/
wireshark-capture-init-ikea-05.json
7 lines (7 loc) · 36.4 KB
/
wireshark-capture-init-ikea-05.json
1
2
3
4
5
6
7
{"ip": {"out": {"id": [47208, 47209], "ttl": 64}}, "time_end": 1536825029.62127, "expire_type": "i", "entropy": 1.380744, "payload": {"out": "02010600af2b30e70003000000000000c0a803d5c0a8030100000000b8d7af2b"}, "num_pkts_out": 2, "pr": 17, "time_start": 1536825029.619532, "dhcp": [{"hlen": "6", "xid": "2938843367", "ciaddr": "0.0.0.0", "hops": "0", "giaddr": "0.0.0.0", "chaddr": "b8d7af2b32a900000000000000000000", "yiaddr": "192.168.3.213", "secs": "3", "flags": "0", "htype": "1", "siaddr": "192.168.3.1", "options": [{"msg_type": "DHCPOFFER"}, {"server_id": "c0a80301"}, {"address_time": "0000a8c0"}, {"renewal_time": "00005460"}, {"rebinding_time": "000093a8"}, {"subnet_mask": "ffffff00"}, {"broadcast_address": "c0a803ff"}, {"router": "c0a80301"}, {"domain_server": "c0a80301"}], "op": "2"}, {"hlen": "6", "xid": "2938843367", "ciaddr": "0.0.0.0", "hops": "0", "giaddr": "0.0.0.0", "chaddr": "b8d7af2b32a900000000000000000000", "yiaddr": "192.168.3.213", "secs": "4", "flags": "0", "htype": "1", "siaddr": "192.168.3.1", "options": [{"msg_type": "DHCPACK"}, {"server_id": "c0a80301"}, {"address_time": "0000a8c0"}, {"renewal_time": "00005460"}, {"rebinding_time": "000093a8"}, {"subnet_mask": "ffffff00"}, {"broadcast_address": "c0a803ff"}, {"router": "c0a80301"}, {"domain_server": "c0a80301"}], "op": "2"}], "bytes_out": 600, "byte_dist_std": 58.843892, "da": "192.168.3.213", "wht": [22.103, -2.4933, 0.56, -1.5433], "byte_dist_mean": 22.103333, "idp_len_out": 328, "total_entropy": 828.446174, "byte_dist": [229, 7, 1, 7, 8, 0, 2, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 2, 0, 0, 0, 0, 1, 0, 1, 1, 0, 1, 1, 0, 0, 0, 1, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 2, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 8, 1, 0, 0, 0, 0, 0, 2, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 7, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 5], "dp": 68, "sp": 67, "packets": [{"b": 300, "ipt": 0, "dir": "<"}, {"b": 300, "ipt": 1, "dir": "<"}], "idp_out": "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", "sa": "192.168.3.1"}
{"pr": 17, "time_start": 1536825030.721314, "bytes_out": 3012, "sp": 5353, "packets": [{"b": 102, "ipt": 0, "dir": "<"}, {"b": 102, "ipt": 499, "dir": "<"}, {"b": 102, "ipt": 499, "dir": "<"}, {"b": 62, "ipt": 499, "dir": "<"}, {"b": 62, "ipt": 999, "dir": "<"}, {"b": 114, "ipt": 1100, "dir": "<"}, {"b": 114, "ipt": 500, "dir": "<"}, {"b": 114, "ipt": 499, "dir": "<"}, {"b": 74, "ipt": 499, "dir": "<"}, {"b": 74, "ipt": 999, "dir": "<"}, {"b": 102, "ipt": 1099, "dir": "<"}, {"b": 102, "ipt": 499, "dir": "<"}, {"b": 102, "ipt": 500, "dir": "<"}, {"b": 62, "ipt": 499, "dir": "<"}, {"b": 62, "ipt": 999, "dir": "<"}, {"b": 114, "ipt": 1099, "dir": "<"}, {"b": 114, "ipt": 499, "dir": "<"}, {"b": 114, "ipt": 499, "dir": "<"}, {"b": 74, "ipt": 