diff options
Diffstat (limited to 'test/results/flow-info/default/nest_log_sink.pcap.out')
| -rw-r--r-- | test/results/flow-info/default/nest_log_sink.pcap.out | 60 |
1 files changed, 30 insertions, 30 deletions
diff --git a/test/results/flow-info/default/nest_log_sink.pcap.out b/test/results/flow-info/default/nest_log_sink.pcap.out index a76bf74a3..ea3b570c7 100644 --- a/test/results/flow-info/default/nest_log_sink.pcap.out +++ b/test/results/flow-info/default/nest_log_sink.pcap.out @@ -5,9 +5,9 @@ DAEMON-EVENT: [Processed: 30 pkts][ZLib][compressions: 0|diff: 0 / 0] DAEMON-EVENT: [Flows][active: 1 / 1|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0] analyse: [.....1] [ip4][..tcp] [.192.168.242.15][63340] -> [..35.174.82.237][11095] - min| max| avg| stddev| variance| entropy - [IAT.........: 0.061| 60.122| 38.821| 28.558| 815563555.209| 4.300] - [PKTLEN......: 40.000| 46.000| 43.000| 3.000| 9.000| 5.000] + min| max| avg| stddev| variance| entropy + [IAT.........: 0.061| 60.122| 38.821| 28.558| 815563555.209| 4.300] + [PKTLEN......: 40.000| 46.000| 43.000| 3.000| 9.000| 5.000] [BINS(c->s)..: 16,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 16,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [DIRECTIONS..: 0,1,0,1,1,0,0,1,0,1,1,0,0,1,0,1,1,0,0,1,0,1,1,0,0,1,0,1,1,0,0,1] @@ -24,9 +24,9 @@ new: [.....3] [ip4][..tcp] [.192.168.242.15][63342] -> [.35.188.154.186][11095] detected: [.....3] [ip4][..tcp] [.192.168.242.15][63342] -> [.35.188.154.186][11095] [NestLogSink][GoogleCloud][Cloud][Acceptable] analyse: [.....3] [ip4][..tcp] [.192.168.242.15][63342] -> [.35.188.154.186][11095] [NestLogSink][GoogleCloud][Cloud][Acceptable] - min| max| avg| stddev| variance| entropy - [IAT.........: 0.000| 1.491| 0.199| 0.354| 125081.829| 3.700] - [PKTLEN......: 40.000| 719.000| 241.900| 219.800| 48330.300| 4.400] + min| max| avg| stddev| variance| entropy + [IAT.........: < 0.001| 1.491| 0.199| 0.354| 125081.829| 3.700] + [PKTLEN......: 40.000| 719.000| 241.900| 219.800| 48330.300| 4.400] [BINS(c->s)..: 4,1,1,0,0,0,0,0,0,0,0,0,0,0,10,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 4,10,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,0,1,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,0,1,0] @@ -39,9 +39,9 @@ detected: [.....5] [ip4][..tcp] [.192.168.242.15][63344] -> [.35.188.154.186][11095] [NestLogSink][GoogleCloud][Cloud][Acceptable] update: [.....2] [ip4][..udp] [.192.168.242.15][52849] -> [..192.168.242.1][...53] [DNS][Unknown][Network][Acceptable] analyse: [.....4] [ip4][..tcp] [.192.168.242.15][63343] -> [..35.174.82.237][11095] [NestLogSink][AmazonAWS][Cloud][Acceptable] - min| max| avg| stddev| variance| entropy - [IAT.........: 0.007| 60.078| 8.258| 19.898| 395938807.939| 2.400] - [PKTLEN......: 40.000| 717.000| 167.000| 184.800| 34140.600| 4.300] + min| max| avg| stddev| variance| entropy + [IAT.........: 0.007| 60.078| 8.258| 19.898| 395938807.939| 2.400] + [PKTLEN......: 40.000| 717.000| 167.000| 184.800| 34140.600| 4.300] [BINS(c->s)..: 9,1,0,1,0,3,0,0,0,1,0,0,1,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 7,2,0,0,1,3,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,0,1,1,0,1,0,0,1,0,1,0,1,0,1,0,0,1,0,0,1,0,1,1] @@ -65,9 +65,9 @@ new: [.....7] [ip4][..tcp] [.192.168.242.15][63345] -> [.35.188.154.186][11095] detected: [.....7] [ip4][..tcp] [.192.168.242.15][63345] -> [.35.188.154.186][11095] [NestLogSink][GoogleCloud][Cloud][Acceptable] analyse: [.....7] [ip4][..tcp] [.192.168.242.15][63345] -> [.35.188.154.186][11095] [NestLogSink][GoogleCloud][Cloud][Acceptable] - min| max| avg| stddev| variance| entropy - [IAT.........: 0.000| 1.478| 0.186| 0.338| 114146.574| 3.600] - [PKTLEN......: 40.000| 718.000| 241.900| 219.700| 48280.000| 4.400] + min| max| avg| stddev| variance| entropy + [IAT.........: < 0.001| 1.478| 0.186| 0.338| 114146.574| 3.600] + [PKTLEN......: 40.000| 718.000| 241.900| 219.700| 48280.000| 4.400] [BINS(c->s)..: 4,1,1,0,0,0,0,0,0,0,0,0,0,0,10,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 4,10,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,0,1,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,0,1,0] @@ -84,9 +84,9 @@ end: [.....9] [ip4][..tcp] [.192.168.242.15][63347] -> [.35.188.154.186][11095] [NestLogSink][GoogleCloud][Cloud][Acceptable] update: [.....6] [ip4][..udp] [.192.168.242.15][52849] -> [..192.168.242.1][...53] [DNS][Unknown][Network][Acceptable] analyse: [.....8] [ip4][..tcp] [.192.168.242.15][63346] -> [..35.174.82.237][11095] [NestLogSink][AmazonAWS][Cloud][Acceptable] - min| max| avg| stddev| variance| entropy - [IAT.........: 0.007| 60.066| 10.038| 21.842| 477077551.710| 2.600] - [PKTLEN......: 40.000| 717.000| 162.200| 185.800| 34538.800| 4.300] + min| max| avg| stddev| variance| entropy + [IAT.........: 0.007| 60.066| 10.038| 21.842| 477077551.710| 2.600] + [PKTLEN......: 40.000| 717.000| 162.200| 185.800| 34538.800| 4.300] [BINS(c->s)..: 10,1,0,1,0,3,0,0,0,1,0,0,1,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 7,2,0,0,1,2,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,0,1,1,0,1,0,0,1,0,1,0,1,0,0,1,0,0,1,0,1,1,0,0] @@ -106,9 +106,9 @@ new: [....11] [ip4][..tcp] [.192.168.242.15][63348] -> [.35.188.154.186][11095] detected: [....11] [ip4][..tcp] [.192.168.242.15][63348] -> [.35.188.154.186][11095] [NestLogSink][GoogleCloud][Cloud][Acceptable] analyse: [....11] [ip4][..tcp] [.192.168.242.15][63348] -> [.35.188.154.186][11095] [NestLogSink][GoogleCloud][Cloud][Acceptable] - min| max| avg| stddev| variance| entropy - [IAT.........: 0.000| 1.475| 0.185| 0.337| 113653.596| 3.600] - [PKTLEN......: 40.000| 718.000| 241.900| 219.700| 48280.000| 4.400] + min| max| avg| stddev| variance| entropy + [IAT.........: < 0.001| 1.475| 0.185| 0.337| 113653.596| 3.600] + [PKTLEN......: 40.000| 718.000| 241.900| 219.700| 48280.000| 4.400] [BINS(c->s)..: 4,1,1,0,0,0,0,0,0,0,0,0,0,0,10,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 4,10,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,0,1,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,0,1,0] @@ -123,9 +123,9 @@ update: [....10] [ip4][..udp] [.192.168.242.15][52849] -> [..192.168.242.1][...53] [DNS][Unknown][Network][Acceptable] idle: [....10] [ip4][..udp] [.192.168.242.15][52849] -> [..192.168.242.1][...53] [DNS][Unknown][Network][Acceptable] analyse: [....12] [ip4][..tcp] [.192.168.242.15][63349] -> [..35.174.82.237][11095] [NestLogSink][AmazonAWS][Cloud][Acceptable] - min| max| avg| stddev| variance| entropy - [IAT.........: 0.004| 60.116| 15.667| 26.142| 683403720.524| 3.100] - [PKTLEN......: 