summaryrefslogtreecommitdiff
path: root/test/results/flow-info/default/netflix.pcap.out
diff options
context:
space:
mode:
Diffstat (limited to 'test/results/flow-info/default/netflix.pcap.out')
-rw-r--r--test/results/flow-info/default/netflix.pcap.out124
1 files changed, 62 insertions, 62 deletions
diff --git a/test/results/flow-info/default/netflix.pcap.out b/test/results/flow-info/default/netflix.pcap.out
index 9dd848333..2f75626d8 100644
--- a/test/results/flow-info/default/netflix.pcap.out
+++ b/test/results/flow-info/default/netflix.pcap.out
@@ -1,22 +1,22 @@
DAEMON-EVENT: init
DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
- new: [.....1] [ip4][..tcp] [....192.168.1.7][52929] -> [.....52.24.87.6][..443] [MIDSTREAM]
- new: [.....2] [ip4][..udp] [....192.168.1.7][51543] -> [....192.168.1.1][...53]
+ new: [.....1] [ip4][..tcp] [....192.168.1.7][52929] -> [.....52.24.87.6][..443] [MIDSTREAM]
+ new: [.....2] [ip4][..udp] [....192.168.1.7][51543] -> [....192.168.1.1][...53]
detected: [.....2] [ip4][..udp] [....192.168.1.7][51543] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][ios.nccp.netflix.com]
detection-update: [.....2] [ip4][..udp] [....192.168.1.7][51543] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][ios.nccp.netflix.com]
RISK: Unidirectional Traffic
detection-update: [.....2] [ip4][..udp] [....192.168.1.7][51543] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][ios.nccp.netflix.com]
- new: [.....3] [ip4][..udp] [....192.168.1.7][52116] -> [....192.168.1.1][...53]
+ new: [.....3] [ip4][..udp] [....192.168.1.7][52116] -> [....192.168.1.1][...53]
detected: [.....3] [ip4][..udp] [....192.168.1.7][52116] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][ichnaea.us-west-2.prodaa.netflix.com]
detection-update: [.....3] [ip4][..udp] [....192.168.1.7][52116] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][ichnaea.us-west-2.prodaa.netflix.com]
- new: [.....4] [ip4][..tcp] [....192.168.1.7][53105] -> [..54.69.204.241][..443]
- new: [.....5] [ip4][..tcp] [....192.168.1.7][53114] -> [...54.191.17.51][..443]
+ new: [.....4] [ip4][..tcp] [....192.168.1.7][53105] -> [..54.69.204.241][..443]
+ new: [.....5] [ip4][..tcp] [....192.168.1.7][53114] -> [...54.191.17.51][..443]
detected: [.....4] [ip4][..tcp] [....192.168.1.7][53105] -> [..54.69.204.241][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ichnaea.netflix.com]
detected: [.....5] [ip4][..tcp] [....192.168.1.7][53114] -> [...54.191.17.51][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ios.nccp.netflix.com]
RISK: TLS (probably) Not Carrying HTTPS
- new: [.....6] [ip4][..tcp] [....192.168.1.7][53115] -> [...52.32.196.36][..443]
- new: [.....7] [ip4][..tcp] [....192.168.1.7][53116] -> [...52.32.196.36][..443]
+ new: [.....6] [ip4][..tcp] [....192.168.1.7][53115] -> [...52.32.196.36][..443]
+ new: [.....7] [ip4][..tcp] [....192.168.1.7][53116] -> [...52.32.196.36][..443]
detection-update: [.....4] [ip4][..tcp] [....192.168.1.7][53105] -> [..54.69.204.241][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ichnaea.netflix.com]
detection-update: [.....4] [ip4][..tcp] [....192.168.1.7][53105] -> [..54.69.204.241][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ichnaea.netflix.com]
detection-update: [.....5] [ip4][..tcp] [....192.168.1.7][53114] -> [...54.191.17.51][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ios.nccp.netflix.com]
@@ -29,7 +29,7 @@
detection-update: [.....6] [ip4][..tcp] [....192.168.1.7][53115] -> [...52.32.196.36][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][api-global.netflix.com]
detection-update: [.....7] [ip4][..tcp] [....192.168.1.7][53116] -> [...52.32.196.36][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][api-global.netflix.com]
detection-update: [.....7] [ip4][..tcp] [....192.168.1.7][53116] -> [...52.32.196.36][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][api-global.netflix.com]