499, "dir": "<"}, {"b": 74, "ipt": 999, "dir": "<"}, {"b": 134, "ipt": 14923, "dir": "<"}, {"b": 134, "ipt": 499, "dir": "<"}, {"b": 134, "ipt": 499, "dir": "<"}, {"b": 385, "ipt": 499, "dir": "<"}, {"b": 385, "ipt": 999, "dir": "<"}], "time_end": 1536825061.44353, "byte_dist_std": 57.179999, "da": "224.0.0.251", "wht": [67.942, -3.081, -5.3114, -4.3586], "idp_out": "4500008200134000ff11d5dec0a803d5e00000fb14e914e9006e9a150000000000010000000100001c545241444652492d476174657761792d623864376166326233326139056c6f63616c0000ff00011c545241444652492d476174657761792d623864376166326233326139056c6f63616c0000010001000000ff0004c0a803d5", "entropy": 1.688341, "num_pkts_out": 25, "idp_len_out": 130, "ip": {"out": {"id": [19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43], "ttl": 255}}, "expire_type": "a", "total_entropy": 5085.28208, "sa": "192.168.3.213", "byte_dist": [153, 24, 0, 3, 12, 14, 0, 0, 0, 0, 0, 0, 0, 0, 0, 3, 3, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 13, 0, 0, 0, 3, 1, 0, 1, 0, 0, 0, 0, 0, 0, 1, 3, 0, 20, 0, 0, 1, 2, 25, 10, 1, 0, 0, 10, 10, 10, 2, 0, 0, 4, 0, 0, 0, 13, 0, 0, 14, 1, 14, 10, 0, 14, 0, 0, 0, 0, 0, 0, 1, 0, 27, 0, 13, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 7, 0, 65, 20, 18, 11, 13, 11, 3, 3, 1, 0, 0, 27, 0, 0, 13, 7, 0, 0, 1, 17, 0, 0, 13, 0, 13, 0, 0, 0, 0, 0, 0, 7, 0, 0, 0, 2, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 3, 3, 0, 0, 0, 0, 0, 3, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 3, 0, 0, 0, 0, 0, 3, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 3, 0, 3, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 6, 15], "payload": {"out": "0000000000010000000100001c545241444652492d476174657761792d623864"}, "dp": 5353, "byte_dist_mean": 67.942231}
{"ip": {"in": {"id": [45], "ttl": 255}, "out": {"id": [47756], "ttl": 64}}, "idp_in": "45000047002d4000ff11f351c0a803d5c0a8030175330035003312fd4bab01000001000000000000026677036f746109686f6d65736d61727404696b6561036e65740000010001", "time_end": 1536825062.552804, "entropy": 5.025888, "payload": {"in": "4bab01000001000000000000026677036f746109686f6d65736d61727404696b", "out": "4bab81800001000500040000026677036f746109686f6d65736d61727404696b"}, "num_pkts_out": 1, "pr": 17, "time_start": 1536825062.661768, "bytes_in": 43, "num_pkts_in": 1, "dns": [{"rc": 0, "rr": [], "qn": "fw.ota.homesmart.ikea.net"}], "bytes_out": 284, "byte_dist_std": 49.006135, "da": "192.168.3.213", "wht": [55.749, -0.50765, 3.1682, 2.3242], "byte_dist_mean": 55.749235, "idp_len_out": 312, "total_entropy": 1643.465365, "byte_dist": [72, 20, 8, 6, 7, 6, 2, 2, 0, 6, 1, 0, 5, 4, 1, 0, 0, 0, 0, 1, 0, 0, 1, 1, 0, 1, 1, 0, 1, 0, 0, 0, 4, 0, 2, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 8, 0, 0, 4, 3, 5, 2, 3, 2, 3, 8, 3, 0, 0, 0, 4, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 2, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 10, 5, 4, 6, 6, 3, 1, 3, 2, 0, 3, 1, 7, 11, 9, 1, 0, 4, 15, 7, 3, 0, 6, 1, 0, 1, 0, 0, 0, 0, 0, 1, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 2, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 11, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0], "dp": 30003, "idp_len_in": 71, "sp": 53, "packets": [{"b": 43, "ipt": 4294967187, "dir": "<"}, {"b": 284, "ipt": 108, "dir": ">"}], "idp_out": "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", "sa": "192.168.3.1"}
