diff options
| author | lns <matzeton@googlemail.com> | 2022-09-14 00:30:23 +0200 |
|---|---|---|
| committer | lns <matzeton@googlemail.com> | 2022-09-14 11:22:41 +0200 |
| commit | b8cfe1d6d3c4f52d3bbaf3e4beb80903f9310830 (patch) | |
| tree | f67d9e6b5ae63f1cfecc036494988fe9bc56aebd /test/results/s7comm.pcap.out | |
| parent | d4633c11927683865d8b7bec5e0e4162bae82a60 (diff) | |
Fixed last pkt time.
Signed-off-by: lns <matzeton@googlemail.com>
Diffstat (limited to 'test/results/s7comm.pcap.out')
| -rw-r--r-- | test/results/s7comm.pcap.out | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/test/results/s7comm.pcap.out b/test/results/s7comm.pcap.out index 489a149cf..714468a48 100644 --- a/test/results/s7comm.pcap.out +++ b/test/results/s7comm.pcap.out @@ -5,7 +5,7 @@ 00861{"flow_event_id":7,"flow_event_name":"detected","thread_id":0,"packet_id":1,"source":"s7comm.pcap","alias":"nDPId-test","flow_id":1,"flow_state":"info","flow_src_packets_processed":1,"flow_dst_packets_processed":0,"flow_first_seen":1408528803880679,"flow_src_last_pkt_time":1408528803880679,"flow_dst_last_pkt_time":1408528803880679,"flow_idle_time":3285032704,"flow_src_min_l4_payload_len":22,"flow_dst_min_l4_payload_len":0,"flow_src_max_l4_payload_len":22,"flow_dst_max_l4_payload_len":0,"flow_src_tot_l4_payload_len":22,"flow_dst_tot_l4_payload_len":0,"midstream":1,"thread_ts_usec":1408528803880679,"l3_proto":"ip4","src_ip":"192.168.1.10","dst_ip":"192.168.1.40","src_port":4185,"dst_port":102,"l4_proto":"tcp","ndpi": {"confidence": {"6":"DPI"},"proto":"s7comm","proto_id":"249","encrypted":0,"breed":"Acceptable","category_id":14,"category":"Network"}} 00538{"packet_event_id":2,"packet_event_name":"packet-flow","thread_id":0,"packet_id":2,"source":"s7comm.pcap","alias":"nDPId-test","flow_id":1,"flow_packet_id":2,"flow_src_last_pkt_time":1408528803880679,"flow_dst_last_pkt_time":1408528803884414,"flow_idle_time":3285032704,"pkt_oversize":false,"pkt_caplen":76,"pkt_type":2048,"pkt_l3_offset":14,"pkt_l4_offset":34,"pkt_len":76,"pkt_l4_len":42,"thread_ts_usec":1408528803884414,"pkt":"kOa6hF5BABsbI+s7CABFAAA+AM4AAB4GGGrAqAEowKgBCgBmEFkAAvsQkETduFAYEAAGowAAAwAAFhHQAAcAAwDAAQrBAgEAwgIBAg=="} 00542{"packet_event_id":2,"packet_event_name":"packet-flow","thread_id":0,"packet_id":3,"source":"s7comm.pcap","alias":"nDPId-test","flow_id":1,"flow_packet_id":3,"flow_src_last_pkt_time":1408528803884562,"flow_dst_last_pkt_time":1408528803884414,"flow_idle_time":3285032704,"pkt_oversize":false,"pkt_caplen":79,"pkt_type":2048,"pkt_l3_offset":14,"pkt_l4_offset":34,"pkt_len":79,"pkt_l4_len":45,"thread_ts_usec":1408528803884562,"pkt":"ABsbI+s7kOa6hF5BCABFAABBLUxAAIAGAADAqAEKwKgBKBBZAGaQRN24AAL7JlAY+tqDtgAAAwAAGQLwgDIBAAACAAAIAADwAAABAAEB4A=="} -01350{"flow_event_id":5,"flow_event_name":"analyse","thread_id":0,"packet_id":32,"source":"s7comm.pcap","alias":"nDPId-test","flow_id":1,"flow_state":"finished","flow_src_packets_processed":21,"flow_dst_packets_processed":11,"flow_first_seen":1408528803880679,"flow_src_last_pkt_time":1408528803957564,"flow_dst_last_pkt_time":1408528803957480,"flow_idle_time":3285032704,"flow_src_min_l4_payload_len":7,"flow_dst_min_l4_payload_len":0,"flow_src_max_l4_payload_len":33,"flow_dst_max_l4_payload_len":221,"flow_src_tot_l4_payload_len":396,"flow_dst_tot_l4_payload_len":794,"midstream":1,"thread_ts_usec":1408528803957564,"l3_proto":"ip4","src_ip":"192.168.1.10","dst_ip":"192.168.1.40","src_port":4185,"dst_port":102,"l4_proto":"tcp","flow_datalink":1,"flow_max_packets":3,"data_analysis": {"iat": {"flow_min":66,"flow_avg":89663920.0,"flow_max":2869091799,"flow_stddev":499200000.0,"c_to_s_min":66,"