aboutsummaryrefslogtreecommitdiff
path: root/test/results/flow-info/default/alexa-app.pcapng.out
diff options
context:
space:
mode:
Diffstat (limited to 'test/results/flow-info/default/alexa-app.pcapng.out')
-rw-r--r--test/results/flow-info/default/alexa-app.pcapng.out268
1 files changed, 134 insertions, 134 deletions
diff --git a/test/results/flow-info/default/alexa-app.pcapng.out b/test/results/flow-info/default/alexa-app.pcapng.out
index 08d21f12c..79f3daf84 100644
--- a/test/results/flow-info/default/alexa-app.pcapng.out
+++ b/test/results/flow-info/default/alexa-app.pcapng.out
@@ -54,11 +54,11 @@
detected: [....17] [ip4][..udp] [..172.16.42.216][19967] -> [....172.16.42.1][...53] [DNS][Unknown][Network][Acceptable][mads.amazon-adsystem.com]
detection-update: [....17] [ip4][..udp] [..172.16.42.216][19967] -> [....172.16.42.1][...53] [DNS][Unknown][Network][Acceptable][mads.amazon-adsystem.com]
new: [....18] [ip4][..tcp] [..172.16.42.216][33556] -> [....52.94.232.0][..443]
- detected: [....18] [ip4][..tcp] [..172.16.42.216][33556] -> [....52.94.232.0][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][mads.amazon-adsystem.com]
+ detected: [....18] [ip4][..tcp] [..172.16.42.216][33556] -> [....52.94.232.0][..443] [TLS.ADS_Analytic_Track][AmazonAWS][Advertisement][Tracker/Ads][mads.amazon-adsystem.com]
RISK: TLS (probably) Not Carrying HTTPS
- detection-update: [....18] [ip4][..tcp] [..172.16.42.216][33556] -> [....52.94.232.0][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][mads.amazon-adsystem.com]
+ detection-update: [....18] [ip4][..tcp] [..172.16.42.216][33556] -> [....52.94.232.0][..443] [TLS.ADS_Analytic_Track][AmazonAWS][Advertisement][Tracker/Ads][mads.amazon-adsystem.com]
RISK: TLS (probably) Not Carrying HTTPS
- detection-update: [....18] [ip4][..tcp] [..172.16.42.216][33556] -> [....52.94.232.0][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][mads.amazon-adsystem.com]
+ detection-update: [....18] [ip4][..tcp] [..172.16.42.216][33556] -> [....52.94.232.0][..443] [TLS.ADS_Analytic_Track][AmazonAWS][Advertisement][Tracker/Ads][mads.amazon-adsystem.com]
RISK: TLS (probably) Not Carrying HTTPS
new: [....19] [ip4][..udp] [..172.16.42.216][.7358] -> [....172.16.42.1][...53]
detected: [....19] [ip4][..udp] [..172.16.42.216][.7358] -> [....172.16.42.1][...53] [DNS][Unknown][Network][Acceptable][firs-ta-g7g.amazon.com]
@@ -91,18 +91,18 @@
detected: [....27] [ip4][..udp] [..172.16.42.216][54886] -> [....172.16.42.1][...53] [DNS][Unknown][Network][Acceptable][pitangui.amazon.com]
detection-update: [....27] [ip4][..udp] [..172.16.42.216][54886] -> [....172.16.42.1][...53] [DNS][Unknown][Network][Acceptable][pitangui.amazon.com]
new: [....28] [ip4][..tcp] [..172.16.42.216][45661] -> [..52.94.232.134][..443]
- detected: [....28] [ip4][..tcp] [..172.16.42.216][45661] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detection-update: [....28] [ip4][..tcp] [..172.16.42.216][45661] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detected: [....28] [ip4][..tcp] [..172.16.42.216][45661] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detection-update: [....28] [ip4][..tcp] [..172.16.42.216][45661] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
new: [....29] [ip4][..tcp] [..172.16.42.216][45662] -> [..52.94.232.134][..443]
new: [....30] [ip4][..tcp] [..172.16.42.216][45663] -> [..52.94.232.134][..443]
new: [....31] [ip4][..tcp] [..172.16.42.216][40200] -> [.10.201.126.241][.8080]
new: [....32] [ip4][..tcp] [..172.16.42.216][38391] -> [...192.168.11.1][.8080]
- detected: [....29] [ip4][..tcp] [..172.16.42.216][45662] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detected: [....30] [ip4][..tcp] [..172.16.42.216][45663] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detection-update: [....30] [ip4][..tcp] [..172.16.42.216][45663] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detected: [....29] [ip4][..tcp] [..172.16.42.216][45662] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detected: [....30] [ip4][..tcp] [..172.16.42.216][45663] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detection-update: [....30] [ip4][..tcp] [..172.16.42.216][45663] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
- detection-update: [....29] [ip4][..tcp] [..172.16.42.216][45662] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detection-update: [....29] [ip4][..tcp] [..172.16.42.216][45662] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
new: [....33] [ip4][..tcp] [..172.16.42.216][40202] -> [.10.201.126.241][.8080]
new: [....34] [ip4][..udp] [..172.16.42.216][21391] -> [....172.16.42.1][...53]
@@ -137,7 +137,7 @@
new: [....40] [ip4][..udp] [..172.16.42.216][43350] -> [....172.16.42.1][...53]
detected: [....40] [ip4][..udp] [..172.16.42.216][43350] -> [....172.16.42.1][...53] [DNS][Unknown][Network][Acceptable][fls-na.amazon.com]
ERROR-EVENT: Unknown packet type [1/16]
- analyse: [....28] [ip4][..tcp] [..172.16.42.216][45661] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ analyse: [....28] [ip4][..tcp] [..172.16.42.216][45661] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: < 0.001| 1.016| 0.161| 0.286| 81844.249| 3.400]
[PKTLEN......: 40.000| 1500.000| 366.200| 485.100| 235358.500| 3.900]
@@ -156,11 +156,11 @@
detection-update: [....41] [ip4][..tcp] [..172.16.42.216][42129] -> [..72.21.206.135][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][fls-na.amazon.com]
new: [....43] [ip4][..tcp] [..172.16.42.216][45673] -> [..52.94.232.134][..443]
new: [....44] [ip4][..tcp] [..172.16.42.216][45674] -> [..52.94.232.134][..443]
- detected: [....43] [ip4][..tcp] [..172.16.42.216][45673] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detected: [....44] [ip4][..tcp] [..172.16.42.216][45674] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detection-update: [....43] [ip4][..tcp] [..172.16.42.216][45673] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detected: [....43] [ip4][..tcp] [..172.16.42.216][45673] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detected: [....44] [ip4][..tcp] [..172.16.42.216][45674] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detection-update: [....43] [ip4][..tcp] [..172.16.42.216][45673] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
- detection-update: [....44] [ip4][..tcp] [..172.16.42.216][45674] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detection-update: [....44] [ip4][..tcp] [..172.16.42.216][45674] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