{"ip": {"in": {"id": [0, 57885, 57886, 57887, 57888], "ttl": 246}, "out": {"id": [47, 48, 49, 50, 51], "ttl": 128}}, "ppi": [{"b": 0, "seq": 3808147508, "ack": 0, "rseq": 0, "flags": "S", "t": 0, "olen": 8, "opts": [{"mss": 1460}, {"ws": 0}], "rack": 0, "dir": ">"}, {"b": 0, "seq": 3615575988, "ack": 3808147509, "rseq": 0, "flags": "SA", "t": 0, "olen": 8, "opts": [{"mss": 1460}, {"noop": null}, {"ws": 8}], "rack": 1, "dir": "<"}, {"b": 0, "seq": 3808147509, "ack": 3615575989, "rseq": 1, "flags": "A", "t": 0, "olen": 0, "opts": [], "rack": 1, "dir": ">"}, {"b": 230, "seq": 3808147509, "ack": 3615575989, "rseq": 0, "flags": "PA", "t": 1, "olen": 0, "opts": [], "rack": 1, "dir": ">"}, {"b": 0, "seq": 3615575989, "ack": 3808147739, "rseq": 1, "flags": "A", "t": 1, "olen": 0, "opts": [], "rack": 230, "dir": "<"}, {"b": 544, "seq": 3615575989, "ack": 3808147739, "rseq": 0, "flags": "PA", "t": 441, "olen": 0, "opts": [], "rack": 230, "dir": "<"}, {"b": 0, "seq": 3808147739, "ack": 3615576533, "rseq": 230, "flags": "FA", "t": 441, "olen": 0, "opts": [], "rack": 544, "dir": ">"}, {"b": 0, "seq": 3615576533, "ack": 3808147739, "rseq": 544, "flags": "FA", "t": 441, "olen": 0, "opts": [], "rack": 0, "dir": "<"}, {"b": 0, "seq": 3808147740, "ack": 3615576534, "rseq": 1, "flags": "A", "t": 441, "olen": 0, "opts": [], "rack": 1, "dir": ">"}, {"b": 0, "seq": 3615576534, "ack": 3808147740, "rseq": 1, "flags": "A", "t": 442, "olen": 0, "opts": [], "rack": 0, "dir": "<"}], "idp_in": "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", "time_end": 1536825063.103648, "tcp": {"out": {"opt_len": 8, "flags": "S", "opts": [{"mss": 1460}, {"ws": 0}], "first_window_size": 7168}, "in": {"opt_len": 8, "flags": "SA", "opts": [{"mss": 1460}, {"noop": null}, {"ws": 8}], "first_window_size": 29200}, "first_seq": 3808147508}, "expire_type": "a", "entropy": 5.808941, "payload": {"in": "485454502f312e3120333034204e6f74204d6f6469666965640d0a436f6e6e65", "out": "474554202f666565642f76657273696f6e5f696e666f2e6a736f6e2048545450"}, "num_pkts_out": 5, "pr": 6, "time_start": 1536825062.661786, "bytes_in": 544, "num_pkts_in": 5, "http": [{"in": [{"version": "HTTP/1.1"}, {"code": "304"}, {"reason": "Not Modified"}, {"Connection": "close"}, {"Age": "72677"}, {"Date": "Thu, 13 Sep 2018 07:51:02 GMT"}, {"ETag": ".d1a8a1d9d239b927b36b8dee2c0481f0."