summaryrefslogtreecommitdiff
path: root/test/results/flow-info/signal.pcap.out
diff options
context:
space:
mode:
Diffstat (limited to 'test/results/flow-info/signal.pcap.out')
-rw-r--r--test/results/flow-info/signal.pcap.out120
1 files changed, 120 insertions, 0 deletions
diff --git a/test/results/flow-info/signal.pcap.out b/test/results/flow-info/signal.pcap.out
new file mode 100644
index 000000000..73730f6be
--- /dev/null
+++ b/test/results/flow-info/signal.pcap.out
@@ -0,0 +1,120 @@
+ DAEMON-EVENT: init
+ DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
+ DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
+ new: [.....1] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67]
+ detected: [.....1] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Network][Acceptable]
+ new: [.....2] [ip4][..udp] [...192.168.2.17][60793] -> [....192.168.2.1][...53]
+ detected: [.....2] [ip4][..udp] [...192.168.2.17][60793] -> [....192.168.2.1][...53] [DNS][Network][Acceptable]
+ new: [.....3] [ip4][..tcp] [...192.168.2.17][49226] -> [.34.225.240.173][..443]
+ new: [.....4] [ip4][..tcp] [...192.168.2.17][57018] -> [....23.57.24.16][..443]
+ new: [.....5] [ip4][..tcp] [...192.168.2.17][57019] -> [.34.225.240.173][..443]
+ new: [.....6] [ip4][..tcp] [...192.168.2.17][57020] -> [.34.225.240.173][..443]
+ new: [.....7] [ip4][..tcp] [...192.168.2.17][57021] -> [.34.225.240.173][..443]
+ detection-update: [.....2] [ip4][..udp] [...192.168.2.17][60793] -> [....192.168.2.1][...53] [DNS][Network][Acceptable]
+ detected: [.....4] [ip4][..tcp] [...192.168.2.17][57018] -> [....23.57.24.16][..443] [TLS.AppleiTunes][Streaming][Fun]
+ detection-update: [.....4] [ip4][..tcp] [...192.168.2.17][57018] -> [....23.57.24.16][..443] [TLS.AppleiTunes][Streaming][Fun]
+ detected: [.....3] [ip4][..tcp] [...192.168.2.17][49226] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun]
+ RISK: TLS (probably) Not Carrying HTTPS
+ detected: [.....5] [ip4][..tcp] [...192.168.2.17][57019] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun]
+ detected: [.....7] [ip4][..tcp] [...192.168.2.17][57021] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun]
+ detected: [.....6] [ip4][..tcp] [...192.168.2.17][57020] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun]
+ analyse: [.....4] [ip4][..tcp] [...192.168.2.17][57018] -> [....23.57.24.16][..443] [TLS.AppleiTunes][Streaming][Fun]
+ [min|max|avg|stddev]
+ [IAT(flow)...: 0.000| 0.052| 0.012| 0.020]
+ [IAT(c->s)...: 0.000| 0.048| 0.013| 0.020][IAT(s->c)...: 0.000| 0.052| 0.012| 0.020]
+ [PKTLEN(c->s): 66.000| 583.000| 122.600| 124.700][PKTLEN(s->c): 66.000|1506.000| 732.000| 587.100]
+ [BINS(c->s)..: 10,3,1,0,1,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+ [BINS(s->c)..: 4,0,1,0,0,0,0,0,2,0,0,1,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,2,0,0,0,0,0,1,0,0,0,0,0,0,4,0,0]
+ detection-update: [.....3] [ip4][..tcp] [...192.168.2.17][49226] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun]
+ RISK: TLS (probably) Not Carrying HTTPS
+ detection-update: [.....3] [ip4][..tcp] [...192.168.2.17][49226] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun]
+ RISK: TLS (probably) Not Carrying HTTPS
+ detection-update: [.....5] [ip4][..tcp] [...192.168.2.17][57019] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun]
+ detection-update: [.....5] [ip4][..tcp] [...192.168.2.17][57019] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun]
+ detection-update: [.....7] [ip4][..tcp] [...192.168.2.17][57021] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun]
+ detection-update: [.....7] [ip4][..tcp] [...192.168.2.17][57021] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun]
+ detection-update: [.....6] [ip4][..tcp] [...192.168.2.17][57020] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun]
+ detection-update: [.....6] [ip4][..tcp] [...192.168.2.17][57020] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun]
