summaryrefslogtreecommitdiff
path: root/test/results/default/http_starting_with_reply.pcapng.out
diff options
context:
space:
mode:
Diffstat (limited to 'test/results/default/http_starting_with_reply.pcapng.out')
-rw-r--r--test/results/default/http_starting_with_reply.pcapng.out5
1 files changed, 3 insertions, 2 deletions
diff --git a/test/results/default/http_starting_with_reply.pcapng.out b/test/results/default/http_starting_with_reply.pcapng.out
index e44daaf5a..f2078d18e 100644
--- a/test/results/default/http_starting_with_reply.pcapng.out
+++ b/test/results/default/http_starting_with_reply.pcapng.out
@@ -6,10 +6,11 @@
02521{"packet_event_id":2,"packet_event_name":"packet-flow","thread_id":0,"packet_id":2,"source":"cfgs\/default\/pcap\/http_starting_with_reply.pcapng","alias":"nDPId-test","flow_id":1,"flow_packet_id":2,"flow_src_last_pkt_time":1631378210397220,"flow_dst_last_pkt_time":1631378210397220,"flow_idle_time":7580000000,"pkt_datalink":1,"pkt_caplen":1514,"pkt_type":2048,"pkt_l3_offset":14,"pkt_l4_offset":34,"pkt_len":1514,"pkt_l4_len":1480,"thread_ts_usec":1631378210397220,"pkt":"KBaoBOm8AAwpTU5kCABFAAXcUgdAAEAGXsvAqAGSwKgBZwBQBBTvVdt1My1lhFAQAfVdWQAAaFANS2RtebVv4W4dIR29x45aiOQKLUNQE7o46MuaajdrpC7lSxtrcNuCRRWxp69ev70m72\/I5ftfp9e\/Tj+WhLXitfHYE1id9plAp6fY\/Lz3PZ3JDJ69wrdJSC++PUdoGpMF072LS\/fh7+GqIwld7MVHfPt7OM65sFrKZM4XxF7tZ+wvXFdel6NeE7YIcPQV7geZtCo67uTxec\/7RM0ypGjav3uM8dpgrsouLV+513TJNYF\/OAeJfdBumIjkihHb\/2Ya0r+RkBS1sasgLSrgQBqk4JxdwiRyblfmmAC9OCItnRtsoxINFZzwC5McMPRWw0nroEEVTADizSiKAcuRrp2WUIHVgRURbrsRTt\/NdDZLHi3tSk\/cCdIgDXfvKRSHC+QA5wPJJm4RYE62MiMRAKGCYwS6sBr59qEWJStGE7QeNSWVyZvp9DZX2ysM4lPTIG6JYTJEEfCoUZpUoSnFNiC\/AWO9lJmIIXtcKJYKGjG3Cd17Es4uyBMhIxxNtZGfGHMRrqnCuZidIIU8idlDgB8nITx8SmZsLhWzwyaeZMgeDtsdJUPFVVmZsnUmYVqOgnb38sajwIFCGaVWVKBHKeciqDObOf1pEkO\/kPxoyH0iN3CG1qLe1GCdBmkbM32\/RskZQMe2fhy5ZaMMfDYxsCBL6JpygThD4gxsKRuEMSFDINEkYq3egISRIUABATtpro3ukxSaY+3sCHVLwf1HTWgMfTwsUlgkNC24u9ob2VUYaYeQAuQbIOJeDhUzH6Hv4TDXnG2+Ga64yAPtcxDIwSWqyIGBx+dzhqdTDGQbxLIUrMfoqp1I3\/qOTgWEI5ycBF8F7XCOixkAfNnwFTRAMc51G6TxqBV1KL\/hZplDhpFS6ADgkdUkdkDV5pAQofNMgI\/FMsowSwBLnjSWhZlWoV5CSISwMKTOPuGH61dX764DB2TB4neM7YB8YGAbC7825qHIRMdCNg26OVcrZkCuypfFThtuHpeMZmJucW3WNPkca2Ey2xIaRUxriwuwv0i24YomGRW9C\/eOeZZwFxsIOl6rAQhlcWYP9oJAVJcQ0gI8IqJHm3qwdPtc87AEBfQxVntQM3fFshE6sxG6J0WzCyE3etwljYJiP2Rmd55Hf0Bd6y+wA5kf\/eEX\/wcL3lQqo\/19uF7JWA8AcwBU4mIhPngWQOkRV\/Y+223DD41ttTWIQk3apUUVrRSr6JWJppmLh4Lvf0hI2Q8sI+sIea2BIFs9rC5SGMkBlgJpZtz+lDPwS4iMBYNLhZ7Kk0hkOFaBXkdArkYWePVFXCAjLRlEuaEKCz6AnlrcNFPCznpokP\/LXDuvKIxFxYZutVeu9K1VF6mmcXcWBJJ5SRczwD7ITcyqKCBFMWswK0UrWpZeIJBcefMmLjNoh8RFeeKxBbKvNtJBME22gMYtefUvMuJlQ2k0XQFL5TALrYn7h46kHGJui1USH1Uiyz+LORbHUnFgbGuBlgxQeqXoZlEmqKqnmYSnKTPaF7OAsoiWIH8GKvXJQkDBI77AtRVdYDaArYCFa64MgDZZSl3LpfBcMZ0yO3mBCvRbnRNA9dZVhcjJlq8QwXq7wumRDeG8Suui0nRxXcQHVyVNuog8GxS8QqCYYUGAx+KyP5R0vgCfMX8KcRc10CKz2RIr5yUTWCAecrGu5\/ZFT1gCR9\/pq35hzPWhle0J+WtkwgB4pFCHlx4UyxFLOs3\/aNHRdR4pei1JNnmi4AH+EqDhd+gxtoFxtRsALniaLQvn2AvZSu0bhhiZ8YSqre2AfAvq8zG5sr2PBUZIB9COdZFiCSCGTOw8HrpJjrECSOGBdV9R7quthLEYE3VblVl62YwLMAqpAoAvdsW47V+xqoJMboI4L64c1IJBSyVGZFxHu9+exJbol2AIjE9LGktxsFGVroNwqOM3HOqIRLoZjO21rVAHkm+rOQ6dcvm6XHM="}
