capture-2.pcap

MD577ab98dc973d654b8fefe07c73c217bd
Submission Date2020-11-21 14:35:08
Tags(not set)
Alert 0
#
TimestampSrc IpDest IpAlert SignatureP
No results found.
DNS 62
Showing 1-20 of 62 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
2020-11-21T14:32:25.101260-0800192.168.2.102192.168.2.1queryeasy.boxAAAA(not set)
2
2020-11-21T14:32:25.102889-0800192.168.2.1192.168.2.102answereasy.boxAAAA(not set)
3
2020-11-21T14:32:35.506776-080092.208.99.129176.95.16.250queryhorizon.api.wwsga.meA(not set)
4
2020-11-21T14:32:35.514333-0800176.95.16.25092.208.99.129answerhorizon.api.wwsga.meA(not set)
5
2020-11-21T14:32:38.482375-080092.208.99.129176.95.16.250querywww.google.comA(not set)
6
2020-11-21T14:32:38.489485-0800176.95.16.25092.208.99.129answerwww.google.comA(not set)
7
2020-11-21T14:32:25.099786-0800192.168.2.102192.168.2.1queryeasy.boxA(not set)
8
2020-11-21T14:32:25.101265-0800192.168.2.1192.168.2.102answereasy.boxA(not set)
9
2020-11-21T14:33:25.301205-0800192.168.2.102192.168.2.1queryeasy.boxAAAA(not set)
10
2020-11-21T14:33:25.303297-0800192.168.2.1192.168.2.102answereasy.boxAAAA(not set)
11
2020-11-21T14:32:35.504897-0800192.168.2.115192.168.2.1queryhorizon.api.wwsga.meA(not set)
12
2020-11-21T14:32:35.506134-080092.208.99.129176.95.16.251queryhorizon.api.wwsga.meA(not set)
13
2020-11-21T14:32:35.514610-0800176.95.16.25192.208.99.129answerhorizon.api.wwsga.meA(not set)
14
2020-11-21T14:32:35.515122-0800192.168.2.1192.168.2.115answerhorizon.api.wwsga.meA(not set)
15
2020-11-21T14:32:38.481254-0800192.168.2.102192.168.2.1querywww.google.comA(not set)
16
2020-11-21T14:32:38.490325-0800192.168.2.1192.168.2.102answerwww.google.comA(not set)
17
2020-11-21T14:33:39.817527-0800192.168.2.102192.168.2.1querywww.google.comA(not set)
18
2020-11-21T14:33:39.818403-0800192.168.2.1192.168.2.102answerwww.google.comA(not set)
19
2020-11-21T14:33:05.219827-0800192.168.2.105192.168.2.1queryfirehose.eu-west-1.amazonaws.comA(not set)
20
2020-11-21T14:33:05.221453-080092.208.99.129176.95.16.250queryfirehose.eu-west-1.amazonaws.comA(not set)
TLS 8
Showing 1-8 of 8 items.
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
1
2020-11-21T14:33:05.316564-0800192.168.2.10552.95.123.152TLS 1.2firehose.eu-west-1.amazonaws.com
2
2020-11-21T14:34:11.065985-080092.208.99.129212.227.17.161TLS 1.3pop3.web.de
3
2020-11-21T14:33:05.317294-080092.208.99.12952.95.123.152TLS 1.2firehose.eu-west-1.amazonaws.com
4
2020-11-21T14:34:20.076170-080092.208.99.129216.58.212.138TLS 1.2play.googleapis.com
5
2020-11-21T14:34:08.742346-0800192.168.2.102172.217.22.106TLS 1.3android.googleapis.com
6
2020-11-21T14:34:08.742720-080092.208.99.129172.217.22.106TLS 1.3android.googleapis.com
7
2020-11-21T14:34:30.021479-0800192.168.2.102212.227.17.161TLS 1.3pop3.web.de
8
2020-11-21T14:34:30.021479-0800192.168.2.104216.58.212.138TLS 1.2play.googleapis.com
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 208
Showing 1-20 of 208 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2020-11-21T14:32:15.367396-0800192.168.2.102easy.box80POST/data_model.cgi200
2
2020-11-21T14:32:35.815530-0800192.168.2.102easy.box80POST/data_model.cgi200
3
2020-11-21T14:33:11.948122-0800192.168.2.102easy.box80POST/data_model.cgi200
4
2020-11-21T14:33:12.679978-0800192.168.2.102easy.box80POST/data_model.cgi200
5
