aboutsummaryrefslogtreecommitdiff
path: root/test/results/flow-info/signal.pcap.out
diff options
context:
space:
mode:
Diffstat (limited to 'test/results/flow-info/signal.pcap.out')
-rw-r--r--test/results/flow-info/signal.pcap.out80
1 files changed, 40 insertions, 40 deletions
diff --git a/test/results/flow-info/signal.pcap.out b/test/results/flow-info/signal.pcap.out
index 123390a31..64b6b21cf 100644
--- a/test/results/flow-info/signal.pcap.out
+++ b/test/results/flow-info/signal.pcap.out
@@ -2,22 +2,22 @@
DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67]
- detected: [.....1] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Network][Acceptable]
+ detected: [.....1] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Network][Acceptable][lucas-imac]
new: [.....2] [ip4][..udp] [...192.168.2.17][60793] -> [....192.168.2.1][...53]
- detected: [.....2] [ip4][..udp] [...192.168.2.17][60793] -> [....192.168.2.1][...53] [DNS][Network][Acceptable]
+ detected: [.....2] [ip4][..udp] [...192.168.2.17][60793] -> [....192.168.2.1][...53] [DNS][Network][Acceptable][e673.dsce9.akamaiedge.net]
new: [.....3] [ip4][..tcp] [...192.168.2.17][49226] -> [.34.225.240.173][..443]
new: [.....4] [ip4][..tcp] [...192.168.2.17][57018] -> [....23.57.24.16][..443]
new: [.....5] [ip4][..tcp] [...192.168.2.17][57019] -> [.34.225.240.173][..443]
new: [.....6] [ip4][..tcp] [...192.168.2.17][57020] -> [.34.225.240.173][..443]
new: [.....7] [ip4][..tcp] [...192.168.2.17][57021] -> [.34.225.240.173][..443]
- detection-update: [.....2] [ip4][..udp] [...192.168.2.17][60793] -> [....192.168.2.1][...53] [DNS][Network][Acceptable]
- detected: [.....4] [ip4][..tcp] [...192.168.2.17][57018] -> [....23.57.24.16][..443] [TLS.AppleiTunes][Streaming][Fun]
- detection-update: [.....4] [ip4][..tcp] [...192.168.2.17][57018] -> [....23.57.24.16][..443] [TLS.AppleiTunes][Streaming][Fun]
- detected: [.....3] [ip4][..tcp] [...192.168.2.17][49226] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun]
+ detection-update: [.....2] [ip4][..udp] [...192.168.2.17][60793] -> [....192.168.2.1][...53] [DNS][Network][Acceptable][e673.dsce9.akamaiedge.net]
+ detected: [.....4] [ip4][..tcp] [...192.168.2.17][57018] -> [....23.57.24.16][..443] [TLS.AppleiTunes][Streaming][Fun][itunes.apple.com]
+ detection-update: [.....4] [ip4][..tcp] [...192.168.2.17][57018] -> [....23.57.24.16][..443] [TLS.AppleiTunes][Streaming][Fun][itunes.apple.com]
+ detected: [.....3] [ip4][..tcp] [...192.168.2.17][49226] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun][textsecure-service.whispersystems.org]
RISK: TLS (probably) Not Carrying HTTPS
- detected: [.....5] [ip4][..tcp] [...192.168.2.17][57019] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun]
- detected: [.....7] [ip4][..tcp] [...192.168.2.17][57021] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun]
- detected: [.....6] [ip4][..tcp] [...192.168.2.17][57020] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun]
+ detected: [.....5] [ip4][..tcp] [...192.168.2.17][57019] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun][textsecure-service.whispersystems.org]
+ detected: [.....7] [ip4][..tcp] [...192.168.2.17][57021] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun][textsecure-service.whispersystems.org]
+ detected: [.....6] [ip4][..tcp] [...192.168.2.17][57020] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun][textsecure-service.whispersystems.org]
analyse: [.....4] [ip4][..tcp] [...192.168.2.17][57018] -> [....23.57.24.16][..443] [TLS.AppleiTunes][Streaming][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.052| 0.012| 0.020| 399.390| 3.200]
@@ -28,16 +28,16 @@
[IATS(ms)....: 44.2,46.0,0.1,45.6,0.8,0.2,0.3,0.2,47.8,0.0,0.1,46.0,44.7,7.8,1.7,0.1,0.4,0.1,52.3,0.0,1.1,0.0,42.6,0.1,0.7,0.5,0.1,0.9,0.1,0.4,0.0]
[PKTLENS.....: 64,60,52,569,52,1492,1492,1268,1492,52,52,52,659,52,132,98,95,87,193,323,323,52,122,52,52,52,52,83,1098,1098,1492,413]
