1
2
3
4
5
6
7
8
9
|
flow_datalink,l3_proto,src_ip,dst_ip,l4_proto,src_port,dst_port,flow_state,flow_src_packets_processed,flow_dst_packets_processed,flow_first_seen,flow_src_last_pkt_time,flow_dst_last_pkt_time,flow_src_min_l4_payload_len,flow_dst_min_l4_payload_len,flow_src_max_l4_payload_len,flow_dst_max_l4_payload_len,flow_src_tot_l4_payload_len,flow_dst_tot_l4_payload_len,midstream,iat_min,iat_avg,iat_max,iat_stddev,iat_var,iat_ent,iat_data,pktlen_min,pktlen_avg,pktlen_max,pktlen_stddev,pktlen_var,pktlen_ent,pktlen_data,bins_c_to_s,bins_s_to_c,directions,entropies,proto,proto_id,encrypted,breed,category,confidence_id,confidence,risks
113,ip4,10.1.1.10,10.2.2.2,tcp,52472,8554,finished,16,16,1627567279015763,1627567279050715,1627567279050859,0,0,142,125,1032,500,0,2,2259.6,21135,5876.1,34528696.0,2.2,"35,2,147,185,74,3,21,233,32,2,57,13140,10,5,57,13537,3,20,31,20633,10,29,32,21135,10,3,84,464,2,22,30",40,92.6,182,58.6,3438.9,4.7,"52,52,52,52,52,52,52,52,46,46,40,46,156,156,156,156,46,40,46,46,165,165,165,165,182,182,182,182,46,40,46,46","8,0,0,4,4,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0","12,0,0,4,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0","0,0,0,0,1,1,1,1,0,0,0,0,0,0,0,0,1,1,1,1,1,1,1,1,0,0,0,0,1,1,1,1","4.423448086,4.423448086,4.461909771,4.461909771,4.669178486,4.669178486,4.707640171,4.707640171,4.375547886,4.375547886,4.662815571,4.375547886,5.749258041,5.749258041,5.749258041,5.749258041,4.342726707,4.625071049,4.342726707,4.342726707,5.713921547,5.730617523,5.730617523,5.713921547,5.797795296,5.797795296,5.797795296,5.797795296,4.342726707,4.675071239,4.386205196,4.342726707",RTSP,50,0,Fun,Media,6,DPI,"5"
113,ip4,10.1.1.10,10.2.2.2,tcp,52474,8554,finished,16,16,1627567338841836,1627567338873699,1627567338873793,0,0,142,125,1032,500,0,3,2058.7,21234,5470.2,29923468.0,2.2,"11,6,72,280,3,19,31,588,10,4,95,9323,12,6,70,10052,3,20,30,20464,12,35,38,21234,11,6,415,877,63,5,25",40,92.6,182,58.6,3438.9,4.7,"52,52,52,52,52,52,52,52,46,46,40,46,156,156,156,156,46,40,46,46,165,165,165,165,182,182,182,182,46,46,40,46","8,0,0,4,4,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0","12,0,0,4,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0","0,0,0,0,1,1,1,1,0,0,0,0,0,0,0,0,1,1,1,1,1,1,1,1,0,0,0,0,1,1,1,1","4.384986401,4.384986401,4.423448086,4.423448086,4.630716801,4.669178486,4.669178486,4.630716801,4.402615547,4.402615547,4.693943024,4.402615547,5.758685112,5.758685112,5.758685112,5.758685112,4.342726707,4.675070763,4.386205196,4.342726707,5.747313976,5.747313976,5.747313976,5.747313976,5.794003963,5.794003963,5.804993153,5.804993153,4.299248219,4.299248219,4.625071049,4.342726707",RTSP,50,0,Fun,Media,6,DPI,"5"
113,ip4,10.1.1.10,10.2.2.2,tcp,52476,8554,finished,16,16,1627567398644402,1627567398672191,1627567398672567,0,0,142,125,1032,500,0,3,1805.0,21000,5109.4,26105754.0,2.2,"11,6,298,316,75,4,113,848,111,3,200,4833,13,7,374,6198,62,5,77,20136,13,74,34,21000,11,7,67,946,6,27,79",40,92.6,182,58.6,3438.9,4.7,"52,52,52,52,52,52,52,52,46,46,40,46,156,156,156,156,46,46,40,46,165,165,165,165,182,182,182,182,46,40,46,46","8,0,0,4,4,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0","12,0,0,4,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0","0,0,0,0,1,1,1,1,0,0,0,0,0,0,0,0,1,1,1,1,1,1,1,1,0,0,0,0,1,1,1,1","4.348445415,4.348445415,4.386907101,4.386907101,4.594175816,4.594175816,4.632637501,4.632637501,4.315659046,4.315659046,4.593943119,4.315659046,5.696279526,5.696279526,5.696279526,5.696279526,4.272180557,4.272180557,4.593943596,4.315659046,5.713315964,5.725437164,5.725437164,5.713315964,5.750239849,5.750239849,5.750239849,5.750239849,4.228702545,4.543943405,4.228702545,4.272180557",RTSP,50,0,Fun,Media,6,DPI,"5"
