aboutsummaryrefslogtreecommitdiff
path: root/test/results/flow-info/viber.pcap.out
diff options
context:
space:
mode:
Diffstat (limited to 'test/results/flow-info/viber.pcap.out')
-rw-r--r--test/results/flow-info/viber.pcap.out72
1 files changed, 36 insertions, 36 deletions
diff --git a/test/results/flow-info/viber.pcap.out b/test/results/flow-info/viber.pcap.out
index 49b65212a..8a74722db 100644
--- a/test/results/flow-info/viber.pcap.out
+++ b/test/results/flow-info/viber.pcap.out
@@ -3,35 +3,35 @@
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..tcp] [...192.168.0.17][33208] -> [...52.0.253.101][.4244] [MIDSTREAM]
new: [.....2] [ip4][..udp] [...192.168.0.17][45743] -> [...192.168.0.15][...53]
- detected: [.....2] [ip4][..udp] [...192.168.0.17][45743] -> [...192.168.0.15][...53] [DNS.Facebook][SocialNetwork][Fun]
- detection-update: [.....2] [ip4][..udp] [...192.168.0.17][45743] -> [...192.168.0.15][...53] [DNS.Facebook][SocialNetwork][Fun]
+ detected: [.....2] [ip4][..udp] [...192.168.0.17][45743] -> [...192.168.0.15][...53] [DNS.Facebook][SocialNetwork][Fun][graph.facebook.com]
+ detection-update: [.....2] [ip4][..udp] [...192.168.0.17][45743] -> [...192.168.0.15][...53] [DNS.Facebook][SocialNetwork][Fun][graph.facebook.com]
new: [.....3] [ip4][..udp] [...192.168.0.17][35283] -> [...192.168.0.15][...53]
- detected: [.....3] [ip4][..udp] [...192.168.0.17][35283] -> [...192.168.0.15][...53] [DNS][Advertisement][Acceptable]
- detection-update: [.....3] [ip4][..udp] [...192.168.0.17][35283] -> [...192.168.0.15][...53] [DNS][Advertisement][Acceptable]
+ detected: [.....3] [ip4][..udp] [...192.168.0.17][35283] -> [...192.168.0.15][...53] [DNS][Advertisement][Acceptable][app.adjust.com]
+ detection-update: [.....3] [ip4][..udp] [...192.168.0.17][35283] -> [...192.168.0.15][...53] [DNS][Advertisement][Acceptable][app.adjust.com]
new: [.....4] [ip4][..udp] [...192.168.0.17][62872] -> [...192.168.0.15][...53]
- detected: [.....4] [ip4][..udp] [...192.168.0.17][62872] -> [...192.168.0.15][...53] [DNS][Network][Acceptable]
- detection-update: [.....4] [ip4][..udp] [...192.168.0.17][62872] -> [...192.168.0.15][...53] [DNS][Network][Acceptable]
+ detected: [.....4] [ip4][..udp] [...192.168.0.17][62872] -> [...192.168.0.15][...53] [DNS][Network][Acceptable][mapi.apptimize.com]
+ detection-update: [.....4] [ip4][..udp] [...192.168.0.17][62872] -> [...192.168.0.15][...53] [DNS][Network][Acceptable][mapi.apptimize.com]
new: [.....5] [ip4][..tcp] [...192.168.0.17][36986] -> [..54.69.166.226][..443]
- detected: [.....5] [ip4][..tcp] [...192.168.0.17][36986] -> [..54.69.166.226][..443] [TLS.AmazonAWS][Cloud][Acceptable]
- detection-update: [.....5] [ip4][..tcp] [...192.168.0.17][36986] -> [..54.69.166.226][..443] [TLS.AmazonAWS][Cloud][Acceptable]
- detection-update: [.....5] [ip4][..tcp] [...192.168.0.17][36986] -> [..54.69.166.226][..443] [TLS.AmazonAWS][Cloud][Acceptable]
+ detected: [.....5] [ip4][..tcp] [...192.168.0.17][36986] -> [..54.69.166.226][..443] [TLS.AmazonAWS][Cloud][Acceptable][mapi.apptimize.com]
+ detection-update: [.....5] [ip4][..tcp] [...192.168.0.17][36986] -> [..54.69.166.226][..443] [TLS.AmazonAWS][Cloud][Acceptable][mapi.apptimize.com]
+ detection-update: [.....5] [ip4][..tcp] [...192.168.0.17][36986] -> [..54.69.166.226][..443] [TLS.AmazonAWS][Cloud][Acceptable][mapi.apptimize.com]
