csploit-sniff-1531182040113.pcap

MD5cca5ddb09b53f74fdc2d72bcc15b7a0c
Submission Date2018-07-09 17:29:50
Tags(not set)
Alert 0
#
TimestampSrc IpDest IpAlert SignatureP
No results found.
DNS 44
Showing 1-20 of 44 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
2018-07-09T17:21:28.764399-0700192.168.0.10189.107.115.1querygraph.facebook.comA(not set)
2
2018-07-09T17:21:28.767577-070089.107.115.1192.168.0.101answergraph.facebook.comA(not set)
3
2018-07-09T17:21:28.805509-0700192.168.0.10189.107.115.1querydata.flurry.comA(not set)
4
2018-07-09T17:21:28.808472-070089.107.115.1192.168.0.101answerdata.flurry.comA(not set)
5
2018-07-09T17:21:21.338569-0700192.168.0.10189.107.115.1querye11.whatsapp.netA(not set)
6
2018-07-09T17:21:21.344753-070089.107.115.1192.168.0.101answere11.whatsapp.netA(not set)
7
2018-07-09T17:21:28.796366-0700192.168.0.10189.107.115.1queryl-v1.presage.ioA(not set)
8
2018-07-09T17:21:29.444169-0700192.168.0.10189.107.115.1querysy-v1.presage.ioA(not set)
9
2018-07-09T17:21:29.632929-070089.107.115.1192.168.0.101answersy-v1.presage.ioA(not set)
10
2018-07-09T17:21:29.793708-070089.107.115.1192.168.0.101answerl-v1.presage.ioA(not set)
11
2018-07-09T17:21:30.758830-0700192.168.0.10189.107.115.1querysafebrowsing.googleapis.comA(not set)
12
2018-07-09T17:21:30.760620-070089.107.115.1192.168.0.101answersafebrowsing.googleapis.comA(not set)
13
2018-07-09T17:21:30.989757-0700192.168.0.10189.107.115.1querypl-v2.presage.ioA(not set)
14
2018-07-09T17:21:31.355110-070089.107.115.1192.168.0.101answerpl-v2.presage.ioA(not set)
15
2018-07-09T17:21:53.318876-0700192.168.0.10189.107.115.1queryadashx4ae.ut.taobao.comA(not set)
16
2018-07-09T17:21:53.321328-070089.107.115.1192.168.0.101answeradashx4ae.ut.taobao.comA(not set)
17
2018-07-09T17:23:01.109515-0700192.168.0.10189.107.115.1queryplay.googleapis.comA(not set)
18
2018-07-09T17:21:53.301019-0700192.168.0.10189.107.115.1queryadashx4ae.ut.taobao.comAAAA(not set)
19
2018-07-09T17:23:01.116292-070089.107.115.1192.168.0.101answerplay.googleapis.comA(not set)
20
2018-07-09T17:21:53.318336-070089.107.115.1192.168.0.101answeradashx4ae.ut.taobao.comAAAA(not set)
TLS 18
Showing 1-18 of 18 items.
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
1
2018-07-09T17:21:30.078186-0700192.168.0.10154.192.96.78TLS 1.2l-v1.presage.io
2
2018-07-09T17:21:31.198169-0700192.168.0.101216.58.194.202TLS 1.2safebrowsing.googleapis.com
3
2018-07-09T17:21:29.008393-0700192.168.0.10131.13.72.8TLS 1.2graph.facebook.com
4
2018-07-09T17:21:31.542388-0700192.168.0.10174.125.163.34TLS 1.2r16---sn-axq7sn7e.c.2mdn.net
5
2018-07-09T17:21:29.163570-0700192.168.0.10172.30.3.82TLS 1.2data.flurry.com
6
2018-07-09T17:21:31.563747-0700192.168.0.10154.76.79.54TLS 1.2pl-v2.presage.io
7
2018-07-09T17:21:30.094029-0700192.168.0.10152.51.35.64TLS 1.2sy-v1.presage.io
8
2018-07-09T17:23:01.714945-0700192.168.0.101172.217.164.106TLS 1.2play.googleapis.com
9
2018-07-09T17:23:02.857943-0700192.168.0.101216.58.195.227TLS 1.2update.googleapis.com
10
2018-07-09T17:21:30.078186-0700192.168.0.10154.192.96.78TLS 1.2l-v1.presage.io
11