- new: [.....8] [ip4][..tcp] [....192.168.1.7][53117] -> [...52.32.196.36][..443]
+ new: [.....8] [ip4][..tcp] [....192.168.1.7][53117] -> [...52.32.196.36][..443]
detected: [.....8] [ip4][..tcp] [....192.168.1.7][53117] -> [...52.32.196.36][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][api-global.netflix.com]
RISK: TLS (probably) Not Carrying HTTPS
detection-update: [.....8] [ip4][..tcp] [....192.168.1.7][53117] -> [...52.32.196.36][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][api-global.netflix.com]
@@ -44,23 +44,23 @@
[IATS(ms)....: 46.0,48.6,0.6,54.0,1.6,1.0,54.9,11.1,13.5,9.4,0.3,0.4,58.7,4.6,50.8,1.9,0.2,59.5,0.6,62.1,8.5,4.7,310.9,0.6,363.7,5.8,0.1,0.1,58.1,0.2,0.1]
[PKTLENS.....: 64,60,52,260,52,1500,1500,52,215,52,127,58,97,52,103,52,408,362,52,992,52,112,52,408,361,52,992,107,86,52,52,52]
[ENTROPIES...: 4.6,5.3,5.1,5.7,5.2,7.3,7.3,5.1,6.9,5.2,6.4,5.1,6.1,5.2,5.9,5.2,7.5,7.4,5.2,7.8,5.1,6.1,5.1,7.4,7.4,5.2,7.8,6.1,5.8,5.2,5.2,5.1]
- new: [.....9] [ip4][..tcp] [....192.168.1.7][53118] -> [..54.69.204.241][..443]
+ new: [.....9] [ip4][..tcp] [....192.168.1.7][53118] -> [..54.69.204.241][..443]
detected: [.....9] [ip4][..tcp] [....192.168.1.7][53118] -> [..54.69.204.241][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ichnaea.netflix.com]
detection-update: [.....9] [ip4][..tcp] [....192.168.1.7][53118] -> [..54.69.204.241][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ichnaea.netflix.com]
detection-update: [.....9] [ip4][..tcp] [....192.168.1.7][53118] -> [..54.69.204.241][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ichnaea.netflix.com]
- new: [....10] [ip4][..udp] [....192.168.1.7][53776] -> [239.255.255.250][.1900]
+ new: [....10] [ip4][..udp] [....192.168.1.7][53776] -> [239.255.255.250][.1900]
detected: [....10] [ip4][..udp] [....192.168.1.7][53776] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable][239.255.255.250:1900]
- new: [....11] [ip4][..tcp] [....192.168.1.7][53119] -> [..54.69.204.241][..443]
+ new: [....11] [ip4][..tcp] [....192.168.1.7][53119] -> [..54.69.204.241][..443]
detected: [....11] [ip4][..tcp] [....192.168.1.7][53119] -> [..54.69.204.241][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ichnaea.netflix.com]
detection-update: [....11] [ip4][..tcp] [....192.168.1.7][53119] -> [..54.69.204.241][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ichnaea.netflix.com]
detection-update: [....11] [ip4][..tcp] [....192.168.1.7][53119] -> [..54.69.204.241][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ichnaea.netflix.com]
- new: [....12] [ip4][....2] [....192.168.1.7] -> [239.255.255.250]
+ new: [....12] [ip4][....2] [....192.168.1.7] -> [239.255.255.250]
detected: [....12] [ip4][....2] [....192.168.1.7] -> [239.255.255.250] [IGMP][Unknown][Network][Acceptable]
- new: [....13] [ip4][..udp] [....192.168.1.7][51949] -> [....192.168.1.1][...53]
+ new: [....13] [ip4][..udp] [....192.168.1.7][51949] -> [....192.168.1.1][...53]
detected: [....13] [ip4][..udp] [....192.168.1.7][51949] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][api-global.latency.prodaa.netflix.com]
detection-update: [....13] [ip4][..udp] [....192.168.1.7][51949] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][api-global.latency.prodaa.netflix.com]
- new: [....14] [ip4][..tcp] [....192.168.1.7][53132] -> [...52.89.39.139][..443]
- new: [....15] [ip4][..tcp] [....192.168.1.7][53133] -> [...52.89.39.139][..443]
+ new: [....14] [ip4][..tcp] [....192.168.1.7][53132] -> [...52.89.39.139][..443]
+ new: [....15] [ip4][..tcp] [....192.168.1.7][53133] -> [...52.89.39.139][..443]
detected: [....14] [ip4][..tcp] [....192.168.1.7][53132] -> [...52.89.39.139][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][api-global.netflix.com]
RISK: TLS (probably) Not Carrying HTTPS
detected: [....15] [ip4][..tcp] [....192.168.1.7][53133] -> [...52.89.39.139][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][api-global.netflix.com]
@@ -73,7 +73,7 @@
RISK: TLS (probably) Not Carrying HTTPS