}, {"Server": "AmazonS3"}, {"x-amz-id-2": "33xGIgKvS6VobGzE+AF0+WKniN+eVDSn1Pqp0aqEWmQKK17t+b3fijz5Bw2gN/LmdR9vHj6cVGc="}, {"x-amz-replication-status": "COMPLETED"}, {"x-amz-request-id": "CB8E5B4486B901B3"}, {"x-amz-version-id": "Sr0K8Yzml0FaJ2teL__QnPyNkkVSc6ty"}, {"X-Cache": "Hit from cloudfront"}, {"Via": "1.1 f0be03416e6497782a570ca9dff589f4.cloudfront.net (CloudFront)"}, {"X-Amz-Cf-Id": "qTsQX6FT8dGA8nxluicLqmqboiRkSDtCvVzS2FopQJEAkGTG2dGZ4Q=="}, {"body": "00000000000000000000000000000000"}], "out": [{"method": "GET"}, {"uri": "/feed/version_info.json"}, {"version": "HTTP/1.0"}, {"User-Agent": "HertzClient/1.0 (GW (1).(4).(15); Id 886f4449-46ad-44e6-a200-96f208aa6bfe)"}, {"Host": "fw.ota.homesmart.ikea.net"}, {"If-Modified-Since": "Mon, 02 Jul 2018 11:32:25 GMT"}, {"Connection": "close"}, {"body": "00000000000000000000000000000000"}]}], "bytes_out": 230, "byte_dist_std": 23.601545, "da": "13.32.98.169", "wht": [76.711, 1.1447, -1.031, -1.1137], "byte_dist_mean": 76.710594, "idp_len_out": 270, "total_entropy": 4496.120247, "byte_dist": [0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 20, 0, 0, 20, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 39, 0, 2, 0, 0, 0, 0, 0, 5, 5, 0, 4, 2, 23, 13, 6, 21, 21, 18, 11, 15, 7, 14, 9, 15, 10, 20, 1, 0, 3, 0, 0, 0, 7, 5, 9, 4, 8, 5, 11, 6, 4, 3, 5, 4, 6, 4, 1, 5, 5, 2, 10, 13, 1, 6, 3, 3, 1, 1, 0, 0, 0, 0, 3, 0, 24, 8, 15, 22, 36, 19, 5, 3, 23, 3, 5, 10, 13, 25, 29, 4, 6, 14, 12, 24, 8, 6, 2, 6, 2, 11, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0], "dp": 80, "idp_len_in": 584, "sp": 50854, "packets": [{"b": 230, "ipt": 1, "dir": ">"}, {"b": 544, "ipt": 440, "dir": "<"}], "idp_out": "4500010e0031000080060573c0a803d50d2062a9c6a60050e2fbb835d7814fb550181c00faf60000474554202f666565642f76657273696f6e5f696e666f2e6a736f6e20485454502f312e300d0a557365722d4167656e743a20486572747a436c69656e742f312e3020284757202831292e2834292e283135293b2049642038383666343434392d343661642d343465362d613230302d393666323038616136626665290d0a486f73743a2066772e6f74612e686f6d65736d6172742e696b65612e6e65740d0a49662d4d6f6469666965642d53696e63653a204d6f6e2c203032204a756c20323031382031313a33323a323520474d540d0a436f6e6e656374696f6e3a20636c6f73650d0a0d0a", "sa": "192.168.3.213"}
{"pr": 2, "time_start": 1536825088.915651, "bytes_out": 8, "sp": null, "packets": [{"b": 8, "ipt": 0, "dir": "<"}], "time_end": 1536825088.915651, "byte_dist_std": 107.733467, "da": "224.0.0.251", "wht": [63.75, 0, -2.25, 61.5], "idp_out": "460000200039000001027f26c0a803d5e00000fb9404000016000904e00000fb", "entropy": 2.405639, "num_pkts_out": 1, "idp_len_out": 32, "ip": {"out": {"id": [57], "ttl": 1}}, "expire_type": "a", "total_entropy": 19.245111, "sa": "192.168.3.213", "byte_dist": [3, 0, 0, 0, 1, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0], "payload": {"out": "16000904e00000fb"}, "dp": null, "byte_dist_mean": 63.75}
