aboutsummaryrefslogtreecommitdiff
path: root/test/results/flow-info/skype.pcap.out
diff options
context:
space:
mode:
Diffstat (limited to 'test/results/flow-info/skype.pcap.out')
-rw-r--r--test/results/flow-info/skype.pcap.out102
1 files changed, 51 insertions, 51 deletions
diff --git a/test/results/flow-info/skype.pcap.out b/test/results/flow-info/skype.pcap.out
index 7949b425c..05607466f 100644
--- a/test/results/flow-info/skype.pcap.out
+++ b/test/results/flow-info/skype.pcap.out
@@ -2,47 +2,47 @@
DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [...192.168.1.34][49163] -> [....192.168.1.1][...53]
- detected: [.....1] [ip4][..udp] [...192.168.1.34][49163] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
+ detected: [.....1] [ip4][..udp] [...192.168.1.34][49163] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][b.config.skype.com]
new: [.....2] [ip4][..udp] [...192.168.1.34][57406] -> [....192.168.1.1][...53]
- detected: [.....2] [ip4][..udp] [...192.168.1.34][57406] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
+ detected: [.....2] [ip4][..udp] [...192.168.1.34][57406] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][b.config.skype.com]
new: [.....3] [ip4][..udp] [...192.168.1.34][55711] -> [....192.168.1.1][...53]
- detected: [.....3] [ip4][..udp] [...192.168.1.34][55711] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
+ detected: [.....3] [ip4][..udp] [...192.168.1.34][55711] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][conn.skype.akadns.net]
new: [.....4] [ip4][..udp] [...192.168.1.34][52850] -> [....192.168.1.1][...53]
- detected: [.....4] [ip4][..udp] [...192.168.1.34][52850] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
+ detected: [.....4] [ip4][..udp] [...192.168.1.34][52850] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][conn.skype.akadns.net]
new: [.....5] [ip4][..udp] [...192.168.1.34][54396] -> [....192.168.1.1][...53]
- detected: [.....5] [ip4][..udp] [...192.168.1.34][54396] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
+ detected: [.....5] [ip4][..udp] [...192.168.1.34][54396] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][api.skype.com]
new: [.....6] [ip4][..udp] [...192.168.1.34][65426] -> [....192.168.1.1][...53]
- detected: [.....6] [ip4][..udp] [...192.168.1.34][65426] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
+ detected: [.....6] [ip4][..udp] [...192.168.1.34][65426] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][api.skype.com]
new: [.....7] [ip4][..udp] [...192.168.1.34][64085] -> [....192.168.1.1][...53]
- detected: [.....7] [ip4][..udp] [...192.168.1.34][64085] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
+ detected: [.....7] [ip4][..udp] [...192.168.1.34][64085] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][e7768.b.akamaiedge.net]
new: [.....8] [ip4][..udp] [...192.168.1.34][58681] -> [....192.168.1.1][...53]
- detected: [.....8] [ip4][..udp] [...192.168.1.34][58681] -> [....192.168.1.1][...53] [DNS][Network][Acceptable]
+ detected: [.....8] [ip4][..udp] [...192.168.1.34][58681] -> [....192.168.1.1][...53] [DNS][Network][Acceptable][db3msgr5011709.gateway.messenger.live.com]
new: [.....9] [ip4][..tcp] [...192.168.1.34][50026] -> [...65.55.223.33][40002]
new: [....10] [ip4][..udp] [...192.168.1.34][49793] -> [....192.168.1.1][...53]
- detected: [....10] [ip4][..udp] [...192.168.1.34][49793] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