new: [....45] [ip4][..tcp] [..172.16.42.216][49589] -> [..52.94.232.134][...80]
new: [....46] [ip4][..tcp] [..172.16.42.216][45676] -> [..52.94.232.134][..443]
@@ -168,17 +168,17 @@
new: [....48] [ip4][..tcp] [..172.16.42.216][45678] -> [..52.94.232.134][..443]
new: [....49] [ip4][..tcp] [..172.16.42.216][45679] -> [..52.94.232.134][..443]
detected: [....45] [ip4][..tcp] [..172.16.42.216][49589] -> [..52.94.232.134][...80] [HTTP.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][alexa.amazon.com]
- detected: [....46] [ip4][..tcp] [..172.16.42.216][45676] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detected: [....47] [ip4][..tcp] [..172.16.42.216][45677] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detected: [....48] [ip4][..tcp] [..172.16.42.216][45678] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detected: [....49] [ip4][..tcp] [..172.16.42.216][45679] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detection-update: [....47] [ip4][..tcp] [..172.16.42.216][45677] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detected: [....46] [ip4][..tcp] [..172.16.42.216][45676] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detected: [....47] [ip4][..tcp] [..172.16.42.216][45677] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detected: [....48] [ip4][..tcp] [..172.16.42.216][45678] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detected: [....49] [ip4][..tcp] [..172.16.42.216][45679] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detection-update: [....47] [ip4][..tcp] [..172.16.42.216][45677] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
- detection-update: [....46] [ip4][..tcp] [..172.16.42.216][45676] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detection-update: [....46] [ip4][..tcp] [..172.16.42.216][45676] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
- detection-update: [....49] [ip4][..tcp] [..172.16.42.216][45679] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detection-update: [....49] [ip4][..tcp] [..172.16.42.216][45679] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
- detection-update: [....48] [ip4][..tcp] [..172.16.42.216][45678] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detection-update: [....48] [ip4][..tcp] [..172.16.42.216][45678] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
detection-update: [....42] [ip4][..tcp] [..172.16.42.216][42130] -> [..72.21.206.135][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][fls-na.amazon.com]
detection-update: [....42] [ip4][..tcp] [..172.16.42.216][42130] -> [..72.21.206.135][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][fls-na.amazon.com]
@@ -195,8 +195,8 @@
[PKTLENS.....: 60,48,40,245,46,245,245,46,1500,1500,1500,674,40,40,40,40,166,1500,91,468,46,46,466,40,1500,1196,46,343,40,40,46,40]
[ENTROPIES...: 4.6,5.1,4.9,5.6,4.5,5.6,5.6,4.6,7.1,7.3,7.4,7.6,4.8,4.9,4.8,4.8,6.3,7.9,5.9,7.5,4.6,4.6,7.5,4.8,7.9,7.8,4.6,7.4,4.9,4.9,4.6,4.9]
new: [....50] [ip4][..tcp] [..172.16.42.216][45680] -> [..52.94.232.134][..443]
- detected: [....50] [ip4][..tcp] [..172.16.42.216][45680] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detection-update: [....50] [ip4][..tcp] [..172.16.42.216][45680] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detected: [....50] [ip4][..tcp] [..172.16.42.216][45680] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detection-update: [....50] [ip4][..tcp] [..172.16.42.216][45680] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
new: [....51] [ip4][..tcp] [..172.16.42.216][34033] -> [..54.239.24.186][..443]
new: [....52] [ip4][..tcp] [..172.16.42.216][34034] -> [..54.239.24.186][..443]
@@ -204,9 +204,9 @@
new: [....53] [ip4][..tcp] [..172.16.42.216][45683] -> [..52.94.232.134][..443]
detected: [....52] [ip4][..tcp] [..172.16.42.216][34034] -> [..54.239.24.186][..443] [TLS.AmazonAWS][AmazonAWS][Cloud][Acceptable][mobileanalytics.us-east-1.amazonaws.com]
detection-update: [....51] [ip4][..tcp] [..172.16.42.216][34033] -> [..54.239.24.186][..443] [TLS.AmazonAWS][AmazonAWS][Cloud][Acceptable][mobileanalytics.us-east-1.amazonaws.com]
- detected: [....53] [ip4][..tcp] [..172.16.42.216][45683] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detected: [....53] [ip4][..tcp] [..172.16.42.216][45683] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
detection-update: [....52] [ip4][..tcp] [..172.16.42.216][34034] -> [..54.239.24.186][..443] [TLS.AmazonAWS][AmazonAWS][Cloud][Acceptable][mobileanalytics.us-east-1.amazonaws.com]
- detection-update: [....53] [ip4][..tcp] [..172.16.42.216][45683] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detection-update: [....53] [ip4][..tcp] [..172.16.42.216][45683] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
new: [....54] [ip4][..tcp] [..172.16.42.216][54427] -> [..52.85.209.216][..443]
new: [....55] [ip4][..tcp] [..172.16.42.216][42143] -> [..72.21.206.135][..443]
@@ -229,14 +229,14 @@
detection-update: [....56] [ip4][..tcp] [..172.16.42.216][42144] -> [..72.21.206.135][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][fls-na.amazon.com]
ERROR-EVENT: Unknown packet type [2/16]
new: [....57] [ip4][..tcp] [..172.16.42.216][45687] -> [..52.94.232.134][..443]
- detected: [....57] [ip4][..tcp] [..172.16.42.216][45687] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detection-update: [....57] [ip4][..tcp] [..172.16.42.216][45687] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detected: [....57] [ip4][..tcp] [..172.16.42.216][45687] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detection-update: [....57] [ip4][..tcp] [..172.16.42.216][45687] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
new: [....58] [ip4][....2] [........0.0.0.0] -> [......224.0.0.1]
detected: [....58] [ip4][....2] [........0.0.0.0] -> [......224.0.0.1] [IGMP][Unknown][Network][Acceptable]
new: [....59] [ip4][..tcp] [..172.16.42.216][45688] -> [..52.94.232.134][..443]
- detected: [....59] [ip4][..tcp] [..172.16.42.216][45688] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detection-update: [....59] [ip4][..tcp] [..172.16.42.216][45688] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detected: [....59] [ip4][..tcp] [..172.16.42.216][45688] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detection-update: [....59] [ip4][..tcp] [..172.16.42.216][45688] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
