1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
|
DAEMON-EVENT: init
DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
new: [.....1] [ip4][..udp] [....172.23.2.27][.1024] -> [....172.23.2.15][.6060]
detected: [.....1] [ip4][..udp] [....172.23.2.27][.1024] -> [....172.23.2.15][.6060] [EtherSIO][Unknown][IoT-Scada][Acceptable]
analyse: [.....1] [ip4][..udp] [....172.23.2.27][.1024] -> [....172.23.2.15][.6060] [EtherSIO][Unknown][IoT-Scada][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: < 0.001| 0.111| 0.097| 0.019| 344.403| 4.900]
[PKTLEN......: 52.000| 77.000| 76.200| 4.300| 18.900| 5.000]
[BINS(c->s)..: 1,31,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
[BINS(s->c)..: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
[DIRECTIONS..: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
[IATS(ms)....: 96.2,97.4,107.9,96.1,97.6,109.9,95.5,95.6,98.4,0.0,111.0,95.5,96.5,96.0,110.0,97.0,97.0,97.9,109.1,95.7,95.9,95.7,111.5,95.3,100.1,106.3,95.5,95.6,108.9,95.6,95.9]
[PKTLENS.....: 77,77,77,77,77,77,77,77,77,52,77,77,77,77,77,77,77,77,77,77,77,77,77,77,77,77,77,77,77,77,77,77]
[ENTROPIES...: 3.4,3.3,3.4,3.4,3.4,3.4,3.4,3.4,3.4,3.7,3.4,3.4,3.4,3.4,3.4,3.4,3.4,3.4,3.4,3.4,3.4,3.4,3.4,3.4,3.4,3.4,3.4,3.4,3.4,3.3,3.4,3.4]
idle: [.....1] [ip4][..udp] [....172.23.2.27][.1024] -> [....172.23.2.15][.6060] [EtherSIO][Unknown][IoT-Scada][Acceptable]
DAEMON-EVENT: shutdown
|