[ENTROPIES...: 4.5,5.3,5.1,4.4,5.2,7.8,7.9,7.8,7.9,5.1,5.1,5.0,7.6,5.2,6.3,5.8,5.9,5.8,6.9,7.3,7.4,5.1,6.4,5.1,5.1,5.0,5.0,5.6,7.8,7.8,7.9,7.5]
- detection-update: [.....3] [ip4][..tcp] [...192.168.2.17][49226] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun]
+ detection-update: [.....3] [ip4][..tcp] [...192.168.2.17][49226] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun][textsecure-service.whispersystems.org]
RISK: TLS (probably) Not Carrying HTTPS
- detection-update: [.....3] [ip4][..tcp] [...192.168.2.17][49226] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun]
+ detection-update: [.....3] [ip4][..tcp] [...192.168.2.17][49226] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun][textsecure-service.whispersystems.org]
RISK: TLS (probably) Not Carrying HTTPS
- detection-update: [.....5] [ip4][..tcp] [...192.168.2.17][57019] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun]
- detection-update: [.....5] [ip4][..tcp] [...192.168.2.17][57019] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun]
- detection-update: [.....7] [ip4][..tcp] [...192.168.2.17][57021] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun]
- detection-update: [.....7] [ip4][..tcp] [...192.168.2.17][57021] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun]
- detection-update: [.....6] [ip4][..tcp] [...192.168.2.17][57020] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun]
- detection-update: [.....6] [ip4][..tcp] [...192.168.2.17][57020] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun]
+ detection-update: [.....5] [ip4][..tcp] [...192.168.2.17][57019] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun][textsecure-service.whispersystems.org]
+ detection-update: [.....5] [ip4][..tcp] [...192.168.2.17][57019] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun][textsecure-service.whispersystems.org]
+ detection-update: [.....7] [ip4][..tcp] [...192.168.2.17][57021] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun][textsecure-service.whispersystems.org]
+ detection-update: [.....7] [ip4][..tcp] [...192.168.2.17][57021] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun][textsecure-service.whispersystems.org]
+ detection-update: [.....6] [ip4][..tcp] [...192.168.2.17][57020] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun][textsecure-service.whispersystems.org]
+ detection-update: [.....6] [ip4][..tcp] [...192.168.2.17][57020] -> [.34.225.240.173][..443] [TLS.Signal][Chat][Fun][textsecure-service.whispersystems.org]
new: [.....8] [ip4][..tcp] [...192.168.2.17][56996] -> [.17.248.146.144][..443] [MIDSTREAM]
detected: [.....8] [ip4][..tcp] [...192.168.2.17][56996] -> [.17.248.146.144][..443] [TLS.Apple][Web][Safe]
new: [.....9] [ip4][..tcp] [...192.168.2.17][57017] -> [...2.18.232.118][..443] [MIDSTREAM]
@@ -45,20 +45,20 @@
new: [....10] [ip4][..tcp] [...192.168.2.17][49227] -> [....35.169.3.40][..443]
new: [....11] [ip4][..tcp] [...192.168.2.17][57022] -> [....23.57.24.16][..443]
new: [....12] [ip4][..udp] [...192.168.2.17][56263] -> [....192.168.2.1][...53]
- detected: [....12] [ip4][..udp] [...192.168.2.17][56263] -> [....192.168.2.1][...53] [DNS.Signal][Chat][Fun]
+ detected: [....12] [ip4][..udp] [...192.168.2.17][56263] -> [....192.168.2.1][...53] [DNS.Signal][Chat][Fun][textsecure-service.whispersystems.org]
new: [....13] [ip4][..tcp] [...192.168.2.17][57023] -> [....35.169.3.40][..443]
new: [....14] [ip4][..tcp] [...192.168.2.17][57024] -> [....35.169.3.40][..443]
new: [....15] [ip4][..tcp] [...192.168.2.17][57025] -> [....35.169.3.40][..443]
- detection-update: [....12] [ip4][..udp] [...192.168.2.17][56263] -> [....192.168.2.1][...53] [DNS.Signal][Chat][Fun]
+ detection-update: [....12] [ip4][..udp] [...192.168.2.17][56263] -> [....192.168.2.1][...53] [DNS.Signal][Chat][Fun][textsecure-service.whispersystems.org]
new: [....16] [ip4][.icmp] [...192.168.2.17] -> [....192.168.2.1]
detected: [....16] [ip4][.icmp] [...192.168.2.17] -> [....192.168.2.1] [ICMP][Network][Acceptable]