+ new: [.....8] [ip4][..tcp] [...192.168.2.17][56996] -> [.17.248.146.144][..443] [MIDSTREAM]
+ detected: [.....8] [ip4][..tcp] [...192.168.2.17][56996] -> [.17.248.146.144][..443] [TLS.Apple][Web][Safe]
+ new: [.....9] [ip4][..tcp] [...192.168.2.17][57017] -> [...2.18.232.118][..443] [MIDSTREAM]
+ detected: [.....9] [ip4][..tcp] [...192.168.2.17][57017] -> [...2.18.232.118][..443] [TLS][Web][Safe]
+ new: [....10] [ip4][..tcp] [...192.168.2.17][49227] -> [....35.169.3.40][..443]
+ new: [....11] [ip4][..tcp] [...192.168.2.17][57022] -> [....23.57.24.16][..443]
+ new: [....12] [ip4][..udp] [...192.168.2.17][56263] -> [....192.168.2.1][...53]
+ detected: [....12] [ip4][..udp] [...192.168.2.17][56263] -> [....192.168.2.1][...53] [DNS.Signal][Chat][Fun]
+ new: [....13] [ip4][..tcp] [...192.168.2.17][57023] -> [....35.169.3.40][..443]
+ new: [....14] [ip4][..tcp] [...192.168.2.17][57024] -> [....35.169.3.40][..443]
+ new: [....15] [ip4][..tcp] [...192.168.2.17][57025] -> [....35.169.3.40][..443]
+ detection-update: [....12] [ip4][..udp] [...192.168.2.17][56263] -> [....192.168.2.1][...53] [DNS.Signal][Chat][Fun]
+ new: [....16] [ip4][.icmp] [...192.168.2.17] -> [....192.168.2.1]
+ detected: [....16] [ip4][.icmp] [...192.168.2.17] -> [....192.168.2.1] [ICMP][Network][Acceptable]
+ detected: [....11] [ip4][..tcp] [...192.168.2.17][57022] -> [....23.57.24.16][..443] [TLS.AppleiTunes][Streaming][Fun]
+ detection-update: [....11] [ip4][..tcp] [...192.168.2.17][57022] -> [....23.57.24.16][..443] [TLS.AppleiTunes][Streaming][Fun]
+ detected: [....10] [ip4][..tcp] [...192.168.2.17][49227] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
+ RISK: TLS (probably) Not Carrying HTTPS
+ detected: [....13] [ip4][..tcp] [...192.168.2.17][57023] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
+ detected: [....14] [ip4][..tcp] [...192.168.2.17][57024] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
+ detected: [....15] [ip4][..tcp] [...192.168.2.17][57025] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
+ analyse: [....11] [ip4][..tcp] [...192.168.2.17][57022] -> [....23.57.24.16][..443] [TLS.AppleiTunes][Streaming][Fun]
+ [min|max|avg|stddev]
+ [IAT(flow)...: 0.000| 0.101| 0.015| 0.025]
+ [IAT(c->s)...: 0.000| 0.101| 0.017| 0.027][IAT(s->c)...: 0.000| 0.083| 0.014| 0.023]
+ [PKTLEN(c->s): 66.000| 583.000| 125.100| 128.200][PKTLEN(s->c): 66.000|1506.000| 728.500| 569.700]
+ [BINS(c->s)..: 9,3,1,0,1,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+ [BINS(s->c)..: 4,0,1,0,0,0,0,0,2,0,0,1,0,0,0,0,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,0,2,0,0,0,0,0,1,0,0,0,0,0,0,4,0,0]
+ detection-update: [....10] [ip4][..tcp] [...192.168.2.17][49227] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
+ RISK: TLS (probably) Not Carrying HTTPS
+ detection-update: [....10] [ip4][..tcp] [...192.168.2.17][49227] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
+ RISK: TLS (probably) Not Carrying HTTPS
+ detection-update: [....13] [ip4][..tcp] [...192.168.2.17][57023] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
+ detection-update: [....13] [ip4][..tcp] [...192.168.2.17][57023] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
+ detection-update: [....15] [ip4][..tcp] [...192.168.2.17][57025] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
+ detection-update: [....15] [ip4][..tcp] [...192.168.2.17][57025] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
+ detection-update: [....14] [ip4][..tcp] [...192.168.2.17][57024] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
+ detection-update: [....14] [ip4][..tcp] [...192.168.2.17][57024] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
+ new: [....17] [ip4][..tcp] [...192.168.2.17][57026] -> [....35.169.3.40][..443]
+ detected: [....17] [ip4][..tcp] [...192.168.2.17][57026] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
+ detection-update: [....17] [ip4][..tcp] [...192.168.2.17][57026] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
