1 files changed, 25 insertions, 0 deletions

diff --git a/test/results/flow-info/malware.pcap.out b/test/results/flow-info/malware.pcap.out
new file mode 100644
index 000000000..7a5b16b4a
--- /dev/null
+++ b/test/results/flow-info/malware.pcap.out
@@ -0,0 +1,25 @@
+     DAEMON-EVENT: init
+     DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+     DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+              new: [.....1] [ip4][..udp] [....192.168.7.7][42370] -> [........1.1.1.1][...53] 
+         detected: [.....1] [ip4][..udp] [....192.168.7.7][42370] -> [........1.1.1.1][...53] [DNS][Network][Acceptable]
+ detection-update: [.....1] [ip4][..udp] [....192.168.7.7][42370] -> [........1.1.1.1][...53] [DNS][Network][Acceptable]
+              new: [.....2] [ip4][.icmp] [....192.168.7.7] -> [144.139.247.220] 
+         detected: [.....2] [ip4][.icmp] [....192.168.7.7] -> [144.139.247.220] [ICMP][Network][Acceptable]
+              new: [.....3] [ip4][..tcp] [....192.168.7.7][33706] -> [144.139.247.220][...80] 
+     DAEMON-EVENT: [Processed: 4 pkts][ZLib][compressions: 0|diff: 0 / 0]
+     DAEMON-EVENT: [Flows][active: 3 / 3|skipped: 0|!detected: 0|guessed: 0|detection-updates: 1|updates: 0]
+              new: [.....4] [ip4][..tcp] [....192.168.7.7][48394] -> [..67.215.92.210][...80] [MIDSTREAM] 
+         detected: [.....4] [ip4][..tcp] [....192.168.7.7][48394] -> [..67.215.92.210][...80] [HTTP.OpenDNS][Web][Acceptable]
+              new: [.....5] [ip4][..tcp] [....192.168.7.7][35236] -> [..67.215.92.210][..443] 
+         detected: [.....5] [ip4][..tcp] [....192.168.7.7][35236] -> [..67.215.92.210][..443] [TLS.OpenDNS][Web][Acceptable]
+ detection-update: [.....5] [ip4][..tcp] [....192.168.7.7][35236] -> [..67.215.92.210][..443] [TLS.OpenDNS][Web][Acceptable]
+ detection-update: [.....5] [ip4][..tcp] [....192.168.7.7][35236] -> [..67.215.92.210][..443] [TLS.OpenDNS][Network][Acceptable]
+                   RISK: TLS Cert Mismatch
+          guessed: [.....3] [ip4][..tcp] [....192.168.7.7][33706] -> [144.139.247.220][...80] [HTTP][Web][Acceptable]
+             idle: [.....3] [ip4][..tcp] [....192.168.7.7][33706] -> [144.139.247.220][...80] 
+              end: [.....5] [ip4][..tcp] [....192.168.7.7][35236] -> [..67.215.92.210][..443] 
+             idle: [.....2] [ip4][.icmp] [....192.168.7.7] -> [144.139.247.220] [ICMP][Network][Acceptable]
+             idle: [.....4] [ip4][..tcp] [....192.168.7.7][48394] -> [..67.215.92.210][...80] 
+             idle: [.....1] [ip4][..udp] [....192.168.7.7][42370] -> [........1.1.1.1][...53] [DNS][Network][Acceptable]
+     DAEMON-EVENT: shutdown