aboutsummaryrefslogtreecommitdiff
path: root/test/results/flow-info/whatsappfiles.pcap.out
diff options
context:
space:
mode:
Diffstat (limited to 'test/results/flow-info/whatsappfiles.pcap.out')
-rw-r--r--test/results/flow-info/whatsappfiles.pcap.out20
1 files changed, 12 insertions, 8 deletions
diff --git a/test/results/flow-info/whatsappfiles.pcap.out b/test/results/flow-info/whatsappfiles.pcap.out
index ec0354039..1771bccf4 100644
--- a/test/results/flow-info/whatsappfiles.pcap.out
+++ b/test/results/flow-info/whatsappfiles.pcap.out
@@ -6,22 +6,26 @@
detection-update: [.....1] [ip4][..tcp] [...192.168.2.29][49674] -> [..185.60.216.53][..443] [TLS.WhatsAppFiles][Download][Acceptable]
detection-update: [.....1] [ip4][..tcp] [...192.168.2.29][49674] -> [..185.60.216.53][..443] [TLS.WhatsAppFiles][Download][Acceptable]
analyse: [.....1] [ip4][..tcp] [...192.168.2.29][49674] -> [..185.60.216.53][..443] [TLS.WhatsAppFiles][Download][Acceptable]
- [min|max|avg|stddev]
- [IAT(flow)...: 0.000| 24.640| 0.846| 4.345]
- [IAT(c->s)...: 0.000| 24.640| 1.338| 5.493][IAT(s->c)...: 0.000| 0.461| 0.067| 0.126]
- [PKTLEN(c->s): 66.000|1464.000| 324.200| 484.600][PKTLEN(s->c): 66.000|1464.000| 374.600| 501.900]
+ [min|max|avg|stddev|variance|entropy]
+ [IAT.........: 0.000| 24.640| 0.846| 4.345|18880535.724| 0.000]
+ [PKTLEN......: 66.000| 1464.000| 343.100| 491.800|241822.200| 3.900]
[BINS(c->s)..: 9,4,0,1,0,1,1,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,3,0,0,0,0]
[BINS(s->c)..: 5,1,1,1,0,0,0,0,1,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,2,0,0,0,0]
+ [DIRECTIONS..: 0,1,0,0,1,1,1,1,0,0,0,0,1,1,0,0,0,0,0,0,0,1,1,1,1,0,0,1,0,0,0,0]
+ [IATS........: 89960,91931,2998,95622,1439,1232,31,95929,999,78942,282792,460945,6,97926,4,3994,6995,998,5,4,115136,17,1231,43,102916,998,41079,24639770,4996,5995,2998,0]
+ [PKTLENS.....: 78,74,66,309,66,1464,1464,478,66,66,66,192,324,147,66,66,119,116,108,249,104,66,104,66,176,66,66,66,289,1464,1464,1464]
new: [.....2] [ip4][..tcp] [...192.168.2.29][49698] -> [..185.60.216.53][..443]
detected: [.....2] [ip4][..tcp] [...192.168.2.29][49698] -> [..185.60.216.53][..443] [TLS.WhatsAppFiles][Download][Acceptable]
detection-update: [.....2] [ip4][..tcp] [...192.168.2.29][49698] -> [..185.60.216.53][..443] [TLS.WhatsAppFiles][Download][Acceptable]
analyse: [.....2] [ip4][..tcp] [...192.168.2.29][49698] -> [..185.60.216.53][..443] [TLS.WhatsAppFiles][Download][Acceptable]
- [min|max|avg|stddev]
- [IAT(flow)...: 0.000| 0.108| 0.019| 0.031]
- [IAT(c->s)...: 0.000| 0.065| 0.016| 0.025][IAT(s->c)...: 0.000| 0.108| 0.021| 0.034]
- [PKTLEN(c->s): 66.000| 583.000| 141.900| 139.700][PKTLEN(s->c): 66.000|1464.000| 744.100| 666.400]
+ [min|max|avg|stddev|variance|entropy]
+ [IAT.........: 0.000| 0.108| 0.019| 0.031| 953.946| 0.000]
+ [PKTLEN......: 66.000| 1464.000| 499.400| 599.200|359069.100| 4.000]
[BINS(c->s)..: 6,5,0,0,0,0,0,1,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
[BINS(s->c)..: 5,2,1,0,1,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,8,0,0,0,0]
+ [DIRECTIONS..: 0,1,0,0,1,1,0,0,0,0,0,0,1,0,0,1,1,1,1,0,0,1,1,1,1,1,1,1,1,1,1,1]
+ [IATS........: 56726,60954,999,65972,116,64953,998,4998,4,994,4,59896,50958,5,7285,18,4137,107,10987,4,86355,107518,6,1398,909,1355,1209,1240,1010,1222,1201,0]
+ [PKTLENS.....: 78,74,66,583,66,212,66,117,119,116,108,290,147,66,104,66,104,66,108,66,66,66,1464,234,1464,1282,1464,1464,1464,1464,1464,1464]
end: [.....1] [ip4][..tcp] [...192.168.2.29][49674] -> [..185.60.216.53][..443] [TLS.WhatsAppFiles][Download][Acceptable]
idle: [.....2] [ip4][..tcp] [...192.168.2.29][49698] -> [..185.60.216.53][..443] [TLS.WhatsAppFiles][Download][Acceptable]
DAEMON-EVENT: shutdown
Powered by cgit, Themed by Ted Yin.