new: [....60] [ip4][..tcp] [..172.16.42.216][34041] -> [..54.239.24.186][..443]
detected: [....60] [ip4][..tcp] [..172.16.42.216][34041] -> [..54.239.24.186][..443] [TLS.AmazonAWS][AmazonAWS][Cloud][Acceptable][mobileanalytics.us-east-1.amazonaws.com]
@@ -292,32 +292,32 @@
detected: [....69] [ip4][..udp] [..172.16.42.216][25081] -> [....172.16.42.1][...53] [DNS][Unknown][Network][Acceptable][alexa.amazon.com]
detected: [....66] [ip4][..tcp] [..172.16.42.216][49606] -> [..52.94.232.134][...80] [HTTP.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][alexa.amazon.com]
new: [....70] [ip4][..tcp] [..172.16.42.216][45695] -> [..52.94.232.134][..443]
- detected: [....68] [ip4][..tcp] [..172.16.42.216][45694] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detected: [....67] [ip4][..tcp] [..172.16.42.216][45693] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detected: [....68] [ip4][..tcp] [..172.16.42.216][45694] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detected: [....67] [ip4][..tcp] [..172.16.42.216][45693] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
new: [....71] [ip4][..tcp] [..172.16.42.216][45696] -> [..52.94.232.134][..443]
new: [....72] [ip4][..tcp] [..172.16.42.216][45697] -> [..52.94.232.134][..443]
detection-update: [....69] [ip4][..udp] [..172.16.42.216][25081] -> [....172.16.42.1][...53] [DNS][Unknown][Network][Acceptable][alexa.amazon.com]
new: [....73] [ip4][..tcp] [..172.16.42.216][59698] -> [..52.94.232.134][..443]
- detection-update: [....68] [ip4][..tcp] [..172.16.42.216][45694] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detection-update: [....68] [ip4][..tcp] [..172.16.42.216][45694] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
- detected: [....71] [ip4][..tcp] [..172.16.42.216][45696] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detected: [....70] [ip4][..tcp] [..172.16.42.216][45695] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detected: [....72] [ip4][..tcp] [..172.16.42.216][45697] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detection-update: [....67] [ip4][..tcp] [..172.16.42.216][45693] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detected: [....71] [ip4][..tcp] [..172.16.42.216][45696] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detected: [....70] [ip4][..tcp] [..172.16.42.216][45695] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detected: [....72] [ip4][..tcp] [..172.16.42.216][45697] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detection-update: [....67] [ip4][..tcp] [..172.16.42.216][45693] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
detected: [....73] [ip4][..tcp] [..172.16.42.216][59698] -> [..52.94.232.134][..443] [TLS][AmazonAWS][Web][Safe][]
RISK: TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn
- detection-update: [....71] [ip4][..tcp] [..172.16.42.216][45696] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detection-update: [....71] [ip4][..tcp] [..172.16.42.216][45696] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
- detection-update: [....70] [ip4][..tcp] [..172.16.42.216][45695] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detection-update: [....70] [ip4][..tcp] [..172.16.42.216][45695] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
- detection-update: [....73] [ip4][..tcp] [..172.16.42.216][59698] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][]
+ detection-update: [....73] [ip4][..tcp] [..172.16.42.216][59698] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][]
RISK: Weak TLS Cipher, TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn
new: [....74] [ip4][..tcp] [..172.16.42.216][45698] -> [..52.94.232.134][..443]
- detected: [....74] [ip4][..tcp] [..172.16.42.216][45698] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detection-update: [....74] [ip4][..tcp] [..172.16.42.216][45698] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detected: [....74] [ip4][..tcp] [..172.16.42.216][45698] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detection-update: [....74] [ip4][..tcp] [..172.16.42.216][45698] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
- detection-update: [....72] [ip4][..tcp] [..172.16.42.216][45697] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detection-update: [....72] [ip4][..tcp] [..172.16.42.216][45697] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
update: [.....3] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Unknown][Network][Acceptable][android-1c1335ec95a27318]
update: [.....4] [ip4][..udp] [....172.16.42.1][...67] -> [..172.16.42.216][...68] [DHCP][Unknown][Network][Acceptable]
@@ -353,35 +353,35 @@
new: [....83] [ip4][..tcp] [..172.16.42.216][40242] -> [.10.201.126.241][.8080]
new: [....84] [ip4][..tcp] [..172.16.42.216][45707] -> [..52.94.232.134][..443]
new: [....85] [ip4][..tcp] [..172.16.42.216][38434] -> [...192.168.11.1][.8080]
- detected: [....80] [ip4][..tcp] [..172.16.42.216][45703] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detected: [....81] [ip4][..tcp] [..172.16.42.216][45704] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detection-update: [....80] [ip4][..tcp] [..172.16.42.216][45703] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detected: [....80] [ip4][..tcp] [..172.16.42.216][45703] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detected: [....81] [ip4][..tcp] [..172.16.42.216][45704] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detection-update: [....80] [ip4][..tcp] [..172.16.42.216][45703] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
- detection-update: [....81] [ip4][..tcp] [..172.16.42.216][45704] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detection-update: [....81] [ip4][..tcp] [..172.16.42.216][45704] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
- detected: [....82] [ip4][..tcp] [..172.16.42.216][45705] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detection-update: [....82] [ip4][..tcp] [..172.16.42.216][45705] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detected: [....82] [ip4][..tcp] [..172.16.42.216][45705] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detection-update: [....82] [ip4][..tcp] [..172.16.42.216][45705] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
new: [....86] [ip4][..tcp] [..172.16.42.216][45709] -> [..52.94.232.134][..443]