detection-update: [....15] [ip4][..tcp] [....192.168.1.7][53133] -> [...52.89.39.139][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][api-global.netflix.com]
RISK: TLS (probably) Not Carrying HTTPS
- new: [....16] [ip4][..tcp] [....192.168.1.7][53134] -> [...52.89.39.139][..443]
+ new: [....16] [ip4][..tcp] [....192.168.1.7][53134] -> [...52.89.39.139][..443]
detected: [....16] [ip4][..tcp] [....192.168.1.7][53134] -> [...52.89.39.139][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][api-global.netflix.com]
RISK: TLS (probably) Not Carrying HTTPS
detection-update: [....16] [ip4][..tcp] [....192.168.1.7][53134] -> [...52.89.39.139][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][api-global.netflix.com]
@@ -90,10 +90,10 @@
[ENTROPIES...: 4.6,5.2,5.1,6.0,5.2,7.3,7.3,5.1,7.0,5.1,6.3,5.0,6.0,5.2,5.9,5.1,7.9,7.7,5.2,7.9,7.9,5.1,7.9,7.9,5.1,7.9,5.0,7.1,5.1,7.9,7.8,5.1]
detection-update: [....15] [ip4][..tcp] [....192.168.1.7][53133] -> [...52.89.39.139][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][api-global.netflix.com]
RISK: TLS (probably) Not Carrying HTTPS
- new: [....17] [ip4][..udp] [....192.168.1.7][57719] -> [....192.168.1.1][...53]
+ new: [....17] [ip4][..udp] [....192.168.1.7][57719] -> [....192.168.1.1][...53]
detected: [....17] [ip4][..udp] [....192.168.1.7][57719] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][sha2.san.akam.nflximg.net]
detection-update: [....17] [ip4][..udp] [....192.168.1.7][57719] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][sha2.san.akam.nflximg.net]
- new: [....18] [ip4][..tcp] [....192.168.1.7][53141] -> [..104.86.97.179][..443]
+ new: [....18] [ip4][..tcp] [....192.168.1.7][53141] -> [..104.86.97.179][..443]
detected: [....18] [ip4][..tcp] [....192.168.1.7][53141] -> [..104.86.97.179][..443] [TLS.NetFlix][Unknown][Video][Fun][art-s.nflximg.net]
detection-update: [....18] [ip4][..tcp] [....192.168.1.7][53141] -> [..104.86.97.179][..443] [TLS.NetFlix][Unknown][Video][Fun][art-s.nflximg.net]
detection-update: [....18] [ip4][..tcp] [....192.168.1.7][53141] -> [..104.86.97.179][..443] [TLS.NetFlix][Unknown][Video][Fun][art-s.nflximg.net]
@@ -109,19 +109,19 @@
[ENTROPIES...: 4.6,5.3,5.1,6.0,5.2,7.3,7.3,5.1,7.1,5.1,6.4,5.1,6.0,5.2,6.0,5.2,7.9,7.7,5.2,5.2,6.8,6.1,5.9,5.2,5.2,5.2,7.9,7.7,5.2,5.2,7.9,7.5]
detection-update: [....14] [ip4][..tcp] [....192.168.1.7][53132] -> [...52.89.39.139][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][api-global.netflix.com]
RISK: TLS (probably) Not Carrying HTTPS
- new: [....19] [ip4][..udp] [....192.168.1.7][59180] -> [....192.168.1.1][...53]
+ new: [....19] [ip4][..udp] [....192.168.1.7][59180] -> [....192.168.1.1][...53]
detected: [....19] [ip4][..udp] [....192.168.1.7][59180] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][artwork.akam.nflximg.net]
detection-update: [....19] [ip4][..udp] [....192.168.1.7][59180] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][artwork.akam.nflximg.net]
- new: [....20] [ip4][..tcp] [....192.168.1.7][53148] -> [..184.25.204.25][...80]
- new: [....21] [ip4][..tcp] [....192.168.1.7][53149] -> [..184.25.204.25][...80]
+ new: [....20] [ip4][..tcp] [....192.168.1.7][53148] -> [..184.25.204.25][...80]
+ new: [....21] [ip4][..tcp] [....192.168.1.7][53149] -> [..184.25.204.25][...80]
detected: [....20] [ip4][..tcp] [....192.168.1.7][53148] -> [..184.25.204.25][...80] [HTTP.NetFlix][Unknown][Video][Fun][art-2.nflximg.net]
detected: [....21] [ip4][..tcp] [....192.168.1.7][53149] -> [..184.25.204.25][...80] [HTTP.NetFlix][Unknown][Video][Fun][art-2.nflximg.net]
- new: [....22] [ip4][..tcp] [....192.168.1.7][53150] -> [..184.25.204.25][...80]
+ new: [....22] [ip4][..tcp] [....192.168.1.7][53150] -> [..184.25.204.25][...80]
detected: [....22] [ip4][..tcp] [....192.168.1.7][53150] -> [..184.25.204.25][...80] [HTTP.NetFlix][Unknown][Video][Fun][art-2.nflximg.net]
- new: [....23] [ip4][..udp] [....192.168.1.7][58102] -> [....192.168.1.1][...53]