new: [.....6] [ip4][..tcp] [...192.168.0.17][36988] -> [..54.69.166.226][..443]
- detected: [.....6] [ip4][..tcp] [...192.168.0.17][36988] -> [..54.69.166.226][..443] [TLS.AmazonAWS][Cloud][Acceptable]
- detection-update: [.....6] [ip4][..tcp] [...192.168.0.17][36988] -> [..54.69.166.226][..443] [TLS.AmazonAWS][Cloud][Acceptable]
+ detected: [.....6] [ip4][..tcp] [...192.168.0.17][36988] -> [..54.69.166.226][..443] [TLS.AmazonAWS][Cloud][Acceptable][mapi.apptimize.com]
+ detection-update: [.....6] [ip4][..tcp] [...192.168.0.17][36988] -> [..54.69.166.226][..443] [TLS.AmazonAWS][Cloud][Acceptable][mapi.apptimize.com]
new: [.....7] [ip4][..udp] [...192.168.0.17][37418] -> [...192.168.0.15][...53]
- detected: [.....7] [ip4][..udp] [...192.168.0.17][37418] -> [...192.168.0.15][...53] [DNS.Viber][Chat][Acceptable]
- detection-update: [.....7] [ip4][..udp] [...192.168.0.17][37418] -> [...192.168.0.15][...53] [DNS.Viber][Chat][Acceptable]
+ detected: [.....7] [ip4][..udp] [...192.168.0.17][37418] -> [...192.168.0.15][...53] [DNS.Viber][Chat][Acceptable][media.cdn.viber.com]
+ detection-update: [.....7] [ip4][..udp] [...192.168.0.17][37418] -> [...192.168.0.15][...53] [DNS.Viber][Chat][Acceptable][media.cdn.viber.com]
new: [.....8] [ip4][..tcp] [...192.168.0.17][57520] -> [...54.230.93.96][..443]
- detected: [.....8] [ip4][..tcp] [...192.168.0.17][57520] -> [...54.230.93.96][..443] [TLS.Viber][Chat][Acceptable]
- detection-update: [.....8] [ip4][..tcp] [...192.168.0.17][57520] -> [...54.230.93.96][..443] [TLS.Viber][Chat][Acceptable]
- detection-update: [.....8] [ip4][..tcp] [...192.168.0.17][57520] -> [...54.230.93.96][..443] [TLS.Viber][Chat][Acceptable]
+ detected: [.....8] [ip4][..tcp] [...192.168.0.17][57520] -> [...54.230.93.96][..443] [TLS.Viber][Chat][Acceptable][media.cdn.viber.com]
+ detection-update: [.....8] [ip4][..tcp] [...192.168.0.17][57520] -> [...54.230.93.96][..443] [TLS.Viber][Chat][Acceptable][media.cdn.viber.com]
+ detection-update: [.....8] [ip4][..tcp] [...192.168.0.17][57520] -> [...54.230.93.96][..443] [TLS.Viber][Chat][Acceptable][media.cdn.viber.com]
new: [.....9] [ip4][..udp] [...192.168.0.17][40445] -> [...192.168.0.15][...53]
- detected: [.....9] [ip4][..udp] [...192.168.0.17][40445] -> [...192.168.0.15][...53] [DNS.Viber][Chat][Acceptable]
- detection-update: [.....9] [ip4][..udp] [...192.168.0.17][40445] -> [...192.168.0.15][...53] [DNS.Viber][Chat][Acceptable]
+ detected: [.....9] [ip4][..udp] [...192.168.0.17][40445] -> [...192.168.0.15][...53] [DNS.Viber][Chat][Acceptable][dl-media.viber.com]
+ detection-update: [.....9] [ip4][..udp] [...192.168.0.17][40445] -> [...192.168.0.15][...53] [DNS.Viber][Chat][Acceptable][dl-media.viber.com]
new: [....10] [ip4][..tcp] [...192.168.0.17][53934] -> [...54.230.93.53][..443]
- detected: [....10] [ip4][..tcp] [...192.168.0.17][53934] -> [...54.230.93.53][..443] [TLS.Viber][Chat][Acceptable]
- detection-update: [....10] [ip4][..tcp] [...192.168.0.17][53934] -> [...54.230.93.53][..443] [TLS.Viber][Chat][Acceptable]
- detection-update: [....10] [ip4][..tcp] [...192.168.0.17][53934] -> [...54.230.93.53][..443] [TLS.Viber][Chat][Acceptable]
+ detected: [....10] [ip4][..tcp] [...192.168.0.17][53934] -> [...54.230.93.53][..443] [TLS.Viber][Chat][Acceptable][dl-media.viber.com]
+ detection-update: [....10] [ip4][..tcp] [...192.168.0.17][53934] -> [...54.230.93.53][..443] [TLS.Viber][Chat][Acceptable][dl-media.viber.com]
