080]
not-detected: [...589] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..888] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...589] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..888]
not-detected: [..1080] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9080] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1080] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9080]
not-detected: [...994] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9081] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...994] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9081]
not-detected: [...666] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..888] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...666] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..888]
not-detected: [..1053] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9081] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1053] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9081]
not-detected: [..1097] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9090] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1097] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9090]
not-detected: [...883] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..898] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...883] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..898]
not-detected: [..1158] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9090] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1158] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9090]
not-detected: [...972] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..898] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...972] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..898]
not-detected: [...574] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9091] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...574] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9091]
not-detected: [..1591] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..900] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1591] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..900]
not-detected: [...646] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9091] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...646] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9091]
not-detected: [..1659] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..900] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1659] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..900]
not-detected: [...866] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..901] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...866] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..901]
not-detected: [..1928] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4998] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1928] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.4998]
not-detected: [..1092] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..902] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1092] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..902]
not-detected: [...939] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..901] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...939] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..901]
not-detected: [..1994] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4998] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1994] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.4998]
guessed: [..1587] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..903] [VMware][Unknown][RemoteAccess][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1587] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..903]
not-detected: [..1163] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..902] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1163] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..902]
guessed: [..1663] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..903] [VMware][Unknown][RemoteAccess][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1663] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..903]
not-detected: [..1169] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1169] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5000]
not-detected: [..1238] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1238] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5000]
guessed: [...745] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5001] [TargusDataspeed][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...745] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5001]
not-detected: [..1929] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5002] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1929] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5002]
guessed: [...810] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5001] [TargusDataspeed][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...810] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5001]
not-detected: [..1993] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5002] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1993] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5002]
not-detected: [..1798] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5003] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1798] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5003]
not-detected: [..1644] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9099] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1644] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9099]
not-detected: [..1727] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9099] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1727] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9099]
not-detected: [..1859] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5003] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1859] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5003]
not-detected: [..1523] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9100] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1523] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9100]
not-detected: [..1437] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5004] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1437] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5004]
not-detected: [..1600] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9100] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1600] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9100]
not-detected: [..1509] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5004] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1509] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5004]
not-detected: [...630] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9101] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...630] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9101]
not-detected: [...707] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9101] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...707] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9101]
not-detected: [...138] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9102] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...138] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9102]
not-detected: [..1780] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..911] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1780] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..911]
not-detected: [..1299] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9103] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1299] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9103]
not-detected: [...154] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9102] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...154] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9102]
not-detected: [..1877] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..911] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1877] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..911]
not-detected: [..1351] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9103] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1351] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9103]
not-detected: [...456] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..912] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...456] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..912]
not-detected: [..1542] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5009] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1542] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5009]
not-detected: [...492] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..912] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...492] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..912]
not-detected: [..1611] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5009] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1611] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5009]
not-detected: [..1389] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][19350] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1389] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][19350]
not-detected: [...437] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9110] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...437] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9110]
not-detected: [..1460] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][19350] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1460] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][19350]
not-detected: [..1671] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9111] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1671] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9111]
not-detected: [...840] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2967] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...840] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2967]
not-detected: [...470] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9110] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...470] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9110]
not-detected: [..1731] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9111] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1731] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9111]
not-detected: [...907] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2967] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...907] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2967]
not-detected: [...415] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2968] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...415] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2968]
not-detected: [...451] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2968] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...451] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2968]
not-detected: [...507] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7070] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...507] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7070]
not-detected: [...524] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7070] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...524] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7070]
not-detected: [..1047] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5030] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1047] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5030]
not-detected: [..1108] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5030] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1108] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5030]
not-detected: [...212] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5033] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...212] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5033]
not-detected: [...244] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5033] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...244] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5033]
not-detected: [...586] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2998] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...586] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.2998]
not-detected: [...669] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2998] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...669] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.2998]
not-detected: [...433] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...433] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3000]
not-detected: [...474] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...474] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3000]
not-detected: [...192] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3001] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...192] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3001]
not-detected: [..1179] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5050] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1179] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5050]
not-detected: [...223] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3001] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...223] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3001]
not-detected: [..1228] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5050] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1228] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5050]
not-detected: [..1688] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3003] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1688] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3003]
not-detected: [...739] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5051] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...739] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5051]
not-detected: [..1769] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3003] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1769] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3003]
not-detected: [...816] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5051] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...816] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5051]
not-detected: [...613] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7100] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...613] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7100]
not-detected: [..1696] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3005] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1696] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3005]
not-detected: [...684] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7100] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...684] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7100]
not-detected: [..1761] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3005] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1761] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3005]
not-detected: [..1584] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5054] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1584] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5054]
not-detected: [...806] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3006] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...806] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3006]
not-detected: [..1676] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7103] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1676] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7103]
not-detected: [..1666] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5054] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1666] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5054]
not-detected: [...869] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3007] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...869] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3007]
not-detected: [...849] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3006] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...849] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3006]
not-detected: [..1751] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7103] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1751] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7103]
not-detected: [...936] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3007] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...936] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3007]
not-detected: [..1042] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7106] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1042] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7106]
not-detected: [..1689] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3011] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1689] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3011]
not-detected: [..1113] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7106] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1113] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7106]
not-detected: [..1768] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3011] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1768] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3011]
guessed: [...889] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...889] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5060]
not-detected: [..1849] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3013] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1849] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3013]
guessed: [..1778] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5061] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1778] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5061]
guessed: [...966] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...966] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5060]
not-detected: [..1912] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3013] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1912] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3013]
guessed: [..1879] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5061] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1879] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5061]
not-detected: [...273] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3017] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...273] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3017]
not-detected: [...306] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3017] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...306] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3017]
not-detected: [..1796] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][23502] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1796] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][23502]
not-detected: [..1861] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][23502] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1861] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][23502]
not-detected: [...341] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][48080] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...341] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][48080]
not-detected: [...361] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][48080] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...361] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][48080]
not-detected: [...867] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..981] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...867] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..981]
not-detected: [...938] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..981] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...938] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..981]
not-detected: [...635] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3030] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...635] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3030]
not-detected: [..1938] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3031] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1938] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3031]
not-detected: [...702] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3030] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...702] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3030]
not-detected: [..1984] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3031] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1984] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3031]
not-detected: [...339] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5080] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...339] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5080]
not-detected: [...363] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5080] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...363] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5080]
not-detected: [...914] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..987] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...914] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..987]
not-detected: [...983] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..987] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...983] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..987]
not-detected: [....47] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..990] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....47] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..990]
not-detected: [..1287] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5087] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1287] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5087]
not-detected: [....81] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..990] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....81] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..990]
not-detected: [..1363] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5087] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1363] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5087]
not-detected: [..1099] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..992] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1099] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..992]
not-detected: [..1156] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..992] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1156] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..992]
guessed: [....31] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..993] [IMAPS][Unknown][Email][Safe]
+ RISK: Unidirectional Traffic
idle: [....31] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..993]
guessed: [....68] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..993] [IMAPS][Unknown][Email][Safe]
+ RISK: Unidirectional Traffic
idle: [....68] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..993]
guessed: [.....7] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..995] [POPS][Unknown][Email][Safe]
+ RISK: Unidirectional Traffic
idle: [.....7] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..995]
guessed: [....23] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..995] [POPS][Unknown][Email][Safe]
+ RISK: Unidirectional Traffic
idle: [....23] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..995]
not-detected: [...522] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..999] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...522] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][..999]
not-detected: [..1434] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1434] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1000]
not-detected: [...549] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..999] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...549] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][..999]
not-detected: [..1512] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1512] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1000]
not-detected: [...845] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1001] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...845] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1001]
not-detected: [...902] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1001] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...902] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1001]
not-detected: [...894] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1002] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...894] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1002]
not-detected: [....58] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3050] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....58] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3050]
not-detected: [...961] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1002] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...961] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1002]
not-detected: [....70] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3050] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....70] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3050]
not-detected: [..1136] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5100] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1136] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5100]
not-detected: [...298] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3052] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...298] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3052]
not-detected: [..1211] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5100] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1211] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5100]
not-detected: [...322] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3052] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...322] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3052]
not-detected: [...136] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5101] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...136] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5101]
not-detected: [..1026] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5102] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1026] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5102]
not-detected: [...156] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5101] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...156] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5101]
not-detected: [..1827] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1007] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1827] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1007]
not-detected: [..1079] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5102] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1079] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5102]
not-detected: [..1904] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1007] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1904] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1007]
not-detected: [...102] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9200] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...102] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9200]
not-detected: [...576] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1009] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...576] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1009]
not-detected: [...148] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9200] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...148] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9200]
not-detected: [..1095] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1010] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1095] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1010]
not-detected: [...644] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1009] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...644] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1009]
not-detected: [..1160] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1010] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1160] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1010]
not-detected: [..1070] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1011] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1070] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1011]
not-detected: [..1127] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1011] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1127] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1011]
not-detected: [..1338] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9207] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1338] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9207]
not-detected: [..1407] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9207] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1407] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9207]
not-detected: [..1926] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1021] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1926] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1021]
not-detected: [..1968] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1021] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1968] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1021]
not-detected: [..1529] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1022] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1529] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1022]
not-detected: [..1604] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1022] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1604] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1022]
not-detected: [..1586] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1023] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1586] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1023]
not-detected: [...211] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3071] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...211] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3071]
not-detected: [...887] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5120] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...887] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5120]
not-detected: [..1664] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1023] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1664] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1023]
not-detected: [...245] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3071] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...245] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3071]
not-detected: [...130] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1024] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...130] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1024]
not-detected: [...968] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5120] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...968] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5120]
not-detected: [...162] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1024] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...162] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1024]
not-detected: [.....6] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1025] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1025]
not-detected: [..1471] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1026] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1471] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1026]
not-detected: [....24] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1025] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....24] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1025]
not-detected: [..1530] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1026] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1530] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1026]
not-detected: [...428] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1027] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...428] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1027]
not-detected: [...548] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9220] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...548] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9220]
not-detected: [..1590] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1028] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1590] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1028]
not-detected: [...479] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1027] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...479] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1027]
not-detected: [...599] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9220] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...599] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9220]
not-detected: [..1660] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1028] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1660] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1028]
not-detected: [...864] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1029] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...864] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1029]
not-detected: [...126] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3077] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...126] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3077]
not-detected: [..1186] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1030] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1186] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1030]
not-detected: [...941] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1029] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...941] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1029]
not-detected: [...166] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3077] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...166] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3077]
not-detected: [..1270] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1030] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1270] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1030]
not-detected: [...636] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1031] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...636] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1031]
not-detected: [..1198] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1032] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1198] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1032]
not-detected: [...701] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1031] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...701] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1031]
not-detected: [..1493] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1033] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1493] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1033]
not-detected: [..1274] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1032] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1274] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1032]
not-detected: [..1556] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1033] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1556] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1033]
not-detected: [..1546] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1034] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1546] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1034]
not-detected: [..1607] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1034] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1607] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1034]
not-detected: [..1329] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1035] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1329] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1035]
not-detected: [..1416] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1035] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1416] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1035]
not-detected: [...581] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1036] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...581] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1036]
not-detected: [..1028] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1037] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1028] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1037]
not-detected: [...639] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1036] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...639] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1036]
not-detected: [..1821] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1038] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1821] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1038]
not-detected: [..1077] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1037] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1077] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1037]
not-detected: [..1885] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1038] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1885] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1038]
not-detected: [..1538] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1039] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1538] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1039]
not-detected: [..1615] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1039] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1615] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1039]
not-detected: [...376] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1040] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...376] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1040]
not-detected: [...734] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1041] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...734] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1041]
not-detected: [...408] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1040] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...408] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1040]
not-detected: [...821] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1041] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...821] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1041]
not-detected: [...735] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1042] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...735] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1042]
not-detected: [...820] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1042] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...820] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1042]
not-detected: [...183] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1043] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...183] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1043]
not-detected: [..1949] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1044] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1949] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1044]
not-detected: [...232] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1043] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...232] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1043]
not-detected: [..1973] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1044] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1973] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1044]
not-detected: [..1247] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1045] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1247] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1045]
not-detected: [..1313] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1045] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1313] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1045]
not-detected: [...945] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1046] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...945] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1046]
not-detected: [..1010] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1046] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1010] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1046]
not-detected: [...347] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1047] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...347] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1047]
not-detected: [...439] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1048] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...439] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1048]
not-detected: [...396] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1047] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...396] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1047]
not-detected: [..1932] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1049] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1932] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1049]
not-detected: [...468] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1048] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...468] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1048]
not-detected: [..1990] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1049] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1990] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1049]
not-detected: [..1103] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1050] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1103] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1050]
not-detected: [..1152] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1050] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1152] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1050]
not-detected: [...891] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1051] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...891] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1051]
not-detected: [...434] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][60443] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...434] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][60443]
not-detected: [...964] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1051] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...964] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1051]
not-detected: [...690] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1052] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...690] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1052]
not-detected: [...473] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][60443] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...473] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][60443]
not-detected: [...757] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1052] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...757] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1052]
not-detected: [...584] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1053] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...584] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1053]
not-detected: [..1520] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1054] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1520] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1054]
not-detected: [...671] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1053] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...671] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1053]
not-detected: [..1603] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1054] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1603] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1054]
not-detected: [..1331] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1055] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1331] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1055]
not-detected: [..1414] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1055] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1414] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1055]
not-detected: [...128] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7200] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...128] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7200]
not-detected: [....43] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1056] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....43] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1056]
not-detected: [...583] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7201] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...583] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7201]
not-detected: [...164] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7200] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...164] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7200]
not-detected: [..1742] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1057] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1742] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1057]
not-detected: [....85] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1056] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....85] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1056]
not-detected: [..1812] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1057] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1812] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1057]
not-detected: [...672] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7201] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...672] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7201]
not-detected: [...569] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1058] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...569] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1058]
not-detected: [...988] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1059] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...988] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1059]
not-detected: [...651] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1058] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...651] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1058]
not-detected: [..1059] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1059] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1059] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1059]
not-detected: [...348] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1060] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...348] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1060]
not-detected: [..1249] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1061] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1249] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1061]
not-detected: [...395] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1060] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...395] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1060]
not-detected: [..1311] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1061] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1311] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1061]
not-detected: [..1066] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1062] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1066] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1062]
not-detected: [..1797] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1063] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1797] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1063]
not-detected: [..1131] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1062] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1131] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1062]
not-detected: [..1860] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1063] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1860] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1063]
not-detected: [...214] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1064] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...214] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1064]
not-detected: [...508] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1065] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...508] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1065]
not-detected: [...242] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1064] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...242] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1064]
not-detected: [...836] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1066] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...836] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1066]
not-detected: [...563] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1065] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...563] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1065]
not-detected: [...911] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1066] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...911] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1066]
not-detected: [...104] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1067] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...104] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1067]
not-detected: [..1295] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1068] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1295] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1068]
not-detected: [...146] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1067] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...146] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1067]
not-detected: [..1355] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1068] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1355] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1068]
not-detected: [..1349] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1069] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1349] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1069]
not-detected: [..1396] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1069] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1396] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1069]
not-detected: [...418] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1070] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...418] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1070]
not-detected: [...448] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1070] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...448] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1070]
not-detected: [...207] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1071] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...207] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1071]
not-detected: [...744] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1072] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...744] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1072]
not-detected: [...249] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1071] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...249] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1071]
not-detected: [...811] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1072] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...811] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1072]
not-detected: [...175] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1073] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...175] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1073]
not-detected: [..1650] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1074] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1650] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1074]
not-detected: [...199] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1073] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...199] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1073]
not-detected: [..1721] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1074] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1721] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1074]
not-detected: [....97] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1075] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....97] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1075]
not-detected: [..1483] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1076] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1483] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1076]
not-detected: [...153] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1075] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...153] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1075]
not-detected: [..1566] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1076] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1566] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1076]
not-detected: [..1333] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1077] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1333] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1077]
not-detected: [..1412] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1077] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1412] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1077]
not-detected: [...748] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1078] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...748] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1078]
not-detected: [...807] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1078] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...807] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1078]
not-detected: [...771] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1079] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...771] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1079]
guessed: [..1831] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3128] [HTTP_Proxy][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [..1831] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3128]
guessed: [..1694] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1080] [SOCKS][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1694] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1080]
not-detected: [...826] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1079] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...826] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1079]
not-detected: [...618] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][54328] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...618] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][54328]
guessed: [..1900] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3128] [HTTP_Proxy][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [..1900] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3128]
guessed: [..1763] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1080] [SOCKS][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1763] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1080]
not-detected: [..1490] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1081] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1490] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1081]
not-detected: [...679] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][54328] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...679] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][54328]
not-detected: [..1559] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1081] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1559] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1081]
not-detected: [...842] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1082] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...842] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1082]
not-detected: [...905] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1082] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...905] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1082]
not-detected: [...714] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1083] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...714] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1083]
not-detected: [...791] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1083] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...791] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1083]
not-detected: [...261] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1084] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...261] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1084]
not-detected: [...768] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1085] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...768] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1085]
not-detected: [...277] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1084] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...277] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1084]
not-detected: [...829] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1085] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...829] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1085]
not-detected: [...689] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1086] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...689] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1086]
not-detected: [...758] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1086] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...758] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1086]
not-detected: [...383] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1087] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...383] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1087]
not-detected: [...521] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1088] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...521] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1088]
not-detected: [...401] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1087] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...401] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1087]
not-detected: [..1679] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1089] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1679] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1089]
not-detected: [...550] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1088] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...550] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1088]
not-detected: [..1748] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1089] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1748] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1089]