+ new: [....23] [ip4][..udp] [....192.168.1.7][58102] -> [....192.168.1.1][...53]
detected: [....23] [ip4][..udp] [....192.168.1.7][58102] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][appboot.netflix.com]
detection-update: [....23] [ip4][..udp] [....192.168.1.7][58102] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][appboot.netflix.com]
- new: [....24] [ip4][..tcp] [....192.168.1.7][53151] -> [.54.201.191.132][...80]
+ new: [....24] [ip4][..tcp] [....192.168.1.7][53151] -> [.54.201.191.132][...80]
detected: [....24] [ip4][..tcp] [....192.168.1.7][53151] -> [.54.201.191.132][...80] [HTTP.NetFlix][AmazonAWS][Video][Fun][appboot.netflix.com]
analyse: [....24] [ip4][..tcp] [....192.168.1.7][53151] -> [.54.201.191.132][...80] [HTTP.NetFlix][AmazonAWS][Video][Fun]
min| max| avg| stddev| variance| entropy
@@ -133,11 +133,11 @@
[IATS(ms)....: 44.1,45.6,3.9,10.7,0.2,60.0,5.7,1.0,135.1,0.3,187.2,5.7,5.7,13.9,14.0,13.3,14.4,27.8,13.3,13.1,9.2,13.3,22.5,13.4,39.3,13.3,13.3,13.9,13.3,13.3,124.5]
[PKTLENS.....: 64,60,52,365,1500,903,52,52,52,714,1500,52,1500,52,1500,52,1500,1500,52,1012,52,1500,1293,52,1500,1500,1500,1500,1500,1500,1500,64]
[ENTROPIES...: 4.5,5.3,5.2,5.7,6.0,6.1,5.3,5.3,5.3,6.0,5.7,5.1,6.1,5.2,5.9,5.0,5.8,5.8,5.2,5.8,5.2,5.8,5.8,5.2,5.8,5.8,5.8,5.8,5.8,5.8,5.8,5.2]
- new: [....25] [ip4][..tcp] [....192.168.1.7][53152] -> [...52.89.39.139][...80]
+ new: [....25] [ip4][..tcp] [....192.168.1.7][53152] -> [...52.89.39.139][...80]
detected: [....25] [ip4][..tcp] [....192.168.1.7][53152] -> [...52.89.39.139][...80] [HTTP.NetFlix][AmazonAWS][Video][Fun][api-global.netflix.com]
- new: [....26] [ip4][..udp] [....192.168.1.7][51728] -> [....192.168.1.1][...53]
+ new: [....26] [ip4][..udp] [....192.168.1.7][51728] -> [....192.168.1.1][...53]
detected: [....26] [ip4][..udp] [....192.168.1.7][51728] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][a803.dscg.akamai.net]
- new: [....27] [ip4][..udp] [....192.168.1.7][52347] -> [....192.168.1.1][...53]
+ new: [....27] [ip4][..udp] [....192.168.1.7][52347] -> [....192.168.1.1][...53]
detected: [....27] [ip4][..udp] [....192.168.1.7][52347] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][ios.nccp.netflix.com]
analyse: [....20] [ip4][..tcp] [....192.168.1.7][53148] -> [..184.25.204.25][...80] [HTTP.NetFlix][Unknown][Video][Fun]
min| max| avg| stddev| variance| entropy
@@ -150,9 +150,9 @@
[PKTLENS.....: 64,60,52,298,52,1500,1500,52,1500,52,1500,1500,52,1500,1500,1500,1500,1500,1500,1500,1500,1500,80,80,80,72,64,52,52,297,1500,1500]
[ENTROPIES...: 4.6,5.2,5.1,5.9,5.3,7.5,7.8,5.1,7.8,5.0,7.8,7.8,5.2,7.8,7.8,7.8,7.8,7.8,7.8,7.9,7.9,7.9,5.4,5.2,5.3,5.4,5.3,5.2,5.2,5.8,7.2,7.8]
detection-update: [....26] [ip4][..udp] [....192.168.1.7][51728] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][a803.dscg.akamai.net]
- new: [....28] [ip4][..tcp] [....192.168.1.7][53153] -> [..184.25.204.24][...80]
+ new: [....28] [ip4][..tcp] [....192.168.1.7][53153] -> [..184.25.204.24][...80]
detection-update: [....27] [ip4][..udp] [....192.168.1.7][52347] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][ios.nccp.netflix.com]
- new: [....29] [ip4][..tcp] [....192.168.1.7][53162] -> [...54.191.17.51][..443]
+ new: [....29] [ip4][..tcp] [....192.168.1.7][53162] -> [...54.191.17.51][..443]
detected: [....28] [ip4][..tcp] [....192.168.1.7][53153] -> [..184.25.204.24][...80] [HTTP.NetFlix][Unknown][Video][Fun][tp.akam.nflximg.com]
detected: [....29] [ip4][..tcp] [....192.168.1.7][53162] -> [...54.191.17.51][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ios.nccp.netflix.com]
RISK: TLS (probably) Not Carrying HTTPS
@@ -162,7 +162,7 @@
RISK: TLS (probably) Not Carrying HTTPS
detection-update: [....29] [ip4][..tcp] [....192.168.1.7][53162] -> [...54.191.17.51][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ios.nccp.netflix.com]
RISK: TLS (probably) Not Carrying HTTPS
