summaryrefslogtreecommitdiff
path: root/test/results/flow-info/default/netflix.pcap.out
diff options
context:
space:
mode:
Diffstat (limited to 'test/results/flow-info/default/netflix.pcap.out')
1 files changed, 19 insertions, 14 deletions
diff --git a/test/results/flow-info/default/netflix.pcap.out b/test/results/flow-info/default/netflix.pcap.out
index 07c064aa2..479c31e5c 100644
--- a/test/results/flow-info/default/netflix.pcap.out
+++ b/test/results/flow-info/default/netflix.pcap.out
@@ -81,7 +81,7 @@
RISK: TLS (probably) Not Carrying HTTPS
detection-update: [....16] [ip4][..tcp] [....192.168.1.7][53134] -> [...52.89.39.139][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][api-global.netflix.com]
RISK: TLS (probably) Not Carrying HTTPS
- analyse: [....15] [ip4][..tcp] [....192.168.1.7][53133] -> [...52.89.39.139][..443]
+ analyse: [....15] [ip4][..tcp] [....192.168.1.7][53133] -> [...52.89.39.139][..443] [TLS.NetFlix][AmazonAWS][Video][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.350| 0.041| 0.077| 5966.970| 3.500]
[PKTLEN......: 52.000| 1500.000| 530.200| 630.500| 397553.600| 4.000]
@@ -101,7 +101,7 @@
detected: [....18] [ip4][..tcp] [....192.168.1.7][53141] -> [..104.86.97.179][..443] [TLS.NetFlix][Unknown][Video][Fun][art-s.nflximg.net]
detection-update: [....18] [ip4][..tcp] [....192.168.1.7][53141] -> [..104.86.97.179][..443] [TLS.NetFlix][Unknown][Video][Fun][art-s.nflximg.net]
detection-update: [....18] [ip4][..tcp] [....192.168.1.7][53141] -> [..104.86.97.179][..443] [TLS.NetFlix][Unknown][Video][Fun][art-s.nflximg.net]
- analyse: [....14] [ip4][..tcp] [....192.168.1.7][53132] -> [...52.89.39.139][..443]
+ analyse: [....14] [ip4][..tcp] [....192.168.1.7][53132] -> [...52.89.39.139][..443] [TLS.NetFlix][AmazonAWS][Video][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 7.508| 0.502| 1.826| 3335198.867| 1.400]
[PKTLEN......: 52.000| 1500.000| 358.800| 520.700| 271128.800| 3.800]
@@ -370,7 +370,7 @@
[IATS(ms)....: 43.9,45.8,13.4,88.6,4.9,81.9,1250.8,92.5,118.4,0.7,544.2,69.2,495.5,501.7,62.9,1143.9,28.6,39.1,4432.0,83.0,87.8,169.9,586.4,795.5,292.9,509.0,501.2,1203.5,55.9,83.0,70.7]
[PKTLENS.....: 64,60,52,410,569,1500,52,80,80,72,72,72,72,72,64,64,64,64,64,1500,52,1500,64,52,1500,64,52,52,1500,1500,52,1500]
[ENTROPIES...: 4.6,5.2,5.0,6.4,5.8,4.5,5.1,5.3,5.3,5.4,5.4,5.3,5.4,5.3,5.3,5.1,5.3,5.3,5.2,4.3,5.0,4.3,5.2,5.2,4.4,5.2,5.2,5.2,4.3,4.3,5.2,4.4]
- analyse: [.....9] [ip4][..tcp] [....192.168.1.7][53118] -> [..54.69.204.241][..443]
+ analyse: [.....9] [ip4][..tcp] [....192.168.1.7][53118] -> [..54.69.204.241][..443] [TLS.NetFlix][AmazonAWS][Video][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 30.086| 1.958| 7.380| 54461959.504| 1.100]
[PKTLEN......: 52.000| 1500.000| 380.000| 556.900| 310128.200| 3.800]
@@ -398,7 +398,7 @@
RISK: Binary App Transfer, HTTP/TLS/QUIC Numeric Hostname/SNI
detection-update: [....48] [ip4][..udp] [....192.168.1.7][60962] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun][ichnaea.geo.netflix.com]
new: [....49] [ip4][..tcp] [....192.168.1.7][53203] -> [...52.37.36.252][..443]