new: [....87] [ip4][..tcp] [..172.16.42.216][45710] -> [..52.94.232.134][..443]
- detected: [....86] [ip4][..tcp] [..172.16.42.216][45709] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detected: [....87] [ip4][..tcp] [..172.16.42.216][45710] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detected: [....86] [ip4][..tcp] [..172.16.42.216][45709] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detected: [....87] [ip4][..tcp] [..172.16.42.216][45710] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
new: [....88] [ip4][..tcp] [..172.16.42.216][45711] -> [..52.94.232.134][..443]
new: [....89] [ip4][..tcp] [..172.16.42.216][45712] -> [..52.94.232.134][..443]
new: [....90] [ip4][..tcp] [..172.16.42.216][49627] -> [..52.94.232.134][...80]
new: [....91] [ip4][..tcp] [..172.16.42.216][45714] -> [..52.94.232.134][..443]
new: [....92] [ip4][..tcp] [..172.16.42.216][45715] -> [..52.94.232.134][..443]
new: [....93] [ip4][..tcp] [..172.16.42.216][49630] -> [..52.94.232.134][...80]
- detection-update: [....87] [ip4][..tcp] [..172.16.42.216][45710] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detection-update: [....87] [ip4][..tcp] [..172.16.42.216][45710] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
- detection-update: [....86] [ip4][..tcp] [..172.16.42.216][45709] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detection-update: [....86] [ip4][..tcp] [..172.16.42.216][45709] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
- detected: [....92] [ip4][..tcp] [..172.16.42.216][45715] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detected: [....88] [ip4][..tcp] [..172.16.42.216][45711] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detected: [....91] [ip4][..tcp] [..172.16.42.216][45714] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detected: [....89] [ip4][..tcp] [..172.16.42.216][45712] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detected: [....92] [ip4][..tcp] [..172.16.42.216][45715] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detected: [....88] [ip4][..tcp] [..172.16.42.216][45711] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detected: [....91] [ip4][..tcp] [..172.16.42.216][45714] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detected: [....89] [ip4][..tcp] [..172.16.42.216][45712] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
detected: [....93] [ip4][..tcp] [..172.16.42.216][49630] -> [..52.94.232.134][...80] [HTTP.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][alexa.amazon.com]
- analyse: [....80] [ip4][..tcp] [..172.16.42.216][45703] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ analyse: [....80] [ip4][..tcp] [..172.16.42.216][45703] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: < 0.001| 1.570| 0.289| 0.417| 173871.694| 3.700]
[PKTLEN......: 40.000| 1500.000| 371.100| 516.000| 266233.000| 3.900]
@@ -391,11 +391,11 @@
[IATS(ms)....: 325.4,332.9,0.3,247.7,0.2,241.3,0.3,0.3,23.8,0.3,429.9,0.1,1569.5,1485.9,353.0,706.9,73.8,0.3,358.8,0.4,256.6,3.7,0.2,956.2,948.6,95.3,235.6,1.1,0.1,275.4,23.7]
[PKTLENS.....: 60,48,40,279,125,93,40,40,99,1500,174,46,46,174,46,717,40,1500,238,46,525,40,1500,206,525,40,1500,46,557,46,40,1500]
[ENTROPIES...: 4.7,5.2,4.8,5.8,6.1,6.1,4.8,4.8,5.9,7.9,6.9,4.6,4.5,6.9,4.6,7.7,4.8,7.9,7.1,4.7,7.6,4.8,7.9,7.0,7.6,4.8,7.9,4.7,7.6,4.7,4.7,7.9]
- detection-update: [....92] [ip4][..tcp] [..172.16.42.216][45715] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detection-update: [....92] [ip4][..tcp] [..172.16.42.216][45715] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
- detection-update: [....89] [ip4][..tcp] [..172.16.42.216][45712] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detection-update: [....89] [ip4][..tcp] [..172.16.42.216][45712] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
- detection-update: [....91] [ip4][..tcp] [..172.16.42.216][45714] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detection-update: [....91] [ip4][..tcp] [..172.16.42.216][45714] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
detection-update: [....93] [ip4][..tcp] [..172.16.42.216][49630] -> [..52.94.232.134][...80] [HTTP.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][alexa.amazon.com]
RISK: Error Code
@@ -408,7 +408,7 @@
new: [....96] [ip4][..tcp] [..172.16.42.216][41820] -> [...54.231.72.88][..443]
new: [....97] [ip4][..tcp] [..172.16.42.216][41821] -> [...54.231.72.88][..443]
detected: [....96] [ip4][..tcp] [..172.16.42.216][41820] -> [...54.231.72.88][..443] [TLS.AmazonAWS][AmazonAWS][Cloud][Acceptable][s3-external-2.amazonaws.com]
- analyse: [....87] [ip4][..tcp] [..172.16.42.216][45710] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ analyse: [....87] [ip4][..tcp] [..172.16.42.216][45710] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: < 0.001| 1.192| 0.160| 0.282| 79548.359| 3.500]
[PKTLEN......: 40.000| 1500.000| 343.000| 486.700| 236894.100| 3.900]
@@ -420,7 +420,7 @@
[ENTROPIES...: 4.7,5.1,4.8,5.9,5.9,4.6,6.1,6.0,4.7,4.6,6.5,4.7,5.9,7.9,4.6,6.9,4.6,4.6,7.8,7.9,7.1,4.6,7.5,7.9,7.2,6.6,4.5,4.6,7.6,7.9,6.8,4.6]
detection-update: [....96] [ip4][..tcp] [..172.16.42.216][41820] -> [...54.231.72.88][..443] [TLS.AmazonAWS][AmazonAWS][Cloud][Acceptable][s3-external-2.amazonaws.com]
detection-update: [....96] [ip4][..tcp] [..172.16.42.216][41820] -> [...54.231.72.88][..443] [TLS.AmazonAWS][AmazonAWS][Cloud][Acceptable][s3-external-2.amazonaws.com]
- analyse: [....89] [ip4][..tcp] [..172.16.42.216][45712] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ analyse: [....89] [ip4][..tcp] [..172.16.42.216][45712] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: < 0.001| 1.080| 0.209| 0.303| 92031.574| 3.700]
[PKTLEN......: 40.000| 1500.000| 360.500| 516.500| 266795.300| 3.800]
@@ -448,7 +448,7 @@
update: [....34] [ip4][..udp] [..172.16.42.216][21391] -> [....172.16.42.1][...53] [DNS][Unknown][Network][Acceptable][mobileanalytics.us-east-1.amazonaws.com]
update: [....27] [ip4][..udp] [..172.16.42.216][54886] -> [....172.16.42.1][...53] [DNS][Unknown][Network][Acceptable][pitangui.amazon.com]
update: [.....5] [ip6][icmp6] [..............fe80::7af8:82ff:fed3:fbc2] -> [................................ff02::2] [ICMPV6][Unknown][Network][Acceptable]
- detection-update: [....88] [ip4][..tcp] [..172.16.42.216][45711] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detection-update: [....88] [ip4][..tcp] [..172.16.42.216][45711] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