- new: [....30] [ip4][..tcp] [....192.168.1.7][53163] -> [..23.246.11.145][...80]
+ new: [....30] [ip4][..tcp] [....192.168.1.7][53163] -> [..23.246.11.145][...80]
detected: [....30] [ip4][..tcp] [....192.168.1.7][53163] -> [..23.246.11.145][...80] [HTTP][NetFlix][Web][Acceptable][23.246.11.145]
RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
detection-update: [....30] [ip4][..tcp] [....192.168.1.7][53163] -> [..23.246.11.145][...80] [HTTP][NetFlix][Download][Acceptable][23.246.11.145]
@@ -177,12 +177,12 @@
[IATS(ms)....: 24.8,26.3,3.8,42.5,4.8,43.8,27.2,40.5,69.4,43.9,44.8,78.3,38.8,79.8,102.6,28.8,14.7,354.3,85.0,14.1,12.4,12.7,651.0,22.9,582.5,8.6,27.5,16.4,16.4,14.7,15.1]
[PKTLENS.....: 64,60,52,408,567,1500,52,1500,1500,52,1500,52,1500,1500,1500,1500,1500,1500,80,1500,1500,1500,1500,64,52,1500,1500,52,1500,52,1500,1500]
[ENTROPIES...: 4.6,5.3,5.1,6.4,5.9,3.6,5.2,2.5,2.5,5.1,2.5,5.1,2.5,2.6,2.6,3.8,3.8,3.8,5.3,3.9,3.5,3.5,3.5,5.1,5.2,3.5,3.5,5.2,3.5,5.0,3.6,3.6]
- new: [....31] [ip4][..tcp] [....192.168.1.7][53164] -> [..23.246.10.139][...80]
+ new: [....31] [ip4][..tcp] [....192.168.1.7][53164] -> [..23.246.10.139][...80]
detected: [....31] [ip4][..tcp] [....192.168.1.7][53164] -> [..23.246.10.139][...80] [HTTP][NetFlix][Web][Acceptable][23.246.10.139]
RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
detection-update: [....31] [ip4][..tcp] [....192.168.1.7][53164] -> [..23.246.10.139][...80] [HTTP][NetFlix][Download][Acceptable][23.246.10.139]
RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
- new: [....32] [ip4][..tcp] [....192.168.1.7][53171] -> [...23.246.3.140][...80]
+ new: [....32] [ip4][..tcp] [....192.168.1.7][53171] -> [...23.246.3.140][...80]
detected: [....32] [ip4][..tcp] [....192.168.1.7][53171] -> [...23.246.3.140][...80] [HTTP][NetFlix][Web][Acceptable][23.246.3.140]
RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
detection-update: [....32] [ip4][..tcp] [....192.168.1.7][53171] -> [...23.246.3.140][...80] [HTTP][NetFlix][Download][Acceptable][23.246.3.140]
@@ -197,23 +197,23 @@
[IATS(ms)....: 30.8,32.5,5.5,44.3,2.2,41.1,2.9,12.8,15.6,14.9,15.0,12.8,12.7,26.4,12.8,11.9,13.3,17.2,31.0,13.3,13.6,25.6,14.3,13.9,26.7,13.8,13.3,27.2,13.3,13.3,27.2]
[PKTLENS.....: 64,60,52,406,571,1500,52,1500,1500,52,1500,52,1500,1500,52,1500,52,1500,1500,52,1500,52,1500,1500,1500,1500,1500,1500,1500,1500,1500,1500]
[ENTROPIES...: 4.5,5.3,5.1,6.4,5.8,3.6,5.2,2.5,2.6,5.2,2.6,5.0,2.6,2.6,5.2,2.5,5.0,2.6,2.6,5.2,2.5,5.1,3.8,3.8,3.8,3.8,3.8,3.8,3.8,3.8,3.9,3.5]
- new: [....33] [ip4][..tcp] [....192.168.1.7][53172] -> [..23.246.11.133][...80]
- new: [....34] [ip4][..tcp] [....192.168.1.7][53173] -> [..23.246.11.133][...80]
- new: [....35] [ip4][..tcp] [....192.168.1.7][53174] -> [..23.246.11.141][...80]
- new: [....36] [ip4][..tcp] [....192.168.1.7][53175] -> [..23.246.11.141][...80]
+ new: [....33] [ip4][..tcp] [....192.168.1.7][53172] -> [..23.246.11.133][...80]
+ new: [....34] [ip4][..tcp] [....192.168.1.7][53173] -> [..23.246.11.133][...80]
+ new: [....35] [ip4][..tcp] [....192.168.1.7][53174] -> [..23.246.11.141][...80]
+ new: [....36] [ip4][..tcp] [....192.168.1.7][53175] -> [..23.246.11.141][...80]
detected: [....33] [ip4][..tcp] [....192.168.1.7][53172] -> [..23.246.11.133][...80] [HTTP][NetFlix][Web][Acceptable][23.246.11.133]
RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
- new: [....37] [ip4][..tcp] [....192.168.1.7][53176] -> [..23.246.11.141][...80]
- new: [....38] [ip4][..tcp] [....192.168.1.7][53177] -> [..23.246.11.141][...80]
- new: [....39] [ip4][..tcp] [....192.168.1.7][53178] -> [..23.246.11.141][...80]
- new: [....40] [ip4][..tcp] [....192.168.1.7][53179] -> [..23.246.11.141][...80]
- new: [....41] [ip4][..tcp] [....192.168.1.7][53180] -> [..23.246.11.141][...80]
+ new: [....37] [ip4][..tcp] [....192.168.1.7][53176] -> [..23.246.11.141][...80]
+ new: [....38] [ip4][..tcp] [....192.168.1.7][53177] -> [..23.246.11.141][...80]
+ new: [....39] [ip4][..tcp] [....192.168.1.7][53178] -> [..23.246.11.141][...80]
