lan.root.1 (1).pcap

MD58ffa4062568af574497e8f9e5bcaf231
Submission Date2021-09-14 11:41:01
Tags(not set)
Alert 0
#
TimestampSrc IpDest IpAlert SignatureP
No results found.
DNS 0
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
No results found.
TLS 17
Showing 1-17 of 17 items.
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
1
2021-09-14T11:38:13.870032-0700192.168.11.2352.203.251.233TLS 1.2signalr.movidesk.com
2
2021-09-14T11:38:13.445451-0700192.168.11.2352.203.251.233TLS 1.2signalr.movidesk.com
3
2021-09-14T11:38:10.819290-0700192.168.11.23142.250.219.35TLS 1.3ssl.gstatic.com
4
2021-09-14T11:38:26.991962-0700192.168.11.2323.22.100.216TLS 1.2expert.movidesk.com
5
2021-09-14T11:38:50.158233-0700192.168.11.2352.97.64.194TLSv1outlook.office365.com
6
2021-09-14T11:38:58.970885-0700192.168.11.2352.203.251.233TLS 1.2signalr.movidesk.com
7
2021-09-14T11:38:14.420660-0700192.168.11.2352.203.251.233TLS 1.2signalr.movidesk.com
8
2021-09-14T11:38:16.986435-0700192.168.11.233.224.38.179TLS 1.2session.app.movidesk.com
9
2021-09-14T11:39:03.580544-0700192.168.11.23172.217.28.3TLS 1.3b1.nel.goog
10
2021-09-14T11:38:59.260444-0700192.168.11.2335.201.89.62TLS 1.3beacons.gcp.gvt2.com
11
2021-09-14T11:38:59.394519-0700192.168.11.2352.203.251.233TLS 1.2signalr.movidesk.com
12
2021-09-14T11:39:16.992177-0700192.168.11.2354.83.173.74TLS 1.2session.app.movidesk.com
13
2021-09-14T11:39:17.265533-0700192.168.11.2335.201.89.62TLS 1.3beacons.gcp.gvt2.com
14
2021-09-14T11:38:20.425704-0700192.168.11.2340.74.219.49TLS 1.2azscus1-client-s.gateway.messenger.live.com
15
2021-09-14T11:38:54.424044-0700192.168.11.23142.251.129.106TLS 1.3signaler-pa.clients6.google.com
16
2021-09-14T11:38:56.987171-0700192.168.11.23172.217.162.142TLS 1.3play.google.com
17
2021-09-14T11:39:27.887875-0700192.168.11.23142.250.218.195TLS 1.3ssl.gstatic.com
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 8
Showing 1-8 of 8 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2021-09-14T11:38:45.769739-0700192.168.11.23crl.microsoft.com80GET/pki/crl/products/tspca.crl200
2
2021-09-14T11:38:56.178924-0700192.168.11.23crl.pki.goog80GET/gsr1/gsr1.crl304
3
2021-09-14T11:39:06.634203-0700192.168.11.23crl.pki.goog80GET/gsr2/gsr2.crl304
4
2021-09-14T11:39:11.837211-0700192.168.11.23crl.microsoft.com80GET/pki/crl/products/CodeSignPCA2.crl200
5
2021-09-14T11:39:17.053365-0700192.168.11.23crl.microsoft.com80GET/pki/crl/products/WinPCA.crl200
6
2021-09-14T11:39:22.272709-0700192.168.11.23ctldl.windowsupdate.com80GET/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cab?95dba4b45989fd49304
7
2021-09-14T11:38:50.948928-0700192.168.11.23crl.identrust.com80GET/DSTROOTCAX3CRL.crl304
8
2021-09-14T11:39:01.450038-0700192.168.11.23crl.certum.pl80GET/ctnca.crl304
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 109
Showing 1-20 of 109 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
2021-09-14T11:39:39.691995-0700652500872722flow192.168.11.2359339224.0.0.2525355UDPpcapanalyzer
2
2021-09-14T11:39:39.691995-0700360270112665624flow192.168.11.2365462239.255.255.2501900UDPpcapanalyzer
3
2021-09-14T11:39:39.691995-07002078501844523239flow192.168.11.2363767224.0.0.2525355UDPpcapanalyzer
4
2021-09-14T11:39:39.691995-0700837226230974190flow192.168.11.2362166224.0.0.2525355UDPpcapanalyzer
5
2021-09-14T11:39:39.691995-07001267470285107325flow192.168.11.2365198142.251.129.106443UDPpcapanalyzer
6
2021-09-14T11:39:39.691995-0700425051104140455flow191.252.112.195587192.168.11.2340729TCPpcapanalyzer
7
2021-09-14T11:39:39.691995-0700847993716594149flow192.168.11.2351721172.217.162.142443UDPpcapanalyzer
8
2021-09-14T11:39:39.691995-07001974035359434577flow192.168.11.2332253142.250.218.195443TCPpcapanalyzer
9
2021-09-14T11:39:39.691995-07001270541189257332flow192.168.11.2350073224.0.0.2525355UDPpcapanalyzer
10
2021-09-14T11:39:39.691995-0700850188441965817flow192.168.11.234272340.74.219.49443TCPpcapanalyzer
11
2021-09-14T11:39:39.691995-0700850257164182413flow192.168.11.2311100104.104.131.204443TCPpcapanalyzer
12
2021-09-14T11:39:39.691995-07001694819531106939flow192.168.11.232052140.74.219.49443TCPpcapanalyzer
13
2021-09-14T11:39:39.691995-0700290133296807972flow192.168.11.233979834.238.237.41443TCPpcapanalyzer
14
2021-09-14T11:39:39.691995-07002119879562096642flow192.168.11.231056835.201.89.62443TCPpcapanalyzer
15
2021-09-14T11:39:39.691995-07001701154612309038flow192.168.11.2362975142.250.218.195443UDPpcapanalyzer
16
2021-09-14T11:39:39.691995-07001422217957034314flow192.168.11.235690537.252.247.1075938TCPpcapanalyzer
17
2021-09-14T11:39:39.691995-07001001491554535394flow192.168.11.2361600224.0.0.2525355UDPpcapanalyzer
18
2021-09-14T11:39:39.691995-07001846423286297468flow192.168.11.235870552.203.251.233443TCPpcapanalyzer
19
2021-09-14T11:39:39.691995-0700861445554690246flow192.168.11.2356445172.217.28.3443TCPpcapanalyzer
20
2021-09-14T11:39:39.691995-0700440354076921689flow192.168.11.2361670224.0.0.2525355UDPpcapanalyzer
File 3
Showing 1-3 of 3 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
1
2021-09-14T11:38:45.769739-07002.21.91.136192.168.11.23/pki/crl/products/tspca.crldata521
2
2021-09-14T11:39:11.837211-07002.21.91.136192.168.11.23/pki/crl/products/CodeSignPCA2.crldata558
3
2021-09-14T11:39:17.053365-07002.21.91.136192.168.11.23/pki/crl/products/WinPCA.crldata530

Comments(not set)

Update Download PCAP Delete