out.pcap

MD510ff05e0971e592a21c2c9ba2844d7ff
Submission Date2021-09-14 10:48:24
Tags(not set)
Alert 0
#
TimestampSrc IpDest IpAlert SignatureP
No results found.
DNS 22
Showing 1-20 of 22 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
2021-07-14T03:25:02.363328-0700172.20.0.160172.20.0.1querywww.grandstream.com.grp2601p_c074ad4bf763A(not set)
2
2021-07-14T03:25:15.390250-0700172.20.0.1608.8.8.8querywww.grandstream.com.grp2601p_c074ad4bf763A(not set)
3
2021-07-14T03:25:10.383309-0700172.20.0.160172.20.0.1querywww.grandstream.comA(not set)
4
2021-07-14T03:25:10.384567-0700172.20.0.1608.8.8.8querywww.grandstream.comA(not set)
5
2021-07-14T03:25:20.395000-0700172.20.0.160172.20.0.1querywww.grandstream.com.grp2601p_c074ad4bf763A(not set)
6
2021-07-14T03:25:20.396307-0700172.20.0.1608.8.8.8querywww.grandstream.com.grp2601p_c074ad4bf763A(not set)
7
2021-07-14T03:25:43.438578-0700172.20.0.1608.8.8.8querywww.grandstream.com.grp2601p_c074ad4bf763A(not set)
8
2021-07-14T03:25:48.443318-0700172.20.0.160172.20.0.1querywww.grandstream.com.grp2601p_c074ad4bf763A(not set)
9
2021-07-14T03:25:51.461239-0700172.20.0.1608.8.8.8querywww.grandstream.comA(not set)
10
2021-07-14T03:25:56.466459-0700172.20.0.160172.20.0.1querywww.grandstream.comA(not set)
11
2021-07-14T03:26:01.472198-0700172.20.0.160172.20.0.1querywww.grandstream.comA(not set)
12
2021-07-14T03:25:25.401480-0700172.20.0.160172.20.0.1querywww.grandstream.com.grp2601p_c074ad4bf763A(not set)
13
2021-07-14T03:25:33.427248-0700172.20.0.160172.20.0.1querywww.grandstream.comA(not set)
14
2021-07-14T03:25:33.428501-0700172.20.0.1608.8.8.8querywww.grandstream.comA(not set)
15
2021-07-14T03:25:38.434797-0700172.20.0.1608.8.8.8querywww.grandstream.com.grp2601p_c074ad4bf763A(not set)
16
2021-07-14T03:25:43.437243-0700172.20.0.160172.20.0.1querywww.grandstream.com.grp2601p_c074ad4bf763A(not set)
17
2021-07-14T03:25:56.467829-0700172.20.0.1608.8.8.8querywww.grandstream.comA(not set)
18
2021-07-14T03:25:05.378284-0700172.20.0.1608.8.8.8querywww.grandstream.comA(not set)
19
2021-07-14T03:25:15.388988-0700172.20.0.160172.20.0.1querywww.grandstream.comA(not set)
20
2021-07-14T03:25:28.422529-0700172.20.0.1608.8.8.8querywww.grandstream.comA(not set)
TLS 0
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
No results found.
