summaryrefslogtreecommitdiff
path: root/test/results/flow-info/default/wechat.pcap.out
diff options
context:
space:
mode:
Diffstat (limited to 'test/results/flow-info/default/wechat.pcap.out')
-rw-r--r--test/results/flow-info/default/wechat.pcap.out108
1 files changed, 59 insertions, 49 deletions
diff --git a/test/results/flow-info/default/wechat.pcap.out b/test/results/flow-info/default/wechat.pcap.out
index 155e5e666..0ad41e287 100644
--- a/test/results/flow-info/default/wechat.pcap.out
+++ b/test/results/flow-info/default/wechat.pcap.out
@@ -34,6 +34,7 @@
new: [....13] [ip4][..tcp] [203.205.151.162][..443] -> [..192.168.1.103][54058] [MIDSTREAM]
detected: [....13] [ip4][..tcp] [203.205.151.162][..443] -> [..192.168.1.103][54058] [TLS][Unknown][Web][Safe]
RISK: Unidirectional Traffic
+ detection-update: [....13] [ip4][..tcp] [203.205.151.162][..443] -> [..192.168.1.103][54058] [TLS][Unknown][Web][Safe]
new: [....14] [ip4][..tcp] [..192.168.1.103][40741] -> [203.205.151.211][..443] [MIDSTREAM]
new: [....15] [ip4][..tcp] [..192.168.1.103][54085] -> [203.205.151.162][..443] [MIDSTREAM]
new: [....16] [ip4][..tcp] [..192.168.1.103][54089] -> [203.205.151.162][..443]
@@ -114,10 +115,8 @@
update: [.....4] [ip4][..udp] [..192.168.1.103][53734] -> [..192.168.1.254][...53] [DNS.Google][Unknown][Network][Acceptable]
update: [....10] [ip4][..udp] [..192.168.1.103][55862] -> [..192.168.1.254][...53] [DNS.GoogleDocs][Unknown][Network][Acceptable]
update: [.....9] [ip4][..udp] [..192.168.1.103][51507] -> [..172.217.23.67][..443] [QUIC.Google][Google][Web][Acceptable]
- RISK: Unidirectional Traffic
update: [.....8] [ip4][..udp] [..192.168.1.103][46078] -> [..192.168.1.254][...53] [DNS.Google][Unknown][Network][Acceptable]
update: [....11] [ip4][..udp] [..192.168.1.103][57591] -> [..216.58.198.46][..443] [QUIC.GoogleDocs][Google][Collaborative][Acceptable]
- RISK: Unidirectional Traffic
new: [....26] [ip4][..tcp] [..192.168.1.103][54097] -> [203.205.151.162][..443]
new: [....27] [ip4][..tcp] [..192.168.1.103][54098] -> [203.205.151.162][..443]
detected: [....26] [ip4][..tcp] [..192.168.1.103][54097] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun][web.wechat.com]
@@ -168,10 +167,8 @@
update: [.....4] [ip4][..udp] [..192.168.1.103][53734] -> [..192.168.1.254][...53] [DNS.Google][Unknown][Network][Acceptable]
update: [....10] [ip4][..udp] [..192.168.1.103][55862] -> [..192.168.1.254][...53] [DNS.GoogleDocs][Unknown][Network][Acceptable]
update: [.....9] [ip4][..udp] [..192.168.1.103][51507] -> [..172.217.23.67][..443] [QUIC.Google][Google][Web][Acceptable]
- RISK: Unidirectional Traffic
update: [.....8] [ip4][..udp] [..192.168.1.103][46078] -> [..192.168.1.254][...53] [DNS.Google][Unknown][Network][Acceptable]
update: [....11] [ip4][..udp] [..192.168.1.103][57591] -> [..216.58.198.46][..443] [QUIC.GoogleDocs][Google][Collaborative][Acceptable]
- RISK: Unidirectional Traffic
new: [....31] [ip4][..tcp] [..192.168.1.103][54099] -> [203.205.151.162][..443]
new: [....32] [ip4][..tcp] [..192.168.1.103][54100] -> [203.205.151.162][..443]
detected: [....31] [ip4][..tcp] [..192.168.1.103][54099] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun][web.wechat.com]
@@ -205,7 +202,7 @@
detected: [....36] [ip4][..tcp] [..192.168.1.103][54104] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun][web.wechat.com]