+ detected: [....10] [ip4][..udp] [...192.168.1.34][49793] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][dsn4.d.skype.net]
new: [....11] [ip4][..udp] [...192.168.1.34][65045] -> [....192.168.1.1][...53]
- detected: [....11] [ip4][..udp] [...192.168.1.34][65045] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
- detection-update: [.....7] [ip4][..udp] [...192.168.1.34][64085] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
+ detected: [....11] [ip4][..udp] [...192.168.1.34][65045] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][dsn4.d.skype.net]
+ detection-update: [.....7] [ip4][..udp] [...192.168.1.34][64085] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][e7768.b.akamaiedge.net]
new: [....12] [ip4][..tcp] [...192.168.1.34][50027] -> [...23.223.73.34][..443]
new: [....13] [ip4][..udp] [...192.168.1.34][49990] -> [....192.168.1.1][...53]
- detected: [....13] [ip4][..udp] [...192.168.1.34][49990] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
+ detected: [....13] [ip4][..udp] [...192.168.1.34][49990] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][335.0.7.7.3.rst6.r.skype.net]
new: [....14] [ip4][..udp] [...192.168.1.34][57288] -> [....192.168.1.1][...53]
- detected: [....14] [ip4][..udp] [...192.168.1.34][57288] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
- detection-update: [.....8] [ip4][..udp] [...192.168.1.34][58681] -> [....192.168.1.1][...53] [DNS][Network][Acceptable]
- detected: [....12] [ip4][..tcp] [...192.168.1.34][50027] -> [...23.223.73.34][..443] [TLS.Skype_Teams][VoIP][Acceptable]
+ detected: [....14] [ip4][..udp] [...192.168.1.34][57288] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][335.0.7.7.3.rst6.r.skype.net]
+ detection-update: [.....8] [ip4][..udp] [...192.168.1.34][58681] -> [....192.168.1.1][...53] [DNS][Network][Acceptable][db3msgr5011709.gateway.messenger.live.com]
+ detected: [....12] [ip4][..tcp] [...192.168.1.34][50027] -> [...23.223.73.34][..443] [TLS.Skype_Teams][VoIP][Acceptable][apps.skypeassets.com]
RISK: TLS (probably) Not Carrying HTTPS
new: [....15] [ip4][..tcp] [...192.168.1.34][50028] -> [.157.56.126.211][..443]
- detected: [....15] [ip4][..tcp] [...192.168.1.34][50028] -> [.157.56.126.211][..443] [TLS][Web][Safe]
+ detected: [....15] [ip4][..tcp] [...192.168.1.34][50028] -> [.157.56.126.211][..443] [TLS][Web][Safe][]
RISK: Obsolete TLS (v1.1 or older)
- detection-update: [....15] [ip4][..tcp] [...192.168.1.34][50028] -> [.157.56.126.211][..443] [TLS.Skype_Teams][VoIP][Acceptable]
+ detection-update: [....15] [ip4][..tcp] [...192.168.1.34][50028] -> [.157.56.126.211][..443] [TLS.Skype_Teams][VoIP][Acceptable][]
RISK: Obsolete TLS (v1.1 or older)
new: [....16] [ip4][..udp] [...192.168.1.34][49903] -> [....192.168.1.1][...53]
- detected: [....16] [ip4][..udp] [...192.168.1.34][49903] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
+ detected: [....16] [ip4][..udp] [...192.168.1.34][49903] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][ui.skype.com]
new: [....17] [ip4][..udp] [...192.168.1.34][51879] -> [....192.168.1.1][...53]
- detected: [....17] [ip4][..udp] [...192.168.1.34][51879] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
- detection-update: [....17] [ip4][..udp] [...192.168.1.34][51879] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
+ detected: [....17] [ip4][..udp] [...192.168.1.34][51879] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][e4593.g.akamaiedge.net]