c_to_s_avg":136627072.0,"c_to_s_max":2869091799,"c_to_s_stddev":610997696.0,"s_to_c_min":3114,"s_to_c_avg":6981.9,"s_to_c_max":9013,"s_to_c_stddev":2148.4},"pktlen": {"c_to_s_min":61,"c_to_s_avg":72.9,"c_to_s_max":87,"c_to_s_stddev":11.6,"s_to_c_min":76,"s_to_c_avg":126.2,"s_to_c_max":275,"s_to_c_stddev":51.1}},"ndpi": {"confidence": {"6":"DPI"},"proto":"s7comm","proto_id":"249","encrypted":0,"breed":"Acceptable","category_id":14,"category":"Network"}} +01319{"flow_event_id":5,"flow_event_name":"analyse","thread_id":0,"packet_id":32,"source":"s7comm.pcap","alias":"nDPId-test","flow_id":1,"flow_state":"finished","flow_src_packets_processed":21,"flow_dst_packets_processed":11,"flow_first_seen":1408528803880679,"flow_src_last_pkt_time":1408528803957564,"flow_dst_last_pkt_time":1408528803957480,"flow_idle_time":3285032704,"flow_src_min_l4_payload_len":7,"flow_dst_min_l4_payload_len":0,"flow_src_max_l4_payload_len":33,"flow_dst_max_l4_payload_len":221,"flow_src_tot_l4_payload_len":396,"flow_dst_tot_l4_payload_len":794,"midstream":1,"thread_ts_usec":1408528803957564,"l3_proto":"ip4","src_ip":"192.168.1.10","dst_ip":"192.168.1.40","src_port":4185,"dst_port":102,"l4_proto":"tcp","flow_datalink":1,"flow_max_packets":3,"data_analysis": {"iat": {"flow_min":66,"flow_avg":4957.6,"flow_max":9013,"flow_stddev":3321.6,"c_to_s_min":66,"c_to_s_avg":3844.2,"c_to_s_max":8819,"c_to_s_stddev":3327.1,"s_to_c_min":3114,"s_to_c_avg":6981.9,"s_to_c_max":9013,"s_to_c_stddev":2148.4},"pktlen": {"c_to_s_min":61,"c_to_s_avg":72.9,"c_to_s_max":87,"c_to_s_stddev":11.6,"s_to_c_min":76,"s_to_c_avg":126.2,"s_to_c_max":275,"s_to_c_stddev":51.1}},"ndpi": {"confidence": {"6":"DPI"},"proto":"s7comm","proto_id":"249","encrypted":0,"breed":"Acceptable","category_id":14,"category":"Network"}} 00910{"flow_event_id":3,"flow_event_name":"idle","thread_id":0,"packet_id":55,"source":"s7comm.pcap","alias":"nDPId-test","flow_id":1,"flow_state":"finished","flow_src_packets_processed":36,"flow_dst_packets_processed":19,"flow_first_seen":1408528803880679,"flow_src_last_pkt_time":1408528804003972,"flow_dst_last_pkt_time":1408528804016478,"flow_idle_time":3285032704,"flow_src_min_l4_payload_len":7,"flow_dst_min_l4_payload_len":0,"flow_src_max_l4_payload_len":247,"flow_dst_max_l4_payload_len":221,"flow_src_tot_l4_payload_len":1202,"flow_dst_tot_l4_payload_len":1088,"midstream":1,"thread_ts_usec":1408528804016478,"l3_proto":"ip4","src_ip":"192.168.1.10","dst_ip":"192.168.1.40","src_port":4185,"dst_port":102,"l4_proto":"tcp","flow_datalink":1,"flow_max_packets":3,"ndpi": {"confidence": {"6":"DPI"},"proto":"s7comm","proto_id":"249","encrypted":0,"breed":"Acceptable","category_id":14,"category":"Network"}} 00558{"daemon_event_id":3,"daemon_event_name":"shutdown","thread_id":0,"packet_id":55,"source":"s7comm.pcap","alias":"nDPId-test","packets-captured":55,"packets-processed":55,"total-skipped-flows":0,"total-l4-payload-len":2290,"total-not-detected-flows":0,"total-guessed-flows":0,"total-detected-flows":1,"total-detection-updates":0,"total-updates":0,"current-active-flows":0,"total-active-flows":1,"total-idle-flows":1,"total-compressions":0,"total-compression-diff":0,"current-compression-diff":0,"total-events-serialized":10,"global_ts_usec":1408528804016478} ~~~~~~~~~~~~~~~~~~~~ SUMMARY ~~~~~~~~~~~~~~~~~~~~ @@ -21,5 +21,5 @@ ~~ total allocations/frees...: 121489/121489 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~ json string min len.......: 477 chars -~~ json string max len.......: 1355 chars -~~ json string avg len.......: 883 chars +~~ json string max len.......: 1324 chars +~~ json string avg len.......: 869 chars |