{"ip": {"in": {"id": [58], "ttl": 255}, "out": {"id": [50171], "ttl": 64}}, "idp_in": "45000044003a4000ff11f347c0a803d5c0a8030175340035003066a555140100000100000000000007776562686f6f6b0a6c6f67656e747269657303636f6d0000010001", "time_end": 1536825186.125289, "entropy": 4.914254, "payload": {"in": "55140100000100000000000007776562686f6f6b0a6c6f67656e747269657303", "out": "55148180000100030003000107776562686f6f6b0a6c6f67656e747269657303"}, "num_pkts_out": 1, "pr": 17, "time_start": 1536825186.128228, "bytes_in": 40, "num_pkts_in": 1, "dns": [{"rc": 0, "rr": [], "qn": "webhook.logentries.com"}], "bytes_out": 207, "byte_dist_std": 53.516186, "da": "192.168.3.213", "wht": [59.223, 0.54251, 5.7571, 1.0688], "byte_dist_mean": 59.222672, "idp_len_out": 235, "total_entropy": 1213.820667, "byte_dist": [54, 19, 9, 5, 4, 0, 1, 4, 0, 3, 2, 0, 3, 0, 0, 0, 1, 0, 1, 1, 5, 0, 0, 1, 0, 1, 0, 0, 0, 0, 0, 1, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 6, 0, 0, 2, 7, 2, 0, 4, 1, 1, 1, 0, 1, 0, 0, 3, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0, 2, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 7, 2, 3, 3, 6, 0, 3, 2, 2, 0, 3, 2, 2, 9, 10, 0, 0, 3, 11, 2, 2, 0, 6, 0, 0, 0, 0, 0, 0, 0, 0, 1, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 4, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 9, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 1, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0], "dp": 30004, "idp_len_in": 68, "sp": 53, "packets": [{"b": 40, "ipt": 4294967293, "dir": "<"}, {"b": 207, "ipt": 2, "dir": ">"}], "idp_out": "450000ebc3fb40004011eddfc0a80301c0a803d50035753400d7aa9c55148180000100030003000107776562686f6f6b0a6c6f67656e747269657303636f6d0000010001c00c000100010000003c00043412cc50c00c000100010000003c000434106ef0c00c000100010000003c000422f275c9c0140002000100028d610017076e732d3135313009617773646e732d3630036f726700c0140002000100028d610019076e732d3137313409617773646e732d323202636f02756b00c0140002000100028d610013066e732d31313909617773646e732d3134c01fc0ac0001000100028d610004cdfbc077", "sa": "192.168.3.1"}
{"ip": {"in": {"id": [0, 9542, 9543, 9545, 9546, 9547, 9548, 9549, 9550, 9551, 9552, 9553, 9554, 9555], "ttl": 236}, "out": {"id": [59, 60, 61, 62, 63, 64, 65, 66, 67, 68, 69, 70, 71, 72, 73, 74, 75, 76, 77], "ttl": 128}}, "ppi": [{"b": 0, "seq": 4014806794, "ack": 0, "rseq": 0, "flags": "S", "t": 0, "olen": 8, "opts": [{"mss": 1460}, {"ws": 0}], "rack": 0, "dir": ">"}, {"b": 0, "seq": 746970860, "ack": 4014806795, "rseq": 0, "flags": "SA", "t": 28, "olen": 8, "opts": [{"mss": 1460}, {"noop": null}, {"ws": 8}], "rack": 1, "dir": "<"}, {"b": 0, "seq": 4014806795, "ack": 746970861, "rseq": 1, "flags": "A", "t": 28, "olen": 0, "opts": [], "rack": 1, "dir": ">"}, {"b": 110, "seq": 4014806795, "ack": 746970861, "rseq": 0, "flags": "PA", "t": 28, "olen": 0, "opts": [], "rack": 1, "dir": ">"}, {"b": 0, "seq": 746970861, "ack": 4014806905, "rseq": 1, "flags": "A", "t": 56, "olen": 0, "opts": [], "rack": 110, "dir": "<"}, {"b": 2920, "seq": 746970861, "ack": 4014806905, "rseq": 0, "flags": "A", "t": 56, "olen": 0, "opts": [], "rack": 110, "dir": "<"}, {"b": 1176, "seq": 