+ detection-update: [....10] [ip4][..tcp] [...192.168.0.17][53934] -> [...54.230.93.53][..443] [TLS.Viber][Chat][Acceptable][dl-media.viber.com]
analyse: [....10] [ip4][..tcp] [...192.168.0.17][53934] -> [...54.230.93.53][..443]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.048| 0.009| 0.015| 217.133| 3.300]
@@ -42,24 +42,24 @@
[IATS(ms)....: 19.5,21.7,1.0,22.3,3.2,0.2,0.0,0.2,39.4,0.1,0.6,0.3,10.8,47.8,22.3,40.8,0.3,0.1,0.2,0.3,0.0,0.2,0.3,0.2,0.2,0.5,41.2,0.1,0.0,0.0,1.1]
[PKTLENS.....: 60,60,52,235,52,1500,1500,1500,397,52,52,52,52,178,294,760,1500,1500,1500,1500,1500,1500,1500,1500,1500,1500,794,52,52,52,52,52]
[ENTROPIES...: 4.6,5.2,5.2,5.6,5.1,7.2,7.5,7.5,7.3,5.1,5.2,5.2,5.2,6.4,7.2,7.7,7.9,7.9,7.9,7.9,7.9,7.9,7.9,7.9,7.9,7.9,7.7,5.2,5.2,5.1,5.2,5.1]
- detection-update: [....10] [ip4][..tcp] [...192.168.0.17][53934] -> [...54.230.93.53][..443] [TLS.Viber][Chat][Acceptable]
+ detection-update: [....10] [ip4][..tcp] [...192.168.0.17][53934] -> [...54.230.93.53][..443] [TLS.Viber][Chat][Acceptable][dl-media.viber.com]
new: [....11] [ip4][..udp] [...192.168.0.17][41993] -> [.172.217.23.106][..443]
new: [....12] [ip4][..udp] [...192.168.0.17][35331] -> [...192.168.0.15][...53]
- detected: [....12] [ip4][..udp] [...192.168.0.17][35331] -> [...192.168.0.15][...53] [DNS][Network][Acceptable]
- detection-update: [....12] [ip4][..udp] [...192.168.0.17][35331] -> [...192.168.0.15][...53] [DNS][Network][Acceptable]
+ detected: [....12] [ip4][..udp] [...192.168.0.17][35331] -> [...192.168.0.15][...53] [DNS][Network][Acceptable][app-measurement.com]
+ detection-update: [....12] [ip4][..udp] [...192.168.0.17][35331] -> [...192.168.0.15][...53] [DNS][Network][Acceptable][app-measurement.com]
new: [....13] [ip4][..tcp] [...192.168.0.17][43702] -> [..172.217.23.78][..443]
- detected: [....13] [ip4][..tcp] [...192.168.0.17][43702] -> [..172.217.23.78][..443] [TLS.Google][Web][Acceptable]
- detection-update: [....13] [ip4][..tcp] [...192.168.0.17][43702] -> [..172.217.23.78][..443] [TLS.Google][Web][Acceptable]
+ detected: [....13] [ip4][..tcp] [...192.168.0.17][43702] -> [..172.217.23.78][..443] [TLS.Google][Web][Acceptable][app-measurement.com]
+ detection-update: [....13] [ip4][..tcp] [...192.168.0.17][43702] -> [..172.217.23.78][..443] [TLS.Google][Web][Acceptable][app-measurement.com]
new: [....14] [ip4][..udp] [...192.168.0.17][.5353] -> [....224.0.0.251][.5353]
- detected: [....14] [ip4][..udp] [...192.168.0.17][.5353] -> [....224.0.0.251][.5353] [MDNS][Network][Acceptable]
+ detected: [....14] [ip4][..udp] [...192.168.0.17][.5353] -> [....224.0.0.251][.5353] [MDNS][Network][Acceptable][_805741c9._sub._googlecast._tcp.local]
new: [....15] [ip6][icmp6] [..............fe80::3207:4dff:fea3:5fa7] -> [................................ff02::2]
detected: [....15] [ip6][icmp6] [..............fe80::3207:4dff:fea3:5fa7] -> [................................ff02::2] [ICMPV6][Network][Acceptable]
new: [....16] [ip4][..udp] [...192.168.0.17][44376] -> [...192.168.0.15][...53]
- detected: [....16] [ip4][..udp] [...192.168.0.17][44376] -> [...192.168.0.15][...53] [DNS][Network][Acceptable]
- detection-update: [....16] [ip4][..udp] [...192.168.0.17][44376] -> [...192.168.0.15][...53] [DNS][Network][Acceptable]
+ detected: [....16] [ip4][..udp] [...192.168.0.17][44376] -> [...192.168.0.15][...53] [DNS][Network][Acceptable][venetia.iad.appboy.com]