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 13
Showing 1-13 of 13 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2021-07-14T03:25:36.689609-0700172.20.0.5172.20.0.16080POST/cgi-bin/api-get_phone_status200
2
2021-07-14T03:25:38.760278-0700172.20.0.5172.20.0.16080GET/cgi-bin/api-get_pcap_list?_nocache_=1631641612563200
3
2021-07-14T03:25:40.637601-0700172.20.0.5172.20.0.16080GET/cgi-bin/config_get?pvalues=35,270,271,2380,AccountRegisteredServer1,AccountRegistered1,404,417,401,2480,AccountRegisteredServer2,AccountRegistered2,504,517,501,2580,AccountRegisteredServer3,AccountRegistered3,604,617,601,2680,AccountRegisteredServer4,AccountRegistered4,704,717,701,2780,AccountRegisteredServer5,AccountRegistered5,804,817,801,2880,AccountRegisteredServer6,AccountRegistered6&sid=1411941735e1626257596&update_session=false&_nocache_=1631641614482200
4
2021-07-14T03:25:42.759263-0700172.20.0.5172.20.0.16080GET/cgi-bin/api-get_packet_status?_nocache_=1631641616560200
5
2021-07-14T03:25:44.701167-0700172.20.0.5172.20.0.16080GET/cgi-bin/config_get?pvalues=connectedSSID,7800&sid=1411941735e1626257596&update_session=false&_nocache_=1631641618480200
6
2021-07-14T03:25:46.756341-0700172.20.0.5172.20.0.16080GET/cgi-bin/api-get_pcap_list?_nocache_=1631641620558200
7
2021-07-14T03:25:48.650295-0700172.20.0.5172.20.0.16080GET/cgi-bin/config_get?pvalues=35,270,271,2380,AccountRegisteredServer1,AccountRegistered1,404,417,401,2480,AccountRegisteredServer2,AccountRegistered2,504,517,501,2580,AccountRegisteredServer3,AccountRegistered3,604,617,601,2680,AccountRegisteredServer4,AccountRegistered4,704,717,701,2780,AccountRegisteredServer5,AccountRegistered5,804,817,801,2880,AccountRegisteredServer6,AccountRegistered6&sid=1411941735e1626257596&update_session=false&_nocache_=1631641622494200
8
2021-07-14T03:25:50.754861-0700172.20.0.5172.20.0.16080GET/cgi-bin/api-get_packet_status?_nocache_=1631641624557200
9
2021-07-14T03:25:52.713437-0700172.20.0.5172.20.0.16080GET/cgi-bin/config_get?pvalues=connectedSSID,7800&sid=1411941735e1626257596&update_session=false&_nocache_=1631641626492200
10
2021-07-14T03:25:54.769176-0700172.20.0.5172.20.0.16080GET/cgi-bin/api-get_pcap_list?_nocache_=1631641628571200
11
2021-07-14T03:25:56.645721-0700172.20.0.5172.20.0.16080GET/cgi-bin/config_get?pvalues=35,270,271,2380,AccountRegisteredServer1,AccountRegistered1,404,417,401,2480,AccountRegisteredServer2,AccountRegistered2,504,517,501,2580,AccountRegisteredServer3,AccountRegistered3,604,617,601,2680,AccountRegisteredServer4,AccountRegistered4,704,717,701,2780,AccountRegisteredServer5,AccountRegistered5,804,817,801,2880,AccountRegisteredServer6,AccountRegistered6&sid=1411941735e1626257596&update_session=false&_nocache_=1631641630490200
12
2021-07-14T03:25:58.766729-0700172.20.0.5172.20.0.16080GET/cgi-bin/api-get_packet_status?_nocache_=1631641632569200
13
2021-07-14T03:26:00.709576-0700172.20.0.5172.20.0.16080GET/cgi-bin/config_get?pvalues=connectedSSID,7800&sid=1411941735e1626257596&update_session=false&_nocache_=1631641634488200
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 43
Showing 1-20 of 43 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
2021-07-14T03:25:03.830102-07001482389632957461flow172.20.0.539461172.20.0.16080TCPpcapanalyzer
2
2021-07-14T03:25:04.636017-07001343675074251584flow172.20.0.16053984172.20.0.153UDPpcapanalyzer
3
2021-07-14T03:25:06.701304-07001087806692500592flow172.20.0.559427172.20.0.16080TCPpcapanalyzer
4