not-detected: [..1629] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1090] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1629] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1090]
not-detected: [..1712] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1090] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1712] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1090]
not-detected: [..1521] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][21571] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1521] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][21571]
not-detected: [..1137] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1091] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1137] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1091]
not-detected: [...946] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][27715] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...946] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][27715]
not-detected: [..1602] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][21571] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1602] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][21571]
not-detected: [..1930] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1092] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1930] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1092]
not-detected: [..1210] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1091] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1210] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1091]
not-detected: [..1009] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][27715] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1009] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][27715]
not-detected: [..1992] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1092] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1992] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1092]
not-detected: [...896] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1093] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...896] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1093]
not-detected: [..1646] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1094] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1646] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1094]
not-detected: [...959] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1093] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...959] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1093]
not-detected: [...260] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5190] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...260] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5190]
not-detected: [..1725] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1094] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1725] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1094]
not-detected: [...278] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5190] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...278] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5190]
not-detected: [...213] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1095] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...213] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1095]
not-detected: [...598] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1096] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...598] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1096]
not-detected: [...243] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1095] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...243] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1095]
not-detected: [...657] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1096] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...657] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1096]
not-detected: [...422] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1097] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...422] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1097]
not-detected: [..1934] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9290] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1934] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9290]
not-detected: [..1257] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1098] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1257] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1098]
not-detected: [...444] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1097] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...444] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1097]
not-detected: [..1988] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9290] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1988] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9290]
not-detected: [..1303] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1098] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1303] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1098]
not-detected: [..1045] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1099] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1045] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1099]
not-detected: [..1166] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1100] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1166] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1100]
not-detected: [..1110] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1099] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1110] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1099]
not-detected: [..1241] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1100] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1241] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1100]
not-detected: [..1533] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1102] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1533] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1102]
not-detected: [..1620] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1102] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1620] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1102]
not-detected: [..1941] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1104] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1941] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1104]
not-detected: [...438] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5200] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...438] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5200]
not-detected: [..1981] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1104] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1981] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1104]
not-detected: [..1178] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1105] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1178] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1105]
not-detected: [...469] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5200] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...469] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5200]
not-detected: [..1229] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1105] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1229] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1105]
not-detected: [..1144] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1106] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1144] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1106]
not-detected: [..1582] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1107] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1582] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1107]
not-detected: [..1203] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1106] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1203] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1106]
not-detected: [..1828] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1108] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1828] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1108]
not-detected: [..1668] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1107] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1668] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1107]
not-detected: [..1903] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1108] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1903] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1108]
not-detected: [..1943] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1110] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1943] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1110]
not-detected: [..1979] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1110] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1979] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1110]
not-detected: [...215] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1111] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...215] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1111]
not-detected: [..1033] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1112] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1033] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1112]
not-detected: [...241] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1111] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...241] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1111]
not-detected: [..1517] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1113] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1517] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1113]
not-detected: [..1122] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1112] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1122] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1112]
not-detected: [..1581] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1113] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1581] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1113]
not-detected: [..1395] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1114] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1395] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1114]
not-detected: [..1454] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1114] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1454] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1114]
not-detected: [..1071] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1117] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1071] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1117]
not-detected: [..1126] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1117] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1126] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1117]
not-detected: [...288] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5214] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...288] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5214]
guessed: [...870] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1119] [Starcraft][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [...870] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1119]
not-detected: [...332] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5214] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...332] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5214]
guessed: [...935] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1119] [Starcraft][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [...935] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1119]
not-detected: [...805] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3168] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...805] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3168]
not-detected: [..1215] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1121] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1215] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1121]
not-detected: [...850] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3168] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...850] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3168]
not-detected: [..1283] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1121] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1283] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1121]
not-detected: [..1223] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1122] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1223] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1122]
not-detected: [..1275] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1122] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1275] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1122]
not-detected: [...265] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1123] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...265] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1123]
not-detected: [..1252] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1124] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1252] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1124]
not-detected: [...314] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1123] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...314] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1123]
not-detected: [..1308] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1124] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1308] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1124]
not-detected: [...338] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5221] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...338] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5221]
not-detected: [..1339] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1126] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1339] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1126]
not-detected: [..1165] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5222] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1165] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5222]
not-detected: [...364] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5221] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...364] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5221]
not-detected: [..1406] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1126] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1406] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1126]
not-detected: [..1242] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5222] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1242] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5222]
not-detected: [..1850] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5225] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1850] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5225]
not-detected: [..1911] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5225] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1911] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5225]
not-detected: [..1525] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1130] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1525] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1130]
not-detected: [..1476] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5226] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1476] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5226]
not-detected: [..1598] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1130] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1598] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1130]
not-detected: [..1573] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5226] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1573] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5226]
not-detected: [...271] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1131] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...271] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1131]
not-detected: [...106] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][33899] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...106] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][33899]
not-detected: [..1188] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1132] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1188] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1132]
not-detected: [...308] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1131] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...308] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1131]
not-detected: [...144] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][33899] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...144] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][33899]
not-detected: [..1268] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1132] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1268] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1132]
not-detected: [..1189] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][64623] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1189] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][64623]
not-detected: [..1267] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][64623] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1267] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][64623]
not-detected: [...993] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1137] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...993] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1137]
not-detected: [..1141] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1138] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1141] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1138]
not-detected: [..1054] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1137] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1054] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1137]
not-detected: [..1206] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1138] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1206] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1138]
not-detected: [...772] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1141] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...772] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1141]
not-detected: [...825] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1141] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...825] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1141]
not-detected: [..1326] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1145] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1326] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1145]
not-detected: [..1419] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1145] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1419] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1145]
not-detected: [..1501] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1147] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1501] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1147]
not-detected: [..1548] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1147] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1548] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1147]
not-detected: [..1173] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][50300] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1173] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][50300]
not-detected: [...725] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1148] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...725] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1148]
not-detected: [..1234] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][50300] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1234] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][50300]
not-detected: [..1747] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1149] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1747] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1149]
not-detected: [...780] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1148] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...780] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1148]
not-detected: [..1807] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1149] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1807] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1149]
not-detected: [...424] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1151] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...424] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1151]
not-detected: [..1800] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1152] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1800] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1152]
not-detected: [...442] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1151] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...442] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1151]
not-detected: [..1857] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1152] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1857] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1152]
not-detected: [...345] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1154] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...345] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1154]
not-detected: [...398] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1154] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...398] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1154]
not-detected: [...454] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][25734] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...454] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][25734]
not-detected: [..1686] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][25735] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1686] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][25735]
not-detected: [...494] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][25734] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...494] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][25734]
not-detected: [..1771] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][25735] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1771] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][25735]
not-detected: [..1673] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3211] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1673] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3211]
not-detected: [..1246] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1163] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1246] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1163]
not-detected: [..1754] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3211] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1754] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3211]
not-detected: [..1314] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1163] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1314] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1163]
not-detected: [...882] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1164] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...882] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1164]
not-detected: [...973] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1164] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...973] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1164]
not-detected: [...737] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1165] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...737] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1165]
not-detected: [...818] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1165] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...818] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1165]
not-detected: [...373] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1166] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...373] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1166]
not-detected: [...411] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1166] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...411] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1166]
not-detected: [...251] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][44176] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...251] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][44176]
not-detected: [...174] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][13456] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...174] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][13456]
not-detected: [...287] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][44176] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...287] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][44176]
not-detected: [...547] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1169] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...547] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1169]
not-detected: [...200] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][13456] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...200] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][13456]
not-detected: [...600] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1169] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...600] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1169]
not-detected: [..1946] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5269] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1946] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5269]
not-detected: [..1366] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3221] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1366] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3221]
not-detected: [..1976] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5269] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1976] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5269]
not-detected: [..1428] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3221] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1428] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3221]
not-detected: [..1020] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1174] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1020] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1174]
not-detected: [..1180] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1175] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1180] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1175]
not-detected: [..1085] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1174] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1085] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1174]
not-detected: [..1227] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1175] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1227] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1175]
not-detected: [...252] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1183] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...252] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1183]
not-detected: [...835] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5280] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...835] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5280]
not-detected: [...286] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1183] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...286] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1183]
not-detected: [...912] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5280] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...912] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5280]
not-detected: [...566] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1185] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...566] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1185]
not-detected: [...949] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1186] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...949] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1186]
not-detected: [...654] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1185] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...654] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1185]
not-detected: [..1006] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1186] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1006] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1186]
not-detected: [...127] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1187] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...127] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1187]
not-detected: [...165] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1187] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...165] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1187]
not-detected: [...952] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][64680] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...952] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][64680]
not-detected: [...874] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1192] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...874] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1192]
not-detected: [..1003] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][64680] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1003] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][64680]
not-detected: [...931] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1192] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...931] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1192]
not-detected: [..1782] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1198] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1782] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1198]
not-detected: [..1875] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1198] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1875] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1198]
not-detected: [...718] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1199] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...718] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1199]
not-detected: [...787] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1199] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...787] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1199]
not-detected: [...591] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1201] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...591] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1201]
not-detected: [..1220] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5298] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1220] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5298]
not-detected: [...664] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1201] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...664] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1201]
not-detected: [..1278] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5298] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1278] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5298]
not-detected: [..1181] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3260] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1181] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3260]
not-detected: [..1952] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3261] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1952] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3261]
not-detected: [..1637] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1213] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1637] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1213]
not-detected: [..1226] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3260] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1226] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3260]
not-detected: [..1970] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3261] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1970] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3261]
not-detected: [..1704] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1213] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1704] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1213]
not-detected: [...573] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1216] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...573] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1216]
not-detected: [..1067] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1217] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1067] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1217]
not-detected: [...647] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1216] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...647] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1216]
not-detected: [..1130] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1217] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1130] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1217]
not-detected: [...685] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1218] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...685] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1218]
not-detected: [...762] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1218] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...762] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1218]
not-detected: [..1948] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3268] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1948] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3268]
not-detected: [..1974] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3268] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1974] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3268]
not-detected: [..1433] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3269] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1433] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3269]
not-detected: [..1513] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3269] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1513] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3269]
not-detected: [...464] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9415] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...464] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9415]
not-detected: [...484] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9415] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...484] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9415]
guessed: [...538] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9418] [Git][Unknown][Collaborative][Safe]
+ RISK: Unidirectional Traffic
idle: [...538] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9418]
guessed: [...609] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9418] [Git][Unknown][Collaborative][Safe]
+ RISK: Unidirectional Traffic
idle: [...609] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9418]
not-detected: [....52] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1233] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....52] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1233]
not-detected: [..1804] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1234] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1804] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1234]
not-detected: [....76] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1233] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....76] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1233]
not-detected: [..1853] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1234] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1853] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1234]
not-detected: [..1325] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3283] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1325] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3283]
not-detected: [..1823] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1236] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1823] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1236]
not-detected: [..1420] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3283] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1420] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3283]
not-detected: [..1883] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1236] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1883] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1236]
not-detected: [..1806] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][50389] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1806] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][50389]
not-detected: [..1882] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][50389] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1882] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][50389]
not-detected: [...297] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1244] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...297] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1244]
not-detected: [...323] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1244] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...323] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1244]
not-detected: [...110] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1247] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...110] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1247]
not-detected: [...568] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1248] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...568] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1248]
not-detected: [...141] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1247] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...141] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1247]
not-detected: [...652] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1248] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...652] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1248]
not-detected: [..1191] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3300] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1191] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3300]
not-detected: [..1265] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3300] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1265] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3300]
not-detected: [...505] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3301] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...505] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3301]
not-detected: [...526] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3301] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...526] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3301]
not-detected: [..1698] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7402] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1698] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7402]
guessed: [.....3] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3306] [MySQL][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3306]
not-detected: [..1759] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7402] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1759] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7402]
not-detected: [...510] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1259] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...510] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1259]
guessed: [....27] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3306] [MySQL][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....27] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3306]
not-detected: [...561] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1259] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...561] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1259]
not-detected: [..1681] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5357] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1681] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5357]
not-detected: [..1756] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5357] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1756] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5357]
not-detected: [...697] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1271] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...697] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1271]
not-detected: [..1213] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1272] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1213] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1272]
not-detected: [...750] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1271] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...750] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1271]
not-detected: [..1285] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1272] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1285] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1272]
not-detected: [..1375] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3322] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1375] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3322]
not-detected: [..1444] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3322] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1444] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3322]
not-detected: [..1386] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3323] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1386] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3323]
not-detected: [..1630] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3324] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1630] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3324]
not-detected: [..1463] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3323] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1463] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3323]
not-detected: [..1711] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3324] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1711] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3324]
not-detected: [..1069] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3325] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1069] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3325]
not-detected: [...571] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1277] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...571] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1277]
not-detected: [..1128] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3325] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1128] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3325]
not-detected: [...649] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1277] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...649] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1277]
not-detected: [..1473] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][40193] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1473] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][40193]
not-detected: [..1576] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][40193] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1576] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][40193]
not-detected: [..1377] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3333] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1377] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3333]
not-detected: [..1452] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3333] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1452] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3333]
not-detected: [..1321] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1287] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1321] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1287]
not-detected: [..1424] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1287] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1424] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1287]
not-detected: [..1498] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7435] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1498] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7435]
not-detected: [..1551] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7435] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1551] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7435]
not-detected: [...797] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9485] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...797] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9485]
not-detected: [...858] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9485] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...858] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9485]
not-detected: [...137] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1296] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...137] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1296]
not-detected: [...155] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1296] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...155] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1296]
not-detected: [..1438] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7443] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1438] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.7443]
not-detected: [..1508] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7443] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1508] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.7443]
not-detected: [....98] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1300] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....98] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1300]
not-detected: [...632] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1301] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...632] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1301]
not-detected: [...152] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1300] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...152] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1300]
not-detected: [...705] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1301] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...705] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1301]
not-detected: [..1736] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3351] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1736] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3351]
not-detected: [..1818] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3351] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1818] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3351]
not-detected: [...171] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9500] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...171] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9500]
not-detected: [...738] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5405] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...738] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5405]
not-detected: [...620] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1309] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...620] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1309]
not-detected: [...203] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9500] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...203] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9500]
not-detected: [...943] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9502] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...943] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9502]
not-detected: [...817] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5405] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...817] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5405]
not-detected: [..1393] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1310] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1393] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1310]
not-detected: [...677] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1309] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...677] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1309]
not-detected: [..1456] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1310] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1456] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1310]
not-detected: [..1065] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9503] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1065] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.9503]
not-detected: [..1012] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9502] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1012] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9502]
not-detected: [...111] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1311] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...111] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1311]
not-detected: [..1132] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9503] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1132] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.9503]
not-detected: [...140] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1311] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...140] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1311]
not-detected: [....48] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5414] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....48] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5414]
not-detected: [...593] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3367] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...593] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3367]
not-detected: [....80] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5414] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....80] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5414]
not-detected: [...662] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3367] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...662] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3367]
not-detected: [...294] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3369] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...294] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3369]
not-detected: [..1345] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3370] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1345] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3370]
not-detected: [...543] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1322] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...543] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1322]
not-detected: [...326] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3369] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...326] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3369]
not-detected: [..1535] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3371] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1535] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3371]
not-detected: [..1400] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3370] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1400] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3370]
not-detected: [...604] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1322] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...604] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1322]
not-detected: [..1845] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3372] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1845] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.3372]
not-detected: [..1618] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3371] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1618] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3371]
not-detected: [...173] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][15660] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...173] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][15660]
not-detected: [..1916] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3372] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1916] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.3372]
not-detected: [...201] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][15660] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...201] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][15660]
not-detected: [...693] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][30000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...693] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][30000]
not-detected: [...372] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1328] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...372] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1328]
not-detected: [...754] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][30000] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...754] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][30000]
not-detected: [...412] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1328] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...412] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1328]
not-detected: [..1585] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1334] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1585] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.1334]
not-detected: [..1665] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1334] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [..1665] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.1334]
not-detected: [...257] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5431] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...257] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5431]
guessed: [..1146] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5432] [PostgreSQL][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1146] [ip4][..tcp] [.....172.16.0.8][36050] -> [...64.13.134.52][.5432]
not-detected: [...281] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5431] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [...281] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5431]
guessed: [..1201] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5432] [PostgreSQL][Unknown][Database][Acceptable]
+ RISK: Unidirectional Traffic
idle: [..1201] [ip4][..tcp] [.....172.16.0.8][36051] -> [...64.13.134.52][.5432]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/syslog.pcap.out b/test/results/flow-info/default/syslog.pcap.out
index 464e2bb89..c61911b3f 100644
--- a/test/results/flow-info/syslog.pcap.out
+++ b/test/results/flow-info/default/syslog.pcap.out
@@ -31,8 +31,10 @@
new: [.....7] [ip4][..udp] [..172.21.251.36][62679] -> [..172.19.196.11][..514]
detected: [.....7] [ip4][..udp] [..172.21.251.36][62679] -> [..172.19.196.11][..514] [Syslog][Unknown][System][Acceptable]
not-detected: [.....6] [ip4][...41] [...216.66.80.30] -> [..193.24.227.12] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][...41] [...216.66.80.30] -> [..193.24.227.12]
not-detected: [.....5] [ip4][...41] [..193.24.227.10] -> [..216.66.86.114] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [.....5] [ip4][...41] [..193.24.227.10] -> [..216.66.86.114]
new: [.....8] [ip4][..udp] [.192.168.72.140][62679] -> [192.168.178.148][..514]
detected: [.....8] [ip4][..udp] [.192.168.72.140][62679] -> [192.168.178.148][..514] [Syslog][Unknown][System][Acceptable]
diff --git a/test/results/flow-info/default/tailscale.pcap.out b/test/results/flow-info/default/tailscale.pcap.out
new file mode 100644
index 000000000..485236e68
--- /dev/null
+++ b/test/results/flow-info/default/tailscale.pcap.out
@@ -0,0 +1,19 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..udp] [...192.168.88.3][41641] -> [..18.196.71.179][41641]
+ detected: [.....1] [ip4][..udp] [...192.168.88.3][41641] -> [..18.196.71.179][41641] [Tailscale][AmazonAWS][VPN][Acceptable]
+ RISK: Unidirectional Traffic
+ analyse: [.....1] [ip4][..udp] [...192.168.88.3][41641] -> [..18.196.71.179][41641] [Tailscale][AmazonAWS][VPN][Acceptable]
+ min| max| avg| stddev| variance| entropy
+ [IAT.........: 0.000| 2.000| 0.610| 0.605| 366311.899| 4.200]
+ [PKTLEN......: 120.000| 156.000| 140.200| 15.400| 237.900| 5.000]
+ [BINS(c->s)..: 0,0,4,5,4,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+ [BINS(s->c)..: 0,0,6,3,10,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+ [DIRECTIONS..: 0,1,0,1,1,1,1,1,0,1,0,1,1,1,0,1,0,0,0,1,1,0,1,0,0,0,1,1,1,0,1,1]
+ [IATS(ms)....: 1831.6,1832.9,459.3,0.0,0.0,851.2,689.3,1999.7,305.0,1197.5,993.3,17.7,0.0,118.1,686.1,686.1,167.2,28.5,268.4,28.6,1001.5,1709.9,809.4,161.6,38.7,229.1,33.6,39.3,1000.9,1009.9,706.4]
+ [PKTLENS.....: 120,120,138,156,156,156,156,120,138,156,120,138,156,120,138,120,138,120,156,138,156,156,120,138,120,156,156,138,156,156,156,120]
+ [ENTROPIES...: 6.3,6.3,6.6,6.3,6.3,6.4,6.3,6.4,6.6,6.4,6.5,6.5,6.4,6.3,6.5,6.3,6.6,6.5,6.5,6.6,6.4,6.4,6.4,6.5,6.5,6.6,6.5,6.5,6.4,6.5,6.3,6.3]
+ idle: [.....1] [ip4][..udp] [...192.168.88.3][41641] -> [..18.196.71.179][41641] [Tailscale][AmazonAWS][VPN][Acceptable]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/targusdataspeed_false_positives.pcap.out b/test/results/flow-info/default/targusdataspeed_false_positives.pcap.out
index 083d4d310..510394e34 100644
--- a/test/results/flow-info/targusdataspeed_false_positives.pcap.out
+++ b/test/results/flow-info/default/targusdataspeed_false_positives.pcap.out
@@ -1,10 +1,10 @@
DAEMON-EVENT: init
new: [.....1] [ip4][..udp] [......10.0.2.15][23994] -> [..79.164.55.123][.5001]
detected: [.....1] [ip4][..udp] [......10.0.2.15][23994] -> [..79.164.55.123][.5001] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [.....2] [ip4][..udp] [......10.0.2.15][23994] -> [...89.64.45.227][.5201]
detected: [.....2] [ip4][..udp] [......10.0.2.15][23994] -> [...89.64.45.227][.5201] [BitTorrent][Unknown][Download][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....2] [ip4][..udp] [......10.0.2.15][23994] -> [...89.64.45.227][.5201]
idle: [.....1] [ip4][..udp] [......10.0.2.15][23994] -> [..79.164.55.123][.5001]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/default/tcp_scan.pcapng.out b/test/results/flow-info/default/tcp_scan.pcapng.out
new file mode 100644
index 000000000..9751e38c4
--- /dev/null
+++ b/test/results/flow-info/default/tcp_scan.pcapng.out
@@ -0,0 +1,32 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..tcp] [..192.168.1.178][56272] -> [....192.168.1.2][...80]
+ new: [.....2] [ip4][..tcp] [..192.168.1.178][56273] -> [....192.168.1.2][..443]
+ new: [.....3] [ip4][..tcp] [..192.168.1.178][56274] -> [....192.168.1.2][..445]
+ new: [.....4] [ip4][..tcp] [..192.168.1.178][43067] -> [....192.168.1.2][.3389]
+ new: [.....5] [ip4][..tcp] [..192.168.1.178][62971] -> [....192.168.1.2][.3390] [MIDSTREAM]