+ detection-update: [....16] [ip4][..udp] [...192.168.0.17][44376] -> [...192.168.0.15][...53] [DNS][Network][Acceptable][venetia.iad.appboy.com]
new: [....17] [ip4][..tcp] [...192.168.0.17][55746] -> [..151.101.1.130][..443]
- detected: [....17] [ip4][..tcp] [...192.168.0.17][55746] -> [..151.101.1.130][..443] [TLS][Web][Safe]
- detection-update: [....17] [ip4][..tcp] [...192.168.0.17][55746] -> [..151.101.1.130][..443] [TLS][Web][Safe]
+ detected: [....17] [ip4][..tcp] [...192.168.0.17][55746] -> [..151.101.1.130][..443] [TLS][Web][Safe][venetia.iad.appboy.com]
+ detection-update: [....17] [ip4][..tcp] [...192.168.0.17][55746] -> [..151.101.1.130][..443] [TLS][Web][Safe][venetia.iad.appboy.com]
analyse: [.....1] [ip4][..tcp] [...192.168.0.17][33208] -> [...52.0.253.101][.4244]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 10.702| 1.934| 2.902| 8424002.683| 3.500]
@@ -78,9 +78,9 @@
new: [....20] [ip4][..udp] [...192.168.0.17][47171] -> [....18.201.4.32][.7987]
detected: [....20] [ip4][..udp] [...192.168.0.17][47171] -> [....18.201.4.32][.7987] [Viber][VoIP][Acceptable]
new: [....21] [ip4][..tcp] [...192.168.0.17][49048] -> [..54.187.91.182][..443]
- detected: [....21] [ip4][..tcp] [...192.168.0.17][49048] -> [..54.187.91.182][..443] [TLS.AmazonAWS][Cloud][Acceptable]
- detection-update: [....21] [ip4][..tcp] [...192.168.0.17][49048] -> [..54.187.91.182][..443] [TLS.AmazonAWS][Cloud][Acceptable]
- detection-update: [....21] [ip4][..tcp] [...192.168.0.17][49048] -> [..54.187.91.182][..443] [TLS.AmazonAWS][Cloud][Acceptable]
+ detected: [....21] [ip4][..tcp] [...192.168.0.17][49048] -> [..54.187.91.182][..443] [TLS.AmazonAWS][Cloud][Acceptable][brahe.apptimize.com]
+ detection-update: [....21] [ip4][..tcp] [...192.168.0.17][49048] -> [..54.187.91.182][..443] [TLS.AmazonAWS][Cloud][Acceptable][brahe.apptimize.com]
+ detection-update: [....21] [ip4][..tcp] [...192.168.0.17][49048] -> [..54.187.91.182][..443] [TLS.AmazonAWS][Cloud][Acceptable][brahe.apptimize.com]
analyse: [....19] [ip4][..udp] [...192.168.0.17][47171] -> [....18.201.4.32][.7985] [Viber][VoIP][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.000| 0.525| 0.329| 0.210| 44226.417| 4.600]
@@ -108,8 +108,8 @@
[PKTLENS.....: 285,46,48,104,62,285,104,48,40,285,62,104,285,104,48,40,285,62,104,285,104,48,40,285,62,104,285,104,48,40,62,285]
[ENTROPIES...: 6.3,4.5,5.0,3.5,4.0,6.4,3.5,5.1,4.4,6.4,4.0,3.5,6.3,3.5,5.0,4.4,6.3,3.9,3.4,6.4,3.5,5.0,4.4,6.3,3.9,3.5,6.4,3.5,5.0,4.4,4.0,6.4]
new: [....25] [ip4][..udp] [...192.168.0.17][50097] -> [...192.168.0.15][...53]
- detected: [....25] [ip4][..udp] [...192.168.0.17][50097] -> [...192.168.0.15][...53] [DNS.Google][Web][Acceptable]
- detection-update: [....25] [ip4][..udp] [...192.168.0.17][50097] -> [...192.168.0.15][...53] [DNS.Google][Web][Acceptable]
+ detected: [....25] [ip4][..udp] [...192.168.0.17][50097] -> [...192.168.0.15][...53] [DNS.Google][Web][Acceptable][www.google.com]
+ detection-update: [....25] [ip4][..udp] [...192.168.0.17][50097] -> [...192.168.0.15][...53] [DNS.Google][Web][Acceptable][www.google.com]
new: [....26] [ip4][.icmp] [...192.168.0.17] -> [...192.168.0.15]
detected: [....26] [ip4][.icmp] [...192.168.0.17] -> [...192.168.0.15] [ICMP][Network][Acceptable]
update: [.....3] [ip4][..udp] [...192.168.0.17][35283] -> [...192.168.0.15][...53] [DNS][Advertisement][Acceptable]
Powered by cgit, Themed by Ted Yin.