out.pcap

MD57a094e71c15f72bfd860b69279344bee
Submission Date2021-09-14 08:24:26
Tags(not set)
Alert 0
#
TimestampSrc IpDest IpAlert SignatureP
No results found.
DNS 72
Showing 1-20 of 72 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
2021-09-14T08:13:38.163675-0700192.168.1.53200.48.225.130querywww.grandstream.comA(not set)
2
2021-09-14T08:13:38.181586-0700192.168.1.53200.48.225.130querywww.grandstream.comA(not set)
3
2021-09-14T08:13:17.084750-0700192.168.1.53200.48.225.130querywww.grandstream.comA(not set)
4
2021-09-14T08:13:17.110594-0700200.48.225.130192.168.1.53answerwww.grandstream.comA(not set)
5
2021-09-14T08:13:17.111061-0700192.168.1.53200.48.225.130querywww.grandstream.comA(not set)
6
2021-09-14T08:13:17.119509-0700200.48.225.130192.168.1.53answerwww.grandstream.comA(not set)
7
2021-09-14T08:13:17.119971-0700192.168.1.53200.48.225.130querywww.grandstream.comA(not set)
8
2021-09-14T08:13:17.128597-0700200.48.225.130192.168.1.53answerwww.grandstream.comA(not set)
9
2021-09-14T08:13:38.172259-0700200.48.225.130192.168.1.53answerwww.grandstream.comA(not set)
10
2021-09-14T08:13:38.172763-0700192.168.1.53200.48.225.130querywww.grandstream.comA(not set)
11
2021-09-14T08:13:38.181142-0700200.48.225.130192.168.1.53answerwww.grandstream.comA(not set)
12
2021-09-14T08:13:59.235838-0700192.168.1.53200.48.225.130querywww.grandstream.comA(not set)
13
2021-09-14T08:13:59.289863-0700200.48.225.130192.168.1.53answerwww.grandstream.comA(not set)
14
2021-09-14T08:13:59.364637-0700192.168.1.53200.48.225.130querywww.grandstream.comA(not set)
15
2021-09-14T08:13:59.441966-0700200.48.225.130192.168.1.53answerwww.grandstream.comA(not set)
16
2021-09-14T08:13:38.191083-0700200.48.225.130192.168.1.53answerwww.grandstream.comA(not set)
17
2021-09-14T08:13:59.290463-0700192.168.1.53200.48.225.130querywww.grandstream.comA(not set)
18
2021-09-14T08:13:59.364140-0700200.48.225.130192.168.1.53answerwww.grandstream.comA(not set)
19
2021-09-14T08:13:17.084750-0700192.168.1.53200.48.225.130querywww.grandstream.comA(not set)
20
2021-09-14T08:13:17.110594-0700200.48.225.130192.168.1.53answerwww.grandstream.comA(not set)
TLS 0
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
No results found.
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 32
Showing 1-20 of 32 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2021-09-14T08:13:53.132166-0700192.168.1.46192.168.1.5380POST/cgi-bin/api-get_phone_status200
2
2021-09-14T08:13:55.312506-0700192.168.1.46192.168.1.5380GET/cgi-bin/api-get_pcap_list?_nocache_=1631632435247200
3
2021-09-14T08:13:57.066692-0700192.168.1.46192.168.1.5380GET/cgi-bin/config_get?pvalues=35,270,271,2380,AccountRegisteredServer1,AccountRegistered1,404,417,401,2480,AccountRegisteredServer2,AccountRegistered2,504,517,501,2580,AccountRegisteredServer3,AccountRegistered3,604,617,601,2680,AccountRegisteredServer4,AccountRegistered4,704,717,701,2780,AccountRegisteredServer5,AccountRegistered5,804,817,801,2880,AccountRegisteredServer6,AccountRegistered6&sid=359383844e1631632352&update_session=false&_nocache_=1631632437043200
4
2021-09-14T08:13:59.310797-0700192.168.1.46192.168.1.5380GET/cgi-bin/api-get_packet_status?_nocache_=1631632439246200
5
2021-09-14T08:14:01.134163-0700192.168.1.46192.168.1.5380GET/cgi-bin/config_get?pvalues=connectedSSID,7800&sid=359383844e1631632352&update_session=false&_nocache_=1631632441045200
6
2021-09-14T08:14:03.325015-0700192.168.1.46192.168.1.5380GET/cgi-bin/api-get_pcap_list?_nocache_=1631632443248200
7
2021-09-14T08:14:05.067309-0700192.168.1.46192.168.1.5380GET/cgi-bin/config_get?pvalues=35,270,271,2380,AccountRegisteredServer1,AccountRegistered1,404,417,401,2480,AccountRegisteredServer2,AccountRegistered2,504,517,501,2580,AccountRegisteredServer3,AccountRegistered3,604,617,601,2680,AccountRegisteredServer4,AccountRegistered4,704,717,701,2780,AccountRegisteredServer5,AccountRegistered5,804,817,801,2880,AccountRegisteredServer6,AccountRegistered6&sid=359383844e1631632352&update_session=false&_nocache_=1631632445044200