new: [...100] [ip4][..tcp] [..172.16.42.216][34073] -> [..54.239.24.186][..443]
new: [...101] [ip4][..tcp] [..172.16.42.216][34074] -> [..54.239.24.186][..443]
@@ -495,7 +495,7 @@
[IATS(ms)....: 109.9,111.6,1.6,102.0,0.2,101.6,0.3,1.9,56.2,0.1,87.5,19.1,7.6,147.9,304.1,639.4,932.7,32.7,0.1,0.0,0.7,0.1,0.0,0.3,0.6,110.7,0.2,1.8,0.2,0.1,0.1]
[PKTLENS.....: 60,48,40,251,1500,1275,40,40,366,46,99,40,1500,254,46,1500,1500,46,1021,589,589,589,589,589,1469,77,40,40,40,40,40,40]
[ENTROPIES...: 4.7,5.2,4.8,5.6,7.2,7.3,4.8,4.8,7.3,4.7,6.1,4.9,7.9,7.2,4.5,7.9,7.9,4.7,7.8,7.6,7.7,7.7,7.6,7.6,7.9,5.7,4.8,4.8,4.9,4.8,4.9,4.9]
- analyse: [....88] [ip4][..tcp] [..172.16.42.216][45711] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ analyse: [....88] [ip4][..tcp] [..172.16.42.216][45711] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: < 0.001| 9.247| 1.357| 2.197| 4827473.510| 3.500]
[PKTLEN......: 40.000| 1500.000| 425.800| 556.200| 309356.400| 3.900]
@@ -523,20 +523,20 @@
new: [...111] [ip4][..tcp] [..172.16.42.216][45730] -> [..52.94.232.134][..443]
new: [...112] [ip4][..tcp] [..172.16.42.216][45731] -> [..52.94.232.134][..443]
new: [...113] [ip4][..tcp] [..172.16.42.216][45732] -> [..52.94.232.134][..443]
- detected: [...110] [ip4][..tcp] [..172.16.42.216][45729] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detected: [...109] [ip4][..tcp] [..172.16.42.216][45728] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detected: [...111] [ip4][..tcp] [..172.16.42.216][45730] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detected: [...112] [ip4][..tcp] [..172.16.42.216][45731] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detected: [...113] [ip4][..tcp] [..172.16.42.216][45732] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detection-update: [...110] [ip4][..tcp] [..172.16.42.216][45729] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detected: [...110] [ip4][..tcp] [..172.16.42.216][45729] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detected: [...109] [ip4][..tcp] [..172.16.42.216][45728] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detected: [...111] [ip4][..tcp] [..172.16.42.216][45730] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detected: [...112] [ip4][..tcp] [..172.16.42.216][45731] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detected: [...113] [ip4][..tcp] [..172.16.42.216][45732] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detection-update: [...110] [ip4][..tcp] [..172.16.42.216][45729] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
- detection-update: [...111] [ip4][..tcp] [..172.16.42.216][45730] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detection-update: [...111] [ip4][..tcp] [..172.16.42.216][45730] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
- detection-update: [...109] [ip4][..tcp] [..172.16.42.216][45728] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detection-update: [...109] [ip4][..tcp] [..172.16.42.216][45728] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
- detection-update: [...112] [ip4][..tcp] [..172.16.42.216][45731] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detection-update: [...112] [ip4][..tcp] [..172.16.42.216][45731] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
- detection-update: [...113] [ip4][..tcp] [..172.16.42.216][45732] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detection-update: [...113] [ip4][..tcp] [..172.16.42.216][45732] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
new: [...114] [ip4][..udp] [..172.16.42.216][28614] -> [....172.16.42.1][...53]
detected: [...114] [ip4][..udp] [..172.16.42.216][28614] -> [....172.16.42.1][...53] [DNS][Unknown][Network][Acceptable][mobileanalytics.us-east-1.amazonaws.com]
@@ -652,8 +652,8 @@
detection-update: [...132] [ip4][..tcp] [..172.16.42.216][40878] -> [..54.239.29.253][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][skills-store.amazon.com]
RISK: Weak TLS Cipher
new: [...133] [ip4][..tcp] [..172.16.42.216][45750] -> [..52.94.232.134][..443]
- detected: [...133] [ip4][..tcp] [..172.16.42.216][45750] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detection-update: [...133] [ip4][..tcp] [..172.16.42.216][45750] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detected: [...133] [ip4][..tcp] [..172.16.42.216][45750] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detection-update: [...133] [ip4][..tcp] [..172.16.42.216][45750] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
idle: [.....2] [ip6][icmp6] [.....................................::] -> [...............................ff02::16] [ICMPV6][Unknown][Network][Acceptable]
idle: [.....1] [ip6][icmp6] [.....................................::] -> [......................ff02::1:ffd3:fbc2] [ICMPV6][Unknown][Network][Acceptable]
@@ -668,8 +668,8 @@
[PKTLENS.....: 60,60,52,273,52,1500,1500,626,52,52,52,178,294,52,1416,1416,52,1500,300,96,86,52,52,1500,1003,52,52,1315,86,52,83,52]
[ENTROPIES...: 4.7,5.3,5.0,5.4,5.1,7.0,7.2,7.6,5.0,5.1,5.0,6.6,7.2,5.0,7.9,7.9,5.1,7.9,7.3,6.1,5.8,5.1,5.1,7.9,7.8,5.1,5.1,7.9,5.9,5.1,5.6,5.1]
new: [...134] [ip4][..tcp] [..172.16.42.216][45751] -> [..52.94.232.134][..443]
- detected: [...134] [ip4][..tcp] [..172.16.42.216][45751] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detection-update: [...134] [ip4][..tcp] [..172.16.42.216][45751] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detected: [...134] [ip4][..tcp] [..172.16.42.216][45751] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detection-update: [...134] [ip4][..tcp] [..172.16.42.216][45751] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
idle: [....14] [ip4][.icmp] [....172.16.42.1] -> [..172.16.42.216] [ICMP][Unknown][Network][Acceptable]
RISK: Susp Entropy
@@ -688,33 +688,33 @@
detection-update: [...136] [ip4][..tcp] [..172.16.42.216][39750] -> [..52.94.232.134][..443] [TLS][AmazonAWS][Web][Safe][]
RISK: Obsolete TLS (v1.1 or older), Weak TLS Cipher
new: [...137] [ip4][..tcp] [..172.16.42.216][45752] -> [..52.94.232.134][..443]
- detected: [...137] [ip4][..tcp] [..172.16.42.216][45752] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detection-update: [...137] [ip4][..tcp] [..172.16.42.216][45752] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detected: [...137] [ip4][..tcp] [..172.16.42.216][45752] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detection-update: [...137] [ip4][..tcp] [..172.16.42.216][45752] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