+ detection-update: [....17] [ip4][..tcp] [...192.168.2.17][57026] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
+ analyse: [....17] [ip4][..tcp] [...192.168.2.17][57026] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
+ [min|max|avg|stddev]
+ [IAT(flow)...: 0.000| 0.115| 0.033| 0.050]
+ [IAT(c->s)...: 0.000| 0.112| 0.024| 0.045][IAT(s->c)...: 0.000| 0.115| 0.047| 0.054]
+ [PKTLEN(c->s): 66.000|1506.000| 681.200| 632.900][PKTLEN(s->c): 66.000|1506.000| 286.300| 463.400]
+ [BINS(c->s)..: 4,3,1,1,0,0,0,1,0,1,0,0,0,0,0,0,1,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,7,0,0]
+ [BINS(s->c)..: 7,2,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0]
+ new: [....18] [ip4][..tcp] [....23.57.24.16][..443] -> [...192.168.2.17][57016] [MIDSTREAM]
+ detected: [....18] [ip4][..tcp] [....23.57.24.16][..443] -> [...192.168.2.17][57016] [TLS][Web][Safe]
+ new: [....19] [ip4][..tcp] [...192.168.2.17][57027] -> [...13.35.253.42][..443]
+ detected: [....19] [ip4][..tcp] [...192.168.2.17][57027] -> [...13.35.253.42][..443] [TLS.Signal][Chat][Fun]
+ detection-update: [....19] [ip4][..tcp] [...192.168.2.17][57027] -> [...13.35.253.42][..443] [TLS.Signal][Chat][Fun]
+ detection-update: [....19] [ip4][..tcp] [...192.168.2.17][57027] -> [...13.35.253.42][..443] [TLS.Signal][Chat][Fun]
+ analyse: [....19] [ip4][..tcp] [...192.168.2.17][57027] -> [...13.35.253.42][..443]
+ [min|max|avg|stddev]
+ [IAT(flow)...: 0.000| 0.043| 0.012| 0.016]
+ [IAT(c->s)...: 0.000| 0.040| 0.009| 0.014][IAT(s->c)...: 0.000| 0.043| 0.016| 0.018]
+ [PKTLEN(c->s): 66.000|1506.000| 652.400| 646.100][PKTLEN(s->c): 66.000|1506.000| 278.400| 450.000]
+ [BINS(c->s)..: 5,4,0,1,0,1,0,0,0,0,0,0,0,0,0,0,1,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,7,0,0]
+ [BINS(s->c)..: 7,2,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0]
+ detection-update: [....19] [ip4][..tcp] [...192.168.2.17][57027] -> [...13.35.253.42][..443] [TLS.Signal][Chat][Fun]
+ idle: [.....1] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Network][Acceptable]
+ end: [.....8] [ip4][..tcp] [...192.168.2.17][56996] -> [.17.248.146.144][..443] [TLS.Apple][Web][Safe]
+ idle: [....16] [ip4][.icmp] [...192.168.2.17] -> [....192.168.2.1] [ICMP][Network][Acceptable]
+ end: [....18] [ip4][..tcp] [....23.57.24.16][..443] -> [...192.168.2.17][57016]
+ end: [.....4] [ip4][..tcp] [...192.168.2.17][57018] -> [....23.57.24.16][..443] [TLS.AppleiTunes][Streaming][Fun]
+ end: [....11] [ip4][..tcp] [...192.168.2.17][57022] -> [....23.57.24.16][..443] [TLS.AppleiTunes][Streaming][Fun]
+ end: [.....5] [ip4][..tcp] [...192.168.2.17][57019] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun]
+ end: [.....6] [ip4][..tcp] [...192.168.2.17][57020] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun]
+ end: [.....7] [ip4][..tcp] [...192.168.2.17][57021] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun]
+ idle: [....13] [ip4][..tcp] [...192.168.2.17][57023] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
+ idle: [....14] [ip4][..tcp] [...192.168.2.17][57024] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
+ idle: [....15] [ip4][..tcp] [...192.168.2.17][57025] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
+ idle: [....17] [ip4][..tcp] [...192.168.2.17][57026] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
+ end: [.....9] [ip4][..tcp] [...192.168.2.17][57017] -> [...2.18.232.118][..443] [TLS][Web][Safe]
+ end: [.....3] [ip4][..tcp] [...192.168.2.17][49226] -> [.34.225.240.173][..443]
+ idle: [....10] [ip4][..tcp] [...192.168.2.17][49227] -> [....35.169.3.40][..443]
+ idle: [....19] [ip4][..tcp] [...192.168.2.17][57027] -> [...13.35.253.42][..443] [TLS.Signal][Chat][Fun]
+ idle: [....12] [ip4][..udp] [...192.168.2.17][56263] -> [....192.168.2.1][...53] [DNS.Signal][Chat][Fun]
+ idle: [.....2] [ip4][..udp] [...192.168.2.17][60793] -> [....192.168.2.1][...53] [DNS][Network][Acceptable]
+ DAEMON-EVENT: shutdown
Powered by cgit, Themed by Ted Yin.