113,ip4,10.1.1.10,10.2.2.2,tcp,52478,8554,finished,16,16,1627567406342871,1627567406849646,1627567406870301,0,0,116,125,464,500,0,2,33361.5,505214,123872.6,15344430080.0,1.2,"13,12,110,1319,2,16,338,505214,14,12,119,504501,5,45,55,1025,12,6,56,113,30,3,36,579,55,2,21,20351,8,26,107",40,76.3,165,48.8,2380.7,4.7,"52,52,52,52,46,40,46,46,52,52,52,52,52,52,52,52,46,46,40,46,156,156,156,156,46,46,40,46,165,165,165,165","12,0,0,4,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0","12,0,0,4,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0","0,0,0,0,1,1,1,1,0,0,0,0,1,1,1,1,0,0,0,0,0,0,0,0,1,1,1,1,1,1,1,1","4.370469093,4.370469093,4.370469093,4.370469093,3.475291967,3.831542015,3.475291967,3.518770218,4.370469093,4.370469093,4.370469093,4.370469093,4.630716801,4.669178486,4.630716801,4.669178486,4.332069397,4.332069397,4.562815189,4.288591385,5.709887981,5.709887981,5.697067261,5.697067261,4.255770683,4.255770683,4.575070858,4.299248695,5.728408337,5.740529537,5.728408337,5.740529537",RTSP,50,0,Fun,Media,6,DPI,"5"
113,ip4,10.1.1.10,10.2.2.2,tcp,52480,8554,finished,16,16,1627567466882987,1627567466918846,1627567466919056,0,0,142,125,1032,500,0,1,2320.3,23771,5847.6,34194776.0,2.4,"13,10,107,377,5,25,77,583,10,4,135,10337,14,11,11449,2,754,44,76,20263,13,28,87,23771,10,4,96,3496,1,20,106",40,92.6,182,58.6,3438.9,4.7,"52,52,52,52,52,52,52,52,46,46,40,46,156,156,156,46,40,156,46,46,165,165,165,165,182,182,182,182,46,40,46,46","8,0,0,4,4,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0","12,0,0,4,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0","0,0,0,0,1,1,1,1,0,0,0,0,0,0,0,1,1,0,1,1,1,1,1,1,0,0,0,0,1,1,1,1","4.333256245,4.333256245,4.371717930,4.371717930,4.585553169,4.624014854,4.585553169,4.624014854,4.338141441,4.338141441,4.646440029,4.338141441,5.716025352,5.716025352,5.703204632,4.234774113,4.577568054,5.703204632,4.234774113,4.278252602,5.685709476,5.709951878,5.685709476,5.709951878,5.773123264,5.773123264,5.773123264,5.773123264,4.234774113,4.577568054,4.234774113,4.278252602",RTSP,50,0,Fun,Media,6,DPI,"5"
113,ip4,10.1.1.10,10.2.2.2,tcp,52482,8554,finished,16,16,1627567528106056,1627567528134816,1627567528135319,0,0,142,125,1032,500,0,4,1871.7,21029,5194.1,26978296.0,2.2,"13,12,126,440,5,40,92,581,9,4,94,6644,14,9,113,7455,6,53,93,20043,15,52,57,21029,9,6,97,810,5,21,76",40,92.6,182,58.6,3438.9,4.7,"52,52,52,52,52,52,52,52,46,46,40,46,156,156,156,156,46,40,46,46,165,165,165,165,182,182,182,182,46,40,46,46","8,0,0,4,4,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0","12,0,0,4,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0","0,0,0,0,1,1,1,1,0,0,0,0,0,0,0,0,1,1,1,1,1,1,1,1,0,0,0,0,1,1,1,1","4.268796921,4.268796921,4.307258606,4.307258606,4.437603951,4.476065636,4.437603951,4.476065636,4.253599167,4.253599167,4.522574425,4.253599167,5.663463116,5.663463116,5.663463116,5.663463116,4.228702545,4.543943405,4.228702545,4.272181034,5.650695801,5.662817001,5.650695801,5.662817001,5.715077877,5.715077877,5.715077877,5.715077877,4.272181034,4.593943119,4.272181034,4.315659046",RTSP,50,0,Fun,Media,6,DPI,"5"
timestamp,json_lines,json_bytes,flow_src_total_bytes,flow_dst_total_bytes,flow_new_count,flow_end_count,flow_idle_count,flow_update_count,flow_analyse_count,flow_guessed_count,flow_detected_count,flow_detection_update_count,flow_not_detected_count,flow_risky_count,packet_count,packet_flow_count,init_count,reconnect_count,shutdown_count,status_count,error_unknown_datalink,error_unknown_l3_protocol,error_unsupported_datalink,error_packet_too_short,error_packet_type_unknown,error_packet_header_invalid,error_ip4_packet_too_short,error_ip4_size_smaller_than_header,error_ip4_l4_payload_detection,error