+ new: [.....6] [ip4][..tcp] [..192.168.1.178][57916] -> [....192.168.1.2][.3391] [MIDSTREAM]
+ new: [.....7] [ip4][..tcp] [..192.168.1.178][63243] -> [....192.168.1.2][.3392] [MIDSTREAM]
+ not-detected: [.....6] [ip4][..tcp] [..192.168.1.178][57916] -> [....192.168.1.2][.3391] [Unknown][Unknown][Unrated]
+ RISK: TCP Connection Issues
+ end: [.....6] [ip4][..tcp] [..192.168.1.178][57916] -> [....192.168.1.2][.3391]
+ not-detected: [.....5] [ip4][..tcp] [..192.168.1.178][62971] -> [....192.168.1.2][.3390] [Unknown][Unknown][Unrated]
+ RISK: TCP Connection Issues
+ end: [.....5] [ip4][..tcp] [..192.168.1.178][62971] -> [....192.168.1.2][.3390]
+ guessed: [.....1] [ip4][..tcp] [..192.168.1.178][56272] -> [....192.168.1.2][...80] [HTTP][Unknown][Web][Acceptable][]
+ RISK: TCP Connection Issues
+ end: [.....1] [ip4][..tcp] [..192.168.1.178][56272] -> [....192.168.1.2][...80]
+ not-detected: [.....7] [ip4][..tcp] [..192.168.1.178][63243] -> [....192.168.1.2][.3392] [Unknown][Unknown][Unrated]
+ RISK: TCP Connection Issues
+ end: [.....7] [ip4][..tcp] [..192.168.1.178][63243] -> [....192.168.1.2][.3392]
+ guessed: [.....4] [ip4][..tcp] [..192.168.1.178][43067] -> [....192.168.1.2][.3389] [RDP][Unknown][RemoteAccess][Acceptable]
+ RISK: Desktop/File Sharing, TCP Connection Issues
+ end: [.....4] [ip4][..tcp] [..192.168.1.178][43067] -> [....192.168.1.2][.3389]
+ guessed: [.....2] [ip4][..tcp] [..192.168.1.178][56273] -> [....192.168.1.2][..443] [TLS][Unknown][Web][Safe]
+ RISK: TCP Connection Issues
+ end: [.....2] [ip4][..tcp] [..192.168.1.178][56273] -> [....192.168.1.2][..443]
+ guessed: [.....3] [ip4][..tcp] [..192.168.1.178][56274] -> [....192.168.1.2][..445] [SMBv23][Unknown][System][Acceptable]
+ RISK: TCP Connection Issues
+ end: [.....3] [ip4][..tcp] [..192.168.1.178][56274] -> [....192.168.1.2][..445]
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/teams.pcap.out b/test/results/flow-info/default/teams.pcap.out
index 97e3986c5..38d1d16df 100644
--- a/test/results/flow-info/teams.pcap.out
+++ b/test/results/flow-info/default/teams.pcap.out
@@ -12,6 +12,7 @@
ERROR-EVENT: Unknown packet type [6/16]
new: [.....3] [ip4][..udp] [....192.168.1.6][60813] -> [....192.168.1.1][...53]
detected: [.....3] [ip4][..udp] [....192.168.1.6][60813] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][skypedataprdcolneu04.cloudapp.net]
+ RISK: Unidirectional Traffic
detection-update: [.....3] [ip4][..udp] [....192.168.1.6][60813] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][skypedataprdcolneu04.cloudapp.net]
new: [.....4] [ip4][..tcp] [....192.168.1.6][60532] -> [...52.114.77.33][..443]
new: [.....5] [ip4][..tcp] [....192.168.1.6][60533] -> [.52.113.194.132][..443]
@@ -74,6 +75,7 @@
ERROR-EVENT: Unknown packet type [10/16]
new: [....10] [ip4][..udp] [....192.168.1.6][64046] -> [....192.168.1.1][...53]
detected: [....10] [ip4][..udp] [....192.168.1.6][64046] -> [....192.168.1.1][...53] [DNS.ntop][Unknown][Network][Safe][b._dns-sd._udp.ntop.org]
+ RISK: Unidirectional Traffic
new: [....11] [ip4][..udp] [....192.168.1.6][17500] -> [255.255.255.255][17500]
detected: [....11] [ip4][..udp] [....192.168.1.6][17500] -> [255.255.255.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
new: [....12] [ip4][..udp] [....192.168.1.6][17500] -> [..192.168.1.255][17500]
@@ -81,20 +83,25 @@
ERROR-EVENT: Unknown packet type [11/16]
ERROR-EVENT: Unknown packet type [12/16]
detection-update: [....10] [ip4][..udp] [....192.168.1.6][64046] -> [....192.168.1.1][...53] [DNS.ntop][Unknown][Network][Safe][b._dns-sd._udp.ntop.org]
+ RISK: Error Code
new: [....13] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67]
detected: [....13] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable][]
new: [....14] [ip4][..tcp] [..93.62.150.157][..443] -> [....192.168.1.6][60512] [MIDSTREAM]
detected: [....14] [ip4][..tcp] [..93.62.150.157][..443] -> [....192.168.1.6][60512] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [13/16]
new: [....15] [ip4][..udp] [....192.168.1.6][56634] -> [....192.168.1.1][...53]
detected: [....15] [ip4][..udp] [....192.168.1.6][56634] -> [....192.168.1.1][...53] [DNS.Apple][Unknown][Network][Safe][captive.apple.com.edgekey.net]
+ RISK: Unidirectional Traffic
detection-update: [....15] [ip4][..udp] [....192.168.1.6][56634] -> [....192.168.1.1][...53] [DNS.Apple][Unknown][Network][Safe][captive.apple.com.edgekey.net]
ERROR-EVENT: Unknown packet type [14/16]
ERROR-EVENT: Unknown packet type [15/16]
new: [....16] [ip4][..udp] [....192.168.1.6][51033] -> [....192.168.1.1][...53]
- detected: [....16] [ip4][..udp] [....192.168.1.6][51033] -> [....192.168.1.1][...53] [DNS.Teams][Unknown][Network][Safe][eu-api.asm.skype.com]
+ detected: [....16] [ip4][..udp] [....192.168.1.6][51033] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][eu-api.asm.skype.com]
+ RISK: Unidirectional Traffic
new: [....17] [ip4][..udp] [....192.168.1.6][63106] -> [....192.168.1.1][...53]
detected: [....17] [ip4][..udp] [....192.168.1.6][63106] -> [....192.168.1.1][...53] [DNS.Teams][Unknown][Network][Safe][eu-prod.asyncgw.teams.microsoft.com]
+ RISK: Unidirectional Traffic
detection-update: [....17] [ip4][..udp] [....192.168.1.6][63106] -> [....192.168.1.1][...53] [DNS.Teams][Unknown][Network][Safe][eu-prod.asyncgw.teams.microsoft.com]
new: [....18] [ip4][..tcp] [....192.168.1.6][60538] -> [...52.114.75.70][..443]
detection-update: [....16] [ip4][..udp] [....192.168.1.6][51033] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable][eu-api.asm.skype.com]
@@ -109,6 +116,7 @@
detected: [....21] [ip4][..tcp] [....192.168.1.6][60541] -> [...52.114.75.69][..443] [TLS.Skype_Teams][Azure][VoIP][Acceptable][eu-api.asm.skype.com]
new: [....22] [ip4][..udp] [....192.168.1.6][49514] -> [....192.168.1.1][...53]
detected: [....22] [ip4][..udp] [....192.168.1.6][49514] -> [....192.168.1.1][...53] [DNS.Teams][Unknown][Network][Safe][config.teams.microsoft.com]
+ RISK: Unidirectional Traffic
detection-update: [....20] [ip4][..tcp] [....192.168.1.6][60540] -> [...52.114.75.70][..443] [TLS.Teams][Azure][Collaborative][Safe][eu-prod.asyncgw.teams.microsoft.com]
detection-update: [....21] [ip4][..tcp] [....192.168.1.6][60541] -> [...52.114.75.69][..443] [TLS.Skype_Teams][Azure][VoIP][Acceptable][eu-api.asm.skype.com]
detection-update: [....22] [ip4][..udp] [....192.168.1.6][49514] -> [....192.168.1.1][...53] [DNS.Teams][Unknown][Network][Safe][config.teams.microsoft.com]
@@ -117,6 +125,7 @@
detection-update: [....23] [ip4][..tcp] [....192.168.1.6][60542] -> [.52.113.194.132][..443] [TLS.Teams][Skype_Teams][Collaborative][Safe][config.teams.microsoft.com]
new: [....24] [ip4][..udp] [....192.168.1.6][65387] -> [....192.168.1.1][...53]
detected: [....24] [ip4][..udp] [....192.168.1.6][65387] -> [....192.168.1.1][...53] [DNS.Microsoft][Unknown][Network][Safe][northeuropecns.trafficmanager.net]
+ RISK: Unidirectional Traffic
new: [....25] [ip4][..tcp] [....192.168.1.6][60543] -> [...52.114.77.33][..443]
detection-update: [....24] [ip4][..udp] [....192.168.1.6][65387] -> [....192.168.1.1][...53] [DNS.Microsoft][Unknown][Network][Safe][northeuropecns.trafficmanager.net]
new: [....26] [ip4][..tcp] [....192.168.1.6][60544] -> [...52.114.76.48][..443]
@@ -129,10 +138,12 @@
ERROR-EVENT: Unknown packet type [16/16]
new: [....27] [ip4][..udp] [....192.168.1.6][57530] -> [....192.168.1.1][...53]
detected: [....27] [ip4][..udp] [....192.168.1.6][57530] -> [....192.168.1.1][...53] [DNS.Microsoft][Unknown][Network][Safe][presence.services.sfb.trafficmanager.net]
+ RISK: Unidirectional Traffic
detection-update: [....27] [ip4][..udp] [....192.168.1.6][57530] -> [....192.168.1.1][...53] [DNS.Microsoft][Unknown][Network][Safe][presence.services.sfb.trafficmanager.net]
new: [....28] [ip4][..tcp] [....192.168.1.6][60545] -> [...52.114.77.58][..443]
new: [....29] [ip4][..tcp] [.162.125.19.131][..443] -> [....192.168.1.6][60344] [MIDSTREAM]
detected: [....29] [ip4][..tcp] [.162.125.19.131][..443] -> [....192.168.1.6][60344] [TLS][Dropbox][Web][Safe]
+ RISK: Unidirectional Traffic
detected: [....28] [ip4][..tcp] [....192.168.1.6][60545] -> [...52.114.77.58][..443] [TLS.Teams][Azure][Collaborative][Safe][presence.teams.microsoft.com]
detection-update: [....28] [ip4][..tcp] [....192.168.1.6][60545] -> [...52.114.77.58][..443] [TLS.Teams][Azure][Collaborative][Safe][presence.teams.microsoft.com]
analyse: [....25] [ip4][..tcp] [....192.168.1.6][60543] -> [...52.114.77.33][..443]
@@ -164,6 +175,7 @@
[ENTROPIES...: 4.4,5.0,4.6,5.4,7.1,7.4,4.7,4.7,4.5,7.6,7.6,4.7,7.5,4.7,6.6,6.1,7.6,5.4,4.6,6.0,4.5,5.2,5.4,4.7,7.5,4.7,4.5,7.9,6.6,6.7,4.5,5.4]
new: [....31] [ip4][..udp] [....192.168.1.6][57504] -> [....192.168.1.1][...53]
detected: [....31] [ip4][..udp] [....192.168.1.6][57504] -> [....192.168.1.1][...53] [DNS.Teams][Unknown][Network][Safe][chatsvcagg.svcs.teams.office.com]
+ RISK: Unidirectional Traffic
detection-update: [....31] [ip4][..udp] [....192.168.1.6][57504] -> [....192.168.1.1][...53] [DNS.Teams][Unknown][Network][Safe][chatsvcagg.svcs.teams.office.com]
new: [....32] [ip4][..tcp] [....192.168.1.6][60547] -> [...52.114.88.59][..443]
detected: [....32] [ip4][..tcp] [....192.168.1.6][60547] -> [...52.114.88.59][..443] [TLS.Teams][Azure][Collaborative][Safe][chatsvcagg.teams.microsoft.com]
@@ -184,6 +196,7 @@
[ENTROPIES...: 4.3,5.1,4.7,5.5,7.4,7.3,4.8,4.8,7.5,4.7,7.6,7.4,4.8,6.3,6.2,7.5,5.6,4.9,6.0,4.9,5.4,5.5,4.8,7.4,4.9,5.1,7.8,7.0,5.0,6.8,4.7,7.8]
new: [....34] [ip4][..udp] [....192.168.1.6][59403] -> [....192.168.1.1][...53]
detected: [....34] [ip4][..udp] [....192.168.1.6][59403] -> [....192.168.1.1][...53] [DNS.Microsoft365][Unknown][Network][Acceptable][substrate.office.com]
+ RISK: Unidirectional Traffic
detection-update: [....34] [ip4][..udp] [....192.168.1.6][59403] -> [....192.168.1.1][...53] [DNS.Microsoft365][Unknown][Network][Acceptable][substrate.office.com]
new: [....35] [ip4][..tcp] [....192.168.1.6][60549] -> [...13.107.18.11][..443]
detected: [....35] [ip4][..tcp] [....192.168.1.6][60549] -> [...13.107.18.11][..443] [TLS.Microsoft365][Outlook][Collaborative][Acceptable][substrate.office.com]
@@ -212,24 +225,31 @@
detection-update: [....35] [ip4][..tcp] [....192.168.1.6][60549] -> [...13.107.18.11][..443] [TLS.Microsoft365][Outlook][Collaborative][Acceptable][substrate.office.com]
new: [....36] [ip4][..udp] [....192.168.1.6][61245] -> [....192.168.1.1][...53]
detected: [....36] [ip4][..udp] [....192.168.1.6][61245] -> [....192.168.1.1][...53] [DNS.Teams][Unknown][Network][Safe][euaz.tr.teams.microsoft.com]
+ RISK: Unidirectional Traffic
new: [....37] [ip4][..udp] [....192.168.1.6][53678] -> [....192.168.1.1][...53]
detected: [....37] [ip4][..udp] [....192.168.1.6][53678] -> [....192.168.1.1][...53] [DNS.Teams][Unknown][Network][Safe][trouter2-asse-a.trouter.teams.microsoft.com]
+ RISK: Unidirectional Traffic
new: [....38] [ip4][..udp] [....192.168.1.6][65230] -> [....192.168.1.1][...53]
detected: [....38] [ip4][..udp] [....192.168.1.6][65230] -> [....192.168.1.1][...53] [DNS.Teams][Unknown][Network][Safe][trouter2-asse-a.trouter.teams.microsoft.com]
+ RISK: Unidirectional Traffic
new: [....39] [ip4][..udp] [....192.168.1.6][50653] -> [....192.168.1.1][...53]
detected: [....39] [ip4][..udp] [....192.168.1.6][50653] -> [....192.168.1.1][...53] [DNS.Teams][Unknown][Network][Safe][api.flightproxy.teams.microsoft.com]
+ RISK: Unidirectional Traffic
detection-update: [....37] [ip4][..udp] [....192.168.1.6][53678] -> [....192.168.1.1][...53] [DNS.Teams][Unknown][Network][Safe][trouter2-asse-a.trouter.teams.microsoft.com]
detection-update: [....38] [ip4][..udp] [....192.168.1.6][65230] -> [....192.168.1.1][...53] [DNS.Teams][Unknown][Network][Safe][trouter2-asse-a.trouter.teams.microsoft.com]
new: [....40] [ip4][..tcp] [....192.168.1.6][60551] -> [...52.114.15.45][..443]
detection-update: [....39] [ip4][..udp] [....192.168.1.6][50653] -> [....192.168.1.1][...53] [DNS.Teams][Unknown][Network][Safe][api.flightproxy.teams.microsoft.com]
detection-update: [....36] [ip4][..udp] [....192.168.1.6][61245] -> [....192.168.1.1][...53] [DNS.Teams][Unknown][Network][Safe][euaz.tr.teams.microsoft.com]
+ RISK: Minor Issues
new: [....41] [ip4][..udp] [....192.168.1.6][58457] -> [....192.168.1.1][...53]
detected: [....41] [ip4][..udp] [....192.168.1.6][58457] -> [....192.168.1.1][...53] [DNS.Microsoft365][Unknown][Network][Acceptable][outlook.office.com]
+ RISK: Unidirectional Traffic
detection-update: [....41] [ip4][..udp] [....192.168.1.6][58457] -> [....192.168.1.1][...53] [DNS.Microsoft365][Unknown][Network][Acceptable][outlook.office.com]
new: [....42] [ip4][..tcp] [....192.168.1.6][60552] -> [...52.114.77.33][..443]
new: [....43] [ip4][..tcp] [....192.168.1.6][60554] -> [.52.113.194.132][..443]
new: [....44] [ip4][..udp] [....192.168.1.6][51309] -> [....192.168.1.1][...53]
detected: [....44] [ip4][..udp] [....192.168.1.6][51309] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][skypedataprdcolneu04.cloudapp.net]
+ RISK: Unidirectional Traffic
new: [....45] [ip4][..tcp] [....192.168.1.6][60555] -> [...52.114.77.33][..443]
new: [....46] [ip4][..tcp] [....192.168.1.6][60556] -> [.....40.126.9.7][..443]
detected: [....43] [ip4][..tcp] [....192.168.1.6][60554] -> [.52.113.194.132][..443] [TLS.Teams][Skype_Teams][Collaborative][Safe][config.teams.microsoft.com]
@@ -293,12 +313,13 @@
RISK: TLS (probably) Not Carrying HTTPS
new: [....52] [ip4][..udp] [....192.168.1.6][54069] -> [....192.168.1.1][...53]
detected: [....52] [ip4][..udp] [....192.168.1.6][54069] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][api.microsoftstream.com]
+ RISK: Unidirectional Traffic
detection-update: [....52] [ip4][..udp] [....192.168.1.6][54069] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][api.microsoftstream.com]
new: [....53] [ip4][..tcp] [....192.168.1.6][60562] -> [.104.40.187.151][..443]
- detected: [....53] [ip4][..tcp] [....192.168.1.6][60562] -> [.104.40.187.151][..443] [TLS][Azure][Web][Safe][api.microsoftstream.com]
+ detected: [....53] [ip4][..tcp] [....192.168.1.6][60562] -> [.104.40.187.151][..443] [TLS.Skype_Teams][Azure][VoIP][Acceptable][api.microsoftstream.com]
detection-update: [....51] [ip4][..tcp] [....192.168.1.6][60561] -> [...52.114.77.33][..443] [TLS.Microsoft][Azure][Cloud][Safe][mobile.pipe.aria.microsoft.com]
RISK: TLS (probably) Not Carrying HTTPS
- analyse: [....53] [ip4][..tcp] [....192.168.1.6][60562] -> [.104.40.187.151][..443] [TLS][Azure][Web][Safe]
+ analyse: [....53] [ip4][..tcp] [....192.168.1.6][60562] -> [.104.40.187.151][..443] [TLS.Skype_Teams][Azure][VoIP][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.126| 0.019| 0.032| 1006.354| 3.400]
[PKTLEN......: 52.000| 1492.000| 345.200| 499.900| 249913.200| 3.900]
@@ -310,6 +331,7 @@
[ENTROPIES...: 4.4,5.2,4.9,5.6,7.4,7.5,4.9,7.4,4.9,4.8,7.6,7.1,5.0,5.9,6.3,7.4,5.6,6.1,4.9,4.9,5.4,5.6,4.9,7.5,5.0,7.9,6.1,5.1,5.7,5.0,7.5,4.9]
new: [....54] [ip4][..udp] [....192.168.1.6][62735] -> [....192.168.1.1][...53]
detected: [....54] [ip4][..udp] [....192.168.1.6][62735] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][euno-1.api.microsoftstream.com]
+ RISK: Unidirectional Traffic
detection-update: [....54] [ip4][..udp] [....192.168.1.6][62735] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][euno-1.api.microsoftstream.com]
new: [....55] [ip4][..tcp] [....192.168.1.6][60563] -> [.52.169.186.119][..443]
analyse: [....51] [ip4][..tcp] [....192.168.1.6][60561] -> [...52.114.77.33][..443]
@@ -324,15 +346,17 @@
[ENTROPIES...: 4.4,5.3,4.9,6.0,6.0,5.1,7.3,7.3,5.0,7.7,5.0,6.0,5.6,5.0,7.9,7.9,7.9,5.2,7.9,7.9,7.9,7.9,5.1,7.9,7.9,7.9,7.9,5.2,7.9,5.2,5.2,5.2]
detection-update: [....51] [ip4][..tcp] [....192.168.1.6][60561] -> [...52.114.77.33][..443] [TLS.Microsoft][Azure][Cloud][Safe][mobile.pipe.aria.microsoft.com]
RISK: TLS (probably) Not Carrying HTTPS
- detected: [....55] [ip4][..tcp] [....192.168.1.6][60563] -> [.52.169.186.119][..443] [TLS][Azure][Web][Safe][euno-1.api.microsoftstream.com]
+ detected: [....55] [ip4][..tcp] [....192.168.1.6][60563] -> [.52.169.186.119][..443] [TLS.Skype_Teams][Azure][VoIP][Acceptable][euno-1.api.microsoftstream.com]
new: [....56] [ip4][..udp] [....192.168.1.6][63930] -> [....192.168.1.1][...53]
detected: [....56] [ip4][..udp] [....192.168.1.6][63930] -> [....192.168.1.1][...53] [DNS.Microsoft][Unknown][Network][Safe][dc.applicationinsights.microsoft.com]
+ RISK: Unidirectional Traffic
detection-update: [....56] [ip4][..udp] [....192.168.1.6][63930] -> [....192.168.1.1][...53] [DNS.Microsoft][Unknown][Network][Safe][dc.applicationinsights.microsoft.com]
new: [....57] [ip4][..tcp] [....192.168.1.6][60564] -> [...40.79.138.41][..443]
- detected: [....57] [ip4][..tcp] [....192.168.1.6][60564] -> [...40.79.138.41][..443] [TLS][Azure][Web][Safe][gate.hockeyapp.net]
- detection-update: [....57] [ip4][..tcp] [....192.168.1.6][60564] -> [...40.79.138.41][..443] [TLS][Azure][Web][Safe][gate.hockeyapp.net]
+ detected: [....57] [ip4][..tcp] [....192.168.1.6][60564] -> [...40.79.138.41][..443] [TLS.Skype_Teams][Azure][VoIP][Acceptable][gate.hockeyapp.net]
+ detection-update: [....57] [ip4][..tcp] [....192.168.1.6][60564] -> [...40.79.138.41][..443] [TLS.Skype_Teams][Azure][VoIP][Acceptable][gate.hockeyapp.net]
new: [....58] [ip4][..udp] [....192.168.1.6][62863] -> [....192.168.1.1][...53]
detected: [....58] [ip4][..udp] [....192.168.1.6][62863] -> [....192.168.1.1][...53] [DNS.Teams][Unknown][Network][Safe][emea.ng.msg.teams-msgapi.trafficmanager.net]
+ RISK: Unidirectional Traffic
detection-update: [....58] [ip4][..udp] [....192.168.1.6][62863] -> [....192.168.1.1][...53] [DNS.Teams][Unknown][Network][Safe][emea.ng.msg.teams-msgapi.trafficmanager.net]
new: [....59] [ip4][..tcp] [....192.168.1.6][60565] -> [...52.114.108.8][..443]
detected: [....59] [ip4][..tcp] [....192.168.1.6][60565] -> [...52.114.108.8][..443] [TLS.Teams][Azure][Collaborative][Safe][emea.ng.msg.teams.microsoft.com]
@@ -365,36 +389,43 @@
RISK: Known Proto on Non Std Port
new: [....62] [ip4][..udp] [....192.168.1.6][51681] -> [..52.114.77.136][.3478]
new: [....63] [ip4][..udp] [....192.168.1.6][50016] -> [.52.114.250.123][.3478]
- detected: [....63] [ip4][..udp] [....192.168.1.6][50016] -> [.52.114.250.123][.3478] [STUN.Teams][Azure][VoIP][Safe][]
+ detected: [....63] [ip4][..udp] [....192.168.1.6][50016] -> [.52.114.250.123][.3478] [STUN.Skype_TeamsCall][Azure][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....64] [ip4][..tcp] [....192.168.1.6][50018] -> [.52.114.250.123][..443]
new: [....65] [ip4][..udp] [....192.168.1.6][55765] -> [....192.168.1.1][...53]
detected: [....65] [ip4][..udp] [....192.168.1.6][55765] -> [....192.168.1.1][...53] [DNS.Azure][Unknown][Network][Acceptable][b-tr-teams-euno-05.northeurope.cloudapp.azure.com]
+ RISK: Unidirectional Traffic
detection-update: [....65] [ip4][..udp] [....192.168.1.6][55765] -> [....192.168.1.1][...53] [DNS.Azure][Unknown][Network][Acceptable][b-tr-teams-euno-05.northeurope.cloudapp.azure.com]
detected: [....64] [ip4][..tcp] [....192.168.1.6][50018] -> [.52.114.250.123][..443] [TLS.Teams][Azure][Collaborative][Safe][euaz.tr.teams.microsoft.com]
RISK: TLS (probably) Not Carrying HTTPS
new: [....66] [ip4][..udp] [....192.168.1.6][50036] -> [.52.114.250.123][.3478]
- detected: [....66] [ip4][..udp] [....192.168.1.6][50036] -> [.52.114.250.123][.3478] [STUN.Teams][Azure][VoIP][Safe][]
+ detected: [....66] [ip4][..udp] [....192.168.1.6][50036] -> [.52.114.250.123][.3478] [STUN.Skype_TeamsCall][Azure][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....67] [ip4][..tcp] [....192.168.1.6][50021] -> [.52.114.250.123][..443]
new: [....68] [ip4][..udp] [....192.168.1.6][50016] -> [.52.114.250.141][.3478]
- detected: [....68] [ip4][..udp] [....192.168.1.6][50016] -> [.52.114.250.141][.3478] [STUN.Teams][Azure][VoIP][Safe][]
+ detected: [....68] [ip4][..udp] [....192.168.1.6][50016] -> [.52.114.250.141][.3478] [STUN.Skype_TeamsCall][Azure][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
detection-update: [....64] [ip4][..tcp] [....192.168.1.6][50018] -> [.52.114.250.123][..443] [TLS.Teams][Azure][Collaborative][Safe][euaz.tr.teams.microsoft.com]
RISK: TLS (probably) Not Carrying HTTPS
new: [....69] [ip4][..udp] [....192.168.1.6][50017] -> [.52.114.250.141][.3478]
- detected: [....69] [ip4][..udp] [....192.168.1.6][50017] -> [.52.114.250.141][.3478] [STUN.Teams][Azure][VoIP][Safe][]
+ detected: [....69] [ip4][..udp] [....192.168.1.6][50017] -> [.52.114.250.141][.3478] [STUN.Skype_TeamsCall][Azure][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
detected: [....67] [ip4][..tcp] [....192.168.1.6][50021] -> [.52.114.250.123][..443] [TLS.Teams][Azure][Collaborative][Safe][euaz.tr.teams.microsoft.com]
RISK: TLS (probably) Not Carrying HTTPS
new: [....70] [ip4][..udp] [....192.168.1.6][50036] -> [.52.114.250.137][.3478]
- detected: [....70] [ip4][..udp] [....192.168.1.6][50036] -> [.52.114.250.137][.3478] [STUN.Teams][Azure][VoIP][Safe][]
+ detected: [....70] [ip4][..udp] [....192.168.1.6][50036] -> [.52.114.250.137][.3478] [STUN.Skype_TeamsCall][Azure][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....71] [ip4][..udp] [....192.168.1.6][50037] -> [.52.114.250.137][.3478]
- detected: [....71] [ip4][..udp] [....192.168.1.6][50037] -> [.52.114.250.137][.3478] [STUN.Teams][Azure][VoIP][Safe][]
+ detected: [....71] [ip4][..udp] [....192.168.1.6][50037] -> [.52.114.250.137][.3478] [STUN.Skype_TeamsCall][Azure][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
detection-update: [....67] [ip4][..tcp] [....192.168.1.6][50021] -> [.52.114.250.123][..443] [TLS.Teams][Azure][Collaborative][Safe][euaz.tr.teams.microsoft.com]
RISK: TLS (probably) Not Carrying HTTPS
new: [....72] [ip4][..tcp] [....192.168.1.6][50014] -> [.52.114.250.152][..443]
new: [....73] [ip4][..tcp] [....192.168.1.6][50036] -> [.52.114.250.153][..443]
- detected: [....72] [ip4][..tcp] [....192.168.1.6][50014] -> [.52.114.250.152][..443] [TLS][Azure][Web][Safe][52.114.250.152]
- RISK: TLS (probably) Not Carrying HTTPS
- detected: [....73] [ip4][..tcp] [....192.168.1.6][50036] -> [.52.114.250.153][..443] [TLS][Azure][Web][Safe][52.114.250.153]
- RISK: TLS (probably) Not Carrying HTTPS
+ detected: [....72] [ip4][..tcp] [....192.168.1.6][50014] -> [.52.114.250.152][..443] [TLS.Skype_Teams][Azure][VoIP][Acceptable][52.114.250.152]
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, TLS (probably) Not Carrying HTTPS
+ detected: [....73] [ip4][..tcp] [....192.168.1.6][50036] -> [.52.114.250.153][..443] [TLS.Skype_Teams][Azure][VoIP][Acceptable][52.114.250.153]
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, TLS (probably) Not Carrying HTTPS
detection-update: [....72] [ip4][..tcp] [....192.168.1.6][50014] -> [.52.114.250.152][..443] [TLS.Teams][Azure][Collaborative][Safe][52.114.250.152]
RISK: TLS Cert Mismatch, TLS (probably) Not Carrying HTTPS
detection-update: [....73] [ip4][..tcp] [....192.168.1.6][50036] -> [.52.114.250.153][..443] [TLS.Teams][Azure][Collaborative][Safe][52.114.250.153]
@@ -402,29 +433,30 @@
new: [....74] [ip4][..tcp] [....192.168.1.6][60567] -> [..52.114.77.136][..443]
new: [....75] [ip4][..udp] [....192.168.1.6][60837] -> [....192.168.1.1][...53]
detected: [....75] [ip4][..udp] [....192.168.1.6][60837] -> [....192.168.1.1][...53] [DNS.Teams][Unknown][Network][Safe][c-flightproxy-euno-01-teams.cloudapp.net]
+ RISK: Unidirectional Traffic
detection-update: [....75] [ip4][..udp] [....192.168.1.6][60837] -> [....192.168.1.1][...53] [DNS.Teams][Unknown][Network][Safe][c-flightproxy-euno-01-teams.cloudapp.net]
detected: [....74] [ip4][..tcp] [....192.168.1.6][60567] -> [..52.114.77.136][..443] [TLS.Teams][Azure][Collaborative][Safe][api.flightproxy.teams.microsoft.com]
RISK: TLS (probably) Not Carrying HTTPS
detection-update: [....74] [ip4][..tcp] [....192.168.1.6][60567] -> [..52.114.77.136][..443] [TLS.Teams][Azure][Collaborative][Safe][api.flightproxy.teams.microsoft.com]
RISK: TLS (probably) Not Carrying HTTPS
new: [....76] [ip4][..udp] [....192.168.1.6][50016] -> [....192.168.0.4][50005]
- detected: [....76] [ip4][..udp] [....192.168.1.6][50016] -> [....192.168.0.4][50005] [STUN.Teams][Unknown][VoIP][Safe][]
- RISK: Known Proto on Non Std Port
+ detected: [....76] [ip4][..udp] [....192.168.1.6][50016] -> [....192.168.0.4][50005] [STUN.Skype_TeamsCall][Unknown][VoIP][Acceptable][]
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....77] [ip4][..udp] [....192.168.1.6][50036] -> [....192.168.0.4][50020]
- detected: [....77] [ip4][..udp] [....192.168.1.6][50036] -> [....192.168.0.4][50020] [STUN.Teams][Unknown][VoIP][Safe][]
- RISK: Known Proto on Non Std Port
+ detected: [....77] [ip4][..udp] [....192.168.1.6][50036] -> [....192.168.0.4][50020] [STUN.Skype_TeamsCall][Unknown][VoIP][Acceptable][]
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....78] [ip4][..udp] [..93.71.110.205][16332] -> [....192.168.1.6][50016]
detected: [....78] [ip4][..udp] [..93.71.110.205][16332] -> [....192.168.1.6][50016] [STUN.Skype_TeamsCall][Unknown][VoIP][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....79] [ip4][..udp] [..93.71.110.205][16333] -> [....192.168.1.6][50036]
detected: [....79] [ip4][..udp] [..93.71.110.205][16333] -> [....192.168.1.6][50036] [STUN.Skype_TeamsCall][Unknown][VoIP][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....80] [ip4][..udp] [..52.114.252.21][.3480] -> [....192.168.1.6][50036]
detected: [....80] [ip4][..udp] [..52.114.252.21][.3480] -> [....192.168.1.6][50036] [STUN.Skype_TeamsCall][Azure][VoIP][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....81] [ip4][..udp] [...52.114.252.8][.3479] -> [....192.168.1.6][50016]
detected: [....81] [ip4][..udp] [...52.114.252.8][.3479] -> [....192.168.1.6][50016] [STUN.Skype_TeamsCall][Azure][VoIP][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
analyse: [....64] [ip4][..tcp] [....192.168.1.6][50018] -> [.52.114.250.123][..443] [TLS.Teams][Azure][Collaborative][Safe]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 1.567| 0.072| 0.275| 75449.426| 1.900]
@@ -436,10 +468,11 @@
[PKTLENS.....: 64,52,40,227,1492,52,1492,588,52,52,1492,588,52,40,588,166,40,40,40,147,46,85,46,91,40,141,224,40,71,40,46,46]
[ENTROPIES...: 4.4,4.9,4.5,5.4,7.5,4.6,7.4,6.2,4.7,4.7,7.7,7.0,4.7,4.5,7.6,6.6,4.4,4.5,4.5,6.4,4.5,5.8,4.6,5.4,4.6,6.4,6.9,4.5,5.4,4.4,4.6,4.6]
new: [....82] [ip4][..tcp] [....192.168.1.6][60568] -> [...40.79.138.41][..443]
- detected: [....82] [ip4][..tcp] [....192.168.1.6][60568] -> [...40.79.138.41][..443] [TLS][Azure][Web][Safe][gate.hockeyapp.net]
- detection-update: [....82] [ip4][..tcp] [....192.168.1.6][60568] -> [...40.79.138.41][..443] [TLS][Azure][Web][Safe][gate.hockeyapp.net]
+ detected: [....82] [ip4][..tcp] [....192.168.1.6][60568] -> [...40.79.138.41][..443] [TLS.Skype_Teams][Azure][VoIP][Acceptable][gate.hockeyapp.net]
+ detection-update: [....82] [ip4][..tcp] [....192.168.1.6][60568] -> [...40.79.138.41][..443] [TLS.Skype_Teams][Azure][VoIP][Acceptable][gate.hockeyapp.net]
new: [....83] [ip4][.icmp] [..93.71.110.205] -> [....192.168.1.6]
detected: [....83] [ip4][.icmp] [..93.71.110.205] -> [....192.168.1.6] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
analyse: [....78] [ip4][..udp] [..93.71.110.205][16332] -> [....192.168.1.6][50016] [STUN.Skype_TeamsCall][Unknown][VoIP][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 1.168| 0.160| 0.366| 133702.353| 2.700]
@@ -456,6 +489,7 @@
end: [....67] [ip4][..tcp] [....192.168.1.6][50021] -> [.52.114.250.123][..443] [TLS.Teams][Azure][Collaborative][Safe]
RISK: TLS (probably) Not Carrying HTTPS
idle: [....83] [ip4][.icmp] [..93.71.110.205] -> [....192.168.1.6] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
end: [....73] [ip4][..tcp] [....192.168.1.6][50036] -> [.52.114.250.153][..443]
idle: [.....5] [ip4][..tcp] [....192.168.1.6][60533] -> [.52.113.194.132][..443] [TLS.Teams][Skype_Teams][Collaborative][Safe]
idle: [.....8] [ip4][..tcp] [....192.168.1.6][60536] -> [.52.113.194.132][..443]
@@ -463,15 +497,16 @@
idle: [....43] [ip4][..tcp] [....192.168.1.6][60554] -> [.52.113.194.132][..443] [TLS.Teams][Skype_Teams][Collaborative][Safe]
RISK: TLS (probably) Not Carrying HTTPS
idle: [....47] [ip4][..tcp] [....192.168.1.6][60557] -> [.52.113.194.132][..443]
- idle: [....76] [ip4][..udp] [....192.168.1.6][50016] -> [....192.168.0.4][50005] [STUN.Teams][Unknown][VoIP][Safe]
- RISK: Known Proto on Non Std Port
- idle: [....55] [ip4][..tcp] [....192.168.1.6][60563] -> [.52.169.186.119][..443] [TLS][Azure][Web][Safe]
+ idle: [....76] [ip4][..udp] [....192.168.1.6][50016] -> [....192.168.0.4][50005] [STUN.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
+ idle: [....55] [ip4][..tcp] [....192.168.1.6][60563] -> [.52.169.186.119][..443] [TLS.Skype_Teams][Azure][VoIP][Acceptable]
idle: [....17] [ip4][..udp] [....192.168.1.6][63106] -> [....192.168.1.1][...53] [DNS.Teams][Unknown][Network][Safe]
- idle: [....77] [ip4][..udp] [....192.168.1.6][50036] -> [....192.168.0.4][50020] [STUN.Teams][Unknown][VoIP][Safe]
- RISK: Known Proto on Non Std Port
+ idle: [....77] [ip4][..udp] [....192.168.1.6][50036] -> [....192.168.0.4][50020] [STUN.Skype_TeamsCall][Unknown][VoIP][Acceptable]
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....38] [ip4][..udp] [....192.168.1.6][65230] -> [....192.168.1.1][...53] [DNS.Teams][Unknown][Network][Safe]
idle: [....13] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable]
idle: [....36] [ip4][..udp] [....192.168.1.6][61245] -> [....192.168.1.1][...53] [DNS.Teams][Unknown][Network][Safe]
+ RISK: Minor Issues
idle: [....16] [ip4][..udp] [....192.168.1.6][51033] -> [....192.168.1.1][...53] [DNS.Skype_Teams][Unknown][Network][Acceptable]
end: [.....4] [ip4][..tcp] [....192.168.1.6][60532] -> [...52.114.77.33][..443] [TLS.Microsoft][Azure][Cloud][Safe]
RISK: TLS (probably) Not Carrying HTTPS
@@ -502,6 +537,7 @@
idle: [.....1] [ip4][..udp] [....192.168.0.1][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable]
idle: [....11] [ip4][..udp] [....192.168.1.6][17500] -> [255.255.255.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
guessed: [.....2] [ip4][..tcp] [....192.168.1.6][58533] -> [.149.154.167.91][..443] [TLS][Telegram][Web][Safe]
+ RISK: Unidirectional Traffic
end: [.....2] [ip4][..tcp] [....192.168.1.6][58533] -> [.149.154.167.91][..443]
idle: [....34] [ip4][..udp] [....192.168.1.6][59403] -> [....192.168.1.1][...53] [DNS.Microsoft365][Unknown][Network][Acceptable]
idle: [....35] [ip4][..tcp] [....192.168.1.6][60549] -> [...13.107.18.11][..443] [TLS.Microsoft365][Outlook][Collaborative][Acceptable]
@@ -512,45 +548,52 @@
idle: [....61] [ip4][..tcp] [....192.168.1.6][60566] -> [.167.99.215.164][.4434] [TLS.ntop][Unknown][Network][Safe]
RISK: Known Proto on Non Std Port
idle: [....31] [ip4][..udp] [....192.168.1.6][57504] -> [....192.168.1.1][...53] [DNS.Teams][Unknown][Network][Safe]
- guessed: [....62] [ip4][..udp] [....192.168.1.6][51681] -> [..52.114.77.136][.3478] [STUN][Azure][Network][Acceptable][]
+ guessed: [....62] [ip4][..udp] [....192.168.1.6][51681] -> [..52.114.77.136][.3478] [Skype_Teams][Azure][VoIP][Acceptable]
idle: [....62] [ip4][..udp] [....192.168.1.6][51681] -> [..52.114.77.136][.3478]
idle: [....27] [ip4][..udp] [....192.168.1.6][57530] -> [....192.168.1.1][...53] [DNS.Microsoft][Unknown][Network][Safe]
not-detected: [....60] [ip4][..tcp] [..151.11.50.139][.2222] -> [....192.168.1.6][54750] [Unknown][Unknown][Unrated]
idle: [....60] [ip4][..tcp] [..151.11.50.139][.2222] -> [....192.168.1.6][54750]
idle: [....22] [ip4][..udp] [....192.168.1.6][49514] -> [....192.168.1.1][...53] [DNS.Teams][Unknown][Network][Safe]
idle: [....78] [ip4][..udp] [..93.71.110.205][16332] -> [....192.168.1.6][50016] [STUN.Skype_TeamsCall][Unknown][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....79] [ip4][..udp] [..93.71.110.205][16333] -> [....192.168.1.6][50036] [STUN.Skype_TeamsCall][Unknown][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....37] [ip4][..udp] [....192.168.1.6][53678] -> [....192.168.1.1][...53] [DNS.Teams][Unknown][Network][Safe]
idle: [....56] [ip4][..udp] [....192.168.1.6][63930] -> [....192.168.1.1][...53] [DNS.Microsoft][Unknown][Network][Safe]
idle: [....65] [ip4][..udp] [....192.168.1.6][55765] -> [....192.168.1.1][...53] [DNS.Azure][Unknown][Network][Acceptable]
idle: [....49] [ip4][..udp] [..192.168.1.112][57621] -> [..192.168.1.255][57621] [Spotify][Unknown][Music][Fun]
idle: [....29] [ip4][..tcp] [.162.125.19.131][..443] -> [....192.168.1.6][60344]
idle: [....10] [ip4][..udp] [....192.168.1.6][64046] -> [....192.168.1.1][...53] [DNS.ntop][Unknown][Network][Safe]
- idle: [....68] [ip4][..udp] [....192.168.1.6][50016] -> [.52.114.250.141][.3478] [STUN.Teams][Azure][VoIP][Safe]
- idle: [....63] [ip4][..udp] [....192.168.1.6][50016] -> [.52.114.250.123][.3478] [STUN.Teams][Azure][VoIP][Safe]
+ RISK: Error Code
+ idle: [....68] [ip4][..udp] [....192.168.1.6][50016] -> [.52.114.250.141][.3478] [STUN.Skype_TeamsCall][Azure][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....63] [ip4][..udp] [....192.168.1.6][50016] -> [.52.114.250.123][.3478] [STUN.Skype_TeamsCall][Azure][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....81] [ip4][..udp] [...52.114.252.8][.3479] -> [....192.168.1.6][50016] [STUN.Skype_TeamsCall][Azure][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
- idle: [....69] [ip4][..udp] [....192.168.1.6][50017] -> [.52.114.250.141][.3478] [STUN.Teams][Azure][VoIP][Safe]
- idle: [....70] [ip4][..udp] [....192.168.1.6][50036] -> [.52.114.250.137][.3478] [STUN.Teams][Azure][VoIP][Safe]
- idle: [....66] [ip4][..udp] [....192.168.1.6][50036] -> [.52.114.250.123][.3478] [STUN.Teams][Azure][VoIP][Safe]
- idle: [....71] [ip4][..udp] [....192.168.1.6][50037] -> [.52.114.250.137][.3478] [STUN.Teams][Azure][VoIP][Safe]
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
+ idle: [....69] [ip4][..udp] [....192.168.1.6][50017] -> [.52.114.250.141][.3478] [STUN.Skype_TeamsCall][Azure][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....70] [ip4][..udp] [....192.168.1.6][50036] -> [.52.114.250.137][.3478] [STUN.Skype_TeamsCall][Azure][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....66] [ip4][..udp] [....192.168.1.6][50036] -> [.52.114.250.123][.3478] [STUN.Skype_TeamsCall][Azure][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....71] [ip4][..udp] [....192.168.1.6][50037] -> [.52.114.250.137][.3478] [STUN.Skype_TeamsCall][Azure][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....80] [ip4][..udp] [..52.114.252.21][.3480] -> [....192.168.1.6][50036] [STUN.Skype_TeamsCall][Azure][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....52] [ip4][..udp] [....192.168.1.6][54069] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
end: [.....6] [ip4][..tcp] [....192.168.1.6][60534] -> [.....40.126.9.5][..443] [TLS.Microsoft365][Azure][Collaborative][Acceptable]
end: [....46] [ip4][..tcp] [....192.168.1.6][60556] -> [.....40.126.9.7][..443] [TLS.Microsoft365][Azure][Collaborative][Acceptable]
end: [....50] [ip4][..tcp] [....192.168.1.6][60560] -> [....40.126.9.67][..443]
end: [....14] [ip4][..tcp] [..93.62.150.157][..443] -> [....192.168.1.6][60512]
idle: [....41] [ip4][..udp] [....192.168.1.6][58457] -> [....192.168.1.1][...53] [DNS.Microsoft365][Unknown][Network][Acceptable]
- idle: [....57] [ip4][..tcp] [....192.168.1.6][60564] -> [...40.79.138.41][..443] [TLS][Azure][Web][Safe]
- idle: [....82] [ip4][..tcp] [....192.168.1.6][60568] -> [...40.79.138.41][..443] [TLS][Azure][Web][Safe]
+ idle: [....57] [ip4][..tcp] [....192.168.1.6][60564] -> [...40.79.138.41][..443] [TLS.Skype_Teams][Azure][VoIP][Acceptable]
+ idle: [....82] [ip4][..tcp] [....192.168.1.6][60568] -> [...40.79.138.41][..443] [TLS.Skype_Teams][Azure][VoIP][Acceptable]
idle: [....54] [ip4][..udp] [....192.168.1.6][62735] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [....15] [ip4][..udp] [....192.168.1.6][56634] -> [....192.168.1.1][...53] [DNS.Apple][Unknown][Network][Safe]
idle: [.....3] [ip4][..udp] [....192.168.1.6][60813] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [....58] [ip4][..udp] [....192.168.1.6][62863] -> [....192.168.1.1][...53] [DNS.Teams][Unknown][Network][Safe]
idle: [....75] [ip4][..udp] [....192.168.1.6][60837] -> [....192.168.1.1][...53] [DNS.Teams][Unknown][Network][Safe]
- idle: [....53] [ip4][..tcp] [....192.168.1.6][60562] -> [.104.40.187.151][..443] [TLS][Azure][Web][Safe]
+ idle: [....53] [ip4][..tcp] [....192.168.1.6][60562] -> [.104.40.187.151][..443] [TLS.Skype_Teams][Azure][VoIP][Acceptable]
idle: [....39] [ip4][..udp] [....192.168.1.6][50653] -> [....192.168.1.1][...53] [DNS.Teams][Unknown][Network][Safe]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/teamspeak3.pcap.out b/test/results/flow-info/default/teamspeak3.pcap.out
index fce6c16c2..b6b750654 100644
--- a/test/results/flow-info/teamspeak3.pcap.out
+++ b/test/results/flow-info/default/teamspeak3.pcap.out
@@ -3,11 +3,13 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [.......10.0.0.1][53187] -> [.......10.0.0.2][.9987]
detected: [.....1] [ip4][..udp] [.......10.0.0.1][53187] -> [.......10.0.0.2][.9987] [TeamSpeak][Unknown][VoIP][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 13 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....2] [ip4][..udp] [...193.31.25.70][.2011] -> [...51.68.181.92][.2010]
detected: [.....2] [ip4][..udp] [...193.31.25.70][.2011] -> [...51.68.181.92][.2010] [TeamSpeak][Unknown][VoIP][Fun]
idle: [.....1] [ip4][..udp] [.......10.0.0.1][53187] -> [.......10.0.0.2][.9987] [TeamSpeak][Unknown][VoIP][Fun]
+ RISK: Unidirectional Traffic
update: [.....2] [ip4][..udp] [...193.31.25.70][.2011] -> [...51.68.181.92][.2010] [TeamSpeak][Unknown][VoIP][Fun]
DAEMON-EVENT: [Processed: 21 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 2|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 1]
diff --git a/test/results/flow-info/teamviewer.pcap.out b/test/results/flow-info/default/teamviewer.pcap.out
index 064ea895e..09930c1c7 100644
--- a/test/results/flow-info/teamviewer.pcap.out
+++ b/test/results/flow-info/default/teamviewer.pcap.out
@@ -26,7 +26,7 @@
[ENTROPIES...: 2.7,2.7,0.8,0.4,3.9,2.8,3.1,3.0,3.3,4.1,4.0,4.0,3.9,3.1,3.2,0.4,0.4,0.4,0.4,0.4,0.4,0.4,0.4,0.4,0.4,4.1,3.9,5.5,4.0,3.9,4.2,4.7]
update: [.....2] [ip4][..udp] [......10.0.2.15][34417] -> [..93.47.224.241][36037] [TeamViewer][Unknown][RemoteAccess][Acceptable]
RISK: Known Proto on Non Std Port, Desktop/File Sharing
- DAEMON-EVENT: [Processed: 1282 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Processed: 336 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 2|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 1]
update: [.....2] [ip4][..udp] [......10.0.2.15][34417] -> [..93.47.224.241][36037] [TeamViewer][Unknown][RemoteAccess][Acceptable]
RISK: Known Proto on Non Std Port, Desktop/File Sharing
diff --git a/test/results/flow-info/telegram.pcap.out b/test/results/flow-info/default/telegram.pcap.out
index 65d660683..17aa1429c 100644
--- a/test/results/flow-info/telegram.pcap.out
+++ b/test/results/flow-info/default/telegram.pcap.out
@@ -15,8 +15,10 @@
detected: [.....6] [ip6][..udp] [................fe80::4ba:91a:7817:e318][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable][_dacp._tcp.local]
new: [.....7] [ip4][..udp] [...192.168.1.77][.5353] -> [...192.168.1.75][.5353]
detected: [.....7] [ip4][..udp] [...192.168.1.77][.5353] -> [...192.168.1.75][.5353] [MDNS][Unknown][Network][Acceptable][_companion-link._tcp.local]
+ RISK: Unidirectional Traffic
new: [.....8] [ip4][..udp] [...192.168.1.77][61631] -> [....192.168.1.1][...53]
detected: [.....8] [ip4][..udp] [...192.168.1.77][61631] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][e7047.e12.akamaiedge.net]
+ RISK: Unidirectional Traffic
detection-update: [.....8] [ip4][..udp] [...192.168.1.77][61631] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][e7047.e12.akamaiedge.net]
new: [.....9] [ip4][..udp] [...192.168.1.77][17500] -> [255.255.255.255][17500]
detected: [.....9] [ip4][..udp] [...192.168.1.77][17500] -> [255.255.255.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
@@ -27,6 +29,7 @@
detected: [....11] [ip6][..udp] [..............fe80::18a0:a412:8935:c01b][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable][_homekit._tcp.local]
new: [....12] [ip4][..udp] [...192.168.1.77][.5353] -> [...192.168.1.53][.5353]
detected: [....12] [ip4][..udp] [...192.168.1.77][.5353] -> [...192.168.1.53][.5353] [MDNS][Unknown][Network][Acceptable][_companion-link._tcp.local]
+ RISK: Unidirectional Traffic
analyse: [.....5] [ip4][..udp] [...192.168.1.75][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 1.089| 0.260| 0.238| 56779.682| 4.400]
@@ -51,6 +54,7 @@
detection-update: [....11] [ip6][..udp] [..............fe80::18a0:a412:8935:c01b][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable][_sleep-proxy._udp.local]
new: [....13] [ip4][..udp] [...192.168.1.77][52118] -> [....192.168.1.1][...53]
detected: [....13] [ip4][..udp] [...192.168.1.77][52118] -> [....192.168.1.1][...53] [DNS.Microsoft][Unknown][Network][Safe][in.appcenter.ms]
+ RISK: Unidirectional Traffic
detection-update: [....13] [ip4][..udp] [...192.168.1.77][52118] -> [....192.168.1.1][...53] [DNS.Microsoft][Unknown][Network][Safe][in.appcenter.ms]
new: [....14] [ip4][..udp] [...192.168.1.53][57621] -> [..192.168.1.255][57621]
detected: [....14] [ip4][..udp] [...192.168.1.53][57621] -> [..192.168.1.255][57621] [Spotify][Unknown][Music][Fun]
@@ -58,6 +62,7 @@
detected: [....15] [ip4][..udp] [...192.168.1.75][57916] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
new: [....16] [ip4][..udp] [...192.168.1.77][61120] -> [....192.168.1.1][...53]
detected: [....16] [ip4][..udp] [...192.168.1.77][61120] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][e4518.dscx.akamaiedge.net]
+ RISK: Unidirectional Traffic
detection-update: [....16] [ip4][..udp] [...192.168.1.77][61120] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][e4518.dscx.akamaiedge.net]
new: [....17] [ip4][..udp] [...192.168.1.52][.5353] -> [....224.0.0.251][.5353]
detected: [....17] [ip4][..udp] [...192.168.1.52][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable][_raop._tcp.local]
@@ -65,20 +70,26 @@
detected: [....18] [ip6][..udp] [...............fe80::4dc:edec:5b0c:a661][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable][_raop._tcp.local]
new: [....19] [ip4][..udp] [...192.168.1.77][23174] -> [.....91.108.8.7][..521]
detected: [....19] [ip4][..udp] [...192.168.1.77][23174] -> [.....91.108.8.7][..521] [Telegram][Telegram][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....20] [ip4][..udp] [...192.168.1.77][23174] -> [....91.108.12.5][..523]
detected: [....20] [ip4][..udp] [...192.168.1.77][23174] -> [....91.108.12.5][..523] [Telegram][Telegram][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....21] [ip4][..udp] [...192.168.1.77][23174] -> [....91.108.16.1][..527]
detected: [....21] [ip4][..udp] [...192.168.1.77][23174] -> [....91.108.16.1][..527] [Telegram][Telegram][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....22] [ip4][..udp] [...192.168.1.77][23174] -> [....91.108.12.1][..536]
detected: [....22] [ip4][..udp] [...192.168.1.77][23174] -> [....91.108.12.1][..536] [Telegram][Telegram][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....23] [ip4][..udp] [...192.168.1.77][23174] -> [.....91.108.8.8][..538]
detected: [....23] [ip4][..udp] [...192.168.1.77][23174] -> [.....91.108.8.8][..538] [Telegram][Telegram][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....24] [ip4][..udp] [...192.168.1.77][23174] -> [....91.108.16.4][..538]
detected: [....24] [ip4][..udp] [...192.168.1.77][23174] -> [....91.108.16.4][..538] [Telegram][Telegram][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....25] [ip4][..udp] [...192.168.1.77][23174] -> [...192.168.1.52][31480]
new: [....26] [ip4][..udp] [...192.168.1.77][23174] -> [..87.11.205.195][60723]
detected: [....26] [ip4][..udp] [...192.168.1.77][23174] -> [..87.11.205.195][60723] [OpenVPN][Unknown][VPN][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
analyse: [....19] [ip4][..udp] [...192.168.1.77][23174] -> [.....91.108.8.7][..521] [Telegram][Telegram][Chat][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.001| 0.501| 0.118| 0.112| 12556.351| 4.400]
@@ -91,7 +102,9 @@
[ENTROPIES...: 4.9,5.1,6.5,4.9,5.1,6.6,6.5,4.6,6.6,5.1,4.9,5.1,7.1,6.4,7.0,6.5,7.0,7.0,6.5,6.4,7.0,7.1,7.0,4.9,5.1,6.9,6.8,6.9,7.0,7.0,6.4,7.0]
new: [....27] [ip4][..udp] [...192.168.1.77][47127] -> [....192.168.1.1][...53]
detected: [....27] [ip4][..udp] [...192.168.1.77][47127] -> [....192.168.1.1][...53] [DNS.GoogleServices][Unknown][Network][Acceptable][www.googletagservices.com]
+ RISK: Unidirectional Traffic
detection-update: [....27] [ip4][..udp] [...192.168.1.77][47127] -> [....192.168.1.1][...53] [DNS.GoogleServices][Unknown][Network][Acceptable][www.googletagservices.com]
+ RISK: Minor Issues
analyse: [....25] [ip4][..udp] [...192.168.1.77][23174] -> [...192.168.1.52][31480]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.042| 1.999| 0.261| 0.473| 223426.380| 3.600]
@@ -102,7 +115,6 @@
[IATS(ms)....: 176.6,505.7,492.8,1175.3,327.6,331.9,1681.3,64.2,63.5,64.3,42.3,63.9,1998.8,63.8,58.3,64.1,69.6,64.4,57.8,43.1,58.1,62.2,58.1,63.8,58.2,64.2,58.2,62.0,69.6,66.6,57.7]
[PKTLENS.....: 108,108,108,76,92,76,92,220,252,268,252,252,236,204,220,220,220,204,188,220,204,204,204,220,204,204,204,204,220,204,220,220]
[ENTROPIES...: 6.4,6.1,6.3,5.8,6.0,5.8,6.0,6.9,7.1,7.2,7.1,7.1,7.1,7.0,7.0,7.1,7.0,6.9,6.8,7.0,7.0,7.0,6.9,6.9,6.9,6.9,6.9,6.9,7.0,6.9,7.0,7.1]
- not-detected: [....25] [ip4][..udp] [...192.168.1.77][23174] -> [...192.168.1.52][31480] [Unknown][Unknown][Unrated]
new: [....28] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67]
detected: [....28] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable][]
new: [....29] [ip4][..udp] [...192.168.1.43][..138] -> [..192.168.1.255][..138]
@@ -112,32 +124,45 @@
detected: [....30] [ip4][..udp] [...192.168.1.77][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][workgroup]
new: [....31] [ip4][..udp] [...192.168.1.77][49764] -> [....192.168.1.1][...53]
detected: [....31] [ip4][..udp] [...192.168.1.77][49764] -> [....192.168.1.1][...53] [DNS.ntop][Unknown][Network][Safe][dati.ntop.org]
+ RISK: Unidirectional Traffic
detection-update: [....31] [ip4][..udp] [...192.168.1.77][49764] -> [....192.168.1.1][...53] [DNS.ntop][Unknown][Network][Safe][dati.ntop.org]
new: [....32] [ip4][..udp] [...192.168.1.77][.5812] -> [....192.168.1.1][...53]
detected: [....32] [ip4][..udp] [...192.168.1.77][.5812] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][pixel.wp.com]
+ RISK: Unidirectional Traffic
detection-update: [....32] [ip4][..udp] [...192.168.1.77][.5812] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][pixel.wp.com]
+ RISK: Minor Issues
new: [....33] [ip4][..udp] [...192.168.1.77][54595] -> [....192.168.1.1][...53]
detected: [....33] [ip4][..udp] [...192.168.1.77][54595] -> [....192.168.1.1][...53] [DNS.ntop][Unknown][Network][Safe][b._dns-sd._udp.ntop.org]
+ RISK: Unidirectional Traffic
detection-update: [.....3] [ip4][..udp] [...192.168.1.53][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable][_googlecast._tcp.local]
new: [....34] [ip4][..udp] [...192.168.1.77][61974] -> [..216.58.205.68][..443]
detected: [....34] [ip4][..udp] [...192.168.1.77][61974] -> [..216.58.205.68][..443] [QUIC.Google][Google][Web][Acceptable][www.google.com]
+ RISK: Unidirectional Traffic
new: [....35] [ip4][..udp] [...192.168.1.77][50822] -> [..216.58.205.68][..443]
detected: [....35] [ip4][..udp] [...192.168.1.77][50822] -> [..216.58.205.68][..443] [QUIC.Google][Google][Web][Acceptable][www.google.com]
+ RISK: Unidirectional Traffic
new: [....36] [ip4][..udp] [...192.168.1.77][57621] -> [..192.168.1.255][57621]
detected: [....36] [ip4][..udp] [...192.168.1.77][57621] -> [..192.168.1.255][57621] [Spotify][Unknown][Music][Fun]
new: [....37] [ip4][..udp] [...192.168.1.77][28150] -> [.....91.108.8.8][..529]
detected: [....37] [ip4][..udp] [...192.168.1.77][28150] -> [.....91.108.8.8][..529] [Telegram][Telegram][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....38] [ip4][..udp] [...192.168.1.77][28150] -> [....91.108.16.1][..529]
detected: [....38] [ip4][..udp] [...192.168.1.77][28150] -> [....91.108.16.1][..529] [Telegram][Telegram][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....39] [ip4][..udp] [...192.168.1.77][28150] -> [....91.108.12.3][..530]
detected: [....39] [ip4][..udp] [...192.168.1.77][28150] -> [....91.108.12.3][..530] [Telegram][Telegram][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....40] [ip4][..udp] [...192.168.1.77][28150] -> [.....91.108.8.1][..533]
detected: [....40] [ip4][..udp] [...192.168.1.77][28150] -> [.....91.108.8.1][..533] [Telegram][Telegram][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....41] [ip4][..udp] [...192.168.1.77][28150] -> [....91.108.12.5][..537]
detected: [....41] [ip4][..udp] [...192.168.1.77][28150] -> [....91.108.12.5][..537] [Telegram][Telegram][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....42] [ip4][..udp] [...192.168.1.77][28150] -> [....91.108.16.3][..537]
detected: [....42] [ip4][..udp] [...192.168.1.77][28150] -> [....91.108.16.3][..537] [Telegram][Telegram][Chat][Acceptable]
+ RISK: Unidirectional Traffic
detection-update: [....33] [ip4][..udp] [...192.168.1.77][54595] -> [....192.168.1.1][...53] [DNS.ntop][Unknown][Network][Safe][b._dns-sd._udp.ntop.org]
+ RISK: Error Code
new: [....43] [ip4][..udp] [...192.168.1.77][52127] -> [239.255.255.250][.1900]
detected: [....43] [ip4][..udp] [...192.168.1.77][52127] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
analyse: [....37] [ip4][..udp] [...192.168.1.77][28150] -> [.....91.108.8.8][..529] [Telegram][Telegram][Chat][Acceptable]
@@ -168,6 +193,7 @@
update: [....10] [ip4][..udp] [...192.168.1.77][17500] -> [..192.168.1.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
update: [.....8] [ip4][..udp] [...192.168.1.77][61631] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [.....7] [ip4][..udp] [...192.168.1.77][.5353] -> [...192.168.1.75][.5353] [MDNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [...192.168.1.53][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable]
update: [.....4] [ip4][..udp] [...192.168.1.69][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable]
update: [.....5] [ip4][..udp] [...192.168.1.75][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable]
@@ -177,22 +203,32 @@
detected: [....46] [ip4][..udp] [...192.168.1.53][56384] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
new: [....47] [ip4][..udp] [...192.168.1.77][58615] -> [....192.168.1.1][...53]
detected: [....47] [ip4][..udp] [...192.168.1.77][58615] -> [....192.168.1.1][...53] [DNS.Dropbox][Unknown][Network][Acceptable][telemetry.dropbox.com]
+ RISK: Unidirectional Traffic
new: [....48] [ip4][..udp] [...192.168.1.77][49533] -> [....192.168.1.1][...53]
detected: [....48] [ip4][..udp] [...192.168.1.77][49533] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][e4518.dscx.akamaiedge.net]
+ RISK: Unidirectional Traffic
detection-update: [....48] [ip4][..udp] [...192.168.1.77][49533] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][e4518.dscx.akamaiedge.net]
detection-update: [....47] [ip4][..udp] [...192.168.1.77][58615] -> [....192.168.1.1][...53] [DNS.Dropbox][Unknown][Network][Acceptable][telemetry.dropbox.com]
idle: [....32] [ip4][..udp] [...192.168.1.77][.5812] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Minor Issues
idle: [....16] [ip4][..udp] [...192.168.1.77][61120] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [....28] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable]
idle: [.....1] [ip4][..udp] [....192.168.0.1][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable]
idle: [.....9] [ip4][..udp] [...192.168.1.77][17500] -> [255.255.255.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
idle: [....19] [ip4][..udp] [...192.168.1.77][23174] -> [.....91.108.8.7][..521] [Telegram][Telegram][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....20] [ip4][..udp] [...192.168.1.77][23174] -> [....91.108.12.5][..523] [Telegram][Telegram][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....21] [ip4][..udp] [...192.168.1.77][23174] -> [....91.108.16.1][..527] [Telegram][Telegram][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....22] [ip4][..udp] [...192.168.1.77][23174] -> [....91.108.12.1][..536] [Telegram][Telegram][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....24] [ip4][..udp] [...192.168.1.77][23174] -> [....91.108.16.4][..538] [Telegram][Telegram][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....23] [ip4][..udp] [...192.168.1.77][23174] -> [.....91.108.8.8][..538] [Telegram][Telegram][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....27] [ip4][..udp] [...192.168.1.77][47127] -> [....192.168.1.1][...53] [DNS.GoogleServices][Unknown][Network][Acceptable]
+ RISK: Minor Issues
idle: [....18] [ip6][..udp] [...............fe80::4dc:edec:5b0c:a661][.5353] -> [...............................ff02::fb][.5353]
idle: [....10] [ip4][..udp] [...192.168.1.77][17500] -> [..192.168.1.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
idle: [....15] [ip4][..udp] [...192.168.1.75][57916] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
@@ -202,34 +238,47 @@
RISK: Unsafe Protocol
idle: [....48] [ip4][..udp] [...192.168.1.77][49533] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [....12] [ip4][..udp] [...192.168.1.77][.5353] -> [...192.168.1.53][.5353] [MDNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....7] [ip4][..udp] [...192.168.1.77][.5353] -> [...192.168.1.75][.5353] [MDNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....5] [ip4][..udp] [...192.168.1.75][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable]
idle: [.....4] [ip4][..udp] [...192.168.1.69][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable]
idle: [....17] [ip4][..udp] [...192.168.1.52][.5353] -> [....224.0.0.251][.5353]
idle: [.....3] [ip4][..udp] [...192.168.1.53][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable]
not-detected: [....44] [ip4][..udp] [...192.168.1.77][28150] -> [..87.11.205.195][59772] [Unknown][Unknown][Unrated]
+ RISK: Unidirectional Traffic
idle: [....44] [ip4][..udp] [...192.168.1.77][28150] -> [..87.11.205.195][59772]
idle: [....36] [ip4][..udp] [...192.168.1.77][57621] -> [..192.168.1.255][57621] [Spotify][Unknown][Music][Fun]
idle: [....14] [ip4][..udp] [...192.168.1.53][57621] -> [..192.168.1.255][57621] [Spotify][Unknown][Music][Fun]
idle: [....43] [ip4][..udp] [...192.168.1.77][52127] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [....26] [ip4][..udp] [...192.168.1.77][23174] -> [..87.11.205.195][60723] [OpenVPN][Unknown][VPN][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....35] [ip4][..udp] [...192.168.1.77][50822] -> [..216.58.205.68][..443] [QUIC.Google][Google][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....31] [ip4][..udp] [...192.168.1.77][49764] -> [....192.168.1.1][...53] [DNS.ntop][Unknown][Network][Safe]
idle: [.....2] [ip4][..udp] [...192.168.1.53][54306] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [....46] [ip4][..udp] [...192.168.1.53][56384] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [....38] [ip4][..udp] [...192.168.1.77][28150] -> [....91.108.16.1][..529] [Telegram][Telegram][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....37] [ip4][..udp] [...192.168.1.77][28150] -> [.....91.108.8.8][..529] [Telegram][Telegram][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....39] [ip4][..udp] [...192.168.1.77][28150] -> [....91.108.12.3][..530] [Telegram][Telegram][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....40] [ip4][..udp] [...192.168.1.77][28150] -> [.....91.108.8.1][..533] [Telegram][Telegram][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....42] [ip4][..udp] [...192.168.1.77][28150] -> [....91.108.16.3][..537] [Telegram][Telegram][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....41] [ip4][..udp] [...192.168.1.77][28150] -> [....91.108.12.5][..537] [Telegram][Telegram][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....13] [ip4][..udp] [...192.168.1.77][52118] -> [....192.168.1.1][...53] [DNS.Microsoft][Unknown][Network][Safe]
idle: [....11] [ip6][..udp] [..............fe80::18a0:a412:8935:c01b][.5353] -> [...............................ff02::fb][.5353]
idle: [....45] [ip4][..udp] [...192.168.1.53][50698] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [....47] [ip4][..udp] [...192.168.1.77][58615] -> [....192.168.1.1][...53] [DNS.Dropbox][Unknown][Network][Acceptable]
idle: [....33] [ip4][..udp] [...192.168.1.77][54595] -> [....192.168.1.1][...53] [DNS.ntop][Unknown][Network][Safe]
- idle: [....25] [ip4][..udp] [...192.168.1.77][23174] -> [...192.168.1.52][31480] [Unknown][Unknown][Unrated]
+ RISK: Error Code
+ not-detected: [....25] [ip4][..udp] [...192.168.1.77][23174] -> [...192.168.1.52][31480] [Unknown][Unknown][Unrated]
+ idle: [....25] [ip4][..udp] [...192.168.1.77][23174] -> [...192.168.1.52][31480]
idle: [....34] [ip4][..udp] [...192.168.1.77][61974] -> [..216.58.205.68][..443] [QUIC.Google][Google][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip6][..udp] [................fe80::4ba:91a:7817:e318][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/telnet.pcap.out b/test/results/flow-info/default/telnet.pcap.out
index d731a9a02..d731a9a02 100644
--- a/test/results/flow-info/telnet.pcap.out
+++ b/test/results/flow-info/default/telnet.pcap.out
diff --git a/test/results/flow-info/teredo.pcap.out b/test/results/flow-info/default/teredo.pcap.out
index 3c97b0156..bccaf7c05 100644
--- a/test/results/flow-info/teredo.pcap.out
+++ b/test/results/flow-info/default/teredo.pcap.out
@@ -3,17 +3,27 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..10.112.16.106][52513] -> [..194.136.28.76][.3544]
detected: [.....1] [ip4][..udp] [..10.112.16.106][52513] -> [..194.136.28.76][.3544] [Teredo][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..udp] [...10.112.16.89][60381] -> [..194.136.28.76][.3544]
detected: [.....2] [ip4][..udp] [...10.112.16.89][60381] -> [..194.136.28.76][.3544] [Teredo][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..udp] [...10.112.16.92][63448] -> [..194.136.28.76][.3544]
detected: [.....3] [ip4][..udp] [...10.112.16.92][63448] -> [..194.136.28.76][.3544] [Teredo][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..udp] [...10.112.16.64][56154] -> [..194.136.28.76][.3544]
detected: [.....4] [ip4][..udp] [...10.112.16.64][56154] -> [..194.136.28.76][.3544] [Teredo][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][..udp] [...10.112.16.67][51812] -> [..194.136.28.76][.3544]
detected: [.....5] [ip4][..udp] [...10.112.16.67][51812] -> [..194.136.28.76][.3544] [Teredo][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....5] [ip4][..udp] [...10.112.16.67][51812] -> [..194.136.28.76][.3544] [Teredo][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..udp] [...10.112.16.64][56154] -> [..194.136.28.76][.3544] [Teredo][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [...10.112.16.89][60381] -> [..194.136.28.76][.3544] [Teredo][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [..10.112.16.106][52513] -> [..194.136.28.76][.3544] [Teredo][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [...10.112.16.92][63448] -> [..194.136.28.76][.3544] [Teredo][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/tftp.pcap.out b/test/results/flow-info/default/tftp.pcap.out
index 2c58d7230..49e75b730 100644
--- a/test/results/flow-info/tftp.pcap.out
+++ b/test/results/flow-info/default/tftp.pcap.out
@@ -3,12 +3,13 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [....172.28.4.53][54626] -> [...172.16.5.170][...69]
detected: [.....1] [ip4][..udp] [....172.28.4.53][54626] -> [...172.16.5.170][...69] [TFTP][Unknown][DataTransfer][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
new: [.....2] [ip4][..udp] [....172.28.4.53][54632] -> [...172.16.5.170][...69]
detected: [.....2] [ip4][..udp] [....172.28.4.53][54632] -> [...172.16.5.170][...69] [TFTP][Unknown][DataTransfer][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
new: [.....3] [ip4][..udp] [..192.168.0.253][50618] -> [...192.168.0.10][...69]
detected: [.....3] [ip4][..udp] [..192.168.0.253][50618] -> [...192.168.0.10][...69] [TFTP][Unknown][DataTransfer][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..udp] [...192.168.0.10][.3445] -> [..192.168.0.253][50618]
detected: [.....4] [ip4][..udp] [...192.168.0.10][.3445] -> [..192.168.0.253][50618] [TFTP][Unknown][DataTransfer][Acceptable]
RISK: Known Proto on Non Std Port
@@ -26,22 +27,27 @@