746973781, "ack": 4014806905, "rseq": 2920, "flags": "PA", "t": 57, "olen": 0, "opts": [], "rack": 110, "dir": "<"}, {"b": 639, "seq": 746974957, "ack": 4014806905, "rseq": 1176, "flags": "PA", "t": 57, "olen": 0, "opts": [], "rack": 110, "dir": "<"}, {"b": 0, "seq": 4014806905, "ack": 746973781, "rseq": 110, "flags": "A", "t": 57, "olen": 0, "opts": [], "rack": -1176, "dir": ">"}, {"b": 0, "seq": 4014806905, "ack": 746975596, "rseq": 0, "flags": "A", "t": 57, "olen": 0, "opts": [], "rack": 639, "dir": ">"}, {"b": 267, "seq": 4014806905, "ack": 746975596, "rseq": 0, "flags": "PA", "t": 112, "olen": 0, "opts": [], "rack": 639, "dir": ">"}, {"b": 6, "seq": 4014807172, "ack": 746975596, "rseq": 267, "flags": "PA", "t": 112, "olen": 0, "opts": [], "rack": 639, "dir": ">"}, {"b": 85, "seq": 4014807178, "ack": 746975596, "rseq": 6, "flags": "PA", "t": 113, "olen": 0, "opts": [], "rack": 639, "dir": ">"}, {"b": 0, "seq": 746975596, "ack": 4014807263, "rseq": 639, "flags": "A", "t": 142, "olen": 0, "opts": [], "rack": 85, "dir": "<"}, {"b": 91, "seq": 746975596, "ack": 4014807263, "rseq": 0, "flags": "PA", "t": 142, "olen": 0, "opts": [], "rack": 85, "dir": "<"}, {"b": 389, "seq": 4014807263, "ack": 746975687, "rseq": 85, "flags": "PA", "t": 143, "olen": 0, "opts": [], "rack": 91, "dir": ">"}, {"b": 245, "seq": 746975687, "ack": 4014807652, "rseq": 91, "flags": "PA", "t": 172, "olen": 0, "opts": [], "rack": 389, "dir": "<"}, {"b": 0, "seq": 4014807652, "ack": 746975932, "rseq": 389, "flags": "A", "t": 172, "olen": 0, "opts": [], "rack": 245, "dir": ">"}, {"b": 501, "seq": 4014807652, "ack": 746975932, "rseq": 0, "flags": "PA", "t": 204, "olen": 0, "opts": [], "rack": 245, "dir": ">"}, {"b": 245, "seq": 746975932, "ack": 4014808153, "rseq": 245, "flags": "PA", "t": 233, "olen": 0, "opts": [], "rack": 501, "dir": "<"}, {"b": 389, "seq": 4014808153, "ack": 746976177, "rseq": 501, "flags": "PA", "t": 233, "olen": 0, "opts": [], "rack": 245, "dir": ">"}, {"b": 245, "seq": 746976177, "ack": 4014808542, "rseq": 245, "flags": "PA", "t": 262, "olen": 0, "opts": [], "rack": 389, "dir": "<"}, {"b": 0, "seq": 4014808542, "ack": 746976422, "rseq": 389, "flags": "A", "t": 262, "olen": 0, "opts": [], "rack": 245, "dir": ">"}, {"b": 389, "seq": 4014808542, "ack": 746976422, "rseq": 0, "flags": "PA", "t": 263, "olen": 0, "opts": [], "rack": 245, "dir": ">"}, {"b": 245, "seq": 746976422, "ack": 4014808931, "rseq": 245, "flags": "PA", "t": 292, "olen": 0, "opts": [], "rack": 389, "dir": "<"}, {"b": 405, "seq": 4014808931, "ack": 746976667, "rseq": 389, "flags": "PA", "t": 292, "olen": 0, "opts": [], "rack": 245, "dir": ">"}, {"b": 245, "seq": 746976667, "ack": 4014809336, "rseq": 245, "flags": "PA", "t": 321, "olen": 0, "opts": [], "rack": 405, "dir": "<"}, {"b": 0, "seq": 4014809336, "ack": 746976912, "rseq": 405, "flags": "A", "t": 321, "olen": 0, "opts": [], "rack": 245, "dir": ">"}, {"b": 69, "seq": 4014809336, "ack": 