detection-update: [....36] [ip4][..tcp] [..192.168.1.103][54104] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun][web.wechat.com]
detection-update: [....36] [ip4][..tcp] [..192.168.1.103][54104] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun][web.wechat.com]
- analyse: [....35] [ip4][..tcp] [..192.168.1.103][54103] -> [203.205.151.162][..443]
+ analyse: [....35] [ip4][..tcp] [..192.168.1.103][54103] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.647| 0.130| 0.182| 33080.510| 3.500]
[PKTLEN......: 52.000| 3120.000| 817.600| 861.600| 742326.200| 4.200]
@@ -241,31 +238,29 @@
detection-update: [....39] [ip4][..tcp] [..192.168.1.103][54111] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun][web.wechat.com]
new: [....41] [ip4][..tcp] [..192.168.1.103][54106] -> [203.205.151.162][..443] [MIDSTREAM]
end: [....16] [ip4][..tcp] [..192.168.1.103][54089] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun]
- end: [....17] [ip4][..tcp] [..192.168.1.103][54090] -> [203.205.151.162][..443]
- end: [....18] [ip4][..tcp] [..192.168.1.103][54091] -> [203.205.151.162][..443]
+ end: [....17] [ip4][..tcp] [..192.168.1.103][54090] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun]
+ end: [....18] [ip4][..tcp] [..192.168.1.103][54091] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun]
end: [....19] [ip4][..tcp] [..192.168.1.103][54092] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun]
guessed: [....20] [ip4][..tcp] [..192.168.1.103][54093] -> [203.205.151.162][..443] [TLS][Unknown][Web][Safe]
end: [....20] [ip4][..tcp] [..192.168.1.103][54093] -> [203.205.151.162][..443]
end: [....22] [ip4][..tcp] [..192.168.1.103][54094] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun]
end: [....23] [ip4][..tcp] [..192.168.1.103][54095] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun]
- end: [....24] [ip4][..tcp] [..192.168.1.103][54096] -> [203.205.151.162][..443]
+ end: [....24] [ip4][..tcp] [..192.168.1.103][54096] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun]
end: [....26] [ip4][..tcp] [..192.168.1.103][54097] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun]
end: [....27] [ip4][..tcp] [..192.168.1.103][54098] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun]
end: [....31] [ip4][..tcp] [..192.168.1.103][54099] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun]
- end: [....32] [ip4][..tcp] [..192.168.1.103][54100] -> [203.205.151.162][..443]
+ end: [....32] [ip4][..tcp] [..192.168.1.103][54100] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun]
end: [....33] [ip4][..tcp] [..192.168.1.103][54101] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun]
- end: [....34] [ip4][..tcp] [..192.168.1.103][54102] -> [203.205.151.162][..443]
+ end: [....34] [ip4][..tcp] [..192.168.1.103][54102] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun]
end: [....35] [ip4][..tcp] [..192.168.1.103][54103] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun]
- end: [....36] [ip4][..tcp] [..192.168.1.103][54104] -> [203.205.151.162][..443]
+ end: [....36] [ip4][..tcp] [..192.168.1.103][54104] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun]
idle: [.....4] [ip4][..udp] [..192.168.1.103][53734] -> [..192.168.1.254][...53] [DNS.Google][Unknown][Network][Acceptable]
idle: [....10] [ip4][..udp] [..192.168.1.103][55862] -> [..192.168.1.254][...53] [DNS.GoogleDocs][Unknown][Network][Acceptable]