end: [....36] [ip4][..tcp] [..172.16.42.216][34019] -> [..54.239.24.186][..443] [TLS.AmazonAWS][AmazonAWS][Cloud][Acceptable]
end: [....51] [ip4][..tcp] [..172.16.42.216][34033] -> [..54.239.24.186][..443] [TLS.AmazonAWS][AmazonAWS][Cloud][Acceptable]
end: [....52] [ip4][..tcp] [..172.16.42.216][34034] -> [..54.239.24.186][..443] [TLS.AmazonAWS][AmazonAWS][Cloud][Acceptable][mobileanalytics.us-east-1.amazonaws.com]
- end: [....28] [ip4][..tcp] [..172.16.42.216][45661] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ end: [....28] [ip4][..tcp] [..172.16.42.216][45661] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
- end: [....29] [ip4][..tcp] [..172.16.42.216][45662] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [....29] [ip4][..tcp] [..172.16.42.216][45662] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
- end: [....30] [ip4][..tcp] [..172.16.42.216][45663] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [....30] [ip4][..tcp] [..172.16.42.216][45663] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
- end: [....43] [ip4][..tcp] [..172.16.42.216][45673] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [....43] [ip4][..tcp] [..172.16.42.216][45673] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
- end: [....44] [ip4][..tcp] [..172.16.42.216][45674] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [....44] [ip4][..tcp] [..172.16.42.216][45674] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
- end: [....46] [ip4][..tcp] [..172.16.42.216][45676] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [....46] [ip4][..tcp] [..172.16.42.216][45676] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
- end: [....47] [ip4][..tcp] [..172.16.42.216][45677] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [....47] [ip4][..tcp] [..172.16.42.216][45677] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
- end: [....48] [ip4][..tcp] [..172.16.42.216][45678] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [....48] [ip4][..tcp] [..172.16.42.216][45678] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
- end: [....49] [ip4][..tcp] [..172.16.42.216][45679] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [....49] [ip4][..tcp] [..172.16.42.216][45679] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
- end: [....50] [ip4][..tcp] [..172.16.42.216][45680] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [....50] [ip4][..tcp] [..172.16.42.216][45680] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
- end: [....53] [ip4][..tcp] [..172.16.42.216][45683] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [....53] [ip4][..tcp] [..172.16.42.216][45683] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
end: [....45] [ip4][..tcp] [..172.16.42.216][49589] -> [..52.94.232.134][...80] [HTTP.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][alexa.amazon.com]
RISK: Error Code
@@ -748,25 +748,25 @@
new: [...139] [ip4][..tcp] [..172.16.42.216][50796] -> [..54.239.28.178][..443]
new: [...140] [ip4][..tcp] [..172.16.42.216][50797] -> [..54.239.28.178][..443]
new: [...141] [ip4][..tcp] [..172.16.42.216][50798] -> [..54.239.28.178][..443]
- detected: [...139] [ip4][..tcp] [..172.16.42.216][50796] -> [..54.239.28.178][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detected: [...140] [ip4][..tcp] [..172.16.42.216][50797] -> [..54.239.28.178][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detected: [...139] [ip4][..tcp] [..172.16.42.216][50796] -> [..54.239.28.178][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detected: [...140] [ip4][..tcp] [..172.16.42.216][50797] -> [..54.239.28.178][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
new: [...142] [ip4][..tcp] [..172.16.42.216][50799] -> [..54.239.28.178][..443]
- detection-update: [...139] [ip4][..tcp] [..172.16.42.216][50796] -> [..54.239.28.178][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detection-update: [...139] [ip4][..tcp] [..172.16.42.216][50796] -> [..54.239.28.178][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
- detection-update: [...140] [ip4][..tcp] [..172.16.42.216][50797] -> [..54.239.28.178][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detection-update: [...140] [ip4][..tcp] [..172.16.42.216][50797] -> [..54.239.28.178][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
- detected: [...142] [ip4][..tcp] [..172.16.42.216][50799] -> [..54.239.28.178][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detection-update: [...142] [ip4][..tcp] [..172.16.42.216][50799] -> [..54.239.28.178][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detected: [...142] [ip4][..tcp] [..172.16.42.216][50799] -> [..54.239.28.178][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detection-update: [...142] [ip4][..tcp] [..172.16.42.216][50799] -> [..54.239.28.178][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
end: [....60] [ip4][..tcp] [..172.16.42.216][34041] -> [..54.239.24.186][..443] [TLS.AmazonAWS][AmazonAWS][Cloud][Acceptable]
- end: [....57] [ip4][..tcp] [..172.16.42.216][45687] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [....57] [ip4][..tcp] [..172.16.42.216][45687] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
- end: [....59] [ip4][..tcp] [..172.16.42.216][45688] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [....59] [ip4][..tcp] [..172.16.42.216][45688] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
update: [...118] [ip4][..udp] [..172.16.42.216][.4920] -> [....172.16.42.1][...53] [DNS][Unknown][Network][Acceptable][ecx.images-amazon.com]
new: [...143] [ip4][..tcp] [..172.16.42.216][50800] -> [..54.239.28.178][..443]
- detected: [...143] [ip4][..tcp] [..172.16.42.216][50800] -> [..54.239.28.178][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
- detection-update: [...143] [ip4][..tcp] [..172.16.42.216][50800] -> [..54.239.28.178][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ detected: [...143] [ip4][..tcp] [..172.16.42.216][50800] -> [..54.239.28.178][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
+ detection-update: [...143] [ip4][..tcp] [..172.16.42.216][50800] -> [..54.239.28.178][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