40.000| 718.000| 145.100| 181.000| 32752.900| 4.200] + min| max| avg| stddev| variance| entropy + [IAT.........: 0.004| 60.116| 15.667| 26.142| 683403720.524| 3.100] + [PKTLEN......: 40.000| 718.000| 145.100| 181.000| 32752.900| 4.200] [BINS(c->s)..: 10,1,0,1,0,2,1,0,0,1,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 9,2,0,0,1,1,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,0,1,1,0,1,0,0,1,0,0,1,0,1,0,0,1,0,1,0,1,0,1,1] @@ -143,9 +143,9 @@ new: [....15] [ip4][..tcp] [.192.168.242.15][63351] -> [.35.188.154.186][11095] detected: [....15] [ip4][..tcp] [.192.168.242.15][63351] -> [.35.188.154.186][11095] [NestLogSink][GoogleCloud][Cloud][Acceptable] analyse: [....15] [ip4][..tcp] [.192.168.242.15][63351] -> [.35.188.154.186][11095] [NestLogSink][GoogleCloud][Cloud][Acceptable] - min| max| avg| stddev| variance| entropy - [IAT.........: 0.000| 1.484| 0.189| 0.353| 124509.217| 3.600] - [PKTLEN......: 40.000| 719.000| 241.900| 219.800| 48309.800| 4.400] + min| max| avg| stddev| variance| entropy + [IAT.........: < 0.001| 1.484| 0.189| 0.353| 124509.217| 3.600] + [PKTLEN......: 40.000| 719.000| 241.900| 219.800| 48309.800| 4.400] [BINS(c->s)..: 4,1,1,0,0,0,0,0,0,0,0,0,0,0,10,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 4,10,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,0,1,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,0,1,0] @@ -154,9 +154,9 @@ [ENTROPIES...: 4.3,5.0,4.4,7.0,5.0,7.1,4.5,5.5,5.0,5.8,4.9,5.6,7.6,5.8,7.5,5.7,7.5,5.7,7.5,5.7,7.5,5.7,7.5,5.7,7.6,5.7,7.5,5.7,4.3,7.5,5.7,7.5] new: [....16] [ip4][..tcp] [.192.168.242.15][63352] -> [..35.174.82.237][11095] analyse: [....13] [ip4][..tcp] [.192.168.242.15][63350] -> [..35.174.82.237][11095] [NestLogSink][AmazonAWS][Cloud][Acceptable] - min| max| avg| stddev| variance| entropy - [IAT.........: 0.001| 60.156| 9.910| 20.689| 428051338.887| 2.700] - [PKTLEN......: 40.000| 717.000| 147.100| 180.100| 32452.700| 4.200] + min| max| avg| stddev| variance| entropy + [IAT.........: 0.001| 60.156| 9.910| 20.689| 428051338.887| 2.700] + [PKTLEN......: 40.000| 717.000| 147.100| 180.100| 32452.700| 4.200] [BINS(c->s)..: 10,2,0,1,0,2,1,0,0,1,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 8,2,0,0,1,1,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,0,1,1,0,1,0,0,1,0,1,0,0,1,0,0,1,1,0,0,1,0,0,1] @@ -172,9 +172,9 @@ end: [....17] [ip4][..tcp] [.192.168.242.15][63353] -> [.35.188.154.186][11095] [NestLogSink][GoogleCloud][Cloud][Acceptable] update: [....14] [ip4][..udp] [.192.168.242.15][52849] -> [..192.168.242.1][...53] [DNS][Unknown][Network][Acceptable] analyse: [....16] [ip4][..tcp] [.192.168.242.15][63352] -> [..35.174.82.237][11095] [NestLogSink][AmazonAWS][Cloud][Acceptable] - min| max| avg| stddev| variance| entropy - [IAT.........: 0.005| 60.173| 10.045| 21.954| 481957439.865| 2.600] - [PKTLEN......: 40.000| 716.000| 162.200| 185.800| 34529.800| 4.300] + min| max| avg| stddev| variance| entropy + [IAT.........: 0.005| 60.173| 10.045| 21.954| 481957439.865| 2.600] + [PKTLEN......: 40.000| 716.000| 162.200| 185.800| 34529.800| 4.300] [BINS(c->s)..: 10,1,0,1,0,3,0,0,0,1,0,0,1,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 7,2,0,0,1,2,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,0,1,1,0,1,0,0,1,0,1,0,1,0,0,1,0,0,1,0,1,0,1,0] |