+ new: [....40] [ip4][..tcp] [....192.168.1.7][53179] -> [..23.246.11.141][...80]
+ new: [....41] [ip4][..tcp] [....192.168.1.7][53180] -> [..23.246.11.141][...80]
detected: [....35] [ip4][..tcp] [....192.168.1.7][53174] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable][23.246.11.141]
RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
detected: [....34] [ip4][..tcp] [....192.168.1.7][53173] -> [..23.246.11.133][...80] [HTTP][NetFlix][Web][Acceptable][23.246.11.133]
RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
- new: [....42] [ip4][..tcp] [....192.168.1.7][53181] -> [..23.246.11.141][...80]
- new: [....43] [ip4][..tcp] [....192.168.1.7][53182] -> [..23.246.11.141][...80]
+ new: [....42] [ip4][..tcp] [....192.168.1.7][53181] -> [..23.246.11.141][...80]
+ new: [....43] [ip4][..tcp] [....192.168.1.7][53182] -> [..23.246.11.141][...80]
detected: [....36] [ip4][..tcp] [....192.168.1.7][53175] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable][23.246.11.141]
RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
detection-update: [....33] [ip4][..tcp] [....192.168.1.7][53172] -> [..23.246.11.133][...80] [HTTP][NetFlix][Download][Acceptable][23.246.11.133]
@@ -373,22 +373,22 @@
[PKTLENS.....: 64,60,52,281,52,1500,1500,52,215,52,127,58,97,52,103,52,1402,1500,1500,52,1500,337,52,52,52,993,112,52,52,52,83,52]
[ENTROPIES...: 4.5,5.3,5.1,5.8,5.1,7.3,7.3,5.1,6.9,5.1,6.1,5.0,6.0,5.2,6.0,5.2,7.9,7.9,7.9,5.2,7.8,7.4,5.1,5.1,5.1,7.8,6.3,5.2,5.1,5.1,5.8,5.1]
detection-update: [.....9] [ip4][..tcp] [....192.168.1.7][53118] -> [..54.69.204.241][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ichnaea.netflix.com]
- new: [....44] [ip4][..tcp] [....192.168.1.7][53183] -> [...23.246.3.140][...80]
- new: [....45] [ip4][..tcp] [....192.168.1.7][53184] -> [..23.246.11.141][...80]
+ new: [....44] [ip4][..tcp] [....192.168.1.7][53183] -> [...23.246.3.140][...80]
+ new: [....45] [ip4][..tcp] [....192.168.1.7][53184] -> [..23.246.11.141][...80]
detected: [....45] [ip4][..tcp] [....192.168.1.7][53184] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable][23.246.11.141]
RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
detected: [....44] [ip4][..tcp] [....192.168.1.7][53183] -> [...23.246.3.140][...80] [HTTP][NetFlix][Web][Acceptable][23.246.3.140]
RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
detection-update: [....45] [ip4][..tcp] [....192.168.1.7][53184] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable][23.246.11.141]
RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
- new: [....46] [ip4][..tcp] [....192.168.1.7][53193] -> [...54.191.17.51][..443]
- new: [....47] [ip4][..tcp] [....192.168.1.7][53202] -> [...54.191.17.51][..443]
- new: [....48] [ip4][..udp] [....192.168.1.7][60962] -> [....192.168.1.1][...53]
+ new: [....46] [ip4][..tcp] [....192.168.1.7][53193] -> [...54.191.17.51][..443]
+ new: [....47] [ip4][..tcp] [....192.168.1.7][53202] -> [...54.191.17.51][..443]
+ new: [....48] [ip4][..udp] [....192.168.1.7][60962] -> [....192.168.1.1][...53]
detected: [....48] [ip4][..udp] [....192.168.1.7][60962] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][ichnaea.geo.netflix.com]
detection-update: [....44] [ip4][..tcp] [....192.168.1.7][53183] -> [...23.246.3.140][...80] [HTTP][NetFlix][Download][Acceptable][23.246.3.140]
RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
detection-update: [....48] [ip4][..udp] [....192.168.1.7][60962] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][ichnaea.geo.netflix.com]
- new: [....49] [ip4][..tcp] [....192.168.1.7][53203] -> [...52.37.36.252][..443]
+ new: [....49] [ip4][..tcp] [....192.168.1.7][53203] -> [...52.37.36.252][..443]
analyse: [....11] [ip4][..tcp] [....192.168.1.7][53119] -> [..54.69.204.241][..443] [TLS.NetFlix][AmazonAWS][Video][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 30.431| 1.003| 5.373| 28867930.620| 0.200]
@@ -448,7 +448,7 @@