+ detection-update: [....17] [ip4][..udp] [...192.168.1.34][51879] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][e4593.g.akamaiedge.net]
new: [....18] [ip4][..tcp] [...192.168.1.34][50029] -> [..23.206.33.166][..443]
- detected: [....18] [ip4][..tcp] [...192.168.1.34][50029] -> [..23.206.33.166][..443] [TLS.Skype_Teams][VoIP][Acceptable]
+ detected: [....18] [ip4][..tcp] [...192.168.1.34][50029] -> [..23.206.33.166][..443] [TLS.Skype_Teams][VoIP][Acceptable][apps.skype.com]
RISK: TLS (probably) Not Carrying HTTPS
analyse: [....15] [ip4][..tcp] [...192.168.1.34][50028] -> [.157.56.126.211][..443] [TLS.Skype_Teams][VoIP][Acceptable]
min| max| avg| stddev| variance| entropy
@@ -56,11 +56,11 @@
[ENTROPIES...: 4.6,5.4,5.2,5.8,7.0,5.6,5.2,7.5,7.7,5.2,6.7,5.2,6.0,6.1,5.1,7.2,7.1,5.2,7.7,7.0,5.2,7.0,7.7,7.2,5.2,5.1,7.7,6.7,7.9,7.9,5.3,5.1]
new: [....19] [ip4][..tcp] [...192.168.1.34][50030] -> [...65.55.223.33][..443]
new: [....20] [ip4][..udp] [...192.168.1.34][60288] -> [....192.168.1.1][...53]
- detected: [....20] [ip4][..udp] [...192.168.1.34][60288] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
+ detected: [....20] [ip4][..udp] [...192.168.1.34][60288] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][pipe.prd.skypedata.akadns.net]
new: [....21] [ip4][..udp] [...192.168.1.34][57726] -> [....192.168.1.1][...53]
- detected: [....21] [ip4][..udp] [...192.168.1.34][57726] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
+ detected: [....21] [ip4][..udp] [...192.168.1.34][57726] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][pipe.prd.skypedata.akadns.net]
new: [....22] [ip4][..udp] [..192.168.0.254][.1025] -> [239.255.255.250][.1900]
- detected: [....22] [ip4][..udp] [..192.168.0.254][.1025] -> [239.255.255.250][.1900] [SSDP][System][Acceptable]
+ detected: [....22] [ip4][..udp] [..192.168.0.254][.1025] -> [239.255.255.250][.1900] [SSDP][System][Acceptable][239.255.255.250:1900]
new: [....23] [ip4][..tcp] [.108.160.170.46][..443] -> [...192.168.1.34][49445] [MIDSTREAM]
detected: [....23] [ip4][..tcp] [.108.160.170.46][..443] -> [...192.168.1.34][49445] [TLS.Dropbox][Cloud][Acceptable]
new: [....24] [ip4][..udp] [...192.168.1.34][13021] -> [....64.4.23.166][40022]
@@ -292,9 +292,9 @@
detected: [...147] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.146][33033] [Skype_Teams.Skype_TeamsCall][VoIP][Acceptable]
new: [...148] [ip4][..tcp] [...192.168.1.34][50024] -> [..17.172.100.36][..443] [MIDSTREAM]
new: [...149] [ip4][..udp] [...192.168.1.34][55159] -> [....192.168.1.1][...53]
- detected: [...149] [ip4][..udp] [...192.168.1.34][55159] -> [....192.168.1.1][...53] [DNS.Microsoft][Web][Safe]
+ detected: [...149] [ip4][..udp] [...192.168.1.34][55159] -> [....192.168.1.1][...53] [DNS.Microsoft][Web][Safe][a.config.skype.trafficmanager.net]
new: [...150] [ip4][..udp] [...192.168.1.34][63108] -> [....192.168.1.1][...53]
- detected: [...150] [ip4][..udp] [...192.168.1.34][63108] -> [....192.168.1.1][...53] [DNS.Microsoft][Web][Safe]
+ detected: [...150] [ip4][..udp] [...192.168.1.34][63108] -> [....192.168.1.1][...53] [DNS.Microsoft][Web][Safe][a.config.skype.trafficmanager.net]
new: [...151] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.147][40020]
detected: [...151] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.147][40020] [Skype_Teams.Skype_TeamsCall][VoIP][Acceptable]
new: [...152] [ip4][..udp] [...192.168.1.34][13021] -> [.111.221.77.165][40020]
@@ -307,9 +307,9 @@
new: [...156] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.157][40013]