8
2021-09-14T08:14:07.313694-0700192.168.1.46192.168.1.5380GET/cgi-bin/api-get_packet_status?_nocache_=1631632447247200
9
2021-09-14T08:13:53.132166-0700192.168.1.46192.168.1.5380POST/cgi-bin/api-get_phone_status200
10
2021-09-14T08:13:55.312506-0700192.168.1.46192.168.1.5380GET/cgi-bin/api-get_pcap_list?_nocache_=1631632435247200
11
2021-09-14T08:13:57.066692-0700192.168.1.46192.168.1.5380GET/cgi-bin/config_get?pvalues=35,270,271,2380,AccountRegisteredServer1,AccountRegistered1,404,417,401,2480,AccountRegisteredServer2,AccountRegistered2,504,517,501,2580,AccountRegisteredServer3,AccountRegistered3,604,617,601,2680,AccountRegisteredServer4,AccountRegistered4,704,717,701,2780,AccountRegisteredServer5,AccountRegistered5,804,817,801,2880,AccountRegisteredServer6,AccountRegistered6&sid=359383844e1631632352&update_session=false&_nocache_=1631632437043200
12
2021-09-14T08:13:59.310797-0700192.168.1.46192.168.1.5380GET/cgi-bin/api-get_packet_status?_nocache_=1631632439246200
13
2021-09-14T08:14:01.134163-0700192.168.1.46192.168.1.5380GET/cgi-bin/config_get?pvalues=connectedSSID,7800&sid=359383844e1631632352&update_session=false&_nocache_=1631632441045200
14
2021-09-14T08:14:03.325015-0700192.168.1.46192.168.1.5380GET/cgi-bin/api-get_pcap_list?_nocache_=1631632443248200
15
2021-09-14T08:14:05.067309-0700192.168.1.46192.168.1.5380GET/cgi-bin/config_get?pvalues=35,270,271,2380,AccountRegisteredServer1,AccountRegistered1,404,417,401,2480,AccountRegisteredServer2,AccountRegistered2,504,517,501,2580,AccountRegisteredServer3,AccountRegistered3,604,617,601,2680,AccountRegisteredServer4,AccountRegistered4,704,717,701,2780,AccountRegisteredServer5,AccountRegistered5,804,817,801,2880,AccountRegisteredServer6,AccountRegistered6&sid=359383844e1631632352&update_session=false&_nocache_=1631632445044200
16
2021-09-14T08:14:07.313694-0700192.168.1.46192.168.1.5380GET/cgi-bin/api-get_packet_status?_nocache_=1631632447247200
17
2021-09-14T08:13:53.132166-0700192.168.1.46192.168.1.5380POST/cgi-bin/api-get_phone_status200
18
2021-09-14T08:13:55.312506-0700192.168.1.46192.168.1.5380GET/cgi-bin/api-get_pcap_list?_nocache_=1631632435247200
19
2021-09-14T08:13:57.066692-0700192.168.1.46192.168.1.5380GET/cgi-bin/config_get?pvalues=35,270,271,2380,AccountRegisteredServer1,AccountRegistered1,404,417,401,2480,AccountRegisteredServer2,AccountRegistered2,504,517,501,2580,AccountRegisteredServer3,AccountRegistered3,604,617,601,2680,AccountRegisteredServer4,AccountRegistered4,704,717,701,2780,AccountRegisteredServer5,AccountRegistered5,804,817,801,2880,AccountRegisteredServer6,AccountRegistered6&sid=359383844e1631632352&update_session=false&_nocache_=1631632437043200
20
2021-09-14T08:13:59.310797-0700192.168.1.46192.168.1.5380GET/cgi-bin/api-get_packet_status?_nocache_=1631632439246200
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 120
Showing 41-60 of 120 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
41
2021-09-14T08:14:05.132738-0700713599088715160flow192.168.1.4636986192.168.1.5380TCPpcapanalyzer
42
2021-09-14T08:14:05.132738-0700436766970660178flow192.168.1.5343351200.48.225.13053UDPpcapanalyzer
43
2021-09-14T08:14:05.132738-07002002424281417887flow192.168.1.5346867190.119.206.2505060UDPpcapanalyzer
44
2021-09-14T08:14:05.132738-07001585181093749962flow192.168.1.4612515192.168.1.5380TCPpcapanalyzer
45
2021-09-14T08:14:05.132738-07001875503704036515flow192.168.1.5360082200.48.225.13053UDPpcapanalyzer
46
2021-09-14T08:14:05.132738-0700205345540127827flow192.168.1.462638192.168.1.5380TCPpcapanalyzer
47
2021-09-14T08:14:05.132738-07001058326049165405flow192.168.1.5338809200.48.225.13053UDPpcapanalyzer
48
2021-09-14T08:14:05.132738-07001636956924778528flowfe80:0000:0000:0000:ced4:a1ff:fec3:48f0(not set)ff02:0000:0000:0000:0000:0000:0000:0001(not set)IPv6-ICMPpcapanalyzer
