out.pcap

MD57a094e71c15f72bfd860b69279344bee
Submission Date2021-09-14 08:24:26
Tags(not set)
Alert 0
#
TimestampSrc IpDest IpAlert SignatureP
No results found.
DNS 72
Showing 1-20 of 72 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
2021-09-14T08:13:38.163675-0700192.168.1.53200.48.225.130querywww.grandstream.comA(not set)
2
2021-09-14T08:13:38.181586-0700192.168.1.53200.48.225.130querywww.grandstream.comA(not set)
3
2021-09-14T08:13:17.084750-0700192.168.1.53200.48.225.130querywww.grandstream.comA(not set)
4
2021-09-14T08:13:17.110594-0700200.48.225.130192.168.1.53answerwww.grandstream.comA(not set)
5
2021-09-14T08:13:17.111061-0700192.168.1.53200.48.225.130querywww.grandstream.comA(not set)
6
2021-09-14T08:13:17.119509-0700200.48.225.130192.168.1.53answerwww.grandstream.comA(not set)
7
2021-09-14T08:13:17.119971-0700192.168.1.53200.48.225.130querywww.grandstream.comA(not set)
8
2021-09-14T08:13:17.128597-0700200.48.225.130192.168.1.53answerwww.grandstream.comA(not set)
9
2021-09-14T08:13:38.172259-0700200.48.225.130192.168.1.53answerwww.grandstream.comA(not set)
10
2021-09-14T08:13:38.172763-0700192.168.1.53200.48.225.130querywww.grandstream.comA(not set)
11
2021-09-14T08:13:38.181142-0700200.48.225.130192.168.1.53answerwww.grandstream.comA(not set)
12
2021-09-14T08:13:59.235838-0700192.168.1.53200.48.225.130querywww.grandstream.comA(not set)
13
2021-09-14T08:13:59.289863-0700200.48.225.130192.168.1.53answerwww.grandstream.comA(not set)
14
2021-09-14T08:13:59.364637-0700192.168.1.53200.48.225.130querywww.grandstream.comA(not set)
15
2021-09-14T08:13:59.441966-0700200.48.225.130192.168.1.53answerwww.grandstream.comA(not set)
16
2021-09-14T08:13:38.191083-0700200.48.225.130192.168.1.53answerwww.grandstream.comA(not set)
17
2021-09-14T08:13:59.290463-0700192.168.1.53200.48.225.130querywww.grandstream.comA(not set)
18
2021-09-14T08:13:59.364140-0700200.48.225.130192.168.1.53answerwww.grandstream.comA(not set)
19
2021-09-14T08:13:17.084750-0700192.168.1.53200.48.225.130querywww.grandstream.comA(not set)
20
2021-09-14T08:13:17.110594-0700200.48.225.130192.168.1.53answerwww.grandstream.comA(not set)
TLS 0
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
No results found.
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 32
Showing 1-20 of 32 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2021-09-14T08:13:53.132166-0700192.168.1.46192.168.1.5380POST/cgi-bin/api-get_phone_status200
2
2021-09-14T08:13:55.312506-0700192.168.1.46192.168.1.5380GET/cgi-bin/api-get_pcap_list?_nocache_=1631632435247200
3
2021-09-14T08:13:57.066692-0700192.168.1.46192.168.1.5380GET/cgi-bin/config_get?pvalues=35,270,271,2380,AccountRegisteredServer1,AccountRegistered1,404,417,401,2480,AccountRegisteredServer2,AccountRegistered2,504,517,501,2580,AccountRegisteredServer3,AccountRegistered3,604,617,601,2680,AccountRegisteredServer4,AccountRegistered4,704,717,701,2780,AccountRegisteredServer5,AccountRegistered5,804,817,801,2880,AccountRegisteredServer6,AccountRegistered6&sid=359383844e1631632352&update_session=false&_nocache_=1631632437043200
4
2021-09-14T08:13:59.310797-0700192.168.1.46192.168.1.5380GET/cgi-bin/api-get_packet_status?_nocache_=1631632439246200
5
2021-09-14T08:14:01.134163-0700192.168.1.46192.168.1.5380GET/cgi-bin/config_get?pvalues=connectedSSID,7800&sid=359383844e1631632352&update_session=false&_nocache_=1631632441045200
6
2021-09-14T08:14:03.325015-0700192.168.1.46192.168.1.5380GET/cgi-bin/api-get_pcap_list?_nocache_=1631632443248200
7
2021-09-14T08:14:05.067309-0700192.168.1.46192.168.1.5380GET/cgi-bin/config_get?pvalues=35,270,271,2380,AccountRegisteredServer1,AccountRegistered1,404,417,401,2480,AccountRegisteredServer2,AccountRegistered2,504,517,501,2580,AccountRegisteredServer3,AccountRegistered3,604,617,601,2680,AccountRegisteredServer4,AccountRegistered4,704,717,701,2780,AccountRegisteredServer5,AccountRegistered5,804,817,801,2880,AccountRegisteredServer6,AccountRegistered6&sid=359383844e1631632352&update_session=false&_nocache_=1631632445044200