_ip6_packet_too_short,error_ip6_size_smaller_than_header,error_ip6_l4_payload_detection,error_tcp_packet_too_short,error_udp_packet_too_short,error_capture_size_smaller_than_packet,error_max_flows_to_track,error_flow_memory_alloc,flow_state_info,flow_state_finished,flow_breed_safe_count,flow_breed_acceptable_count,flow_breed_fun_count,flow_breed_unsafe_count,flow_breed_potentially_dangerous_count,flow_breed_tracker_ads_count,flow_breed_dangerous_count,flow_breed_unrated_count,flow_breed_unknown_count,flow_category_unspecified_count,flow_category_media_count,flow_category_vpn_count,flow_category_email_count,flow_category_data_transfer_count,flow_category_web_count,flow_category_social_network_count,flow_category_download_count,flow_category_game_count,flow_category_chat_count,flow_category_voip_count,flow_category_database_count,flow_category_remote_access_count,flow_category_cloud_count,flow_category_network_count,flow_category_collaborative_count,flow_category_rpc_count,flow_category_streaming_count,flow_category_system_count,flow_category_software_update_count,flow_category_music_count,flow_category_video_count,flow_category_shopping_count,flow_category_productivity_count,flow_category_file_sharing_count,flow_category_conn_check_count,flow_category_iot_scada_count,flow_category_virt_assistant_count,flow_category_cybersecurity_count,flow_category_adult_content_count,flow_category_mining_count,flow_category_malware_count,flow_category_advertisment_count,flow_category_banned_site_count,flow_category_site_unavail_count,flow_category_allowed_site_count,flow_category_antimalware_count,flow_category_crypto_currency_count,flow_category_gambling_count,flow_category_unknown_count,flow_confidence_by_port,flow_confidence_dpi_partial,flow_confidence_dpi_partial_cache,flow_confidence_dpi_cache,flow_confidence_dpi,flow_confidence_nbpf,flow_confidence_by_ip,flow_confidence_dpi_aggressive,flow_confidence_custom_rule,flow_confidence_unknown,flow_severity_low,flow_severity_medium,flow_severity_high,flow_severity_severe,flow_severity_critical,flow_severity_emergency,flow_severity_unknown,flow_l3_ip4_count,flow_l3_ip6_count,flow_l3_other_count,flow_l4_tcp_count,flow_l4_udp_count,flow_l4_icmp_count,flow_l4_other_count,flow_active_count,flow_detected_count,flow_guessed_count,flow_not_detected_count,flow_risk_1_count,flow_risk_2_count,flow_risk_3_count,flow_risk_4_count,flow_risk_5_count,flow_risk_6_count,flow_risk_7_count,flow_risk_8_count,flow_risk_9_count,flow_risk_10_count,flow_risk_11_count,flow_risk_12_count,flow_risk_13_count,flow_risk_14_count,flow_risk_15_count,flow_risk_16_count,flow_risk_17_count,flow_risk_18_count,flow_risk_19_count,flow_risk_20_count,flow_risk_21_count,flow_risk_22_count,flow_risk_23_count,flow_risk_24_count,flow_risk_25_count,flow_risk_26_count,flow_risk_27_count,flow_risk_28_count,flow_risk_29_count,flow_risk_30_count,flow_risk_31_count,flow_risk_32_count,flow_risk_33_count,flow_risk_34_count,flow_risk_35_count,flow_risk_36_count,flow_risk_37_count,flow_risk_38_count,flow_risk_39_count,flow_risk_40_count,flow_risk_41_count,flow_risk_42_count,flow_risk_43_count,flow_risk_44_count,flow_risk_45_count,flow_risk_46_count,flow_risk_47_count,flow_risk_48_count,flow_risk_49_count,flow_risk_50_count,flow_risk_51_count,flow_risk_52_count,flow_risk_53_count,flow_risk_54_count,flow_risk_55_count,flow_risk_56_count,flow_risk_unknown_count
0,65,56135,22024,45372,7,6,1,0,6,0,7,0,0,7,0,35,1,0,1,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,7,0,0,7,0,0,0,0,0,0,0,7,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,7,0,0,0,0,0,0,7,0,0,0,0,0,7,0,0,7,0,0,0,7,7,0,0,0,0,0,0,0,7,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0
|