- analyse: [....11] [ip4][..tcp] [....192.168.1.7][53119] -> [..54.69.204.241][..443]
+ analyse: [....11] [ip4][..tcp] [....192.168.1.7][53119] -> [..54.69.204.241][..443] [TLS.NetFlix][AmazonAWS][Video][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 30.431| 1.003| 5.373| 28867930.620| 0.200]
[PKTLEN......: 52.000| 1500.000| 379.500| 557.000| 310204.400| 3.800]
@@ -424,7 +424,7 @@
detection-update: [....47] [ip4][..tcp] [....192.168.1.7][53202] -> [...54.191.17.51][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ios.nccp.netflix.com]
RISK: TLS (probably) Not Carrying HTTPS
detection-update: [....49] [ip4][..tcp] [....192.168.1.7][53203] -> [...52.37.36.252][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ichnaea.netflix.com]
- analyse: [....47] [ip4][..tcp] [....192.168.1.7][53202] -> [...54.191.17.51][..443]
+ analyse: [....47] [ip4][..tcp] [....192.168.1.7][53202] -> [...54.191.17.51][..443] [TLS.NetFlix][AmazonAWS][Video][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.282| 0.053| 0.058| 3383.537| 4.200]
[PKTLEN......: 52.000| 1500.000| 552.500| 629.700| 396553.700| 4.000]
@@ -436,7 +436,7 @@
[ENTROPIES...: 4.6,5.4,5.2,4.4,5.2,7.2,7.7,5.2,6.5,6.0,5.1,7.8,6.2,5.2,7.9,7.9,7.9,7.9,5.1,7.9,7.4,5.2,5.2,7.8,5.2,7.9,7.9,5.2,6.2,5.2,5.8,5.1]
detection-update: [....47] [ip4][..tcp] [....192.168.1.7][53202] -> [...54.191.17.51][..443] [TLS.NetFlix][AmazonAWS][Video][Fun][ios.nccp.netflix.com]
RISK: TLS (probably) Not Carrying HTTPS
- analyse: [....49] [ip4][..tcp] [....192.168.1.7][53203] -> [...52.37.36.252][..443]
+ analyse: [....49] [ip4][..tcp] [....192.168.1.7][53203] -> [...52.37.36.252][..443] [TLS.NetFlix][AmazonAWS][Video][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.333| 0.059| 0.083| 6944.879| 3.800]
[PKTLEN......: 52.000| 1500.000| 746.100| 703.800| 495333.000| 4.200]
@@ -532,7 +532,7 @@
new: [....61] [ip4][..tcp] [....192.168.1.7][53252] -> [..184.25.204.10][...80]
detected: [....60] [ip4][..tcp] [....192.168.1.7][53251] -> [..184.25.204.10][...80] [HTTP.NetFlix][Unknown][Video][Fun][art-1.nflximg.net]
detected: [....61] [ip4][..tcp] [....192.168.1.7][53252] -> [..184.25.204.10][...80] [HTTP.NetFlix][Unknown][Video][Fun][art-1.nflximg.net]
- analyse: [....55] [ip4][..tcp] [....192.168.1.7][53239] -> [.....52.41.30.5][..443]
+ analyse: [....55] [ip4][..tcp] [....192.168.1.7][53239] -> [.....52.41.30.5][..443] [TLS.NetFlix][AmazonAWS][Video][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.501| 0.064| 0.122| 14766.799| 3.300]
[PKTLEN......: 52.000| 1500.000| 442.800| 552.300| 305076.800| 4.000]
@@ -567,18 +567,21 @@
idle: [....12] [ip4][....2] [....192.168.1.7] -> [239.255.255.250] [IGMP][Unknown][Network][Acceptable]
idle: [....59] [ip4][..udp] [....192.168.1.7][57093] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [....19] [ip4][..udp] [....192.168.1.7][59180] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun]
- end: [.....5] [ip4][..tcp] [....192.168.1.7][53114] -> [...54.191.17.51][..443]