DAEMON-EVENT: [Flows][active: 4 / 4|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....5] [ip4][..udp] [....172.28.4.53][54627] -> [...172.16.5.170][...69]
detected: [.....5] [ip4][..udp] [....172.28.4.53][54627] -> [...172.16.5.170][...69] [TFTP][Unknown][DataTransfer][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [....172.28.4.53][54626] -> [...172.16.5.170][...69] [TFTP][Unknown][DataTransfer][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
idle: [.....2] [ip4][..udp] [....172.28.4.53][54632] -> [...172.16.5.170][...69] [TFTP][Unknown][DataTransfer][Acceptable]
- RISK: Malformed Packet
+ RISK: Malformed Packet, Unidirectional Traffic
idle: [.....4] [ip4][..udp] [...192.168.0.10][.3445] -> [..192.168.0.253][50618] [TFTP][Unknown][DataTransfer][Acceptable]
RISK: Known Proto on Non Std Port
idle: [.....3] [ip4][..udp] [..192.168.0.253][50618] -> [...192.168.0.10][...69] [TFTP][Unknown][DataTransfer][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 102 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 5|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....6] [ip4][..udp] [....172.28.5.91][44618] -> [...172.28.5.170][...69]
detected: [.....6] [ip4][..udp] [....172.28.5.91][44618] -> [...172.28.5.170][...69] [TFTP][Unknown][DataTransfer][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....7] [ip4][..udp] [...172.28.5.170][62058] -> [....172.28.5.91][44618]
detected: [.....7] [ip4][..udp] [...172.28.5.170][62058] -> [....172.28.5.91][44618] [TFTP][Unknown][DataTransfer][Acceptable]
RISK: Known Proto on Non Std Port
idle: [.....7] [ip4][..udp] [...172.28.5.170][62058] -> [....172.28.5.91][44618] [TFTP][Unknown][DataTransfer][Acceptable]
RISK: Known Proto on Non Std Port
idle: [.....5] [ip4][..udp] [....172.28.4.53][54627] -> [...172.16.5.170][...69] [TFTP][Unknown][DataTransfer][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][..udp] [....172.28.5.91][44618] -> [...172.28.5.170][...69] [TFTP][Unknown][DataTransfer][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/threema.pcap.out b/test/results/flow-info/default/threema.pcap.out
index 399e3bffa..477eff209 100644
--- a/test/results/flow-info/threema.pcap.out
+++ b/test/results/flow-info/default/threema.pcap.out
@@ -21,8 +21,8 @@
DAEMON-EVENT: [Processed: 70 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 5|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....6] [ip4][..tcp] [..192.168.2.100][50860] -> [.185.88.236.110][.5222]
- not-detected: [.....5] [ip4][..tcp] [..192.168.2.100][50718] -> [.185.88.236.110][.5222] [Unknown][Threema][Unrated]
+ guessed: [.....5] [ip4][..tcp] [..192.168.2.100][50718] -> [.185.88.236.110][.5222] [Threema][Threema][Chat][Fun]
end: [.....5] [ip4][..tcp] [..192.168.2.100][50718] -> [.185.88.236.110][.5222]
- not-detected: [.....6] [ip4][..tcp] [..192.168.2.100][50860] -> [.185.88.236.110][.5222] [Unknown][Threema][Unrated]
+ guessed: [.....6] [ip4][..tcp] [..192.168.2.100][50860] -> [.185.88.236.110][.5222] [Threema][Threema][Chat][Fun]
end: [.....6] [ip4][..tcp] [..192.168.2.100][50860] -> [.185.88.236.110][.5222]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/tinc.pcap.out b/test/results/flow-info/default/tinc.pcap.out
index 604cb1e8a..743e75857 100644
--- a/test/results/flow-info/tinc.pcap.out
+++ b/test/results/flow-info/default/tinc.pcap.out
@@ -9,10 +9,10 @@
RISK: Known Proto on Non Std Port
new: [.....3] [ip4][..udp] [.131.114.168.27][55655] -> [.185.83.218.112][55655]
detected: [.....3] [ip4][..udp] [.131.114.168.27][55655] -> [.185.83.218.112][55655] [TINC][Unknown][VPN][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [.....4] [ip4][..udp] [.185.83.218.112][55656] -> [.131.114.168.27][55656]
detected: [.....4] [ip4][..udp] [.185.83.218.112][55656] -> [.131.114.168.27][55656] [TINC][Unknown][VPN][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
analyse: [.....3] [ip4][..udp] [.131.114.168.27][55655] -> [.185.83.218.112][55655] [TINC][Unknown][VPN][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 1.070| 0.172| 0.377| 142420.984| 2.500]
@@ -36,9 +36,9 @@
end: [.....2] [ip4][..tcp] [.131.114.168.27][49290] -> [.185.83.218.112][55656] [TINC][Unknown][VPN][Acceptable]
RISK: Known Proto on Non Std Port
idle: [.....3] [ip4][..udp] [.131.114.168.27][55655] -> [.185.83.218.112][55655] [TINC][Unknown][VPN][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....4] [ip4][..udp] [.185.83.218.112][55656] -> [.131.114.168.27][55656] [TINC][Unknown][VPN][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
end: [.....1] [ip4][..tcp] [.131.114.168.27][59244] -> [.185.83.218.112][55655] [TINC][Unknown][VPN][Acceptable]
RISK: Known Proto on Non Std Port
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/tk.pcap.out b/test/results/flow-info/default/tk.pcap.out
index 93e5913f3..8adbc557d 100644
--- a/test/results/flow-info/tk.pcap.out
+++ b/test/results/flow-info/default/tk.pcap.out
@@ -3,12 +3,15 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..192.168.1.178][51954] -> [....192.168.1.1][...53]
detected: [.....1] [ip4][..udp] [..192.168.1.178][51954] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][whois.dot.tk]
+ RISK: Unidirectional Traffic
detection-update: [.....1] [ip4][..udp] [..192.168.1.178][51954] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][whois.dot.tk]
new: [.....2] [ip4][..udp] [..192.168.1.178][55591] -> [....192.168.1.1][...53]
detected: [.....2] [ip4][..udp] [..192.168.1.178][55591] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][whois.dot.tk]
+ RISK: Unidirectional Traffic
detection-update: [.....2] [ip4][..udp] [..192.168.1.178][55591] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][whois.dot.tk]
new: [.....3] [ip4][..udp] [..192.168.1.178][53820] -> [....192.168.1.1][...53]
detected: [.....3] [ip4][..udp] [..192.168.1.178][53820] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][whois.dot.tk]
+ RISK: Unidirectional Traffic
detection-update: [.....3] [ip4][..udp] [..192.168.1.178][53820] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][whois.dot.tk]
idle: [.....2] [ip4][..udp] [..192.168.1.178][55591] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [.....3] [ip4][..udp] [..192.168.1.178][53820] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
diff --git a/test/results/flow-info/tls-appdata.pcap.out b/test/results/flow-info/default/tls-appdata.pcap.out
index fdf84c385..758c0995a 100644
--- a/test/results/flow-info/tls-appdata.pcap.out
+++ b/test/results/flow-info/default/tls-appdata.pcap.out
@@ -3,10 +3,12 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [.179.60.195.173][..443] -> [..192.168.2.100][60636] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [.179.60.195.173][..443] -> [..192.168.2.100][60636] [TLS][Facebook][Web][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 6 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....2] [ip4][..tcp] [..192.168.2.100][58976] -> [...52.223.198.7][..443] [MIDSTREAM]
detected: [.....2] [ip4][..tcp] [..192.168.2.100][58976] -> [...52.223.198.7][..443] [TLS][Twitch][Web][Safe]
+ RISK: Unidirectional Traffic
end: [.....1] [ip4][..tcp] [.179.60.195.173][..443] -> [..192.168.2.100][60636]
analyse: [.....2] [ip4][..tcp] [..192.168.2.100][58976] -> [...52.223.198.7][..443]
min| max| avg| stddev| variance| entropy
diff --git a/test/results/flow-info/tls-esni-fuzzed.pcap.out b/test/results/flow-info/default/tls-esni-fuzzed.pcap.out
index 20834bb4d..46e642751 100644
--- a/test/results/flow-info/tls-esni-fuzzed.pcap.out
+++ b/test/results/flow-info/default/tls-esni-fuzzed.pcap.out
@@ -3,11 +3,13 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [...192.168.1.12][49886] -> [..104.27.129.77][..443] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [...192.168.1.12][49886] -> [..104.27.129.77][..443] [TLS][Cloudflare][Web][Safe][]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..tcp] [...192.168.1.12][49887] -> [.104.16.125.175][..443] [MIDSTREAM]
detected: [.....2] [ip4][..tcp] [...192.168.1.12][49887] -> [.104.16.125.175][..443] [TLS][Cloudflare][Web][Safe][]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..tcp] [...192.168.1.12][49897] -> [..104.22.71.197][..443] [MIDSTREAM]
detected: [.....3] [ip4][..tcp] [...192.168.1.12][49897] -> [..104.22.71.197][..443] [TLS][Cloudflare][Web][Safe][]
- RISK: Missing SNI TLS Extn
+ RISK: Missing SNI TLS Extn, Unidirectional Traffic
idle: [.....1] [ip4][..tcp] [...192.168.1.12][49886] -> [..104.27.129.77][..443]
idle: [.....3] [ip4][..tcp] [...192.168.1.12][49897] -> [..104.22.71.197][..443]
idle: [.....2] [ip4][..tcp] [...192.168.1.12][49887] -> [.104.16.125.175][..443]
diff --git a/test/results/flow-info/tls-rdn-extract.pcap.out b/test/results/flow-info/default/tls-rdn-extract.pcap.out
index fd26178a9..649de1887 100644
--- a/test/results/flow-info/tls-rdn-extract.pcap.out
+++ b/test/results/flow-info/default/tls-rdn-extract.pcap.out
@@ -3,7 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [.......10.0.0.1][31337] -> [213.199.149.251][..443] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [.......10.0.0.1][31337] -> [213.199.149.251][..443] [TLS][Unknown][Web][Safe][ads1.msads.net]
- RISK: Obsolete TLS (v1.1 or older)
+ RISK: Obsolete TLS (v1.1 or older), Unidirectional Traffic
detection-update: [.....1] [ip4][..tcp] [.......10.0.0.1][31337] -> [213.199.149.251][..443] [TLS][Unknown][Web][Safe][ads1.msads.net]
RISK: Obsolete TLS (v1.1 or older), Weak TLS Cipher
detection-update: [.....1] [ip4][..tcp] [.......10.0.0.1][31337] -> [213.199.149.251][..443] [TLS.Microsoft][Unknown][Web][Safe][ads1.msads.net]
diff --git a/test/results/flow-info/tls_2_reasms.pcapng.out b/test/results/flow-info/default/tls_2_reasms.pcapng.out
index eac5b4730..eac5b4730 100644
--- a/test/results/flow-info/tls_2_reasms.pcapng.out
+++ b/test/results/flow-info/default/tls_2_reasms.pcapng.out
diff --git a/test/results/flow-info/tls_2_reasms_b.pcapng.out b/test/results/flow-info/default/tls_2_reasms_b.pcapng.out
index cd79f4ef9..4df800b59 100644
--- a/test/results/flow-info/tls_2_reasms_b.pcapng.out
+++ b/test/results/flow-info/default/tls_2_reasms_b.pcapng.out
@@ -2,7 +2,7 @@
DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [..88.14.137.195][..443] -> [196.234.165.216][37658]
- detected: [.....1] [ip4][..tcp] [..88.14.137.195][..443] -> [196.234.165.216][37658] [TLS.Facebook][Unknown][SocialNetwork][Fun][video.fmct2-3.fna.fbcdn.net]
- detection-update: [.....1] [ip4][..tcp] [..88.14.137.195][..443] -> [196.234.165.216][37658] [TLS.Facebook][Unknown][SocialNetwork][Fun][video.fmct2-3.fna.fbcdn.net]
+ detected: [.....1] [ip4][..tcp] [..88.14.137.195][..443] -> [196.234.165.216][37658] [TLS.FbookReelStory][Unknown][SocialNetwork][Fun][video.fmct2-3.fna.fbcdn.net]
+ detection-update: [.....1] [ip4][..tcp] [..88.14.137.195][..443] -> [196.234.165.216][37658] [TLS.FbookReelStory][Unknown][SocialNetwork][Fun][video.fmct2-3.fna.fbcdn.net]
idle: [.....1] [ip4][..tcp] [..88.14.137.195][..443] -> [196.234.165.216][37658]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/tls_alert.pcap.out b/test/results/flow-info/default/tls_alert.pcap.out
index d15831717..c7cffc462 100644
--- a/test/results/flow-info/tls_alert.pcap.out
+++ b/test/results/flow-info/default/tls_alert.pcap.out
@@ -8,6 +8,8 @@
DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....2] [ip4][..tcp] [..192.168.2.100][37780] -> [.160.44.202.202][..443] [MIDSTREAM]
detected: [.....2] [ip4][..tcp] [..192.168.2.100][37780] -> [.160.44.202.202][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
end: [.....1] [ip4][..tcp] [..192.168.1.192][63158] -> [...192.168.1.20][..443]
end: [.....2] [ip4][..tcp] [..192.168.2.100][37780] -> [.160.44.202.202][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/tls_certificate_too_long.pcap.out b/test/results/flow-info/default/tls_certificate_too_long.pcap.out
index 333daef6c..a210f0fb6 100644
--- a/test/results/flow-info/tls_certificate_too_long.pcap.out
+++ b/test/results/flow-info/default/tls_certificate_too_long.pcap.out
@@ -5,27 +5,36 @@
new: [.....2] [ip4][..tcp] [..192.168.1.121][52721] -> [..192.168.1.139][55367] [MIDSTREAM]
new: [.....3] [ip4][..udp] [..192.168.1.121][52251] -> [........8.8.8.8][...53]
detected: [.....3] [ip4][..udp] [..192.168.1.121][52251] -> [........8.8.8.8][...53] [DNS][Google][Network][Acceptable][121.1.168.192.in-addr.arpa]
+ RISK: Unidirectional Traffic
detection-update: [.....3] [ip4][..udp] [..192.168.1.121][52251] -> [........8.8.8.8][...53] [DNS][Google][Network][Acceptable][60.21.149.52.in-addr.arpa]
+ RISK: Unidirectional Traffic
detection-update: [.....3] [ip4][..udp] [..192.168.1.121][52251] -> [........8.8.8.8][...53] [DNS][Google][Network][Acceptable][139.1.168.192.in-addr.arpa]
+ RISK: Unidirectional Traffic
detection-update: [.....3] [ip4][..udp] [..192.168.1.121][52251] -> [........8.8.8.8][...53] [DNS][Google][Network][Acceptable][139.1.168.192.in-addr.arpa]
+ RISK: Error Code
detection-update: [.....3] [ip4][..udp] [..192.168.1.121][52251] -> [........8.8.8.8][...53] [DNS][Google][Network][Acceptable][60.21.149.52.in-addr.arpa]
+ RISK: Error Code
new: [.....4] [ip4][..udp] [..192.168.1.139][.5353] -> [....224.0.0.251][.5353]
detected: [.....4] [ip4][..udp] [..192.168.1.139][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable][_companion-link._tcp.local]
new: [.....5] [ip6][..udp] [..............fe80::1059:a858:f9e7:cf94][.5353] -> [...............................ff02::fb][.5353]
detected: [.....5] [ip6][..udp] [..............fe80::1059:a858:f9e7:cf94][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable][_companion-link._tcp.local]
new: [.....6] [ip4][..udp] [..192.168.1.121][.5353] -> [..192.168.1.139][.5353]
detected: [.....6] [ip4][..udp] [..192.168.1.121][.5353] -> [..192.168.1.139][.5353] [MDNS][Unknown][Network][Acceptable][_companion-link._tcp.local]
+ RISK: Unidirectional Traffic
new: [.....7] [ip4][....2] [..192.168.1.139] -> [......224.0.0.2]
detected: [.....7] [ip4][....2] [..192.168.1.139] -> [......224.0.0.2] [IGMP][Unknown][Network][Acceptable]
new: [.....8] [ip4][....2] [..192.168.1.139] -> [....224.0.0.251]
detected: [.....8] [ip4][....2] [..192.168.1.139] -> [....224.0.0.251] [IGMP][Unknown][Network][Acceptable]
new: [.....9] [ip4][..udp] [..192.168.1.121][55567] -> [........8.8.8.8][...53]
detected: [.....9] [ip4][..udp] [..192.168.1.121][55567] -> [........8.8.8.8][...53] [DNS.Microsoft][Google][Network][Safe][wdcp.microsoft.com]
+ RISK: Unidirectional Traffic
new: [....10] [ip4][..udp] [..192.168.1.121][53884] -> [........8.8.8.8][...53]
detected: [....10] [ip4][..udp] [..192.168.1.121][53884] -> [........8.8.8.8][...53] [DNS.Microsoft][Google][Network][Safe][wdcp.microsoft.com]
+ RISK: Unidirectional Traffic
detection-update: [....10] [ip4][..udp] [..192.168.1.121][53884] -> [........8.8.8.8][...53] [DNS.Microsoft][Google][Network][Safe][wdcp.microsoft.com]
new: [....11] [ip4][..udp] [..192.168.1.121][65492] -> [........8.8.8.8][...53]
detected: [....11] [ip4][..udp] [..192.168.1.121][65492] -> [........8.8.8.8][...53] [DNS.Azure][Google][Network][Acceptable][wd-prod-cp-eu-north-2-fe.northeurope.cloudapp.azure.com]
+ RISK: Unidirectional Traffic
new: [....12] [ip4][..tcp] [..192.168.1.121][53910] -> [...40.113.10.47][..443]
detection-update: [.....9] [ip4][..udp] [..192.168.1.121][55567] -> [........8.8.8.8][...53] [DNS.Microsoft][Google][Network][Safe][wdcp.microsoft.com]
new: [....13] [ip4][..tcp] [..192.168.1.121][53911] -> [...40.113.10.47][..443]
@@ -33,41 +42,53 @@
detected: [....12] [ip4][..tcp] [..192.168.1.121][53910] -> [...40.113.10.47][..443] [TLS.Microsoft][Azure][Cloud][Safe][wdcp.microsoft.com]
detected: [....13] [ip4][..tcp] [..192.168.1.121][53911] -> [...40.113.10.47][..443] [TLS.Microsoft][Azure][Cloud][Safe][wdcp.microsoft.com]
detection-update: [....12] [ip4][..tcp] [..192.168.1.121][53910] -> [...40.113.10.47][..443] [TLS.Microsoft][Azure][Cloud][Safe][wdcp.microsoft.com]
+ RISK: TLS Cert Validity Too Long
new: [....14] [ip4][..udp] [..192.168.1.121][51364] -> [........8.8.8.8][...53]
detected: [....14] [ip4][..udp] [..192.168.1.121][51364] -> [........8.8.8.8][...53] [DNS.Microsoft][Google][Network][Safe][www.microsoft.com]
+ RISK: Unidirectional Traffic
new: [....15] [ip4][..udp] [..192.168.1.121][58161] -> [........8.8.8.8][...53]
detected: [....15] [ip4][..udp] [..192.168.1.121][58161] -> [........8.8.8.8][...53] [DNS.Microsoft][Google][Network][Safe][www.microsoft.com]
+ RISK: Unidirectional Traffic
detection-update: [....14] [ip4][..udp] [..192.168.1.121][51364] -> [........8.8.8.8][...53] [DNS.Microsoft][Google][Network][Safe][www.microsoft.com]
new: [....16] [ip4][..udp] [..192.168.1.121][55578] -> [........8.8.8.8][...53]
detected: [....16] [ip4][..udp] [..192.168.1.121][55578] -> [........8.8.8.8][...53] [DNS][Google][Network][Acceptable][e13678.dscb.akamaiedge.net]
+ RISK: Unidirectional Traffic
new: [....17] [ip4][..udp] [..192.168.1.121][54561] -> [........8.8.8.8][...53]
detected: [....17] [ip4][..udp] [..192.168.1.121][54561] -> [........8.8.8.8][...53] [DNS][Google][Network][Acceptable][e13678.dscb.akamaiedge.net]
+ RISK: Unidirectional Traffic
detection-update: [....13] [ip4][..tcp] [..192.168.1.121][53911] -> [...40.113.10.47][..443] [TLS.Microsoft][Azure][Cloud][Safe][wdcp.microsoft.com]
+ RISK: TLS Cert Validity Too Long
detection-update: [....16] [ip4][..udp] [..192.168.1.121][55578] -> [........8.8.8.8][...53] [DNS][Google][Network][Acceptable][e13678.dscb.akamaiedge.net]
new: [....18] [ip4][..tcp] [..192.168.1.121][53912] -> [....2.22.33.235][...80]
detection-update: [....15] [ip4][..udp] [..192.168.1.121][58161] -> [........8.8.8.8][...53] [DNS.Microsoft][Google][Network][Safe][www.microsoft.com]
detected: [....18] [ip4][..tcp] [..192.168.1.121][53912] -> [....2.22.33.235][...80] [HTTP.Microsoft][Unknown][Cloud][Safe][www.microsoft.com]
detection-update: [....17] [ip4][..udp] [..192.168.1.121][54561] -> [........8.8.8.8][...53] [DNS][Google][Network][Acceptable][e13678.dscb.akamaiedge.net]
detection-update: [....18] [ip4][..tcp] [..192.168.1.121][53912] -> [....2.22.33.235][...80] [HTTP.Microsoft][Unknown][Download][Safe][www.microsoft.com]
- RISK: Binary App Transfer
+ RISK: Binary App Transfer, HTTP Susp Header
new: [....19] [ip4][..tcp] [..192.168.1.121][53913] -> [....2.22.33.235][...80]
detected: [....19] [ip4][..tcp] [..192.168.1.121][53913] -> [....2.22.33.235][...80] [HTTP.Microsoft][Unknown][Cloud][Safe][www.microsoft.com]
detection-update: [....19] [ip4][..tcp] [..192.168.1.121][53913] -> [....2.22.33.235][...80] [HTTP.Microsoft][Unknown][Download][Safe][www.microsoft.com]
- RISK: Binary App Transfer
+ RISK: Binary App Transfer, HTTP Susp Header
new: [....20] [ip4][..tcp] [..192.168.1.121][53905] -> [..140.82.113.26][..443] [MIDSTREAM]
new: [....21] [ip4][..udp] [..192.168.1.121][65213] -> [........8.8.8.8][...53]
detected: [....21] [ip4][..udp] [..192.168.1.121][65213] -> [........8.8.8.8][...53] [DNS.Apple][Google][Network][Safe][time-macos.apple.com]
+ RISK: Unidirectional Traffic
detection-update: [....21] [ip4][..udp] [..192.168.1.121][65213] -> [........8.8.8.8][...53] [DNS.Apple][Google][Network][Safe][time-macos.apple.com]
new: [....22] [ip4][..udp] [..192.168.1.121][49216] -> [..17.253.54.251][..123]
detected: [....22] [ip4][..udp] [..192.168.1.121][49216] -> [..17.253.54.251][..123] [NTP][Apple][System][Acceptable]
+ RISK: Unidirectional Traffic
detected: [....20] [ip4][..tcp] [..192.168.1.121][53905] -> [..140.82.113.26][..443] [TLS][Github][Web][Safe]
new: [....23] [ip4][..udp] [..192.168.1.121][51998] -> [........8.8.8.8][...53]
detected: [....23] [ip4][..udp] [..192.168.1.121][51998] -> [........8.8.8.8][...53] [DNS][Google][Network][Acceptable][235.33.22.2.in-addr.arpa]
+ RISK: Unidirectional Traffic
detection-update: [....23] [ip4][..udp] [..192.168.1.121][51998] -> [........8.8.8.8][...53] [DNS][Google][Network][Acceptable][26.113.82.140.in-addr.arpa]
+ RISK: Unidirectional Traffic
new: [....24] [ip4][..tcp] [..192.168.1.121][53429] -> [...52.98.163.18][..443] [MIDSTREAM]
detected: [....24] [ip4][..tcp] [..192.168.1.121][53429] -> [...52.98.163.18][..443] [TLS][Outlook][Web][Safe]
+ RISK: Unidirectional Traffic
new: [....25] [ip4][..tcp] [..192.168.1.121][53428] -> [...52.98.163.18][..443] [MIDSTREAM]
detected: [....25] [ip4][..tcp] [..192.168.1.121][53428] -> [...52.98.163.18][..443] [TLS][Outlook][Web][Safe]
+ RISK: Unidirectional Traffic
detection-update: [....23] [ip4][..udp] [..192.168.1.121][51998] -> [........8.8.8.8][...53] [DNS][Google][Network][Acceptable][235.33.22.2.in-addr.arpa]
analyse: [....24] [ip4][..tcp] [..192.168.1.121][53429] -> [...52.98.163.18][..443] [TLS][Outlook][Web][Safe]
min| max| avg| stddev| variance| entropy
@@ -94,46 +115,61 @@
detected: [....26] [ip4][..tcp] [..192.168.1.121][53914] -> [...40.113.10.47][..443] [TLS.Microsoft][Azure][Cloud][Safe][wdcp.microsoft.com]
detected: [....27] [ip4][..tcp] [..192.168.1.121][53915] -> [...40.113.10.47][..443] [TLS.Microsoft][Azure][Cloud][Safe][wdcp.microsoft.com]
detection-update: [....26] [ip4][..tcp] [..192.168.1.121][53914] -> [...40.113.10.47][..443] [TLS.Microsoft][Azure][Cloud][Safe][wdcp.microsoft.com]
+ RISK: TLS Cert Validity Too Long
detection-update: [....27] [ip4][..tcp] [..192.168.1.121][53915] -> [...40.113.10.47][..443] [TLS.Microsoft][Azure][Cloud][Safe][wdcp.microsoft.com]
+ RISK: TLS Cert Validity Too Long
new: [....28] [ip4][..udp] [..192.168.1.121][50288] -> [..17.253.54.251][..123]
detected: [....28] [ip4][..udp] [..192.168.1.121][50288] -> [..17.253.54.251][..123] [NTP][Apple][System][Acceptable]
+ RISK: Unidirectional Traffic
new: [....29] [ip4][..tcp] [..192.168.1.121][53916] -> [...40.113.10.47][..443]
new: [....30] [ip4][..tcp] [..192.168.1.121][53917] -> [...40.113.10.47][..443]
detected: [....29] [ip4][..tcp] [..192.168.1.121][53916] -> [...40.113.10.47][..443] [TLS.Microsoft][Azure][Cloud][Safe][wdcp.microsoft.com]
detected: [....30] [ip4][..tcp] [..192.168.1.121][53917] -> [...40.113.10.47][..443] [TLS.Microsoft][Azure][Cloud][Safe][wdcp.microsoft.com]
detection-update: [....29] [ip4][..tcp] [..192.168.1.121][53916] -> [...40.113.10.47][..443] [TLS.Microsoft][Azure][Cloud][Safe][wdcp.microsoft.com]
+ RISK: TLS Cert Validity Too Long
detection-update: [....30] [ip4][..tcp] [..192.168.1.121][53917] -> [...40.113.10.47][..443] [TLS.Microsoft][Azure][Cloud][Safe][wdcp.microsoft.com]
+ RISK: TLS Cert Validity Too Long
new: [....31] [ip4][..udp] [..192.168.1.121][65099] -> [..17.253.54.251][..123]
detected: [....31] [ip4][..udp] [..192.168.1.121][65099] -> [..17.253.54.251][..123] [NTP][Apple][System][Acceptable]
+ RISK: Unidirectional Traffic
new: [....32] [ip4][..tcp] [..192.168.1.121][53918] -> [...40.113.10.47][..443]
new: [....33] [ip4][..tcp] [..192.168.1.121][53919] -> [...40.113.10.47][..443]
detected: [....32] [ip4][..tcp] [..192.168.1.121][53918] -> [...40.113.10.47][..443] [TLS.Microsoft][Azure][Cloud][Safe][wdcp.microsoft.com]
detected: [....33] [ip4][..tcp] [..192.168.1.121][53919] -> [...40.113.10.47][..443] [TLS.Microsoft][Azure][Cloud][Safe][wdcp.microsoft.com]
detection-update: [....32] [ip4][..tcp] [..192.168.1.121][53918] -> [...40.113.10.47][..443] [TLS.Microsoft][Azure][Cloud][Safe][wdcp.microsoft.com]
+ RISK: TLS Cert Validity Too Long
detection-update: [....33] [ip4][..tcp] [..192.168.1.121][53919] -> [...40.113.10.47][..443] [TLS.Microsoft][Azure][Cloud][Safe][wdcp.microsoft.com]
+ RISK: TLS Cert Validity Too Long
new: [....34] [ip4][..udp] [..192.168.1.121][56865] -> [..17.253.54.251][..123]
detected: [....34] [ip4][..udp] [..192.168.1.121][56865] -> [..17.253.54.251][..123] [NTP][Apple][System][Acceptable]
+ RISK: Unidirectional Traffic
new: [....35] [ip4][..tcp] [.130.211.33.145][..443] -> [..192.168.1.121][53432] [MIDSTREAM]
detected: [....35] [ip4][..tcp] [.130.211.33.145][..443] -> [..192.168.1.121][53432] [TLS][GoogleCloud][Web][Safe]
+ RISK: Unidirectional Traffic
idle: [....11] [ip4][..udp] [..192.168.1.121][65492] -> [........8.8.8.8][...53] [DNS.Azure][Google][Network][Acceptable]
idle: [.....8] [ip4][....2] [..192.168.1.139] -> [....224.0.0.251] [IGMP][Unknown][Network][Acceptable]
idle: [.....7] [ip4][....2] [..192.168.1.139] -> [......224.0.0.2] [IGMP][Unknown][Network][Acceptable]
end: [....18] [ip4][..tcp] [..192.168.1.121][53912] -> [....2.22.33.235][...80] [HTTP.Microsoft][Unknown][Download][Safe]
- RISK: Binary App Transfer
+ RISK: Binary App Transfer, HTTP Susp Header
end: [....19] [ip4][..tcp] [..192.168.1.121][53913] -> [....2.22.33.235][...80] [HTTP.Microsoft][Unknown][Download][Safe]
- RISK: Binary App Transfer
+ RISK: Binary App Transfer, HTTP Susp Header
idle: [....14] [ip4][..udp] [..192.168.1.121][51364] -> [........8.8.8.8][...53] [DNS.Microsoft][Google][Network][Safe]
idle: [.....9] [ip4][..udp] [..192.168.1.121][55567] -> [........8.8.8.8][...53] [DNS.Microsoft][Google][Network][Safe]
idle: [....16] [ip4][..udp] [..192.168.1.121][55578] -> [........8.8.8.8][...53] [DNS][Google][Network][Acceptable]
idle: [....28] [ip4][..udp] [..192.168.1.121][50288] -> [..17.253.54.251][..123] [NTP][Apple][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][..udp] [..192.168.1.121][.5353] -> [..192.168.1.139][.5353] [MDNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..udp] [..192.168.1.139][.5353] -> [....224.0.0.251][.5353]
idle: [....10] [ip4][..udp] [..192.168.1.121][53884] -> [........8.8.8.8][...53] [DNS.Microsoft][Google][Network][Safe]
idle: [....23] [ip4][..udp] [..192.168.1.121][51998] -> [........8.8.8.8][...53] [DNS][Google][Network][Acceptable]
idle: [....15] [ip4][..udp] [..192.168.1.121][58161] -> [........8.8.8.8][...53] [DNS.Microsoft][Google][Network][Safe]
idle: [....34] [ip4][..udp] [..192.168.1.121][56865] -> [..17.253.54.251][..123] [NTP][Apple][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....31] [ip4][..udp] [..192.168.1.121][65099] -> [..17.253.54.251][..123] [NTP][Apple][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [..192.168.1.121][52251] -> [........8.8.8.8][...53] [DNS][Google][Network][Acceptable]
+ RISK: Error Code
idle: [....25] [ip4][..tcp] [..192.168.1.121][53428] -> [...52.98.163.18][..443] [TLS][Outlook][Web][Safe]
idle: [....24] [ip4][..tcp] [..192.168.1.121][53429] -> [...52.98.163.18][..443] [TLS][Outlook][Web][Safe]
guessed: [.....1] [ip4][..tcp] [..192.168.1.121][52746] -> [...52.149.21.60][..443] [TLS][Azure][Web][Safe]
@@ -148,6 +184,7 @@
end: [....32] [ip4][..tcp] [..192.168.1.121][53918] -> [...40.113.10.47][..443]
end: [....33] [ip4][..tcp] [..192.168.1.121][53919] -> [...40.113.10.47][..443]
idle: [....22] [ip4][..udp] [..192.168.1.121][49216] -> [..17.253.54.251][..123] [NTP][Apple][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....35] [ip4][..tcp] [.130.211.33.145][..443] -> [..192.168.1.121][53432]
idle: [.....5] [ip6][..udp] [..............fe80::1059:a858:f9e7:cf94][.5353] -> [...............................ff02::fb][.5353]
end: [....20] [ip4][..tcp] [..192.168.1.121][53905] -> [..140.82.113.26][..443] [TLS][Github][Web][Safe]
diff --git a/test/results/flow-info/tls_cipher_lens.pcap.out b/test/results/flow-info/default/tls_cipher_lens.pcap.out
index d13f88b9f..a7607fe2e 100644
--- a/test/results/flow-info/tls_cipher_lens.pcap.out
+++ b/test/results/flow-info/default/tls_cipher_lens.pcap.out
@@ -3,19 +3,19 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [..192.168.11.11][51587] -> [.173.194.35.191][..443] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [..192.168.11.11][51587] -> [.173.194.35.191][..443] [TLS.Google][Google][Web][Acceptable][www.google.it]
- RISK: Obsolete TLS (v1.1 or older)
+ RISK: Obsolete TLS (v1.1 or older), Unidirectional Traffic
new: [.....2] [ip4][..tcp] [..192.168.11.11][51590] -> [.173.194.35.191][..443] [MIDSTREAM]
detected: [.....2] [ip4][..tcp] [..192.168.11.11][51590] -> [.173.194.35.191][..443] [TLS][Google][Web][Safe][]
- RISK: Obsolete TLS (v1.1 or older)
+ RISK: Obsolete TLS (v1.1 or older), Unidirectional Traffic
new: [.....3] [ip4][..tcp] [..192.168.11.11][51589] -> [.173.194.35.191][..443] [MIDSTREAM]
detected: [.....3] [ip4][..tcp] [..192.168.11.11][51589] -> [.173.194.35.191][..443] [TLS][Google][Web][Safe][]
- RISK: Obsolete TLS (v1.1 or older)
+ RISK: Obsolete TLS (v1.1 or older), Unidirectional Traffic
new: [.....4] [ip4][..tcp] [..192.168.11.11][51588] -> [.173.194.35.191][..443] [MIDSTREAM]
detected: [.....4] [ip4][..tcp] [..192.168.11.11][51588] -> [.173.194.35.191][..443] [TLS][Google][Web][Safe][]
- RISK: Obsolete TLS (v1.1 or older)
+ RISK: Obsolete TLS (v1.1 or older), Unidirectional Traffic
new: [.....5] [ip4][..tcp] [..192.168.11.11][51591] -> [.173.194.35.191][..443] [MIDSTREAM]
detected: [.....5] [ip4][..tcp] [..192.168.11.11][51591] -> [.173.194.35.191][..443] [TLS][Google][Web][Safe][]
- RISK: Obsolete TLS (v1.1 or older)
+ RISK: Obsolete TLS (v1.1 or older), Unidirectional Traffic
idle: [.....1] [ip4][..tcp] [..192.168.11.11][51587] -> [.173.194.35.191][..443]
idle: [.....4] [ip4][..tcp] [..192.168.11.11][51588] -> [.173.194.35.191][..443]
idle: [.....3] [ip4][..tcp] [..192.168.11.11][51589] -> [.173.194.35.191][..443]
diff --git a/test/results/flow-info/tls_client_certificate_with_missing_server_one.pcapng.out b/test/results/flow-info/default/tls_client_certificate_with_missing_server_one.pcapng.out
index 9920b8d41..9920b8d41 100644
--- a/test/results/flow-info/tls_client_certificate_with_missing_server_one.pcapng.out
+++ b/test/results/flow-info/default/tls_client_certificate_with_missing_server_one.pcapng.out
diff --git a/test/results/flow-info/tls_esni_sni_both.pcap.out b/test/results/flow-info/default/tls_esni_sni_both.pcap.out
index 6f35b9862..e65574a95 100644
--- a/test/results/flow-info/tls_esni_sni_both.pcap.out
+++ b/test/results/flow-info/default/tls_esni_sni_both.pcap.out
@@ -3,14 +3,14 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [...192.168.1.21][55500] -> [..104.17.175.85][..443]
detected: [.....1] [ip4][..tcp] [...192.168.1.21][55500] -> [..104.17.175.85][..443] [TLS][Cloudflare][Web][Safe][these-are-not-the-droids-youre-looking-for.com]
- RISK: TLS (probably) Not Carrying HTTPS, TLS Suspicious ESNI Usage
+ RISK: TLS (probably) Not Carrying HTTPS, TLS Susp ESNI Usage
detection-update: [.....1] [ip4][..tcp] [...192.168.1.21][55500] -> [..104.17.175.85][..443] [TLS][Cloudflare][Web][Safe][these-are-not-the-droids-youre-looking-for.com]
- RISK: TLS (probably) Not Carrying HTTPS, TLS Suspicious ESNI Usage
+ RISK: TLS (probably) Not Carrying HTTPS, TLS Susp ESNI Usage
new: [.....2] [ip4][..tcp] [...192.168.1.21][55514] -> [..104.17.175.85][..443]
detected: [.....2] [ip4][..tcp] [...192.168.1.21][55514] -> [..104.17.175.85][..443] [TLS][Cloudflare][Web][Safe][you-think-thats-normal-tls-traffic-youre-seeing.com]
- RISK: TLS (probably) Not Carrying HTTPS, TLS Suspicious ESNI Usage
+ RISK: TLS (probably) Not Carrying HTTPS, TLS Susp ESNI Usage
detection-update: [.....2] [ip4][..tcp] [...192.168.1.21][55514] -> [..104.17.175.85][..443] [TLS][Cloudflare][Web][Safe][you-think-thats-normal-tls-traffic-youre-seeing.com]
- RISK: TLS (probably) Not Carrying HTTPS, TLS Suspicious ESNI Usage
+ RISK: TLS (probably) Not Carrying HTTPS, TLS Susp ESNI Usage
end: [.....1] [ip4][..tcp] [...192.168.1.21][55500] -> [..104.17.175.85][..443]
end: [.....2] [ip4][..tcp] [...192.168.1.21][55514] -> [..104.17.175.85][..443]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/tls_false_positives.pcapng.out b/test/results/flow-info/default/tls_false_positives.pcapng.out
index ca5e6bc9a..ca5e6bc9a 100644
--- a/test/results/flow-info/tls_false_positives.pcapng.out
+++ b/test/results/flow-info/default/tls_false_positives.pcapng.out
diff --git a/test/results/flow-info/tls_invalid_reads.pcap.out b/test/results/flow-info/default/tls_invalid_reads.pcap.out
index 70eacbf70..98089627a 100644
--- a/test/results/flow-info/tls_invalid_reads.pcap.out
+++ b/test/results/flow-info/default/tls_invalid_reads.pcap.out
@@ -19,5 +19,6 @@
ERROR-EVENT: Unknown packet type [2/16]
ERROR-EVENT: Unknown packet type [3/16]
guessed: [.....2] [ip4][..tcp] [...74.80.160.99][.3258] -> [...67.217.77.28][..443] [TLS][GoTo][Web][Safe]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..tcp] [...74.80.160.99][.3258] -> [...67.217.77.28][..443]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/tls_long_cert.pcap.out b/test/results/flow-info/default/tls_long_cert.pcap.out
index c7a1a3e07..c7a1a3e07 100644
--- a/test/results/flow-info/tls_long_cert.pcap.out
+++ b/test/results/flow-info/default/tls_long_cert.pcap.out
diff --git a/test/results/flow-info/tls_missing_ch_frag.pcap.out b/test/results/flow-info/default/tls_missing_ch_frag.pcap.out
index c404591de..c404591de 100644
--- a/test/results/flow-info/tls_missing_ch_frag.pcap.out
+++ b/test/results/flow-info/default/tls_missing_ch_frag.pcap.out
diff --git a/test/results/flow-info/tls_multiple_synack_different_seq.pcapng.out b/test/results/flow-info/default/tls_multiple_synack_different_seq.pcapng.out
index 6eaad9e20..6eaad9e20 100644
--- a/test/results/flow-info/tls_multiple_synack_different_seq.pcapng.out
+++ b/test/results/flow-info/default/tls_multiple_synack_different_seq.pcapng.out
diff --git a/test/results/flow-info/tls_port_80.pcapng.out b/test/results/flow-info/default/tls_port_80.pcapng.out
index 906c2d72b..906c2d72b 100644
--- a/test/results/flow-info/tls_port_80.pcapng.out
+++ b/test/results/flow-info/default/tls_port_80.pcapng.out
diff --git a/test/results/flow-info/tls_torrent.pcapng.out b/test/results/flow-info/default/tls_torrent.pcapng.out
index c54d0ae65..c54d0ae65 100644
--- a/test/results/flow-info/tls_torrent.pcapng.out
+++ b/test/results/flow-info/default/tls_torrent.pcapng.out
diff --git a/test/results/flow-info/tls_unidirectional.pcap.out b/test/results/flow-info/default/tls_unidirectional.pcap.out
index cd15c0cc7..402647bf6 100644
--- a/test/results/flow-info/tls_unidirectional.pcap.out
+++ b/test/results/flow-info/default/tls_unidirectional.pcap.out
@@ -3,14 +3,14 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [.142.250.27.188][.5228] -> [...10.140.72.24][12654]
detected: [.....1] [ip4][..tcp] [.142.250.27.188][.5228] -> [...10.140.72.24][12654] [TLS][Google][Web][Safe][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
detection-update: [.....1] [ip4][..tcp] [.142.250.27.188][.5228] -> [...10.140.72.24][12654] [TLS.Google][Google][Web][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
DAEMON-EVENT: [Processed: 6 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 1|updates: 0]
new: [.....2] [ip4][..tcp] [..192.168.1.128][48260] -> [195.181.174.176][..443]
detected: [.....2] [ip4][..tcp] [..192.168.1.128][48260] -> [195.181.174.176][..443] [TLS.AnyDesk][Unknown][RemoteAccess][Acceptable][]
- RISK: Missing SNI TLS Extn, Desktop/File Sharing, Uncommon TLS ALPN
+ RISK: Missing SNI TLS Extn, Desktop/File Sharing, Uncommon TLS ALPN, Unidirectional Traffic
idle: [.....1] [ip4][..tcp] [.142.250.27.188][.5228] -> [...10.140.72.24][12654]
idle: [.....2] [ip4][..tcp] [..192.168.1.128][48260] -> [195.181.174.176][..443]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/tls_verylong_certificate.pcap.out b/test/results/flow-info/default/tls_verylong_certificate.pcap.out
index 2b5e71b30..2b5e71b30 100644
--- a/test/results/flow-info/tls_verylong_certificate.pcap.out
+++ b/test/results/flow-info/default/tls_verylong_certificate.pcap.out
diff --git a/test/results/flow-info/toca-boca.pcap.out b/test/results/flow-info/default/toca-boca.pcap.out
index b3978a1a7..99ba6373e 100644
--- a/test/results/flow-info/toca-boca.pcap.out
+++ b/test/results/flow-info/default/toca-boca.pcap.out
@@ -3,90 +3,133 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [..192.168.2.100][50173] -> [..91.199.81.225][.5055]
detected: [.....1] [ip4][..udp] [..192.168.2.100][50173] -> [..91.199.81.225][.5055] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 15 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....2] [ip4][..udp] [..192.168.2.100][42022] -> [...92.38.154.49][.5055]
detected: [.....2] [ip4][..udp] [..192.168.2.100][42022] -> [...92.38.154.49][.5055] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [..192.168.2.100][50173] -> [..91.199.81.225][.5055] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 16 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 2|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....3] [ip4][..udp] [..192.168.2.100][55544] -> [...92.38.154.49][.5055]
detected: [.....3] [ip4][..udp] [..192.168.2.100][55544] -> [...92.38.154.49][.5055] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [..192.168.2.100][42022] -> [...92.38.154.49][.5055] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..udp] [...92.38.154.49][.5055] -> [..192.168.2.100][32867]
detected: [.....4] [ip4][..udp] [...92.38.154.49][.5055] -> [..192.168.2.100][32867] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 32 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 4|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....5] [ip4][..udp] [..192.168.2.100][54983] -> [..91.199.81.123][.5055]
detected: [.....5] [ip4][..udp] [..192.168.2.100][54983] -> [..91.199.81.123][.5055] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [.....6] [ip4][..udp] [..91.199.81.130][.5055] -> [..192.168.2.100][43064]
detected: [.....6] [ip4][..udp] [..91.199.81.130][.5055] -> [..192.168.2.100][43064] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..udp] [...92.38.154.49][.5055] -> [..192.168.2.100][32867] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [..192.168.2.100][55544] -> [...92.38.154.49][.5055] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [.....7] [ip4][..udp] [..192.168.2.100][44818] -> [..91.199.81.123][.5055]
detected: [.....7] [ip4][..udp] [..192.168.2.100][44818] -> [..91.199.81.123][.5055] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
update: [.....5] [ip4][..udp] [..192.168.2.100][54983] -> [..91.199.81.123][.5055] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
update: [.....6] [ip4][..udp] [..91.199.81.130][.5055] -> [..192.168.2.100][43064] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [.....8] [ip4][..udp] [..91.199.81.123][.5055] -> [..192.168.2.100][60837]
detected: [.....8] [ip4][..udp] [..91.199.81.123][.5055] -> [..192.168.2.100][60837] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....5] [ip4][..udp] [..192.168.2.100][54983] -> [..91.199.81.123][.5055] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....7] [ip4][..udp] [..192.168.2.100][44818] -> [..91.199.81.123][.5055] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][..udp] [..91.199.81.130][.5055] -> [..192.168.2.100][43064] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [.....9] [ip4][..udp] [..192.168.2.100][37218] -> [..91.199.81.123][.5055]
detected: [.....9] [ip4][..udp] [..192.168.2.100][37218] -> [..91.199.81.123][.5055] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
update: [.....8] [ip4][..udp] [..91.199.81.123][.5055] -> [..192.168.2.100][60837] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 51 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 9|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 3]
new: [....10] [ip4][..udp] [..91.199.81.123][.5055] -> [..192.168.2.100][33311]
detected: [....10] [ip4][..udp] [..91.199.81.123][.5055] -> [..192.168.2.100][33311] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....8] [ip4][..udp] [..91.199.81.123][.5055] -> [..192.168.2.100][60837] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [.....9] [ip4][..udp] [..192.168.2.100][37218] -> [..91.199.81.123][.5055] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 52 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 10|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 3]
new: [....11] [ip4][..udp] [..91.199.81.123][.5055] -> [..192.168.2.100][40290]
detected: [....11] [ip4][..udp] [..91.199.81.123][.5055] -> [..192.168.2.100][40290] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....10] [ip4][..udp] [..91.199.81.123][.5055] -> [..192.168.2.100][33311] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....12] [ip4][..udp] [..192.168.2.100][33024] -> [..91.199.81.123][.5055]
detected: [....12] [ip4][..udp] [..192.168.2.100][33024] -> [..91.199.81.123][.5055] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....11] [ip4][..udp] [..91.199.81.123][.5055] -> [..192.168.2.100][40290] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....13] [ip4][..udp] [..192.168.2.100][56864] -> [..91.199.81.123][.5055]
detected: [....13] [ip4][..udp] [..192.168.2.100][56864] -> [..91.199.81.123][.5055] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 55 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 13|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 3]
new: [....14] [ip4][..udp] [..192.168.2.100][50600] -> [..91.199.81.123][.5055]
detected: [....14] [ip4][..udp] [..192.168.2.100][50600] -> [..91.199.81.123][.5055] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....13] [ip4][..udp] [..192.168.2.100][56864] -> [..91.199.81.123][.5055] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....12] [ip4][..udp] [..192.168.2.100][33024] -> [..91.199.81.123][.5055] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....15] [ip4][..udp] [..192.168.2.100][35671] -> [..91.199.81.123][.5055]
detected: [....15] [ip4][..udp] [..192.168.2.100][35671] -> [..91.199.81.123][.5055] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
update: [....14] [ip4][..udp] [..192.168.2.100][50600] -> [..91.199.81.123][.5055] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
new: [....16] [ip4][..udp] [..91.199.81.123][.5055] -> [..192.168.2.100][37167]
idle: [....14] [ip4][..udp] [..192.168.2.100][50600] -> [..91.199.81.123][.5055] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
update: [....15] [ip4][..udp] [..192.168.2.100][35671] -> [..91.199.81.123][.5055] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 72 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 16|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 5]
new: [....17] [ip4][..udp] [..91.199.81.122][.5055] -> [..192.168.2.100][34503]
detected: [....17] [ip4][..udp] [..91.199.81.122][.5055] -> [..192.168.2.100][34503] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
guessed: [....16] [ip4][..udp] [..91.199.81.123][.5055] -> [..192.168.2.100][37167] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....16] [ip4][..udp] [..91.199.81.123][.5055] -> [..192.168.2.100][37167]
idle: [....15] [ip4][..udp] [..192.168.2.100][35671] -> [..91.199.81.123][.5055] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 73 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 17|skipped: 0|!detected: 0|guessed: 1|detection-updates: 0|updates: 5]
new: [....18] [ip4][..udp] [..91.199.81.225][.5055] -> [..192.168.2.100][50337]
idle: [....17] [ip4][..udp] [..91.199.81.122][.5055] -> [..192.168.2.100][34503] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 74 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 18|skipped: 0|!detected: 0|guessed: 1|detection-updates: 0|updates: 5]
new: [....19] [ip4][..udp] [..91.199.81.122][.5055] -> [..192.168.2.100][56920]
new: [....20] [ip4][..udp] [..192.168.2.100][45096] -> [..91.199.81.208][.5055]
detected: [....20] [ip4][..udp] [..192.168.2.100][45096] -> [..91.199.81.208][.5055] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
guessed: [....18] [ip4][..udp] [..91.199.81.225][.5055] -> [..192.168.2.100][50337] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....18] [ip4][..udp] [..91.199.81.225][.5055] -> [..192.168.2.100][50337]
DAEMON-EVENT: [Processed: 76 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 20|skipped: 0|!detected: 0|guessed: 2|detection-updates: 0|updates: 5]
new: [....21] [ip4][..udp] [..91.199.81.225][.5055] -> [..192.168.2.100][43151]
guessed: [....19] [ip4][..udp] [..91.199.81.122][.5055] -> [..192.168.2.100][56920] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....19] [ip4][..udp] [..91.199.81.122][.5055] -> [..192.168.2.100][56920]
idle: [....20] [ip4][..udp] [..192.168.2.100][45096] -> [..91.199.81.208][.5055] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
guessed: [....21] [ip4][..udp] [..91.199.81.225][.5055] -> [..192.168.2.100][43151] [TocaBoca][Unknown][Game][Fun]
+ RISK: Unidirectional Traffic
idle: [....21] [ip4][..udp] [..91.199.81.225][.5055] -> [..192.168.2.100][43151]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/tor.pcap.out b/test/results/flow-info/default/tor.pcap.out
index f5e51f8b9..e695c257a 100644
--- a/test/results/flow-info/tor.pcap.out
+++ b/test/results/flow-info/default/tor.pcap.out
@@ -8,19 +8,19 @@
detected: [.....1] [ip4][..tcp] [..192.168.1.252][51110] -> [..91.143.93.242][..443] [TLS][Unknown][Web][Safe][www.ct7ctrgb6cr7.com]
RISK: Obsolete TLS (v1.1 or older)
detection-update: [.....1] [ip4][..tcp] [..192.168.1.252][51110] -> [..91.143.93.242][..443] [TLS][Unknown][Web][Safe][www.ct7ctrgb6cr7.com]
- RISK: Obsolete TLS (v1.1 or older)
+ RISK: Obsolete TLS (v1.1 or older), TLS Cert About To Expire
ERROR-EVENT: Unknown packet type [4/16]
new: [.....2] [ip4][..tcp] [..192.168.1.252][51111] -> [....46.59.52.31][..443]
detected: [.....2] [ip4][..tcp] [..192.168.1.252][51111] -> [....46.59.52.31][..443] [TLS.Tor][Unknown][VPN][Potentially Dangerous][www.e6r5p57kbafwrxj3plz.com]
- RISK: Obsolete TLS (v1.1 or older), Suspicious DGA Domain name, Unsafe Protocol
+ RISK: Obsolete TLS (v1.1 or older), Susp DGA Domain name, Unsafe Protocol
detection-update: [.....2] [ip4][..tcp] [..192.168.1.252][51111] -> [....46.59.52.31][..443] [TLS.Tor][Unknown][VPN][Potentially Dangerous][www.e6r5p57kbafwrxj3plz.com]
- RISK: Obsolete TLS (v1.1 or older), Suspicious DGA Domain name, Unsafe Protocol
+ RISK: Obsolete TLS (v1.1 or older), Susp DGA Domain name, Unsafe Protocol
ERROR-EVENT: Unknown packet type [5/16]
new: [.....3] [ip4][..tcp] [..192.168.1.252][51112] -> [...38.229.70.53][..443]
detected: [.....3] [ip4][..tcp] [..192.168.1.252][51112] -> [...38.229.70.53][..443] [TLS.Tor][Unknown][VPN][Potentially Dangerous][www.q4cyamnc6mtokjurvdclt.com]
- RISK: Obsolete TLS (v1.1 or older), Suspicious DGA Domain name, Unsafe Protocol
+ RISK: Obsolete TLS (v1.1 or older), Susp DGA Domain name, Unsafe Protocol
detection-update: [.....3] [ip4][..tcp] [..192.168.1.252][51112] -> [...38.229.70.53][..443] [TLS.Tor][Unknown][VPN][Potentially Dangerous][www.q4cyamnc6mtokjurvdclt.com]
- RISK: Obsolete TLS (v1.1 or older), Suspicious DGA Domain name, Unsafe Protocol
+ RISK: Obsolete TLS (v1.1 or older), Susp DGA Domain name, Unsafe Protocol
ERROR-EVENT: Unknown packet type [6/16]
ERROR-EVENT: Unknown packet type [7/16]
new: [.....4] [ip4][..udp] [....192.168.1.1][17500] -> [..192.168.1.255][17500]
@@ -79,11 +79,11 @@
detected: [.....7] [ip4][..tcp] [..192.168.1.252][51174] -> [.212.83.155.250][..443] [TLS][Unknown][Web][Safe][www.t3i3ru.com]
RISK: Obsolete TLS (v1.1 or older)
detected: [.....8] [ip4][..tcp] [..192.168.1.252][51175] -> [..91.143.93.242][..443] [TLS.Tor][Unknown][VPN][Potentially Dangerous][www.gfu7hbxpfp.com]
- RISK: Obsolete TLS (v1.1 or older), Suspicious DGA Domain name, Unsafe Protocol
+ RISK: Obsolete TLS (v1.1 or older), Susp DGA Domain name, Unsafe Protocol
detection-update: [.....7] [ip4][..tcp] [..192.168.1.252][51174] -> [.212.83.155.250][..443] [TLS][Unknown][Web][Safe][www.t3i3ru.com]
- RISK: Obsolete TLS (v1.1 or older)
+ RISK: Obsolete TLS (v1.1 or older), TLS Cert About To Expire
detection-update: [.....8] [ip4][..tcp] [..192.168.1.252][51175] -> [..91.143.93.242][..443] [TLS.Tor][Unknown][VPN][Potentially Dangerous][www.gfu7hbxpfp.com]
- RISK: Obsolete TLS (v1.1 or older), Suspicious DGA Domain name, Unsafe Protocol
+ RISK: Obsolete TLS (v1.1 or older), Susp DGA Domain name, Unsafe Protocol, TLS Cert About To Expire
ERROR-EVENT: Unknown packet type [4/16]
new: [.....9] [ip4][..tcp] [..192.168.1.252][51176] -> [...38.229.70.53][..443]
detected: [.....9] [ip4][..tcp] [..192.168.1.252][51176] -> [...38.229.70.53][..443] [TLS][Unknown][Web][Safe][www.jmts2id.com]
@@ -102,15 +102,14 @@
[ENTROPIES...: 4.5,4.9,4.4,5.4,4.8,7.4,6.7,5.9,6.1,7.8,6.6,4.4,7.7,4.8,7.7,4.7,7.7,7.6,4.7,7.6,7.6,4.7,7.7,4.4,7.7,4.8,7.6,7.7,4.8,7.7,7.7,4.7]
ERROR-EVENT: Unknown packet type [5/16]
end: [.....1] [ip4][..tcp] [..192.168.1.252][51110] -> [..91.143.93.242][..443] [TLS][Unknown][Web][Safe]
- RISK: Obsolete TLS (v1.1 or older)
+ RISK: Obsolete TLS (v1.1 or older), TLS Cert About To Expire
idle: [.....5] [ip4][..udp] [..192.168.1.252][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
guessed: [.....6] [ip4][..tcp] [..192.168.1.252][51104] -> [...157.56.30.46][..443] [TLS][Azure][Web][Safe]
+ RISK: Unidirectional Traffic
end: [.....6] [ip4][..tcp] [..192.168.1.252][51104] -> [...157.56.30.46][..443]
end: [.....2] [ip4][..tcp] [..192.168.1.252][51111] -> [....46.59.52.31][..443] [TLS.Tor][Unknown][VPN][Potentially Dangerous]
- RISK: Obsolete TLS (v1.1 or older), Suspicious DGA Domain name, Unsafe Protocol
- end: [.....3] [ip4][..tcp] [..192.168.1.252][51112] -> [...38.229.70.53][..443] [TLS.Tor][Unknown][VPN][Potentially Dangerous]
- RISK: Obsolete TLS (v1.1 or older), Suspicious DGA Domain name, Unsafe Protocol
+ RISK: Obsolete TLS (v1.1 or older), Susp DGA Domain name, Unsafe Protocol
update: [.....4] [ip4][..udp] [....192.168.1.1][17500] -> [..192.168.1.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
ERROR-EVENT: Unknown packet type [6/16]
ERROR-EVENT: Unknown packet type [7/16]
@@ -132,8 +131,8 @@
new: [....11] [ip6][..udp] [..............fe80::c583:1972:5728:7323][..546] -> [..............................ff02::1:2][..547]
detected: [....11] [ip6][..udp] [..............fe80::c583:1972:5728:7323][..546] -> [..............................ff02::1:2][..547] [DHCPV6][Unknown][Network][Acceptable]
update: [.....4] [ip4][..udp] [....192.168.1.1][17500] -> [..192.168.1.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
- DAEMON-EVENT: [Processed: 1873 pkts][ZLib][compressions: 0|diff: 0 / 0]
- DAEMON-EVENT: [Flows][active: 6 / 11|skipped: 0|!detected: 0|guessed: 1|detection-updates: 7|updates: 5]
+ DAEMON-EVENT: [Processed: 337 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 7 / 11|skipped: 0|!detected: 0|guessed: 1|detection-updates: 7|updates: 5]
analyse: [.....7] [ip4][..tcp] [..192.168.1.252][51174] -> [.212.83.155.250][..443] [TLS][Unknown][Web][Safe]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 72.890| 8.727| 22.569| 509351076.823| 2.100]
@@ -146,13 +145,15 @@
[ENTROPIES...: 4.5,4.9,4.4,5.3,4.8,7.4,6.7,6.0,6.2,7.9,6.5,4.4,7.7,4.8,7.6,4.9,7.7,7.7,7.6,7.7,7.6,4.5,7.7,4.9,7.6,4.5,7.7,4.5,4.5,4.7,4.7,4.5]
update: [....11] [ip6][..udp] [..............fe80::c583:1972:5728:7323][..546] -> [..............................ff02::1:2][..547] [DHCPV6][Unknown][Network][Acceptable]
end: [.....8] [ip4][..tcp] [..192.168.1.252][51175] -> [..91.143.93.242][..443] [TLS.Tor][Unknown][VPN][Potentially Dangerous]
- RISK: Obsolete TLS (v1.1 or older), Suspicious DGA Domain name, Unsafe Protocol
+ RISK: Obsolete TLS (v1.1 or older), Susp DGA Domain name, Unsafe Protocol, TLS Cert About To Expire
idle: [.....4] [ip4][..udp] [....192.168.1.1][17500] -> [..192.168.1.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
idle: [....11] [ip6][..udp] [..............fe80::c583:1972:5728:7323][..546] -> [..............................ff02::1:2][..547] [DHCPV6][Unknown][Network][Acceptable]
end: [....10] [ip4][..tcp] [..192.168.1.252][51185] -> [.62.210.137.230][..443] [TLS][Unknown][Web][Safe]
RISK: Obsolete TLS (v1.1 or older)
end: [.....7] [ip4][..tcp] [..192.168.1.252][51174] -> [.212.83.155.250][..443] [TLS][Unknown][Web][Safe]
- RISK: Obsolete TLS (v1.1 or older)
+ RISK: Obsolete TLS (v1.1 or older), TLS Cert About To Expire
+ idle: [.....3] [ip4][..tcp] [..192.168.1.252][51112] -> [...38.229.70.53][..443] [TLS.Tor][Unknown][VPN][Potentially Dangerous]
+ RISK: Obsolete TLS (v1.1 or older), Susp DGA Domain name, Unsafe Protocol
idle: [.....9] [ip4][..tcp] [..192.168.1.252][51176] -> [...38.229.70.53][..443] [TLS][Unknown][Web][Safe]
RISK: Obsolete TLS (v1.1 or older)
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/tplink_shp.pcap.out b/test/results/flow-info/default/tplink_shp.pcap.out
index e72308fa9..e72308fa9 100644
--- a/test/results/flow-info/tplink_shp.pcap.out
+++ b/test/results/flow-info/default/tplink_shp.pcap.out
diff --git a/test/results/flow-info/trickbot.pcap.out b/test/results/flow-info/default/trickbot.pcap.out
index e54de70e7..5d3d8b848 100644
--- a/test/results/flow-info/trickbot.pcap.out
+++ b/test/results/flow-info/default/trickbot.pcap.out
@@ -3,9 +3,9 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [...10.12.29.101][61318] -> [.82.118.225.196][.7080]
detected: [.....1] [ip4][..tcp] [...10.12.29.101][61318] -> [.82.118.225.196][.7080] [HTTP][Unknown][Web][Acceptable][82.118.225.196]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI
detection-update: [.....1] [ip4][..tcp] [...10.12.29.101][61318] -> [.82.118.225.196][.7080] [HTTP][Unknown][Web][Acceptable][82.118.225.196]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address, HTTP Suspicious Content
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Content
analyse: [.....1] [ip4][..tcp] [...10.12.29.101][61318] -> [.82.118.225.196][.7080] [HTTP][Unknown][Web][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.931| 0.157| 0.258| 66793.452| 3.300]
@@ -17,5 +17,5 @@
[PKTLENS.....: 52,44,40,389,968,40,40,1398,40,1398,40,1500,1323,40,1500,1500,1500,1500,1500,1500,1500,1500,1500,1500,1500,276,40,1398,40,1500,1500,1194]
[ENTROPIES...: 4.8,4.9,4.8,5.8,6.0,4.8,4.8,7.8,4.9,7.8,4.9,7.9,7.9,4.9,7.9,7.9,7.9,7.9,7.9,7.9,7.9,7.9,7.9,7.9,7.9,7.3,4.9,7.9,4.9,7.9,7.9,7.9]
end: [.....1] [ip4][..tcp] [...10.12.29.101][61318] -> [.82.118.225.196][.7080] [HTTP][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port, HTTP Numeric IP Address, HTTP Suspicious Content
+ RISK: Known Proto on Non Std Port, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Content
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/tumblr.pcap.out b/test/results/flow-info/default/tumblr.pcap.out
index de2fc8a64..f7e670e87 100644
--- a/test/results/flow-info/tumblr.pcap.out
+++ b/test/results/flow-info/default/tumblr.pcap.out
@@ -6,10 +6,13 @@
new: [.....3] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56640] -> [.....................64:ff9b::9765:798c][..443] [MIDSTREAM]
new: [.....4] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][41266] -> [....2620:116:800d:21:8c6e:cf2c:8d6:9fb5][..443] [MIDSTREAM]
detected: [.....4] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][41266] -> [....2620:116:800d:21:8c6e:cf2c:8d6:9fb5][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
new: [.....5] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][57286] -> [.....................64:ff9b::8fcc:d927][..443] [MIDSTREAM]
detected: [.....5] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][57286] -> [.....................64:ff9b::8fcc:d927][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
new: [.....6] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][42908] -> [.....................64:ff9b::98c7:1593][..443] [MIDSTREAM]
detected: [.....6] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][42908] -> [.....................64:ff9b::98c7:1593][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
new: [.....7] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56782] -> [.....................64:ff9b::68f4:2ac8][..443] [MIDSTREAM]
analyse: [.....6] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][42908] -> [.....................64:ff9b::98c7:1593][..443] [TLS][Unknown][Web][Safe]
min| max| avg| stddev| variance| entropy
@@ -23,20 +26,11 @@
[ENTROPIES...: 7.5,6.0,6.0,5.1,5.1,5.1,5.8,5.2,7.8,5.2,5.9,6.7,5.0,5.1,7.9,5.2,5.4,7.9,7.9,7.9,7.8,7.7,7.8,7.9,5.2,5.2,5.2,5.2,5.2,5.2,5.2,5.2]
new: [.....8] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][43420] -> [.....................64:ff9b::c000:4d28][..443] [MIDSTREAM]
detected: [.....8] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][43420] -> [.....................64:ff9b::c000:4d28][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
new: [.....9] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][43434] -> [.....................64:ff9b::c000:4d28][..443] [MIDSTREAM]
detected: [.....9] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][43434] -> [.....................64:ff9b::c000:4d28][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
new: [....10] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][58380] -> [..2606:2800:135:155a:23ba:b2a:25ff:122d][..443]
- analyse: [.....8] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][43420] -> [.....................64:ff9b::c000:4d28][..443]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.037| 0.003| 0.008| 65.352| 2.700]
- [PKTLEN......: 72.000| 1472.000| 458.500| 599.100| 358951.000| 3.900]
- [BINS(c->s)..: 14,0,0,0,1,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 6,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,8,0,0,0,0]
- [DIRECTIONS..: 0,0,1,1,1,0,1,1,0,0,1,0,1,0,1,1,0,0,1,0,1,0,1,0,1,0,1,1,0,0,1,0]
- [IATS(ms)....: 0.5,25.9,1.1,10.6,37.1,1.9,0.0,1.9,0.0,0.7,0.7,9.9,9.9,0.1,0.0,0.1,0.0,0.2,0.2,0.1,0.1,0.3,0.3,0.1,0.1,0.5,0.0,0.5,0.0,0.1,0.1]
- [PKTLENS.....: 232,223,72,72,891,72,111,1460,72,72,84,72,1472,72,1472,1460,72,72,84,72,1472,72,1472,72,1460,72,84,1460,72,72,84,72]
- [ENTROPIES...: 7.0,6.8,5.0,5.0,7.7,5.3,5.9,7.9,5.3,5.3,5.4,5.3,7.9,5.3,7.9,7.8,5.2,5.3,5.4,5.3,7.9,5.2,7.9,5.2,7.9,5.2,5.3,7.8,5.3,5.3,5.4,5.3]
- detection-update: [.....8] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][43420] -> [.....................64:ff9b::c000:4d28][..443] [TLS][Unknown][Web][Safe]
detected: [....10] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][58380] -> [..2606:2800:135:155a:23ba:b2a:25ff:122d][..443] [TLS][Unknown][Web][Safe][consent.cmp.oath.com]
analyse: [.....9] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][43434] -> [.....................64:ff9b::c000:4d28][..443]
min| max| avg| stddev| variance| entropy
@@ -65,11 +59,12 @@
[ENTROPIES...: 5.3,5.6,5.6,4.6,5.5,6.2,5.5,5.0,5.5,7.8,7.9,7.8,5.6,5.5,5.6,7.6,5.6,7.8,5.6,6.6,6.7,7.3,6.3,5.5,5.5,5.4,5.5,7.3,7.3,6.5,5.6,5.6]
new: [....12] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][39152] -> [......................64:ff9b::6006:749][..443]
new: [....13] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][47118] -> [.................2001:4998:14:800::1001][..443]
- detected: [....12] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][39152] -> [......................64:ff9b::6006:749][..443] [TLS][Unknown][Advertisement][Safe][sb.scorecardresearch.com]
+ detected: [....12] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][39152] -> [......................64:ff9b::6006:749][..443] [TLS.ADS_Analytic_Track][Unknown][Advertisement][Tracker/Ads][sb.scorecardresearch.com]
detected: [....13] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][47118] -> [.................2001:4998:14:800::1001][..443] [TLS.Yahoo][Unknown][Web][Safe][cookiex.ngd.yahoo.com]
- detection-update: [....12] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][39152] -> [......................64:ff9b::6006:749][..443] [TLS][Unknown][Advertisement][Safe][sb.scorecardresearch.com]
+ detection-update: [....12] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][39152] -> [......................64:ff9b::6006:749][..443] [TLS.ADS_Analytic_Track][Unknown][Advertisement][Tracker/Ads][sb.scorecardresearch.com]
new: [....14] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56794] -> [.....................64:ff9b::c000:4d03][..443] [MIDSTREAM]
detected: [....14] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56794] -> [.....................64:ff9b::c000:4d03][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
analyse: [....14] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56794] -> [.....................64:ff9b::c000:4d03][..443]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.037| 0.003| 0.009| 73.545| 2.400]
@@ -83,6 +78,7 @@
detection-update: [....14] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56794] -> [.....................64:ff9b::c000:4d03][..443] [TLS][Unknown][Web][Safe]
new: [....15] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][51874] -> [.....................64:ff9b::c000:4c03][..443] [MIDSTREAM]
detected: [....15] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][51874] -> [.....................64:ff9b::c000:4c03][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
detection-update: [....13] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][47118] -> [.................2001:4998:14:800::1001][..443] [TLS.Yahoo][Unknown][Web][Safe][cookiex.ngd.yahoo.com]