[IATS(ms)....: 30.5,31.5,13.2,64.0,5.3,56.4,6.1,68.2,5.4,71.5,109.5,202.7,164.8,560.3,47.3,79.0,279.5,27.7,94.5,26.6,26.1,15.8,70.5,85.9,39.5,39.8,41.6,84.4,730.9,41.5,39.7]
[PKTLENS.....: 64,60,52,557,618,951,52,564,628,1500,52,1500,1500,1500,72,64,52,1500,1500,52,1500,52,1500,1500,52,1500,52,1500,64,72,64,52]
[ENTROPIES...: 4.5,5.2,5.2,6.2,5.8,3.9,5.1,6.2,5.7,3.2,5.1,7.9,7.8,7.8,5.3,5.2,5.1,7.8,7.8,5.1,7.8,5.0,5.9,7.8,5.1,7.8,5.0,7.8,5.0,5.2,5.1,5.1]
- new: [....50] [ip4][..tcp] [....192.168.1.7][53210] -> [..23.246.11.133][...80]
+ new: [....50] [ip4][..tcp] [....192.168.1.7][53210] -> [..23.246.11.133][...80]
detected: [....50] [ip4][..tcp] [....192.168.1.7][53210] -> [..23.246.11.133][...80] [HTTP][NetFlix][Web][Acceptable][23.246.11.133]
RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
detection-update: [....50] [ip4][..tcp] [....192.168.1.7][53210] -> [..23.246.11.133][...80] [HTTP][NetFlix][Download][Acceptable][23.246.11.133]
@@ -458,7 +458,7 @@
update: [....17] [ip4][..udp] [....192.168.1.7][57719] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun]
update: [....13] [ip4][..udp] [....192.168.1.7][51949] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun]
update: [.....3] [ip4][..udp] [....192.168.1.7][52116] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun]
- new: [....51] [ip4][..tcp] [....192.168.1.7][53217] -> [..23.246.11.141][...80]
+ new: [....51] [ip4][..tcp] [....192.168.1.7][53217] -> [..23.246.11.141][...80]
detected: [....51] [ip4][..tcp] [....192.168.1.7][53217] -> [..23.246.11.141][...80] [HTTP][NetFlix][Web][Acceptable][23.246.11.141]
RISK: HTTP/TLS/QUIC Numeric Hostname/SNI
detection-update: [....51] [ip4][..tcp] [....192.168.1.7][53217] -> [..23.246.11.141][...80] [HTTP][NetFlix][Download][Acceptable][23.246.11.141]
@@ -467,23 +467,23 @@
update: [....26] [ip4][..udp] [....192.168.1.7][51728] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....23] [ip4][..udp] [....192.168.1.7][58102] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun]
update: [....27] [ip4][..udp] [....192.168.1.7][52347] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun]
- new: [....52] [ip4][..udp] [....192.168.1.7][51622] -> [....192.168.1.1][...53]
+ new: [....52] [ip4][..udp] [....192.168.1.7][51622] -> [....192.168.1.1][...53]
detected: [....52] [ip4][..udp] [....192.168.1.7][51622] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][ios.nccp.netflix.com]
detection-update: [....52] [ip4][..udp] [....192.168.1.7][51622] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][ios.nccp.netflix.com]
RISK: Unidirectional Traffic
detection-update: [....52] [ip4][..udp] [....192.168.1.7][51622] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][ios.nccp.netflix.com]
- new: [....53] [ip4][..tcp] [....192.168.1.7][53238] -> [...52.32.22.214][..443]
+ new: [....53] [ip4][..tcp] [....192.168.1.7][53238] -> [...52.32.22.214][..443]
detected: [....53] [ip4][..tcp] [....192.168.1.7][53238] -> [...52.32.22.214][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ios.nccp.netflix.com]
RISK: TLS (probably) Not Carrying HTTPS
detection-update: [....53] [ip4][..tcp] [....192.168.1.7][53238] -> [...52.32.22.214][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ios.nccp.netflix.com]
RISK: TLS (probably) Not Carrying HTTPS
detection-update: [....53] [ip4][..tcp] [....192.168.1.7][53238] -> [...52.32.22.214][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ios.nccp.netflix.com]
RISK: TLS (probably) Not Carrying HTTPS
- new: [....54] [ip4][..udp] [....192.168.1.7][52095] -> [....192.168.1.1][...53]
+ new: [....54] [ip4][..udp] [....192.168.1.7][52095] -> [....192.168.1.1][...53]
detected: [....54] [ip4][..udp] [....192.168.1.7][52095] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][api-global.latency.prodaa.netflix.com]
detection-update: [....54] [ip4][..udp] [....192.168.1.7][52095] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][api-global.latency.prodaa.netflix.com]