49
2021-09-14T08:14:05.132738-07001360902200241418flow192.168.1.4063872239.255.255.2501900UDPpcapanalyzer
50
2021-09-14T08:14:05.132738-07001221268518443326flow192.168.1.5344083200.48.225.13053UDPpcapanalyzer
51
2021-09-14T08:14:05.132738-0700379579478325767flow192.168.1.4629715192.168.1.5380TCPpcapanalyzer
52
2021-09-14T08:14:05.132738-0700104203358377271flow192.168.1.2257581239.255.255.2501900UDPpcapanalyzer
53
2021-09-14T08:14:05.132738-0700814784219528689flow192.168.1.16554915192.168.1.25554915UDPpcapanalyzer
54
2021-09-14T08:14:05.132738-07001521637053595236flow192.168.1.4622628192.168.1.5380TCPpcapanalyzer
55
2021-09-14T08:14:05.132738-0700114610060928666flow192.168.1.4616542192.168.1.5380TCPpcapanalyzer
56
2021-09-14T08:14:05.132738-07001529539796523025flow192.168.1.5330807216.93.246.183478UDPpcapanalyzer
57
2021-09-14T08:14:05.132738-0700268670539221774flow192.168.1.5348150200.48.225.13053UDPpcapanalyzer
58
2021-09-14T08:14:05.132738-07001960260590019291flow192.168.1.5352718200.48.225.13053UDPpcapanalyzer
59
2021-09-14T08:14:05.132738-07001401150337351515flow192.168.1.5344480200.48.225.13053UDPpcapanalyzer
60
2021-09-14T08:14:05.132738-07001266597602628288flow192.168.1.2064849239.255.255.2501900UDPpcapanalyzer
File 36
Showing 1-20 of 36 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
1
2021-09-14T08:13:53.060271-0700192.168.1.46192.168.1.53/cgi-bin/api-get_phone_statusASCII text, with no line terminators45
2
2021-09-14T08:13:53.132166-0700192.168.1.53192.168.1.46/cgi-bin/api-get_phone_statusASCII text, with no line terminators61
3
2021-09-14T08:13:55.312506-0700192.168.1.53192.168.1.46/cgi-bin/api-get_pcap_listASCII text, with no line terminators16
4
2021-09-14T08:13:57.066692-0700192.168.1.53192.168.1.46/cgi-bin/config_getASCII text, with very long lines, with no line terminators2486
5
2021-09-14T08:13:59.310797-0700192.168.1.53192.168.1.46/cgi-bin/api-get_packet_statusASCII text, with no line terminators18
6
2021-09-14T08:14:01.134163-0700192.168.1.53192.168.1.46/cgi-bin/config_getASCII text, with no line terminators142
7
2021-09-14T08:14:03.325015-0700192.168.1.53192.168.1.46/cgi-bin/api-get_pcap_listASCII text, with no line terminators16
8
2021-09-14T08:14:05.067309-0700192.168.1.53192.168.1.46/cgi-bin/config_getASCII text, with very long lines, with no line terminators2486
9
2021-09-14T08:14:07.313694-0700192.168.1.53192.168.1.46/cgi-bin/api-get_packet_statusASCII text, with no line terminators18
10
2021-09-14T08:13:53.060271-0700192.168.1.46192.168.1.53/cgi-bin/api-get_phone_statusASCII text, with no line terminators45
11
2021-09-14T08:13:53.132166-0700192.168.1.53192.168.1.46/cgi-bin/api-get_phone_statusASCII text, with no line terminators61
12
2021-09-14T08:13:55.312506-0700192.168.1.53192.168.1.46/cgi-bin/api-get_pcap_listASCII text, with no line terminators16
13
2021-09-14T08:13:57.066692-0700192.168.1.53192.168.1.46/cgi-bin/config_getASCII text, with very long lines, with no line terminators2486
14
2021-09-14T08:13:59.310797-0700192.168.1.53192.168.1.46/cgi-bin/api-get_packet_statusASCII text, with no line terminators18
15
2021-09-14T08:14:01.134163-0700192.168.1.53192.168.1.46/cgi-bin/config_getASCII text, with no line terminators142
16
2021-09-14T08:14:03.325015-0700192.168.1.53192.168.1.46/cgi-bin/api-get_pcap_listASCII text, with no line terminators16
17
2021-09-14T08:14:05.067309-0700192.168.1.53192.168.1.46/cgi-bin/config_getASCII text, with very long lines, with no line terminators2486
18
2021-09-14T08:14:07.313694-0700192.168.1.53192.168.1.46/cgi-bin/api-get_packet_statusASCII text, with no line terminators18
19
2021-09-14T08:13:53.060271-0700192.168.1.46192.168.1.53/cgi-bin/api-get_phone_statusASCII text, with no line terminators45
20
2021-09-14T08:13:53.132166-0700192.168.1.53192.168.1.46/cgi-bin/api-get_phone_statusASCII text, with no line terminators61

Comments(not set)

Update Download PCAP Delete