new: [....16] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56582] -> [.....................64:ff9b::9765:798c][..443] [MIDSTREAM]
new: [....17] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56564] -> [.....................64:ff9b::9765:798c][..443] [MIDSTREAM]
@@ -129,6 +125,7 @@
detection-update: [....41] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][43328] -> [.....................64:ff9b::4a72:9a16][..443] [TLS.Tumblr][Unknown][SocialNetwork][Fun][catasters.tumblr.com]
new: [....43] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][49548] -> [...............2a00:1450:4007:809::200e][..443]
detected: [.....2] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][48240] -> [.....................64:ff9b::9765:789d][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
detected: [....43] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][49548] -> [...............2a00:1450:4007:809::200e][..443] [TLS.Google][Unknown][Web][Acceptable][apis.google.com]
new: [....44] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][38608] -> [...............2a00:1450:4007:80b::200a][..443]
analyse: [.....2] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][48240] -> [.....................64:ff9b::9765:789d][..443]
@@ -168,10 +165,10 @@
detected: [....42] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][55560] -> [...............2a00:1450:4007:817::200a][..443] [TLS][Unknown][Web][Safe]
detected: [.....7] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][56782] -> [.....................64:ff9b::68f4:2ac8][..443] [TLS][Unknown][Web][Safe]
new: [....45] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][39164] -> [......................64:ff9b::6006:749][..443]
- detected: [....45] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][39164] -> [......................64:ff9b::6006:749][..443] [TLS][Unknown][Advertisement][Safe][sb.scorecardresearch.com]
+ detected: [....45] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][39164] -> [......................64:ff9b::6006:749][..443] [TLS.ADS_Analytic_Track][Unknown][Advertisement][Tracker/Ads][sb.scorecardresearch.com]
new: [....46] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][42674] -> [.....................64:ff9b::4a72:9a15][..443] [MIDSTREAM]
- detection-update: [....45] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][39164] -> [......................64:ff9b::6006:749][..443] [TLS][Unknown][Advertisement][Safe][sb.scorecardresearch.com]
- analyse: [....12] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][39152] -> [......................64:ff9b::6006:749][..443] [TLS][Unknown][Advertisement][Safe]
+ detection-update: [....45] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][39164] -> [......................64:ff9b::6006:749][..443] [TLS.ADS_Analytic_Track][Unknown][Advertisement][Tracker/Ads][sb.scorecardresearch.com]
+ analyse: [....12] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][39152] -> [......................64:ff9b::6006:749][..443] [TLS.ADS_Analytic_Track][Unknown][Advertisement][Tracker/Ads]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 16.589| 1.119| 4.059| 16477581.214| 1.400]
[PKTLEN......: 72.000| 1351.000| 350.400| 367.900| 135349.600| 4.300]
@@ -236,7 +233,7 @@
idle: [....25] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][35892] -> [...............2a00:1450:4007:815::2002][..443]
guessed: [....31] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][44164] -> [...............2a00:1450:4007:805::2003][..443] [TLS][Unknown][Web][Safe]
idle: [....31] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][44164] -> [...............2a00:1450:4007:805::2003][..443]
- idle: [....12] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][39152] -> [......................64:ff9b::6006:749][..443] [TLS][Unknown][Advertisement][Safe]
+ idle: [....12] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][39152] -> [......................64:ff9b::6006:749][..443] [TLS.ADS_Analytic_Track][Unknown][Advertisement][Tracker/Ads]
idle: [....45] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][39164] -> [......................64:ff9b::6006:749][..443]
guessed: [....34] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][58614] -> [...............2a00:1450:4007:805::200e][..443] [TLS][Unknown][Web][Safe]
idle: [....34] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][58614] -> [...............2a00:1450:4007:805::200e][..443]
@@ -247,7 +244,7 @@
guessed: [....47] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][40190] -> [...............2a00:1450:4007:80a::200a][..443] [TLS][Unknown][Web][Safe]
idle: [....47] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][40190] -> [...............2a00:1450:4007:80a::200a][..443]
idle: [....41] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][43328] -> [.....................64:ff9b::4a72:9a16][..443] [TLS.Tumblr][Unknown][SocialNetwork][Fun]
- idle: [.....8] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][43420] -> [.....................64:ff9b::c000:4d28][..443] [TLS][Unknown][Web][Safe]
+ idle: [.....8] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][43420] -> [.....................64:ff9b::c000:4d28][..443]
idle: [.....9] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][43434] -> [.....................64:ff9b::c000:4d28][..443] [TLS][Unknown][Web][Safe]
guessed: [....24] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][43602] -> [......................64:ff9b::df9:21c6][..443] [TLS][Unknown][Web][Safe]
idle: [....24] [ip6][..tcp] [2a01:cb01:2049:8b07:991d:ec85:28df:f629][43602] -> [......................64:ff9b::df9:21c6][..443]
diff --git a/test/results/flow-info/tunnelbear.pcap.out b/test/results/flow-info/default/tunnelbear.pcap.out
index c024e4300..ba411b9b1 100644
--- a/test/results/flow-info/tunnelbear.pcap.out
+++ b/test/results/flow-info/default/tunnelbear.pcap.out
@@ -47,6 +47,7 @@
[ENTROPIES...: 4.5,4.6,4.6,6.1,4.5,6.1,4.7,5.4,4.5,7.4,4.6,7.6,4.5,7.2,4.5,5.9,7.4,4.6,5.3,4.6,7.7,4.7,6.8,4.7,5.3,4.6,5.1,4.5,4.5,4.4,4.5,4.5]
new: [.....9] [ip4][..tcp] [..10.158.132.91][38398] -> [..104.17.114.40][..443] [MIDSTREAM]
detected: [.....9] [ip4][..tcp] [..10.158.132.91][38398] -> [..104.17.114.40][..443] [TLS.TunnelBear][Cloudflare][VPN][Acceptable][api.polargrizzly.com]
+ RISK: Unidirectional Traffic
new: [....10] [ip4][..tcp] [..10.158.132.91][51120] -> [........8.8.8.8][...53] [MIDSTREAM]
new: [....11] [ip4][..tcp] [.......10.8.0.1][60224] -> [...157.240.7.32][..443]
detected: [....11] [ip4][..tcp] [.......10.8.0.1][60224] -> [...157.240.7.32][..443] [TLS.Messenger][Facebook][Chat][Acceptable][mqtt-mini.facebook.com]
diff --git a/test/results/flow-info/tuya_lp.pcap.out b/test/results/flow-info/default/tuya_lp.pcap.out
index 49f886ee4..49f886ee4 100644
--- a/test/results/flow-info/tuya_lp.pcap.out
+++ b/test/results/flow-info/default/tuya_lp.pcap.out
diff --git a/test/results/flow-info/ubntac2.pcap.out b/test/results/flow-info/default/ubntac2.pcap.out
index 969b35233..969b35233 100644
--- a/test/results/flow-info/ubntac2.pcap.out
+++ b/test/results/flow-info/default/ubntac2.pcap.out
diff --git a/test/results/flow-info/ultrasurf.pcap.out b/test/results/flow-info/default/ultrasurf.pcap.out
index 8c2dec2f5..6495f3ac1 100644
--- a/test/results/flow-info/ultrasurf.pcap.out
+++ b/test/results/flow-info/default/ultrasurf.pcap.out
@@ -3,6 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [....65.49.68.25][50053] -> [....10.132.0.23][37898] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [....65.49.68.25][50053] -> [....10.132.0.23][37898] [UltraSurf][Unknown][VPN][Acceptable]
+ RISK: Unidirectional Traffic
analyse: [.....1] [ip4][..tcp] [....65.49.68.25][50053] -> [....10.132.0.23][37898] [UltraSurf][Unknown][VPN][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.150| 0.021| 0.036| 1271.455| 3.600]
@@ -43,9 +44,10 @@
[IATS(ms)....: 209.5,239.7,0.0,251.1,0.0,11.4,0.0,260.7,0.0,9.6,20.0,20.0,269.1,20.0,0.0,231.0,0.0,20.0,0.0,0.0,0.0,0.0,0.0,249.6,0.0,0.0,0.0,0.0,10.1,0.0,0.0]
[PKTLENS.....: 60,60,52,569,52,1340,1340,1256,52,52,52,116,368,107,87,139,52,83,1400,428,1400,480,250,234,52,87,113,200,244,87,187,1340]
[ENTROPIES...: 4.7,5.2,5.0,6.1,5.2,7.8,7.9,7.9,5.2,5.2,5.1,6.0,7.4,6.0,5.8,6.3,5.1,5.7,7.9,7.4,7.8,7.6,7.1,7.0,5.1,5.9,6.1,6.8,6.9,5.9,6.8,7.9]
- end: [.....1] [ip4][..tcp] [....65.49.68.25][50053] -> [....10.132.0.23][37898] [UltraSurf][Unknown][VPN][Acceptable]
- end: [.....2] [ip4][..tcp] [....10.132.0.23][38120] -> [....65.49.68.25][50053] [TLS][Unknown][Web][Safe]
+ idle: [.....1] [ip4][..tcp] [....65.49.68.25][50053] -> [....10.132.0.23][37898] [UltraSurf][Unknown][VPN][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [.....2] [ip4][..tcp] [....10.132.0.23][38120] -> [....65.49.68.25][50053] [TLS][Unknown][Web][Safe]
RISK: Known Proto on Non Std Port, Missing SNI TLS Extn
- end: [.....3] [ip4][..tcp] [....10.132.0.23][38152] -> [....65.49.68.25][50053] [TLS][Unknown][Web][Safe]
+ idle: [.....3] [ip4][..tcp] [....10.132.0.23][38152] -> [....65.49.68.25][50053] [TLS][Unknown][Web][Safe]
RISK: Known Proto on Non Std Port, Missing SNI TLS Extn
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/upnp.pcap.out b/test/results/flow-info/default/upnp.pcap.out
index 97f20a733..97f20a733 100644
--- a/test/results/flow-info/upnp.pcap.out
+++ b/test/results/flow-info/default/upnp.pcap.out
diff --git a/test/results/flow-info/viber.pcap.out b/test/results/flow-info/default/viber.pcap.out
index 9b6583702..f12f9777c 100644
--- a/test/results/flow-info/viber.pcap.out
+++ b/test/results/flow-info/default/viber.pcap.out
@@ -4,12 +4,15 @@
new: [.....1] [ip4][..tcp] [...192.168.0.17][33208] -> [...52.0.253.101][.4244] [MIDSTREAM]
new: [.....2] [ip4][..udp] [...192.168.0.17][45743] -> [...192.168.0.15][...53]
detected: [.....2] [ip4][..udp] [...192.168.0.17][45743] -> [...192.168.0.15][...53] [DNS.Facebook][Unknown][Network][Fun][graph.facebook.com]
+ RISK: Unidirectional Traffic
detection-update: [.....2] [ip4][..udp] [...192.168.0.17][45743] -> [...192.168.0.15][...53] [DNS.Facebook][Unknown][Network][Fun][graph.facebook.com]
new: [.....3] [ip4][..udp] [...192.168.0.17][35283] -> [...192.168.0.15][...53]
- detected: [.....3] [ip4][..udp] [...192.168.0.17][35283] -> [...192.168.0.15][...53] [DNS][Unknown][Network][Acceptable][app.adjust.com]
- detection-update: [.....3] [ip4][..udp] [...192.168.0.17][35283] -> [...192.168.0.15][...53] [DNS][Unknown][Network][Acceptable][app.adjust.com]
+ detected: [.....3] [ip4][..udp] [...192.168.0.17][35283] -> [...192.168.0.15][...53] [DNS.ADS_Analytic_Track][Unknown][Network][Tracker/Ads][app.adjust.com]
+ RISK: Unidirectional Traffic
+ detection-update: [.....3] [ip4][..udp] [...192.168.0.17][35283] -> [...192.168.0.15][...53] [DNS.ADS_Analytic_Track][Unknown][Network][Tracker/Ads][app.adjust.com]
new: [.....4] [ip4][..udp] [...192.168.0.17][62872] -> [...192.168.0.15][...53]
detected: [.....4] [ip4][..udp] [...192.168.0.17][62872] -> [...192.168.0.15][...53] [DNS][Unknown][Network][Acceptable][mapi.apptimize.com]
+ RISK: Unidirectional Traffic
detection-update: [.....4] [ip4][..udp] [...192.168.0.17][62872] -> [...192.168.0.15][...53] [DNS][Unknown][Network][Acceptable][mapi.apptimize.com]
new: [.....5] [ip4][..tcp] [...192.168.0.17][36986] -> [..54.69.166.226][..443]
detected: [.....5] [ip4][..tcp] [...192.168.0.17][36986] -> [..54.69.166.226][..443] [TLS][AmazonAWS][Web][Safe][mapi.apptimize.com]
@@ -20,6 +23,7 @@
detection-update: [.....6] [ip4][..tcp] [...192.168.0.17][36988] -> [..54.69.166.226][..443] [TLS][AmazonAWS][Web][Safe][mapi.apptimize.com]
new: [.....7] [ip4][..udp] [...192.168.0.17][37418] -> [...192.168.0.15][...53]
detected: [.....7] [ip4][..udp] [...192.168.0.17][37418] -> [...192.168.0.15][...53] [DNS.Viber][Unknown][Network][Fun][media.cdn.viber.com]
+ RISK: Unidirectional Traffic
detection-update: [.....7] [ip4][..udp] [...192.168.0.17][37418] -> [...192.168.0.15][...53] [DNS.Viber][Unknown][Network][Fun][media.cdn.viber.com]
new: [.....8] [ip4][..tcp] [...192.168.0.17][57520] -> [...54.230.93.96][..443]
detected: [.....8] [ip4][..tcp] [...192.168.0.17][57520] -> [...54.230.93.96][..443] [TLS.Viber][AmazonAWS][Chat][Fun][media.cdn.viber.com]
@@ -27,6 +31,7 @@
detection-update: [.....8] [ip4][..tcp] [...192.168.0.17][57520] -> [...54.230.93.96][..443] [TLS.Viber][AmazonAWS][Chat][Fun][media.cdn.viber.com]
new: [.....9] [ip4][..udp] [...192.168.0.17][40445] -> [...192.168.0.15][...53]
detected: [.....9] [ip4][..udp] [...192.168.0.17][40445] -> [...192.168.0.15][...53] [DNS.Viber][Unknown][Network][Fun][dl-media.viber.com]
+ RISK: Unidirectional Traffic
detection-update: [.....9] [ip4][..udp] [...192.168.0.17][40445] -> [...192.168.0.15][...53] [DNS.Viber][Unknown][Network][Fun][dl-media.viber.com]
new: [....10] [ip4][..tcp] [...192.168.0.17][53934] -> [...54.230.93.53][..443]
detected: [....10] [ip4][..tcp] [...192.168.0.17][53934] -> [...54.230.93.53][..443] [TLS.Viber][AmazonAWS][Chat][Fun][dl-media.viber.com]
@@ -46,6 +51,7 @@
new: [....11] [ip4][..udp] [...192.168.0.17][41993] -> [.172.217.23.106][..443]
new: [....12] [ip4][..udp] [...192.168.0.17][35331] -> [...192.168.0.15][...53]
detected: [....12] [ip4][..udp] [...192.168.0.17][35331] -> [...192.168.0.15][...53] [DNS.Google][Unknown][Network][Acceptable][app-measurement.com]
+ RISK: Unidirectional Traffic
detection-update: [....12] [ip4][..udp] [...192.168.0.17][35331] -> [...192.168.0.15][...53] [DNS.Google][Unknown][Network][Acceptable][app-measurement.com]
new: [....13] [ip4][..tcp] [...192.168.0.17][43702] -> [..172.217.23.78][..443]
detected: [....13] [ip4][..tcp] [...192.168.0.17][43702] -> [..172.217.23.78][..443] [TLS.Google][Google][Web][Acceptable][app-measurement.com]
@@ -56,6 +62,7 @@
detected: [....15] [ip6][icmp6] [..............fe80::3207:4dff:fea3:5fa7] -> [................................ff02::2] [ICMPV6][Unknown][Network][Acceptable]
new: [....16] [ip4][..udp] [...192.168.0.17][44376] -> [...192.168.0.15][...53]
detected: [....16] [ip4][..udp] [...192.168.0.17][44376] -> [...192.168.0.15][...53] [DNS][Unknown][Network][Acceptable][venetia.iad.appboy.com]
+ RISK: Unidirectional Traffic
detection-update: [....16] [ip4][..udp] [...192.168.0.17][44376] -> [...192.168.0.15][...53] [DNS][Unknown][Network][Acceptable][venetia.iad.appboy.com]
new: [....17] [ip4][..tcp] [...192.168.0.17][55746] -> [..151.101.1.130][..443]
detected: [....17] [ip4][..tcp] [...192.168.0.17][55746] -> [..151.101.1.130][..443] [TLS][Unknown][Web][Safe][venetia.iad.appboy.com]
@@ -70,13 +77,13 @@
[IATS(ms)....: 54.2,95.9,0.3,44.0,41.8,57.0,16.1,92.1,91.6,10563.9,10701.7,4192.1,4152.7,4422.1,4422.1,309.5,309.6,21.6,197.0,0.1,215.0,3974.5,3934.9,3635.3,52.6,3635.3,52.6,12.7,140.8,167.5,4361.2]
[PKTLENS.....: 153,108,52,128,52,494,116,52,120,52,149,52,146,52,146,52,391,52,150,52,136,52,146,52,146,410,52,52,150,136,52,582]
[ENTROPIES...: 6.4,6.0,4.8,6.2,5.0,7.6,6.1,5.0,6.1,4.9,6.3,4.9,6.4,5.0,6.5,4.9,7.4,5.0,6.5,5.0,6.3,5.0,6.5,5.0,6.4,7.4,5.0,5.0,6.5,6.4,5.0,7.6]
- guessed: [.....1] [ip4][..tcp] [...192.168.0.17][33208] -> [...52.0.253.101][.4244] [Viber][Viber][VoIP][Fun]
- detected: [.....1] [ip4][..tcp] [...192.168.0.17][33208] -> [...52.0.253.101][.4244] [Viber][Viber][VoIP][Fun]
new: [....18] [ip4][..tcp] [...192.168.0.17][45424] -> [....18.201.4.32][..443]
new: [....19] [ip4][..udp] [...192.168.0.17][47171] -> [....18.201.4.32][.7985]
detected: [....19] [ip4][..udp] [...192.168.0.17][47171] -> [....18.201.4.32][.7985] [Viber][AmazonAWS][VoIP][Fun]
+ RISK: Unidirectional Traffic
new: [....20] [ip4][..udp] [...192.168.0.17][47171] -> [....18.201.4.32][.7987]
detected: [....20] [ip4][..udp] [...192.168.0.17][47171] -> [....18.201.4.32][.7987] [Viber][AmazonAWS][VoIP][Fun]
+ RISK: Unidirectional Traffic
new: [....21] [ip4][..tcp] [...192.168.0.17][49048] -> [..54.187.91.182][..443]
detected: [....21] [ip4][..tcp] [...192.168.0.17][49048] -> [..54.187.91.182][..443] [TLS][AmazonAWS][Web][Safe][brahe.apptimize.com]
detection-update: [....21] [ip4][..tcp] [...192.168.0.17][49048] -> [..54.187.91.182][..443] [TLS][AmazonAWS][Web][Safe][brahe.apptimize.com]
@@ -94,8 +101,10 @@
new: [....22] [ip4][..tcp] [...192.168.0.17][33744] -> [.....18.201.4.3][..443]
new: [....23] [ip4][..udp] [...192.168.0.17][38190] -> [.....18.201.4.3][.7985]
detected: [....23] [ip4][..udp] [...192.168.0.17][38190] -> [.....18.201.4.3][.7985] [Viber][AmazonAWS][VoIP][Fun]
+ RISK: Unidirectional Traffic
new: [....24] [ip4][..udp] [...192.168.0.17][38190] -> [.....18.201.4.3][.7987]
detected: [....24] [ip4][..udp] [...192.168.0.17][38190] -> [.....18.201.4.3][.7987] [Viber][AmazonAWS][VoIP][Fun]
+ RISK: Unidirectional Traffic
update: [....15] [ip6][icmp6] [..............fe80::3207:4dff:fea3:5fa7] -> [................................ff02::2] [ICMPV6][Unknown][Network][Acceptable]
analyse: [....23] [ip4][..udp] [...192.168.0.17][38190] -> [.....18.201.4.3][.7985] [Viber][AmazonAWS][VoIP][Fun]
min| max| avg| stddev| variance| entropy
@@ -109,14 +118,16 @@
[ENTROPIES...: 6.3,4.5,5.0,3.5,4.0,6.4,3.5,5.1,4.4,6.4,4.0,3.5,6.3,3.5,5.0,4.4,6.3,3.9,3.4,6.4,3.5,5.0,4.4,6.3,3.9,3.5,6.4,3.5,5.0,4.4,4.0,6.4]
new: [....25] [ip4][..udp] [...192.168.0.17][50097] -> [...192.168.0.15][...53]
detected: [....25] [ip4][..udp] [...192.168.0.17][50097] -> [...192.168.0.15][...53] [DNS.Google][Unknown][Network][Acceptable][www.google.com]
+ RISK: Unidirectional Traffic
detection-update: [....25] [ip4][..udp] [...192.168.0.17][50097] -> [...192.168.0.15][...53] [DNS.Google][Unknown][Network][Acceptable][www.google.com]
new: [....26] [ip4][.icmp] [...192.168.0.17] -> [...192.168.0.15]
detected: [....26] [ip4][.icmp] [...192.168.0.17] -> [...192.168.0.15] [ICMP][Unknown][Network][Acceptable]
- update: [.....3] [ip4][..udp] [...192.168.0.17][35283] -> [...192.168.0.15][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
+ update: [.....3] [ip4][..udp] [...192.168.0.17][35283] -> [...192.168.0.15][...53] [DNS.ADS_Analytic_Track][Unknown][Network][Tracker/Ads]
update: [.....2] [ip4][..udp] [...192.168.0.17][45743] -> [...192.168.0.15][...53] [DNS.Facebook][Unknown][Network][Fun]
update: [.....4] [ip4][..udp] [...192.168.0.17][62872] -> [...192.168.0.15][...53] [DNS][Unknown][Network][Acceptable]
DAEMON-EVENT: [Processed: 420 pkts][ZLib][compressions: 0|diff: 0 / 0]
- DAEMON-EVENT: [Flows][active: 26 / 26|skipped: 0|!detected: 0|guessed: 1|detection-updates: 20|updates: 4]
+ DAEMON-EVENT: [Flows][active: 26 / 26|skipped: 0|!detected: 0|guessed: 0|detection-updates: 20|updates: 4]
new: [....27] [ip4][..tcp] [..192.168.2.100][48690] -> [...52.0.252.145][.4244]
detected: [....27] [ip4][..tcp] [..192.168.2.100][48690] -> [...52.0.252.145][.4244] [Viber][Viber][VoIP][Fun]
end: [.....5] [ip4][..tcp] [...192.168.0.17][36986] -> [..54.69.166.226][..443]
@@ -124,15 +135,19 @@
guessed: [....11] [ip4][..udp] [...192.168.0.17][41993] -> [.172.217.23.106][..443] [QUIC][Google][Web][Acceptable]
idle: [....11] [ip4][..udp] [...192.168.0.17][41993] -> [.172.217.23.106][..443]
idle: [....19] [ip4][..udp] [...192.168.0.17][47171] -> [....18.201.4.32][.7985] [Viber][AmazonAWS][VoIP][Fun]
+ RISK: Unidirectional Traffic
idle: [....20] [ip4][..udp] [...192.168.0.17][47171] -> [....18.201.4.32][.7987] [Viber][AmazonAWS][VoIP][Fun]
+ RISK: Unidirectional Traffic
idle: [.....8] [ip4][..tcp] [...192.168.0.17][57520] -> [...54.230.93.96][..443]
idle: [....26] [ip4][.icmp] [...192.168.0.17] -> [...192.168.0.15] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....17] [ip4][..tcp] [...192.168.0.17][55746] -> [..151.101.1.130][..443] [TLS][Unknown][Web][Safe]
- idle: [.....1] [ip4][..tcp] [...192.168.0.17][33208] -> [...52.0.253.101][.4244] [Viber][Viber][VoIP][Fun]
+ guessed: [.....1] [ip4][..tcp] [...192.168.0.17][33208] -> [...52.0.253.101][.4244] [Viber][Viber][VoIP][Fun]
+ idle: [.....1] [ip4][..tcp] [...192.168.0.17][33208] -> [...52.0.253.101][.4244]
idle: [....10] [ip4][..tcp] [...192.168.0.17][53934] -> [...54.230.93.53][..443] [TLS.Viber][AmazonAWS][Chat][Fun]
idle: [....15] [ip6][icmp6] [..............fe80::3207:4dff:fea3:5fa7] -> [................................ff02::2] [ICMPV6][Unknown][Network][Acceptable]
idle: [....14] [ip4][..udp] [...192.168.0.17][.5353] -> [....224.0.0.251][.5353]
- idle: [.....3] [ip4][..udp] [...192.168.0.17][35283] -> [...192.168.0.15][...53] [DNS][Unknown][Network][Acceptable]
+ idle: [.....3] [ip4][..udp] [...192.168.0.17][35283] -> [...192.168.0.15][...53] [DNS.ADS_Analytic_Track][Unknown][Network][Tracker/Ads]
idle: [....12] [ip4][..udp] [...192.168.0.17][35331] -> [...192.168.0.15][...53] [DNS.Google][Unknown][Network][Acceptable]
idle: [.....7] [ip4][..udp] [...192.168.0.17][37418] -> [...192.168.0.15][...53] [DNS.Viber][Unknown][Network][Fun]
idle: [.....2] [ip4][..udp] [...192.168.0.17][45743] -> [...192.168.0.15][...53] [DNS.Facebook][Unknown][Network][Fun]
@@ -141,7 +156,9 @@
end: [....21] [ip4][..tcp] [...192.168.0.17][49048] -> [..54.187.91.182][..443]
idle: [....25] [ip4][..udp] [...192.168.0.17][50097] -> [...192.168.0.15][...53] [DNS.Google][Unknown][Network][Acceptable]
idle: [....23] [ip4][..udp] [...192.168.0.17][38190] -> [.....18.201.4.3][.7985] [Viber][AmazonAWS][VoIP][Fun]
+ RISK: Unidirectional Traffic
idle: [....24] [ip4][..udp] [...192.168.0.17][38190] -> [.....18.201.4.3][.7987] [Viber][AmazonAWS][VoIP][Fun]
+ RISK: Unidirectional Traffic
idle: [....13] [ip4][..tcp] [...192.168.0.17][43702] -> [..172.217.23.78][..443] [TLS.Google][Google][Web][Acceptable]
idle: [....16] [ip4][..udp] [...192.168.0.17][44376] -> [...192.168.0.15][...53] [DNS][Unknown][Network][Acceptable]
idle: [.....4] [ip4][..udp] [...192.168.0.17][62872] -> [...192.168.0.15][...53] [DNS][Unknown][Network][Acceptable]
@@ -156,7 +173,9 @@
DAEMON-EVENT: [Flows][active: 2 / 28|skipped: 0|!detected: 0|guessed: 4|detection-updates: 20|updates: 4]
new: [....29] [ip4][..tcp] [..192.168.2.100][42900] -> [..44.192.202.74][.4244] [MIDSTREAM]
detected: [....29] [ip4][..tcp] [..192.168.2.100][42900] -> [..44.192.202.74][.4244] [Viber][AmazonAWS][VoIP][Fun]
+ RISK: Unidirectional Traffic
idle: [....29] [ip4][..tcp] [..192.168.2.100][42900] -> [..44.192.202.74][.4244] [Viber][AmazonAWS][VoIP][Fun]
+ RISK: Unidirectional Traffic
end: [....28] [ip4][..tcp] [..192.168.2.100][41184] -> [.....52.0.252.2][.5242] [Viber][Viber][VoIP][Fun]
idle: [....27] [ip4][..tcp] [..192.168.2.100][48690] -> [...52.0.252.145][.4244] [Viber][Viber][VoIP][Fun]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/default/vk.pcapng.out b/test/results/flow-info/default/vk.pcapng.out
new file mode 100644
index 000000000..51a8ee6ea
--- /dev/null
+++ b/test/results/flow-info/default/vk.pcapng.out
@@ -0,0 +1,70 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..tcp] [..192.168.1.249][33904] -> [.87.240.129.131][..443] [MIDSTREAM]
+ detected: [.....1] [ip4][..tcp] [..192.168.1.249][33904] -> [.87.240.129.131][..443] [TLS][VK][Web][Safe]
+ RISK: Unidirectional Traffic
+ new: [.....2] [ip4][..tcp] [..192.168.1.249][40344] -> [.87.240.129.140][..443] [MIDSTREAM]
+ detected: [.....2] [ip4][..tcp] [..192.168.1.249][40344] -> [.87.240.129.140][..443] [TLS][VK][Web][Safe]
+ RISK: Unidirectional Traffic
+ new: [.....3] [ip4][..tcp] [..192.168.1.249][60436] -> [..87.240.132.78][..443] [MIDSTREAM]
+ detected: [.....3] [ip4][..tcp] [..192.168.1.249][60436] -> [..87.240.132.78][..443] [TLS][VK][Web][Safe]
+ RISK: Unidirectional Traffic
+ analyse: [.....3] [ip4][..tcp] [..192.168.1.249][60436] -> [..87.240.132.78][..443]
+ min| max| avg| stddev| variance| entropy
+ [IAT.........: 0.000| 1.010| 0.043| 0.181| 32751.438| 1.300]
+ [PKTLEN......: 52.000| 758.000| 125.300| 191.100| 36507.600| 4.000]
+ [BINS(c->s)..: 28,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,1,1,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+ [BINS(s->c)..: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+ [DIRECTIONS..: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+ [IATS(ms)....: 1010.0,14.6,15.3,1.7,16.3,0.0,0.0,0.0,0.0,15.1,0.0,227.7,0.0,0.0,0.0,2.7,0.0,12.8,0.0,1.5,0.0,0.0,1.5,1.1,1.6,11.1,2.5,1.5,0.0,0.8,1.2]
+ [PKTLENS.....: 638,758,52,596,501,52,52,52,52,52,52,52,52,52,52,52,52,52,52,52,52,64,64,64,64,64,52,52,52,52,52,52]
+ [ENTROPIES...: 7.7,7.8,5.2,7.6,7.6,5.2,5.2,5.2,5.3,5.3,5.2,5.2,5.2,5.3,5.2,5.1,5.3,5.2,5.2,5.2,5.2,5.3,5.3,5.2,5.3,5.3,5.2,5.3,5.2,5.2,5.2,5.2]
+ detection-update: [.....3] [ip4][..tcp] [..192.168.1.249][60436] -> [..87.240.132.78][..443] [TLS][VK][Web][Safe]
+ RISK: Unidirectional Traffic
+ new: [.....4] [ip4][..tcp] [..192.168.1.249][59154] -> [.87.240.185.137][..443]
+ new: [.....5] [ip4][..tcp] [..192.168.1.249][32990] -> [..87.240.169.10][..443]
+ detected: [.....4] [ip4][..tcp] [..192.168.1.249][59154] -> [.87.240.185.137][..443] [TLS.VK][VK][SocialNetwork][Fun][sun9-10.userapi.com]
+ RISK: Unidirectional Traffic
+ detected: [.....5] [ip4][..tcp] [..192.168.1.249][32990] -> [..87.240.169.10][..443] [TLS.VK][VK][SocialNetwork][Fun][sun9-87.userapi.com]
+ RISK: Unidirectional Traffic
+ new: [.....6] [ip4][..tcp] [..192.168.1.249][56504] -> [.87.240.129.135][..443] [MIDSTREAM]
+ detected: [.....6] [ip4][..tcp] [..192.168.1.249][56504] -> [.87.240.129.135][..443] [TLS][VK][Web][Safe]
+ RISK: Unidirectional Traffic
+ analyse: [.....2] [ip4][..tcp] [..192.168.1.249][40344] -> [.87.240.129.140][..443]
+ min| max| avg| stddev| variance| entropy
+ [IAT.........: 0.000| 2.007| 0.151| 0.451| 203470.717| 2.100]
+ [PKTLEN......: 52.000| 1017.000| 241.000| 249.500| 62251.300| 4.300]
+ [BINS(c->s)..: 17,0,0,0,0,2,2,0,3,0,1,1,0,0,0,2,2,0,0,0,0,0,1,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+ [BINS(s->c)..: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+ [DIRECTIONS..: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+ [IATS(ms)....: 0.0,14.3,23.0,2006.6,0.0,0.8,13.5,98.2,1614.5,0.3,0.1,0.3,0.3,13.2,1.2,18.4,1.7,0.9,6.9,22.6,0.0,179.8,0.0,14.1,67.4,0.0,0.0,579.5,0.0,1.0,13.7]
+ [PKTLENS.....: 247,332,52,52,240,776,565,52,52,385,563,339,564,1017,52,52,52,52,52,52,52,52,243,316,52,52,52,52,250,563,429,52]
+ [ENTROPIES...: 7.2,7.4,5.2,5.2,7.0,7.7,7.6,5.1,5.2,7.4,7.6,7.3,7.6,7.8,5.1,5.1,5.1,5.1,5.1,5.1,5.1,5.1,7.1,7.3,5.1,5.1,5.2,5.1,7.2,7.6,7.5,5.1]
+ detection-update: [.....2] [ip4][..tcp] [..192.168.1.249][40344] -> [.87.240.129.140][..443] [TLS][VK][Web][Safe]
+ RISK: Unidirectional Traffic
+ new: [.....7] [ip4][..tcp] [..192.168.1.249][47934] -> [...87.240.169.3][..443]
+ new: [.....8] [ip4][..tcp] [..192.168.1.249][59722] -> [..87.240.169.11][..443]
+ detected: [.....7] [ip4][..tcp] [..192.168.1.249][47934] -> [...87.240.169.3][..443] [TLS.VK][VK][SocialNetwork][Fun][sun9-80.userapi.com]
+ RISK: Unidirectional Traffic
+ detected: [.....8] [ip4][..tcp] [..192.168.1.249][59722] -> [..87.240.169.11][..443] [TLS.VK][VK][SocialNetwork][Fun][sun9-88.userapi.com]
+ RISK: Unidirectional Traffic
+ new: [.....9] [ip4][..tcp] [..192.168.1.249][43938] -> [.87.240.129.135][..443] [MIDSTREAM]
+ detected: [.....9] [ip4][..tcp] [..192.168.1.249][43938] -> [.87.240.129.135][..443] [TLS][VK][Web][Safe]
+ RISK: Unidirectional Traffic
+ new: [....10] [ip4][..tcp] [..192.168.1.249][43644] -> [..87.240.132.67][..443] [MIDSTREAM]
+ detected: [....10] [ip4][..tcp] [..192.168.1.249][43644] -> [..87.240.132.67][..443] [TLS][VK][Web][Safe]
+ RISK: Unidirectional Traffic
+ idle: [.....2] [ip4][..tcp] [..192.168.1.249][40344] -> [.87.240.129.140][..443] [TLS][VK][Web][Safe]
+ RISK: Unidirectional Traffic
+ idle: [.....4] [ip4][..tcp] [..192.168.1.249][59154] -> [.87.240.185.137][..443]
+ idle: [.....5] [ip4][..tcp] [..192.168.1.249][32990] -> [..87.240.169.10][..443]
+ idle: [.....8] [ip4][..tcp] [..192.168.1.249][59722] -> [..87.240.169.11][..443]
+ idle: [....10] [ip4][..tcp] [..192.168.1.249][43644] -> [..87.240.132.67][..443]
+ idle: [.....7] [ip4][..tcp] [..192.168.1.249][47934] -> [...87.240.169.3][..443]
+ idle: [.....9] [ip4][..tcp] [..192.168.1.249][43938] -> [.87.240.129.135][..443]
+ idle: [.....3] [ip4][..tcp] [..192.168.1.249][60436] -> [..87.240.132.78][..443] [TLS][VK][Web][Safe]
+ RISK: Unidirectional Traffic
+ idle: [.....1] [ip4][..tcp] [..192.168.1.249][33904] -> [.87.240.129.131][..443]
+ idle: [.....6] [ip4][..tcp] [..192.168.1.249][56504] -> [.87.240.129.135][..443]
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/vnc.pcap.out b/test/results/flow-info/default/vnc.pcap.out
index e5665a19c..e5665a19c 100644
--- a/test/results/flow-info/vnc.pcap.out
+++ b/test/results/flow-info/default/vnc.pcap.out
diff --git a/test/results/flow-info/vrrp3.pcapng.out b/test/results/flow-info/default/vrrp3.pcapng.out
index 4885a55e3..4885a55e3 100644
--- a/test/results/flow-info/vrrp3.pcapng.out
+++ b/test/results/flow-info/default/vrrp3.pcapng.out
diff --git a/test/results/flow-info/vxlan.pcap.out b/test/results/flow-info/default/vxlan.pcap.out
index 58539ccea..a4b324ded 100644
--- a/test/results/flow-info/vxlan.pcap.out
+++ b/test/results/flow-info/default/vxlan.pcap.out
@@ -3,22 +3,31 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [...192.168.22.4][60887] -> [...192.168.22.5][.4789]
detected: [.....1] [ip4][..udp] [...192.168.22.4][60887] -> [...192.168.22.5][.4789] [VXLAN][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..udp] [...192.168.22.5][43866] -> [...192.168.22.4][.4789]
detected: [.....2] [ip4][..udp] [...192.168.22.5][43866] -> [...192.168.22.4][.4789] [VXLAN][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..udp] [...192.168.22.4][49762] -> [...192.168.22.5][.4789]
detected: [.....3] [ip4][..udp] [...192.168.22.4][49762] -> [...192.168.22.5][.4789] [VXLAN][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..udp] [...192.168.22.5][60230] -> [...192.168.22.4][.4789]
detected: [.....4] [ip4][..udp] [...192.168.22.5][60230] -> [...192.168.22.4][.4789] [VXLAN][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][..udp] [...192.168.22.4][60351] -> [...192.168.22.5][.4789]
detected: [.....5] [ip4][..udp] [...192.168.22.4][60351] -> [...192.168.22.5][.4789] [VXLAN][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....6] [ip4][..udp] [...192.168.22.5][50251] -> [...192.168.22.4][.4789]
detected: [.....6] [ip4][..udp] [...192.168.22.5][50251] -> [...192.168.22.4][.4789] [VXLAN][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....7] [ip4][..udp] [...192.168.22.4][40646] -> [...192.168.22.5][.4789]
detected: [.....7] [ip4][..udp] [...192.168.22.4][40646] -> [...192.168.22.5][.4789] [VXLAN][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....8] [ip4][..udp] [...192.168.22.5][36286] -> [...192.168.22.4][.4789]
detected: [.....8] [ip4][..udp] [...192.168.22.5][36286] -> [...192.168.22.4][.4789] [VXLAN][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....9] [ip4][..udp] [...192.168.22.4][60230] -> [...192.168.22.5][.4789]
detected: [.....9] [ip4][..udp] [...192.168.22.4][60230] -> [...192.168.22.5][.4789] [VXLAN][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
analyse: [.....8] [ip4][..udp] [...192.168.22.5][36286] -> [...192.168.22.4][.4789] [VXLAN][Unknown][Network][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.141| 0.010| 0.031| 963.930| 2.200]
@@ -40,12 +49,21 @@
[PKTLENS.....: 110,102,420,102,102,102,166,267,102,102,285,102,102,102,102,102,102,102,102,102,102,102,102,102,102,102,102,102,102,102,102,102]
[ENTROPIES...: 5.3,5.6,6.2,5.6,5.6,5.6,6.3,6.9,5.6,5.6,7.0,5.6,5.6,5.6,5.6,5.6,5.6,5.6,5.6,5.6,5.6,5.6,5.5,5.6,5.6,5.6,5.6,5.6,5.6,5.6,5.6,5.7]
idle: [.....5] [ip4][..udp] [...192.168.22.4][60351] -> [...192.168.22.5][.4789] [VXLAN][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][..udp] [...192.168.22.5][50251] -> [...192.168.22.4][.4789] [VXLAN][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....8] [ip4][..udp] [...192.168.22.5][36286] -> [...192.168.22.4][.4789] [VXLAN][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [...192.168.22.4][60887] -> [...192.168.22.5][.4789] [VXLAN][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....7] [ip4][..udp] [...192.168.22.4][40646] -> [...192.168.22.5][.4789] [VXLAN][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [...192.168.22.4][49762] -> [...192.168.22.5][.4789] [VXLAN][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....9] [ip4][..udp] [...192.168.22.4][60230] -> [...192.168.22.5][.4789] [VXLAN][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..udp] [...192.168.22.5][60230] -> [...192.168.22.4][.4789] [VXLAN][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [...192.168.22.5][43866] -> [...192.168.22.4][.4789] [VXLAN][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/wa_video.pcap.out b/test/results/flow-info/default/wa_video.pcap.out
index c476a087f..aecbfafd7 100644
--- a/test/results/flow-info/wa_video.pcap.out
+++ b/test/results/flow-info/default/wa_video.pcap.out
@@ -6,14 +6,19 @@
new: [.....2] [ip4][..tcp] [...192.168.2.12][49355] -> [..157.240.20.53][.5222] [MIDSTREAM]
new: [.....3] [ip4][..udp] [...192.168.2.12][53688] -> [....31.13.86.48][.3478]
detected: [.....3] [ip4][..udp] [...192.168.2.12][53688] -> [....31.13.86.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..udp] [...192.168.2.12][53688] -> [..185.60.216.51][.3478]
detected: [.....4] [ip4][..udp] [...192.168.2.12][53688] -> [..185.60.216.51][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][..udp] [...192.168.2.12][53688] -> [.157.240.193.48][.3478]
detected: [.....5] [ip4][..udp] [...192.168.2.12][53688] -> [.157.240.193.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [.....6] [ip4][..udp] [...192.168.2.12][53688] -> [..179.60.192.48][.3478]
detected: [.....6] [ip4][..udp] [...192.168.2.12][53688] -> [..179.60.192.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [.....7] [ip4][..udp] [...192.168.2.12][53688] -> [.157.240.196.62][.3478]
detected: [.....7] [ip4][..udp] [...192.168.2.12][53688] -> [.157.240.196.62][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [.....8] [ip4][..udp] [...192.168.2.12][51277] -> [239.255.255.250][.1900]
detected: [.....8] [ip4][..udp] [...192.168.2.12][51277] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
analyse: [.....2] [ip4][..tcp] [...192.168.2.12][49355] -> [..157.240.20.53][.5222]
@@ -26,7 +31,6 @@
[IATS(ms)....: 51.7,176.8,0.0,0.0,439.6,1227.8,0.8,306.1,108.9,2404.5,0.2,0.0,0.3,0.0,0.0,0.3,133.1,0.6,40.7,0.3,7.7,7.9,1.7,1.6,528.8,1.1,0.7,0.7,0.7,2.7,2.6]
[PKTLENS.....: 600,52,1440,155,508,508,332,189,225,1440,52,52,64,52,52,52,64,228,228,52,52,228,52,404,52,214,212,206,206,206,206,206]
[ENTROPIES...: 7.6,5.1,7.9,6.7,7.6,7.6,7.3,6.7,7.0,7.9,5.0,5.1,5.1,5.1,5.1,5.1,5.2,7.0,7.0,5.1,5.1,7.0,5.1,7.5,5.1,6.9,6.9,6.9,6.9,6.9,6.8,7.0]
- not-detected: [.....2] [ip4][..tcp] [...192.168.2.12][49355] -> [..157.240.20.53][.5222] [Unknown][WhatsApp][Unrated]
analyse: [.....3] [ip4][..udp] [...192.168.2.12][53688] -> [....31.13.86.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.550| 0.064| 0.136| 18373.693| 3.100]
@@ -41,10 +45,10 @@
detected: [.....9] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable][lucas-imac]
new: [....10] [ip4][..udp] [...192.168.2.12][53688] -> [.....1.60.78.64][59491]
detected: [....10] [ip4][..udp] [...192.168.2.12][53688] -> [.....1.60.78.64][59491] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....11] [ip4][..udp] [...192.168.2.12][53688] -> [...91.252.56.51][32641]
detected: [....11] [ip4][..udp] [...192.168.2.12][53688] -> [...91.252.56.51][32641] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
analyse: [....11] [ip4][..udp] [...192.168.2.12][53688] -> [...91.252.56.51][32641] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 1.979| 0.150| 0.383| 146861.081| 2.700]
@@ -64,17 +68,23 @@
idle: [.....8] [ip4][..udp] [...192.168.2.12][51277] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [.....9] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable]
idle: [.....7] [ip4][..udp] [...192.168.2.12][53688] -> [.157.240.196.62][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....5] [ip4][..udp] [...192.168.2.12][53688] -> [.157.240.193.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....14] [ip4][..udp] [...192.168.2.12][51458] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [....12] [ip4][..udp] [....192.168.2.1][17500] -> [..192.168.2.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
idle: [.....1] [ip4][..udp] [....192.168.2.1][57621] -> [..192.168.2.255][57621] [Spotify][Unknown][Music][Fun]
idle: [.....6] [ip4][..udp] [...192.168.2.12][53688] -> [..179.60.192.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..udp] [...192.168.2.12][53688] -> [..185.60.216.51][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [...192.168.2.12][53688] -> [....31.13.86.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....13] [ip4][..udp] [...192.168.2.12][65025] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [....11] [ip4][..udp] [...192.168.2.12][53688] -> [...91.252.56.51][32641] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
- idle: [.....2] [ip4][..tcp] [...192.168.2.12][49355] -> [..157.240.20.53][.5222] [Unknown][WhatsApp][Unrated]
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
+ guessed: [.....2] [ip4][..tcp] [...192.168.2.12][49355] -> [..157.240.20.53][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ idle: [.....2] [ip4][..tcp] [...192.168.2.12][49355] -> [..157.240.20.53][.5222]
idle: [....10] [ip4][..udp] [...192.168.2.12][53688] -> [.....1.60.78.64][59491] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/wa_voice.pcap.out b/test/results/flow-info/default/wa_voice.pcap.out
index 11a777330..387b65009 100644
--- a/test/results/flow-info/wa_voice.pcap.out
+++ b/test/results/flow-info/default/wa_voice.pcap.out
@@ -3,12 +3,15 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [...192.168.2.12][51431] -> [....192.168.2.1][...53]
detected: [.....1] [ip4][..udp] [...192.168.2.12][51431] -> [....192.168.2.1][...53] [DNS.Google][Unknown][Network][Acceptable][www.google.com]
+ RISK: Unidirectional Traffic
detection-update: [.....1] [ip4][..udp] [...192.168.2.12][51431] -> [....192.168.2.1][...53] [DNS.Google][Unknown][Network][Acceptable][www.google.com]
new: [.....2] [ip4][..udp] [...192.168.2.12][60765] -> [....192.168.2.1][...53]
detected: [.....2] [ip4][..udp] [...192.168.2.12][60765] -> [....192.168.2.1][...53] [DNS.WhatsApp][Unknown][Network][Acceptable][g.whatsapp.net]
+ RISK: Unidirectional Traffic
detection-update: [.....2] [ip4][..udp] [...192.168.2.12][60765] -> [....192.168.2.1][...53] [DNS.WhatsApp][Unknown][Network][Acceptable][g.whatsapp.net]
new: [.....3] [ip4][..tcp] [...192.168.2.12][49354] -> [...17.242.60.84][.5223] [MIDSTREAM]
detected: [.....3] [ip4][..tcp] [...192.168.2.12][49354] -> [...17.242.60.84][.5223] [ApplePush][Apple][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..udp] [....192.168.2.1][57621] -> [..192.168.2.255][57621]
detected: [.....4] [ip4][..udp] [....192.168.2.1][57621] -> [..192.168.2.255][57621] [Spotify][Unknown][Music][Fun]
new: [.....5] [ip4][..tcp] [...192.168.2.12][49355] -> [..157.240.20.53][.5222]
@@ -25,6 +28,7 @@
[ENTROPIES...: 4.5,5.1,5.0,7.2,5.1,6.1,6.0,6.5,7.9,5.9,7.9,6.7,7.9,6.7,7.9,5.0,5.0,5.0,5.1,5.1,5.1,5.0,7.8,5.6,5.9,6.2,5.7,6.2,5.0,7.3,5.0,5.0]
new: [.....6] [ip4][..udp] [...192.168.2.12][55296] -> [....192.168.2.1][...53]
detected: [.....6] [ip4][..udp] [...192.168.2.12][55296] -> [....192.168.2.1][...53] [DNS.WhatsAppFiles][Unknown][Network][Acceptable][media-mxp1-1.cdn.whatsapp.net]
+ RISK: Unidirectional Traffic
detection-update: [.....6] [ip4][..udp] [...192.168.2.12][55296] -> [....192.168.2.1][...53] [DNS.WhatsAppFiles][Unknown][Network][Acceptable][media-mxp1-1.cdn.whatsapp.net]
new: [.....7] [ip4][..tcp] [...192.168.2.12][50503] -> [....31.13.86.51][..443]
detected: [.....7] [ip4][..tcp] [...192.168.2.12][50503] -> [....31.13.86.51][..443] [TLS.WhatsAppFiles][WhatsApp][Download][Acceptable][media-mxp1-1.cdn.whatsapp.net]
@@ -43,6 +47,7 @@
detected: [.....8] [ip4][..udp] [....192.168.2.1][17500] -> [..192.168.2.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
new: [.....9] [ip4][..tcp] [...17.171.47.85][..443] -> [...192.168.2.12][50502] [MIDSTREAM]
detected: [.....9] [ip4][..tcp] [...17.171.47.85][..443] -> [...192.168.2.12][50502] [TLS][Apple][Web][Safe]
+ RISK: Unidirectional Traffic
new: [....10] [ip4][..udp] [169.254.162.244][50384] -> [239.255.255.250][.1900]
detected: [....10] [ip4][..udp] [169.254.162.244][50384] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
new: [....11] [ip4][..udp] [....192.168.2.1][50384] -> [239.255.255.250][.1900]
@@ -53,18 +58,24 @@
detected: [....13] [ip6][..udp] [...............fe80::414:409d:8afd:9f05][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable][_raop._tcp.local]
new: [....14] [ip4][..udp] [...192.168.2.12][56328] -> [....31.13.86.48][.3478]
detected: [....14] [ip4][..udp] [...192.168.2.12][56328] -> [....31.13.86.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....15] [ip4][..udp] [...192.168.2.12][56328] -> [..185.60.216.51][.3478]
detected: [....15] [ip4][..udp] [...192.168.2.12][56328] -> [..185.60.216.51][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....16] [ip4][..udp] [...192.168.2.12][56328] -> [.157.240.193.48][.3478]
detected: [....16] [ip4][..udp] [...192.168.2.12][56328] -> [.157.240.193.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....17] [ip4][..udp] [...192.168.2.12][56328] -> [..179.60.192.48][.3478]
detected: [....17] [ip4][..udp] [...192.168.2.12][56328] -> [..179.60.192.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....18] [ip4][..udp] [...192.168.2.12][56328] -> [.157.240.196.62][.3478]
detected: [....18] [ip4][..udp] [...192.168.2.12][56328] -> [.157.240.196.62][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....19] [ip4][..udp] [...192.168.2.12][64716] -> [239.255.255.250][.1900]
detected: [....19] [ip4][..udp] [...192.168.2.12][64716] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
new: [....20] [ip4][..udp] [...192.168.2.12][60549] -> [....192.168.2.1][...53]
detected: [....20] [ip4][..udp] [...192.168.2.12][60549] -> [....192.168.2.1][...53] [DNS.WhatsApp][Unknown][Network][Acceptable][pps.whatsapp.net]
+ RISK: Unidirectional Traffic
detection-update: [....20] [ip4][..udp] [...192.168.2.12][60549] -> [....192.168.2.1][...53] [DNS.WhatsApp][Unknown][Network][Acceptable][pps.whatsapp.net]
new: [....21] [ip4][..tcp] [...192.168.2.12][50504] -> [..157.240.20.52][..443]
detected: [....21] [ip4][..tcp] [...192.168.2.12][50504] -> [..157.240.20.52][..443] [TLS.WhatsApp][WhatsApp][Chat][Acceptable][pps.whatsapp.net]
@@ -83,7 +94,7 @@
detected: [....22] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable][lucas-imac]
new: [....23] [ip4][..udp] [...91.252.56.51][32704] -> [...192.168.2.12][56328]
detected: [....23] [ip4][..udp] [...91.252.56.51][32704] -> [...192.168.2.12][56328] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
analyse: [....14] [ip4][..udp] [...192.168.2.12][56328] -> [....31.13.86.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 12.196| 1.588| 3.050| 9304956.469| 3.200]
@@ -96,7 +107,7 @@
[ENTROPIES...: 6.5,6.5,5.3,5.3,4.6,4.5,6.5,6.5,5.2,5.1,4.6,4.5,4.6,4.5,4.6,4.5,4.6,4.5,5.7,5.2,7.0,7.1,7.1,6.6,7.3,7.0,7.2,4.6,4.5,6.5,6.5,5.2]
new: [....24] [ip4][..udp] [...192.168.2.12][56328] -> [.....1.60.78.64][64282]
detected: [....24] [ip4][..udp] [...192.168.2.12][56328] -> [.....1.60.78.64][64282] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
analyse: [....23] [ip4][..udp] [...91.252.56.51][32704] -> [...192.168.2.12][56328] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 1.204| 0.182| 0.229| 52393.320| 4.200]
@@ -120,35 +131,44 @@
detected: [....27] [ip4][..udp] [...192.168.2.12][57546] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
new: [....28] [ip4][.icmp] [...192.168.2.12] -> [...91.252.56.51]
detected: [....28] [ip4][.icmp] [...192.168.2.12] -> [...91.252.56.51] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..tcp] [...192.168.2.12][49354] -> [...17.242.60.84][.5223] [ApplePush][Apple][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
not-detected: [....25] [ip4][..tcp] [...192.168.2.12][49352] -> [169.254.162.244][49159] [Unknown][Unknown][Unrated]
idle: [....25] [ip4][..tcp] [...192.168.2.12][49352] -> [169.254.162.244][49159]
end: [....21] [ip4][..tcp] [...192.168.2.12][50504] -> [..157.240.20.52][..443] [TLS.WhatsApp][WhatsApp][Chat][Acceptable]
idle: [....22] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable]
idle: [....23] [ip4][..udp] [...91.252.56.51][32704] -> [...192.168.2.12][56328] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....27] [ip4][..udp] [...192.168.2.12][57546] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [.....6] [ip4][..udp] [...192.168.2.12][55296] -> [....192.168.2.1][...53] [DNS.WhatsAppFiles][Unknown][Network][Acceptable]
idle: [....13] [ip6][..udp] [...............fe80::414:409d:8afd:9f05][.5353] -> [...............................ff02::fb][.5353]
idle: [.....8] [ip4][..udp] [....192.168.2.1][17500] -> [..192.168.2.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
idle: [.....1] [ip4][..udp] [...192.168.2.12][51431] -> [....192.168.2.1][...53] [DNS.Google][Unknown][Network][Acceptable]
end: [.....9] [ip4][..tcp] [...17.171.47.85][..443] -> [...192.168.2.12][50502] [TLS][Apple][Web][Safe]
+ RISK: Unidirectional Traffic
idle: [....10] [ip4][..udp] [169.254.162.244][50384] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [....18] [ip4][..udp] [...192.168.2.12][56328] -> [.157.240.196.62][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....16] [ip4][..udp] [...192.168.2.12][56328] -> [.157.240.193.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....12] [ip4][..udp] [...192.168.2.12][.5353] -> [....224.0.0.251][.5353]
idle: [.....4] [ip4][..udp] [....192.168.2.1][57621] -> [..192.168.2.255][57621] [Spotify][Unknown][Music][Fun]
idle: [....24] [ip4][..udp] [...192.168.2.12][56328] -> [.....1.60.78.64][64282] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....26] [ip4][..udp] [...192.168.2.12][50191] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [.....7] [ip4][..tcp] [...192.168.2.12][50503] -> [....31.13.86.51][..443] [TLS.WhatsAppFiles][WhatsApp][Download][Acceptable]
idle: [....19] [ip4][..udp] [...192.168.2.12][64716] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [....11] [ip4][..udp] [....192.168.2.1][50384] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [....28] [ip4][.icmp] [...192.168.2.12] -> [...91.252.56.51] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....20] [ip4][..udp] [...192.168.2.12][60549] -> [....192.168.2.1][...53] [DNS.WhatsApp][Unknown][Network][Acceptable]
idle: [.....5] [ip4][..tcp] [...192.168.2.12][49355] -> [..157.240.20.53][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
idle: [....17] [ip4][..udp] [...192.168.2.12][56328] -> [..179.60.192.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [...192.168.2.12][60765] -> [....192.168.2.1][...53] [DNS.WhatsApp][Unknown][Network][Acceptable]
idle: [....15] [ip4][..udp] [...192.168.2.12][56328] -> [..185.60.216.51][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....14] [ip4][..udp] [...192.168.2.12][56328] -> [....31.13.86.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/waze.pcap.out b/test/results/flow-info/default/waze.pcap.out
index bc823767b..efcbd7325 100644
--- a/test/results/flow-info/waze.pcap.out
+++ b/test/results/flow-info/default/waze.pcap.out
@@ -4,13 +4,13 @@
new: [.....1] [ip4][..tcp] [...10.16.37.157][42256] -> [..174.37.231.81][.5222] [MIDSTREAM]
new: [.....2] [ip4][..udp] [.......10.8.0.1][46214] -> [..200.89.75.198][..123]
detected: [.....2] [ip4][..udp] [.......10.8.0.1][46214] -> [..200.89.75.198][..123] [NTP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..tcp] [.......10.8.0.1][54915] -> [..65.39.128.135][...80]
detected: [.....3] [ip4][..tcp] [.......10.8.0.1][54915] -> [..65.39.128.135][...80] [HTTP][Unknown][Web][Acceptable][xtra1.gpsonextra.net]
new: [.....4] [ip4][..tcp] [.......10.8.0.1][45529] -> [.54.230.227.172][...80]
new: [.....5] [ip4][..tcp] [.......10.8.0.1][36100] -> [..46.51.173.182][..443]
new: [.....6] [ip4][..tcp] [.......10.8.0.1][36102] -> [..46.51.173.182][..443]
detected: [.....4] [ip4][..tcp] [.......10.8.0.1][45529] -> [.54.230.227.172][...80] [HTTP.Waze][AmazonAWS][Web][Acceptable][roadshields.waze.com]
- detection-update: [.....4] [ip4][..tcp] [.......10.8.0.1][45529] -> [.54.230.227.172][...80] [HTTP.Waze][AmazonAWS][Web][Acceptable][roadshields.waze.com]
new: [.....7] [ip4][..tcp] [.......10.8.0.1][36585] -> [.173.194.118.48][..443]
detected: [.....5] [ip4][..tcp] [.......10.8.0.1][36100] -> [..46.51.173.182][..443] [TLS][AmazonAWS][Web][Safe][]
RISK: Obsolete TLS (v1.1 or older)
@@ -22,7 +22,6 @@
RISK: Obsolete TLS (v1.1 or older)
new: [.....8] [ip4][..tcp] [.......10.8.0.1][45536] -> [.54.230.227.172][...80]
detected: [.....8] [ip4][..tcp] [.......10.8.0.1][45536] -> [.54.230.227.172][...80] [HTTP.Waze][AmazonAWS][Web][Acceptable][cres.waze.com]
- detection-update: [.....8] [ip4][..tcp] [.......10.8.0.1][45536] -> [.54.230.227.172][...80] [HTTP.Waze][AmazonAWS][Web][Acceptable][cres.waze.com]
detection-update: [.....6] [ip4][..tcp] [.......10.8.0.1][36102] -> [..46.51.173.182][..443] [TLS][AmazonAWS][Web][Safe][]
RISK: Obsolete TLS (v1.1 or older), Weak TLS Cipher
detection-update: [.....5] [ip4][..tcp] [.......10.8.0.1][36100] -> [..46.51.173.182][..443] [TLS.Waze][AmazonAWS][Web][Acceptable][]
@@ -34,9 +33,7 @@
new: [.....9] [ip4][..tcp] [.......10.8.0.1][45538] -> [.54.230.227.172][...80]
new: [....10] [ip4][..tcp] [.......10.8.0.1][45540] -> [.54.230.227.172][...80]
detected: [.....9] [ip4][..tcp] [.......10.8.0.1][45538] -> [.54.230.227.172][...80] [HTTP.Waze][AmazonAWS][Web][Acceptable][cres.waze.com]
- detection-update: [.....9] [ip4][..tcp] [.......10.8.0.1][45538] -> [.54.230.227.172][...80] [HTTP.Waze][AmazonAWS][Web][Acceptable][cres.waze.com]
detected: [....10] [ip4][..tcp] [.......10.8.0.1][45540] -> [.54.230.227.172][...80] [HTTP.Waze][AmazonAWS][Web][Acceptable][roadshields.waze.com]
- detection-update: [....10] [ip4][..tcp] [.......10.8.0.1][45540] -> [.54.230.227.172][...80] [HTTP.Waze][AmazonAWS][Web][Acceptable][roadshields.waze.com]
new: [....11] [ip4][..tcp] [.......10.8.0.1][51049] -> [.176.34.103.105][..443]
new: [....12] [ip4][..tcp] [.......10.8.0.1][51050] -> [.176.34.103.105][..443]
new: [....13] [ip4][..tcp] [.......10.8.0.1][51051] -> [.176.34.103.105][..443]
@@ -51,10 +48,8 @@
detected: [....14] [ip4][..tcp] [.......10.8.0.1][39010] -> [..52.17.114.219][..443] [TLS][AmazonAWS][Web][Safe][]
RISK: Obsolete TLS (v1.1 or older)
detected: [....15] [ip4][..tcp] [.......10.8.0.1][45546] -> [.54.230.227.172][...80] [HTTP.Waze][AmazonAWS][Web][Acceptable][cres.waze.com]
- detection-update: [....15] [ip4][..tcp] [.......10.8.0.1][45546] -> [.54.230.227.172][...80] [HTTP.Waze][AmazonAWS][Web][Acceptable][cres.waze.com]
new: [....16] [ip4][..tcp] [.......10.8.0.1][45552] -> [.54.230.227.172][...80]
detected: [....16] [ip4][..tcp] [.......10.8.0.1][45552] -> [.54.230.227.172][...80] [HTTP.Waze][AmazonAWS][Web][Acceptable][cres.waze.com]
- detection-update: [....16] [ip4][..tcp] [.......10.8.0.1][45552] -> [.54.230.227.172][...80] [HTTP.Waze][AmazonAWS][Web][Acceptable][cres.waze.com]
detection-update: [....13] [ip4][..tcp] [.......10.8.0.1][51051] -> [.176.34.103.105][..443] [TLS][AmazonAWS][Web][Safe][]
RISK: Obsolete TLS (v1.1 or older)
detection-update: [....11] [ip4][..tcp] [.......10.8.0.1][51049] -> [.176.34.103.105][..443] [TLS][AmazonAWS][Web][Safe][]
@@ -63,7 +58,6 @@
RISK: Obsolete TLS (v1.1 or older)
new: [....17] [ip4][..tcp] [.......10.8.0.1][45554] -> [.54.230.227.172][...80]
detected: [....17] [ip4][..tcp] [.......10.8.0.1][45554] -> [.54.230.227.172][...80] [HTTP.Waze][AmazonAWS][Web][Acceptable][cres.waze.com]
- detection-update: [....17] [ip4][..tcp] [.......10.8.0.1][45554] -> [.54.230.227.172][...80] [HTTP.Waze][AmazonAWS][Web][Acceptable][cres.waze.com]
analyse: [.....3] [ip4][..tcp] [.......10.8.0.1][54915] -> [..65.39.128.135][...80] [HTTP][Unknown][Download][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.002| 3.681| 0.340| 0.885| 782653.260| 2.800]
@@ -220,6 +214,7 @@
guessed: [....30] [ip4][..tcp] [.......10.8.0.1][60479] -> [...200.160.4.49][..443] [TLS][Unknown][Web][Safe]
end: [....30] [ip4][..tcp] [.......10.8.0.1][60479] -> [...200.160.4.49][..443]
idle: [.....2] [ip4][..udp] [.......10.8.0.1][46214] -> [..200.89.75.198][..123] [NTP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [....27] [ip4][..tcp] [...10.16.37.157][52746] -> [...200.160.4.49][...80] [HTTP][Unknown][Web][Acceptable][]
end: [....27] [ip4][..tcp] [...10.16.37.157][52746] -> [...200.160.4.49][...80]
not-detected: [.....1] [ip4][..tcp] [...10.16.37.157][42256] -> [..174.37.231.81][.5222] [Unknown][Unknown][Unrated]
diff --git a/test/results/flow-info/webex.pcap.out b/test/results/flow-info/default/webex.pcap.out
index b42692de4..ab1a64361 100644
--- a/test/results/flow-info/webex.pcap.out
+++ b/test/results/flow-info/default/webex.pcap.out
@@ -136,6 +136,7 @@
RISK: Obsolete TLS (v1.1 or older), Weak TLS Cipher
new: [....24] [ip4][..udp] [.......10.8.0.1][64538] -> [....172.16.1.75][.5060]
detected: [....24] [ip4][..udp] [.......10.8.0.1][64538] -> [....172.16.1.75][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
detection-update: [....16] [ip4][..tcp] [.......10.8.0.1][47116] -> [.114.29.202.139][..443] [TLS.Webex][Webex][VoIP][Acceptable][]
RISK: Obsolete TLS (v1.1 or older), Weak TLS Cipher
detection-update: [....20] [ip4][..tcp] [.......10.8.0.1][47841] -> [..114.29.200.11][..443] [TLS.Webex][Webex][VoIP][Acceptable][]
@@ -152,6 +153,7 @@
new: [....32] [ip4][..tcp] [.......10.8.0.1][51135] -> [.62.109.224.120][..443]
new: [....33] [ip4][..tcp] [..10.133.206.47][33459] -> [...80.74.110.68][..443] [MIDSTREAM]
detected: [....33] [ip4][..tcp] [..10.133.206.47][33459] -> [...80.74.110.68][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
new: [....34] [ip4][..tcp] [.......10.8.0.1][33511] -> [...80.74.110.68][..443]
new: [....35] [ip4][..tcp] [.......10.8.0.1][33512] -> [...80.74.110.68][..443]
detected: [....26] [ip4][..tcp] [.......10.8.0.1][47135] -> [.114.29.202.139][..443] [TLS][Webex][Web][Safe][]
@@ -225,6 +227,7 @@
detection-update: [....41] [ip4][..tcp] [.......10.8.0.1][55669] -> [..173.243.0.110][..443] [TLS.Webex][Webex][VoIP][Acceptable][]
RISK: Obsolete TLS (v1.1 or older), Weak TLS Cipher
update: [....24] [ip4][..udp] [.......10.8.0.1][64538] -> [....172.16.1.75][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....42] [ip4][..tcp] [.......10.8.0.1][55671] -> [..173.243.0.110][..443]
detected: [....42] [ip4][..tcp] [.......10.8.0.1][55671] -> [..173.243.0.110][..443] [TLS][Webex][Web][Safe][]
RISK: Obsolete TLS (v1.1 or older)
@@ -239,7 +242,6 @@
new: [....45] [ip4][..tcp] [.......10.8.0.1][59756] -> [...78.46.237.91][...80]
new: [....46] [ip4][..tcp] [.......10.8.0.1][59757] -> [...78.46.237.91][...80]
detected: [....45] [ip4][..tcp] [.......10.8.0.1][59756] -> [...78.46.237.91][...80] [HTTP][Unknown][Web][Acceptable][cp.pushwoosh.com]
- detection-update: [....45] [ip4][..tcp] [.......10.8.0.1][59756] -> [...78.46.237.91][...80] [HTTP][Unknown][Web][Acceptable][cp.pushwoosh.com]
detected: [....46] [ip4][..tcp] [.......10.8.0.1][59757] -> [...78.46.237.91][...80] [HTTP][Unknown][Web][Acceptable][cp.pushwoosh.com]
detection-update: [....44] [ip4][..tcp] [.......10.8.0.1][46211] -> [...54.241.32.14][..443] [TLS][AmazonAWS][Web][Safe][api.crittercism.com]
RISK: Obsolete TLS (v1.1 or older)
@@ -296,12 +298,16 @@
RISK: Obsolete TLS (v1.1 or older)
detected: [....57] [ip4][..tcp] [.......10.8.0.1][51195] -> [.62.109.224.120][..443] [TLS][Webex][Web][Safe][]
RISK: Obsolete TLS (v1.1 or older)
- update: [....24] [ip4][..udp] [.......10.8.0.1][64538] -> [....172.16.1.75][.5060] [SIP][Unknown][VoIP][Acceptable]
detection-update: [....56] [ip4][..tcp] [.......10.8.0.1][51194] -> [.62.109.224.120][..443] [TLS.Webex][Webex][VoIP][Acceptable][]
RISK: Obsolete TLS (v1.1 or older), Weak TLS Cipher
+ update: [....24] [ip4][..udp] [.......10.8.0.1][64538] -> [....172.16.1.75][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
end: [....45] [ip4][..tcp] [.......10.8.0.1][59756] -> [...78.46.237.91][...80] [HTTP][Unknown][Web][Acceptable]
+ RISK: HTTP Obsolete Server
end: [....46] [ip4][..tcp] [.......10.8.0.1][59757] -> [...78.46.237.91][...80] [HTTP][Unknown][Web][Acceptable]
+ RISK: HTTP Obsolete Server
idle: [....24] [ip4][..udp] [.......10.8.0.1][64538] -> [....172.16.1.75][.5060] [SIP][Unknown][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
end: [....19] [ip4][..tcp] [.......10.8.0.1][55969] -> [...64.68.121.99][..443]
end: [....11] [ip4][..tcp] [.......10.8.0.1][51646] -> [..114.29.204.49][..443]
end: [....28] [ip4][..tcp] [.......10.8.0.1][51676] -> [..114.29.204.49][..443]
@@ -311,18 +317,20 @@
end: [....52] [ip4][..tcp] [.......10.8.0.1][51857] -> [.62.109.229.158][..443] [TLS.Webex][Webex][VoIP][Acceptable]
RISK: Obsolete TLS (v1.1 or older), Weak TLS Cipher
guessed: [....54] [ip4][..tcp] [.......10.8.0.1][51859] -> [.62.109.229.158][..443] [TLS][Webex][Web][Safe]
+ RISK: TCP Connection Issues
end: [....54] [ip4][..tcp] [.......10.8.0.1][51859] -> [.62.109.229.158][..443]
end: [....14] [ip4][..tcp] [.......10.8.0.1][45814] -> [...62.109.231.3][..443]
end: [....18] [ip4][..tcp] [.......10.8.0.1][52219] -> [..64.68.121.100][..443]
end: [....20] [ip4][..tcp] [.......10.8.0.1][47841] -> [..114.29.200.11][..443]
end: [....10] [ip4][..tcp] [.......10.8.0.1][41726] -> [.114.29.213.212][..443]
end: [....27] [ip4][..tcp] [.......10.8.0.1][41757] -> [.114.29.213.212][..443]
- not-detected: [....53] [ip4][..udp] [.......10.8.0.1][51772] -> [.62.109.229.158][.9000] [Unknown][Webex][Unrated]
+ guessed: [....53] [ip4][..udp] [.......10.8.0.1][51772] -> [.62.109.229.158][.9000] [Webex][Webex][VoIP][Acceptable]
idle: [....53] [ip4][..udp] [.......10.8.0.1][51772] -> [.62.109.229.158][.9000]
guessed: [.....6] [ip4][..tcp] [..10.133.206.47][59447] -> [..107.20.242.44][..443] [TLS][AmazonAWS][Web][Safe]
end: [.....6] [ip4][..tcp] [..10.133.206.47][59447] -> [..107.20.242.44][..443]
end: [....17] [ip4][..tcp] [.......10.8.0.1][52730] -> [...173.243.4.76][..443]
end: [....33] [ip4][..tcp] [..10.133.206.47][33459] -> [...80.74.110.68][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
end: [....15] [ip4][..tcp] [.......10.8.0.1][44492] -> [..64.68.104.140][..443]
guessed: [.....5] [ip4][..tcp] [..10.133.206.47][54651] -> [..185.63.147.10][..443] [TLS][Unknown][Web][Safe]
end: [.....5] [ip4][..tcp] [..10.133.206.47][54651] -> [..185.63.147.10][..443]
@@ -333,7 +341,7 @@
end: [....32] [ip4][..tcp] [.......10.8.0.1][51135] -> [.62.109.224.120][..443]
end: [....36] [ip4][..tcp] [.......10.8.0.1][51154] -> [.62.109.224.120][..443] [TLS.Webex][Webex][VoIP][Acceptable]
RISK: Obsolete TLS (v1.1 or older), Weak TLS Cipher
- end: [....37] [ip4][..tcp] [.......10.8.0.1][51155] -> [.62.109.224.120][..443] [TLS.Webex][Webex][VoIP][Acceptable]
+ idle: [....37] [ip4][..tcp] [.......10.8.0.1][51155] -> [.62.109.224.120][..443] [TLS.Webex][Webex][VoIP][Acceptable]
RISK: Obsolete TLS (v1.1 or older), Weak TLS Cipher
end: [....39] [ip4][..tcp] [.......10.8.0.1][55665] -> [..173.243.0.110][..443]
end: [....41] [ip4][..tcp] [.......10.8.0.1][55669] -> [..173.243.0.110][..443]
diff --git a/test/results/flow-info/websocket.pcap.out b/test/results/flow-info/default/websocket.pcap.out
index f075e7f27..43ff7be85 100644
--- a/test/results/flow-info/websocket.pcap.out
+++ b/test/results/flow-info/default/websocket.pcap.out
@@ -3,5 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [.192.168.43.135][12345] -> [...192.168.43.1][50999] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [.192.168.43.135][12345] -> [...192.168.43.1][50999] [WebSocket][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..tcp] [.192.168.43.135][12345] -> [...192.168.43.1][50999] [WebSocket][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/wechat.pcap.out b/test/results/flow-info/default/wechat.pcap.out
index 50ca6484d..9f6b7fed3 100644
--- a/test/results/flow-info/wechat.pcap.out
+++ b/test/results/flow-info/default/wechat.pcap.out
@@ -8,6 +8,7 @@
detected: [.....3] [ip6][..udp] [..............fe80::7a92:9cff:fe0f:a88e][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable][_googlecast._tcp.local]
new: [.....4] [ip4][..udp] [..192.168.1.103][53734] -> [..192.168.1.254][...53]
detected: [.....4] [ip4][..udp] [..192.168.1.103][53734] -> [..192.168.1.254][...53] [DNS.Google][Unknown][Network][Acceptable][safebrowsing.googleusercontent.com]
+ RISK: Unidirectional Traffic
detection-update: [.....4] [ip4][..udp] [..192.168.1.103][53734] -> [..192.168.1.254][...53] [DNS.Google][Unknown][Network][Acceptable][safebrowsing.googleusercontent.com]