- end: [.....7] [ip4][..tcp] [..192.168.1.103][53220] -> [..172.217.23.78][..443]
+ end: [.....7] [ip4][..tcp] [..192.168.1.103][53220] -> [..172.217.23.78][..443] [TLS][Google][Web][Safe]
idle: [.....9] [ip4][..udp] [..192.168.1.103][51507] -> [..172.217.23.67][..443] [QUIC.Google][Google][Web][Acceptable]
- RISK: Unidirectional Traffic
idle: [.....8] [ip4][..udp] [..192.168.1.103][46078] -> [..192.168.1.254][...53] [DNS.Google][Unknown][Network][Acceptable]
idle: [....11] [ip4][..udp] [..192.168.1.103][57591] -> [..216.58.198.46][..443] [QUIC.GoogleDocs][Google][Collaborative][Acceptable]
- RISK: Unidirectional Traffic
- end: [.....6] [ip4][..tcp] [..192.168.1.103][47627] -> [..216.58.205.78][..443]
+ end: [.....6] [ip4][..tcp] [..192.168.1.103][47627] -> [..216.58.205.78][..443] [TLS][Google][Web][Safe]
end: [....25] [ip4][..tcp] [..192.168.1.103][40740] -> [203.205.151.211][..443] [TLS][Unknown][Web][Safe]
update: [.....3] [ip6][..udp] [..............fe80::7a92:9cff:fe0f:a88e][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable]
update: [....28] [ip4][....2] [..192.168.1.254] -> [......224.0.0.1] [IGMP][Unknown][Network][Acceptable]
@@ -321,7 +316,6 @@
update: [....44] [ip4][..udp] [..192.168.1.103][19041] -> [..192.168.1.254][...53] [DNS.QQ][Unknown][Network][Fun]
update: [....47] [ip4][..udp] [..192.168.1.103][60562] -> [..192.168.1.254][...53] [DNS.Google][Unknown][Network][Acceptable]
update: [....48] [ip4][..udp] [..192.168.1.103][35601] -> [..172.217.23.67][..443] [QUIC.Google][Google][Web][Acceptable]
- RISK: Unidirectional Traffic
analyse: [....50] [ip4][..tcp] [..192.168.1.103][54117] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 7.807| 0.648| 1.839| 3381034.746| 2.500]
@@ -381,7 +375,6 @@
update: [....44] [ip4][..udp] [..192.168.1.103][19041] -> [..192.168.1.254][...53] [DNS.QQ][Unknown][Network][Fun]
update: [....47] [ip4][..udp] [..192.168.1.103][60562] -> [..192.168.1.254][...53] [DNS.Google][Unknown][Network][Acceptable]
update: [....48] [ip4][..udp] [..192.168.1.103][35601] -> [..172.217.23.67][..443] [QUIC.Google][Google][Web][Acceptable]
- RISK: Unidirectional Traffic
new: [....54] [ip4][..udp] [..192.168.1.103][60356] -> [..192.168.1.254][...53]
detected: [....54] [ip4][..udp] [..192.168.1.103][60356] -> [..192.168.1.254][...53] [DNS.WeChat][Unknown][Network][Fun][web.wechat.com]
RISK: Unidirectional Traffic
@@ -391,7 +384,7 @@
detected: [....55] [ip4][..tcp] [..192.168.1.103][58036] -> [203.205.147.171][..443] [TLS.WeChat][Tencent][Chat][Fun][web.wechat.com]
detection-update: [....55] [ip4][..tcp] [..192.168.1.103][58036] -> [203.205.147.171][..443] [TLS.WeChat][Tencent][Chat][Fun][web.wechat.com]
detection-update: [....55] [ip4][..tcp] [..192.168.1.103][58036] -> [203.205.147.171][..443] [TLS.WeChat][Tencent][Chat][Fun][web.wechat.com]
- end: [....39] [ip4][..tcp] [..192.168.1.103][54111] -> [203.205.151.162][..443]
+ end: [....39] [ip4][..tcp] [..192.168.1.103][54111] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun]
guessed: [....40] [ip4][..tcp] [..192.168.1.103][54112] -> [203.205.151.162][..443] [TLS][Unknown][Web][Safe]
end: [....40] [ip4][..tcp] [..192.168.1.103][54112] -> [203.205.151.162][..443]
new: [....57] [ip4][..tcp] [..192.168.1.103][58038] -> [203.205.147.171][..443]
@@ -441,19 +434,18 @@
update: [....44] [ip4][..udp] [..192.168.1.103][19041] -> [..192.168.1.254][...53] [DNS.QQ][Unknown][Network][Fun]