detected: [...156] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.157][40013] [Skype_Teams.Skype_TeamsCall][VoIP][Acceptable]
new: [...157] [ip4][..udp] [...192.168.1.34][58458] -> [....192.168.1.1][...53]
- detected: [...157] [ip4][..udp] [...192.168.1.34][58458] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
+ detected: [...157] [ip4][..udp] [...192.168.1.34][58458] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][pipe.prd.skypedata.akadns.net]
new: [...158] [ip4][..udp] [...192.168.1.34][49360] -> [....192.168.1.1][...53]
- detected: [...158] [ip4][..udp] [...192.168.1.34][49360] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
+ detected: [...158] [ip4][..udp] [...192.168.1.34][49360] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][pipe.prd.skypedata.akadns.net]
new: [...159] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.145][40022]
detected: [...159] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.235.145][40022] [Skype_Teams.Skype_TeamsCall][VoIP][Acceptable]
new: [...160] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.26][40004]
@@ -339,9 +339,9 @@
detected: [...173] [ip4][..udp] [...192.168.1.34][13021] -> [..111.221.74.28][40014] [Skype_Teams.Skype_TeamsCall][VoIP][Acceptable]
new: [...174] [ip4][..tcp] [...192.168.1.34][50069] -> [..157.55.56.160][..443]
new: [...175] [ip4][..udp] [...192.168.1.34][54343] -> [....192.168.1.1][...53]
- detected: [...175] [ip4][..udp] [...192.168.1.34][54343] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
+ detected: [...175] [ip4][..udp] [...192.168.1.34][54343] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][335.0.7.7.3.rst13.r.skype.net]
new: [...176] [ip4][..udp] [...192.168.1.34][58368] -> [....192.168.1.1][...53]
- detected: [...176] [ip4][..udp] [...192.168.1.34][58368] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
+ detected: [...176] [ip4][..udp] [...192.168.1.34][58368] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][335.0.7.7.3.rst13.r.skype.net]
new: [...177] [ip4][..tcp] [...192.168.1.34][50070] -> [.157.55.130.170][40018]
new: [...178] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.148][40019]
detected: [...178] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.148][40019] [Skype_Teams.Skype_TeamsCall][VoIP][Acceptable]
@@ -420,10 +420,10 @@
new: [...212] [ip4][..tcp] [...192.168.1.34][50087] -> [.111.221.77.142][..443]
new: [...213] [ip4][..tcp] [...192.168.1.34][50088] -> [.157.55.235.146][33033]
new: [...214] [ip4][..udp] [...192.168.1.34][63321] -> [....192.168.1.1][...53]
- detected: [...214] [ip4][..udp] [...192.168.1.34][63321] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
- detection-update: [...214] [ip4][..udp] [...192.168.1.34][63321] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
+ detected: [...214] [ip4][..udp] [...192.168.1.34][63321] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][e4593.g.akamaiedge.net]
+ detection-update: [...214] [ip4][..udp] [...192.168.1.34][63321] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][e4593.g.akamaiedge.net]
new: [...215] [ip4][..tcp] [...192.168.1.34][50090] -> [..23.206.33.166][..443]
- detected: [...215] [ip4][..tcp] [...192.168.1.34][50090] -> [..23.206.33.166][..443] [TLS.Skype_Teams][VoIP][Acceptable]
+ detected: [...215] [ip4][..tcp] [...192.168.1.34][50090] -> [..23.206.33.166][..443] [TLS.Skype_Teams][VoIP][Acceptable][apps.skype.com]
