tcpdata_santg_ss_20181004073632.pcap

MD5e3d0759ab1590c32c207bc6f0ca8361e
Submission Date2018-10-04 00:44:10
Tags(not set)
Alert 0
#
TimestampSrc IpDest IpAlert SignatureP
No results found.
DNS 24
Showing 1-20 of 24 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
2018-10-03T23:38:31.683092-070010.155.52.5410.87.63.117queryversion.bindTXT(not set)
2
2018-10-03T23:38:31.794187-070010.155.52.5410.87.63.117query117.63.87.10.in-addr.arpaPTR(not set)
3
2018-10-03T23:39:39.652408-070010.155.52.5410.87.63.117queryversion.bindTXT(not set)
4
2018-10-03T23:39:39.763497-070010.155.52.5410.87.63.117query117.63.87.10.in-addr.arpaPTR(not set)
5
2018-10-03T23:40:52.387340-070010.155.52.5410.87.63.117queryversion.bindTXT(not set)
6
2018-10-03T23:40:52.498454-070010.155.52.5410.87.63.117query117.63.87.10.in-addr.arpaPTR(not set)
7
2018-10-03T23:42:13.108499-070010.155.52.5410.87.63.117queryversion.bindTXT(not set)
8
2018-10-03T23:42:13.219614-070010.155.52.5410.87.63.117query117.63.87.10.in-addr.arpaPTR(not set)
9
2018-10-03T23:43:29.427676-070010.155.52.5410.87.63.117queryversion.bindTXT(not set)
10
2018-10-03T23:43:29.538731-070010.155.52.5410.87.63.117query117.63.87.10.in-addr.arpaPTR(not set)
11
2018-10-03T23:44:03.563938-070010.155.52.5410.87.63.117queryversion.bindTXT(not set)
12
2018-10-03T23:44:03.674856-070010.155.52.5410.87.63.117query117.63.87.10.in-addr.arpaPTR(not set)
13
2018-10-03T23:38:31.683092-070010.155.52.5410.87.63.117queryversion.bindTXT(not set)
14
2018-10-03T23:38:31.794187-070010.155.52.5410.87.63.117query117.63.87.10.in-addr.arpaPTR(not set)
15
2018-10-03T23:39:39.652408-070010.155.52.5410.87.63.117queryversion.bindTXT(not set)
16
2018-10-03T23:39:39.763497-070010.155.52.5410.87.63.117query117.63.87.10.in-addr.arpaPTR(not set)
17
2018-10-03T23:40:52.387340-070010.155.52.5410.87.63.117queryversion.bindTXT(not set)
18
2018-10-03T23:40:52.498454-070010.155.52.5410.87.63.117query117.63.87.10.in-addr.arpaPTR(not set)
19
2018-10-03T23:42:13.108499-070010.155.52.5410.87.63.117queryversion.bindTXT(not set)
20
2018-10-03T23:42:13.219614-070010.155.52.5410.87.63.117query117.63.87.10.in-addr.arpaPTR(not set)
TLS 6
Showing 1-6 of 6 items.
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
1
2018-10-03T23:41:28.027022-070010.155.52.5410.154.37.233TLS 1.2monitoring.qualys.eu
2
2018-10-03T23:41:23.898352-070010.155.52.5410.154.37.233TLS 1.2monitoring.qualys.eu
3
2018-10-03T23:41:28.260050-070010.155.52.5410.154.37.233TLS 1.2monitoring.qualys.eu
4
2018-10-03T23:41:28.027022-070010.155.52.5410.154.37.233TLS 1.2monitoring.qualys.eu
5
2018-10-03T23:41:23.898352-070010.155.52.5410.154.37.233TLS 1.2monitoring.qualys.eu
6
2018-10-03T23:41:28.260050-070010.155.52.5410.154.37.233TLS 1.2monitoring.qualys.eu
TFTP 8
Showing 1-8 of 8 items.
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
12018-10-03T23:38:58.145943-070010.155.52.5410.87.63.117readkernelnetascii
22018-10-03T23:40:06.115289-070010.155.52.5410.87.63.117readkernelnetascii
32018-10-03T23:41:24.100478-070010.155.52.5410.87.63.117readkernelnetascii
42018-10-03T23:42:44.821541-070010.155.52.5410.87.63.117readkernelnetascii
52018-10-03T23:38:58.145943-070010.155.52.5410.87.63.117readkernelnetascii