new: [.....5] [ip4][..tcp] [..192.168.1.103][38657] -> [..172.217.22.14][..443]
detected: [.....5] [ip4][..tcp] [..192.168.1.103][38657] -> [..172.217.22.14][..443] [TLS.Google][Google][Web][Acceptable][safebrowsing.googleusercontent.com]
@@ -17,17 +18,22 @@
new: [.....7] [ip4][..tcp] [..192.168.1.103][53220] -> [..172.217.23.78][..443] [MIDSTREAM]
new: [.....8] [ip4][..udp] [..192.168.1.103][46078] -> [..192.168.1.254][...53]
detected: [.....8] [ip4][..udp] [..192.168.1.103][46078] -> [..192.168.1.254][...53] [DNS.Google][Unknown][Network][Acceptable][ssl.gstatic.com]
+ RISK: Unidirectional Traffic
detection-update: [.....8] [ip4][..udp] [..192.168.1.103][46078] -> [..192.168.1.254][...53] [DNS.Google][Unknown][Network][Acceptable][ssl.gstatic.com]
new: [.....9] [ip4][..udp] [..192.168.1.103][51507] -> [..172.217.23.67][..443]
detected: [.....9] [ip4][..udp] [..192.168.1.103][51507] -> [..172.217.23.67][..443] [QUIC.Google][Google][Web][Acceptable][ssl.gstatic.com]
+ RISK: Unidirectional Traffic
new: [....10] [ip4][..udp] [..192.168.1.103][55862] -> [..192.168.1.254][...53]
detected: [....10] [ip4][..udp] [..192.168.1.103][55862] -> [..192.168.1.254][...53] [DNS.GoogleDocs][Unknown][Network][Acceptable][docs.google.com]
+ RISK: Unidirectional Traffic
detection-update: [....10] [ip4][..udp] [..192.168.1.103][55862] -> [..192.168.1.254][...53] [DNS.GoogleDocs][Unknown][Network][Acceptable][docs.google.com]
new: [....11] [ip4][..udp] [..192.168.1.103][57591] -> [..216.58.198.46][..443]
detected: [....11] [ip4][..udp] [..192.168.1.103][57591] -> [..216.58.198.46][..443] [QUIC.GoogleDocs][Google][Collaborative][Acceptable][docs.google.com]
+ RISK: Unidirectional Traffic
new: [....12] [ip4][..tcp] [..192.168.1.103][36017] -> [.64.233.167.188][.5228] [MIDSTREAM]
new: [....13] [ip4][..tcp] [203.205.151.162][..443] -> [..192.168.1.103][54058] [MIDSTREAM]
detected: [....13] [ip4][..tcp] [203.205.151.162][..443] -> [..192.168.1.103][54058] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
new: [....14] [ip4][..tcp] [..192.168.1.103][40741] -> [203.205.151.211][..443] [MIDSTREAM]
new: [....15] [ip4][..tcp] [..192.168.1.103][54085] -> [203.205.151.162][..443] [MIDSTREAM]
new: [....16] [ip4][..tcp] [..192.168.1.103][54089] -> [203.205.151.162][..443]
@@ -108,8 +114,10 @@
update: [.....4] [ip4][..udp] [..192.168.1.103][53734] -> [..192.168.1.254][...53] [DNS.Google][Unknown][Network][Acceptable]
update: [....10] [ip4][..udp] [..192.168.1.103][55862] -> [..192.168.1.254][...53] [DNS.GoogleDocs][Unknown][Network][Acceptable]
update: [.....9] [ip4][..udp] [..192.168.1.103][51507] -> [..172.217.23.67][..443] [QUIC.Google][Google][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....8] [ip4][..udp] [..192.168.1.103][46078] -> [..192.168.1.254][...53] [DNS.Google][Unknown][Network][Acceptable]
update: [....11] [ip4][..udp] [..192.168.1.103][57591] -> [..216.58.198.46][..443] [QUIC.GoogleDocs][Google][Collaborative][Acceptable]
+ RISK: Unidirectional Traffic
new: [....26] [ip4][..tcp] [..192.168.1.103][54097] -> [203.205.151.162][..443]
new: [....27] [ip4][..tcp] [..192.168.1.103][54098] -> [203.205.151.162][..443]
detected: [....26] [ip4][..tcp] [..192.168.1.103][54097] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun][web.wechat.com]
@@ -160,8 +168,10 @@
update: [.....4] [ip4][..udp] [..192.168.1.103][53734] -> [..192.168.1.254][...53] [DNS.Google][Unknown][Network][Acceptable]
update: [....10] [ip4][..udp] [..192.168.1.103][55862] -> [..192.168.1.254][...53] [DNS.GoogleDocs][Unknown][Network][Acceptable]
update: [.....9] [ip4][..udp] [..192.168.1.103][51507] -> [..172.217.23.67][..443] [QUIC.Google][Google][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....8] [ip4][..udp] [..192.168.1.103][46078] -> [..192.168.1.254][...53] [DNS.Google][Unknown][Network][Acceptable]
update: [....11] [ip4][..udp] [..192.168.1.103][57591] -> [..216.58.198.46][..443] [QUIC.GoogleDocs][Google][Collaborative][Acceptable]
+ RISK: Unidirectional Traffic
new: [....31] [ip4][..tcp] [..192.168.1.103][54099] -> [203.205.151.162][..443]
new: [....32] [ip4][..tcp] [..192.168.1.103][54100] -> [203.205.151.162][..443]
detected: [....31] [ip4][..tcp] [..192.168.1.103][54099] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun][web.wechat.com]
@@ -251,8 +261,10 @@
idle: [....10] [ip4][..udp] [..192.168.1.103][55862] -> [..192.168.1.254][...53] [DNS.GoogleDocs][Unknown][Network][Acceptable]
end: [.....7] [ip4][..tcp] [..192.168.1.103][53220] -> [..172.217.23.78][..443]
idle: [.....9] [ip4][..udp] [..192.168.1.103][51507] -> [..172.217.23.67][..443] [QUIC.Google][Google][Web][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....8] [ip4][..udp] [..192.168.1.103][46078] -> [..192.168.1.254][...53] [DNS.Google][Unknown][Network][Acceptable]
idle: [....11] [ip4][..udp] [..192.168.1.103][57591] -> [..216.58.198.46][..443] [QUIC.GoogleDocs][Google][Collaborative][Acceptable]
+ RISK: Unidirectional Traffic
end: [.....6] [ip4][..tcp] [..192.168.1.103][47627] -> [..216.58.205.78][..443]
end: [....25] [ip4][..tcp] [..192.168.1.103][40740] -> [203.205.151.211][..443] [TLS][Unknown][Web][Safe]
update: [.....3] [ip6][..udp] [..............fe80::7a92:9cff:fe0f:a88e][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable]
@@ -267,6 +279,7 @@
detection-update: [....42] [ip4][..tcp] [..192.168.1.103][54113] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun][web.wechat.com]
new: [....44] [ip4][..udp] [..192.168.1.103][19041] -> [..192.168.1.254][...53]
detected: [....44] [ip4][..udp] [..192.168.1.103][19041] -> [..192.168.1.254][...53] [DNS.QQ][Unknown][Network][Fun][res.wx.qq.com]
+ RISK: Unidirectional Traffic
detection-update: [....44] [ip4][..udp] [..192.168.1.103][19041] -> [..192.168.1.254][...53] [DNS.QQ][Unknown][Network][Fun][res.wx.qq.com]
new: [....45] [ip4][..tcp] [..192.168.1.103][43850] -> [.203.205.158.34][..443]
new: [....46] [ip4][..tcp] [..192.168.1.103][43851] -> [.203.205.158.34][..443]
@@ -287,9 +300,11 @@
RISK: Weak TLS Cipher
new: [....47] [ip4][..udp] [..192.168.1.103][60562] -> [..192.168.1.254][...53]
detected: [....47] [ip4][..udp] [..192.168.1.103][60562] -> [..192.168.1.254][...53] [DNS.Google][Unknown][Network][Acceptable][ssl.gstatic.com]
+ RISK: Unidirectional Traffic
detection-update: [....47] [ip4][..udp] [..192.168.1.103][60562] -> [..192.168.1.254][...53] [DNS.Google][Unknown][Network][Acceptable][ssl.gstatic.com]
new: [....48] [ip4][..udp] [..192.168.1.103][35601] -> [..172.217.23.67][..443]
detected: [....48] [ip4][..udp] [..192.168.1.103][35601] -> [..172.217.23.67][..443] [QUIC.Google][Google][Web][Acceptable][ssl.gstatic.com]
+ RISK: Unidirectional Traffic
new: [....49] [ip4][..udp] [..192.168.1.100][..138] -> [..192.168.1.255][..138]
detected: [....49] [ip4][..udp] [..192.168.1.100][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous][giovanni-pc]
RISK: Unsafe Protocol
@@ -306,6 +321,7 @@
update: [....44] [ip4][..udp] [..192.168.1.103][19041] -> [..192.168.1.254][...53] [DNS.QQ][Unknown][Network][Fun]
update: [....47] [ip4][..udp] [..192.168.1.103][60562] -> [..192.168.1.254][...53] [DNS.Google][Unknown][Network][Acceptable]
update: [....48] [ip4][..udp] [..192.168.1.103][35601] -> [..172.217.23.67][..443] [QUIC.Google][Google][Web][Acceptable]
+ RISK: Unidirectional Traffic
analyse: [....50] [ip4][..tcp] [..192.168.1.103][54117] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 7.807| 0.648| 1.839| 3381034.746| 2.500]
@@ -365,8 +381,10 @@
update: [....44] [ip4][..udp] [..192.168.1.103][19041] -> [..192.168.1.254][...53] [DNS.QQ][Unknown][Network][Fun]
update: [....47] [ip4][..udp] [..192.168.1.103][60562] -> [..192.168.1.254][...53] [DNS.Google][Unknown][Network][Acceptable]
update: [....48] [ip4][..udp] [..192.168.1.103][35601] -> [..172.217.23.67][..443] [QUIC.Google][Google][Web][Acceptable]
+ RISK: Unidirectional Traffic
new: [....54] [ip4][..udp] [..192.168.1.103][60356] -> [..192.168.1.254][...53]
detected: [....54] [ip4][..udp] [..192.168.1.103][60356] -> [..192.168.1.254][...53] [DNS.WeChat][Unknown][Network][Fun][web.wechat.com]
+ RISK: Unidirectional Traffic
detection-update: [....54] [ip4][..udp] [..192.168.1.103][60356] -> [..192.168.1.254][...53] [DNS.WeChat][Unknown][Network][Fun][web.wechat.com]
new: [....55] [ip4][..tcp] [..192.168.1.103][58036] -> [203.205.147.171][..443]
new: [....56] [ip4][..tcp] [..192.168.1.103][58037] -> [203.205.147.171][..443]
@@ -392,6 +410,7 @@
[PKTLENS.....: 60,60,52,290,52,1480,52,1740,52,178,103,1292,527,52,1357,1225,429,52,250,52,1292,527,52,990,52,1292,527,52,1367,52,1225,429]
[ENTROPIES...: 4.7,5.3,5.1,5.9,5.1,6.8,5.0,7.6,5.0,6.3,5.9,7.8,7.5,5.1,7.8,7.8,7.4,5.1,7.1,5.0,7.8,7.6,5.1,7.8,4.9,7.8,7.6,5.1,7.9,4.9,7.8,7.4]
guessed: [....41] [ip4][..tcp] [..192.168.1.103][54106] -> [203.205.151.162][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
end: [....41] [ip4][..tcp] [..192.168.1.103][54106] -> [203.205.151.162][..443]
update: [.....3] [ip6][..udp] [..............fe80::7a92:9cff:fe0f:a88e][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable]
update: [....28] [ip4][....2] [..192.168.1.254] -> [......224.0.0.1] [IGMP][Unknown][Network][Acceptable]
@@ -422,6 +441,7 @@
update: [....44] [ip4][..udp] [..192.168.1.103][19041] -> [..192.168.1.254][...53] [DNS.QQ][Unknown][Network][Fun]
update: [....47] [ip4][..udp] [..192.168.1.103][60562] -> [..192.168.1.254][...53] [DNS.Google][Unknown][Network][Acceptable]
update: [....48] [ip4][..udp] [..192.168.1.103][35601] -> [..172.217.23.67][..443] [QUIC.Google][Google][Web][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [....46] [ip4][..tcp] [..192.168.1.103][43851] -> [.203.205.158.34][..443] [TLS][Tencent][Web][Safe]
end: [....46] [ip4][..tcp] [..192.168.1.103][43851] -> [.203.205.158.34][..443]
guessed: [....43] [ip4][..tcp] [..192.168.1.103][54114] -> [203.205.151.162][..443] [TLS][Unknown][Web][Safe]
@@ -433,6 +453,7 @@
idle: [....44] [ip4][..udp] [..192.168.1.103][19041] -> [..192.168.1.254][...53] [DNS.QQ][Unknown][Network][Fun]
idle: [....47] [ip4][..udp] [..192.168.1.103][60562] -> [..192.168.1.254][...53] [DNS.Google][Unknown][Network][Acceptable]
idle: [....48] [ip4][..udp] [..192.168.1.103][35601] -> [..172.217.23.67][..443] [QUIC.Google][Google][Web][Acceptable]
+ RISK: Unidirectional Traffic
update: [....66] [ip6][..udp] [..............fe80::91f9:3df3:7436:6cd6][50577] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
update: [.....3] [ip6][..udp] [..............fe80::7a92:9cff:fe0f:a88e][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable]
update: [....62] [ip4][..udp] [..192.168.1.100][49832] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
@@ -508,6 +529,7 @@
DAEMON-EVENT: [Flows][active: 30 / 75|skipped: 0|!detected: 0|guessed: 11|detection-updates: 63|updates: 72]
new: [....76] [ip4][..tcp] [..192.168.1.103][54183] -> [203.205.151.162][..443] [MIDSTREAM]
detected: [....76] [ip4][..tcp] [..192.168.1.103][54183] -> [203.205.151.162][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
new: [....77] [ip4][..tcp] [..192.168.1.103][54205] -> [.64.233.167.188][..443] [MIDSTREAM]
idle: [....66] [ip6][..udp] [..............fe80::91f9:3df3:7436:6cd6][50577] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
idle: [.....3] [ip6][..udp] [..............fe80::7a92:9cff:fe0f:a88e][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable]
@@ -529,7 +551,7 @@
end: [....74] [ip4][..tcp] [..192.168.1.103][58042] -> [203.205.147.171][..443]
guessed: [....75] [ip4][..tcp] [..192.168.1.103][58043] -> [203.205.147.171][..443] [TLS][Tencent][Web][Safe]
idle: [....75] [ip4][..tcp] [..192.168.1.103][58043] -> [203.205.147.171][..443]
- not-detected: [....12] [ip4][..tcp] [..192.168.1.103][36017] -> [.64.233.167.188][.5228] [Unknown][Google][Unrated]
+ guessed: [....12] [ip4][..tcp] [..192.168.1.103][36017] -> [.64.233.167.188][.5228] [Google][Google][Web][Acceptable]
idle: [....12] [ip4][..tcp] [..192.168.1.103][36017] -> [.64.233.167.188][.5228]
idle: [.....5] [ip4][..tcp] [..192.168.1.103][38657] -> [..172.217.22.14][..443] [TLS.Google][Google][Web][Acceptable]
idle: [....70] [ip6][icmp6] [.....................................::] -> [......................ff02::1:ff86:6c5b] [ICMPV6][Unknown][Network][Acceptable]
@@ -552,18 +574,23 @@
new: [....83] [ip4][..tcp] [..192.168.1.103][34981] -> [...95.101.34.33][...80] [MIDSTREAM]
new: [....84] [ip4][..udp] [..192.168.1.103][37578] -> [193.204.114.233][..123]
detected: [....84] [ip4][..udp] [..192.168.1.103][37578] -> [193.204.114.233][..123] [NTP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
new: [....85] [ip4][..tcp] [..192.168.1.103][58143] -> [.216.58.205.131][..443] [MIDSTREAM]
new: [....86] [ip4][..tcp] [..192.168.1.103][39195] -> [...95.101.34.34][...80] [MIDSTREAM]
new: [....87] [ip4][..tcp] [..192.168.1.103][52020] -> [.95.101.180.179][...80] [MIDSTREAM]
new: [....88] [ip4][..tcp] [..192.168.1.103][58226] -> [203.205.147.171][..443] [MIDSTREAM]
new: [....89] [ip4][..udp] [..192.168.1.103][58165] -> [..192.168.1.254][...53]
detected: [....89] [ip4][..udp] [..192.168.1.103][58165] -> [..192.168.1.254][...53] [DNS.WeChat][Unknown][Network][Fun][webpush.web.wechat.com]
+ RISK: Unidirectional Traffic
new: [....90] [ip4][..udp] [..192.168.1.103][43317] -> [..192.168.1.254][...53]
detected: [....90] [ip4][..udp] [..192.168.1.103][43317] -> [..192.168.1.254][...53] [DNS.WeChat][Unknown][Network][Fun][webpush.web.wechat.com]
+ RISK: Unidirectional Traffic
new: [....91] [ip4][..udp] [..192.168.1.103][56367] -> [..192.168.1.254][...53]
detected: [....91] [ip4][..udp] [..192.168.1.103][56367] -> [..192.168.1.254][...53] [DNS.WeChat][Unknown][Network][Fun][webpush.web.wechat.com]
+ RISK: Unidirectional Traffic
new: [....92] [ip4][..udp] [..192.168.1.103][33915] -> [..192.168.1.254][...53]
detected: [....92] [ip4][..udp] [..192.168.1.103][33915] -> [..192.168.1.254][...53] [DNS.WeChat][Unknown][Network][Fun][webpush.web.wechat.com]
+ RISK: Unidirectional Traffic
new: [....93] [ip4][....2] [..192.168.1.254] -> [......224.0.0.1]
detected: [....93] [ip4][....2] [..192.168.1.254] -> [......224.0.0.1] [IGMP][Unknown][Network][Acceptable]
new: [....94] [ip4][....2] [..192.168.1.103] -> [.....224.0.0.22]
@@ -577,47 +604,64 @@
new: [....98] [ip6][..udp] [..............fe80::7a92:9cff:fe0f:a88e][.5353] -> [...............................ff02::fb][.5353]
detected: [....98] [ip6][..udp] [..............fe80::7a92:9cff:fe0f:a88e][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable][_googlecast._tcp.local]
update: [....84] [ip4][..udp] [..192.168.1.103][37578] -> [193.204.114.233][..123] [NTP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
update: [....90] [ip4][..udp] [..192.168.1.103][43317] -> [..192.168.1.254][...53]
update: [....89] [ip4][..udp] [..192.168.1.103][58165] -> [..192.168.1.254][...53]
update: [....91] [ip4][..udp] [..192.168.1.103][56367] -> [..192.168.1.254][...53]
update: [....92] [ip4][..udp] [..192.168.1.103][33915] -> [..192.168.1.254][...53]
detected: [....85] [ip4][..tcp] [..192.168.1.103][58143] -> [.216.58.205.131][..443] [TLS][Google][Web][Safe]
+ RISK: Unidirectional Traffic
new: [....99] [ip4][..udp] [..192.168.1.103][45366] -> [..192.168.1.254][...53]
detected: [....99] [ip4][..udp] [..192.168.1.103][45366] -> [..192.168.1.254][...53] [DNS.WeChat][Unknown][Network][Fun][webpush.web.wechat.com]
+ RISK: Unidirectional Traffic
new: [...100] [ip4][..udp] [..192.168.1.103][59567] -> [..192.168.1.254][...53]
detected: [...100] [ip4][..udp] [..192.168.1.103][59567] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][ssl.gstatic.com.lan]
+ RISK: Unidirectional Traffic
new: [...101] [ip4][..udp] [..192.168.1.103][42074] -> [..192.168.1.254][...53]
detected: [...101] [ip4][..udp] [..192.168.1.103][42074] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][ssl.gstatic.com.lan]
+ RISK: Unidirectional Traffic
new: [...102] [ip4][..udp] [..192.168.1.103][43705] -> [..192.168.1.254][...53]
detected: [...102] [ip4][..udp] [..192.168.1.103][43705] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][webpush.web.wechat.com.lan]
+ RISK: Unidirectional Traffic
new: [...103] [ip4][..udp] [..192.168.1.103][44063] -> [..192.168.1.254][...53]
detected: [...103] [ip4][..udp] [..192.168.1.103][44063] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][1.debian.pool.ntp.org]
+ RISK: Unidirectional Traffic
detection-update: [...103] [ip4][..udp] [..192.168.1.103][44063] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][1.debian.pool.ntp.org]
+ RISK: Unidirectional Traffic
new: [...104] [ip4][..udp] [..192.168.1.100][..138] -> [..192.168.1.255][..138]
detected: [...104] [ip4][..udp] [..192.168.1.100][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous][giovanni-pc]
RISK: Unsafe Protocol
new: [...105] [ip4][..udp] [..192.168.1.103][42589] -> [..192.168.1.254][...53]
detected: [...105] [ip4][..udp] [..192.168.1.103][42589] -> [..192.168.1.254][...53] [DNS.Google][Unknown][Network][Acceptable][ssl.gstatic.com]
+ RISK: Unidirectional Traffic
new: [...106] [ip4][..udp] [..192.168.1.103][42856] -> [..192.168.1.254][...53]
detected: [...106] [ip4][..udp] [..192.168.1.103][42856] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][1.debian.pool.ntp.org.lan]
+ RISK: Unidirectional Traffic
detection-update: [...106] [ip4][..udp] [..192.168.1.103][42856] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][1.debian.pool.ntp.org.lan]
+ RISK: Unidirectional Traffic
new: [...107] [ip4][..udp] [..192.168.1.103][44346] -> [..192.168.1.254][...53]
detected: [...107] [ip4][..udp] [..192.168.1.103][44346] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][webpush.web.wechat.com.lan]
+ RISK: Unidirectional Traffic
new: [...108] [ip4][..udp] [..192.168.1.103][41759] -> [..192.168.1.254][...53]
detected: [...108] [ip4][..udp] [..192.168.1.103][41759] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][2.debian.pool.ntp.org]
+ RISK: Unidirectional Traffic
detection-update: [...108] [ip4][..udp] [..192.168.1.103][41759] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][2.debian.pool.ntp.org]
+ RISK: Unidirectional Traffic
new: [...109] [ip4][..udp] [..192.168.1.103][53515] -> [..192.168.1.254][...53]
detected: [...109] [ip4][..udp] [..192.168.1.103][53515] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][webpush.web.wechat.com.lan]
+ RISK: Unidirectional Traffic
idle: [...105] [ip4][..udp] [..192.168.1.103][42589] -> [..192.168.1.254][...53]
idle: [....98] [ip6][..udp] [..............fe80::7a92:9cff:fe0f:a88e][.5353] -> [...............................ff02::fb][.5353]
end: [....85] [ip4][..tcp] [..192.168.1.103][58143] -> [.216.58.205.131][..443]
idle: [....84] [ip4][..udp] [..192.168.1.103][37578] -> [193.204.114.233][..123] [NTP][Unknown][System][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...106] [ip4][..udp] [..192.168.1.103][42856] -> [..192.168.1.254][...53]
idle: [....96] [ip4][....2] [..192.168.1.108] -> [.....224.0.0.22] [IGMP][Unknown][Network][Acceptable]
idle: [....95] [ip4][....2] [..192.168.1.100] -> [.....224.0.0.22] [IGMP][Unknown][Network][Acceptable]
idle: [....94] [ip4][....2] [..192.168.1.103] -> [.....224.0.0.22] [IGMP][Unknown][Network][Acceptable]
idle: [....93] [ip4][....2] [..192.168.1.254] -> [......224.0.0.1] [IGMP][Unknown][Network][Acceptable]
guessed: [....87] [ip4][..tcp] [..192.168.1.103][52020] -> [.95.101.180.179][...80] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
end: [....87] [ip4][..tcp] [..192.168.1.103][52020] -> [.95.101.180.179][...80]
idle: [...100] [ip4][..udp] [..192.168.1.103][59567] -> [..192.168.1.254][...53]
idle: [...104] [ip4][..udp] [..192.168.1.100][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
@@ -627,6 +671,7 @@
idle: [....99] [ip4][..udp] [..192.168.1.103][45366] -> [..192.168.1.254][...53]
idle: [....97] [ip4][..udp] [..192.168.1.103][.5353] -> [....224.0.0.251][.5353]
guessed: [....88] [ip4][..tcp] [..192.168.1.103][58226] -> [203.205.147.171][..443] [TLS][Tencent][Web][Safe]
+ RISK: Unidirectional Traffic
end: [....88] [ip4][..tcp] [..192.168.1.103][58226] -> [203.205.147.171][..443]
idle: [....76] [ip4][..tcp] [..192.168.1.103][54183] -> [203.205.151.162][..443]
idle: [...102] [ip4][..udp] [..192.168.1.103][43705] -> [..192.168.1.254][...53]
@@ -638,19 +683,27 @@
idle: [....92] [ip4][..udp] [..192.168.1.103][33915] -> [..192.168.1.254][...53]
idle: [...107] [ip4][..udp] [..192.168.1.103][44346] -> [..192.168.1.254][...53]
guessed: [....83] [ip4][..tcp] [..192.168.1.103][34981] -> [...95.101.34.33][...80] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
end: [....83] [ip4][..tcp] [..192.168.1.103][34981] -> [...95.101.34.33][...80]
guessed: [....79] [ip4][..tcp] [..192.168.1.103][34996] -> [...95.101.34.33][...80] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
end: [....79] [ip4][..tcp] [..192.168.1.103][34996] -> [...95.101.34.33][...80]
guessed: [....80] [ip4][..tcp] [..192.168.1.103][34999] -> [...95.101.34.33][...80] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
end: [....80] [ip4][..tcp] [..192.168.1.103][34999] -> [...95.101.34.33][...80]
guessed: [....81] [ip4][..tcp] [..192.168.1.103][35000] -> [...95.101.34.33][...80] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
end: [....81] [ip4][..tcp] [..192.168.1.103][35000] -> [...95.101.34.33][...80]
guessed: [....77] [ip4][..tcp] [..192.168.1.103][54205] -> [.64.233.167.188][..443] [TLS][Google][Web][Safe]
+ RISK: Unidirectional Traffic
idle: [....77] [ip4][..tcp] [..192.168.1.103][54205] -> [.64.233.167.188][..443]
guessed: [....86] [ip4][..tcp] [..192.168.1.103][39195] -> [...95.101.34.34][...80] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
end: [....86] [ip4][..tcp] [..192.168.1.103][39195] -> [...95.101.34.34][...80]
guessed: [....78] [ip4][..tcp] [..192.168.1.103][39207] -> [...95.101.34.34][...80] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
end: [....78] [ip4][..tcp] [..192.168.1.103][39207] -> [...95.101.34.34][...80]
guessed: [....82] [ip4][..tcp] [..192.168.1.103][39231] -> [...95.101.34.34][...80] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
end: [....82] [ip4][..tcp] [..192.168.1.103][39231] -> [...95.101.34.34][...80]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/weibo.pcap.out b/test/results/flow-info/default/weibo.pcap.out
index f43e788b3..8b4acfed1 100644
--- a/test/results/flow-info/weibo.pcap.out
+++ b/test/results/flow-info/default/weibo.pcap.out
@@ -7,6 +7,7 @@
new: [.....4] [ip4][..udp] [..192.168.1.105][53656] -> [.216.58.210.227][..443]
new: [.....5] [ip4][..udp] [..192.168.1.105][54988] -> [....192.168.1.1][...53]
detected: [.....5] [ip4][..udp] [..192.168.1.105][54988] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][weibo.com]
+ RISK: Unidirectional Traffic
detection-update: [.....5] [ip4][..udp] [..192.168.1.105][54988] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][weibo.com]
new: [.....6] [ip4][..tcp] [..192.168.1.105][59119] -> [.114.134.80.162][...80]
new: [.....7] [ip4][..tcp] [..192.168.1.105][59120] -> [.114.134.80.162][...80]
@@ -15,13 +16,13 @@
detected: [.....6] [ip4][..tcp] [..192.168.1.105][59119] -> [.114.134.80.162][...80] [HTTP][Unknown][Web][Acceptable][weibo.com]
new: [....10] [ip4][..udp] [..192.168.1.105][.7148] -> [....192.168.1.1][...53]
detected: [....10] [ip4][..udp] [..192.168.1.105][.7148] -> [....192.168.1.1][...53] [DNS.Sina(Weibo)][Unknown][Network][Fun][www.weibo.com]
+ RISK: Unidirectional Traffic
detection-update: [....10] [ip4][..udp] [..192.168.1.105][.7148] -> [....192.168.1.1][...53] [DNS.Sina(Weibo)][Unknown][Network][Fun][www.weibo.com]
new: [....11] [ip4][..tcp] [..192.168.1.105][51698] -> [.93.188.134.137][...80]
detected: [....11] [ip4][..tcp] [..192.168.1.105][51698] -> [.93.188.134.137][...80] [HTTP.Sina(Weibo)][Unknown][SocialNetwork][Fun][www.weibo.com]
new: [....12] [ip4][..tcp] [..192.168.1.105][37802] -> [..216.58.212.69][..443] [MIDSTREAM]
new: [....13] [ip4][..tcp] [..192.168.1.105][40440] -> [.54.225.163.210][..443] [MIDSTREAM]
new: [....14] [ip4][..tcp] [..192.168.1.105][34699] -> [..216.58.212.65][..443] [MIDSTREAM]
- detection-update: [....11] [ip4][..tcp] [..192.168.1.105][51698] -> [.93.188.134.137][...80] [HTTP.Sina(Weibo)][Unknown][SocialNetwork][Fun][www.weibo.com]
analyse: [....11] [ip4][..tcp] [..192.168.1.105][51698] -> [.93.188.134.137][...80] [HTTP.Sina(Weibo)][Unknown][SocialNetwork][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.482| 0.042| 0.114| 12948.299| 2.500]
@@ -34,7 +35,9 @@
[ENTROPIES...: 4.7,5.2,5.0,5.9,5.1,5.1,5.1,7.9,5.1,7.9,5.1,5.1,5.1,7.8,5.1,5.2,5.1,7.9,5.1,7.2,5.1,5.1,5.2,7.8,5.1,5.8,5.1,5.2,5.0,7.9,4.9,7.9]
new: [....15] [ip4][..udp] [..192.168.1.105][53543] -> [....192.168.1.1][...53]
detected: [....15] [ip4][..udp] [..192.168.1.105][53543] -> [....192.168.1.1][...53] [DNS.Sina(Weibo)][Unknown][Network][Fun][img.t.sinajs.cn]
+ RISK: Unidirectional Traffic
detection-update: [....15] [ip4][..udp] [..192.168.1.105][53543] -> [....192.168.1.1][...53] [DNS.Sina(Weibo)][Unknown][Network][Fun][img.t.sinajs.cn]
+ RISK: Minor Issues
new: [....16] [ip4][..tcp] [..192.168.1.105][35803] -> [.93.188.134.246][...80]
new: [....17] [ip4][..tcp] [..192.168.1.105][35804] -> [.93.188.134.246][...80]
new: [....18] [ip4][..tcp] [..192.168.1.105][35805] -> [.93.188.134.246][...80]
@@ -43,6 +46,7 @@
detected: [....18] [ip4][..tcp] [..192.168.1.105][35805] -> [.93.188.134.246][...80] [HTTP.Sina(Weibo)][Unknown][SocialNetwork][Fun][img.t.sinajs.cn]
new: [....19] [ip4][..udp] [..192.168.1.105][41352] -> [....192.168.1.1][...53]
detected: [....19] [ip4][..udp] [..192.168.1.105][41352] -> [....192.168.1.1][...53] [DNS.Sina(Weibo)][Unknown][Network][Fun][js.t.sinajs.cn]
+ RISK: Unidirectional Traffic
analyse: [....17] [ip4][..tcp] [..192.168.1.105][35804] -> [.93.188.134.246][...80] [HTTP.Sina(Weibo)][Unknown][SocialNetwork][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.314| 0.038| 0.072| 5116.345| 3.500]
@@ -65,15 +69,19 @@
[ENTROPIES...: 4.6,5.1,4.9,5.9,5.0,5.7,4.8,7.8,4.9,8.0,4.9,7.9,4.8,8.0,4.9,7.9,4.9,5.7,5.0,5.7,5.0,7.9,4.9,7.9,4.9,7.9,5.0,7.9,5.0,7.9,5.0,7.8]
new: [....20] [ip4][..udp] [..192.168.1.105][18035] -> [....192.168.1.1][...53]
detected: [....20] [ip4][..udp] [..192.168.1.105][18035] -> [....192.168.1.1][...53] [DNS.Sina(Weibo)][Unknown][Network][Fun][u1.img.mobile.sina.cn]
+ RISK: Unidirectional Traffic
new: [....21] [ip4][..udp] [..192.168.1.105][50640] -> [....192.168.1.1][...53]
detected: [....21] [ip4][..udp] [..192.168.1.105][50640] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][acjstb.aliyun.com]
- RISK: Suspicious DGA Domain name
+ RISK: Susp DGA Domain name, Unidirectional Traffic
new: [....22] [ip4][..udp] [..192.168.1.105][51440] -> [....192.168.1.1][...53]
detected: [....22] [ip4][..udp] [..192.168.1.105][51440] -> [....192.168.1.1][...53] [DNS.Alibaba][Unknown][Network][Acceptable][g.alicdn.com]
+ RISK: Unidirectional Traffic
new: [....23] [ip4][..udp] [..192.168.1.105][53466] -> [....192.168.1.1][...53]
detected: [....23] [ip4][..udp] [..192.168.1.105][53466] -> [....192.168.1.1][...53] [DNS.Alibaba][Unknown][Network][Acceptable][log.mmstat.com]
+ RISK: Unidirectional Traffic
new: [....24] [ip4][..udp] [..192.168.1.105][33822] -> [....192.168.1.1][...53]
detected: [....24] [ip4][..udp] [..192.168.1.105][33822] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][login.taobao.com]
+ RISK: Unidirectional Traffic
new: [....25] [ip4][..tcp] [..192.168.1.105][35806] -> [.93.188.134.246][...80]
new: [....26] [ip4][..tcp] [..192.168.1.105][35807] -> [.93.188.134.246][...80]
new: [....27] [ip4][..tcp] [..192.168.1.105][35808] -> [.93.188.134.246][...80]
@@ -84,14 +92,17 @@
detection-update: [....20] [ip4][..udp] [..192.168.1.105][18035] -> [....192.168.1.1][...53] [DNS.Sina(Weibo)][Unknown][Network][Fun][u1.img.mobile.sina.cn]
new: [....29] [ip4][..udp] [..192.168.1.105][11798] -> [....192.168.1.1][...53]
detected: [....29] [ip4][..udp] [..192.168.1.105][11798] -> [....192.168.1.1][...53] [DNS.Sina(Weibo)][Unknown][Network][Fun][account.weibo.com]
+ RISK: Unidirectional Traffic
new: [....30] [ip4][..tcp] [..192.168.1.105][42275] -> [...222.73.28.96][...80]
detection-update: [....19] [ip4][..udp] [..192.168.1.105][41352] -> [....192.168.1.1][...53] [DNS.Sina(Weibo)][Unknown][Network][Fun][js.t.sinajs.cn]
new: [....31] [ip4][..udp] [..192.168.1.105][16804] -> [....192.168.1.1][...53]
detected: [....31] [ip4][..udp] [..192.168.1.105][16804] -> [....192.168.1.1][...53] [DNS.Sina(Weibo)][Unknown][Network][Fun][c.weibo.cn]
+ RISK: Unidirectional Traffic
new: [....32] [ip4][..tcp] [..192.168.1.105][35811] -> [.93.188.134.246][...80]
detection-update: [....22] [ip4][..udp] [..192.168.1.105][51440] -> [....192.168.1.1][...53] [DNS.Alibaba][Unknown][Network][Acceptable][g.alicdn.com]
new: [....33] [ip4][..udp] [..192.168.1.105][50533] -> [....192.168.1.1][...53]
detected: [....33] [ip4][..udp] [..192.168.1.105][50533] -> [....192.168.1.1][...53] [DNS.Sina(Weibo)][Unknown][Network][Fun][data.weibo.com]
+ RISK: Unidirectional Traffic
new: [....34] [ip4][..tcp] [..192.168.1.105][50827] -> [...47.89.65.229][..443]
detection-update: [....23] [ip4][..udp] [..192.168.1.105][53466] -> [....192.168.1.1][...53] [DNS.Alibaba][Unknown][Network][Acceptable][log.mmstat.com]
new: [....35] [ip4][..tcp] [..192.168.1.105][48352] -> [..140.205.174.1][..443]
@@ -102,7 +113,7 @@
detected: [....32] [ip4][..tcp] [..192.168.1.105][35811] -> [.93.188.134.246][...80] [HTTP.Sina(Weibo)][Unknown][SocialNetwork][Fun][js.t.sinajs.cn]
detected: [....34] [ip4][..tcp] [..192.168.1.105][50827] -> [...47.89.65.229][..443] [TLS.Alibaba][Unknown][Web][Acceptable][g.alicdn.com]
detection-update: [....21] [ip4][..udp] [..192.168.1.105][50640] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][acjstb.aliyun.com]
- RISK: Suspicious DGA Domain name, Risky Domain Name
+ RISK: Susp DGA Domain name, Risky Domain Name
new: [....40] [ip4][..tcp] [..192.168.1.105][52271] -> [..42.156.184.19][..443]
new: [....41] [ip4][..tcp] [..192.168.1.105][52272] -> [..42.156.184.19][..443]
detection-update: [....24] [ip4][..udp] [..192.168.1.105][33822] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][login.taobao.com]
@@ -142,6 +153,7 @@
[ENTROPIES...: 4.7,5.2,5.0,5.9,5.1,5.8,5.0,7.3,5.0,7.9,5.1,7.9,5.0,7.9,5.0,7.8,5.0,7.9,5.0,7.9,5.1,7.9,4.9,7.9,4.9,7.9,5.0,5.8,5.1,7.9,5.1,7.9]
idle: [....30] [ip4][..tcp] [..192.168.1.105][42275] -> [...222.73.28.96][...80]
guessed: [....37] [ip4][..tcp] [..192.168.1.105][42280] -> [...222.73.28.96][...80] [HTTP][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [....37] [ip4][..tcp] [..192.168.1.105][42280] -> [...222.73.28.96][...80]
idle: [....20] [ip4][..udp] [..192.168.1.105][18035] -> [....192.168.1.1][...53] [DNS.Sina(Weibo)][Unknown][Network][Fun]
idle: [.....5] [ip4][..udp] [..192.168.1.105][54988] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -166,27 +178,36 @@
guessed: [....38] [ip4][..tcp] [..192.168.1.105][50831] -> [...47.89.65.229][..443] [TLS][Unknown][Web][Safe]
idle: [....38] [ip4][..tcp] [..192.168.1.105][50831] -> [...47.89.65.229][..443]
guessed: [....42] [ip4][..tcp] [..192.168.1.105][47721] -> [.140.205.170.63][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
idle: [....42] [ip4][..tcp] [..192.168.1.105][47721] -> [.140.205.170.63][..443]
guessed: [....44] [ip4][..tcp] [..192.168.1.105][47723] -> [.140.205.170.63][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
idle: [....44] [ip4][..tcp] [..192.168.1.105][47723] -> [.140.205.170.63][..443]
idle: [....23] [ip4][..udp] [..192.168.1.105][53466] -> [....192.168.1.1][...53] [DNS.Alibaba][Unknown][Network][Acceptable]
idle: [....22] [ip4][..udp] [..192.168.1.105][51440] -> [....192.168.1.1][...53] [DNS.Alibaba][Unknown][Network][Acceptable]
guessed: [....40] [ip4][..tcp] [..192.168.1.105][52271] -> [..42.156.184.19][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
idle: [....40] [ip4][..tcp] [..192.168.1.105][52271] -> [..42.156.184.19][..443]
guessed: [....41] [ip4][..tcp] [..192.168.1.105][52272] -> [..42.156.184.19][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
idle: [....41] [ip4][..tcp] [..192.168.1.105][52272] -> [..42.156.184.19][..443]
guessed: [....43] [ip4][..tcp] [..192.168.1.105][52274] -> [..42.156.184.19][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
idle: [....43] [ip4][..tcp] [..192.168.1.105][52274] -> [..42.156.184.19][..443]
idle: [....15] [ip4][..udp] [..192.168.1.105][53543] -> [....192.168.1.1][...53] [DNS.Sina(Weibo)][Unknown][Network][Fun]
+ RISK: Minor Issues
idle: [....19] [ip4][..udp] [..192.168.1.105][41352] -> [....192.168.1.1][...53] [DNS.Sina(Weibo)][Unknown][Network][Fun]
idle: [....31] [ip4][..udp] [..192.168.1.105][16804] -> [....192.168.1.1][...53]
guessed: [....14] [ip4][..tcp] [..192.168.1.105][34699] -> [..216.58.212.65][..443] [TLS][Google][Web][Safe]
idle: [....14] [ip4][..tcp] [..192.168.1.105][34699] -> [..216.58.212.65][..443]
guessed: [....35] [ip4][..tcp] [..192.168.1.105][48352] -> [..140.205.174.1][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
idle: [....35] [ip4][..tcp] [..192.168.1.105][48352] -> [..140.205.174.1][..443]
guessed: [....36] [ip4][..tcp] [..192.168.1.105][48353] -> [..140.205.174.1][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
idle: [....36] [ip4][..tcp] [..192.168.1.105][48353] -> [..140.205.174.1][..443]
guessed: [....39] [ip4][..tcp] [..192.168.1.105][48356] -> [..140.205.174.1][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
idle: [....39] [ip4][..tcp] [..192.168.1.105][48356] -> [..140.205.174.1][..443]
idle: [....10] [ip4][..udp] [..192.168.1.105][.7148] -> [....192.168.1.1][...53] [DNS.Sina(Weibo)][Unknown][Network][Fun]
idle: [....24] [ip4][..udp] [..192.168.1.105][33822] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -204,6 +225,6 @@
idle: [....33] [ip4][..udp] [..192.168.1.105][50533] -> [....192.168.1.1][...53]
idle: [....11] [ip4][..tcp] [..192.168.1.105][51698] -> [.93.188.134.137][...80] [HTTP.Sina(Weibo)][Unknown][SocialNetwork][Fun]
idle: [....21] [ip4][..udp] [..192.168.1.105][50640] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Suspicious DGA Domain name, Risky Domain Name
+ RISK: Susp DGA Domain name, Risky Domain Name
idle: [....29] [ip4][..udp] [..192.168.1.105][11798] -> [....192.168.1.1][...53]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/whatsapp.pcap.out b/test/results/flow-info/default/whatsapp.pcap.out
index 5b27a5d0b..7efedb2aa 100644
--- a/test/results/flow-info/whatsapp.pcap.out
+++ b/test/results/flow-info/default/whatsapp.pcap.out
@@ -3,380 +3,552 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [..192.168.2.100][44804] -> [..179.60.195.49][.5222]
detected: [.....1] [ip4][..tcp] [..192.168.2.100][44804] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 9 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....2] [ip4][..tcp] [..192.168.2.100][40084] -> [..179.60.195.49][.5222]
detected: [.....2] [ip4][..tcp] [..192.168.2.100][40084] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..tcp] [..192.168.2.100][42272] -> [..179.60.195.49][.5222]
detected: [.....3] [ip4][..tcp] [..192.168.2.100][42272] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 25 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 3 / 3|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....4] [ip4][..tcp] [..192.168.2.100][42436] -> [..179.60.195.49][.5222]
detected: [.....4] [ip4][..tcp] [..192.168.2.100][42436] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 33 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 4 / 4|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....5] [ip4][..tcp] [..192.168.2.100][40178] -> [..179.60.195.49][.5222]
detected: [.....5] [ip4][..tcp] [..192.168.2.100][40178] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....6] [ip4][..tcp] [..192.168.2.100][42646] -> [..179.60.195.49][.5222]
detected: [.....6] [ip4][..tcp] [..192.168.2.100][42646] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....7] [ip4][..tcp] [..192.168.2.100][40204] -> [..179.60.195.49][.5222]
detected: [.....7] [ip4][..tcp] [..192.168.2.100][40204] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 57 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 7 / 7|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....8] [ip4][..tcp] [..192.168.2.100][45932] -> [..179.60.195.49][.5222]
detected: [.....8] [ip4][..tcp] [..192.168.2.100][45932] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..tcp] [..192.168.2.100][44804] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 65 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 7 / 8|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....9] [ip4][..tcp] [..192.168.2.100][40954] -> [..179.60.195.49][.5222]
detected: [.....9] [ip4][..tcp] [..192.168.2.100][40954] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..tcp] [..192.168.2.100][40084] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....5] [ip4][..tcp] [..192.168.2.100][40178] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..tcp] [..192.168.2.100][42272] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..tcp] [..192.168.2.100][42436] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 73 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 4 / 9|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....10] [ip4][..tcp] [..192.168.2.100][41214] -> [..179.60.195.49][.5222]
detected: [....10] [ip4][..tcp] [..192.168.2.100][41214] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][..tcp] [..192.168.2.100][42646] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....8] [ip4][..tcp] [..192.168.2.100][45932] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....7] [ip4][..tcp] [..192.168.2.100][40204] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....11] [ip4][..tcp] [..192.168.2.100][49026] -> [..179.60.195.33][.5222]
detected: [....11] [ip4][..tcp] [..192.168.2.100][49026] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 89 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 3 / 11|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....12] [ip4][..tcp] [..192.168.2.100][41288] -> [..179.60.195.49][.5222]
detected: [....12] [ip4][..tcp] [..192.168.2.100][41288] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 97 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 4 / 12|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....13] [ip4][..tcp] [..192.168.2.100][41610] -> [..179.60.195.49][.5222]
detected: [....13] [ip4][..tcp] [..192.168.2.100][41610] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....11] [ip4][..tcp] [..192.168.2.100][49026] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....9] [ip4][..tcp] [..192.168.2.100][40954] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....10] [ip4][..tcp] [..192.168.2.100][41214] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 105 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 13|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....14] [ip4][..tcp] [..192.168.2.100][41808] -> [..179.60.195.49][.5222]
detected: [....14] [ip4][..tcp] [..192.168.2.100][41808] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....12] [ip4][..tcp] [..192.168.2.100][41288] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 113 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 14|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....15] [ip4][..tcp] [..192.168.2.100][37482] -> [..179.60.195.33][.5222]
detected: [....15] [ip4][..tcp] [..192.168.2.100][37482] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 121 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 3 / 15|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....16] [ip4][..tcp] [..192.168.2.100][37582] -> [..179.60.195.33][.5222]
detected: [....16] [ip4][..tcp] [..192.168.2.100][37582] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 129 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 4 / 16|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....17] [ip4][..tcp] [..192.168.2.100][45754] -> [..179.60.195.49][.5222]
detected: [....17] [ip4][..tcp] [..192.168.2.100][45754] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....13] [ip4][..tcp] [..192.168.2.100][41610] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 137 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 4 / 17|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....18] [ip4][..tcp] [..192.168.2.100][45824] -> [..179.60.195.49][.5222]
detected: [....18] [ip4][..tcp] [..192.168.2.100][45824] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 145 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 5 / 18|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....19] [ip4][..tcp] [..192.168.2.100][46406] -> [..179.60.195.49][.5222]
detected: [....19] [ip4][..tcp] [..192.168.2.100][46406] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....15] [ip4][..tcp] [..192.168.2.100][37482] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....17] [ip4][..tcp] [..192.168.2.100][45754] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....16] [ip4][..tcp] [..192.168.2.100][37582] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....18] [ip4][..tcp] [..192.168.2.100][45824] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....14] [ip4][..tcp] [..192.168.2.100][41808] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 153 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 19|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....20] [ip4][..tcp] [..192.168.2.100][40224] -> [....31.13.83.49][.5222]
detected: [....20] [ip4][..tcp] [..192.168.2.100][40224] -> [....31.13.83.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....21] [ip4][..tcp] [..192.168.2.100][45470] -> [..179.60.195.33][.5222]
detected: [....21] [ip4][..tcp] [..192.168.2.100][45470] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 169 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 3 / 21|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....22] [ip4][..tcp] [..192.168.2.100][43084] -> [..179.60.195.49][.5222]
detected: [....22] [ip4][..tcp] [..192.168.2.100][43084] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....23] [ip4][..tcp] [..192.168.2.100][45602] -> [..179.60.195.33][.5222]
detected: [....23] [ip4][..tcp] [..192.168.2.100][45602] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 184 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 5 / 23|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....24] [ip4][..tcp] [..192.168.2.100][43152] -> [..179.60.195.49][.5222]
detected: [....24] [ip4][..tcp] [..192.168.2.100][43152] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....25] [ip4][..tcp] [..192.168.2.100][46042] -> [..179.60.195.33][.5222]
detected: [....25] [ip4][..tcp] [..192.168.2.100][46042] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 200 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 7 / 25|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....26] [ip4][..tcp] [..192.168.2.100][43206] -> [..179.60.195.49][.5222]
detected: [....26] [ip4][..tcp] [..192.168.2.100][43206] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....19] [ip4][..tcp] [..192.168.2.100][46406] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 208 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 7 / 26|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....27] [ip4][..tcp] [..192.168.2.100][43230] -> [..179.60.195.49][.5222]
detected: [....27] [ip4][..tcp] [..192.168.2.100][43230] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 216 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 8 / 27|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....28] [ip4][..tcp] [..192.168.2.100][46468] -> [..179.60.195.33][.5222]
detected: [....28] [ip4][..tcp] [..192.168.2.100][46468] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....21] [ip4][..tcp] [..192.168.2.100][45470] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....20] [ip4][..tcp] [..192.168.2.100][40224] -> [....31.13.83.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 224 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 7 / 28|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....29] [ip4][..tcp] [..192.168.2.100][47360] -> [..179.60.195.33][.5222]
detected: [....29] [ip4][..tcp] [..192.168.2.100][47360] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....22] [ip4][..tcp] [..192.168.2.100][43084] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....24] [ip4][..tcp] [..192.168.2.100][43152] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....26] [ip4][..tcp] [..192.168.2.100][43206] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....23] [ip4][..tcp] [..192.168.2.100][45602] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....25] [ip4][..tcp] [..192.168.2.100][46042] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 232 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 3 / 29|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....30] [ip4][..tcp] [..192.168.2.100][39828] -> [..179.60.195.33][.5222]
detected: [....30] [ip4][..tcp] [..192.168.2.100][39828] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....27] [ip4][..tcp] [..192.168.2.100][43230] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....28] [ip4][..tcp] [..192.168.2.100][46468] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 240 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 30|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....31] [ip4][..tcp] [..192.168.2.100][40108] -> [..179.60.195.33][.5222]
detected: [....31] [ip4][..tcp] [..192.168.2.100][40108] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....29] [ip4][..tcp] [..192.168.2.100][47360] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 249 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 31|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....32] [ip4][..tcp] [..192.168.2.100][43954] -> [..179.60.195.49][.5222]
detected: [....32] [ip4][..tcp] [..192.168.2.100][43954] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....33] [ip4][..tcp] [..192.168.2.100][49096] -> [....31.13.93.54][.5222]
detected: [....33] [ip4][..tcp] [..192.168.2.100][49096] -> [....31.13.93.54][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 265 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 4 / 33|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....34] [ip4][..tcp] [..192.168.2.100][43978] -> [..179.60.195.49][.5222]
detected: [....34] [ip4][..tcp] [..192.168.2.100][43978] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 273 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 5 / 34|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....35] [ip4][..tcp] [..192.168.2.100][40990] -> [..179.60.195.33][.5222]
detected: [....35] [ip4][..tcp] [..192.168.2.100][40990] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....30] [ip4][..tcp] [..192.168.2.100][39828] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....31] [ip4][..tcp] [..192.168.2.100][40108] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 281 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 4 / 35|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....36] [ip4][..tcp] [..192.168.2.100][45290] -> [..179.60.195.49][.5222]
detected: [....36] [ip4][..tcp] [..192.168.2.100][45290] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 289 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 5 / 36|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....37] [ip4][..tcp] [..192.168.2.100][51544] -> [..179.60.195.49][.5222]
detected: [....37] [ip4][..tcp] [..192.168.2.100][51544] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....33] [ip4][..tcp] [..192.168.2.100][49096] -> [....31.13.93.54][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....32] [ip4][..tcp] [..192.168.2.100][43954] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 297 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 4 / 37|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....38] [ip4][..tcp] [..192.168.2.100][47948] -> [..179.60.195.49][.5222]
detected: [....38] [ip4][..tcp] [..192.168.2.100][47948] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....39] [ip4][..tcp] [..192.168.2.100][51724] -> [..179.60.195.49][.5222]
detected: [....39] [ip4][..tcp] [..192.168.2.100][51724] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....34] [ip4][..tcp] [..192.168.2.100][43978] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 312 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 5 / 39|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....40] [ip4][..tcp] [..192.168.2.100][45334] -> [..179.60.195.49][.5222]
detected: [....40] [ip4][..tcp] [..192.168.2.100][45334] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....35] [ip4][..tcp] [..192.168.2.100][40990] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....41] [ip4][..tcp] [..192.168.2.100][52152] -> [..179.60.195.49][.5222]
detected: [....41] [ip4][..tcp] [..192.168.2.100][52152] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....36] [ip4][..tcp] [..192.168.2.100][45290] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 328 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 5 / 41|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....42] [ip4][..tcp] [..192.168.2.100][41664] -> [..179.60.195.33][.5222]
detected: [....42] [ip4][..tcp] [..192.168.2.100][41664] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....43] [ip4][..tcp] [..192.168.2.100][52294] -> [..179.60.195.49][.5222]
detected: [....43] [ip4][..tcp] [..192.168.2.100][52294] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....37] [ip4][..tcp] [..192.168.2.100][51544] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 344 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 6 / 43|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....44] [ip4][..tcp] [..192.168.2.100][41722] -> [..179.60.195.33][.5222]
detected: [....44] [ip4][..tcp] [..192.168.2.100][41722] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....39] [ip4][..tcp] [..192.168.2.100][51724] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....38] [ip4][..tcp] [..192.168.2.100][47948] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 352 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 5 / 44|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....45] [ip4][..tcp] [..192.168.2.100][48234] -> [..179.60.195.49][.5222]
detected: [....45] [ip4][..tcp] [..192.168.2.100][48234] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....40] [ip4][..tcp] [..192.168.2.100][45334] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....46] [ip4][..tcp] [..192.168.2.100][55038] -> [..179.60.195.49][.5222]
detected: [....46] [ip4][..tcp] [..192.168.2.100][55038] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....47] [ip4][..tcp] [..192.168.2.100][55476] -> [....31.13.70.50][.5222]
detected: [....47] [ip4][..tcp] [..192.168.2.100][55476] -> [....31.13.70.50][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 373 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 7 / 47|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....48] [ip4][..tcp] [..192.168.2.100][48538] -> [..179.60.195.49][.5222]
detected: [....48] [ip4][..tcp] [..192.168.2.100][48538] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....42] [ip4][..tcp] [..192.168.2.100][41664] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....44] [ip4][..tcp] [..192.168.2.100][41722] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....41] [ip4][..tcp] [..192.168.2.100][52152] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....43] [ip4][..tcp] [..192.168.2.100][52294] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 381 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 4 / 48|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....49] [ip4][..tcp] [..192.168.2.100][45850] -> [..179.60.195.49][.5222]
detected: [....49] [ip4][..tcp] [..192.168.2.100][45850] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....50] [ip4][..tcp] [..192.168.2.100][42622] -> [..179.60.195.33][.5222]
detected: [....50] [ip4][..tcp] [..192.168.2.100][42622] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....46] [ip4][..tcp] [..192.168.2.100][55038] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....47] [ip4][..tcp] [..192.168.2.100][55476] -> [....31.13.70.50][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....45] [ip4][..tcp] [..192.168.2.100][48234] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....51] [ip4][..tcp] [..192.168.2.100][58198] -> [..179.60.195.49][.5222]
detected: [....51] [ip4][..tcp] [..192.168.2.100][58198] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 405 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 4 / 51|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....52] [ip4][..tcp] [..192.168.2.100][42796] -> [..179.60.195.33][.5222]
detected: [....52] [ip4][..tcp] [..192.168.2.100][42796] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 413 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 5 / 52|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....53] [ip4][..tcp] [..192.168.2.100][43152] -> [..179.60.195.33][.5222]
detected: [....53] [ip4][..tcp] [..192.168.2.100][43152] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 421 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 6 / 53|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....54] [ip4][..tcp] [..192.168.2.100][46732] -> [..179.60.195.49][.5222]
detected: [....54] [ip4][..tcp] [..192.168.2.100][46732] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....55] [ip4][..tcp] [..192.168.2.100][58882] -> [..179.60.195.49][.5222]
detected: [....55] [ip4][..tcp] [..192.168.2.100][58882] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....56] [ip4][..tcp] [..192.168.2.100][46598] -> [..179.60.195.49][.5222]
detected: [....56] [ip4][..tcp] [..192.168.2.100][46598] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....50] [ip4][..tcp] [..192.168.2.100][42622] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....52] [ip4][..tcp] [..192.168.2.100][42796] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....49] [ip4][..tcp] [..192.168.2.100][45850] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....51] [ip4][..tcp] [..192.168.2.100][58198] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....48] [ip4][..tcp] [..192.168.2.100][48538] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 441 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 4 / 56|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....57] [ip4][..tcp] [..192.168.2.100][46768] -> [..179.60.195.49][.5222]
detected: [....57] [ip4][..tcp] [..192.168.2.100][46768] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....53] [ip4][..tcp] [..192.168.2.100][43152] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....58] [ip4][..tcp] [..192.168.2.100][45130] -> [..179.60.195.33][.5222]
detected: [....58] [ip4][..tcp] [..192.168.2.100][45130] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 457 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 5 / 58|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....59] [ip4][..tcp] [..192.168.2.100][60328] -> [..179.60.195.49][.5222]
detected: [....59] [ip4][..tcp] [..192.168.2.100][60328] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....54] [ip4][..tcp] [..192.168.2.100][46732] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....57] [ip4][..tcp] [..192.168.2.100][46768] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....58] [ip4][..tcp] [..192.168.2.100][45130] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....55] [ip4][..tcp] [..192.168.2.100][58882] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....56] [ip4][..tcp] [..192.168.2.100][46598] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 465 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 59|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....60] [ip4][..tcp] [..192.168.2.100][32798] -> [..179.60.195.49][.5222]
detected: [....60] [ip4][..tcp] [..192.168.2.100][32798] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....59] [ip4][..tcp] [..192.168.2.100][60328] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 473 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 60|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....61] [ip4][..tcp] [..192.168.2.100][47086] -> [..179.60.195.49][.5222]
detected: [....61] [ip4][..tcp] [..192.168.2.100][47086] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 481 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 61|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....62] [ip4][..tcp] [..192.168.2.100][49182] -> [..179.60.195.49][.5222]
detected: [....62] [ip4][..tcp] [..192.168.2.100][49182] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 488 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 3 / 62|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....63] [ip4][..tcp] [..192.168.2.100][49232] -> [..179.60.195.49][.5222]
detected: [....63] [ip4][..tcp] [..192.168.2.100][49232] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....61] [ip4][..tcp] [..192.168.2.100][47086] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....62] [ip4][..tcp] [..192.168.2.100][49182] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....60] [ip4][..tcp] [..192.168.2.100][32798] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 496 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 63|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....64] [ip4][..tcp] [..192.168.2.100][47350] -> [..179.60.195.49][.5222]
detected: [....64] [ip4][..tcp] [..192.168.2.100][47350] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 504 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 64|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....65] [ip4][..tcp] [..192.168.2.100][49238] -> [..179.60.195.49][.5222]
detected: [....65] [ip4][..tcp] [..192.168.2.100][49238] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....63] [ip4][..tcp] [..192.168.2.100][49232] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 512 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 65|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....66] [ip4][..tcp] [..192.168.2.100][49250] -> [..179.60.195.49][.5222]
detected: [....66] [ip4][..tcp] [..192.168.2.100][49250] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 520 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 3 / 66|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....67] [ip4][..tcp] [..192.168.2.100][47296] -> [..179.60.195.49][.5222]
detected: [....67] [ip4][..tcp] [..192.168.2.100][47296] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....64] [ip4][..tcp] [..192.168.2.100][47350] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 528 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 3 / 67|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....68] [ip4][..tcp] [..192.168.2.100][47900] -> [..179.60.195.49][.5222]
detected: [....68] [ip4][..tcp] [..192.168.2.100][47900] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....65] [ip4][..tcp] [..192.168.2.100][49238] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....66] [ip4][..tcp] [..192.168.2.100][49250] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 536 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 2 / 68|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....69] [ip4][..tcp] [..192.168.2.100][47590] -> [..179.60.195.49][.5222]
detected: [....69] [ip4][..tcp] [..192.168.2.100][47590] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....67] [ip4][..tcp] [..192.168.2.100][47296] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....70] [ip4][..tcp] [..192.168.2.100][49428] -> [..179.60.195.49][.5222]
detected: [....70] [ip4][..tcp] [..192.168.2.100][49428] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 552 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 3 / 70|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....71] [ip4][..tcp] [..192.168.2.100][47634] -> [..179.60.195.49][.5222]
detected: [....71] [ip4][..tcp] [..192.168.2.100][47634] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 560 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 4 / 71|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....72] [ip4][..tcp] [..192.168.2.100][49610] -> [..179.60.195.49][.5222]
detected: [....72] [ip4][..tcp] [..192.168.2.100][49610] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....68] [ip4][..tcp] [..192.168.2.100][47900] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....73] [ip4][..tcp] [..192.168.2.100][37378] -> [..179.60.195.49][.5222]
detected: [....73] [ip4][..tcp] [..192.168.2.100][37378] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....69] [ip4][..tcp] [..192.168.2.100][47590] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....74] [ip4][..tcp] [..192.168.2.100][47738] -> [..179.60.195.49][.5222]