RISK: Obsolete TLS (v1.1 or older)
new: [...216] [ip4][..tcp] [...192.168.1.34][50091] -> [.157.55.235.146][..443]
new: [...217] [ip4][..tcp] [...192.168.1.34][50092] -> [.157.55.130.155][40020]
@@ -514,9 +514,9 @@
update: [....94] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.165][40007] [Skype_Teams.Skype_TeamsCall][VoIP][Acceptable]
new: [...227] [ip4][..tcp] [...192.168.1.34][50108] -> [...157.56.52.28][40009]
new: [...228] [ip4][..udp] [...192.168.1.34][49485] -> [239.255.255.250][.1900]
- detected: [...228] [ip4][..udp] [...192.168.1.34][49485] -> [239.255.255.250][.1900] [SSDP][System][Acceptable]
+ detected: [...228] [ip4][..udp] [...192.168.1.34][49485] -> [239.255.255.250][.1900] [SSDP][System][Acceptable][239.255.255.250:1900]
new: [...229] [ip4][..udp] [...192.168.1.34][51066] -> [239.255.255.250][.1900]
- detected: [...229] [ip4][..udp] [...192.168.1.34][51066] -> [239.255.255.250][.1900] [SSDP][System][Acceptable]
+ detected: [...229] [ip4][..udp] [...192.168.1.34][51066] -> [239.255.255.250][.1900] [SSDP][System][Acceptable][239.255.255.250:1900]
new: [...230] [ip4][..udp] [...192.168.1.34][54067] -> [....192.168.1.1][.5351]
detected: [...230] [ip4][..udp] [...192.168.1.34][54067] -> [....192.168.1.1][.5351] [NAT-PMP][Network][Acceptable]
new: [...231] [ip4][.icmp] [....192.168.1.1] -> [...192.168.1.34]
@@ -543,9 +543,9 @@
new: [...237] [ip4][..udp] [...192.168.1.34][13021] -> [.....71.62.0.85][33647]
detected: [...237] [ip4][..udp] [...192.168.1.34][13021] -> [.....71.62.0.85][33647] [Skype_Teams.Skype_TeamsCall][VoIP][Acceptable]
new: [...238] [ip4][..udp] [...192.168.1.92][.5353] -> [....224.0.0.251][.5353]
- detected: [...238] [ip4][..udp] [...192.168.1.92][.5353] -> [....224.0.0.251][.5353] [MDNS][Network][Acceptable]
+ detected: [...238] [ip4][..udp] [...192.168.1.92][.5353] -> [....224.0.0.251][.5353] [MDNS][Network][Acceptable][_afpovertcp._tcp.local]
new: [...239] [ip6][..udp] [...............fe80::c62c:3ff:fe06:49fe][.5353] -> [...............................ff02::fb][.5353]
- detected: [...239] [ip6][..udp] [...............fe80::c62c:3ff:fe06:49fe][.5353] -> [...............................ff02::fb][.5353] [MDNS][Network][Acceptable]
+ detected: [...239] [ip6][..udp] [...............fe80::c62c:3ff:fe06:49fe][.5353] -> [...............................ff02::fb][.5353] [MDNS][Network][Acceptable][_afpovertcp._tcp.local]
new: [...240] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.145][..443]
detected: [...240] [ip4][..udp] [...192.168.1.34][13021] -> [.157.55.130.145][..443] [Skype_Teams.Skype_TeamsCall][VoIP][Acceptable]
new: [...241] [ip4][..udp] [...192.168.1.34][13021] -> [...65.55.223.39][..443]
@@ -581,12 +581,12 @@
new: [...257] [ip4][..tcp] [...192.168.1.34][50126] -> [..91.190.216.23][12350]
new: [...258] [ip4][..tcp] [...192.168.1.34][50127] -> [...80.14.46.121][.4415]
new: [...259] [ip4][..udp] [...192.168.1.34][62454] -> [....192.168.1.1][...53]
- detected: [...259] [ip4][..udp] [...192.168.1.34][62454] -> [....192.168.1.1][...53] [DNS.AppleiCloud][Web][Acceptable]
- detection-update: [...259] [ip4][..udp] [...192.168.1.34][62454] -> [....192.168.1.1][...53] [DNS.AppleiCloud][Web][Acceptable]
+ detected: [...259] [ip4][..udp] [...192.168.1.34][62454] -> [....192.168.1.1][...53] [DNS.AppleiCloud][Web][Acceptable][p05-keyvalueservice.icloud.com.akadns.net]
+ detection-update: [...259] [ip4][..udp] [...192.168.1.34][62454] -> [....192.168.1.1][...53] [DNS.AppleiCloud][Web][Acceptable][p05-keyvalueservice.icloud.com.akadns.net]