update: [....47] [ip4][..udp] [..192.168.1.103][60562] -> [..192.168.1.254][...53] [DNS.Google][Unknown][Network][Acceptable]
update: [....48] [ip4][..udp] [..192.168.1.103][35601] -> [..172.217.23.67][..443] [QUIC.Google][Google][Web][Acceptable]
- RISK: Unidirectional Traffic
guessed: [....46] [ip4][..tcp] [..192.168.1.103][43851] -> [.203.205.158.34][..443] [TLS][Unknown][Web][Safe]
end: [....46] [ip4][..tcp] [..192.168.1.103][43851] -> [.203.205.158.34][..443]
guessed: [....43] [ip4][..tcp] [..192.168.1.103][54114] -> [203.205.151.162][..443] [TLS][Unknown][Web][Safe]
end: [....43] [ip4][..tcp] [..192.168.1.103][54114] -> [203.205.151.162][..443]
update: [....54] [ip4][..udp] [..192.168.1.103][60356] -> [..192.168.1.254][...53] [DNS.WeChat][Unknown][Network][Fun]
- end: [....45] [ip4][..tcp] [..192.168.1.103][43850] -> [.203.205.158.34][..443]
+ end: [....45] [ip4][..tcp] [..192.168.1.103][43850] -> [.203.205.158.34][..443] [TLS.QQ][Unknown][Chat][Fun]
+ RISK: Weak TLS Cipher
end: [....50] [ip4][..tcp] [..192.168.1.103][54117] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun]
- end: [....51] [ip4][..tcp] [..192.168.1.103][54118] -> [203.205.151.162][..443]
+ end: [....51] [ip4][..tcp] [..192.168.1.103][54118] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun]
idle: [....44] [ip4][..udp] [..192.168.1.103][19041] -> [..192.168.1.254][...53] [DNS.QQ][Unknown][Network][Fun]
idle: [....47] [ip4][..udp] [..192.168.1.103][60562] -> [..192.168.1.254][...53] [DNS.Google][Unknown][Network][Acceptable]
idle: [....48] [ip4][..udp] [..192.168.1.103][35601] -> [..172.217.23.67][..443] [QUIC.Google][Google][Web][Acceptable]
- RISK: Unidirectional Traffic
update: [....66] [ip6][..udp] [..............fe80::91f9:3df3:7436:6cd6][50577] -> [..............................ff02::1:3][.5355] [LLMNR][Unknown][Network][Acceptable]
update: [.....3] [ip6][..udp] [..............fe80::7a92:9cff:fe0f:a88e][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable]
update: [....62] [ip4][..udp] [..192.168.1.100][49832] -> [....224.0.0.252][.5355] [LLMNR][Unknown][Network][Acceptable]
@@ -480,7 +472,7 @@
detected: [....72] [ip4][..tcp] [..192.168.1.103][58040] -> [203.205.147.171][..443] [TLS.WeChat][Tencent][Chat][Fun][web.wechat.com]
detection-update: [....72] [ip4][..tcp] [..192.168.1.103][58040] -> [203.205.147.171][..443] [TLS.WeChat][Tencent][Chat][Fun][web.wechat.com]
detection-update: [....72] [ip4][..tcp] [..192.168.1.103][58040] -> [203.205.147.171][..443] [TLS.WeChat][Tencent][Chat][Fun][web.wechat.com]
- analyse: [....72] [ip4][..tcp] [..192.168.1.103][58040] -> [203.205.147.171][..443]
+ analyse: [....72] [ip4][..tcp] [..192.168.1.103][58040] -> [203.205.147.171][..443] [TLS.WeChat][Tencent][Chat][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 1.577| 0.182| 0.352| 123851.137| 3.200]
[PKTLEN......: 52.000| 1480.000| 545.600| 599.000| 358844.300| 4.100]
@@ -495,7 +487,7 @@
detection-update: [....73] [ip4][..tcp] [..192.168.1.103][58041] -> [203.205.147.171][..443] [TLS.WeChat][Tencent][Chat][Fun][web.wechat.com]
detection-update: [....73] [ip4][..tcp] [..192.168.1.103][58041] -> [203.205.147.171][..443] [TLS.WeChat][Tencent][Chat][Fun][web.wechat.com]
end: [....52] [ip4][..tcp] [..192.168.1.103][54119] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun]