detected: [....74] [ip4][..tcp] [..192.168.2.100][47738] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 584 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 5 / 74|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....75] [ip4][..tcp] [..192.168.2.100][37404] -> [..179.60.195.49][.5222]
detected: [....75] [ip4][..tcp] [..192.168.2.100][37404] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....70] [ip4][..tcp] [..192.168.2.100][49428] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....71] [ip4][..tcp] [..192.168.2.100][47634] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 592 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 4 / 75|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....76] [ip4][..tcp] [..192.168.2.100][47776] -> [..179.60.195.49][.5222]
detected: [....76] [ip4][..tcp] [..192.168.2.100][47776] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 600 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 5 / 76|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....77] [ip4][..tcp] [..192.168.2.100][37766] -> [..179.60.195.49][.5222]
detected: [....77] [ip4][..tcp] [..192.168.2.100][37766] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....78] [ip4][..tcp] [..192.168.2.100][37674] -> [..179.60.195.49][.5222]
detected: [....78] [ip4][..tcp] [..192.168.2.100][37674] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....72] [ip4][..tcp] [..192.168.2.100][49610] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 616 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 6 / 78|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....79] [ip4][..tcp] [..192.168.2.100][47810] -> [..179.60.195.49][.5222]
detected: [....79] [ip4][..tcp] [..192.168.2.100][47810] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....73] [ip4][..tcp] [..192.168.2.100][37378] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....74] [ip4][..tcp] [..192.168.2.100][47738] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....80] [ip4][..tcp] [..192.168.2.100][46394] -> [..179.60.195.33][.5222]
detected: [....80] [ip4][..tcp] [..192.168.2.100][46394] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....81] [ip4][..tcp] [..192.168.2.100][37822] -> [..179.60.195.49][.5222]
detected: [....81] [ip4][..tcp] [..192.168.2.100][37822] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
new: [....82] [ip4][..tcp] [..192.168.2.100][46576] -> [..179.60.195.33][.5222]
detected: [....82] [ip4][..tcp] [..192.168.2.100][46576] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 647 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 8 / 82|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....83] [ip4][..tcp] [..192.168.2.100][38234] -> [..179.60.195.49][.5222]
detected: [....83] [ip4][..tcp] [..192.168.2.100][38234] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....75] [ip4][..tcp] [..192.168.2.100][37404] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....76] [ip4][..tcp] [..192.168.2.100][47776] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 655 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 7 / 83|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....84] [ip4][..tcp] [..192.168.2.100][47284] -> [..179.60.195.33][.5222]
detected: [....84] [ip4][..tcp] [..192.168.2.100][47284] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....78] [ip4][..tcp] [..192.168.2.100][37674] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....77] [ip4][..tcp] [..192.168.2.100][37766] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 663 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 6 / 84|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....85] [ip4][..tcp] [..192.168.2.100][39334] -> [..179.60.195.49][.5222]
detected: [....85] [ip4][..tcp] [..192.168.2.100][39334] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....79] [ip4][..tcp] [..192.168.2.100][47810] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....81] [ip4][..tcp] [..192.168.2.100][37822] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....80] [ip4][..tcp] [..192.168.2.100][46394] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....82] [ip4][..tcp] [..192.168.2.100][46576] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 671 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 3 / 85|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [....86] [ip4][..tcp] [..192.168.2.100][40006] -> [..179.60.195.49][.5222]
detected: [....86] [ip4][..tcp] [..192.168.2.100][40006] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....84] [ip4][..tcp] [..192.168.2.100][47284] -> [..179.60.195.33][.5222] [WhatsApp][Facebook][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....85] [ip4][..tcp] [..192.168.2.100][39334] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....86] [ip4][..tcp] [..192.168.2.100][40006] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....83] [ip4][..tcp] [..192.168.2.100][38234] -> [..179.60.195.49][.5222] [WhatsApp][WhatsApp][Chat][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/whatsapp_login_call.pcap.out b/test/results/flow-info/default/whatsapp_login_call.pcap.out
index 932610123..2da82cff4 100644
--- a/test/results/flow-info/whatsapp_login_call.pcap.out
+++ b/test/results/flow-info/default/whatsapp_login_call.pcap.out
@@ -3,6 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [....192.168.2.4][49199] -> [..17.172.100.70][..993] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [....192.168.2.4][49199] -> [..17.172.100.70][..993] [IMAPS][Apple][Email][Safe]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..tcp] [....192.168.2.4][49166] -> [..17.154.66.121][..443] [MIDSTREAM]
new: [.....3] [ip4][..tcp] [....192.168.2.4][49163] -> [..17.154.66.111][..443] [MIDSTREAM]
new: [.....4] [ip4][..tcp] [....192.168.2.4][49169] -> [..17.173.66.102][..443] [MIDSTREAM]
@@ -15,9 +16,11 @@
new: [....10] [ip4][..tcp] [....192.168.2.4][49176] -> [..17.130.137.77][..443] [MIDSTREAM]
new: [....11] [ip4][..udp] [....192.168.2.4][51897] -> [....192.168.2.1][...53]
detected: [....11] [ip4][..udp] [....192.168.2.4][51897] -> [....192.168.2.1][...53] [DNS.Apple][Unknown][Network][Safe][query.ess.apple.com]
+ RISK: Unidirectional Traffic
detection-update: [....11] [ip4][..udp] [....192.168.2.4][51897] -> [....192.168.2.1][...53] [DNS.Apple][Unknown][Network][Safe][query.ess.apple.com]
new: [....12] [ip4][..udp] [....192.168.2.4][52190] -> [....192.168.2.1][...53]
detected: [....12] [ip4][..udp] [....192.168.2.4][52190] -> [....192.168.2.1][...53] [DNS.WhatsApp][Unknown][Network][Acceptable][e13.whatsapp.net]
+ RISK: Unidirectional Traffic
new: [....13] [ip4][..tcp] [....192.168.2.4][49201] -> [..17.178.104.12][..443]
detection-update: [....12] [ip4][..udp] [....192.168.2.4][52190] -> [....192.168.2.1][...53] [DNS.WhatsApp][Unknown][Network][Acceptable][e13.whatsapp.net]
new: [....14] [ip4][..tcp] [....192.168.2.4][49202] -> [.184.173.179.37][.5222]
@@ -28,6 +31,7 @@
RISK: TLS (probably) Not Carrying HTTPS
new: [....16] [ip4][..tcp] [....192.168.2.4][49193] -> [..17.110.229.14][.5223] [MIDSTREAM]
detected: [....16] [ip4][..tcp] [....192.168.2.4][49193] -> [..17.110.229.14][.5223] [ApplePush][Apple][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
detected: [....14] [ip4][..tcp] [....192.168.2.4][49202] -> [.184.173.179.37][.5222] [WhatsApp][Unknown][Chat][Acceptable]
analyse: [....13] [ip4][..tcp] [....192.168.2.4][49201] -> [..17.178.104.12][..443]
min| max| avg| stddev| variance| entropy
@@ -73,20 +77,28 @@
new: [....22] [ip4][..tcp] [....192.168.2.4][49180] -> [..17.172.100.59][..443] [MIDSTREAM]
new: [....23] [ip4][..udp] [....192.168.2.4][51518] -> [...31.13.100.14][.3478]
detected: [....23] [ip4][..udp] [....192.168.2.4][51518] -> [...31.13.100.14][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....24] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.70.48][.3478]
detected: [....24] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.70.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....25] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.64.48][.3478]
detected: [....25] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.64.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....26] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.85.48][.3478]
detected: [....26] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.85.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....27] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.91.48][.3478]
detected: [....27] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.91.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....28] [ip4][..udp] [....192.168.2.4][51518] -> [...31.13.79.192][.3478]
detected: [....28] [ip4][..udp] [....192.168.2.4][51518] -> [...31.13.79.192][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....29] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.93.48][.3478]
detected: [....29] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.93.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....30] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.73.48][.3478]
detected: [....30] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.73.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....31] [ip4][..tcp] [....192.168.2.4][49164] -> [..17.167.142.31][..443] [MIDSTREAM]
new: [....32] [ip4][..tcp] [....192.168.2.4][49167] -> [...17.172.100.8][..443] [MIDSTREAM]
new: [....33] [ip4][..udp] [....192.168.2.1][17500] -> [..192.168.2.255][17500]
@@ -98,10 +110,10 @@
new: [....37] [ip4][..tcp] [....192.168.2.4][49200] -> [..17.167.142.13][..443] [MIDSTREAM]
new: [....38] [ip4][..udp] [....192.168.2.4][51518] -> [...1.194.90.191][60312]
detected: [....38] [ip4][..udp] [....192.168.2.4][51518] -> [...1.194.90.191][60312] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....39] [ip4][..udp] [....192.168.2.4][51518] -> [..91.253.176.65][.9344]
detected: [....39] [ip4][..udp] [....192.168.2.4][51518] -> [..91.253.176.65][.9344] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
analyse: [....39] [ip4][..udp] [....192.168.2.4][51518] -> [..91.253.176.65][.9344] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.352| 0.131| 0.070| 4931.355| 4.700]
@@ -114,6 +126,7 @@
[ENTROPIES...: 5.6,5.7,7.3,5.6,5.6,7.3,6.9,7.2,7.0,7.3,6.9,6.5,5.1,7.0,6.8,6.4,6.4,5.2,7.1,5.1,7.1,6.4,7.3,6.1,7.4,6.1,7.3,7.0,7.3,7.3,7.3,7.2]
new: [....40] [ip4][.icmp] [....192.168.2.4] -> [..91.253.176.65]
detected: [....40] [ip4][.icmp] [....192.168.2.4] -> [..91.253.176.65] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....41] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67]
detected: [....41] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable][lucas-imac]
update: [....11] [ip4][..udp] [....192.168.2.4][51897] -> [....192.168.2.1][...53] [DNS.Apple][Unknown][Network][Safe]
@@ -131,37 +144,53 @@
detection-update: [....45] [ip6][..udp] [...............fe80::c42c:3ff:fe60:6a64][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable][lucas-imac.local]
detection-update: [....43] [ip6][..udp] [................fe80::da30:62ff:fe56:1c][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable][lucas-imac.local]
update: [....23] [ip4][..udp] [....192.168.2.4][51518] -> [...31.13.100.14][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....24] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.70.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....25] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.64.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....26] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.85.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....30] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.73.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....27] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.91.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....28] [ip4][..udp] [....192.168.2.4][51518] -> [...31.13.79.192][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....29] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.93.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....46] [ip4][..udp] [....192.168.2.4][52794] -> [....31.13.73.48][.3478]
detected: [....46] [ip4][..udp] [....192.168.2.4][52794] -> [....31.13.73.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....47] [ip4][..udp] [....192.168.2.4][52794] -> [....31.13.93.48][.3478]
detected: [....47] [ip4][..udp] [....192.168.2.4][52794] -> [....31.13.93.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....48] [ip4][..udp] [....192.168.2.4][52794] -> [...31.13.79.192][.3478]
detected: [....48] [ip4][..udp] [....192.168.2.4][52794] -> [...31.13.79.192][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....49] [ip4][..udp] [....192.168.2.4][52794] -> [..179.60.192.48][.3478]
detected: [....49] [ip4][..udp] [....192.168.2.4][52794] -> [..179.60.192.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....50] [ip4][..udp] [....192.168.2.4][52794] -> [..173.252.114.1][.3478]
detected: [....50] [ip4][..udp] [....192.168.2.4][52794] -> [..173.252.114.1][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....51] [ip4][..udp] [....192.168.2.4][52794] -> [....31.13.90.48][.3478]
detected: [....51] [ip4][..udp] [....192.168.2.4][52794] -> [....31.13.90.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....52] [ip4][..udp] [....192.168.2.4][52794] -> [....31.13.74.48][.3478]
detected: [....52] [ip4][..udp] [....192.168.2.4][52794] -> [....31.13.74.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....53] [ip4][..udp] [....192.168.2.4][52794] -> [....31.13.84.48][.3478]
detected: [....53] [ip4][..udp] [....192.168.2.4][52794] -> [....31.13.84.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
update: [....33] [ip4][..udp] [....192.168.2.1][17500] -> [..192.168.2.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
update: [....34] [ip4][..udp] [....192.168.2.1][57621] -> [..192.168.2.255][57621] [Spotify][Unknown][Music][Fun]
new: [....54] [ip4][..udp] [....192.168.2.4][52794] -> [...1.194.90.191][51727]
detected: [....54] [ip4][..udp] [....192.168.2.4][52794] -> [...1.194.90.191][51727] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....55] [ip4][..udp] [....192.168.2.4][52794] -> [..91.253.176.65][.9665]
detected: [....55] [ip4][..udp] [....192.168.2.4][52794] -> [..91.253.176.65][.9665] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
analyse: [....55] [ip4][..udp] [....192.168.2.4][52794] -> [..91.253.176.65][.9665] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.307| 0.114| 0.086| 7398.241| 4.500]
@@ -173,10 +202,11 @@
[PKTLENS.....: 72,72,72,72,72,134,124,306,167,54,232,134,228,212,103,134,151,54,172,156,161,172,156,134,114,140,205,140,209,54,134,171]
[ENTROPIES...: 5.6,5.6,5.6,5.5,5.6,6.3,6.4,7.3,6.7,5.2,7.0,6.6,7.1,7.0,6.2,6.5,6.6,5.2,6.7,6.6,6.7,6.7,6.7,6.4,6.3,6.5,6.9,6.5,6.9,5.2,6.6,6.7]
update: [....39] [ip4][..udp] [....192.168.2.4][51518] -> [..91.253.176.65][.9344] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
update: [....40] [ip4][.icmp] [....192.168.2.4] -> [..91.253.176.65] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....38] [ip4][..udp] [....192.168.2.4][51518] -> [...1.194.90.191][60312] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....56] [ip4][..tcp] [....192.168.2.4][49197] -> [..17.167.142.39][..443] [MIDSTREAM]
update: [....41] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable]
update: [....42] [ip4][..udp] [169.254.166.207][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable]
@@ -184,13 +214,21 @@
update: [....44] [ip4][..udp] [....192.168.2.1][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable]
update: [....11] [ip4][..udp] [....192.168.2.4][51897] -> [....192.168.2.1][...53] [DNS.Apple][Unknown][Network][Safe]
update: [....23] [ip4][..udp] [....192.168.2.4][51518] -> [...31.13.100.14][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....24] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.70.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....25] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.64.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....26] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.85.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....30] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.73.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....27] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.91.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....28] [ip4][..udp] [....192.168.2.4][51518] -> [...31.13.79.192][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....29] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.93.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....12] [ip4][..udp] [....192.168.2.4][52190] -> [....192.168.2.1][...53] [DNS.WhatsApp][Unknown][Network][Acceptable]
update: [....43] [ip6][..udp] [................fe80::da30:62ff:fe56:1c][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable]
new: [....57] [ip4][..tcp] [....192.168.2.4][49205] -> [..17.173.66.102][..443]
@@ -222,6 +260,7 @@
end: [....10] [ip4][..tcp] [....192.168.2.4][49176] -> [..17.130.137.77][..443]
end: [.....6] [ip4][..tcp] [....192.168.2.4][49172] -> [..23.50.148.228][..443] [TLS][Unknown][Web][Safe]
guessed: [....15] [ip4][..tcp] [....192.168.2.4][49203] -> [..17.178.104.14][..443] [TLS][Apple][Web][Safe]
+ RISK: TCP Connection Issues
end: [....15] [ip4][..tcp] [....192.168.2.4][49203] -> [..17.178.104.14][..443]
guessed: [.....9] [ip4][..tcp] [....192.168.2.4][49165] -> [..17.172.100.55][..443] [TLS][Apple][Web][Safe]
end: [.....9] [ip4][..tcp] [....192.168.2.4][49165] -> [..17.172.100.55][..443]
@@ -234,70 +273,97 @@
guessed: [.....4] [ip4][..tcp] [....192.168.2.4][49169] -> [..17.173.66.102][..443] [TLS][Apple][Web][Safe]
end: [.....4] [ip4][..tcp] [....192.168.2.4][49169] -> [..17.173.66.102][..443]
update: [....50] [ip4][..udp] [....192.168.2.4][52794] -> [..173.252.114.1][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....49] [ip4][..udp] [....192.168.2.4][52794] -> [..179.60.192.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....46] [ip4][..udp] [....192.168.2.4][52794] -> [....31.13.73.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....47] [ip4][..udp] [....192.168.2.4][52794] -> [....31.13.93.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....51] [ip4][..udp] [....192.168.2.4][52794] -> [....31.13.90.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....52] [ip4][..udp] [....192.168.2.4][52794] -> [....31.13.74.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....53] [ip4][..udp] [....192.168.2.4][52794] -> [....31.13.84.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....48] [ip4][..udp] [....192.168.2.4][52794] -> [...31.13.79.192][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [....55] [ip4][..udp] [....192.168.2.4][52794] -> [..91.253.176.65][.9665] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
update: [....33] [ip4][..udp] [....192.168.2.1][17500] -> [..192.168.2.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
update: [....54] [ip4][..udp] [....192.168.2.4][52794] -> [...1.194.90.191][51727] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
update: [....34] [ip4][..udp] [....192.168.2.1][57621] -> [..192.168.2.255][57621] [Spotify][Unknown][Music][Fun]
update: [....39] [ip4][..udp] [....192.168.2.4][51518] -> [..91.253.176.65][.9344] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
update: [....40] [ip4][.icmp] [....192.168.2.4] -> [..91.253.176.65] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [....38] [ip4][..udp] [....192.168.2.4][51518] -> [...1.194.90.191][60312] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....41] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable]
idle: [.....1] [ip4][..tcp] [....192.168.2.4][49199] -> [..17.172.100.70][..993] [IMAPS][Apple][Email][Safe]
guessed: [....35] [ip4][..tcp] [....192.168.2.4][49194] -> [..93.62.150.157][..443] [TLS][Unknown][Web][Safe]
end: [....35] [ip4][..tcp] [....192.168.2.4][49194] -> [..93.62.150.157][..443]
idle: [....50] [ip4][..udp] [....192.168.2.4][52794] -> [..173.252.114.1][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....49] [ip4][..udp] [....192.168.2.4][52794] -> [..179.60.192.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....42] [ip4][..udp] [169.254.166.207][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable]
guessed: [....31] [ip4][..tcp] [....192.168.2.4][49164] -> [..17.167.142.31][..443] [TLS][Apple][Web][Safe]
end: [....31] [ip4][..tcp] [....192.168.2.4][49164] -> [..17.167.142.31][..443]
guessed: [....56] [ip4][..tcp] [....192.168.2.4][49197] -> [..17.167.142.39][..443] [TLS][Apple][Web][Safe]
end: [....56] [ip4][..tcp] [....192.168.2.4][49197] -> [..17.167.142.39][..443]
idle: [....48] [ip4][..udp] [....192.168.2.4][52794] -> [...31.13.79.192][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....53] [ip4][..udp] [....192.168.2.4][52794] -> [....31.13.84.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....52] [ip4][..udp] [....192.168.2.4][52794] -> [....31.13.74.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....51] [ip4][..udp] [....192.168.2.4][52794] -> [....31.13.90.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....47] [ip4][..udp] [....192.168.2.4][52794] -> [....31.13.93.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....46] [ip4][..udp] [....192.168.2.4][52794] -> [....31.13.73.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [....36] [ip4][..tcp] [....192.168.2.4][49198] -> [..17.167.142.13][..443] [TLS][Apple][Web][Safe]
end: [....36] [ip4][..tcp] [....192.168.2.4][49198] -> [..17.167.142.13][..443]
guessed: [....37] [ip4][..tcp] [....192.168.2.4][49200] -> [..17.167.142.13][..443] [TLS][Apple][Web][Safe]
end: [....37] [ip4][..tcp] [....192.168.2.4][49200] -> [..17.167.142.13][..443]
idle: [....55] [ip4][..udp] [....192.168.2.4][52794] -> [..91.253.176.65][.9665] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....33] [ip4][..udp] [....192.168.2.1][17500] -> [..192.168.2.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
idle: [....45] [ip6][..udp] [...............fe80::c42c:3ff:fe60:6a64][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable]
end: [....14] [ip4][..tcp] [....192.168.2.4][49202] -> [.184.173.179.37][.5222] [WhatsApp][Unknown][Chat][Acceptable]
idle: [....54] [ip4][..udp] [....192.168.2.4][52794] -> [...1.194.90.191][51727] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....16] [ip4][..tcp] [....192.168.2.4][49193] -> [..17.110.229.14][.5223] [ApplePush][Apple][Cloud][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....44] [ip4][..udp] [....192.168.2.1][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable]
idle: [....34] [ip4][..udp] [....192.168.2.1][57621] -> [..192.168.2.255][57621] [Spotify][Unknown][Music][Fun]
idle: [....39] [ip4][..udp] [....192.168.2.4][51518] -> [..91.253.176.65][.9344] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [....11] [ip4][..udp] [....192.168.2.4][51897] -> [....192.168.2.1][...53] [DNS.Apple][Unknown][Network][Safe]
end: [....13] [ip4][..tcp] [....192.168.2.4][49201] -> [..17.178.104.12][..443] [TLS.Apple][Apple][Web][Safe]
RISK: TLS (probably) Not Carrying HTTPS
idle: [....29] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.93.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....28] [ip4][..udp] [....192.168.2.4][51518] -> [...31.13.79.192][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....27] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.91.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....30] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.73.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....26] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.85.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....25] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.64.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....24] [ip4][..udp] [....192.168.2.4][51518] -> [....31.13.70.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....23] [ip4][..udp] [....192.168.2.4][51518] -> [...31.13.100.14][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....12] [ip4][..udp] [....192.168.2.4][52190] -> [....192.168.2.1][...53] [DNS.WhatsApp][Unknown][Network][Acceptable]
idle: [....40] [ip4][.icmp] [....192.168.2.4] -> [..91.253.176.65] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [....32] [ip4][..tcp] [....192.168.2.4][49167] -> [...17.172.100.8][..443] [TLS][Apple][Web][Safe]
end: [....32] [ip4][..tcp] [....192.168.2.4][49167] -> [...17.172.100.8][..443]
guessed: [....22] [ip4][..tcp] [....192.168.2.4][49180] -> [..17.172.100.59][..443] [TLS][Apple][Web][Safe]
@@ -306,7 +372,7 @@
end: [....21] [ip4][..tcp] [....192.168.2.4][49181] -> [..17.172.100.37][..443]
idle: [....43] [ip6][..udp] [................fe80::da30:62ff:fe56:1c][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable]
idle: [....38] [ip4][..udp] [....192.168.2.4][51518] -> [...1.194.90.191][60312] [STUN.WhatsAppCall][Unknown][VoIP][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
end: [....17] [ip4][..tcp] [....192.168.2.4][49204] -> [..17.173.66.102][..443] [TLS.AppleStore][Apple][SoftwareUpdate][Safe]
RISK: TLS (probably) Not Carrying HTTPS
idle: [....57] [ip4][..tcp] [....192.168.2.4][49205] -> [..17.173.66.102][..443] [TLS.AppleStore][Apple][SoftwareUpdate][Safe]
diff --git a/test/results/flow-info/whatsapp_login_chat.pcap.out b/test/results/flow-info/default/whatsapp_login_chat.pcap.out
index e15db7092..35e4a9d9e 100644
--- a/test/results/flow-info/whatsapp_login_chat.pcap.out
+++ b/test/results/flow-info/default/whatsapp_login_chat.pcap.out
@@ -5,11 +5,13 @@
detected: [.....1] [ip4][..udp] [....192.168.2.1][57621] -> [..192.168.2.255][57621] [Spotify][Unknown][Music][Fun]
new: [.....2] [ip4][..udp] [....192.168.2.4][61697] -> [....192.168.2.1][...53]
detected: [.....2] [ip4][..udp] [....192.168.2.4][61697] -> [....192.168.2.1][...53] [DNS.WhatsApp][Unknown][Network][Acceptable][e12.whatsapp.net]
+ RISK: Unidirectional Traffic
detection-update: [.....2] [ip4][..udp] [....192.168.2.4][61697] -> [....192.168.2.1][...53] [DNS.WhatsApp][Unknown][Network][Acceptable][e12.whatsapp.net]
new: [.....3] [ip4][..tcp] [....192.168.2.4][49206] -> [...158.85.58.15][.5222]
detected: [.....3] [ip4][..tcp] [....192.168.2.4][49206] -> [...158.85.58.15][.5222] [WhatsApp][Unknown][Chat][Acceptable]
new: [.....4] [ip4][..tcp] [....192.168.2.4][49205] -> [..17.173.66.102][..443] [MIDSTREAM]
detected: [.....4] [ip4][..tcp] [....192.168.2.4][49205] -> [..17.173.66.102][..443] [TLS][Apple][Web][Safe]
+ RISK: Unidirectional Traffic
analyse: [.....4] [ip4][..tcp] [....192.168.2.4][49205] -> [..17.173.66.102][..443] [TLS][Apple][Web][Safe]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 3.031| 0.229| 0.711| 505750.847| 2.000]
@@ -30,14 +32,14 @@
detected: [.....8] [ip6][..udp] [...............fe80::189c:c31b:1298:224][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable][_raop._tcp.local]
new: [.....9] [ip4][..tcp] [..17.110.229.14][.5223] -> [....192.168.2.4][49193] [MIDSTREAM]
detected: [.....9] [ip4][..tcp] [..17.110.229.14][.5223] -> [....192.168.2.4][49193] [TLS][Apple][Web][Safe]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....6] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable]
idle: [.....8] [ip6][..udp] [...............fe80::189c:c31b:1298:224][.5353] -> [...............................ff02::fb][.5353]
idle: [.....5] [ip4][..udp] [....192.168.2.1][17500] -> [..192.168.2.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
idle: [.....2] [ip4][..udp] [....192.168.2.4][61697] -> [....192.168.2.1][...53] [DNS.WhatsApp][Unknown][Network][Acceptable]
end: [.....3] [ip4][..tcp] [....192.168.2.4][49206] -> [...158.85.58.15][.5222] [WhatsApp][Unknown][Chat][Acceptable]
end: [.....9] [ip4][..tcp] [..17.110.229.14][.5223] -> [....192.168.2.4][49193] [TLS][Apple][Web][Safe]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....7] [ip4][..udp] [....192.168.2.4][.5353] -> [....224.0.0.251][.5353]
idle: [.....1] [ip4][..udp] [....192.168.2.1][57621] -> [..192.168.2.255][57621] [Spotify][Unknown][Music][Fun]
idle: [.....4] [ip4][..tcp] [....192.168.2.4][49205] -> [..17.173.66.102][..443] [TLS][Apple][Web][Safe]
diff --git a/test/results/flow-info/whatsapp_voice_and_message.pcap.out b/test/results/flow-info/default/whatsapp_voice_and_message.pcap.out
index 7c4e0b95c..f5ae45020 100644
--- a/test/results/flow-info/whatsapp_voice_and_message.pcap.out
+++ b/test/results/flow-info/default/whatsapp_voice_and_message.pcap.out
@@ -5,20 +5,28 @@
detected: [.....1] [ip4][..tcp] [.......10.8.0.1][35480] -> [.184.173.179.46][..443] [WhatsApp][Unknown][Chat][Acceptable]
new: [.....2] [ip4][..udp] [.......10.8.0.1][53620] -> [....31.13.84.48][.3478]
detected: [.....2] [ip4][..udp] [.......10.8.0.1][53620] -> [....31.13.84.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [.....3] [ip4][..udp] [.......10.8.0.1][53620] -> [....31.13.74.48][.3478]
detected: [.....3] [ip4][..udp] [.......10.8.0.1][53620] -> [....31.13.74.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..udp] [.......10.8.0.1][53620] -> [....31.13.64.48][.3478]
detected: [.....4] [ip4][..udp] [.......10.8.0.1][53620] -> [....31.13.64.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][..udp] [.......10.8.0.1][53620] -> [..173.252.121.1][.3478]
detected: [.....5] [ip4][..udp] [.......10.8.0.1][53620] -> [..173.252.121.1][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [.....6] [ip4][..udp] [.......10.8.0.1][53620] -> [..179.60.192.48][.3478]
detected: [.....6] [ip4][..udp] [.......10.8.0.1][53620] -> [..179.60.192.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [.....7] [ip4][..udp] [.......10.8.0.1][53620] -> [...31.13.79.192][.3478]
detected: [.....7] [ip4][..udp] [.......10.8.0.1][53620] -> [...31.13.79.192][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [.....8] [ip4][..udp] [.......10.8.0.1][53620] -> [....31.13.93.48][.3478]
detected: [.....8] [ip4][..udp] [.......10.8.0.1][53620] -> [....31.13.93.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
new: [.....9] [ip4][..udp] [.......10.8.0.1][53620] -> [....31.13.73.48][.3478]
detected: [.....9] [ip4][..udp] [.......10.8.0.1][53620] -> [....31.13.73.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable][]
+ RISK: Unidirectional Traffic
analyse: [.....1] [ip4][..tcp] [.......10.8.0.1][35480] -> [.184.173.179.46][..443] [WhatsApp][Unknown][Chat][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 10.749| 0.839| 2.600| 6759456.965| 2.200]
@@ -44,13 +52,21 @@
[PKTLENS.....: 60,40,40,214,40,118,40,545,70,40,40,63,40,40,65,40,62,121,40,285,40,62,64,40,94,40,58,91,40,209,40,40]
[ENTROPIES...: 4.5,4.7,4.8,6.6,4.6,6.1,4.7,7.6,5.6,4.6,4.6,5.4,4.6,4.8,5.5,4.6,5.3,6.3,4.6,7.2,4.5,5.4,5.5,4.6,5.9,4.7,5.4,5.9,4.6,7.0,4.8,4.7]
update: [.....5] [ip4][..udp] [.......10.8.0.1][53620] -> [..173.252.121.1][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....6] [ip4][..udp] [.......10.8.0.1][53620] -> [..179.60.192.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....2] [ip4][..udp] [.......10.8.0.1][53620] -> [....31.13.84.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [.......10.8.0.1][53620] -> [....31.13.74.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....4] [ip4][..udp] [.......10.8.0.1][53620] -> [....31.13.64.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....9] [ip4][..udp] [.......10.8.0.1][53620] -> [....31.13.73.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....7] [ip4][..udp] [.......10.8.0.1][53620] -> [...31.13.79.192][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....8] [ip4][..udp] [.......10.8.0.1][53620] -> [....31.13.93.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....12] [ip4][..tcp] [.......10.8.0.1][49721] -> [..158.85.58.109][.5222]
detected: [....12] [ip4][..tcp] [.......10.8.0.1][49721] -> [..158.85.58.109][.5222] [WhatsApp][Unknown][Chat][Acceptable]
analyse: [....12] [ip4][..tcp] [.......10.8.0.1][49721] -> [..158.85.58.109][.5222] [WhatsApp][Unknown][Chat][Acceptable]
@@ -64,13 +80,21 @@
[PKTLENS.....: 60,40,40,214,40,118,40,294,70,40,63,40,65,40,62,121,40,62,285,40,40,40,209,98,40,99,40,165,40,62,40,76]
[ENTROPIES...: 4.5,4.7,4.7,6.8,4.7,6.1,4.7,7.2,5.5,4.7,5.6,4.7,5.5,4.7,5.5,6.4,4.7,5.5,7.2,4.7,4.9,4.9,6.9,6.1,4.7,6.0,4.8,6.7,4.8,5.4,4.8,5.7]
update: [.....5] [ip4][..udp] [.......10.8.0.1][53620] -> [..173.252.121.1][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....6] [ip4][..udp] [.......10.8.0.1][53620] -> [..179.60.192.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....2] [ip4][..udp] [.......10.8.0.1][53620] -> [....31.13.84.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [.......10.8.0.1][53620] -> [....31.13.74.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....4] [ip4][..udp] [.......10.8.0.1][53620] -> [....31.13.64.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....9] [ip4][..udp] [.......10.8.0.1][53620] -> [....31.13.73.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....7] [ip4][..udp] [.......10.8.0.1][53620] -> [...31.13.79.192][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....8] [ip4][..udp] [.......10.8.0.1][53620] -> [....31.13.93.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
new: [....13] [ip4][..tcp] [.......10.8.0.1][51570] -> [...158.85.5.199][..443]
detected: [....13] [ip4][..tcp] [.......10.8.0.1][51570] -> [...158.85.5.199][..443] [WhatsApp][Unknown][Chat][Acceptable]
idle: [....13] [ip4][..tcp] [.......10.8.0.1][51570] -> [...158.85.5.199][..443] [WhatsApp][Unknown][Chat][Acceptable]
@@ -78,12 +102,20 @@
end: [.....1] [ip4][..tcp] [.......10.8.0.1][35480] -> [.184.173.179.46][..443] [WhatsApp][Unknown][Chat][Acceptable]
end: [....11] [ip4][..tcp] [.......10.8.0.1][42241] -> [173.192.222.189][.5222] [WhatsApp][Unknown][Chat][Acceptable]
idle: [.....5] [ip4][..udp] [.......10.8.0.1][53620] -> [..173.252.121.1][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][..udp] [.......10.8.0.1][53620] -> [..179.60.192.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....8] [ip4][..udp] [.......10.8.0.1][53620] -> [....31.13.93.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....7] [ip4][..udp] [.......10.8.0.1][53620] -> [...31.13.79.192][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....9] [ip4][..udp] [.......10.8.0.1][53620] -> [....31.13.73.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....4] [ip4][..udp] [.......10.8.0.1][53620] -> [....31.13.64.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [.......10.8.0.1][53620] -> [....31.13.74.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [.......10.8.0.1][53620] -> [....31.13.84.48][.3478] [STUN.WhatsAppCall][Facebook][VoIP][Acceptable]
+ RISK: Unidirectional Traffic
end: [....12] [ip4][..tcp] [.......10.8.0.1][49721] -> [..158.85.58.109][.5222] [WhatsApp][Unknown][Chat][Acceptable]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/whatsappfiles.pcap.out b/test/results/flow-info/default/whatsappfiles.pcap.out
index 5987a435a..5987a435a 100644
--- a/test/results/flow-info/whatsappfiles.pcap.out
+++ b/test/results/flow-info/default/whatsappfiles.pcap.out
diff --git a/test/results/flow-info/whois.pcapng.out b/test/results/flow-info/default/whois.pcapng.out
index 61894d247..b6c013b79 100644
--- a/test/results/flow-info/whois.pcapng.out
+++ b/test/results/flow-info/default/whois.pcapng.out
@@ -16,5 +16,6 @@
new: [.....3] [ip4][..tcp] [...192.30.45.30][...43] -> [..10.160.63.128][53217]
idle: [.....2] [ip4][..tcp] [...10.17.34.139][64016] -> [.....10.17.51.8][.4343]
guessed: [.....3] [ip4][..tcp] [...192.30.45.30][...43] -> [..10.160.63.128][53217] [Whois-DAS][Unknown][Network][Acceptable][]
+ RISK: Unidirectional Traffic
end: [.....3] [ip4][..tcp] [...192.30.45.30][...43] -> [..10.160.63.128][53217]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/windowsupdate_over_http.pcap.out b/test/results/flow-info/default/windowsupdate_over_http.pcap.out
index 649453412..a43f16ba4 100644
--- a/test/results/flow-info/windowsupdate_over_http.pcap.out
+++ b/test/results/flow-info/default/windowsupdate_over_http.pcap.out
@@ -1,9 +1,9 @@
DAEMON-EVENT: init
new: [.....1] [ip4][..tcp] [......10.0.2.15][49815] -> [..151.99.72.125][...80]
detected: [.....1] [ip4][..tcp] [......10.0.2.15][49815] -> [..151.99.72.125][...80] [HTTP.WindowsUpdate][Unknown][SoftwareUpdate][Safe][151.99.72.125]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
detection-update: [.....1] [ip4][..tcp] [......10.0.2.15][49815] -> [..151.99.72.125][...80] [HTTP.WindowsUpdate][Unknown][Download][Safe][151.99.72.125]
- RISK: Binary App Transfer, HTTP Numeric IP Address
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
idle: [.....1] [ip4][..tcp] [......10.0.2.15][49815] -> [..151.99.72.125][...80] [HTTP.WindowsUpdate][Unknown][Download][Safe]
- RISK: Binary App Transfer, HTTP Numeric IP Address
+ RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/default/wireguard.pcap.out b/test/results/flow-info/default/wireguard.pcap.out
new file mode 100644
index 000000000..d1b926904
--- /dev/null
+++ b/test/results/flow-info/default/wireguard.pcap.out
@@ -0,0 +1,13 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..udp] [.......10.9.0.1][43462] -> [.......10.9.0.2][51820]
+ detected: [.....1] [ip4][..udp] [.......10.9.0.1][43462] -> [.......10.9.0.2][51820] [WireGuard][Unknown][VPN][Acceptable]
+ update: [.....1] [ip4][..udp] [.......10.9.0.1][43462] -> [.......10.9.0.2][51820] [WireGuard][Unknown][VPN][Acceptable]
+ DAEMON-EVENT: [Processed: 22 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 1]
+ new: [.....2] [ip4][..udp] [139.162.192.157][51820] -> [...192.168.0.14][36116]
+ detected: [.....2] [ip4][..udp] [139.162.192.157][51820] -> [...192.168.0.14][36116] [WireGuard][Unknown][VPN][Acceptable]
+ idle: [.....2] [ip4][..udp] [139.162.192.157][51820] -> [...192.168.0.14][36116] [WireGuard][Unknown][VPN][Acceptable]
+ idle: [.....1] [ip4][..udp] [.......10.9.0.1][43462] -> [.......10.9.0.2][51820] [WireGuard][Unknown][VPN][Acceptable]
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/wow.pcap.out b/test/results/flow-info/default/wow.pcap.out
index c9efd1b34..67768f6f6 100644
--- a/test/results/flow-info/wow.pcap.out
+++ b/test/results/flow-info/default/wow.pcap.out
@@ -4,24 +4,22 @@
new: [.....1] [ip4][..tcp] [.192.168.178.20][39309] -> [..12.129.222.53][...80]
new: [.....2] [ip4][..tcp] [.192.168.178.20][39312] -> [...24.105.29.21][...80]
detected: [.....1] [ip4][..tcp] [.192.168.178.20][39309] -> [..12.129.222.53][...80] [HTTP.WorldOfWarcraft][Unknown][Game][Fun][us.scan.worldofwarcraft.com]
+ RISK: HTTP Susp User-Agent
detected: [.....2] [ip4][..tcp] [.192.168.178.20][39312] -> [...24.105.29.21][...80] [HTTP.WorldOfWarcraft][Starcraft][Game][Fun][launcher.worldofwarcraft.com]
- detection-update: [.....1] [ip4][..tcp] [.192.168.178.20][39309] -> [..12.129.222.53][...80] [HTTP.WorldOfWarcraft][Unknown][Game][Fun][us.scan.worldofwarcraft.com]
- RISK: HTTP Suspicious User-Agent
- detection-update: [.....2] [ip4][..tcp] [.192.168.178.20][39312] -> [...24.105.29.21][...80] [HTTP.WorldOfWarcraft][Starcraft][Game][Fun][launcher.worldofwarcraft.com]
- RISK: HTTP Suspicious User-Agent
+ RISK: HTTP Susp User-Agent
new: [.....3] [ip4][..tcp] [.192.168.178.20][39329] -> [.12.129.228.153][.3724]
detected: [.....3] [ip4][..tcp] [.192.168.178.20][39329] -> [.12.129.228.153][.3724] [WorldOfWarcraft][Unknown][Game][Fun]
new: [.....4] [ip4][..tcp] [.192.168.178.20][39364] -> [.12.129.228.153][.3724]
detected: [.....4] [ip4][..tcp] [.192.168.178.20][39364] -> [.12.129.228.153][.3724] [WorldOfWarcraft][Unknown][Game][Fun]
DAEMON-EVENT: [Processed: 82 pkts][ZLib][compressions: 0|diff: 0 / 0]
- DAEMON-EVENT: [Flows][active: 4 / 4|skipped: 0|!detected: 0|guessed: 0|detection-updates: 2|updates: 0]
+ DAEMON-EVENT: [Flows][active: 4 / 4|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....5] [ip4][..tcp] [.192.168.178.20][39593] -> [.12.129.228.152][.3724]
detected: [.....5] [ip4][..tcp] [.192.168.178.20][39593] -> [.12.129.228.152][.3724] [WorldOfWarcraft][Unknown][Game][Fun]
idle: [.....3] [ip4][..tcp] [.192.168.178.20][39329] -> [.12.129.228.153][.3724] [WorldOfWarcraft][Unknown][Game][Fun]
idle: [.....4] [ip4][..tcp] [.192.168.178.20][39364] -> [.12.129.228.153][.3724] [WorldOfWarcraft][Unknown][Game][Fun]
idle: [.....5] [ip4][..tcp] [.192.168.178.20][39593] -> [.12.129.228.152][.3724] [WorldOfWarcraft][Unknown][Game][Fun]
end: [.....1] [ip4][..tcp] [.192.168.178.20][39309] -> [..12.129.222.53][...80] [HTTP.WorldOfWarcraft][Unknown][Game][Fun]
- RISK: HTTP Suspicious User-Agent
+ RISK: HTTP Susp User-Agent, HTTP Obsolete Server
end: [.....2] [ip4][..tcp] [.192.168.178.20][39312] -> [...24.105.29.21][...80] [HTTP.WorldOfWarcraft][Starcraft][Game][Fun]
- RISK: HTTP Suspicious User-Agent
+ RISK: HTTP Susp User-Agent
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/xdmcp.pcap.out b/test/results/flow-info/default/xdmcp.pcap.out
index b4125ff9d..2e027304b 100644
--- a/test/results/flow-info/xdmcp.pcap.out
+++ b/test/results/flow-info/default/xdmcp.pcap.out
@@ -3,5 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [.......10.1.2.2][61426] -> [.......10.1.2.4][..177]
detected: [.....1] [ip4][..udp] [.......10.1.2.2][61426] -> [.......10.1.2.4][..177] [XDMCP][Unknown][RemoteAccess][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [.......10.1.2.2][61426] -> [.......10.1.2.4][..177] [XDMCP][Unknown][RemoteAccess][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/xiaomi.pcap.out b/test/results/flow-info/default/xiaomi.pcap.out
index d3e6788ed..471997fdf 100644
--- a/test/results/flow-info/xiaomi.pcap.out
+++ b/test/results/flow-info/default/xiaomi.pcap.out
@@ -3,6 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [....47.241.7.88][.5222] -> [..10.52.151.160][39180] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [....47.241.7.88][.5222] -> [..10.52.151.160][39180] [Xiaomi][Unknown][Web][Acceptable][]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 1 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....2] [ip4][..tcp] [.115.164.74.232][.5222] -> [192.168.244.219][45904]
@@ -10,6 +11,7 @@
new: [.....3] [ip4][..tcp] [.115.164.74.232][.5222] -> [.192.168.247.13][38018]
detected: [.....3] [ip4][..tcp] [.115.164.74.232][.5222] -> [.192.168.247.13][38018] [Xiaomi][Unknown][Web][Acceptable][47.241.35.73]
idle: [.....1] [ip4][..tcp] [....47.241.7.88][.5222] -> [..10.52.151.160][39180] [Xiaomi][Unknown][Web][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..tcp] [..97.39.119.172][.5222] -> [..192.168.93.59][51488]
detected: [.....4] [ip4][..tcp] [..97.39.119.172][.5222] -> [..192.168.93.59][51488] [Xiaomi][Unknown][Web][Acceptable][47.241.59.87]
DAEMON-EVENT: [Processed: 18 pkts][ZLib][compressions: 0|diff: 0 / 0]
@@ -28,7 +30,7 @@
DAEMON-EVENT: [Flows][active: 1 / 6|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....7] [ip4][..tcp] [..192.168.2.100][48698] -> [...203.107.1.65][...80]
detected: [.....7] [ip4][..tcp] [..192.168.2.100][48698] -> [...203.107.1.65][...80] [HTTP.Xiaomi][Unknown][Web][Acceptable][203.107.1.65]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
idle: [.....7] [ip4][..tcp] [..192.168.2.100][48698] -> [...203.107.1.65][...80]
idle: [.....6] [ip4][..tcp] [..192.168.2.100][45106] -> [.18.193.233.122][.5222] [Xiaomi][AmazonAWS][Web][Acceptable]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/xss.pcap.out b/test/results/flow-info/default/xss.pcap.out
index 4958ab76e..49f4ac429 100644
--- a/test/results/flow-info/xss.pcap.out
+++ b/test/results/flow-info/default/xss.pcap.out
@@ -4,9 +4,9 @@
new: [.....1] [ip4][..tcp] [..192.168.3.109][53514] -> [..192.168.3.107][...80]
new: [.....2] [ip4][..tcp] [..192.168.3.109][53516] -> [..192.168.3.107][...80]
detected: [.....1] [ip4][..tcp] [..192.168.3.109][53514] -> [..192.168.3.107][...80] [HTTP][Unknown][Web][Acceptable][192.168.3.107]
- RISK: HTTP Numeric IP Address
+ RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
idle: [.....1] [ip4][..tcp] [..192.168.3.109][53514] -> [..192.168.3.107][...80] [HTTP][Unknown][Web][Acceptable]
- RISK: XSS Attack, HTTP Numeric IP Address
+ RISK: XSS Attack, HTTP/TLS/QUIC Numeric Hostname/SNI
guessed: [.....2] [ip4][..tcp] [..192.168.3.109][53516] -> [..192.168.3.107][...80] [HTTP][Unknown][Web][Acceptable][]
idle: [.....2] [ip4][..tcp] [..192.168.3.109][53516] -> [..192.168.3.107][...80]
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/default/yandex.pcapng.out b/test/results/flow-info/default/yandex.pcapng.out
new file mode 100644
index 000000000..2c26dee95
--- /dev/null
+++ b/test/results/flow-info/default/yandex.pcapng.out
@@ -0,0 +1,47 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..tcp] [..192.168.1.249][40218] -> [213.180.204.186][..443]
+ detected: [.....1] [ip4][..tcp] [..192.168.1.249][40218] -> [213.180.204.186][..443] [TLS.YandexMusic][Yandex][Music][Fun][music.yandex.kz]
+ detection-update: [.....1] [ip4][..tcp] [..192.168.1.249][40218] -> [213.180.204.186][..443] [TLS.YandexMusic][Yandex][Music][Fun][music.yandex.kz]
+ detection-update: [.....1] [ip4][..tcp] [..192.168.1.249][40218] -> [213.180.204.186][..443] [TLS.YandexMusic][Yandex][Music][Fun][music.yandex.kz]
+ DAEMON-EVENT: [Processed: 18 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 2|updates: 0]
+ new: [.....2] [ip4][..tcp] [..192.168.1.249][57126] -> [178.154.131.216][..443]
+ detected: [.....2] [ip4][..tcp] [..192.168.1.249][57126] -> [178.154.131.216][..443] [TLS.Yandex][Yandex][Web][Safe][yastatic.net]
+ RISK: Unidirectional Traffic
+ new: [.....3] [ip4][..tcp] [..192.168.1.249][42102] -> [178.154.131.216][..443]
+ detected: [.....3] [ip4][..tcp] [..192.168.1.249][42102] -> [178.154.131.216][..443] [TLS.Yandex][Yandex][Web][Safe][yastatic.net]
+ RISK: Unidirectional Traffic
+ new: [.....4] [ip4][..tcp] [..192.168.1.249][40870] -> [..87.250.251.22][..443]
+ detected: [.....4] [ip4][..tcp] [..192.168.1.249][40870] -> [..87.250.251.22][..443] [TLS.YandexMarket][Yandex][Shopping][Safe][fenek.market.yandex.ru]
+ RISK: Unidirectional Traffic
+ new: [.....5] [ip4][..tcp] [..192.168.1.249][57322] -> [.87.250.250.108][..443]
+ detected: [.....5] [ip4][..tcp] [..192.168.1.249][57322] -> [.87.250.250.108][..443] [TLS.YandexCloud][Yandex][Cloud][Safe][cloud.yandex.ru]
+ detection-update: [.....5] [ip4][..tcp] [..192.168.1.249][57322] -> [.87.250.250.108][..443] [TLS.YandexCloud][Yandex][Cloud][Safe][cloud.yandex.ru]
+ DAEMON-EVENT: [Processed: 67 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 5 / 5|skipped: 0|!detected: 0|guessed: 0|detection-updates: 3|updates: 0]
+ new: [.....6] [ip4][..tcp] [..192.168.1.249][58832] -> [.87.250.250.134][..443]
+ detected: [.....6] [ip4][..tcp] [..192.168.1.249][58832] -> [.87.250.250.134][..443] [TLS.YandexDirect][Yandex][Advertisement][Tracker/Ads][direct.yandex.kz]
+ detection-update: [.....6] [ip4][..tcp] [..192.168.1.249][58832] -> [.87.250.250.134][..443] [TLS.YandexDirect][Yandex][Advertisement][Tracker/Ads][direct.yandex.kz]
+ new: [.....7] [ip4][..tcp] [..192.168.1.249][42954] -> [...77.88.21.127][..443]
+ detected: [.....7] [ip4][..tcp] [..192.168.1.249][42954] -> [...77.88.21.127][..443] [TLS.YandexDisk][Yandex][Cloud][Safe][1.downloader.disk.yandex.kz]
+ detection-update: [.....7] [ip4][..tcp] [..192.168.1.249][42954] -> [...77.88.21.127][..443] [TLS.YandexDisk][Yandex][Cloud][Safe][1.downloader.disk.yandex.kz]
+ detection-update: [.....7] [ip4][..tcp] [..192.168.1.249][42954] -> [...77.88.21.127][..443] [TLS.YandexDisk][Yandex][Cloud][Safe][1.downloader.disk.yandex.kz]
+ RISK: TLS Cert About To Expire
+ new: [.....8] [ip4][..tcp] [..192.168.1.249][45224] -> [....77.88.21.37][..443]
+ detected: [.....8] [ip4][..tcp] [..192.168.1.249][45224] -> [....77.88.21.37][..443] [TLS.YandexMail][Yandex][Email][Safe][mail.yandex.kz]
+ RISK: Unidirectional Traffic
+ new: [.....9] [ip4][..tcp] [..192.168.1.249][51462] -> [..87.250.251.77][..443]
+ detected: [.....9] [ip4][..tcp] [..192.168.1.249][51462] -> [..87.250.251.77][..443] [TLS.YandexMetrika][Yandex][Web][Safe][metrika.yandex.kz]
+ detection-update: [.....9] [ip4][..tcp] [..192.168.1.249][51462] -> [..87.250.251.77][..443] [TLS.YandexMetrika][Yandex][Web][Safe][metrika.yandex.kz]
+ idle: [.....3] [ip4][..tcp] [..192.168.1.249][42102] -> [178.154.131.216][..443]
+ idle: [.....7] [ip4][..tcp] [..192.168.1.249][42954] -> [...77.88.21.127][..443]
+ idle: [.....6] [ip4][..tcp] [..192.168.1.249][58832] -> [.87.250.250.134][..443]
+ idle: [.....8] [ip4][..tcp] [..192.168.1.249][45224] -> [....77.88.21.37][..443]
+ idle: [.....2] [ip4][..tcp] [..192.168.1.249][57126] -> [178.154.131.216][..443]
+ idle: [.....1] [ip4][..tcp] [..192.168.1.249][40218] -> [213.180.204.186][..443]
+ idle: [.....4] [ip4][..tcp] [..192.168.1.249][40870] -> [..87.250.251.22][..443]
+ idle: [.....5] [ip4][..tcp] [..192.168.1.249][57322] -> [.87.250.250.108][..443]
+ idle: [.....9] [ip4][..tcp] [..192.168.1.249][51462] -> [..87.250.251.77][..443]
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/youtube_quic.pcap.out b/test/results/flow-info/default/youtube_quic.pcap.out
index 507ee47cd..3be13ab4e 100644
--- a/test/results/flow-info/youtube_quic.pcap.out
+++ b/test/results/flow-info/default/youtube_quic.pcap.out
@@ -3,8 +3,10 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [....192.168.1.7][54997] -> [..216.58.205.66][..443]
detected: [.....1] [ip4][..udp] [....192.168.1.7][54997] -> [..216.58.205.66][..443] [QUIC.Google][Google][Advertisement][Acceptable][pagead2.googlesyndication.com]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..udp] [....192.168.1.7][56074] -> [..216.58.198.33][..443]
detected: [.....2] [ip4][..udp] [....192.168.1.7][56074] -> [..216.58.198.33][..443] [QUIC.YouTube][Google][Media][Fun][yt3.ggpht.com]
+ RISK: Unidirectional Traffic
analyse: [.....2] [ip4][..udp] [....192.168.1.7][56074] -> [..216.58.198.33][..443] [QUIC.YouTube][Google][Media][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.047| 0.007| 0.013| 177.503| 3.300]
@@ -17,7 +19,11 @@
[ENTROPIES...: 2.5,7.5,2.6,5.5,7.5,6.7,6.7,5.2,7.9,5.3,5.5,5.6,7.8,7.8,5.6,7.9,7.9,5.6,7.9,7.9,5.5,7.9,7.9,5.6,7.9,7.9,5.6,7.9,7.9,5.5,7.8,7.9]
new: [.....3] [ip4][..udp] [....192.168.1.7][53859] -> [..216.58.205.66][..443]
detected: [.....3] [ip4][..udp] [....192.168.1.7][53859] -> [..216.58.205.66][..443] [QUIC.Google][Google][Advertisement][Acceptable][googleads.g.doubleclick.net]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [....192.168.1.7][56074] -> [..216.58.198.33][..443] [QUIC.YouTube][Google][Media][Fun]
+ RISK: Unidirectional Traffic
idle: [.....1] [ip4][..udp] [....192.168.1.7][54997] -> [..216.58.205.66][..443] [QUIC.Google][Google][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [....192.168.1.7][53859] -> [..216.58.205.66][..443] [QUIC.Google][Google][Advertisement][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/youtubeupload.pcap.out b/test/results/flow-info/default/youtubeupload.pcap.out
index 9cf69420f..432f5c37d 100644
--- a/test/results/flow-info/youtubeupload.pcap.out
+++ b/test/results/flow-info/default/youtubeupload.pcap.out
@@ -3,12 +3,14 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [...192.168.2.27][51925] -> [.172.217.23.111][..443]
detected: [.....1] [ip4][..udp] [...192.168.2.27][51925] -> [.172.217.23.111][..443] [QUIC.YouTubeUpload][Google][Media][Fun][upload.youtube.com]
+ RISK: Unidirectional Traffic
new: [.....2] [ip4][..tcp] [...192.168.2.27][57452] -> [.172.217.23.111][..443]
detected: [.....2] [ip4][..tcp] [...192.168.2.27][57452] -> [.172.217.23.111][..443] [TLS.YouTubeUpload][Google][Media][Fun][upload.youtube.com]
detection-update: [.....2] [ip4][..tcp] [...192.168.2.27][57452] -> [.172.217.23.111][..443] [TLS.YouTubeUpload][Google][Media][Fun][upload.youtube.com]
detection-update: [.....2] [ip4][..tcp] [...192.168.2.27][57452] -> [.172.217.23.111][..443] [TLS.YouTubeUpload][Google][Media][Fun][upload.youtube.com]
new: [.....3] [ip4][..udp] [...192.168.2.27][62232] -> [.172.217.23.111][..443]
detected: [.....3] [ip4][..udp] [...192.168.2.27][62232] -> [.172.217.23.111][..443] [QUIC.YouTubeUpload][Google][Media][Fun][upload.youtube.com]
+ RISK: Unidirectional Traffic
analyse: [.....1] [ip4][..udp] [...192.168.2.27][51925] -> [.172.217.23.111][..443] [QUIC.YouTubeUpload][Google][Media][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 1.883| 0.207| 0.510| 259988.193| 2.400]
@@ -21,5 +23,7 @@
[ENTROPIES...: 2.6,7.5,7.4,5.3,4.6,7.4,7.9,5.4,5.7,5.8,5.5,5.0,7.7,5.6,5.7,7.3,5.5,6.6,5.0,5.7,7.5,7.9,7.9,7.9,7.9,7.9,7.9,7.9,7.9,7.9,7.8,7.9]
idle: [.....2] [ip4][..tcp] [...192.168.2.27][57452] -> [.172.217.23.111][..443]
idle: [.....1] [ip4][..udp] [...192.168.2.27][51925] -> [.172.217.23.111][..443] [QUIC.YouTubeUpload][Google][Media][Fun]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [...192.168.2.27][62232] -> [.172.217.23.111][..443] [QUIC.YouTubeUpload][Google][Media][Fun]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/z3950.pcapng.out b/test/results/flow-info/default/z3950.pcapng.out
index cd38fefd7..cd38fefd7 100644
--- a/test/results/flow-info/z3950.pcapng.out
+++ b/test/results/flow-info/default/z3950.pcapng.out
diff --git a/test/results/flow-info/zabbix.pcap.out b/test/results/flow-info/default/zabbix.pcap.out
index f6709f6e1..f6709f6e1 100644
--- a/test/results/flow-info/zabbix.pcap.out
+++ b/test/results/flow-info/default/zabbix.pcap.out
diff --git a/test/results/flow-info/zattoo.pcap.out b/test/results/flow-info/default/zattoo.pcap.out
index 918f9bffe..0a0aa2eab 100644
--- a/test/results/flow-info/zattoo.pcap.out
+++ b/test/results/flow-info/default/zattoo.pcap.out
@@ -5,7 +5,7 @@
detected: [.....1] [ip4][..tcp] [.....10.101.0.2][.2930] -> [.....10.102.0.2][..443] [TLS.Zattoo][Unknown][Video][Fun][zattoo.com]
RISK: TLS (probably) Not Carrying HTTPS
detection-update: [.....1] [ip4][..tcp] [.....10.101.0.2][.2930] -> [.....10.102.0.2][..443] [TLS.Zattoo][Unknown][Video][Fun][zattoo.com]
- RISK: Weak TLS Cipher, TLS (probably) Not Carrying HTTPS
+ RISK: Weak TLS Cipher, TLS (probably) Not Carrying HTTPS, TLS Cert Validity Too Long
new: [.....2] [ip4][..tcp] [.....10.101.0.2][.2936] -> [.....10.102.0.2][...80]
detected: [.....2] [ip4][..tcp] [.....10.101.0.2][.2936] -> [.....10.102.0.2][...80] [HTTP.Zattoo][Unknown][Video][Fun][zattosecurehd2-f.akamaihd.net]
end: [.....1] [ip4][..tcp] [.....10.101.0.2][.2930] -> [.....10.102.0.2][..443]
diff --git a/test/results/flow-info/zcash.pcap.out b/test/results/flow-info/default/zcash.pcap.out
index 0c24246ae..0c24246ae 100644
--- a/test/results/flow-info/zcash.pcap.out
+++ b/test/results/flow-info/default/zcash.pcap.out
diff --git a/test/results/flow-info/zoom.pcap.out b/test/results/flow-info/default/zoom.pcap.out
index db2c95518..598185f7b 100644
--- a/test/results/flow-info/zoom.pcap.out
+++ b/test/results/flow-info/default/zoom.pcap.out
@@ -3,7 +3,7 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [..192.168.1.117][54854] -> [..172.217.21.72][..443] [MIDSTREAM]
detected: [.....1] [ip4][..tcp] [..192.168.1.117][54854] -> [..172.217.21.72][..443] [TLS.GoogleServices][Google][Web][Acceptable][www.googletagmanager.com]
- RISK: Obsolete TLS (v1.1 or older)
+ RISK: Obsolete TLS (v1.1 or older), Unidirectional Traffic
new: [.....2] [ip4][..udp] [..192.168.1.117][.5353] -> [....224.0.0.251][.5353]
detected: [.....2] [ip4][..udp] [..192.168.1.117][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable][_spotify-connect._tcp.local]
new: [.....3] [ip4][..tcp] [..192.168.1.117][54863] -> [.167.99.215.164][.4434]
@@ -14,41 +14,51 @@
ERROR-EVENT: Unknown packet type [1/16]
new: [.....4] [ip4][..tcp] [..192.168.1.117][54341] -> [.62.149.152.153][..993] [MIDSTREAM]
detected: [.....4] [ip4][..tcp] [..192.168.1.117][54341] -> [.62.149.152.153][..993] [IMAPS][Unknown][Email][Safe]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][..udp] [..192.168.1.117][57025] -> [239.255.255.250][.1900]
detected: [.....5] [ip4][..udp] [..192.168.1.117][57025] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
new: [.....6] [ip4][..udp] [..192.168.1.117][..137] -> [..192.168.1.255][..137]
detected: [.....6] [ip4][..udp] [..192.168.1.117][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][workgroup]
new: [.....7] [ip4][..udp] [..192.168.1.117][64352] -> [....192.168.1.1][...53]
detected: [.....7] [ip4][..udp] [..192.168.1.117][64352] -> [....192.168.1.1][...53] [DNS.Zoom][Unknown][Network][Acceptable][log.zoom.us]
+ RISK: Unidirectional Traffic
detection-update: [.....7] [ip4][..udp] [..192.168.1.117][64352] -> [....192.168.1.1][...53] [DNS.Zoom][Unknown][Network][Acceptable][log.zoom.us]
new: [.....8] [ip4][..tcp] [..192.168.1.117][54864] -> [..52.202.62.238][..443]
new: [.....9] [ip4][..udp] [..192.168.1.117][65394] -> [....192.168.1.1][...53]
detected: [.....9] [ip4][..udp] [..192.168.1.117][65394] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][local]
+ RISK: Unidirectional Traffic
detection-update: [.....9] [ip4][..udp] [..192.168.1.117][65394] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][local]
+ RISK: Error Code
new: [....10] [ip4][.icmp] [..192.168.1.117] -> [....192.168.1.1]
detected: [....10] [ip4][.icmp] [..192.168.1.117] -> [....192.168.1.1] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....11] [ip4][..tcp] [..192.168.1.117][54798] -> [..13.225.84.182][..443] [MIDSTREAM]
detected: [.....8] [ip4][..tcp] [..192.168.1.117][54864] -> [..52.202.62.238][..443] [TLS.Zoom][Zoom][Video][Acceptable][log.zoom.us]
new: [....12] [ip4][..udp] [..192.168.1.117][23903] -> [..162.255.37.14][.3478]
detected: [....12] [ip4][..udp] [..192.168.1.117][23903] -> [..162.255.37.14][.3478] [STUN.Zoom][Zoom][Video][Acceptable][]
+ RISK: Unidirectional Traffic
detection-update: [.....8] [ip4][..tcp] [..192.168.1.117][54864] -> [..52.202.62.238][..443] [TLS.Zoom][Zoom][Video][Acceptable][log.zoom.us]
detection-update: [.....8] [ip4][..tcp] [..192.168.1.117][54864] -> [..52.202.62.238][..443] [TLS.Zoom][Zoom][Video][Acceptable][log.zoom.us]
new: [....13] [ip4][..udp] [..192.168.1.117][23903] -> [..162.255.38.14][.3478]
detected: [....13] [ip4][..udp] [..192.168.1.117][23903] -> [..162.255.38.14][.3478] [STUN.Zoom][Zoom][Video][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....14] [ip4][..udp] [..192.168.1.117][23903] -> [..162.255.38.14][.3479]
detected: [....14] [ip4][..udp] [..192.168.1.117][23903] -> [..162.255.38.14][.3479] [STUN.Zoom][Zoom][Video][Acceptable][]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
new: [....15] [ip4][..tcp] [..192.168.1.117][53867] -> [..104.199.65.42][...80] [MIDSTREAM]
new: [....16] [ip4][..tcp] [..192.168.1.117][53872] -> [..35.186.224.53][..443] [MIDSTREAM]
detected: [....16] [ip4][..tcp] [..192.168.1.117][53872] -> [..35.186.224.53][..443] [TLS][GoogleCloud][Web][Safe]
+ RISK: Unidirectional Traffic
new: [....17] [ip4][.icmp] [..192.168.1.117] -> [..162.255.38.14]
detected: [....17] [ip4][.icmp] [..192.168.1.117] -> [..162.255.38.14] [ICMP][Zoom][Network][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [2/16]
new: [....18] [ip4][..udp] [....192.168.0.1][...68] -> [255.255.255.255][...67]
detected: [....18] [ip4][..udp] [....192.168.0.1][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable][tl-sg116e]
new: [....19] [ip4][..tcp] [..192.168.1.117][54865] -> [..52.202.62.196][..443]
new: [....20] [ip4][..udp] [..192.168.1.117][62988] -> [....192.168.1.1][...53]
detected: [....20] [ip4][..udp] [..192.168.1.117][62988] -> [....192.168.1.1][...53] [DNS.Zoom][Unknown][Network][Acceptable][www3.zoom.us]
+ RISK: Unidirectional Traffic
detection-update: [....20] [ip4][..udp] [..192.168.1.117][62988] -> [....192.168.1.1][...53] [DNS.Zoom][Unknown][Network][Acceptable][www3.zoom.us]
new: [....21] [ip4][..tcp] [..192.168.1.117][54866] -> [..52.202.62.236][..443]
detected: [....19] [ip4][..tcp] [..192.168.1.117][54865] -> [..52.202.62.196][..443] [TLS][Zoom][Web][Safe][zoom.us]
@@ -72,8 +82,10 @@
detected: [....22] [ip4][..udp] [..192.168.1.117][57621] -> [..192.168.1.255][57621] [Spotify][Unknown][Music][Fun]
new: [....23] [ip4][..udp] [..192.168.1.117][62563] -> [....192.168.1.1][...53]
detected: [....23] [ip4][..udp] [..192.168.1.117][62563] -> [....192.168.1.1][...53] [DNS.Zoom][Unknown][Network][Acceptable][zoomfr85zc.zoom.us]
+ RISK: Unidirectional Traffic
new: [....24] [ip4][..udp] [..192.168.1.117][58063] -> [....192.168.1.1][...53]
detected: [....24] [ip4][..udp] [..192.168.1.117][58063] -> [....192.168.1.1][...53] [DNS.Zoom][Unknown][Network][Acceptable][zoomfr84zc.zoom.us]
+ RISK: Unidirectional Traffic
