2019_08_13_124806.pcap

MD542c168df61d195028004b86da455997b
Submission Date2019-08-13 00:26:43
Tags(not set)
Alert 0
#
TimestampSrc IpDest IpAlert SignatureP
No results found.
DNS 4
Showing 1-4 of 4 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
2019-08-13T00:19:58.747389-070010.8.0.18.8.8.8queryg.whatsapp.netA(not set)
2
2019-08-13T00:19:59.753256-070010.8.0.18.8.8.8queryg.whatsapp.netAAAA(not set)
3
2019-08-13T00:20:08.839771-070010.8.0.18.8.4.4queryg.whatsapp.netA(not set)
4
2019-08-13T00:20:09.852914-070010.8.0.18.8.4.4queryg.whatsapp.netAAAA(not set)
TLS 13
Showing 1-13 of 13 items.
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
1
2019-08-13T00:18:07.858792-070010.8.0.118.139.8.32TLS 1.2samsung.com
2
2019-08-13T00:18:14.963126-070010.8.0.152.18.197.145TLS 1.2prod-knoxlog.secb2b.com
3
2019-08-13T00:18:15.002256-070010.8.0.1172.217.194.188TLS 1.2mtalk.google.com
4
2019-08-13T00:18:17.823863-070010.8.0.152.18.197.145TLS 1.2prod-knoxlog.secb2b.com
5
2019-08-13T00:18:21.453397-070010.8.0.152.18.197.145TLS 1.2prod-knoxlog.secb2b.com
6
2019-08-13T00:18:33.636629-070010.8.0.1172.217.27.202TLS 1.3www.googleapis.com
7
2019-08-13T00:18:36.086792-070010.8.0.1172.217.166.77TLS 1.3accounts.google.com
8
2019-08-13T00:19:09.188225-070010.8.0.174.125.24.188TLS 1.2mtalk.google.com
9
2019-08-13T00:19:10.013032-070010.8.0.118.139.8.32TLS 1.2samsung.com
10
2019-08-13T00:19:14.654276-070010.8.0.1172.217.26.234TLS 1.2www.googleapis.com
11
2019-08-13T00:19:17.423598-070010.8.0.1172.217.166.165TLS 1.2inbox.google.com
12
2019-08-13T00:18:47.929901-070010.8.0.1172.217.160.165TLS 1.2inbox.google.com
13
2019-08-13T00:19:13.680966-070010.8.0.1216.58.196.74TLS 1.2android.googleapis.com
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 3
Showing 1-3 of 3 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2019-08-13T00:18:07.488355-070010.8.0.1clients3.google.com80GET/generate_204204
2
2019-08-13T00:19:03.285659-070010.8.0.1192.168.0.180GET/200
3
2019-08-13T00:20:19.197598-070010.8.0.1192.168.12.10080GET/(not set)
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 36
Showing 21-36 of 36 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
21
2019-08-13T00:20:19.197598-07001616193586045309flow10.8.0.155140192.168.12.10011666TCPpcapanalyzer
22
2019-08-13T00:20:19.197598-0700773757219760784flow10.8.0.15998152.18.197.145443TCPpcapanalyzer
23
2019-08-13T00:20:19.197598-07002181754874744345flow10.8.0.151455172.217.166.77443TCPpcapanalyzer
24
2019-08-13T00:20:19.197598-0700775741498647968flow10.8.0.13963418.139.8.325223TCPpcapanalyzer
25
2019-08-13T00:20:19.197598-0700920318684002233flow10.8.0.15998352.18.197.145443TCPpcapanalyzer
26
2019-08-13T00:20:19.197598-0700358238467811197flow10.8.0.1521178.8.8.853UDPpcapanalyzer
27
2019-08-13T00:20:19.197598-0700361902071299877flow10.8.0.154733192.168.0.180TCPpcapanalyzer
28
2019-08-13T00:20:19.197598-07002202991346634843flow10.8.0.1396078.8.4.453UDPpcapanalyzer
29
2019-08-13T00:20:19.197598-0700796516252500041flow10.8.0.153893172.217.27.202443TCPpcapanalyzer
30
2019-08-13T00:20:19.197598-07001220695815258794flow10.8.0.157103172.217.26.234443TCPpcapanalyzer
31
2019-08-13T00:20:19.197598-0700662240543327059flow10.8.0.144621172.217.160.165443TCPpcapanalyzer
32
2019-08-13T00:20:19.197598-07001094447399890244flow10.8.0.155138192.168.12.10011666TCPpcapanalyzer
33
2019-08-13T00:20:19.197598-0700114350894694413flow10.8.0.137737172.217.166.165443TCPpcapanalyzer
34
2019-08-13T00:20:19.197598-0700971931309059622flow10.8.0.15448431.13.79.545222TCPpcapanalyzer
35
2019-08-13T00:20:19.197598-0700697897359183418flow10.8.0.13959318.139.8.325223TCPpcapanalyzer
36
2019-08-13T00:20:19.197598-07001545163410207725flow10.8.0.143721157.240.16.535222TCPpcapanalyzer
File 1
Showing 1-1 of 1 item.
#
TimestampSourceDestinationFile NameFile MagicFile Size
1
2019-08-13T00:19:03.285659-0700192.168.0.110.8.0.1/HTML document, ASCII text, with no line terminators151

Comments(not set)

Update Download PCAP Delete