62018-10-03T23:40:06.115289-070010.155.52.5410.87.63.117readkernelnetascii
72018-10-03T23:41:24.100478-070010.155.52.5410.87.63.117readkernelnetascii
82018-10-03T23:42:44.821541-070010.155.52.5410.87.63.117readkernelnetascii
HTTP 6
Showing 1-6 of 6 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2018-10-03T23:41:27.961471-070010.155.52.54monitoring.qualys.eu8080CONNECTmonitoring.qualys.eu:443200
2
2018-10-03T23:41:23.831973-070010.155.52.54monitoring.qualys.eu8080CONNECTmonitoring.qualys.eu:443200
3
2018-10-03T23:41:28.203112-070010.155.52.54monitoring.qualys.eu8080CONNECTmonitoring.qualys.eu:443200
4
2018-10-03T23:41:27.961471-070010.155.52.54monitoring.qualys.eu8080CONNECTmonitoring.qualys.eu:443200
5
2018-10-03T23:41:23.831973-070010.155.52.54monitoring.qualys.eu8080CONNECTmonitoring.qualys.eu:443200
6
2018-10-03T23:41:28.203112-070010.155.52.54monitoring.qualys.eu8080CONNECTmonitoring.qualys.eu:443200
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 19763
Showing 121-140 of 19,763 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
121
2018-10-03T23:41:52.178676-0700478303483068681flow10.155.52.543487010.87.63.117520UDPpcapanalyzer
122
2018-10-03T23:41:52.178676-0700619728166081785flow10.155.52.54321210.87.63.1171TCPpcapanalyzer
123
2018-10-03T23:41:52.178676-0700621016656750736flow10.155.52.5451410.87.63.11780UDPpcapanalyzer
124
2018-10-03T23:41:52.178676-0700622051743428674flow10.155.52.54321210.87.63.11780TCPpcapanalyzer
125
2018-10-03T23:41:52.178676-07001185379653996249flow10.155.52.54321210.87.63.11767TCPpcapanalyzer
126
2018-10-03T23:41:52.178676-0700904398599401691flow10.155.52.54514110.87.63.11780UDPpcapanalyzer
127
2018-10-03T23:41:52.178676-0700765499357014175flow10.155.52.54668310.87.63.11721129UDPpcapanalyzer
128
2018-10-03T23:41:52.178676-07001188042534820597flow10.155.52.19413710.155.53.255137UDPpcapanalyzer
129
2018-10-03T23:41:52.178676-0700625212839804246flow10.155.52.54154210.87.63.11721129UDPpcapanalyzer
130
2018-10-03T23:41:52.178676-0700907843162511462flow10.155.52.545409510.87.63.11729723UDPpcapanalyzer
131
2018-10-03T23:41:52.178676-0700767711264294944flow10.155.52.54321210.87.63.11725TCPpcapanalyzer
132
2018-10-03T23:41:52.178676-07001049482594248056flow10.155.52.2713810.155.53.255138UDPpcapanalyzer
133
2018-10-03T23:41:52.178676-0700910166739589123flow10.155.52.54321210.87.63.1171524TCPpcapanalyzer
134
2018-10-03T23:41:52.178676-07001754643209342792flow10.155.52.54321210.87.63.117110TCPpcapanalyzer
135
2018-10-03T23:41:52.178676-0700488924937227021flow10.155.52.54321210.87.63.117139TCPpcapanalyzer
136
2018-10-03T23:41:52.178676-07001474439543838928flow10.155.53.24813810.155.53.255138UDPpcapanalyzer
137
2018-10-03T23:41:52.178676-07001616426866750461flow10.155.52.54321210.87.63.11723TCPpcapanalyzer
138
2018-10-03T23:41:52.178676-070068357445296024flow10.155.52.54616810.87.63.11721129UDPpcapanalyzer
139
2018-10-03T23:41:52.178676-0700631414772598186flow10.155.52.54462610.87.63.11721129UDPpcapanalyzer
140
2018-10-03T23:41:52.178676-07001898511729057115flow10.155.52.543487010.87.63.11732771UDPpcapanalyzer
File 0
#
TimestampSourceDestinationFile NameFile MagicFile Size
No results found.

Comments(not set)

Update Download PCAP Delete