01303{"packet_event_id":2,"packet_event_name":"packet-flow","thread_id":0,"packet_id":3,"source":"cfgs\/default\/pcap\/http_starting_with_reply.pcapng","alias":"nDPId-test","flow_id":1,"flow_packet_id":3,"flow_src_last_pkt_time":1631378210397220,"flow_dst_last_pkt_time":1631378210397220,"flow_idle_time":7580000000,"pkt_datalink":1,"pkt_caplen":611,"pkt_type":2048,"pkt_l3_offset":14,"pkt_l4_offset":34,"pkt_len":611,"pkt_l4_len":577,"thread_ts_usec":1631378210397220,"pkt":"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"}
00543{"packet_event_id":2,"packet_event_name":"packet-flow","thread_id":0,"packet_id":4,"source":"cfgs\/default\/pcap\/http_starting_with_reply.pcapng","alias":"nDPId-test","flow_id":1,"flow_packet_id":4,"flow_src_last_pkt_time":1631378210397220,"flow_dst_last_pkt_time":1631378210397380,"flow_idle_time":7580000000,"pkt_datalink":1,"pkt_caplen":54,"pkt_type":2048,"pkt_l3_offset":14,"pkt_l4_offset":34,"pkt_len":54,"pkt_l4_len":20,"thread_ts_usec":1631378210397380,"pkt":"AAwpTU5kKBaoBOm8CABFAAAoWe9AAIAGAADAqAFnwKgBkgQUAFAzLWWE71XjVlAQBAKEZAAA"}
+01099{"flow_event_id":8,"flow_event_name":"detection-update","thread_id":0,"packet_id":4,"source":"cfgs\/default\/pcap\/http_starting_with_reply.pcapng","alias":"nDPId-test","flow_id":1,"flow_state":"info","flow_src_packets_processed":3,"flow_dst_packets_processed":1,"flow_first_seen":1631378210397220,"flow_src_last_pkt_time":1631378210397220,"flow_dst_last_pkt_time":1631378210397380,"flow_idle_time":7580000000,"flow_src_min_l4_payload_len":557,"flow_dst_min_l4_payload_len":0,"flow_src_max_l4_payload_len":1460,"flow_dst_max_l4_payload_len":0,"flow_src_tot_l4_payload_len":3477,"flow_dst_tot_l4_payload_len":0,"midstream":1,"thread_ts_usec":1631378210397380,"l3_proto":"ip4","src_ip":"192.168.1.146","dst_ip":"192.168.1.103","src_port":80,"dst_port":1044,"l4_proto":"tcp","ndpi": {"flow_risk": {"11": {"risk":"HTTP Susp User-Agent","severity":"High","risk_score": {"total":310,"client":275,"server":35}}},"confidence": {"6":"DPI"},"proto":"HTTP","proto_id":"7","proto_by_ip":"Unknown","proto_by_ip_id":0,"encrypted":0,"breed":"Acceptable","category_id":5,"category":"Web","hostname":"","http": {}}}
01014{"packet_event_id":2,"packet_event_name":"packet-flow","thread_id":0,"packet_id":5,"source":"cfgs\/default\/pcap\/http_starting_with_reply.pcapng","alias":"nDPId-test","flow_id":1,"flow_packet_id":5,"flow_src_last_pkt_time":1631378210397220,"flow_dst_last_pkt_time":1631378210486956,"flow_idle_time":7580000000,"pkt_datalink":1,"pkt_caplen":403,"pkt_type":2048,"pkt_l3_offset":14,"pkt_l4_offset":34,"pkt_len":403,"pkt_l4_len":369,"thread_ts_usec":1631378210486956,"pkt":"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"}
01232{"flow_event_id":8,"flow_event_name":"detection-update","thread_id":0,"packet_id":5,"source":"cfgs\/default\/pcap\/http_starting_with_reply.pcapng","alias":"nDPId-test","flow_id":1,"flow_state":"info","flow_src_packets_processed":3,"flow_dst_packets_processed":2,"flow_first_seen":1631378210397220,"flow_src_last_pkt_time":1631378210397220,"flow_dst_last_pkt_time":1631378210486956,"flow_idle_time":7580000000,"flow_src_min_l4_payload_len":557,"flow_dst_min_l4_payload_len":0,"flow_src_max_l4_payload_len":1460,"flow_dst_max_l4_payload_len":349,"flow_src_tot_l4_payload_len":3477,"flow_dst_tot_l4_payload_len":349,"midstream":1,"thread_ts_usec":1631378210486956,"l3_proto":"ip4","src_ip":"192.168.1.146","dst_ip":"192.168.1.103","src_port":80,"dst_port":1044,"l4_proto":"tcp","ndpi": {"confidence": {"6":"DPI"},"proto":"HTTP","proto_id":"7","proto_by_ip":"Unknown","proto_by_ip_id":0,"encrypted":0,"breed":"Acceptable","category_id":5,"category":"Web","hostname":"proxy.wiresharkfest.acropolis.local","http": {"url":"proxy.wiresharkfest.acropolis.local\/icons\/ubuntu-logo.png","code":0,"content_type":"","user_agent":"Mozilla\/5.0 (Windows NT 10.0; Win64; x64; rv:91.0) Gecko\/20100101 Firefox\/91.0","detected_os":"Windows 10"}}}
00984{"flow_event_id":2,"flow_event_name":"end","thread_id":0,"packet_id":18,"source":"cfgs\/default\/pcap\/http_starting_with_reply.pcapng","alias":"nDPId-test","flow_id":1,"flow_state":"finished","flow_src_packets_processed":11,"flow_dst_packets_processed":7,"flow_first_seen":1631378210397220,"flow_src_last_pkt_time":1631378215504945,"flow_dst_last_pkt_time":1631378215504662,"flow_idle_time":7580000000,"flow_src_min_l4_payload_len":0,"flow_dst_min_l4_payload_len":0,"flow_src_max_l4_payload_len":1460,"flow_dst_max_l4_payload_len":349,"flow_src_tot_l4_payload_len":7613,"flow_dst_tot_l4_payload_len":688,"midstream":1,"thread_ts_usec":1631378215504945,"l3_proto":"ip4","src_ip":"192.168.1.146","dst_ip":"192.168.1.103","src_port":80,"dst_port":1044,"l4_proto":"tcp","flow_datalink":1,"flow_max_packets":5,"ndpi": {"confidence": {"6":"DPI"},"proto":"HTTP","proto_id":"7","proto_by_ip":"Unknown","proto_by_ip_id":0,"encrypted":0,"breed":"Acceptable","category_id":5,"category":"Web"}}
-00654{"daemon_event_id":3,"daemon_event_name":"shutdown","thread_id":0,"packet_id":18,"source":"cfgs\/default\/pcap\/http_starting_with_reply.pcapng","alias":"nDPId-test","version":"1.5.0","ndpi_version":"4.9.0-4361-0db12b13","packets-captured":18,"packets-processed":18,"total-skipped-flows":0,"total-l4-payload-len":8301,"total-not-detected-flows":0,"total-guessed-flows":0,"total-detected-flows":1,"total-detection-updates":1,"total-updates":0,"current-active-flows":0,"total-active-flows":1,"total-idle-flows":1,"total-compressions":0,"total-compression-diff":0,"current-compression-diff":0,"total-events-serialized":12,"global_ts_usec":1631378215504945}
+00654{"daemon_event_id":3,"daemon_event_name":"shutdown","thread_id":0,"packet_id":18,"source":"cfgs\/default\/pcap\/http_starting_with_reply.pcapng","alias":"nDPId-test","version":"1.5.0","ndpi_version":"4.9.0-4361-0db12b13","packets-captured":18,"packets-processed":18,"total-skipped-flows":0,"total-l4-payload-len":8301,"total-not-detected-flows":0,"total-guessed-flows":0,"total-detected-flows":1,"total-detection-updates":2,"total-updates":0,"current-active-flows":0,"total-active-flows":1,"total-idle-flows":1,"total-compressions":0,"total-compression-diff":0,"current-compression-diff":0,"total-events-serialized":13,"global_ts_usec":1631378215504945}
~~~~~~~~~~~~~~~~~~~~ SUMMARY ~~~~~~~~~~~~~~~~~~~~
~~ packets captured/processed: 18/18
~~ skipped flows.............: 0
@@ -24,4 +25,4 @@
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~ json string min len.......: 548 chars
~~ json string max len.......: 2529 chars
-~~ json string avg len.......: 1536 chars
+~~ json string avg len.......: 1537 chars
Powered by cgit, Themed by Ted Yin.