- end: [....53] [ip4][..tcp] [..192.168.1.103][54120] -> [203.205.151.162][..443]
+ end: [....53] [ip4][..tcp] [..192.168.1.103][54120] -> [203.205.151.162][..443] [TLS.WeChat][Unknown][Chat][Fun]
update: [....54] [ip4][..udp] [..192.168.1.103][60356] -> [..192.168.1.254][...53] [DNS.WeChat][Unknown][Network][Fun]
update: [....70] [ip6][icmp6] [.....................................::] -> [......................ff02::1:ff86:6c5b] [ICMPV6][Unknown][Network][Acceptable]
update: [....68] [ip6][icmp6] [...............fe80::842:a3f3:a286:6c5b] -> [................................ff02::2] [ICMPV6][Unknown][Network][Acceptable]
@@ -526,7 +518,7 @@
update: [....54] [ip4][..udp] [..192.168.1.103][60356] -> [..192.168.1.254][...53] [DNS.WeChat][Unknown][Network][Fun]
update: [....68] [ip6][icmp6] [...............fe80::842:a3f3:a286:6c5b] -> [................................ff02::2] [ICMPV6][Unknown][Network][Acceptable]
DAEMON-EVENT: [Processed: 1552 pkts][ZLib][compressions: 0|diff: 0 / 0]
- DAEMON-EVENT: [Flows][active: 30 / 75|skipped: 0|!detected: 0|guessed: 11|detection-updates: 63|updates: 72]
+ DAEMON-EVENT: [Flows][active: 30 / 75|skipped: 0|!detected: 0|guessed: 11|detection-updates: 64|updates: 72]
new: [....76] [ip4][..tcp] [..192.168.1.103][54183] -> [203.205.151.162][..443] [MIDSTREAM]
detected: [....76] [ip4][..tcp] [..192.168.1.103][54183] -> [203.205.151.162][..443] [TLS][Unknown][Web][Safe]
RISK: Unidirectional Traffic
@@ -547,8 +539,8 @@
guessed: [....58] [ip4][..tcp] [..192.168.1.103][58039] -> [203.205.147.171][..443] [TLS][Tencent][Web][Safe]
end: [....58] [ip4][..tcp] [..192.168.1.103][58039] -> [203.205.147.171][..443]
end: [....72] [ip4][..tcp] [..192.168.1.103][58040] -> [203.205.147.171][..443] [TLS.WeChat][Tencent][Chat][Fun]
- end: [....73] [ip4][..tcp] [..192.168.1.103][58041] -> [203.205.147.171][..443]
- end: [....74] [ip4][..tcp] [..192.168.1.103][58042] -> [203.205.147.171][..443]
+ end: [....73] [ip4][..tcp] [..192.168.1.103][58041] -> [203.205.147.171][..443] [TLS.WeChat][Tencent][Chat][Fun]
+ end: [....74] [ip4][..tcp] [..192.168.1.103][58042] -> [203.205.147.171][..443] [TLS.WeChat][Tencent][Chat][Fun]
idle: [....70] [ip6][icmp6] [.....................................::] -> [......................ff02::1:ff86:6c5b] [ICMPV6][Unknown][Network][Acceptable]
idle: [....59] [ip4][..udp] [..192.168.1.100][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable]
idle: [.....2] [ip4][..udp] [..192.168.1.103][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable]
@@ -596,11 +588,14 @@
new: [....98] [ip6][..udp] [..............fe80::7a92:9cff:fe0f:a88e][.5353] -> [...............................ff02::fb][.5353]
detected: [....98] [ip6][..udp] [..............fe80::7a92:9cff:fe0f:a88e][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable][_googlecast._tcp.local]
update: [....84] [ip4][..udp] [..192.168.1.103][37578] -> [193.204.114.233][..123] [NTP][Unknown][System][Acceptable]
+ update: [....90] [ip4][..udp] [..192.168.1.103][43317] -> [..192.168.1.254][...53] [DNS.WeChat][Unknown][Network][Fun]
+ RISK: Unidirectional Traffic
+ update: [....89] [ip4][..udp] [..192.168.1.103][58165] -> [..192.168.1.254][...53] [DNS.WeChat][Unknown][Network][Fun]
+ RISK: Unidirectional Traffic
+ update: [....91] [ip4][..udp] [..192.168.1.103][56367] -> [..192.168.1.254][...53] [DNS.WeChat][Unknown][Network][Fun]