2020-11-21T14:32:17.594443-0800192.168.2.102easy.box80POST/data_model.cgi200
6
2020-11-21T14:32:40.271083-0800192.168.2.102easy.box80POST/data_model.cgi200
7
2020-11-21T14:32:17.699967-0800192.168.2.102easy.box80POST/data_model.cgi200
8
2020-11-21T14:33:12.749493-0800192.168.2.102easy.box80POST/data_model.cgi200
9
2020-11-21T14:32:40.332653-0800192.168.2.102easy.box80POST/data_model.cgi200
10
2020-11-21T14:32:19.874342-0800192.168.2.102easy.box80POST/data_model.cgi200
11
2020-11-21T14:33:22.255435-0800192.168.2.102easy.box80POST/data_model.cgi200
12
2020-11-21T14:32:40.832615-0800192.168.2.102easy.box80POST/data_model.cgi200
13
2020-11-21T14:32:19.979389-0800192.168.2.102easy.box80POST/data_model.cgi200
14
2020-11-21T14:33:23.080592-0800192.168.2.102easy.box80POST/data_model.cgi200
15
2020-11-21T14:32:40.920762-0800192.168.2.102easy.box80POST/data_model.cgi200
16
2020-11-21T14:33:23.143922-0800192.168.2.102easy.box80POST/data_model.cgi200
17
2020-11-21T14:32:26.480569-0800192.168.2.102easy.box80POST/data_model.cgi200
18
2020-11-21T14:32:41.977842-0800192.168.2.102easy.box80POST/data_model.cgi200
19
2020-11-21T14:33:25.407788-0800192.168.2.102easy.box80POST/data_model.cgi200
20
2020-11-21T14:32:26.586501-0800192.168.2.102easy.box80POST/data_model.cgi200
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 132
Showing 1-20 of 132 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
2020-11-21T14:34:30.021479-08001972079698496010flow139.199.104.655551292.208.99.12929069TCPpcapanalyzer
2
2020-11-21T14:34:30.021479-08001409649427645702flowfdee:569e:0153:0001:d660:e3ff:fe55:c480(not set)ff02:0000:0000:0000:0000:0001:ff2f:2c09(not set)IPv6-ICMPpcapanalyzer
3
2020-11-21T14:34:30.021479-08001269088034348010flow192.168.2.1155353224.0.0.2515353UDPpcapanalyzer
4
2020-11-21T14:34:30.021479-0800149102296486477flow45.129.33.1545014492.208.99.1293384TCPpcapanalyzer
5
2020-11-21T14:34:30.021479-0800431054018138248flowfe80:0000:0000:0000:d660:e3ff:fe55:c480(not set)ff02:0000:0000:0000:0000:0001:ffcb:8258(not set)IPv6-ICMPpcapanalyzer
6
2020-11-21T14:34:30.021479-08001134956211781607flow167.248.133.905507492.208.99.12912196TCPpcapanalyzer
7
2020-11-21T14:34:30.021479-08009116427453144flow192.168.2.105(not set)192.168.2.1(not set)ICMPpcapanalyzer
8
2020-11-21T14:34:30.021479-08001135733595789151flowfdee:569e:0153:0001:d660:e3ff:fe55:c480(not set)fdee:569e:0153:0001:90b6:11ff:fe76:b868(not set)IPv6-ICMPpcapanalyzer
9
2020-11-21T14:34:30.021479-08001558697682799042flow69.171.250.15443192.168.2.10252208TCPpcapanalyzer
10
2020-11-21T14:34:30.021479-08002122425021298164flowfdee:569e:0153:0001:d660:e3ff:fe55:c480(not set)fdee:569e:0153:0001:e144:d70f:6758:ee7a(not set)IPv6-ICMPpcapanalyzer
11
2020-11-21T14:34:30.021479-08001841864879844186flow192.168.2.10250066212.227.17.161995TCPpcapanalyzer
12
2020-11-21T14:34:30.021479-08001701174629486183flow104.248.44.264221992.208.99.1291222TCPpcapanalyzer
13
2020-11-21T14:34:30.021479-08001701797406986743flow92.208.99.12952370216.58.212.138443TCPpcapanalyzer
14
2020-11-21T14:34:30.021479-08001562494430399899flowfdee:569e:0153:0001:d660:e3ff:fe55:c480(not set)fdee:569e:0153:0001:7e0b:c6ff:fe2e:2ce3(not set)IPv6-ICMPpcapanalyzer
15
2020-11-21T14:34:30.021479-08001143189657160361flow18.130.157.91(not set)92.208.99.129(not set)ICMPpcapanalyzer
16
