Challenge2 (2).pcap

MD535852a6155c8b7a9bf6e631879aef4ab
Submission Date2019-09-11 04:04:31
Tags(not set)
Alert 0
#
TimestampSrc IpDest IpAlert SignatureP
No results found.
DNS 88
Showing 1-20 of 88 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
2018-11-22T07:31:18.201626-0800192.168.1.115192.168.1.1querywww.msftncsi.comA(not set)
2
2018-11-22T07:31:18.232723-0800192.168.1.1192.168.1.115answerwww.msftncsi.com(not set)(not set)
3
2018-11-22T07:31:21.036918-0800192.168.1.115192.168.1.1query_ldap._tcp.S-FT-FR-EBU._sites.dc._msdcs.ad.francetelecom.frSRV(not set)
4
2018-11-22T07:31:21.070551-0800192.168.1.1192.168.1.115answer_ldap._tcp.S-FT-FR-EBU._sites.dc._msdcs.ad.francetelecom.fr(not set)(not set)
5
2018-11-22T07:31:21.250441-0800192.168.1.115192.168.1.1query_ldap._tcp.dc._msdcs.ad.francetelecom.frSRV(not set)
6
2018-11-22T07:31:21.291103-0800192.168.1.1192.168.1.115answer_ldap._tcp.dc._msdcs.ad.francetelecom.fr(not set)(not set)
7
2018-11-22T07:31:21.371105-0800192.168.1.115192.168.1.1queryopadyx81.rouen.francetelecom.frA(not set)
8
2018-11-22T07:31:21.402735-0800192.168.1.1192.168.1.115answeropadyx81.rouen.francetelecom.fr(not set)(not set)
9
2018-11-22T07:31:21.404274-0800192.168.1.115192.168.1.1queryOPADYO31.intranet-paris.francetelecom.frA(not set)
10
2018-11-22T07:31:21.441057-0800192.168.1.1192.168.1.115answerOPADYO31.intranet-paris.francetelecom.fr(not set)(not set)
11
2018-11-22T07:31:21.668563-0800192.168.1.115192.168.1.1querySFEBUG21.basseterre.francetelecom.frA(not set)
12
2018-11-22T07:31:21.707406-0800192.168.1.1192.168.1.115answerSFEBUG21.basseterre.francetelecom.fr(not set)(not set)
13
2018-11-22T07:31:21.709043-0800192.168.1.115192.168.1.1querypvgina11.idf.fr.ftgroupA(not set)
14
2018-11-22T07:31:21.734301-0800192.168.1.1192.168.1.115answerpvgina11.idf.fr.ftgroup(not set)(not set)
15
2018-11-22T07:31:21.925762-0800192.168.1.115192.168.1.1queryOPADYE11.rennes.francetelecom.frA(not set)
16
2018-11-22T07:31:21.953797-0800192.168.1.1192.168.1.115answerOPADYE11.rennes.francetelecom.fr(not set)(not set)
17
2018-11-22T07:31:21.955349-0800192.168.1.115192.168.1.1querySIEBUO31.dc.iad.equant.comA(not set)
18
2018-11-22T07:31:21.983324-0800192.168.1.1192.168.1.115answerSIEBUO31.dc.iad.equant.com(not set)(not set)
19
2018-11-22T07:31:29.262831-0800192.168.1.115192.168.1.1queryproxyrsc.si.francetelecom.frA(not set)
20
2018-11-22T07:31:29.265130-0800192.168.1.1192.168.1.115answerproxyrsc.si.francetelecom.fr(not set)(not set)
TLS 1
Showing 1-1 of 1 item.
#
TimestampSource IPDestination IPTLS VersionIssuer
1
2018-11-22T07:31:34.385780-0800192.168.1.115216.58.198.206TLS 1.2C=US, O=Google Trust Services, CN=Google Internet Authority G3
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 3
Showing 1-3 of 3 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2018-11-22T07:31:18.353850-0800192.168.1.115www.msftncsi.com80GET/ncsi.txt200
2
2018-11-22T07:32:38.626067-0800192.168.1.115www.msftncsi.com80GET/ncsi.txt200
3
2018-11-22T07:31:58.477680-0800192.168.1.115www.msftncsi.com80GET/ncsi.txt200
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 64
Showing 1-20 of 64 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
2018-11-22T07:32:38.490300-08002217550868043824flow192.168.1.1155850280.12.52.129443TCPpcapanalyzer
2
2018-11-22T07:32:38.490300-08001516337327870006flow192.168.1.11557127192.168.1.153UDPpcapanalyzer
3
2018-11-22T07:32:38.490300-08001829835580733490flow192.168.1.11554402192.168.1.153UDPpcapanalyzer
4
2018-11-22T07:32:38.490300-0800850565857774049flow192.168.1.11549260192.168.1.153UDPpcapanalyzer
5
2018-11-22T07:32:38.490300-08008644893899902flow192.168.1.11556622192.168.1.153UDPpcapanalyzer
6
2018-11-22T07:32:38.490300-0800714419689083465flow192.168.1.11559242192.168.1.153UDPpcapanalyzer
7
2018-11-22T07:32:38.490300-0800298495056124442flow192.168.1.11561637192.168.1.153UDPpcapanalyzer
8
2018-11-22T07:32:38.490300-08002129108903115439flow192.168.1.11555133192.168.1.153UDPpcapanalyzer
9
2018-11-22T07:32:38.490300-08001708214991819733flow192.168.1.11558145192.168.1.153UDPpcapanalyzer
10
2018-11-22T07:32:38.490300-0800587636549321193flow192.168.1.11558439185.88.105.66443TCPpcapanalyzer
11
2018-11-22T07:32:38.490300-08001996609160849825flow192.168.1.11549659192.168.1.153UDPpcapanalyzer
12
2018-11-22T07:32:38.490300-0800168477805768385flow192.168.1.1155845592.122.218.16880TCPpcapanalyzer
13
2018-11-22T07:32:38.490300-08001998692219994436flow192.168.1.11557628192.168.1.153UDPpcapanalyzer
14
2018-11-22T07:32:38.490300-08001720331097277762flow192.168.1.11563562239.255.255.2501900UDPpcapanalyzer
15
2018-11-22T07:32:38.490300-08001158188597420957flow192.168.1.1155850788.221.113.4980TCPpcapanalyzer
16
2018-11-22T07:32:38.490300-0800736959677465019flow192.168.1.11563836192.168.1.153UDPpcapanalyzer
17
2018-11-22T07:32:38.490300-0800887000065411608flow192.168.1.11558441176.34.155.23443TCPpcapanalyzer
18
2018-11-22T07:32:38.490300-0800605924521677664flow192.168.1.1155850610.100.194.243443TCPpcapanalyzer
19
2018-11-22T07:32:38.490300-0800748483074984568flow192.168.1.1155850410.114.138.72443TCPpcapanalyzer
20
2018-11-22T07:32:38.490300-08001594054761117274flow192.168.1.11559907192.168.1.153UDPpcapanalyzer
File 3
Showing 1-3 of 3 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
1
2018-11-22T07:31:18.353850-080088.221.113.49192.168.1.115/ncsi.txtASCII text, with no line terminators14
2
2018-11-22T07:31:58.477680-080088.221.113.49192.168.1.115/ncsi.txtASCII text, with no line terminators14
3
2018-11-22T07:32:38.626067-080088.221.113.49192.168.1.115/ncsi.txtASCII text, with no line terminators14

Comments(not set)

Update Download PCAP Delete