new: [....25] [ip4][..tcp] [..192.168.1.117][54867] -> [.213.19.144.105][..443]
new: [....26] [ip4][..tcp] [..192.168.1.117][54868] -> [.213.19.144.104][..443]
detection-update: [....23] [ip4][..udp] [..192.168.1.117][62563] -> [....192.168.1.1][...53] [DNS.Zoom][Unknown][Network][Acceptable][zoomfr85zc.zoom.us]
@@ -106,6 +118,7 @@
RISK: TLS (probably) Not Carrying HTTPS
new: [....29] [ip4][..udp] [..192.168.1.117][51185] -> [....192.168.1.1][...53]
detected: [....29] [ip4][..udp] [..192.168.1.117][51185] -> [....192.168.1.1][...53] [DNS.Zoom][Unknown][Network][Acceptable][zoomfrn99mmr.zoom.us]
+ RISK: Unidirectional Traffic
detection-update: [....29] [ip4][..udp] [..192.168.1.117][51185] -> [....192.168.1.1][...53] [DNS.Zoom][Unknown][Network][Acceptable][zoomfrn99mmr.zoom.us]
new: [....30] [ip4][..tcp] [..192.168.1.117][54871] -> [..109.94.160.99][..443]
detected: [....30] [ip4][..tcp] [..192.168.1.117][54871] -> [..109.94.160.99][..443] [TLS.Zoom][Unknown][Video][Acceptable][zoomfrn99mmr.zoom.us]
@@ -126,9 +139,11 @@
[ENTROPIES...: 4.4,5.3,5.0,4.3,5.2,7.1,7.3,7.3,5.0,5.1,7.6,5.6,5.1,6.6,7.1,5.1,6.9,6.3,5.1,7.9,7.6,5.1,5.9,5.1,7.9,5.1,7.9,6.6,5.1,5.8,6.9,7.0]
new: [....31] [ip4][..udp] [..192.168.1.117][58327] -> [..109.94.160.99][.8801]
detected: [....31] [ip4][..udp] [..192.168.1.117][58327] -> [..109.94.160.99][.8801] [Zoom][Unknown][Video][Acceptable]
+ RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [3/16]
new: [....32] [ip4][..udp] [..192.168.1.117][60620] -> [..109.94.160.99][.8801]
detected: [....32] [ip4][..udp] [..192.168.1.117][60620] -> [..109.94.160.99][.8801] [Zoom][Unknown][Video][Acceptable]
+ RISK: Unidirectional Traffic
analyse: [....31] [ip4][..udp] [..192.168.1.117][58327] -> [..109.94.160.99][.8801] [Zoom][Unknown][Video][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.036| 0.010| 0.009| 72.691| 4.500]
@@ -141,25 +156,33 @@
[ENTROPIES...: 5.9,4.8,4.4,4.6,5.1,4.8,0.5,0.5,0.5,0.5,0.5,0.5,0.5,0.5,0.5,0.5,0.5,0.5,0.5,0.5,0.5,0.5,0.5,0.5,0.5,0.5,0.5,0.5,0.5,0.5,0.5,0.5]
new: [....33] [ip4][..udp] [..192.168.1.117][61731] -> [..109.94.160.99][.8801]
detected: [....33] [ip4][..udp] [..192.168.1.117][61731] -> [..109.94.160.99][.8801] [Zoom][Unknown][Video][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....17] [ip4][.icmp] [..192.168.1.117] -> [..162.255.38.14] [ICMP][Zoom][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....9] [ip4][..udp] [..192.168.1.117][65394] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Error Code
idle: [....18] [ip4][..udp] [....192.168.0.1][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable]
idle: [....10] [ip4][.icmp] [..192.168.1.117] -> [....192.168.1.1] [ICMP][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [....11] [ip4][..tcp] [..192.168.1.117][54798] -> [..13.225.84.182][..443] [TLS][AmazonAWS][Web][Safe]
+ RISK: TCP Connection Issues
end: [....11] [ip4][..tcp] [..192.168.1.117][54798] -> [..13.225.84.182][..443]
idle: [....29] [ip4][..udp] [..192.168.1.117][51185] -> [....192.168.1.1][...53] [DNS.Zoom][Unknown][Network][Acceptable]
idle: [.....1] [ip4][..tcp] [..192.168.1.117][54854] -> [..172.217.21.72][..443]
idle: [.....6] [ip4][..udp] [..192.168.1.117][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
idle: [....33] [ip4][..udp] [..192.168.1.117][61731] -> [..109.94.160.99][.8801] [Zoom][Unknown][Video][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [....15] [ip4][..tcp] [..192.168.1.117][53867] -> [..104.199.65.42][...80] [HTTP][Google][Web][Acceptable][]
idle: [....15] [ip4][..tcp] [..192.168.1.117][53867] -> [..104.199.65.42][...80]
idle: [.....8] [ip4][..tcp] [..192.168.1.117][54864] -> [..52.202.62.238][..443]
idle: [....19] [ip4][..tcp] [..192.168.1.117][54865] -> [..52.202.62.196][..443]
idle: [....21] [ip4][..tcp] [..192.168.1.117][54866] -> [..52.202.62.236][..443] [TLS.Zoom][Zoom][Video][Acceptable]
idle: [....13] [ip4][..udp] [..192.168.1.117][23903] -> [..162.255.38.14][.3478] [STUN.Zoom][Zoom][Video][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....12] [ip4][..udp] [..192.168.1.117][23903] -> [..162.255.37.14][.3478] [STUN.Zoom][Zoom][Video][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....14] [ip4][..udp] [..192.168.1.117][23903] -> [..162.255.38.14][.3479] [STUN.Zoom][Zoom][Video][Acceptable]
- RISK: Known Proto on Non Std Port
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
idle: [.....2] [ip4][..udp] [..192.168.1.117][.5353] -> [....224.0.0.251][.5353]
idle: [....22] [ip4][..udp] [..192.168.1.117][57621] -> [..192.168.1.255][57621] [Spotify][Unknown][Music][Fun]
end: [.....3] [ip4][..tcp] [..192.168.1.117][54863] -> [.167.99.215.164][.4434] [TLS.ntop][Unknown][Network][Safe]
@@ -169,11 +192,13 @@
end: [....26] [ip4][..tcp] [..192.168.1.117][54868] -> [.213.19.144.104][..443]
idle: [.....7] [ip4][..udp] [..192.168.1.117][64352] -> [....192.168.1.1][...53] [DNS.Zoom][Unknown][Network][Acceptable]
idle: [....31] [ip4][..udp] [..192.168.1.117][58327] -> [..109.94.160.99][.8801] [Zoom][Unknown][Video][Acceptable]
+ RISK: Unidirectional Traffic
end: [....27] [ip4][..tcp] [..192.168.1.117][54869] -> [.213.244.140.85][..443]
end: [....28] [ip4][..tcp] [..192.168.1.117][54870] -> [.213.244.140.84][..443]
idle: [....23] [ip4][..udp] [..192.168.1.117][62563] -> [....192.168.1.1][...53] [DNS.Zoom][Unknown][Network][Acceptable]
idle: [.....4] [ip4][..tcp] [..192.168.1.117][54341] -> [.62.149.152.153][..993]
idle: [....32] [ip4][..udp] [..192.168.1.117][60620] -> [..109.94.160.99][.8801] [Zoom][Unknown][Video][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....5] [ip4][..udp] [..192.168.1.117][57025] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
idle: [....16] [ip4][..tcp] [..192.168.1.117][53872] -> [..35.186.224.53][..443] [TLS][GoogleCloud][Web][Safe]
idle: [....30] [ip4][..tcp] [..192.168.1.117][54871] -> [..109.94.160.99][..443] [TLS.Zoom][Unknown][Video][Acceptable]
diff --git a/test/results/flow-info/zoom2.pcap.out b/test/results/flow-info/default/zoom2.pcap.out
index 871a30cae..30dc952ae 100644
--- a/test/results/flow-info/zoom2.pcap.out
+++ b/test/results/flow-info/default/zoom2.pcap.out
@@ -8,19 +8,9 @@
RISK: TLS (probably) Not Carrying HTTPS
detection-update: [.....1] [ip4][..tcp] [..192.168.1.178][50076] -> [.144.195.73.154][..443] [TLS.Zoom][Zoom][Video][Acceptable][zoomsjccv154mmr.sjc.zoom.us]
RISK: TLS (probably) Not Carrying HTTPS
- analyse: [.....1] [ip4][..tcp] [..192.168.1.178][50076] -> [.144.195.73.154][..443] [TLS.Zoom][Zoom][Video][Acceptable]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.199| 0.059| 0.083| 6897.605| 3.400]
- [PKTLEN......: 52.000| 1492.000| 450.300| 547.400| 299645.500| 4.000]
- [BINS(c->s)..: 11,1,0,1,1,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0]
- [BINS(s->c)..: 3,1,1,0,1,0,1,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,2,0,0,0,0,0,3,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,1,1,1,0,0,0,0,0,1,0,0,1,0,0,0,1,1,1,0,1,0,0,1,0,1,1]
- [IATS(ms)....: 174.7,174.8,0.6,174.0,1.3,0.0,0.0,0.0,175.4,0.0,0.0,23.6,1.3,198.6,173.1,0.3,174.5,174.1,5.8,0.0,187.6,0.7,0.0,182.4,0.1,0.1,0.1,0.9,0.8,0.5,0.0]
- [PKTLENS.....: 64,60,52,569,52,1492,1492,1268,814,52,52,52,52,178,103,52,208,127,52,1492,767,52,1492,442,52,200,52,102,1330,52,1330,256]
- [ENTROPIES...: 4.3,5.2,5.1,4.4,5.1,7.2,7.4,7.5,7.6,5.0,5.0,5.0,5.0,6.5,5.8,4.9,6.8,6.3,5.0,7.9,7.7,5.1,7.9,7.5,5.0,6.7,5.0,6.0,7.9,5.0,7.9,6.9]
new: [.....2] [ip4][..udp] [..192.168.1.178][60653] -> [.144.195.73.154][.8801]
- detected: [.....2] [ip4][..udp] [..192.168.1.178][60653] -> [.144.195.73.154][.8801] [RTP.Zoom][Zoom][Video][Acceptable]
- analyse: [.....2] [ip4][..udp] [..192.168.1.178][60653] -> [.144.195.73.154][.8801] [RTP.Zoom][Zoom][Video][Acceptable]
+ detected: [.....2] [ip4][..udp] [..192.168.1.178][60653] -> [.144.195.73.154][.8801] [SRTP.Zoom][Zoom][Video][Acceptable]
+ analyse: [.....2] [ip4][..udp] [..192.168.1.178][60653] -> [.144.195.73.154][.8801] [SRTP.Zoom][Zoom][Video][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.167| 0.025| 0.040| 1639.456| 3.600]
[PKTLEN......: 46.000| 1064.000| 704.700| 464.600| 215864.300| 4.600]
@@ -32,9 +22,9 @@
[ENTROPIES...: 5.8,5.8,4.9,4.2,5.4,5.6,4.8,4.3,5.6,4.7,4.7,0.6,0.6,0.6,0.6,0.6,0.6,0.6,0.6,0.6,0.6,0.6,0.6,0.6,4.8,0.6,0.6,0.6,0.6,0.6,0.6,0.6]
new: [.....3] [ip4][..udp] [..192.168.1.178][58117] -> [.144.195.73.154][.8801]
new: [.....4] [ip4][..udp] [..192.168.1.178][57953] -> [.144.195.73.154][.8801]
- detected: [.....3] [ip4][..udp] [..192.168.1.178][58117] -> [.144.195.73.154][.8801] [RTP.Zoom][Zoom][Video][Acceptable]
- detected: [.....4] [ip4][..udp] [..192.168.1.178][57953] -> [.144.195.73.154][.8801] [RTP.Zoom][Zoom][Video][Acceptable]
- analyse: [.....3] [ip4][..udp] [..192.168.1.178][58117] -> [.144.195.73.154][.8801] [RTP.Zoom][Zoom][Video][Acceptable]
+ detected: [.....3] [ip4][..udp] [..192.168.1.178][58117] -> [.144.195.73.154][.8801] [SRTP.Zoom][Zoom][Video][Acceptable]
+ detected: [.....4] [ip4][..udp] [..192.168.1.178][57953] -> [.144.195.73.154][.8801] [SRTP.Zoom][Zoom][Video][Acceptable]
+ analyse: [.....3] [ip4][..udp] [..192.168.1.178][58117] -> [.144.195.73.154][.8801] [SRTP.Zoom][Zoom][Video][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.176| 0.043| 0.049| 2389.122| 4.100]
[PKTLEN......: 46.000| 189.000| 129.000| 35.800| 1279.800| 4.900]
@@ -44,7 +34,7 @@
[IATS(ms)....: 98.5,176.4,0.1,85.5,9.5,94.8,0.0,99.9,94.2,12.3,1.9,12.4,20.6,17.0,20.1,168.4,18.0,3.6,10.9,10.3,19.4,32.1,20.9,115.3,0.0,17.8,18.7,20.1,20.2,21.5,85.5]
[PKTLENS.....: 151,151,72,46,156,156,72,46,156,88,88,161,164,154,149,145,116,88,149,92,143,144,134,135,166,189,116,150,148,143,144,116]
[ENTROPIES...: 5.8,5.8,4.9,4.4,5.6,5.6,4.8,4.4,5.5,4.7,4.7,6.0,6.0,5.9,5.8,5.7,5.1,4.7,5.8,4.7,5.7,5.7,5.6,5.6,6.0,6.2,5.3,5.7,5.7,5.7,5.7,5.2]
- analyse: [.....4] [ip4][..udp] [..192.168.1.178][57953] -> [.144.195.73.154][.8801] [RTP.Zoom][Zoom][Video][Acceptable]
+ analyse: [.....4] [ip4][..udp] [..192.168.1.178][57953] -> [.144.195.73.154][.8801] [SRTP.Zoom][Zoom][Video][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.188| 0.047| 0.043| 1844.784| 4.300]
[PKTLEN......: 46.000| 171.000| 91.100| 44.600| 1993.400| 4.800]
@@ -56,10 +46,11 @@
[ENTROPIES...: 5.8,5.9,4.8,4.3,5.5,5.5,4.8,4.4,5.6,5.5,5.6,4.4,4.5,3.6,3.9,5.5,3.6,3.9,4.5,3.7,4.5,4.5,3.9,3.7,4.0,3.7,4.5,3.9,3.7,3.9,3.9,3.7]
new: [.....5] [ip4][.icmp] [..192.168.1.178] -> [.144.195.73.154]
detected: [.....5] [ip4][.icmp] [..192.168.1.178] -> [.144.195.73.154] [ICMP][Zoom][Network][Acceptable]
- idle: [.....4] [ip4][..udp] [..192.168.1.178][57953] -> [.144.195.73.154][.8801] [RTP.Zoom][Zoom][Video][Acceptable]
- end: [.....1] [ip4][..tcp] [..192.168.1.178][50076] -> [.144.195.73.154][..443] [TLS.Zoom][Zoom][Video][Acceptable]
- RISK: TLS (probably) Not Carrying HTTPS
- idle: [.....3] [ip4][..udp] [..192.168.1.178][58117] -> [.144.195.73.154][.8801] [RTP.Zoom][Zoom][Video][Acceptable]
- idle: [.....2] [ip4][..udp] [..192.168.1.178][60653] -> [.144.195.73.154][.8801] [RTP.Zoom][Zoom][Video][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [.....4] [ip4][..udp] [..192.168.1.178][57953] -> [.144.195.73.154][.8801] [SRTP.Zoom][Zoom][Video][Acceptable]
+ idle: [.....1] [ip4][..tcp] [..192.168.1.178][50076] -> [.144.195.73.154][..443]
+ idle: [.....3] [ip4][..udp] [..192.168.1.178][58117] -> [.144.195.73.154][.8801] [SRTP.Zoom][Zoom][Video][Acceptable]
+ idle: [.....2] [ip4][..udp] [..192.168.1.178][60653] -> [.144.195.73.154][.8801] [SRTP.Zoom][Zoom][Video][Acceptable]
idle: [.....5] [ip4][.icmp] [..192.168.1.178] -> [.144.195.73.154] [ICMP][Zoom][Network][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/zoom_p2p.pcapng.out b/test/results/flow-info/default/zoom_p2p.pcapng.out
index 1b20d0107..2ee53ee34 100644
--- a/test/results/flow-info/zoom_p2p.pcapng.out
+++ b/test/results/flow-info/default/zoom_p2p.pcapng.out
@@ -11,13 +11,17 @@
update: [.....2] [ip4][..udp] [...192.168.12.1][.5353] -> [....224.0.0.251][.5353]
new: [.....3] [ip4][..udp] [.192.168.12.156][39065] -> [.206.247.87.213][.3478]
detected: [.....3] [ip4][..udp] [.192.168.12.156][39065] -> [.206.247.87.213][.3478] [STUN.Zoom][Zoom][Video][Acceptable][]
+ RISK: Unidirectional Traffic
new: [.....4] [ip4][..udp] [.192.168.12.156][38453] -> [.206.247.87.213][.3478]
detected: [.....4] [ip4][..udp] [.192.168.12.156][38453] -> [.206.247.87.213][.3478] [STUN.Zoom][Zoom][Video][Acceptable][]
+ RISK: Unidirectional Traffic
new: [.....5] [ip4][.icmp] [.206.247.87.213] -> [.192.168.12.156]
detected: [.....5] [ip4][.icmp] [.206.247.87.213] -> [.192.168.12.156] [ICMP][Zoom][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [...192.168.12.1][17500] -> [.192.168.12.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
new: [.....6] [ip4][..udp] [.192.168.12.156][38453] -> [..192.168.1.226][41036]
update: [.....5] [ip4][.icmp] [.206.247.87.213] -> [.192.168.12.156] [ICMP][Zoom][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....2] [ip4][..udp] [...192.168.12.1][.5353] -> [....224.0.0.251][.5353]
new: [.....7] [ip4][..udp] [.192.168.12.156][39065] -> [..192.168.1.226][46757]
analyse: [.....7] [ip4][..udp] [.192.168.12.156][39065] -> [..192.168.1.226][46757]
@@ -30,39 +34,54 @@
[IATS(ms)....: 8.4,10.2,12.0,0.1,14.3,5.0,17.5,37.3,28.4,52.5,29.0,88.6,0.2,71.3,10.8,22.4,0.1,28.5,48.7,32.5,39.0,13.4,0.2,30.2,24.5,22.8,31.8,53.4,31.8,40.1,10.0]
[PKTLENS.....: 113,113,113,113,113,113,113,113,113,113,113,1246,1056,1056,1246,800,1245,119,1245,800,800,1245,800,799,118,831,1245,1277,1043,1043,1257,1043]
[ENTROPIES...: 4.9,4.8,4.8,4.9,4.9,4.8,4.8,4.9,4.8,4.8,4.8,7.8,0.5,0.5,7.8,7.7,7.8,5.8,7.8,7.7,7.7,7.8,7.7,7.7,5.8,7.7,7.8,7.8,7.8,7.8,7.8,7.8]
- guessed: [.....7] [ip4][..udp] [.192.168.12.156][39065] -> [..192.168.1.226][46757] [Zoom][Unknown][Video][Acceptable]
- detected: [.....7] [ip4][..udp] [.192.168.12.156][39065] -> [..192.168.1.226][46757] [Zoom][Unknown][Video][Acceptable]
update: [.....4] [ip4][..udp] [.192.168.12.156][38453] -> [.206.247.87.213][.3478] [STUN.Zoom][Zoom][Video][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [.192.168.12.156][39065] -> [.206.247.87.213][.3478] [STUN.Zoom][Zoom][Video][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....5] [ip4][.icmp] [.206.247.87.213] -> [.192.168.12.156] [ICMP][Zoom][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [...192.168.12.1][17500] -> [.192.168.12.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
update: [.....6] [ip4][..udp] [.192.168.12.156][38453] -> [..192.168.1.226][41036]
update: [.....5] [ip4][.icmp] [.206.247.87.213] -> [.192.168.12.156] [ICMP][Zoom][Network][Acceptable]
- update: [.....7] [ip4][..udp] [.192.168.12.156][39065] -> [..192.168.1.226][46757] [Zoom][Unknown][Video][Acceptable]
+ RISK: Unidirectional Traffic
+ update: [.....7] [ip4][..udp] [.192.168.12.156][39065] -> [..192.168.1.226][46757]
update: [.....2] [ip4][..udp] [...192.168.12.1][.5353] -> [....224.0.0.251][.5353]
update: [.....4] [ip4][..udp] [.192.168.12.156][38453] -> [.206.247.87.213][.3478] [STUN.Zoom][Zoom][Video][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [.192.168.12.156][39065] -> [.206.247.87.213][.3478] [STUN.Zoom][Zoom][Video][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....5] [ip4][.icmp] [.206.247.87.213] -> [.192.168.12.156] [ICMP][Zoom][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [...192.168.12.1][17500] -> [.192.168.12.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
idle: [.....5] [ip4][.icmp] [.206.247.87.213] -> [.192.168.12.156] [ICMP][Zoom][Network][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....6] [ip4][..udp] [.192.168.12.156][38453] -> [..192.168.1.226][41036]
- update: [.....7] [ip4][..udp] [.192.168.12.156][39065] -> [..192.168.1.226][46757] [Zoom][Unknown][Video][Acceptable]
+ update: [.....7] [ip4][..udp] [.192.168.12.156][39065] -> [..192.168.1.226][46757]
update: [.....2] [ip4][..udp] [...192.168.12.1][.5353] -> [....224.0.0.251][.5353]
update: [.....4] [ip4][..udp] [.192.168.12.156][38453] -> [.206.247.87.213][.3478] [STUN.Zoom][Zoom][Video][Acceptable]
+ RISK: Unidirectional Traffic
update: [.....3] [ip4][..udp] [.192.168.12.156][39065] -> [.206.247.87.213][.3478] [STUN.Zoom][Zoom][Video][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....2] [ip4][..udp] [...192.168.12.1][.5353] -> [....224.0.0.251][.5353]
update: [.....1] [ip4][..udp] [...192.168.12.1][17500] -> [.192.168.12.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
guessed: [.....6] [ip4][..udp] [.192.168.12.156][38453] -> [..192.168.1.226][41036] [Zoom][Unknown][Video][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....6] [ip4][..udp] [.192.168.12.156][38453] -> [..192.168.1.226][41036]
- idle: [.....7] [ip4][..udp] [.192.168.12.156][39065] -> [..192.168.1.226][46757] [Zoom][Unknown][Video][Acceptable]
+ guessed: [.....7] [ip4][..udp] [.192.168.12.156][39065] -> [..192.168.1.226][46757] [Zoom][Unknown][Video][Acceptable]
+ idle: [.....7] [ip4][..udp] [.192.168.12.156][39065] -> [..192.168.1.226][46757]
idle: [.....4] [ip4][..udp] [.192.168.12.156][38453] -> [.206.247.87.213][.3478] [STUN.Zoom][Zoom][Video][Acceptable]
+ RISK: Unidirectional Traffic
idle: [.....3] [ip4][..udp] [.192.168.12.156][39065] -> [.206.247.87.213][.3478] [STUN.Zoom][Zoom][Video][Acceptable]
+ RISK: Unidirectional Traffic
new: [.....8] [ip4][..udp] [.192.168.12.156][49579] -> [.206.247.10.253][.3478]
detected: [.....8] [ip4][..udp] [.192.168.12.156][49579] -> [.206.247.10.253][.3478] [STUN.Zoom][Zoom][Video][Acceptable][]
+ RISK: Unidirectional Traffic
new: [.....9] [ip4][..udp] [.192.168.12.156][42208] -> [.206.247.10.253][.3478]
detected: [.....9] [ip4][..udp] [.192.168.12.156][42208] -> [.206.247.10.253][.3478] [STUN.Zoom][Zoom][Video][Acceptable][]
+ RISK: Unidirectional Traffic
new: [....10] [ip4][.icmp] [.206.247.10.253] -> [.192.168.12.156]
detected: [....10] [ip4][.icmp] [.206.247.10.253] -> [.192.168.12.156] [ICMP][Zoom][Network][Acceptable]
+ RISK: Unidirectional Traffic
new: [....11] [ip4][..udp] [...192.168.12.1][.5353] -> [....224.0.0.251][.5353]
detected: [....11] [ip4][..udp] [...192.168.12.1][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable][_ipps._tcp.local]
update: [.....1] [ip4][..udp] [...192.168.12.1][17500] -> [.192.168.12.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
@@ -79,6 +98,7 @@
new: [....12] [ip4][..udp] [.192.168.12.156][42208] -> [...10.78.14.178][47312]
new: [....13] [ip4][..udp] [.192.168.12.156][49579] -> [...10.78.14.178][49586]
update: [....10] [ip4][.icmp] [.206.247.10.253] -> [.192.168.12.156] [ICMP][Zoom][Network][Acceptable]
+ RISK: Unidirectional Traffic
analyse: [....12] [ip4][..udp] [.192.168.12.156][42208] -> [...10.78.14.178][47312]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.052| 0.013| 0.016| 253.890| 4.000]
@@ -89,8 +109,6 @@
[IATS(ms)....: 0.2,27.3,11.2,7.7,6.8,1.5,0.1,13.3,6.9,1.7,40.5,0.2,15.5,0.6,33.3,0.2,50.8,0.4,5.9,5.7,52.3,0.4,7.2,2.3,22.7,0.2,31.0,0.2,40.9,0.2,22.6]
[PKTLENS.....: 112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112]
[ENTROPIES...: 5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0,5.0]
- guessed: [....12] [ip4][..udp] [.192.168.12.156][42208] -> [...10.78.14.178][47312] [Zoom][Unknown][Video][Acceptable]
- detected: [....12] [ip4][..udp] [.192.168.12.156][42208] -> [...10.78.14.178][47312] [Zoom][Unknown][Video][Acceptable]
analyse: [....13] [ip4][..udp] [.192.168.12.156][49579] -> [...10.78.14.178][49586]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.055| 0.027| 0.014| 209.331| 4.700]
@@ -101,13 +119,18 @@
[IATS(ms)....: 23.8,0.3,29.8,1.6,40.5,0.5,22.7,46.4,8.7,38.1,43.6,20.5,19.3,34.0,24.4,41.5,21.1,25.0,31.1,47.2,23.8,22.9,54.8,6.0,45.0,14.9,26.8,31.6,48.3,23.8,18.7]
[PKTLENS.....: 112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112,112]
[ENTROPIES...: 4.9,4.9,4.9,4.9,4.9,4.9,4.9,4.9,4.9,4.9,4.9,4.9,4.9,4.9,4.9,4.9,4.9,4.9,4.9,4.9,4.9,4.9,4.9,4.9,4.9,4.9,4.9,4.9,4.9,4.9,4.9,4.9]
- guessed: [....13] [ip4][..udp] [.192.168.12.156][49579] -> [...10.78.14.178][49586] [Zoom][Unknown][Video][Acceptable]
- detected: [....13] [ip4][..udp] [.192.168.12.156][49579] -> [...10.78.14.178][49586] [Zoom][Unknown][Video][Acceptable]
idle: [....10] [ip4][.icmp] [.206.247.10.253] -> [.192.168.12.156] [ICMP][Zoom][Network][Acceptable]
- idle: [....13] [ip4][..udp] [.192.168.12.156][49579] -> [...10.78.14.178][49586] [Zoom][Unknown][Video][Acceptable]
+ RISK: Unidirectional Traffic
+ guessed: [....13] [ip4][..udp] [.192.168.12.156][49579] -> [...10.78.14.178][49586] [Zoom][Unknown][Video][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....13] [ip4][..udp] [.192.168.12.156][49579] -> [...10.78.14.178][49586]
idle: [.....1] [ip4][..udp] [...192.168.12.1][17500] -> [.192.168.12.255][17500] [Dropbox][Unknown][Cloud][Acceptable]
idle: [.....9] [ip4][..udp] [.192.168.12.156][42208] -> [.206.247.10.253][.3478] [STUN.Zoom][Zoom][Video][Acceptable]
+ RISK: Unidirectional Traffic
idle: [....11] [ip4][..udp] [...192.168.12.1][.5353] -> [....224.0.0.251][.5353]
- idle: [....12] [ip4][..udp] [.192.168.12.156][42208] -> [...10.78.14.178][47312] [Zoom][Unknown][Video][Acceptable]
+ guessed: [....12] [ip4][..udp] [.192.168.12.156][42208] -> [...10.78.14.178][47312] [Zoom][Unknown][Video][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....12] [ip4][..udp] [.192.168.12.156][42208] -> [...10.78.14.178][47312]
idle: [.....8] [ip4][..udp] [.192.168.12.156][49579] -> [.206.247.10.253][.3478] [STUN.Zoom][Zoom][Video][Acceptable]
+ RISK: Unidirectional Traffic
DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/disable_aggressiveness/ookla.pcap.out b/test/results/flow-info/disable_aggressiveness/ookla.pcap.out
new file mode 100644
index 000000000..fe801e670
--- /dev/null
+++ b/test/results/flow-info/disable_aggressiveness/ookla.pcap.out
@@ -0,0 +1,30 @@
+ DAEMON-EVENT: init
+ new: [.....1] [ip4][..tcp] [..192.168.1.192][37790] -> [185.157.229.246][.8080]
+ detected: [.....1] [ip4][..tcp] [..192.168.1.192][37790] -> [185.157.229.246][.8080] [Ookla][Unknown][Network][Safe]
+ new: [.....2] [ip4][..tcp] [..192.168.1.192][51156] -> [..89.96.108.170][.8080]
+ DAEMON-EVENT: [Processed: 20 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 2 / 2|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....3] [ip4][..tcp] [....192.168.1.7][51207] -> [..46.44.253.187][...80]
+ detected: [.....3] [ip4][..tcp] [....192.168.1.7][51207] -> [..46.44.253.187][...80] [HTTP.Ookla][Unknown][Network][Safe][massarosa-1.speedtest.welcomeitalia.it]
+ new: [.....4] [ip4][..tcp] [....192.168.1.7][51215] -> [..46.44.253.187][.8080]
+ detected: [.....4] [ip4][..tcp] [....192.168.1.7][51215] -> [..46.44.253.187][.8080] [Ookla][Unknown][Network][Safe]
+ guessed: [.....2] [ip4][..tcp] [..192.168.1.192][51156] -> [..89.96.108.170][.8080] [Ookla][Unknown][Network][Safe]
+ idle: [.....2] [ip4][..tcp] [..192.168.1.192][51156] -> [..89.96.108.170][.8080]
+ idle: [.....1] [ip4][..tcp] [..192.168.1.192][37790] -> [185.157.229.246][.8080] [Ookla][Unknown][Network][Safe]
+ DAEMON-EVENT: [Processed: 70 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 2 / 4|skipped: 0|!detected: 0|guessed: 1|detection-updates: 0|updates: 0]
+ new: [.....5] [ip4][..tcp] [..192.168.1.128][48854] -> [..104.16.209.12][..443]
+ detected: [.....5] [ip4][..tcp] [..192.168.1.128][48854] -> [..104.16.209.12][..443] [TLS.Ookla][Cloudflare][Network][Safe][www.speedtest.net]
+ detection-update: [.....5] [ip4][..tcp] [..192.168.1.128][48854] -> [..104.16.209.12][..443] [TLS.Ookla][Cloudflare][Network][Safe][www.speedtest.net]
+ idle: [.....4] [ip4][..tcp] [....192.168.1.7][51215] -> [..46.44.253.187][.8080] [Ookla][Unknown][Network][Safe]
+ end: [.....3] [ip4][..tcp] [....192.168.1.7][51207] -> [..46.44.253.187][...80] [HTTP.Ookla][Unknown][Network][Safe]
+ RISK: HTTP Obsolete Server
+ new: [.....6] [ip4][..tcp] [..192.168.1.128][35830] -> [..89.96.108.170][.8080]
+ detected: [.....6] [ip4][..tcp] [..192.168.1.128][35830] -> [..89.96.108.170][.8080] [TLS][Unknown][Web][Safe][spd-pub-mi-01-01.fastwebnet.it]
+ RISK: Known Proto on Non Std Port
+ detection-update: [.....6] [ip4][..tcp] [..192.168.1.128][35830] -> [..89.96.108.170][.8080] [TLS][Unknown][Web][Safe][spd-pub-mi-01-01.fastwebnet.it]
+ RISK: Known Proto on Non Std Port
+ detection-update: [.....6] [ip4][..tcp] [..192.168.1.128][35830] -> [..89.96.108.170][.8080] [TLS.Ookla][Unknown][Web][Safe][spd-pub-mi-01-01.fastwebnet.it]
+ idle: [.....5] [ip4][..tcp] [..192.168.1.128][48854] -> [..104.16.209.12][..443]
+ idle: [.....6] [ip4][..tcp] [..192.168.1.128][35830] -> [..89.96.108.170][.8080] [TLS.Ookla][Unknown][Web][Safe]
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/disable_protocols/dns_long_domainname.pcap.out b/test/results/flow-info/disable_protocols/dns_long_domainname.pcap.out
new file mode 100644
index 000000000..6f90e08d6
--- /dev/null
+++ b/test/results/flow-info/disable_protocols/dns_long_domainname.pcap.out
@@ -0,0 +1,11 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..udp] [..192.168.1.168][65311] -> [........8.8.8.8][...53]
+ detected: [.....1] [ip4][..udp] [..192.168.1.168][65311] -> [........8.8.8.8][...53] [DNS][Google][Network][Acceptable][gmr02c.16.0.fhkfhsdkfhsk.tunnel.example.com]
+ RISK: Unidirectional Traffic
+ detection-update: [.....1] [ip4][..udp] [..192.168.1.168][65311] -> [........8.8.8.8][...53] [DNS][Google][Network][Acceptable][gmr02c.16.0.fhkfhsdkfhsk.tunnel.example.com]
+ RISK: Error Code
+ idle: [.....1] [ip4][..udp] [..192.168.1.168][65311] -> [........8.8.8.8][...53] [DNS][Google][Network][Acceptable]
+ RISK: Error Code
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/disable_protocols/pluralsight.pcap.out b/test/results/flow-info/disable_protocols/pluralsight.pcap.out
new file mode 100644
index 000000000..822ff7aec
--- /dev/null
+++ b/test/results/flow-info/disable_protocols/pluralsight.pcap.out
@@ -0,0 +1,32 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..tcp] [..192.168.1.128][42642] -> [...54.69.188.18][..443]
+ detected: [.....1] [ip4][..tcp] [..192.168.1.128][42642] -> [...54.69.188.18][..443] [TLS.Pluralsight][AmazonAWS][Streaming][Fun][pluralsight.com]
+ detection-update: [.....1] [ip4][..tcp] [..192.168.1.128][42642] -> [...54.69.188.18][..443] [TLS.Pluralsight][AmazonAWS][Streaming][Fun][pluralsight.com]
+ detection-update: [.....1] [ip4][..tcp] [..192.168.1.128][42642] -> [...54.69.188.18][..443] [TLS.Pluralsight][AmazonAWS][Streaming][Fun][pluralsight.com]
+ new: [.....2] [ip4][..tcp] [..192.168.1.128][42782] -> [..146.75.62.208][..443]
+ new: [.....3] [ip4][..tcp] [..192.168.1.128][42790] -> [..146.75.62.208][..443]
+ detected: [.....2] [ip4][..tcp] [..192.168.1.128][42782] -> [..146.75.62.208][..443] [TLS.Pluralsight][Unknown][Streaming][Fun][pluralsight2.imgix.net]
+ detected: [.....3] [ip4][..tcp] [..192.168.1.128][42790] -> [..146.75.62.208][..443] [TLS.Pluralsight][Unknown][Streaming][Fun][pluralsight.imgix.net]
+ detection-update: [.....2] [ip4][..tcp] [..192.168.1.128][42782] -> [..146.75.62.208][..443] [TLS.Pluralsight][Unknown][Streaming][Fun][pluralsight2.imgix.net]
+ detection-update: [.....2] [ip4][..tcp] [..192.168.1.128][42782] -> [..146.75.62.208][..443] [TLS.Pluralsight][Unknown][Streaming][Fun][pluralsight2.imgix.net]
+ detection-update: [.....3] [ip4][..tcp] [..192.168.1.128][42790] -> [..146.75.62.208][..443] [TLS.Pluralsight][Unknown][Streaming][Fun][pluralsight.imgix.net]
+ detection-update: [.....3] [ip4][..tcp] [..192.168.1.128][42790] -> [..146.75.62.208][..443] [TLS.Pluralsight][Unknown][Streaming][Fun][pluralsight.imgix.net]
+ new: [.....4] [ip4][..tcp] [..192.168.1.128][42618] -> [..18.203.201.56][..443]
+ detected: [.....4] [ip4][..tcp] [..192.168.1.128][42618] -> [..18.203.201.56][..443] [TLS.Pluralsight][AmazonAWS][Streaming][Fun][stt.pluralsight.com]
+ detection-update: [.....4] [ip4][..tcp] [..192.168.1.128][42618] -> [..18.203.201.56][..443] [TLS.Pluralsight][AmazonAWS][Streaming][Fun][stt.pluralsight.com]
+ detection-update: [.....4] [ip4][..tcp] [..192.168.1.128][42618] -> [..18.203.201.56][..443] [TLS.Pluralsight][AmazonAWS][Streaming][Fun][stt.pluralsight.com]
+ new: [.....5] [ip4][..tcp] [..192.168.1.128][48948] -> [.104.19.162.127][..443]
+ detected: [.....5] [ip4][..tcp] [..192.168.1.128][48948] -> [.104.19.162.127][..443] [TLS.Pluralsight][Cloudflare][Streaming][Fun][www.pluralsight.com]
+ detection-update: [.....5] [ip4][..tcp] [..192.168.1.128][48948] -> [.104.19.162.127][..443] [TLS.Pluralsight][Cloudflare][Streaming][Fun][www.pluralsight.com]
+ new: [.....6] [ip4][..tcp] [..192.168.1.128][44770] -> [.104.17.209.240][..443]
+ detected: [.....6] [ip4][..tcp] [..192.168.1.128][44770] -> [.104.17.209.240][..443] [TLS.Pluralsight][Cloudflare][Streaming][Fun][zn6qzq6caaucudesr-pluralsight.siteintercept.qualtrics.com]
+ detection-update: [.....6] [ip4][..tcp] [..192.168.1.128][44770] -> [.104.17.209.240][..443] [TLS.Pluralsight][Cloudflare][Streaming][Fun][zn6qzq6caaucudesr-pluralsight.siteintercept.qualtrics.com]
+ idle: [.....6] [ip4][..tcp] [..192.168.1.128][44770] -> [.104.17.209.240][..443]
+ idle: [.....4] [ip4][..tcp] [..192.168.1.128][42618] -> [..18.203.201.56][..443]
+ idle: [.....5] [ip4][..tcp] [..192.168.1.128][48948] -> [.104.19.162.127][..443]
+ idle: [.....2] [ip4][..tcp] [..192.168.1.128][42782] -> [..146.75.62.208][..443]
+ idle: [.....3] [ip4][..tcp] [..192.168.1.128][42790] -> [..146.75.62.208][..443]
+ idle: [.....1] [ip4][..tcp] [..192.168.1.128][42642] -> [...54.69.188.18][..443]
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/disable_protocols/quic-mvfst-27.pcapng.out b/test/results/flow-info/disable_protocols/quic-mvfst-27.pcapng.out
new file mode 100644
index 000000000..b00dff7d0
--- /dev/null
+++ b/test/results/flow-info/disable_protocols/quic-mvfst-27.pcapng.out
@@ -0,0 +1,7 @@
+ DAEMON-EVENT: init
+ new: [.....1] [ip4][..udp] [......10.0.2.15][35957] -> [..69.171.250.15][..443]
+ detected: [.....1] [ip4][..udp] [......10.0.2.15][35957] -> [..69.171.250.15][..443] [QUIC.Facebook][Facebook][SocialNetwork][Fun][graph.facebook.com]
+ RISK: Unidirectional Traffic
+ idle: [.....1] [ip4][..udp] [......10.0.2.15][35957] -> [..69.171.250.15][..443] [QUIC.Facebook][Facebook][SocialNetwork][Fun]
+ RISK: Unidirectional Traffic
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/disable_protocols/soap.pcap.out b/test/results/flow-info/disable_protocols/soap.pcap.out
new file mode 100644
index 000000000..e3f42b449
--- /dev/null
+++ b/test/results/flow-info/disable_protocols/soap.pcap.out
@@ -0,0 +1,16 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..tcp] [..192.168.2.100][50100] -> [...23.2.213.165][...80]
+ new: [.....2] [ip4][..tcp] [..192.168.2.100][50100] -> [...23.2.213.165][.4176] [MIDSTREAM]
+ detected: [.....2] [ip4][..tcp] [..192.168.2.100][50100] -> [...23.2.213.165][.4176] [HTTP.SOAP][Unknown][Cloud][Acceptable][go.microsoft.com]
+ RISK: Known Proto on Non Std Port, Unidirectional Traffic
+ DAEMON-EVENT: [Processed: 15 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 2 / 2|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....3] [ip4][..tcp] [..185.32.192.30][...80] -> [.85.154.114.113][56028]
+ detected: [.....3] [ip4][..tcp] [..185.32.192.30][...80] -> [.85.154.114.113][56028] [SOAP][Unknown][RPC][Acceptable]
+ idle: [.....3] [ip4][..tcp] [..185.32.192.30][...80] -> [.85.154.114.113][56028] [SOAP][Unknown][RPC][Acceptable]
+ idle: [.....2] [ip4][..tcp] [..192.168.2.100][50100] -> [...23.2.213.165][.4176]
+ guessed: [.....1] [ip4][..tcp] [..192.168.2.100][50100] -> [...23.2.213.165][...80] [HTTP][Unknown][Web][Acceptable][]
+ end: [.....1] [ip4][..tcp] [..192.168.2.100][50100] -> [...23.2.213.165][...80]
+ DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/firefox.pcap.out b/test/results/flow-info/firefox.pcap.out
deleted file mode 100644
index 1a5869b8c..000000000
--- a/test/results/flow-info/firefox.pcap.out
+++ /dev/null
@@ -1,92 +0,0 @@
- DAEMON-EVENT: init
- DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
- DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
- new: [.....1] [ip4][..tcp] [..192.168.1.178][51577] -> [...146.48.58.18][..443]
- detected: [.....1] [ip4][..tcp] [..192.168.1.178][51577] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- detection-update: [.....1] [ip4][..tcp] [..192.168.1.178][51577] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- new: [.....2] [ip4][..tcp] [..192.168.1.178][51583] -> [...146.48.58.18][..443]
- analyse: [.....1] [ip4][..tcp] [..192.168.1.178][51577] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.577| 0.067| 0.148| 21926.652| 2.800]
- [PKTLEN......: 52.000| 1492.000| 585.100| 633.000| 400627.700| 4.100]
- [BINS(c->s)..: 10,0,1,0,0,0,0,0,0,0,0,1,1,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 5,0,0,0,0,0,0,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,9,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,1,0,1,0,0,0,1,1,1,1,0,0,1,1,0,1,1,0,1,1,0,0,0,1,1,1]
- [IATS(ms)....: 26.7,26.8,1.3,27.3,5.8,0.0,31.8,0.5,0.5,211.0,0.3,236.0,0.0,1.3,0.0,26.1,0.0,575.4,1.2,576.6,0.3,0.1,0.3,0.1,0.1,0.2,1.4,145.8,171.4,2.9,1.4]
- [PKTLENS.....: 64,60,52,569,52,1492,1492,52,758,52,132,438,52,52,355,355,52,52,1492,1492,52,1492,1492,52,1492,1471,52,52,417,52,1492,1492]
- [ENTROPIES...: 4.4,5.3,5.0,5.2,5.2,7.8,7.9,5.0,7.7,5.1,6.3,7.4,5.1,5.0,7.3,7.4,5.0,5.0,7.9,7.9,5.0,7.9,7.9,5.0,7.9,7.9,5.0,5.0,7.4,5.1,7.8,7.9]
- new: [.....3] [ip4][..tcp] [..192.168.1.178][51588] -> [...146.48.58.18][..443]
- detected: [.....2] [ip4][..tcp] [..192.168.1.178][51583] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- detected: [.....3] [ip4][..tcp] [..192.168.1.178][51588] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- detection-update: [.....2] [ip4][..tcp] [..192.168.1.178][51583] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- detection-update: [.....3] [ip4][..tcp] [..192.168.1.178][51588] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- new: [.....4] [ip4][..tcp] [..192.168.1.178][51599] -> [...146.48.58.18][..443]
- new: [.....5] [ip4][..tcp] [..192.168.1.178][51600] -> [...146.48.58.18][..443]
- new: [.....6] [ip4][..tcp] [..192.168.1.178][51601] -> [...146.48.58.18][..443]
- analyse: [.....2] [ip4][..tcp] [..192.168.1.178][51583] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.231| 0.023| 0.053| 2771.897| 3.000]
- [PKTLEN......: 52.000| 1492.000| 642.300| 649.700| 422101.600| 4.200]
- [BINS(c->s)..: 9,0,1,0,0,0,0,0,0,0,1,1,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 5,0,0,0,0,0,0,0,1,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,11,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,0,0,0,1,1,0,1,1,1,0,0,1,1,1,1,0,1,0,1,1,0,1,1,1,1,0]
- [IATS(ms)....: 34.4,34.5,3.3,32.3,1.5,30.5,4.2,18.6,31.6,0.0,8.9,18.5,3.0,0.1,21.6,203.5,231.0,1.0,0.2,0.0,28.7,0.2,0.2,0.9,0.1,1.0,0.1,0.4,0.0,0.0,0.5]
- [PKTLENS.....: 64,60,52,732,52,312,52,132,402,52,355,52,52,1492,1028,52,433,52,1492,1492,1492,52,1492,52,1492,1492,52,1492,1492,1492,1492,52]
- [ENTROPIES...: 4.5,5.2,5.0,7.2,5.1,7.0,5.0,6.3,7.3,5.0,7.4,5.0,5.1,7.9,7.8,5.0,7.5,5.0,7.9,7.9,7.9,5.0,7.9,5.0,7.9,7.9,5.0,7.9,7.9,7.9,7.9,5.0]
- detected: [.....5] [ip4][..tcp] [..192.168.1.178][51600] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- detected: [.....4] [ip4][..tcp] [..192.168.1.178][51599] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- detected: [.....6] [ip4][..tcp] [..192.168.1.178][51601] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- analyse: [.....3] [ip4][..tcp] [..192.168.1.178][51588] -> [...146.48.58.18][..443]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.221| 0.023| 0.050| 2549.799| 3.100]
- [PKTLEN......: 52.000| 1492.000| 608.900| 649.700| 422127.900| 4.100]
- [BINS(c->s)..: 10,0,1,0,0,0,0,0,0,0,0,2,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 5,0,0,0,0,0,0,0,1,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,10,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,1,0,0,1,1,0,0,1,1,1,0,1,1,0,1,1,0,1,1,0,1,1,0]
- [IATS(ms)....: 27.4,27.4,16.2,42.1,1.2,27.2,10.1,34.7,0.0,24.7,195.8,221.4,1.8,27.4,3.4,28.7,1.1,0.2,26.6,1.0,0.1,1.1,0.1,0.1,0.2,0.1,0.1,0.3,0.3,0.2,0.5]
- [PKTLENS.....: 64,60,52,732,52,312,52,132,52,355,52,419,52,1392,52,422,52,1492,1492,52,1492,1492,52,1492,1492,52,1492,1492,52,1492,1492,52]
- [ENTROPIES...: 4.5,5.1,5.0,7.2,5.0,6.9,5.0,6.3,5.0,7.4,5.0,7.4,5.0,7.9,4.9,7.4,5.0,7.9,7.9,5.0,7.9,7.9,5.0,7.9,7.9,5.0,7.9,7.9,5.0,7.9,7.9,5.0]
- detection-update: [.....3] [ip4][..tcp] [..192.168.1.178][51588] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- detection-update: [.....5] [ip4][..tcp] [..192.168.1.178][51600] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- detection-update: [.....4] [ip4][..tcp] [..192.168.1.178][51599] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- detection-update: [.....6] [ip4][..tcp] [..192.168.1.178][51601] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- analyse: [.....5] [ip4][..tcp] [..192.168.1.178][51600] -> [...146.48.58.18][..443]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.030| 0.007| 0.010| 104.605| 3.700]
- [PKTLEN......: 52.000| 1492.000| 600.500| 660.200| 435829.600| 4.100]
- [BINS(c->s)..: 12,0,1,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 4,0,0,0,0,0,0,0,1,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,11,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,0,0,0,1,1,0,1,1,1,0,1,0,1,0,1,0,1,0,1,1,0,0,1,1,0,1]
- [IATS(ms)....: 26.8,26.8,3.3,29.2,2.4,28.4,2.9,12.8,29.6,0.0,13.9,11.4,1.7,0.1,13.2,0.1,0.3,1.0,0.8,0.1,0.2,0.1,0.1,0.2,0.1,0.3,0.1,0.3,12.0,12.2,0.1]
- [PKTLENS.....: 64,60,52,732,52,312,52,132,422,52,355,52,52,1492,1492,52,1492,52,1492,52,1492,52,1492,52,1492,1492,52,52,1492,1492,52,1492]
- [ENTROPIES...: 4.4,5.2,5.0,7.2,5.0,7.0,5.0,6.3,7.4,5.1,7.3,5.0,5.0,7.9,7.9,5.0,7.9,4.9,7.9,5.1,7.8,4.9,7.9,5.0,7.9,7.9,5.0,4.9,7.9,7.9,5.0,7.9]
- detection-update: [.....5] [ip4][..tcp] [..192.168.1.178][51600] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- analyse: [.....4] [ip4][..tcp] [..192.168.1.178][51599] -> [...146.48.58.18][..443]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.046| 0.009| 0.012| 154.305| 3.600]
- [PKTLEN......: 52.000| 1492.000| 578.400| 641.500| 411570.000| 4.100]
- [BINS(c->s)..: 12,0,1,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 4,0,0,0,0,0,0,0,1,1,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,10,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,0,0,0,1,1,0,1,1,1,0,1,0,1,0,1,0,1,0,1,1,0,1,0,1,1,0]
- [IATS(ms)....: 28.1,28.2,5.5,31.7,1.1,27.2,20.3,4.0,45.6,1.3,22.6,2.8,3.1,0.1,6.1,0.1,0.2,0.2,0.1,0.1,0.1,0.1,0.1,0.1,0.2,0.4,0.3,1.5,18.6,0.0,17.4]
- [PKTLENS.....: 64,60,52,732,52,312,52,132,422,52,355,52,52,1492,1492,52,1492,52,1492,52,1492,52,1492,52,1492,1492,52,1492,52,1492,785,52]
- [ENTROPIES...: 4.4,5.2,5.0,7.2,5.1,7.0,5.0,6.2,7.5,5.0,7.4,5.0,5.1,7.8,7.9,5.0,7.9,4.9,7.9,5.1,7.8,4.9,7.9,5.1,7.9,7.9,5.0,7.9,4.9,7.9,7.7,5.0]
- detection-update: [.....4] [ip4][..tcp] [..192.168.1.178][51599] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- analyse: [.....6] [ip4][..tcp] [..192.168.1.178][51601] -> [...146.48.58.18][..443]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.037| 0.010| 0.013| 180.101| 3.600]
- [PKTLEN......: 52.000| 1492.000| 533.200| 619.500| 383804.700| 4.000]
- [BINS(c->s)..: 11,0,1,0,0,0,0,0,0,0,0,2,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 5,0,0,0,0,0,0,0,1,1,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,9,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,0,0,0,1,1,0,1,1,1,0,1,1,0,1,1,1,0,0,0,0,1,1,1,0,0,1]
- [IATS(ms)....: 28.6,28.7,7.7,37.4,1.5,31.1,2.2,13.0,31.0,0.1,15.9,15.4,0.5,0.1,16.0,0.3,0.4,0.6,0.1,0.2,0.0,0.4,0.0,0.2,0.5,36.5,0.1,0.1,36.1,0.2,0.4]
- [PKTLENS.....: 64,60,52,732,52,312,52,132,422,52,355,52,52,1492,1492,52,1492,1492,52,1492,1492,398,52,52,52,431,52,1492,1492,52,52,1492]
- [ENTROPIES...: 4.5,5.2,5.0,7.2,5.1,7.0,5.0,6.2,7.6,5.1,7.4,5.0,5.1,7.9,7.9,5.0,7.9,7.9,5.0,7.9,7.9,7.4,5.0,4.9,4.9,7.4,5.0,7.9,7.9,5.0,4.9,7.9]
- detection-update: [.....6] [ip4][..tcp] [..192.168.1.178][51601] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- idle: [.....1] [ip4][..tcp] [..192.168.1.178][51577] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
- idle: [.....2] [ip4][..tcp] [..192.168.1.178][51583] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
- idle: [.....3] [ip4][..tcp] [..192.168.1.178][51588] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
- idle: [.....4] [ip4][..tcp] [..192.168.1.178][51599] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
- idle: [.....5] [ip4][..tcp] [..192.168.1.178][51600] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
- idle: [.....6] [ip4][..tcp] [..192.168.1.178][51601] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
- DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/gre_no_options.pcapng.out b/test/results/flow-info/gre_no_options.pcapng.out
deleted file mode 100644
index 0adb59956..000000000
--- a/test/results/flow-info/gre_no_options.pcapng.out
+++ /dev/null
@@ -1,7 +0,0 @@
- DAEMON-EVENT: init
- DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
- DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
- new: [.....1] [ip4][...47] [....203.0.113.1] -> [......192.0.2.2]
- detected: [.....1] [ip4][...47] [....203.0.113.1] -> [......192.0.2.2] [GRE][Unknown][Network][Acceptable]
- idle: [.....1] [ip4][...47] [....203.0.113.1] -> [......192.0.2.2] [GRE][Unknown][Network][Acceptable]
- DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/http-manipulated.pcap.out b/test/results/flow-info/http-manipulated.pcap.out
deleted file mode 100644
index 847e4acad..000000000
--- a/test/results/flow-info/http-manipulated.pcap.out
+++ /dev/null
@@ -1,26 +0,0 @@
- DAEMON-EVENT: init
- DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
- DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
- new: [.....1] [ip4][..tcp] [...192.168.0.20][33632] -> [....192.168.0.7][.8080]
- detected: [.....1] [ip4][..tcp] [...192.168.0.20][33632] -> [....192.168.0.7][.8080] [HTTP][Unknown][Web][Acceptable][wwww.lan]
- RISK: Known Proto on Non Std Port
- DAEMON-EVENT: [Processed: 10 pkts][ZLib][compressions: 0|diff: 0 / 0]
- DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
- new: [.....2] [ip4][..tcp] [...192.168.0.20][33684] -> [....192.168.0.7][.8080]
- detected: [.....2] [ip4][..tcp] [...192.168.0.20][33684] -> [....192.168.0.7][.8080] [HTTP][Unknown][Web][Acceptable][www.lan]
- RISK: Known Proto on Non Std Port
- analyse: [.....2] [ip4][..tcp] [...192.168.0.20][33684] -> [....192.168.0.7][.8080] [HTTP][Unknown][Web][Acceptable]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.073| 0.005| 0.018| 320.351| 1.200]
- [PKTLEN......: 40.000| 5880.000| 1450.400| 1938.500| 3757919.500| 3.700]
- [BINS(c->s)..: 14,0,0,0,0,0,0,0,0,0,1,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 3,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,2,0,10]
- [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1]
- [IATS(ms)....: 0.2,0.2,0.1,0.3,0.2,0.4,72.8,73.1,0.2,0.4,0.1,0.1,0.0,0.0,0.0,0.0,0.1,0.1,0.1,0.1,0.0,0.0,0.0,0.0,0.0,0.0,0.0,0.0,0.0,0.0,0.0]
- [PKTLENS.....: 52,52,40,426,46,617,40,375,46,2960,40,4420,40,2960,40,4420,40,1500,40,4420,40,2960,40,4420,40,1500,40,5880,40,5880,40,2960]
- [ENTROPIES...: 4.6,4.8,4.7,5.7,4.3,5.7,4.7,5.6,4.3,7.8,4.7,7.9,4.7,7.8,4.6,7.9,4.7,7.7,4.7,7.9,4.7,7.8,4.7,7.8,4.6,7.7,4.6,7.9,4.7,7.9,4.7,7.9]
- end: [.....1] [ip4][..tcp] [...192.168.0.20][33632] -> [....192.168.0.7][.8080] [HTTP][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
- end: [.....2] [ip4][..tcp] [...192.168.0.20][33684] -> [....192.168.0.7][.8080] [HTTP][Unknown][Web][Acceptable]
- RISK: Known Proto on Non Std Port
- DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/ookla.pcap.out b/test/results/flow-info/ookla.pcap.out
deleted file mode 100644
index 5cd9597a3..000000000
--- a/test/results/flow-info/ookla.pcap.out
+++ /dev/null
@@ -1,23 +0,0 @@
- DAEMON-EVENT: init
- DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
- DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
- new: [.....1] [ip4][..tcp] [....192.168.1.7][51207] -> [..46.44.253.187][...80]
- detected: [.....1] [ip4][..tcp] [....192.168.1.7][51207] -> [..46.44.253.187][...80] [HTTP.Ookla][Unknown][Network][Safe][]
- detection-update: [.....1] [ip4][..tcp] [....192.168.1.7][51207] -> [..46.44.253.187][...80] [HTTP.Ookla][Unknown][Network][Safe][]
- RISK: HTTP Suspicious User-Agent
- new: [.....2] [ip4][..tcp] [....192.168.1.7][51215] -> [..46.44.253.187][.8080]
- detected: [.....2] [ip4][..tcp] [....192.168.1.7][51215] -> [..46.44.253.187][.8080] [Ookla][Unknown][Network][Safe]
- analyse: [.....2] [ip4][..tcp] [....192.168.1.7][51215] -> [..46.44.253.187][.8080] [Ookla][Unknown][Network][Safe]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.138| 0.055| 0.033| 1064.798| 4.700]
- [PKTLEN......: 52.000| 86.000| 63.900| 9.700| 93.700| 5.000]
- [BINS(c->s)..: 21,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 10,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0]
- [IATS(ms)....: 36.8,36.9,28.0,64.0,0.1,36.1,38.4,72.7,34.3,27.1,61.9,34.7,97.7,133.2,35.5,27.7,63.1,35.3,68.5,103.7,35.3,26.0,61.1,35.1,103.2,137.7,34.5,32.6,67.3,34.6,94.1]
- [PKTLENS.....: 64,60,52,55,52,86,52,71,71,52,71,71,52,71,71,52,71,71,52,71,71,52,71,71,52,71,71,52,71,71,52,71]
- [ENTROPIES...: 4.5,5.3,5.1,5.2,5.2,5.5,5.1,5.4,5.5,5.0,5.4,5.5,5.1,5.5,5.5,5.1,5.4,5.6,5.1,5.4,5.6,5.1,5.5,5.5,5.0,5.5,5.6,5.1,5.5,5.5,5.0,5.4]
- end: [.....2] [ip4][..tcp] [....192.168.1.7][51215] -> [..46.44.253.187][.8080] [Ookla][Unknown][Network][Safe]
- end: [.....1] [ip4][..tcp] [....192.168.1.7][51207] -> [..46.44.253.187][...80] [HTTP.Ookla][Unknown][Network][Safe]
- RISK: HTTP Suspicious User-Agent
- DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/pop3.pcap.out b/test/results/flow-info/pop3.pcap.out
deleted file mode 100644
index 926eff9e8..000000000
--- a/test/results/flow-info/pop3.pcap.out
+++ /dev/null
@@ -1,9 +0,0 @@
- DAEMON-EVENT: init
- DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
- DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
- new: [.....1] [ip4][..tcp] [143.225.229.181][35287] -> [....74.208.5.28][..110]
- detected: [.....1] [ip4][..tcp] [143.225.229.181][35287] -> [....74.208.5.28][..110] [POP3][Unknown][Email][Unsafe]
- RISK: Unsafe Protocol
- end: [.....1] [ip4][..tcp] [143.225.229.181][35287] -> [....74.208.5.28][..110] [POP3][Unknown][Email][Unsafe]
- RISK: Unsafe Protocol
- DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/quic-mvfst-22_decryption_error.pcap.out b/test/results/flow-info/quic-mvfst-22_decryption_error.pcap.out
deleted file mode 100644
index 1722511e6..000000000
--- a/test/results/flow-info/quic-mvfst-22_decryption_error.pcap.out
+++ /dev/null
@@ -1,17 +0,0 @@
- DAEMON-EVENT: init
- DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
- DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
- new: [.....1] [ip4][..udp] [..10.230.40.168][62196] -> [..94.97.225.146][..443]
- detected: [.....1] [ip4][..udp] [..10.230.40.168][62196] -> [..94.97.225.146][..443] [QUIC][Unknown][Web][Acceptable]
- analyse: [.....1] [ip4][..udp] [..10.230.40.168][62196] -> [..94.97.225.146][..443] [QUIC][Unknown][Web][Acceptable]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.003| 0.000| 0.001| 0.329| 1.400]
- [PKTLEN......: 60.000| 1280.000| 708.500| 531.100| 282057.000| 4.500]
- [BINS(c->s)..: 0,3,3,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,3,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 0,3,0,0,0,0,0,3,0,0,0,3,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,13,0,0,0,0,0,0,0,0]
- [DIRECTIONS..: 0,0,0,0,0,0,0,0,0,0,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1]
- [IATS(ms)....: 1.0,0.0,0.0,0.0,0.0,0.0,0.0,0.0,0.0,3.0,0.0,0.0,0.0,0.0,0.0,1.0,0.0,0.0,0.0,0.0,0.0,0.0,0.0,0.0,0.0,0.0,0.0,0.0,0.0,0.0,0.0]
- [PKTLENS.....: 1260,106,106,106,698,698,698,60,60,60,66,66,66,261,261,261,400,400,400,1280,1280,1280,1280,1280,1280,1280,1280,1280,1280,1280,1280,1280]
- [ENTROPIES...: 7.9,6.1,6.1,6.2,7.7,7.7,7.7,5.5,5.5,5.5,5.4,5.4,5.5,7.2,7.2,7.2,7.4,7.4,7.4,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.8,7.9]
- idle: [.....1] [ip4][..udp] [..10.230.40.168][62196] -> [..94.97.225.146][..443] [QUIC][Unknown][Web][Acceptable]
- DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/safari.pcap.out b/test/results/flow-info/safari.pcap.out
deleted file mode 100644
index d0f885aa9..000000000
--- a/test/results/flow-info/safari.pcap.out
+++ /dev/null
@@ -1,110 +0,0 @@
- DAEMON-EVENT: init
- DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
- DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
- new: [.....1] [ip4][..tcp] [..192.168.1.178][55262] -> [...146.48.58.18][..443]
- detected: [.....1] [ip4][..tcp] [..192.168.1.178][55262] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- detection-update: [.....1] [ip4][..tcp] [..192.168.1.178][55262] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- detection-update: [.....1] [ip4][..tcp] [..192.168.1.178][55262] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- new: [.....2] [ip4][..tcp] [..192.168.1.178][55265] -> [...146.48.58.18][..443]
- new: [.....3] [ip4][..tcp] [..192.168.1.178][55266] -> [...146.48.58.18][..443]
- new: [.....4] [ip4][..tcp] [..192.168.1.178][55267] -> [...146.48.58.18][..443]
- new: [.....5] [ip4][..tcp] [..192.168.1.178][55268] -> [...146.48.58.18][..443]
- new: [.....6] [ip4][..tcp] [..192.168.1.178][55269] -> [...146.48.58.18][..443]
- analyse: [.....1] [ip4][..tcp] [..192.168.1.178][55262] -> [...146.48.58.18][..443]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.579| 0.077| 0.167| 27833.076| 2.800]
- [PKTLEN......: 52.000| 1492.000| 555.500| 644.500| 415419.900| 4.000]
- [BINS(c->s)..: 11,0,1,0,0,0,0,1,0,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 5,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,10,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,1,1,0,0,0,1,1,0,0,1,1,1,0,1,0,1,0,1,0,1,0,0,1,1,1,0]
- [IATS(ms)....: 28.3,28.4,0.6,28.7,7.0,0.1,0.0,35.1,0.0,52.7,82.0,0.0,29.3,0.9,28.1,550.6,1.2,579.0,0.2,0.3,0.1,0.1,0.1,0.1,0.1,0.1,428.1,455.0,4.4,1.2,32.6]
- [PKTLENS.....: 64,60,52,287,52,1492,1492,627,52,52,145,52,103,52,411,52,1492,1492,52,1492,52,1492,52,1492,52,1492,52,431,52,1492,1492,52]
- [ENTROPIES...: 4.4,5.3,5.0,5.6,5.0,7.1,7.3,7.6,5.0,4.9,6.1,5.0,5.9,5.0,7.4,5.0,7.9,7.9,4.9,7.9,4.8,7.9,5.0,7.9,4.9,7.9,5.0,7.4,5.1,7.9,7.9,5.1]
- detection-update: [.....1] [ip4][..tcp] [..192.168.1.178][55262] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- detected: [.....4] [ip4][..tcp] [..192.168.1.178][55267] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- RISK: TLS (probably) Not Carrying HTTPS
- detected: [.....2] [ip4][..tcp] [..192.168.1.178][55265] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- RISK: TLS (probably) Not Carrying HTTPS
- detected: [.....5] [ip4][..tcp] [..192.168.1.178][55268] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- RISK: TLS (probably) Not Carrying HTTPS
- detected: [.....3] [ip4][..tcp] [..192.168.1.178][55266] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- RISK: TLS (probably) Not Carrying HTTPS
- detected: [.....6] [ip4][..tcp] [..192.168.1.178][55269] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- RISK: TLS (probably) Not Carrying HTTPS
- detection-update: [.....4] [ip4][..tcp] [..192.168.1.178][55267] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- RISK: TLS (probably) Not Carrying HTTPS
- detection-update: [.....2] [ip4][..tcp] [..192.168.1.178][55265] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- RISK: TLS (probably) Not Carrying HTTPS
- detection-update: [.....5] [ip4][..tcp] [..192.168.1.178][55268] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- RISK: TLS (probably) Not Carrying HTTPS
- detection-update: [.....3] [ip4][..tcp] [..192.168.1.178][55266] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- RISK: TLS (probably) Not Carrying HTTPS
- detection-update: [.....6] [ip4][..tcp] [..192.168.1.178][55269] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- RISK: TLS (probably) Not Carrying HTTPS
- analyse: [.....4] [ip4][..tcp] [..192.168.1.178][55267] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.119| 0.018| 0.029| 823.374| 3.500]
- [PKTLEN......: 52.000| 1492.000| 618.000| 660.500| 436248.100| 4.100]
- [BINS(c->s)..: 10,1,0,0,0,0,1,0,0,0,0,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 5,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,11,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,0,0,0,1,1,1,1,0,1,1,0,1,1,0,1,1,0,1,1,0,1,0,0,0,1,1]
- [IATS(ms)....: 29.6,29.7,2.4,30.5,0.0,28.2,51.9,8.9,77.9,8.5,0.6,1.2,27.4,0.1,0.1,0.2,0.1,0.1,0.3,0.1,0.1,0.2,0.5,0.1,0.6,24.0,24.0,84.5,7.8,118.9,0.9]
- [PKTLENS.....: 64,60,52,263,52,193,52,103,494,52,52,1492,1492,52,1492,1492,52,1492,1492,52,1492,1492,52,1492,1492,52,1029,52,52,483,52,1492]
- [ENTROPIES...: 4.4,5.2,4.9,5.8,5.0,6.4,4.9,5.5,7.5,5.0,4.8,7.9,7.9,5.0,7.9,7.9,5.0,7.9,7.9,4.9,7.9,7.9,5.0,7.9,7.9,4.9,7.8,5.0,4.8,7.5,5.1,7.9]
- analyse: [.....2] [ip4][..tcp] [..192.168.1.178][55265] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.140| 0.019| 0.033| 1086.908| 3.400]
- [PKTLEN......: 52.000| 1492.000| 602.100| 656.600| 431150.100| 4.100]
- [BINS(c->s)..: 10,1,0,0,0,0,1,0,0,0,0,0,1,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 5,0,0,0,1,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,11,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,0,0,0,1,1,1,1,0,1,1,0,1,1,1,0,0,0,0,1,1,1,0,1,1,0,1]
- [IATS(ms)....: 30.4,30.4,2.4,30.7,1.7,30.1,50.3,8.6,78.3,9.2,5.0,0.1,33.7,0.1,0.7,0.9,0.1,0.1,0.0,0.3,0.0,104.0,6.6,140.4,1.5,0.5,31.8,0.1,0.1,0.2,0.4]
- [PKTLENS.....: 64,60,52,263,52,193,52,103,458,52,52,1492,1492,52,1492,1492,52,1492,1492,551,52,52,52,486,52,1492,1492,52,1492,1492,52,1492]
- [ENTROPIES...: 4.4,5.2,4.9,5.8,5.1,6.5,4.9,5.5,7.4,5.0,5.0,7.9,7.9,5.0,7.9,7.9,5.0,7.9,7.9,7.5,4.9,5.0,4.9,7.5,5.1,7.9,7.9,4.9,7.9,7.9,4.9,7.9]
- analyse: [.....3] [ip4][..tcp] [..192.168.1.178][55266] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.144| 0.020| 0.034| 1135.493| 3.400]
- [PKTLEN......: 52.000| 1492.000| 610.000| 657.100| 431734.900| 4.100]
- [BINS(c->s)..: 10,1,0,0,0,0,1,0,0,0,0,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 5,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,11,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,0,0,0,1,1,1,1,0,1,1,0,1,0,0,0,1,1,1,0,1,1,0,1,1,0,1]
- [IATS(ms)....: 31.3,31.4,1.4,32.4,1.0,32.0,49.5,8.2,77.5,8.4,0.6,1.2,30.1,0.1,0.0,0.1,0.1,0.1,106.8,7.1,144.0,5.8,0.1,35.9,0.1,0.1,0.2,0.1,0.1,0.2,0.1]
- [PKTLENS.....: 64,60,52,263,52,193,52,103,489,52,52,1492,1492,52,1492,1492,52,777,52,52,483,52,1492,1492,52,1492,1492,52,1492,1492,52,1492]
- [ENTROPIES...: 4.3,5.2,4.9,5.8,5.0,6.4,4.8,5.4,7.5,5.0,5.0,7.9,7.9,4.9,7.9,7.9,5.0,7.8,4.9,4.8,7.4,5.1,7.9,7.9,4.8,7.9,7.9,4.9,7.9,7.9,4.9,7.9]
- analyse: [.....6] [ip4][..tcp] [..192.168.1.178][55269] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.147| 0.020| 0.034| 1161.612| 3.300]
- [PKTLEN......: 52.000| 1492.000| 590.800| 660.800| 436665.800| 4.100]
- [BINS(c->s)..: 10,1,0,0,0,0,1,0,0,0,0,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 5,0,0,1,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,11,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,0,0,0,1,1,1,1,0,1,1,0,0,0,1,1,1,0,1,1,0,1,1,0,1,1,0]
- [IATS(ms)....: 33.6,33.6,1.2,33.6,0.0,32.4,46.9,8.3,78.2,6.3,1.0,0.3,30.4,0.9,0.0,0.9,105.4,6.5,147.0,2.1,0.1,37.3,0.1,0.1,0.2,0.1,0.6,0.8,0.1,0.1,0.2]
- [PKTLENS.....: 64,60,52,263,52,193,52,103,481,52,52,1492,1492,52,1492,167,52,52,486,52,1492,1492,52,1492,1492,52,1492,1492,52,1492,1492,52]
- [ENTROPIES...: 4.4,5.3,5.0,5.8,5.0,6.4,4.9,5.7,7.5,5.0,5.1,7.9,7.9,5.1,7.9,6.8,4.9,4.9,7.5,5.0,7.9,7.8,5.1,7.9,7.9,5.0,7.9,7.9,5.0,7.9,7.9,5.1]
- analyse: [.....5] [ip4][..tcp] [..192.168.1.178][55268] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 0.146| 0.022| 0.035| 1194.506| 3.500]
- [PKTLEN......: 52.000| 1492.000| 519.000| 616.900| 380607.300| 4.000]
- [BINS(c->s)..: 10,1,0,0,0,0,1,0,0,0,0,0,0,3,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 6,0,0,0,1,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,8,0,0]
- [DIRECTIONS..: 0,1,0,0,1,1,0,0,0,1,1,1,0,0,1,1,1,0,1,1,0,1,1,1,0,0,0,0,1,1,1,0]
- [IATS(ms)....: 30.4,30.5,1.4,31.3,0.1,30.0,50.7,8.3,78.2,9.2,0.2,28.7,116.2,146.0,0.5,0.1,30.4,0.1,0.4,0.5,0.1,0.1,0.0,0.2,0.0,0.9,5.5,36.2,1.5,0.1,31.5]
- [PKTLENS.....: 64,60,52,263,52,193,52,103,480,52,52,1399,52,483,52,1492,1492,52,1492,1492,52,1492,1492,411,52,52,52,489,52,1492,1492,52]
- [ENTROPIES...: 4.4,5.2,4.9,5.9,4.9,6.5,4.8,5.6,7.5,5.0,5.0,7.9,5.0,7.4,4.9,7.9,7.9,4.8,7.9,7.9,4.9,7.9,7.9,7.5,4.9,4.9,4.8,7.5,5.1,7.9,7.9,5.1]
- new: [.....7] [ip4][..tcp] [..192.168.1.178][55285] -> [...146.48.58.18][..443]
- detected: [.....7] [ip4][..tcp] [..192.168.1.178][55285] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- detection-update: [.....7] [ip4][..tcp] [..192.168.1.178][55285] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- detection-update: [.....7] [ip4][..tcp] [..192.168.1.178][55285] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe][www.iit.cnr.it]
- idle: [.....1] [ip4][..tcp] [..192.168.1.178][55262] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
- idle: [.....2] [ip4][..tcp] [..192.168.1.178][55265] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
- RISK: TLS (probably) Not Carrying HTTPS
- idle: [.....3] [ip4][..tcp] [..192.168.1.178][55266] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
- RISK: TLS (probably) Not Carrying HTTPS
- idle: [.....4] [ip4][..tcp] [..192.168.1.178][55267] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
- RISK: TLS (probably) Not Carrying HTTPS
- idle: [.....5] [ip4][..tcp] [..192.168.1.178][55268] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
- RISK: TLS (probably) Not Carrying HTTPS
- idle: [.....6] [ip4][..tcp] [..192.168.1.178][55269] -> [...146.48.58.18][..443] [TLS][Unknown][Web][Safe]
- RISK: TLS (probably) Not Carrying HTTPS
- idle: [.....7] [ip4][..tcp] [..192.168.1.178][55285] -> [...146.48.58.18][..443]
- DAEMON-EVENT: shutdown
diff --git a/test/results/flow-info/wireguard.pcap.out b/test/results/flow-info/wireguard.pcap.out
deleted file mode 100644
index 2efbd04d6..000000000
--- a/test/results/flow-info/wireguard.pcap.out
+++ /dev/null
@@ -1,24 +0,0 @@
- DAEMON-EVENT: init
- DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
- DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
- new: [.....1] [ip4][..udp] [139.162.192.157][51820] -> [...192.168.0.14][36116]
- detected: [.....1] [ip4][..udp] [139.162.192.157][51820] -> [...192.168.0.14][36116] [WireGuard][Unknown][VPN][Acceptable]
- analyse: [.....1] [ip4][..udp] [139.162.192.157][51820] -> [...192.168.0.14][36116] [WireGuard][Unknown][VPN][Acceptable]
- min| max| avg| stddev| variance| entropy
- [IAT.........: 0.000| 5.526| 0.606| 1.489| 2218508.681| 2.500]
- [PKTLEN......: 124.000| 828.000| 246.000| 181.000| 32764.000| 4.700]
- [BINS(c->s)..: 0,0,0,6,7,0,0,0,0,1,1,0,0,0,0,0,1,0,0,1,1,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [BINS(s->c)..: 0,0,0,7,1,0,0,0,5,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
- [DIRECTIONS..: 0,0,1,1,0,0,0,1,1,0,0,0,1,1,0,0,0,1,1,0,1,0,0,1,0,0,1,1,0,0,0,1]
- [IATS(ms)....: 0.0,0.2,13.3,82.4,23.4,0.1,92.8,0.7,114.4,124.5,0.2,238.5,14.3,86.0,36.4,0.1,108.2,0.8,113.6,3087.0,3060.6,97.5,183.7,5525.9,0.0,5525.9,16.5,88.0,44.4,0.1,115.9]
- [PKTLENS.....: 828,172,124,300,124,316,172,124,284,124,652,172,124,300,124,348,172,124,284,124,172,140,172,140,684,172,124,300,124,556,172,124]
- [ENTROPIES...: 7.7,6.5,6.1,7.3,6.1,7.2,6.5,6.1,7.2,6.0,7.6,6.6,6.1,7.2,6.0,7.3,6.6,6.2,7.2,6.1,6.5,6.3,6.6,6.3,7.7,6.6,6.1,7.2,6.1,7.6,6.6,6.2]
- update: [.....1] [ip4][..udp] [139.162.192.157][51820] -> [...192.168.0.14][36116] [WireGuard][Unknown][VPN][Acceptable]
- update: [.....1] [ip4][..udp] [139.162.192.157][51820] -> [...192.168.0.14][36116] [WireGuard][Unknown][VPN][Acceptable]
- update: [.....1] [ip4][..udp] [139.162.192.157][51820] -> [...192.168.0.14][36116] [WireGuard][Unknown][VPN][Acceptable]
- update: [.....1] [ip4][..udp] [139.162.192.157][51820] -> [...192.168.0.14][36116] [WireGuard][Unknown][VPN][Acceptable]
- update: [.....1] [ip4][..udp] [139.162.192.157][51820] -> [...192.168.0.14][36116] [WireGuard][Unknown][VPN][Acceptable]
- update: [.....1] [ip4][..udp] [139.162.192.157][51820] -> [...192.168.0.14][36116] [WireGuard][Unknown][VPN][Acceptable]
- update: [.....1] [ip4][..udp] [139.162.192.157][51820] -> [...192.168.0.14][36116] [WireGuard][Unknown][VPN][Acceptable]
- idle: [.....1] [ip4][..udp] [139.162.192.157][51820] -> [...192.168.0.14][36116] [WireGuard][Unknown][VPN][Acceptable]
- DAEMON-EVENT: shutdown
Powered by cgit, Themed by Ted Yin.