- new: [....55] [ip4][..tcp] [....192.168.1.7][53239] -> [.....52.41.30.5][..443]
- new: [....56] [ip4][..tcp] [....192.168.1.7][53248] -> [...52.32.22.214][..443]
+ new: [....55] [ip4][..tcp] [....192.168.1.7][53239] -> [.....52.41.30.5][..443]
+ new: [....56] [ip4][..tcp] [....192.168.1.7][53248] -> [...52.32.22.214][..443]
detected: [....55] [ip4][..tcp] [....192.168.1.7][53239] -> [.....52.41.30.5][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][api-global.netflix.com]
detected: [....56] [ip4][..tcp] [....192.168.1.7][53248] -> [...52.32.22.214][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ios.nccp.netflix.com]
RISK: TLS (probably) Not Carrying HTTPS
@@ -493,8 +493,8 @@
RISK: TLS (probably) Not Carrying HTTPS
detection-update: [....56] [ip4][..tcp] [....192.168.1.7][53248] -> [...52.32.22.214][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ios.nccp.netflix.com]
RISK: TLS (probably) Not Carrying HTTPS
- new: [....57] [ip4][..tcp] [....192.168.1.7][53249] -> [.....52.41.30.5][..443]
- new: [....58] [ip4][..tcp] [....192.168.1.7][53250] -> [.....52.41.30.5][..443]
+ new: [....57] [ip4][..tcp] [....192.168.1.7][53249] -> [.....52.41.30.5][..443]
+ new: [....58] [ip4][..tcp] [....192.168.1.7][53250] -> [.....52.41.30.5][..443]
detected: [....57] [ip4][..tcp] [....192.168.1.7][53249] -> [.....52.41.30.5][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][api-global.netflix.com]
RISK: TLS (probably) Not Carrying HTTPS
detected: [....58] [ip4][..tcp] [....192.168.1.7][53250] -> [.....52.41.30.5][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][api-global.netflix.com]
@@ -513,11 +513,11 @@
[IATS(ms)....: 52.7,54.2,4.7,50.1,0.9,46.0,1.1,0.4,2.3,0.6,48.9,36.1,58.6,0.1,1.0,141.4,13.3,12.2,4.7,8.7,8.5,4.5,3.7,4.5,12.4,12.8,15.2,13.9,6.1,6.2,6.8]
[PKTLENS.....: 64,60,52,260,52,197,52,58,97,1500,550,52,52,1500,213,1500,52,545,52,991,52,425,52,1292,52,1392,52,646,52,794,52,707]
[ENTROPIES...: 4.5,5.3,5.1,6.0,5.2,6.5,5.1,5.2,6.0,7.9,7.6,5.1,5.2,7.9,7.0,7.8,5.1,7.6,5.1,7.8,5.2,7.5,5.1,7.8,5.2,7.9,5.1,7.7,5.1,7.8,5.1,7.7]
- new: [....59] [ip4][..udp] [....192.168.1.7][57093] -> [....192.168.1.1][...53]
+ new: [....59] [ip4][..udp] [....192.168.1.7][57093] -> [....192.168.1.1][...53]
detected: [....59] [ip4][..udp] [....192.168.1.7][57093] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][a1907.dscg.akamai.net]
detection-update: [....59] [ip4][..udp] [....192.168.1.7][57093] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][a1907.dscg.akamai.net]
- new: [....60] [ip4][..tcp] [....192.168.1.7][53251] -> [..184.25.204.10][...80]
- new: [....61] [ip4][..tcp] [....192.168.1.7][53252] -> [..184.25.204.10][...80]
+ new: [....60] [ip4][..tcp] [....192.168.1.7][53251] -> [..184.25.204.10][...80]
+ new: [....61] [ip4][..tcp] [....192.168.1.7][53252] -> [..184.25.204.10][...80]
detected: [....60] [ip4][..tcp] [....192.168.1.7][53251] -> [..184.25.204.10][...80] [HTTP.NetFlix][Unknown][Video][Fun][art-1.nflximg.net]
detected: [....61] [ip4][..tcp] [....192.168.1.7][53252] -> [..184.25.204.10][...80] [HTTP.NetFlix][Unknown][Video][Fun][art-1.nflximg.net]
analyse: [....55] [ip4][..tcp] [....192.168.1.7][53239] -> [.....52.41.30.5][..443] [TLS.NetFlix][AmazonAWS][Video][Fun]
@@ -561,7 +561,7 @@
RISK: TLS (probably) Not Carrying HTTPS
guessed: [.....1] [ip4][..tcp] [....192.168.1.7][52929] -> [.....52.24.87.6][..443] [TLS][AmazonAWS][Web][Safe]
RISK: Unidirectional Traffic
- end: [.....1] [ip4][..tcp] [....192.168.1.7][52929] -> [.....52.24.87.6][..443]
+ end: [.....1] [ip4][..tcp] [....192.168.1.7][52929] -> [.....52.24.87.6][..443]
idle: [....46] [ip4][..tcp] [....192.168.1.7][53193] -> [...54.191.17.51][..443] [TLS.NetFlix][AmazonAWS][Video][Fun]
RISK: TLS (probably) Not Carrying HTTPS
end: [....47] [ip4][..tcp] [....192.168.1.7][53202] -> [...54.191.17.51][..443] [TLS.NetFlix][AmazonAWS][Video][Fun]
Powered by cgit, Themed by Ted Yin.