A1_Net_Traffic.pcap

MD553f70f5267e567200430521cb430d505
Submission Date2019-08-17 08:37:28
Tags(not set)
Alert 1
Showing 1-1 of 1 item.
#
TimestampSrc IpDest IpAlert SignatureP
1
2019-07-17T20:53:56.315454-070010.110.1.3710.110.3.255ET POLICY Spotify P2P Client*
DNS 170
Showing 1-20 of 170 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
2019-07-17T20:53:52.357699-070010.110.0.14910.10.4.25querywww.google.comA(not set)
2
2019-07-17T20:53:52.358338-070010.10.4.2510.110.0.149answerwww.google.comA(not set)
3
2019-07-17T20:53:52.853868-070010.110.0.14910.10.4.25queryfonts.gstatic.comA(not set)
4
2019-07-17T20:53:52.878498-070010.110.0.14910.30.4.25queryfonts.gstatic.comA(not set)
5
2019-07-17T20:53:52.881426-070010.10.4.2510.110.0.149answerfonts.gstatic.comA(not set)
6
2019-07-17T20:53:52.907851-070010.30.4.2510.110.0.149answerfonts.gstatic.comA(not set)
7
2019-07-17T20:53:57.060532-070010.110.0.14910.10.4.25querywww.scu.edu.auA(not set)
8
2019-07-17T20:53:57.061121-070010.10.4.2510.110.0.149answerwww.scu.edu.auA(not set)
9
2019-07-17T20:53:57.234014-070010.110.0.14910.10.4.25querycode.jquery.comA(not set)
10
2019-07-17T20:53:57.234757-070010.10.4.2510.110.0.149answercode.jquery.comA(not set)
11
2019-07-17T20:53:58.294037-070010.110.0.14910.10.4.25queryutils.qualityconnex.comA(not set)
12
2019-07-17T20:53:58.294761-070010.10.4.2510.110.0.149answerutils.qualityconnex.comA(not set)
13
2019-07-17T20:54:06.354816-070010.110.0.14910.10.4.25querywww.jetstar.comA(not set)
14
2019-07-17T20:54:06.379463-070010.110.0.14910.30.4.25querywww.jetstar.comA(not set)
15
2019-07-17T20:54:06.420818-070010.30.4.2510.110.0.149answerwww.jetstar.comA(not set)
16
2019-07-17T20:54:06.519029-070010.110.0.14910.10.4.25queryd1mj578wat5n4o.cloudfront.netA(not set)
17
2019-07-17T20:54:06.519180-070010.110.0.14910.10.4.25queryaz416426.vo.msecnd.netA(not set)
18
2019-07-17T20:54:06.520077-070010.10.4.2510.110.0.149answeraz416426.vo.msecnd.netA(not set)
19
2019-07-17T20:54:06.520796-070010.110.0.14910.10.4.25querycdns.gigya.comA(not set)
20
2019-07-17T20:54:06.523408-070010.110.0.14910.10.4.25queryvars.hotjar.comA(not set)
TLS 69
Showing 1-20 of 69 items.