- end: [....29] [ip4][..tcp] [....192.168.1.7][53162] -> [...54.191.17.51][..443]
+ end: [.....5] [ip4][..tcp] [....192.168.1.7][53114] -> [...54.191.17.51][..443] [TLS.NetFlix][AmazonAWS][Video][Fun]
+ RISK: TLS (probably) Not Carrying HTTPS
+ end: [....29] [ip4][..tcp] [....192.168.1.7][53162] -> [...54.191.17.51][..443] [TLS.NetFlix][AmazonAWS][Video][Fun]
+ RISK: TLS (probably) Not Carrying HTTPS
guessed: [.....1] [ip4][..tcp] [....192.168.1.7][52929] -> [.....52.24.87.6][..443] [TLS][AmazonAWS][Web][Safe]
RISK: Unidirectional Traffic
end: [.....1] [ip4][..tcp] [....192.168.1.7][52929] -> [.....52.24.87.6][..443]
- idle: [....46] [ip4][..tcp] [....192.168.1.7][53193] -> [...54.191.17.51][..443]
+ idle: [....46] [ip4][..tcp] [....192.168.1.7][53193] -> [...54.191.17.51][..443] [TLS.NetFlix][AmazonAWS][Video][Fun]
+ RISK: TLS (probably) Not Carrying HTTPS
end: [....47] [ip4][..tcp] [....192.168.1.7][53202] -> [...54.191.17.51][..443] [TLS.NetFlix][AmazonAWS][Video][Fun]
RISK: TLS (probably) Not Carrying HTTPS
end: [....25] [ip4][..tcp] [....192.168.1.7][53152] -> [...52.89.39.139][...80] [HTTP.NetFlix][AmazonAWS][Video][Fun]
end: [....24] [ip4][..tcp] [....192.168.1.7][53151] -> [.54.201.191.132][...80] [HTTP.NetFlix][AmazonAWS][Video][Fun]
- end: [.....6] [ip4][..tcp] [....192.168.1.7][53115] -> [...52.32.196.36][..443]
- idle: [.....7] [ip4][..tcp] [....192.168.1.7][53116] -> [...52.32.196.36][..443]
+ end: [.....6] [ip4][..tcp] [....192.168.1.7][53115] -> [...52.32.196.36][..443] [TLS.NetFlix][AmazonAWS][Video][Fun]
+ idle: [.....7] [ip4][..tcp] [....192.168.1.7][53116] -> [...52.32.196.36][..443] [TLS.NetFlix][AmazonAWS][Video][Fun]
end: [.....8] [ip4][..tcp] [....192.168.1.7][53117] -> [...52.32.196.36][..443] [TLS.NetFlix][AmazonAWS][Video][Fun]
RISK: TLS (probably) Not Carrying HTTPS
idle: [....10] [ip4][..udp] [....192.168.1.7][53776] -> [239.255.255.250][.1900] [SSDP][Unknown][System][Acceptable]
@@ -587,8 +590,10 @@
end: [....22] [ip4][..tcp] [....192.168.1.7][53150] -> [..184.25.204.25][...80] [HTTP.NetFlix][Unknown][Video][Fun]
idle: [....28] [ip4][..tcp] [....192.168.1.7][53153] -> [..184.25.204.24][...80] [HTTP.NetFlix][Unknown][Video][Fun]
RISK: HTTP Susp Content
- end: [....53] [ip4][..tcp] [....192.168.1.7][53238] -> [...52.32.22.214][..443]
- idle: [....56] [ip4][..tcp] [....192.168.1.7][53248] -> [...52.32.22.214][..443]
+ end: [....53] [ip4][..tcp] [....192.168.1.7][53238] -> [...52.32.22.214][..443] [TLS.NetFlix][AmazonAWS][Video][Fun]
+ RISK: TLS (probably) Not Carrying HTTPS
+ idle: [....56] [ip4][..tcp] [....192.168.1.7][53248] -> [...52.32.22.214][..443] [TLS.NetFlix][AmazonAWS][Video][Fun]
+ RISK: TLS (probably) Not Carrying HTTPS
idle: [....60] [ip4][..tcp] [....192.168.1.7][53251] -> [..184.25.204.10][...80] [HTTP.NetFlix][Unknown][Video][Fun]
idle: [....61] [ip4][..tcp] [....192.168.1.7][53252] -> [..184.25.204.10][...80] [HTTP.NetFlix][Unknown][Video][Fun]
idle: [.....2] [ip4][..udp] [....192.168.1.7][51543] -> [....192.168.1.1][...53] [DNS.NetFlix][Unknown][Network][Fun]
Powered by cgit, Themed by Ted Yin.