new: [...144] [ip4][..udp] [..172.16.42.216][.8669] -> [....172.16.42.1][...53]
detected: [...144] [ip4][..udp] [..172.16.42.216][.8669] -> [....172.16.42.1][...53] [DNS][Unknown][Network][Acceptable][mobileanalytics.us-east-1.amazonaws.com]
@@ -779,7 +779,7 @@
detected: [...146] [ip4][..udp] [..172.16.42.216][59908] -> [....172.16.42.1][...53] [DNS][Unknown][Network][Acceptable][alexa.amazon.com]
detection-update: [...146] [ip4][..udp] [..172.16.42.216][59908] -> [....172.16.42.1][...53] [DNS][Unknown][Network][Acceptable][alexa.amazon.com]
new: [...147] [ip4][..tcp] [..172.16.42.216][38757] -> [..54.239.28.178][..443]
- analyse: [...142] [ip4][..tcp] [..172.16.42.216][50799] -> [..54.239.28.178][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ analyse: [...142] [ip4][..tcp] [..172.16.42.216][50799] -> [..54.239.28.178][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: < 0.001| 8.001| 0.664| 1.905| 3629965.115| 2.500]
[PKTLEN......: 40.000| 1500.000| 424.700| 584.700| 341856.600| 3.800]
@@ -791,7 +791,7 @@
[ENTROPIES...: 4.7,5.2,4.8,5.6,6.8,7.3,7.4,4.7,4.8,4.9,7.4,4.6,6.0,7.9,6.9,4.6,7.9,6.0,4.8,7.9,4.7,7.7,4.8,7.9,7.3,4.5,4.8,4.5,7.9,4.6,4.6,4.9]
detected: [...147] [ip4][..tcp] [..172.16.42.216][38757] -> [..54.239.28.178][..443] [TLS][AmazonAWS][Web][Safe][]
RISK: Obsolete TLS (v1.1 or older)
- detection-update: [...147] [ip4][..tcp] [..172.16.42.216][38757] -> [..54.239.28.178][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][]
+ detection-update: [...147] [ip4][..tcp] [..172.16.42.216][38757] -> [..54.239.28.178][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][]
RISK: Obsolete TLS (v1.1 or older), Weak TLS Cipher
new: [...148] [ip4][..udp] [..172.16.42.216][14934] -> [....172.16.42.1][...53]
detected: [...148] [ip4][..udp] [..172.16.42.216][14934] -> [....172.16.42.1][...53] [DNS][Unknown][Network][Acceptable][www.amazon.com]
@@ -840,17 +840,17 @@
RISK: Obsolete TLS (v1.1 or older)
detection-update: [...156] [ip4][..tcp] [..172.16.42.216][58048] -> [..54.239.28.178][..443] [TLS][AmazonAWS][Web][Safe][]
RISK: Obsolete TLS (v1.1 or older), Weak TLS Cipher
- end: [....67] [ip4][..tcp] [..172.16.42.216][45693] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [....67] [ip4][..tcp] [..172.16.42.216][45693] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
- end: [....68] [ip4][..tcp] [..172.16.42.216][45694] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [....68] [ip4][..tcp] [..172.16.42.216][45694] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
- end: [....70] [ip4][..tcp] [..172.16.42.216][45695] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [....70] [ip4][..tcp] [..172.16.42.216][45695] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
- end: [....71] [ip4][..tcp] [..172.16.42.216][45696] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [....71] [ip4][..tcp] [..172.16.42.216][45696] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
- end: [....72] [ip4][..tcp] [..172.16.42.216][45697] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [....72] [ip4][..tcp] [..172.16.42.216][45697] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
- end: [....74] [ip4][..tcp] [..172.16.42.216][45698] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [....74] [ip4][..tcp] [..172.16.42.216][45698] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
end: [....66] [ip4][..tcp] [..172.16.42.216][49606] -> [..52.94.232.134][...80] [HTTP.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][alexa.amazon.com]
end: [....63] [ip4][..tcp] [..172.16.42.216][54434] -> [..52.85.209.216][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][www.amazon.com]
@@ -951,7 +951,7 @@
guessed: [....83] [ip4][..tcp] [..172.16.42.216][40242] -> [.10.201.126.241][.8080] [HTTP_Proxy][Unknown][Web][Acceptable][]
RISK: Unidirectional Traffic
idle: [....83] [ip4][..tcp] [..172.16.42.216][40242] -> [.10.201.126.241][.8080]
- idle: [...147] [ip4][..tcp] [..172.16.42.216][38757] -> [..54.239.28.178][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ idle: [...147] [ip4][..tcp] [..172.16.42.216][38757] -> [..54.239.28.178][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Obsolete TLS (v1.1 or older), Weak TLS Cipher
idle: [...135] [ip4][..udp] [..172.16.42.216][64073] -> [....172.16.42.1][...53] [DNS][Unknown][Network][Acceptable][alexa.amazon.com]
end: [....96] [ip4][..tcp] [..172.16.42.216][41820] -> [...54.231.72.88][..443] [TLS.AmazonAWS][AmazonAWS][Cloud][Acceptable]
@@ -973,41 +973,41 @@
end: [...132] [ip4][..tcp] [..172.16.42.216][40878] -> [..54.239.29.253][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
RISK: Weak TLS Cipher
idle: [.....4] [ip4][..udp] [....172.16.42.1][...67] -> [..172.16.42.216][...68] [DHCP][Unknown][Network][Acceptable]
- end: [....80] [ip4][..tcp] [..172.16.42.216][45703] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ end: [....80] [ip4][..tcp] [..172.16.42.216][45703] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
- end: [....81] [ip4][..tcp] [..172.16.42.216][45704] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [....81] [ip4][..tcp] [..172.16.42.216][45704] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
- end: [....82] [ip4][..tcp] [..172.16.42.216][45705] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [....82] [ip4][..tcp] [..172.16.42.216][45705] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
guessed: [....84] [ip4][..tcp] [..172.16.42.216][45707] -> [..52.94.232.134][..443] [TLS][AmazonAWS][Web][Safe]
end: [....84] [ip4][..tcp] [..172.16.42.216][45707] -> [..52.94.232.134][..443]
- end: [....86] [ip4][..tcp] [..172.16.42.216][45709] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [....86] [ip4][..tcp] [..172.16.42.216][45709] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
- end: [....87] [ip4][..tcp] [..172.16.42.216][45710] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ end: [....87] [ip4][..tcp] [..172.16.42.216][45710] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
- end: [....88] [ip4][..tcp] [..172.16.42.216][45711] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ end: [....88] [ip4][..tcp] [..172.16.42.216][45711] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
- end: [....89] [ip4][..tcp] [..172.16.42.216][45712] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ end: [....89] [ip4][..tcp] [..172.16.42.216][45712] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