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
1
2019-07-17T20:53:57.083135-070010.110.0.149203.2.60.162TLS 1.2www.scu.edu.au
2
2019-07-17T20:53:57.292949-070010.110.0.149203.2.60.162TLS 1.2www.scu.edu.au
3
2019-07-17T20:53:57.549576-070010.110.0.149205.185.208.52TLS 1.2code.jquery.com
4
2019-07-17T20:53:58.014141-070010.110.0.149203.2.60.162TLS 1.2www.scu.edu.au
5
2019-07-17T20:53:58.074309-070010.110.0.149203.2.60.162TLS 1.2www.scu.edu.au
6
2019-07-17T20:53:58.076950-070010.110.0.149203.2.60.162TLS 1.2www.scu.edu.au
7
2019-07-17T20:53:58.078257-070010.110.0.149203.2.60.162TLS 1.2www.scu.edu.au
8
2019-07-17T20:53:58.337139-070010.110.0.149124.47.172.119TLS 1.2utils.qualityconnex.com
9
2019-07-17T20:53:58.461943-070010.110.0.149203.2.60.162TLS 1.2www.scu.edu.au
10
2019-07-17T20:54:06.449338-070010.110.0.149104.98.27.127TLS 1.2www.jetstar.com
11
2019-07-17T20:54:06.561795-070010.110.0.149117.18.232.200TLS 1.3az416426.vo.msecnd.net
12
2019-07-17T20:54:06.570156-070010.110.0.149138.44.25.205TLS 1.2cdns.gigya.com
13
2019-07-17T20:54:06.572441-070010.110.0.149110.232.118.63TLS 1.2vars.hotjar.com
14
2019-07-17T20:54:06.609549-070010.110.0.149138.44.24.71TLS 1.2assets.adobedtm.com
15
2019-07-17T20:54:06.617824-070010.110.0.14913.35.148.178TLS 1.2d1mj578wat5n4o.cloudfront.net
16
2019-07-17T20:54:06.713803-070010.110.0.149104.98.40.220TLS 1.2service.maxymiser.net
17
2019-07-17T20:54:07.232259-070010.110.0.14913.211.182.104TLS 1.2dpm.demdex.net
18
2019-07-17T20:54:07.271745-070010.110.0.149104.98.37.205TLS 1.2s.go-mpulse.net
19
2019-07-17T20:54:07.376120-070010.110.0.149216.58.203.110TLS 1.3www.google-analytics.com
20
2019-07-17T20:54:07.380200-070010.110.0.14913.54.219.15TLS 1.2jetstar.demdex.net
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 1
Showing 1-1 of 1 item.
#
TimestampSourceHostnamePortMethodURLStatus
1
2019-07-17T20:53:57.108294-070010.110.0.149www.scu.edu.au80GET/302
SMB 18
Showing 1-18 of 18 items.
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
1
2019-07-17T20:53:48.477081-070010.110.1.5210.110.0.149NT LM 0.12SMB1_COMMAND_NEGOTIATE_PROTOCOL00
2
2019-07-17T20:53:48.479125-070010.110.1.5210.110.0.149NT LM 0.12SMB1_COMMAND_SESSION_SETUP_ANDX6349165535
3
2019-07-17T20:53:48.480743-070010.110.1.5210.110.0.149NT LM 0.12SMB1_COMMAND_SESSION_SETUP_ANDX6349165535
4
2019-07-17T20:53:48.481472-070010.110.1.5210.110.0.149NT LM 0.12SMB1_COMMAND_TREE_CONNECT_ANDX634913
5
2019-07-17T20:53:56.065523-070010.110.0.14910.10.4.242.??SMB1_COMMAND_NEGOTIATE_PROTOCOL00
6
2019-07-17T20:53:56.071457-070010.110.0.14910.10.4.243.02SMB2_COMMAND_NEGOTIATE_PROTOCOL00
7
2019-07-17T20:53:56.072205-070010.110.0.14910.10.4.243.02SMB2_COMMAND_TREE_CONNECT4354791492841011
8
2019-07-17T20:53:56.073162-070010.110.0.14910.10.4.243.02SMB2_COMMAND_IOCTL4354791492841011
9
2019-07-17T20:53:56.074043-070010.110.0.14910.10.4.243.02SMB2_COMMAND_IOCTL4354791492841011
10
2019-07-17T20:53:56.074043-070010.110.0.14910.10.4.243.02SMB2_COMMAND_IOCTL4354791492841011
11
2019-07-17T20:54:05.410604-070010.110.1.5210.110.0.149NT LM 0.12SMB1_COMMAND_TREE_DISCONNECT634913