- detected: [....11] [ip4][..tcp] [...192.168.2.17][57022] -> [....23.57.24.16][..443] [TLS.AppleiTunes][Streaming][Fun]
- detection-update: [....11] [ip4][..tcp] [...192.168.2.17][57022] -> [....23.57.24.16][..443] [TLS.AppleiTunes][Streaming][Fun]
- detected: [....10] [ip4][..tcp] [...192.168.2.17][49227] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
+ detected: [....11] [ip4][..tcp] [...192.168.2.17][57022] -> [....23.57.24.16][..443] [TLS.AppleiTunes][Streaming][Fun][itunes.apple.com]
+ detection-update: [....11] [ip4][..tcp] [...192.168.2.17][57022] -> [....23.57.24.16][..443] [TLS.AppleiTunes][Streaming][Fun][itunes.apple.com]
+ detected: [....10] [ip4][..tcp] [...192.168.2.17][49227] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun][textsecure-service.whispersystems.org]
RISK: TLS (probably) Not Carrying HTTPS
- detected: [....13] [ip4][..tcp] [...192.168.2.17][57023] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
- detected: [....14] [ip4][..tcp] [...192.168.2.17][57024] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
- detected: [....15] [ip4][..tcp] [...192.168.2.17][57025] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
+ detected: [....13] [ip4][..tcp] [...192.168.2.17][57023] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun][textsecure-service.whispersystems.org]
+ detected: [....14] [ip4][..tcp] [...192.168.2.17][57024] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun][textsecure-service.whispersystems.org]
+ detected: [....15] [ip4][..tcp] [...192.168.2.17][57025] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun][textsecure-service.whispersystems.org]
analyse: [....11] [ip4][..tcp] [...192.168.2.17][57022] -> [....23.57.24.16][..443] [TLS.AppleiTunes][Streaming][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.101| 0.015| 0.025| 625.062| 3.300]
@@ -69,20 +69,20 @@
[IATS(ms)....: 34.9,37.7,0.1,37.4,0.8,0.2,0.3,0.2,37.0,0.2,34.8,100.7,83.3,17.6,1.1,2.5,0.1,0.4,0.1,36.0,0.0,31.6,0.5,2.4,0.0,0.5,2.2,1.1,0.2,0.2,0.0]
[PKTLENS.....: 64,60,52,569,52,1492,1492,1268,1492,52,52,659,52,659,64,132,98,95,87,193,323,323,52,52,52,122,52,52,1098,1098,1492,413]
[ENTROPIES...: 4.5,5.2,5.1,4.4,5.2,7.9,7.9,7.8,7.9,5.1,5.1,7.7,5.1,7.7,5.0,6.4,6.0,5.9,5.8,6.8,7.3,7.3,5.2,5.1,5.2,6.3,5.1,5.1,7.8,7.8,7.9,7.5]
- detection-update: [....10] [ip4][..tcp] [...192.168.2.17][49227] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
+ detection-update: [....10] [ip4][..tcp] [...192.168.2.17][49227] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun][textsecure-service.whispersystems.org]
RISK: TLS (probably) Not Carrying HTTPS
- detection-update: [....10] [ip4][..tcp] [...192.168.2.17][49227] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
+ detection-update: [....10] [ip4][..tcp] [...192.168.2.17][49227] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun][textsecure-service.whispersystems.org]
RISK: TLS (probably) Not Carrying HTTPS
- detection-update: [....13] [ip4][..tcp] [...192.168.2.17][57023] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
- detection-update: [....13] [ip4][..tcp] [...192.168.2.17][57023] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
- detection-update: [....15] [ip4][..tcp] [...192.168.2.17][57025] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
- detection-update: [....15] [ip4][..tcp] [...192.168.2.17][57025] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
- detection-update: [....14] [ip4][..tcp] [...192.168.2.17][57024] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
- detection-update: [....14] [ip4][..tcp] [...192.168.2.17][57024] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
+ detection-update: [....13] [ip4][..tcp] [...192.168.2.17][57023] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun][textsecure-service.whispersystems.org]
+ detection-update: [....13] [ip4][..tcp] [...192.168.2.17][57023] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun][textsecure-service.whispersystems.org]
