Challenge2 (2).pcap

MD535852a6155c8b7a9bf6e631879aef4ab
Submission Date2019-09-11 04:04:31
Tags(not set)
Alert 0
#
TimestampSrc IpDest IpAlert SignatureP
No results found.
DNS 88
Showing 1-20 of 88 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
2018-11-22T07:31:21.217317-0800192.168.1.115192.168.1.1query_ldap._tcp.S-FT-FR-EBU._sites.dc._msdcs.ad.francetelecom.frSRV(not set)
2
2018-11-22T07:31:21.249932-0800192.168.1.1192.168.1.115answer_ldap._tcp.S-FT-FR-EBU._sites.dc._msdcs.ad.francetelecom.frSRV(not set)
3
2018-11-22T07:31:21.250441-0800192.168.1.115192.168.1.1query_ldap._tcp.dc._msdcs.ad.francetelecom.frSRV(not set)
4
2018-11-22T07:31:21.291103-0800192.168.1.1192.168.1.115answer_ldap._tcp.dc._msdcs.ad.francetelecom.frSRV(not set)
5
2018-11-22T07:31:21.291684-0800192.168.1.115192.168.1.1query_ldap._tcp.67b694db-e563-4162-8ce3-6ad2e1e5ed66.domains._msdcs.ad.francetelecom.frSRV(not set)
6
2018-11-22T07:31:21.330081-0800192.168.1.1192.168.1.115answer_ldap._tcp.67b694db-e563-4162-8ce3-6ad2e1e5ed66.domains._msdcs.ad.francetelecom.frSRV(not set)
7
2018-11-22T07:31:21.404274-0800192.168.1.115192.168.1.1queryOPADYO31.intranet-paris.francetelecom.frA(not set)
8
2018-11-22T07:31:21.441057-0800192.168.1.1192.168.1.115answerOPADYO31.intranet-paris.francetelecom.frA(not set)
9
2018-11-22T07:31:21.810522-0800192.168.1.115192.168.1.1querySFEBUR11.reunion.francetelecom.frA(not set)
10
2018-11-22T07:31:21.847843-0800192.168.1.1192.168.1.115answerSFEBUR11.reunion.francetelecom.frA(not set)
11
2018-11-22T07:31:21.849498-0800192.168.1.115192.168.1.1queryopadyx61.rouen.francetelecom.frA(not set)
12
2018-11-22T07:31:21.881140-0800192.168.1.1192.168.1.115answeropadyx61.rouen.francetelecom.frA(not set)
13
2018-11-22T07:31:21.955349-0800192.168.1.115192.168.1.1querySIEBUO31.dc.iad.equant.comA(not set)
14
2018-11-22T07:31:21.983324-0800192.168.1.1192.168.1.115answerSIEBUO31.dc.iad.equant.comA(not set)
15
2018-11-22T07:31:22.065979-0800192.168.1.115192.168.1.1queryopnasnasmonp03a.intranet-paris.francetelecom.frA(not set)
16
2018-11-22T07:31:22.066892-0800192.168.1.1192.168.1.115answeropnasnasmonp03a.intranet-paris.francetelecom.frA(not set)
17
2018-11-22T07:31:22.383391-0800192.168.1.115192.168.1.1queryopnasnasaubp03a.bagnolet.francetelecom.frA(not set)
18
2018-11-22T07:31:22.415558-0800192.168.1.1192.168.1.115answeropnasnasaubp03a.bagnolet.francetelecom.frA(not set)
19
2018-11-22T07:31:29.262831-0800192.168.1.115192.168.1.1queryproxyrsc.si.francetelecom.frA(not set)
20
2018-11-22T07:31:29.265130-0800192.168.1.1192.168.1.115answerproxyrsc.si.francetelecom.frA(not set)
TLS 1
Showing 1-1 of 1 item.
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
1
2018-11-22T07:31:34.385780-0800192.168.1.115216.58.198.206TLS 1.2play.google.com
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 3
Showing 1-3 of 3 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2018-11-22T07:31:18.353850-0800192.168.1.115www.msftncsi.com80GET/ncsi.txt200
2
2018-11-22T07:31:58.477680-0800192.168.1.115www.msftncsi.com80GET/ncsi.txt200
3
2018-11-22T07:32:38.626067-0800192.168.1.115www.msftncsi.com80GET/ncsi.txt200
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 64
Showing 1-20 of 64 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
2018-11-22T07:32:38.653233-08001328801878574402flow192.168.1.11563562239.255.255.2501900UDPpcapanalyzer
2
2018-11-22T07:32:38.653233-0800485257414314616flow192.168.1.1155850410.114.138.72443TCPpcapanalyzer
3
2018-11-22T07:32:38.653233-0800938428002916400flow192.168.1.1155850280.12.52.129443TCPpcapanalyzer
4
2018-11-22T07:32:38.653233-08001805444461096641flow192.168.1.1155845592.122.218.16880TCPpcapanalyzer
5
2018-11-22T07:32:38.653233-08001970676149136711flow192.168.1.11558505216.58.198.206443TCPpcapanalyzer
6
2018-11-22T07:32:38.653233-08001550593987000326flow192.168.1.11561178192.168.1.153UDPpcapanalyzer
7
2018-11-22T07:32:38.653233-0800849788468328026flow192.168.1.11559907192.168.1.153UDPpcapanalyzer
8
2018-11-22T07:32:38.653233-08001836909392492915flow192.168.1.11558451216.58.215.42443TCPpcapanalyzer
9
2018-11-22T07:32:38.653233-08002126875520121519flow192.168.1.11555133192.168.1.153UDPpcapanalyzer
10
2018-11-22T07:32:38.653233-0800868338432040474flow192.168.1.11554547192.168.1.153UDPpcapanalyzer
11
2018-11-22T07:32:38.653233-08001853818678031328flow192.168.1.11565291192.168.1.153UDPpcapanalyzer
12
2018-11-22T07:32:38.653233-0800871396449093118flow192.168.1.11558415216.58.206.238443TCPpcapanalyzer
13
2018-11-22T07:32:38.653233-08001578953655849882flow192.168.1.11554651192.168.1.153UDPpcapanalyzer
14
2018-11-22T07:32:38.653233-08001863061452783035flow192.168.1.1155851188.221.113.4980TCPpcapanalyzer
15
2018-11-22T07:32:38.653233-08001722534413271727flow192.168.1.11552934192.168.1.153UDPpcapanalyzer
16
2018-11-22T07:32:38.653233-08001307142355755074flow192.168.1.11558387192.168.1.153UDPpcapanalyzer
17
2018-11-22T07:32:38.653233-080040754068672741flow192.168.1.11561621192.168.1.153UDPpcapanalyzer
18
2018-11-22T07:32:38.653233-08001589901527581161flow192.168.1.11558439185.88.105.66443TCPpcapanalyzer
19
2018-11-22T07:32:38.653233-0800747856009269125flow192.168.1.1155850388.221.113.4980TCPpcapanalyzer
20
2018-11-22T07:32:38.653233-08002155346857527777flow192.168.1.11549260192.168.1.153UDPpcapanalyzer
File 3
Showing 1-3 of 3 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
1
2018-11-22T07:31:18.353850-080088.221.113.49192.168.1.115/ncsi.txtASCII text, with no line terminators14
2
2018-11-22T07:31:58.477680-080088.221.113.49192.168.1.115/ncsi.txtASCII text, with no line terminators14
3
2018-11-22T07:32:38.626067-080088.221.113.49192.168.1.115/ncsi.txtASCII text, with no line terminators14

Comments(not set)

Update Download PCAP Delete