12
2019-07-17T20:54:05.411991-070010.110.1.5210.110.0.149NT LM 0.12SMB1_COMMAND_LOGOFF_ANDX63491180
13
2019-07-17T20:54:06.763958-070010.110.0.14910.10.4.243.02SMB2_COMMAND_TREE_DISCONNECT4354791492841011
14
2019-07-17T20:54:06.764746-070010.110.0.14910.10.4.243.02SMB2_COMMAND_SESSION_LOGOFF4354791492841010
15
2019-07-17T20:54:11.641930-070010.110.0.15310.110.0.149NT LM 0.12SMB1_COMMAND_NEGOTIATE_PROTOCOL00
16
2019-07-17T20:54:11.643687-070010.110.0.15310.110.0.149NT LM 0.12SMB1_COMMAND_SESSION_SETUP_ANDX409765535
17
2019-07-17T20:54:11.646247-070010.110.0.15310.110.0.149NT LM 0.12SMB1_COMMAND_SESSION_SETUP_ANDX409765535
18
2019-07-17T20:54:11.647356-070010.110.0.15310.110.0.149NT LM 0.12SMB1_COMMAND_TREE_CONNECT_ANDX40972052
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 310
Showing 1-20 of 310 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
2019-07-17T20:54:14.228370-0700140887499957299flow10.110.0.1495679610.10.4.2553UDPpcapanalyzer
2
2019-07-17T20:54:14.228370-0700282655780295307flow10.110.0.1496369710.10.4.2553UDPpcapanalyzer
3
2019-07-17T20:54:14.228370-07001127158018772180flow10.110.0.14962974216.58.200.100443UDPpcapanalyzer
4
2019-07-17T20:54:14.228370-0700564328324216432flow10.110.0.21717500255.255.255.25517500UDPpcapanalyzer
5
2019-07-17T20:54:14.228370-0700705168891612549flowfe80:0000:0000:0000:d196:6e11:5cde:7c2759643ff02:0000:0000:0000:0000:0000:0001:00035355UDPpcapanalyzer
6
2019-07-17T20:54:14.228370-07001409565004384023flow10.110.0.1496295710.10.4.2553UDPpcapanalyzer
7
2019-07-17T20:54:14.228370-07001270171840253313flow10.110.0.1496385713.107.136.9443TCPpcapanalyzer
8
2019-07-17T20:54:14.228370-0700426906551852536flow10.110.0.1495863810.30.4.2553UDPpcapanalyzer
9
2019-07-17T20:54:14.228370-0700991003261659667flow10.110.0.1496485610.10.4.2553UDPpcapanalyzer
10
2019-07-17T20:54:14.228370-0700428173566537459flow10.110.1.61750010.110.3.25517500UDPpcapanalyzer
11
2019-07-17T20:54:14.228370-0700569009840024643flow10.110.0.1495384510.30.4.2553UDPpcapanalyzer
12
2019-07-17T20:54:14.228370-0700991449937114658flow10.110.0.1536506810.110.0.149139TCPpcapanalyzer
13
2019-07-17T20:54:14.228370-0700991544427296236flow10.110.1.10713710.110.3.255137UDPpcapanalyzer
14
2019-07-17T20:54:14.228370-07001977239421125465flow10.110.1.671750010.110.3.25517500UDPpcapanalyzer
15
2019-07-17T20:54:14.228370-0700288604310002679flow10.110.0.14964136103.71.26.125443TCPpcapanalyzer
16
2019-07-17T20:54:14.228370-07001837150473254762flow10.110.1.3755640224.0.0.2525355UDPpcapanalyzer
17
2019-07-17T20:54:14.228370-0700289106821339539flow10.110.0.14950629172.217.167.67443UDPpcapanalyzer
18
2019-07-17T20:54:14.228370-07001978600925347337flow10.110.0.4551611255.255.255.2551947UDPpcapanalyzer
19
2019-07-17T20:54:14.228370-07001980318912049760flow10.110.1.1171750010.110.3.25517500UDPpcapanalyzer
20
2019-07-17T20:54:14.228370-07001840006626759342flow10.110.0.1495370410.10.4.2553UDPpcapanalyzer
File 0
#
TimestampSourceDestinationFile NameFile MagicFile Size
No results found.

Comments(not set)

Update Download PCAP Delete