8
2021-09-14T08:14:07.313694-0700192.168.1.46192.168.1.5380GET/cgi-bin/api-get_packet_status?_nocache_=1631632447247200
9
2021-09-14T08:13:53.132166-0700192.168.1.46192.168.1.5380POST/cgi-bin/api-get_phone_status200
10
2021-09-14T08:13:55.312506-0700192.168.1.46192.168.1.5380GET/cgi-bin/api-get_pcap_list?_nocache_=1631632435247200
11
2021-09-14T08:13:57.066692-0700192.168.1.46192.168.1.5380GET/cgi-bin/config_get?pvalues=35,270,271,2380,AccountRegisteredServer1,AccountRegistered1,404,417,401,2480,AccountRegisteredServer2,AccountRegistered2,504,517,501,2580,AccountRegisteredServer3,AccountRegistered3,604,617,601,2680,AccountRegisteredServer4,AccountRegistered4,704,717,701,2780,AccountRegisteredServer5,AccountRegistered5,804,817,801,2880,AccountRegisteredServer6,AccountRegistered6&sid=359383844e1631632352&update_session=false&_nocache_=1631632437043200
12
2021-09-14T08:13:59.310797-0700192.168.1.46192.168.1.5380GET/cgi-bin/api-get_packet_status?_nocache_=1631632439246200
13
2021-09-14T08:14:01.134163-0700192.168.1.46192.168.1.5380GET/cgi-bin/config_get?pvalues=connectedSSID,7800&sid=359383844e1631632352&update_session=false&_nocache_=1631632441045200
14
2021-09-14T08:14:03.325015-0700192.168.1.46192.168.1.5380GET/cgi-bin/api-get_pcap_list?_nocache_=1631632443248200
15
2021-09-14T08:14:05.067309-0700192.168.1.46192.168.1.5380GET/cgi-bin/config_get?pvalues=35,270,271,2380,AccountRegisteredServer1,AccountRegistered1,404,417,401,2480,AccountRegisteredServer2,AccountRegistered2,504,517,501,2580,AccountRegisteredServer3,AccountRegistered3,604,617,601,2680,AccountRegisteredServer4,AccountRegistered4,704,717,701,2780,AccountRegisteredServer5,AccountRegistered5,804,817,801,2880,AccountRegisteredServer6,AccountRegistered6&sid=359383844e1631632352&update_session=false&_nocache_=1631632445044200
16
2021-09-14T08:14:07.313694-0700192.168.1.46192.168.1.5380GET/cgi-bin/api-get_packet_status?_nocache_=1631632447247200
17
2021-09-14T08:13:53.132166-0700192.168.1.46192.168.1.5380POST/cgi-bin/api-get_phone_status200
18
2021-09-14T08:13:55.312506-0700192.168.1.46192.168.1.5380GET/cgi-bin/api-get_pcap_list?_nocache_=1631632435247200
19
2021-09-14T08:13:57.066692-0700192.168.1.46192.168.1.5380GET/cgi-bin/config_get?pvalues=35,270,271,2380,AccountRegisteredServer1,AccountRegistered1,404,417,401,2480,AccountRegisteredServer2,AccountRegistered2,504,517,501,2580,AccountRegisteredServer3,AccountRegistered3,604,617,601,2680,AccountRegisteredServer4,AccountRegistered4,704,717,701,2780,AccountRegisteredServer5,AccountRegistered5,804,817,801,2880,AccountRegisteredServer6,AccountRegistered6&sid=359383844e1631632352&update_session=false&_nocache_=1631632437043200
20
2021-09-14T08:13:59.310797-0700192.168.1.46192.168.1.5380GET/cgi-bin/api-get_packet_status?_nocache_=1631632439246200
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 120
Showing 21-40 of 120 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
21
2021-09-14T08:14:05.564022-0700236587133555875flow192.168.1.5360082200.48.225.13053UDPpcapanalyzer
22
2021-09-14T08:14:05.564022-07001792997380931057flow192.168.1.16554915192.168.1.25554915UDPpcapanalyzer
23
2021-09-14T08:14:05.564022-0700674922907214555flow192.168.1.5352718200.48.225.13053UDPpcapanalyzer
24
2021-09-14T08:14:05.564022-07001099364461023936flow192.168.1.2064849239.255.255.2501900UDPpcapanalyzer
25
2021-09-14T08:14:05.564022-07001664002333096455flow192.168.1.4629715192.168.1.5380TCPpcapanalyzer
26
2021-09-14T08:14:05.564022-0700120137687623064flow192.168.1.4636986192.168.1.5380TCPpcapanalyzer