2018-07-09T17:21:30.094029-0700192.168.0.10152.51.35.64TLS 1.2sy-v1.presage.io
12
2018-07-09T17:21:31.542388-0700192.168.0.10174.125.163.34TLS 1.2r16---sn-axq7sn7e.c.2mdn.net
13
2018-07-09T17:21:29.008393-0700192.168.0.10131.13.72.8TLS 1.2graph.facebook.com
14
2018-07-09T17:21:31.563747-0700192.168.0.10154.76.79.54TLS 1.2pl-v2.presage.io
15
2018-07-09T17:21:29.163570-0700192.168.0.10172.30.3.82TLS 1.2data.flurry.com
16
2018-07-09T17:21:31.198169-0700192.168.0.101216.58.194.202TLS 1.2safebrowsing.googleapis.com
17
2018-07-09T17:23:01.714945-0700192.168.0.101172.217.164.106TLS 1.2play.googleapis.com
18
2018-07-09T17:23:02.857943-0700192.168.0.101216.58.195.227TLS 1.2update.googleapis.com
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 0
#
TimestampSourceHostnamePortMethodURLStatus
No results found.
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 881
Showing 1-20 of 881 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
2018-07-09T17:23:03.761689-0700422272525028229flow192.168.0.10147237192.168.0.1005050TCPpcapanalyzer
2
2018-07-09T17:23:03.761689-07001126007211580381flow192.168.0.10147237192.168.0.1002607TCPpcapanalyzer
3
2018-07-09T17:23:03.761689-07001548485964627284flow192.168.0.10147237192.168.0.1001082TCPpcapanalyzer
4
2018-07-09T17:23:03.761689-07001548554684099220flow192.168.0.10147237192.168.0.1007744TCPpcapanalyzer
5
2018-07-09T17:23:03.761689-0700563731567960217flow192.168.0.10147237192.168.0.1001125TCPpcapanalyzer
6
2018-07-09T17:23:03.761689-0700811679354497flow192.168.0.10147237192.168.0.10033TCPpcapanalyzer
7
2018-07-09T17:23:03.761689-0700282479929525792flow192.168.0.10147237192.168.0.1001259TCPpcapanalyzer
8
2018-07-09T17:23:03.761689-0700846499329823758flow192.168.0.10147237192.168.0.100442TCPpcapanalyzer
9
2018-07-09T17:23:03.761689-07002114545474214134flow192.168.0.10147237192.168.0.1004567TCPpcapanalyzer
10
2018-07-09T17:23:03.761689-07001270133429084596flow192.168.0.10147237192.168.0.1001087TCPpcapanalyzer
11
2018-07-09T17:23:03.761689-07001833499994416007flow192.168.0.10147237192.168.0.1003632TCPpcapanalyzer
12
2018-07-09T17:23:03.761689-07001130083135480853flow192.168.0.10147237192.168.0.10011111TCPpcapanalyzer
13
2018-07-09T17:23:03.761689-0700708072533828194flow192.168.0.10147239192.168.0.1001038TCPpcapanalyzer
14
2018-07-09T17:23:03.761689-0700989981302378574flow192.168.0.10147237192.168.0.1005080TCPpcapanalyzer
15
2018-07-09T17:23:03.761689-0700849643245920826flow192.168.0.10147237192.168.0.1003003TCPpcapanalyzer
16
2018-07-09T17:23:03.761689-07001975757901063336flow192.168.0.10147237192.168.0.1001088TCPpcapanalyzer
17
2018-07-09T17:23:03.761689-07001412850897387148flow192.168.0.10147237192.168.0.1009999TCPpcapanalyzer
18
2018-07-09T17:23:03.761689-0700849978253428089flow192.168.0.10147237192.168.0.1003697TCPpcapanalyzer
19
2018-07-09T17:23:03.761689-0700709386793927221flow192.168.0.10147237192.168.0.1003918TCPpcapanalyzer
20
2018-07-09T17:23:03.761689-07001694918579561700flow192.168.0.10147237192.168.0.10090TCPpcapanalyzer
File 0
#
TimestampSourceDestinationFile NameFile MagicFile Size
No results found.

Comments(not set)

Update Download PCAP Delete