+ detection-update: [....15] [ip4][..tcp] [...192.168.2.17][57025] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun][textsecure-service.whispersystems.org]
+ detection-update: [....15] [ip4][..tcp] [...192.168.2.17][57025] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun][textsecure-service.whispersystems.org]
+ detection-update: [....14] [ip4][..tcp] [...192.168.2.17][57024] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun][textsecure-service.whispersystems.org]
+ detection-update: [....14] [ip4][..tcp] [...192.168.2.17][57024] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun][textsecure-service.whispersystems.org]
new: [....17] [ip4][..tcp] [...192.168.2.17][57026] -> [....35.169.3.40][..443]
- detected: [....17] [ip4][..tcp] [...192.168.2.17][57026] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
- detection-update: [....17] [ip4][..tcp] [...192.168.2.17][57026] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
- detection-update: [....17] [ip4][..tcp] [...192.168.2.17][57026] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
+ detected: [....17] [ip4][..tcp] [...192.168.2.17][57026] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun][textsecure-service.whispersystems.org]
+ detection-update: [....17] [ip4][..tcp] [...192.168.2.17][57026] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun][textsecure-service.whispersystems.org]
+ detection-update: [....17] [ip4][..tcp] [...192.168.2.17][57026] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun][textsecure-service.whispersystems.org]
analyse: [....17] [ip4][..tcp] [...192.168.2.17][57026] -> [....35.169.3.40][..443] [TLS.Signal][Chat][Fun]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.115| 0.033| 0.050| 2490.513| 3.300]
@@ -96,9 +96,9 @@
new: [....18] [ip4][..tcp] [....23.57.24.16][..443] -> [...192.168.2.17][57016] [MIDSTREAM]
detected: [....18] [ip4][..tcp] [....23.57.24.16][..443] -> [...192.168.2.17][57016] [TLS][Web][Safe]
new: [....19] [ip4][..tcp] [...192.168.2.17][57027] -> [...13.35.253.42][..443]
- detected: [....19] [ip4][..tcp] [...192.168.2.17][57027] -> [...13.35.253.42][..443] [TLS.Signal][Chat][Fun]
- detection-update: [....19] [ip4][..tcp] [...192.168.2.17][57027] -> [...13.35.253.42][..443] [TLS.Signal][Chat][Fun]
- detection-update: [....19] [ip4][..tcp] [...192.168.2.17][57027] -> [...13.35.253.42][..443] [TLS.Signal][Chat][Fun]
+ detected: [....19] [ip4][..tcp] [...192.168.2.17][57027] -> [...13.35.253.42][..443] [TLS.Signal][Chat][Fun][cdn.signal.org]
+ detection-update: [....19] [ip4][..tcp] [...192.168.2.17][57027] -> [...13.35.253.42][..443] [TLS.Signal][Chat][Fun][cdn.signal.org]
+ detection-update: [....19] [ip4][..tcp] [...192.168.2.17][57027] -> [...13.35.253.42][..443] [TLS.Signal][Chat][Fun][cdn.signal.org]
analyse: [....19] [ip4][..tcp] [...192.168.2.17][57027] -> [...13.35.253.42][..443]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.043| 0.012| 0.016| 257.340| 3.700]
@@ -109,7 +109,7 @@
[IATS(ms)....: 32.9,39.8,0.1,40.0,2.7,0.0,39.4,7.8,43.4,0.4,0.0,34.7,0.1,7.5,0.5,0.0,0.1,0.4,5.9,0.1,0.4,42.2,0.0,0.5,26.8,7.6,10.7,0.1,0.3,0.3,26.1]
[PKTLENS.....: 64,60,52,569,52,1492,995,52,178,52,103,121,52,52,105,102,94,243,90,1492,1492,1492,52,90,52,671,52,1492,1492,1492,1492,52]
[ENTROPIES...: 4.4,5.2,5.0,4.3,5.1,7.1,7.7,5.1,6.3,5.1,6.0,6.4,5.1,5.1,5.7,5.6,5.5,7.0,5.4,7.9,7.9,7.9,4.9,5.9,5.1,7.6,5.1,7.9,7.9,7.9,7.9,5.1]
- detection-update: [....19] [ip4][..tcp] [...192.168.2.17][57027] -> [...13.35.253.42][..443] [TLS.Signal][Chat][Fun]
+ detection-update: [....19] [ip4][..tcp] [...192.168.2.17][57027] -> [...13.35.253.42][..443] [TLS.Signal][Chat][Fun][cdn.signal.org]
idle: [.....1] [ip4][..udp] [........0.0.0.0][...68] -> [255.255.255.255][...67] [DHCP][Network][Acceptable]
end: [.....8] [ip4][..tcp] [...192.168.2.17][56996] -> [.17.248.146.144][..443] [TLS.Apple][Web][Safe]
idle: [....16] [ip4][.icmp] [...192.168.2.17] -> [....192.168.2.1] [ICMP][Network][Acceptable]
Powered by cgit, Themed by Ted Yin.