27
2021-09-14T08:14:05.564022-0700970189023921490flow192.168.1.5343351200.48.225.13053UDPpcapanalyzer
28
2021-09-14T08:14:05.564022-07001955411570569685flow192.168.1.5347608200.48.225.13053UDPpcapanalyzer
29
2021-09-14T08:14:05.564022-07002245227376513117flow192.168.1.5338809200.48.225.13053UDPpcapanalyzer
30
2021-09-14T08:14:05.564022-07001122767735068704flowfe80:0000:0000:0000:ced4:a1ff:fec3:48f0(not set)ff02:0000:0000:0000:0000:0000:0000:0001(not set)IPv6-ICMPpcapanalyzer
31
2021-09-14T08:14:05.132738-07001410225600666182flow192.168.1.2658883239.255.255.2501900UDPpcapanalyzer
32
2021-09-14T08:14:05.132738-07002007402148457091flow192.168.1.23138192.168.1.255138UDPpcapanalyzer
33
2021-09-14T08:14:05.132738-07002170374682446575flow192.168.1.3650105239.255.255.2501900UDPpcapanalyzer
34
2021-09-14T08:14:05.132738-07001651907707417899flow192.168.1.2558942239.255.255.2501900UDPpcapanalyzer
35
2021-09-14T08:14:05.132738-07001090701508734746flow192.168.1.22138192.168.1.255138UDPpcapanalyzer
36
2021-09-14T08:14:05.132738-07002226823438571378flow192.168.1.47138192.168.1.255138UDPpcapanalyzer
37
2021-09-14T08:14:05.132738-07002229795556516049flowfe80:0000:0000:0000:0217:c8ff:fe95:91f9546ff02:0000:0000:0000:0000:0000:0001:0002547UDPpcapanalyzer
38
2021-09-14T08:14:05.132738-07001815090692808477flow192.168.1.11900239.255.255.2501900UDPpcapanalyzer
39
2021-09-14T08:14:05.132738-07002829246230175flow192.168.1.5343112200.48.225.13053UDPpcapanalyzer
40
2021-09-14T08:14:05.132738-07001552822811079125flow192.168.1.5347608200.48.225.13053UDPpcapanalyzer
File 36
Showing 21-36 of 36 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
21
2021-09-14T08:13:55.312506-0700192.168.1.53192.168.1.46/cgi-bin/api-get_pcap_listASCII text, with no line terminators16
22
2021-09-14T08:13:57.066692-0700192.168.1.53192.168.1.46/cgi-bin/config_getASCII text, with very long lines, with no line terminators2486
23
2021-09-14T08:13:59.310797-0700192.168.1.53192.168.1.46/cgi-bin/api-get_packet_statusASCII text, with no line terminators18
24
2021-09-14T08:14:01.134163-0700192.168.1.53192.168.1.46/cgi-bin/config_getASCII text, with no line terminators142
25
2021-09-14T08:14:03.325015-0700192.168.1.53192.168.1.46/cgi-bin/api-get_pcap_listASCII text, with no line terminators16
26
2021-09-14T08:14:05.067309-0700192.168.1.53192.168.1.46/cgi-bin/config_getASCII text, with very long lines, with no line terminators2486
27
2021-09-14T08:14:07.313694-0700192.168.1.53192.168.1.46/cgi-bin/api-get_packet_statusASCII text, with no line terminators18
28
2021-09-14T08:13:53.060271-0700192.168.1.46192.168.1.53/cgi-bin/api-get_phone_statusASCII text, with no line terminators45
29
2021-09-14T08:13:53.132166-0700192.168.1.53192.168.1.46/cgi-bin/api-get_phone_statusASCII text, with no line terminators61
30
2021-09-14T08:13:55.312506-0700192.168.1.53192.168.1.46/cgi-bin/api-get_pcap_listASCII text, with no line terminators16
31
2021-09-14T08:13:57.066692-0700192.168.1.53192.168.1.46/cgi-bin/config_getASCII text, with very long lines, with no line terminators2486
32
2021-09-14T08:13:59.310797-0700192.168.1.53192.168.1.46/cgi-bin/api-get_packet_statusASCII text, with no line terminators18
33
2021-09-14T08:14:01.134163-0700192.168.1.53192.168.1.46/cgi-bin/config_getASCII text, with no line terminators142
34
2021-09-14T08:14:03.325015-0700192.168.1.53192.168.1.46/cgi-bin/api-get_pcap_listASCII text, with no line terminators16
35
2021-09-14T08:14:05.067309-0700192.168.1.53192.168.1.46/cgi-bin/config_getASCII text, with very long lines, with no line terminators2486
36
2021-09-14T08:14:07.313694-0700192.168.1.53192.168.1.46/cgi-bin/api-get_packet_statusASCII text, with no line terminators18

Comments(not set)

Update Download PCAP Delete