new: [...260] [ip4][..tcp] [...192.168.1.34][50128] -> [..17.172.100.36][..443]
- detected: [...260] [ip4][..tcp] [...192.168.1.34][50128] -> [..17.172.100.36][..443] [TLS.AppleiCloud][Web][Acceptable]
+ detected: [...260] [ip4][..tcp] [...192.168.1.34][50128] -> [..17.172.100.36][..443] [TLS.AppleiCloud][Web][Acceptable][p05-keyvalueservice.icloud.com]
RISK: TLS (probably) Not Carrying HTTPS
- detection-update: [...260] [ip4][..tcp] [...192.168.1.34][50128] -> [..17.172.100.36][..443] [TLS.AppleiCloud][Web][Acceptable]
+ detection-update: [...260] [ip4][..tcp] [...192.168.1.34][50128] -> [..17.172.100.36][..443] [TLS.AppleiCloud][Web][Acceptable][p05-keyvalueservice.icloud.com]
RISK: TLS (probably) Not Carrying HTTPS
new: [...261] [ip4][..tcp] [...192.168.1.34][50129] -> [.91.190.218.125][12350]
analyse: [...260] [ip4][..tcp] [...192.168.1.34][50128] -> [..17.172.100.36][..443] [TLS.AppleiCloud][Web][Acceptable]
@@ -636,9 +636,9 @@
update: [...126] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.146][40030] [Skype_Teams.Skype_TeamsCall][VoIP][Acceptable]
update: [...125] [ip4][..udp] [...192.168.1.34][13021] -> [213.199.179.154][40034] [Skype_Teams.Skype_TeamsCall][VoIP][Acceptable]
new: [...262] [ip4][..udp] [...192.168.1.34][52742] -> [....192.168.1.1][...53]
- detected: [...262] [ip4][..udp] [...192.168.1.34][52742] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
+ detected: [...262] [ip4][..udp] [...192.168.1.34][52742] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][335.0.7.7.3.rst5.r.skype.net]
new: [...263] [ip4][..udp] [...192.168.1.34][56387] -> [....192.168.1.1][...53]
- detected: [...263] [ip4][..udp] [...192.168.1.34][56387] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
+ detected: [...263] [ip4][..udp] [...192.168.1.34][56387] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][335.0.7.7.3.rst5.r.skype.net]
analyse: [...251] [ip4][..tcp] [...192.168.1.34][50121] -> [...81.83.77.141][17639]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 1.782| 0.325| 0.510| 259840.393| 3.600]
@@ -651,14 +651,14 @@
[ENTROPIES...: 4.7,5.3,5.2,6.0,6.4,5.2,5.6,5.5,5.2,7.8,5.6,5.2,5.2,5.3,7.8,5.2,7.6,6.1,5.9,5.6,5.2,5.9,5.2,5.7,5.8,5.2,5.9,5.2,6.0,5.1,6.0,5.2]
not-detected: [...251] [ip4][..tcp] [...192.168.1.34][50121] -> [...81.83.77.141][17639] [Unknown][Unrated]
new: [...264] [ip4][..udp] [...192.168.1.34][52714] -> [....192.168.1.1][...53]
- detected: [...264] [ip4][..udp] [...192.168.1.34][52714] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
+ detected: [...264] [ip4][..udp] [...192.168.1.34][52714] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][b.config.skype.com]
new: [...265] [ip4][..udp] [...192.168.1.34][51802] -> [....192.168.1.1][...53]
- detected: [...265] [ip4][..udp] [...192.168.1.34][51802] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
+ detected: [...265] [ip4][..udp] [...192.168.1.34][51802] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][b.config.skype.com]
new: [...266] [ip4][..tcp] [...192.168.1.34][50130] -> [...212.161.8.36][13392]
new: [...267] [ip4][..udp] [...192.168.1.34][63421] -> [....192.168.1.1][...53]
- detected: [...267] [ip4][..udp] [...192.168.1.34][63421] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
+ detected: [...267] [ip4][..udp] [...192.168.1.34][63421] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][pipe.prd.skypedata.akadns.net]