- end: [....91] [ip4][..tcp] [..172.16.42.216][45714] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [....91] [ip4][..tcp] [..172.16.42.216][45714] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
- end: [....92] [ip4][..tcp] [..172.16.42.216][45715] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [....92] [ip4][..tcp] [..172.16.42.216][45715] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
- end: [...109] [ip4][..tcp] [..172.16.42.216][45728] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [...109] [ip4][..tcp] [..172.16.42.216][45728] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
- end: [...110] [ip4][..tcp] [..172.16.42.216][45729] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [...110] [ip4][..tcp] [..172.16.42.216][45729] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
- end: [...111] [ip4][..tcp] [..172.16.42.216][45730] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [...111] [ip4][..tcp] [..172.16.42.216][45730] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
- end: [...112] [ip4][..tcp] [..172.16.42.216][45731] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [...112] [ip4][..tcp] [..172.16.42.216][45731] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
- end: [...113] [ip4][..tcp] [..172.16.42.216][45732] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [...113] [ip4][..tcp] [..172.16.42.216][45732] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
- end: [...133] [ip4][..tcp] [..172.16.42.216][45750] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [...133] [ip4][..tcp] [..172.16.42.216][45750] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
- end: [...134] [ip4][..tcp] [..172.16.42.216][45751] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [...134] [ip4][..tcp] [..172.16.42.216][45751] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
- end: [...137] [ip4][..tcp] [..172.16.42.216][45752] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [...137] [ip4][..tcp] [..172.16.42.216][45752] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
end: [....65] [ip4][..tcp] [..172.16.42.216][41691] -> [..54.239.29.146][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][api.amazon.com]
RISK: TLS (probably) Not Carrying HTTPS
@@ -1042,15 +1042,15 @@
idle: [....21] [ip4][..udp] [..172.16.42.216][41030] -> [....172.16.42.1][...53] [DNS][Unknown][Network][Acceptable][alexa.amazon.com]
idle: [...144] [ip4][..udp] [..172.16.42.216][.8669] -> [....172.16.42.1][...53] [DNS][Unknown][Network][Acceptable][mobileanalytics.us-east-1.amazonaws.com]
idle: [....98] [ip4][..udp] [..172.16.42.216][41639] -> [....172.16.42.1][...53] [DNS][Unknown][Network][Acceptable][dp-gw-na-js.amazon.com]
- idle: [...139] [ip4][..tcp] [..172.16.42.216][50796] -> [..54.239.28.178][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ idle: [...139] [ip4][..tcp] [..172.16.42.216][50796] -> [..54.239.28.178][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
- idle: [...140] [ip4][..tcp] [..172.16.42.216][50797] -> [..54.239.28.178][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ idle: [...140] [ip4][..tcp] [..172.16.42.216][50797] -> [..54.239.28.178][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
guessed: [...141] [ip4][..tcp] [..172.16.42.216][50798] -> [..54.239.28.178][..443] [TLS][AmazonAWS][Web][Safe]
end: [...141] [ip4][..tcp] [..172.16.42.216][50798] -> [..54.239.28.178][..443]
- end: [...142] [ip4][..tcp] [..172.16.42.216][50799] -> [..54.239.28.178][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable][pitangui.amazon.com]
+ end: [...142] [ip4][..tcp] [..172.16.42.216][50799] -> [..54.239.28.178][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable][pitangui.amazon.com]
RISK: Weak TLS Cipher
- idle: [...143] [ip4][..tcp] [..172.16.42.216][50800] -> [..54.239.28.178][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ idle: [...143] [ip4][..tcp] [..172.16.42.216][50800] -> [..54.239.28.178][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher
idle: [....12] [ip4][..udp] [..172.16.42.216][10462] -> [....172.16.42.1][...53] [DNS][Unknown][Network][Acceptable][www.google.com]
idle: [....40] [ip4][..udp] [..172.16.42.216][43350] -> [....172.16.42.1][...53] [DNS][Unknown][Network][Acceptable][fls-na.amazon.com]
@@ -1058,7 +1058,7 @@
idle: [....20] [ip4][..tcp] [..172.16.42.216][53682] -> [..54.239.22.185][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
RISK: TLS (probably) Not Carrying HTTPS
idle: [.....8] [ip4][..tcp] [..172.16.42.216][60246] -> [..172.217.9.142][...80] [HTTP.Google][Google][ConnCheck][Acceptable][connectivitycheck.android.com]
- end: [....73] [ip4][..tcp] [..172.16.42.216][59698] -> [..52.94.232.134][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [....73] [ip4][..tcp] [..172.16.42.216][59698] -> [..52.94.232.134][..443] [TLS.AmazonAlexa][AmazonAWS][VirtAssistant][Acceptable]
RISK: Weak TLS Cipher, TLS (probably) Not Carrying HTTPS, Missing SNI TLS Extn
idle: [...103] [ip4][..udp] [..172.16.42.216][14476] -> [....172.16.42.1][...53] [DNS][Unknown][Network][Acceptable][skills-store.amazon.com]
idle: [...148] [ip4][..udp] [..172.16.42.216][14934] -> [....172.16.42.1][...53] [DNS][Unknown][Network][Acceptable][www.amazon.com]
@@ -1078,7 +1078,7 @@
idle: [....17] [ip4][..udp] [..172.16.42.216][19967] -> [....172.16.42.1][...53] [DNS][Unknown][Network][Acceptable][mads.amazon-adsystem.com]
idle: [.....9] [ip4][..udp] [..172.16.42.216][53188] -> [....172.16.42.1][...53] [DNS][Unknown][Network][Acceptable][mtalk.google.com]
idle: [...108] [ip4][..udp] [..172.16.42.216][20922] -> [....172.16.42.1][...53] [DNS][Unknown][Network][Acceptable][pitangui.amazon.com]
- end: [....18] [ip4][..tcp] [..172.16.42.216][33556] -> [....52.94.232.0][..443] [TLS.Amazon][AmazonAWS][Web][Acceptable]
+ end: [....18] [ip4][..tcp] [..172.16.42.216][33556] -> [....52.94.232.0][..443] [TLS.ADS_Analytic_Track][AmazonAWS][Advertisement][Tracker/Ads]
RISK: TLS (probably) Not Carrying HTTPS
idle: [....34] [ip4][..udp] [..172.16.42.216][21391] -> [....172.16.42.1][...53] [DNS][Unknown][Network][Acceptable][mobileanalytics.us-east-1.amazonaws.com]
idle: [....13] [ip4][..tcp] [..172.16.42.216][35540] -> [..172.217.9.142][...80] [HTTP.Google][Google][ConnCheck][Acceptable][connectivitycheck.android.com]
Powered by cgit, Themed by Ted Yin.