2020-11-21T14:34:30.021479-08001706861167533901flowfdee:569e:0153:0001:e428:6dff:fe01:3656(not set)fdee:569e:0153:0001:d660:e3ff:fe55:c480(not set)IPv6-ICMPpcapanalyzer
17
2020-11-21T14:34:30.021479-0800441250270491015flowfdee:569e:0153:0001:d660:e3ff:fe55:c480(not set)ff02:0000:0000:0000:0000:0001:ff22:9dc3(not set)IPv6-ICMPpcapanalyzer
18
2020-11-21T14:34:30.021479-0800865215081264247flowfe80:0000:0000:0000:625b:b4ff:fe2f:2c09(not set)fe80:0000:0000:0000:d660:e3ff:fe55:c480(not set)IPv6-ICMPpcapanalyzer
19
2020-11-21T14:34:30.021479-0800865215077579738flowfe80:0000:0000:0000:625b:b4ff:fe2f:2c09(not set)fe80:0000:0000:0000:d660:e3ff:fe55:c480(not set)IPv6-ICMPpcapanalyzer
20
2020-11-21T14:34:30.021479-08001992558102951791flow192.168.2.10441195192.168.2.153UDPpcapanalyzer
File 414
Showing 1-20 of 414 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
1
2020-11-21T14:33:11.931851-0800192.168.2.102192.168.2.1/data_model.cgiASCII text, with very long lines, with no line terminators576
2
2020-11-21T14:32:35.800866-0800192.168.2.102192.168.2.1/data_model.cgiASCII text, with very long lines, with no line terminators511
3
2020-11-21T14:32:15.354245-0800192.168.2.102192.168.2.1/data_model.cgiASCII text, with very long lines, with no line terminators511
4
2020-11-21T14:32:15.367396-0800192.168.2.1192.168.2.102/data_model.cgiXML 1.0 document, ASCII text1042
5
2020-11-21T14:33:11.948122-0800192.168.2.1192.168.2.102/data_model.cgiXML 1.0 document, ASCII text1234
6
2020-11-21T14:32:35.815530-0800192.168.2.1192.168.2.102/data_model.cgiXML 1.0 document, ASCII text1042
7
2020-11-21T14:33:12.678136-0800192.168.2.102192.168.2.1/data_model.cgiASCII text, with very long lines, with no line terminators409
8
2020-11-21T14:32:17.486655-0800192.168.2.102192.168.2.1/data_model.cgiASCII text, with very long lines, with no line terminators492
9
2020-11-21T14:32:40.268754-0800192.168.2.102192.168.2.1/data_model.cgiASCII text, with very long lines, with no line terminators492
10
2020-11-21T14:33:12.679978-0800192.168.2.1192.168.2.102/data_model.cgiXML 1.0 document, ASCII text807
11
2020-11-21T14:32:17.594443-0800192.168.2.1192.168.2.102/data_model.cgiXML 1.0 document, ASCII text1019
12
2020-11-21T14:32:40.271083-0800192.168.2.1192.168.2.102/data_model.cgiXML 1.0 document, ASCII text1019
13
2020-11-21T14:33:12.698577-0800192.168.2.102192.168.2.1/data_model.cgiASCII text, with very long lines, with no line terminators445
14
2020-11-21T14:32:17.615830-0800192.168.2.102192.168.2.1/data_model.cgiASCII text, with very long lines, with no line terminators554
15
2020-11-21T14:33:12.749493-0800192.168.2.1192.168.2.102/data_model.cgiXML 1.0 document, ASCII text821
16
2020-11-21T14:32:17.699967-0800192.168.2.1192.168.2.102/data_model.cgiXML 1.0 document, ASCII text1110
17
2020-11-21T14:32:40.330813-0800192.168.2.102192.168.2.1/data_model.cgiASCII text, with very long lines, with no line terminators554
18
2020-11-21T14:32:40.332653-0800192.168.2.1192.168.2.102/data_model.cgiXML 1.0 document, ASCII text1110
19
2020-11-21T14:32:19.787236-0800192.168.2.102192.168.2.1/data_model.cgiASCII text, with very long lines, with no line terminators492
20
2020-11-21T14:33:22.164428-0800192.168.2.102192.168.2.1/data_model.cgiASCII text, with very long lines, with no line terminators576

Comments(not set)

Update Download PCAP Delete