new: [...268] [ip4][..udp] [...192.168.1.34][65037] -> [....192.168.1.1][...53]
- detected: [...268] [ip4][..udp] [...192.168.1.34][65037] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
+ detected: [...268] [ip4][..udp] [...192.168.1.34][65037] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][pipe.prd.skypedata.akadns.net]
new: [...269] [ip4][..tcp] [...192.168.1.34][50131] -> [...212.161.8.36][13392]
detected: [...269] [ip4][..tcp] [...192.168.1.34][50131] -> [...212.161.8.36][13392] [TLS][Web][Safe]
RISK: Known Proto on Non Std Port
@@ -668,7 +668,7 @@
detected: [...271] [ip4][..tcp] [...192.168.1.34][50133] -> [...149.13.32.15][13392] [TLS][Web][Safe]
RISK: Known Proto on Non Std Port
new: [...272] [ip4][..udp] [...192.168.1.92][50084] -> [239.255.255.250][.1900]
- detected: [...272] [ip4][..udp] [...192.168.1.92][50084] -> [239.255.255.250][.1900] [SSDP][System][Acceptable]
+ detected: [...272] [ip4][..udp] [...192.168.1.92][50084] -> [239.255.255.250][.1900] [SSDP][System][Acceptable][239.255.255.250:1900]
update: [...150] [ip4][..udp] [...192.168.1.34][63108] -> [....192.168.1.1][...53] [DNS.Microsoft][Web][Safe]
update: [...179] [ip4][..udp] [...192.168.1.34][13021] -> [...157.56.52.37][40032] [Skype_Teams.Skype_TeamsCall][VoIP][Acceptable]
update: [...149] [ip4][..udp] [...192.168.1.34][55159] -> [....192.168.1.1][...53] [DNS.Microsoft][Web][Safe]
@@ -746,9 +746,9 @@
[ENTROPIES...: 4.6,4.7,4.9,6.2,5.9,5.3,5.7,5.6,5.3,5.7,5.3,5.3,5.2,7.8,5.1,7.8,5.2,6.5,5.1,7.7,5.9,6.4,5.9,5.2,6.1,5.2,5.9,6.1,5.3,5.3,5.8,5.3]
not-detected: [...248] [ip4][..tcp] [...192.168.1.34][50117] -> [...71.238.7.203][18767] [Unknown][Unrated]
new: [...274] [ip4][..udp] [...192.168.1.34][56886] -> [239.255.255.250][.1900]
- detected: [...274] [ip4][..udp] [...192.168.1.34][56886] -> [239.255.255.250][.1900] [SSDP][System][Acceptable]
+ detected: [...274] [ip4][..udp] [...192.168.1.34][56886] -> [239.255.255.250][.1900] [SSDP][System][Acceptable][239.255.255.250:1900]
new: [...275] [ip4][..udp] [...192.168.1.34][64560] -> [239.255.255.250][.1900]
- detected: [...275] [ip4][..udp] [...192.168.1.34][64560] -> [239.255.255.250][.1900] [SSDP][System][Acceptable]
+ detected: [...275] [ip4][..udp] [...192.168.1.34][64560] -> [239.255.255.250][.1900] [SSDP][System][Acceptable][239.255.255.250:1900]
new: [...276] [ip4][..udp] [...192.168.1.34][49511] -> [....192.168.1.1][.5351]
detected: [...276] [ip4][..udp] [...192.168.1.34][49511] -> [....192.168.1.1][.5351] [NAT-PMP][Network][Acceptable]
new: [...277] [ip4][..tcp] [...192.168.1.34][50134] -> [...157.56.53.47][12350]
@@ -966,7 +966,7 @@
update: [...276] [ip4][..udp] [...192.168.1.34][49511] -> [....192.168.1.1][.5351] [NAT-PMP][Network][Acceptable]
new: [...292] [ip4][..tcp] [...192.168.1.34][50146] -> [...157.56.53.51][..443]
new: [...293] [ip4][..udp] [...192.168.1.34][55893] -> [....192.168.1.1][...53]
- detected: [...293] [ip4][..udp] [...192.168.1.34][55893] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable]
+ detected: [...293] [ip4][..udp] [...192.168.1.34][55893] -> [....192.168.1.1][...53] [DNS.Skype_Teams][VoIP][Acceptable][ui.skype.com]
not-detected: [....50] [ip4][..tcp] [...192.168.1.34][50033] -> [..157.55.56.170][40015] [Unknown][Unrated]
end: [....50] [ip4][..tcp] [...192.168.1.34][50033] -> [..157.55.56.170][40015]
not-detected: [....51] [ip4][..tcp] [...192.168.1.34][50034] -> [.157.55.130.140][40033] [Unknown][Unrated]
Powered by cgit, Themed by Ted Yin.