+ RISK: Unidirectional Traffic
+ update: [....92] [ip4][..udp] [..192.168.1.103][33915] -> [..192.168.1.254][...53] [DNS.WeChat][Unknown][Network][Fun]
RISK: Unidirectional Traffic
- update: [....90] [ip4][..udp] [..192.168.1.103][43317] -> [..192.168.1.254][...53]
- update: [....89] [ip4][..udp] [..192.168.1.103][58165] -> [..192.168.1.254][...53]
- update: [....91] [ip4][..udp] [..192.168.1.103][56367] -> [..192.168.1.254][...53]
- update: [....92] [ip4][..udp] [..192.168.1.103][33915] -> [..192.168.1.254][...53]
detected: [....85] [ip4][..tcp] [..192.168.1.103][58143] -> [.216.58.205.131][..443] [TLS][Google][Web][Safe]
RISK: Unidirectional Traffic
new: [....99] [ip4][..udp] [..192.168.1.103][45366] -> [..192.168.1.254][...53]
@@ -642,12 +637,14 @@
new: [...109] [ip4][..udp] [..192.168.1.103][53515] -> [..192.168.1.254][...53]
detected: [...109] [ip4][..udp] [..192.168.1.103][53515] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable][webpush.web.wechat.com.lan]
RISK: Unidirectional Traffic
- idle: [...105] [ip4][..udp] [..192.168.1.103][42589] -> [..192.168.1.254][...53]
- idle: [....98] [ip6][..udp] [..............fe80::7a92:9cff:fe0f:a88e][.5353] -> [...............................ff02::fb][.5353]
- end: [....85] [ip4][..tcp] [..192.168.1.103][58143] -> [.216.58.205.131][..443]
+ idle: [...105] [ip4][..udp] [..192.168.1.103][42589] -> [..192.168.1.254][...53] [DNS.Google][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....98] [ip6][..udp] [..............fe80::7a92:9cff:fe0f:a88e][.5353] -> [...............................ff02::fb][.5353] [MDNS][Unknown][Network][Acceptable]
+ end: [....85] [ip4][..tcp] [..192.168.1.103][58143] -> [.216.58.205.131][..443] [TLS][Google][Web][Safe]
+ RISK: Unidirectional Traffic
idle: [....84] [ip4][..udp] [..192.168.1.103][37578] -> [193.204.114.233][..123] [NTP][Unknown][System][Acceptable]
+ idle: [...106] [ip4][..udp] [..192.168.1.103][42856] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
- idle: [...106] [ip4][..udp] [..192.168.1.103][42856] -> [..192.168.1.254][...53]
idle: [....96] [ip4][....2] [..192.168.1.108] -> [.....224.0.0.22] [IGMP][Unknown][Network][Acceptable]
idle: [....95] [ip4][....2] [..192.168.1.100] -> [.....224.0.0.22] [IGMP][Unknown][Network][Acceptable]
idle: [....94] [ip4][....2] [..192.168.1.103] -> [.....224.0.0.22] [IGMP][Unknown][Network][Acceptable]
@@ -655,31 +652,44 @@
guessed: [....87] [ip4][..tcp] [..192.168.1.103][52020] -> [.95.101.180.179][...80] [HTTP][Unknown][Web][Acceptable][]
RISK: Unidirectional Traffic
end: [....87] [ip4][..tcp] [..192.168.1.103][52020] -> [.95.101.180.179][...80]
- idle: [...100] [ip4][..udp] [..192.168.1.103][59567] -> [..192.168.1.254][...53]
+ idle: [...100] [ip4][..udp] [..192.168.1.103][59567] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
idle: [...104] [ip4][..udp] [..192.168.1.100][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
- idle: [...109] [ip4][..udp] [..192.168.1.103][53515] -> [..192.168.1.254][...53]
- idle: [....90] [ip4][..udp] [..192.168.1.103][43317] -> [..192.168.1.254][...53]
- idle: [....99] [ip4][..udp] [..192.168.1.103][45366] -> [..192.168.1.254][...53]
+ idle: [...109] [ip4][..udp] [..192.168.1.103][53515] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....90] [ip4][..udp] [..192.168.1.103][43317] -> [..192.168.1.254][...53] [DNS.WeChat][Unknown][Network][Fun]