2021-07-14T03:26:01.473174-07001229489073698668flow192.168.1.16554915192.168.1.25554915UDPpcapanalyzer
5
2021-07-14T03:26:01.473174-0700526746524822166flow172.20.0.1602424910.11.0.105060UDPpcapanalyzer
6
2021-07-14T03:26:01.473174-0700541272106840370flow172.20.0.160556638.8.8.853UDPpcapanalyzer
7
2021-07-14T03:26:01.473174-07002092313644893944flow172.20.0.16034868172.20.0.153UDPpcapanalyzer
8
2021-07-14T03:26:01.473174-0700971297115463804flow192.168.1.2753915239.255.255.2501900UDPpcapanalyzer
9
2021-07-14T03:26:01.473174-0700973530498593898flow172.20.0.160381318.8.8.853UDPpcapanalyzer
10
2021-07-14T03:26:01.473174-0700551678812609794flow192.168.1.33138192.168.1.255138UDPpcapanalyzer
11
2021-07-14T03:26:01.473174-07001546577919476493flow172.20.0.56009172.20.0.16080TCPpcapanalyzer
12
2021-07-14T03:26:01.473174-07001133977592278740flow192.168.1.4754372239.255.255.2501900UDPpcapanalyzer
13
2021-07-14T03:26:01.473174-07001989131349640620flow172.20.0.160525428.8.8.853UDPpcapanalyzer
14
2021-07-14T03:26:01.473174-0700895503827995667flow172.20.0.160472188.8.8.853UDPpcapanalyzer
15
2021-07-14T03:26:01.473174-07001036361574906029flow192.168.1.18863334239.255.255.2501900UDPpcapanalyzer
16
2021-07-14T03:26:01.473174-0700485428939905357flow172.20.0.16060848172.20.0.153UDPpcapanalyzer
17
2021-07-14T03:26:01.473174-0700913057358732855flow172.20.0.160464438.8.8.853UDPpcapanalyzer
18
2021-07-14T03:26:01.473174-0700793730282680188flow172.20.0.16059803172.20.0.153UDPpcapanalyzer
19
2021-07-14T03:26:01.473174-07001921236507893832flow172.20.0.16059756172.20.0.153UDPpcapanalyzer
20
2021-07-14T03:26:01.473174-0700529808838128257flow172.20.0.160362548.8.8.853UDPpcapanalyzer
File 14
Showing 1-14 of 14 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
1
2021-07-14T03:25:36.633193-0700172.20.0.5172.20.0.160/cgi-bin/api-get_phone_statusASCII text, with no line terminators46
2
2021-07-14T03:25:36.689609-0700172.20.0.160172.20.0.5/cgi-bin/api-get_phone_statusASCII text, with no line terminators61
3
2021-07-14T03:25:38.760278-0700172.20.0.160172.20.0.5/cgi-bin/api-get_pcap_listASCII text, with no line terminators16
4
2021-07-14T03:25:40.637601-0700172.20.0.160172.20.0.5/cgi-bin/config_getASCII text, with very long lines, with no line terminators2434
5
2021-07-14T03:25:42.759263-0700172.20.0.160172.20.0.5/cgi-bin/api-get_packet_statusASCII text, with no line terminators18
6
2021-07-14T03:25:44.701167-0700172.20.0.160172.20.0.5/cgi-bin/config_getASCII text, with no line terminators142
7
2021-07-14T03:25:46.756341-0700172.20.0.160172.20.0.5/cgi-bin/api-get_pcap_listASCII text, with no line terminators16
8
2021-07-14T03:25:48.650295-0700172.20.0.160172.20.0.5/cgi-bin/config_getASCII text, with very long lines, with no line terminators2434
9
2021-07-14T03:25:50.754861-0700172.20.0.160172.20.0.5/cgi-bin/api-get_packet_statusASCII text, with no line terminators18
10
2021-07-14T03:25:52.713437-0700172.20.0.160172.20.0.5/cgi-bin/config_getASCII text, with no line terminators142
11
2021-07-14T03:25:54.769176-0700172.20.0.160172.20.0.5/cgi-bin/api-get_pcap_listASCII text, with no line terminators16
12
2021-07-14T03:25:56.645721-0700172.20.0.160172.20.0.5/cgi-bin/config_getASCII text, with very long lines, with no line terminators2434
13
2021-07-14T03:25:58.766729-0700172.20.0.160172.20.0.5/cgi-bin/api-get_packet_statusASCII text, with no line terminators18
14
2021-07-14T03:26:00.709576-0700172.20.0.160172.20.0.5/cgi-bin/config_getASCII text, with no line terminators142

Comments(not set)

Update Download PCAP Delete