+ RISK: Unidirectional Traffic
+ idle: [....99] [ip4][..udp] [..192.168.1.103][45366] -> [..192.168.1.254][...53] [DNS.WeChat][Unknown][Network][Fun]
+ RISK: Unidirectional Traffic
guessed: [....75] [ip4][..tcp] [..192.168.1.103][58043] -> [203.205.147.171][..443] [TLS][Tencent][Web][Safe]
idle: [....75] [ip4][..tcp] [..192.168.1.103][58043] -> [203.205.147.171][..443]
guessed: [....12] [ip4][..tcp] [..192.168.1.103][36017] -> [.64.233.167.188][.5228] [Google][Google][Web][Acceptable]
idle: [....12] [ip4][..tcp] [..192.168.1.103][36017] -> [.64.233.167.188][.5228]
idle: [.....5] [ip4][..tcp] [..192.168.1.103][38657] -> [..172.217.22.14][..443] [TLS.Google][Google][Web][Acceptable]
idle: [....13] [ip4][..tcp] [203.205.151.162][..443] -> [..192.168.1.103][54058] [TLS][Unknown][Web][Safe]
- idle: [....97] [ip4][..udp] [..192.168.1.103][.5353] -> [....224.0.0.251][.5353]
+ idle: [....97] [ip4][..udp] [..192.168.1.103][.5353] -> [....224.0.0.251][.5353] [MDNS][Unknown][Network][Acceptable]
guessed: [....88] [ip4][..tcp] [..192.168.1.103][58226] -> [203.205.147.171][..443] [TLS][Tencent][Web][Safe]
RISK: Unidirectional Traffic
end: [....88] [ip4][..tcp] [..192.168.1.103][58226] -> [203.205.147.171][..443]
- idle: [....76] [ip4][..tcp] [..192.168.1.103][54183] -> [203.205.151.162][..443]
- idle: [...102] [ip4][..udp] [..192.168.1.103][43705] -> [..192.168.1.254][...53]
- idle: [...108] [ip4][..udp] [..192.168.1.103][41759] -> [..192.168.1.254][...53]
- idle: [....89] [ip4][..udp] [..192.168.1.103][58165] -> [..192.168.1.254][...53]
- idle: [...103] [ip4][..udp] [..192.168.1.103][44063] -> [..192.168.1.254][...53]
- idle: [....91] [ip4][..udp] [..192.168.1.103][56367] -> [..192.168.1.254][...53]
- idle: [...101] [ip4][..udp] [..192.168.1.103][42074] -> [..192.168.1.254][...53]
- idle: [....92] [ip4][..udp] [..192.168.1.103][33915] -> [..192.168.1.254][...53]
- idle: [...107] [ip4][..udp] [..192.168.1.103][44346] -> [..192.168.1.254][...53]
+ idle: [....76] [ip4][..tcp] [..192.168.1.103][54183] -> [203.205.151.162][..443] [TLS][Unknown][Web][Safe]
+ RISK: Unidirectional Traffic
+ idle: [...102] [ip4][..udp] [..192.168.1.103][43705] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [...108] [ip4][..udp] [..192.168.1.103][41759] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....89] [ip4][..udp] [..192.168.1.103][58165] -> [..192.168.1.254][...53] [DNS.WeChat][Unknown][Network][Fun]
+ RISK: Unidirectional Traffic
+ idle: [...103] [ip4][..udp] [..192.168.1.103][44063] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....91] [ip4][..udp] [..192.168.1.103][56367] -> [..192.168.1.254][...53] [DNS.WeChat][Unknown][Network][Fun]
+ RISK: Unidirectional Traffic
+ idle: [...101] [ip4][..udp] [..192.168.1.103][42074] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
+ idle: [....92] [ip4][..udp] [..192.168.1.103][33915] -> [..192.168.1.254][...53] [DNS.WeChat][Unknown][Network][Fun]
+ RISK: Unidirectional Traffic
+ idle: [...107] [ip4][..udp] [..192.168.1.103][44346] -> [..192.168.1.254][...53] [DNS][Unknown][Network][Acceptable]
+ RISK: Unidirectional Traffic
guessed: [....83] [ip4][..tcp] [..192.168.1.103][34981] -> [...95.101.34.33][...80] [HTTP][Unknown][Web][Acceptable][]
RISK: Unidirectional Traffic
end: [....83] [ip4][..tcp] [..192.168.1.103][34981] -> [...95.101.34.33][...80]
Powered by cgit, Themed by Ted Yin.