746976912, "rseq": 0, "flags": "PA", "t": 321, "olen": 0, "opts": [], "rack": 245, "dir": ">"}, {"b": 0, "seq": 4014809405, "ack": 746976912, "rseq": 69, "flags": "FA", "t": 321, "olen": 0, "opts": [], "rack": 245, "dir": ">"}, {"b": 69, "seq": 746976912, "ack": 4014809406, "rseq": 245, "flags": "PA", "t": 350, "olen": 0, "opts": [], "rack": 1, "dir": "<"}, {"b": 0, "seq": 746976981, "ack": 4014809406, "rseq": 69, "flags": "FA", "t": 350, "olen": 0, "opts": [], "rack": 1, "dir": "<"}, {"b": 0, "seq": 4014809406, "ack": 746976982, "rseq": 1, "flags": "A", "t": 350, "olen": 0, "opts": [], "rack": 1, "dir": ">"}], "idp_in": "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", "time_end": 1536825186.479477, "tcp": {"out": {"opt_len": 8, "flags": "S", "opts": [{"mss": 1460}, {"ws": 0}], "first_window_size": 7168}, "in": {"opt_len": 8, "flags": "SA", "opts": [{"mss": 1460}, {"noop": null}, {"ws": 8}], "first_window_size": 26883}, "first_seq": 4014806794}, "expire_type": "a", "entropy": 7.743402, "payload": {"in": "160303004a0200004603038600ab2efdfd7747c73383cdabd071a48bb9e0b3b4", "out": "1603030069010000650303000000c7caec485f19ecb0a59dba33a551f0f2259b"}, "num_pkts_out": 19, "pr": 6, "time_start": 1536825186.129437, "bytes_in": 6120, "num_pkts_in": 14, "hd": {"i": "16", "sm": "00", "cv": "14", "cm": "fc", "n": 10}, "bytes_out": 2610, "byte_dist_std": 55.888138, "da": "52.18.204.80", "wht": [106.53, -0.47423, 0.94983, -0.99748], "byte_dist_mean": 106.534708, "idp_len_out": 150, "total_entropy": 67599.90366, "byte_dist": [117, 174, 72, 162, 97, 60, 149, 43, 46, 43, 39, 30, 26, 60, 35, 34, 36, 28, 23, 66, 32, 25, 36, 52, 28, 26, 28, 29, 41, 55, 20, 29, 71, 20, 29, 25, 19, 34, 19, 25, 20, 24, 42, 36, 31, 39, 86, 71, 233, 79, 48, 29, 34, 26, 23, 26, 30, 36, 44, 30, 26, 23, 22, 22, 37, 35, 18, 38, 14, 45, 27, 36, 39, 39, 28, 17, 24, 29, 25, 20, 34, 27, 29, 46, 28, 85, 40, 19, 34, 34, 30, 16, 18, 30, 33, 24, 26, 72, 31, 73, 31, 73, 35, 33, 41, 47, 21, 28, 56, 59, 50, 99, 42, 31, 91, 73, 116, 45, 35, 33, 24, 25, 42, 28, 9, 32, 23, 26, 31, 31, 68, 40, 25, 31, 68, 23, 30, 25, 32, 21, 15, 24, 19, 18, 20, 31, 27, 27, 34, 13, 31, 19, 22, 22, 24, 36, 27, 22, 31, 19, 34, 13, 20, 37, 24, 27, 23, 23, 24, 27, 21, 22, 25, 22, 21, 26, 29, 14, 48, 29, 27, 20, 16, 27, 25, 36, 25, 25, 27, 29, 30, 17, 25, 16, 23, 26, 21, 20, 19, 23, 20, 14, 22, 22, 23, 36, 20, 27, 22, 23, 17, 15, 25, 21, 14, 37, 19, 19, 18, 19, 19, 20, 33, 17, 21, 22, 25, 19, 29, 15, 16, 28, 19, 12, 32, 33, 27, 24, 27, 24, 33, 33, 21, 34, 25, 24, 27, 28, 18, 32, 20, 15, 25, 32, 29, 36], "dp": 443, "idp_len_in": 1300, "tls": {"s_cert": [{"subject_public_key_algo": "rsaEncryption", "validity_not_before": "Apr 10 00:00:00 2018 GMT", "validity_not_after": "May 10 12:00:00 2019 GMT", "subject_public_key_size": 2048, "length": 1203, "extensions": [{"X509v3 Authority Key Identifier": "keyid:59:A4:66:06:52:A0:7B:95:92:3C:A3:94:07:27:96:74:5B:F9:3D:D0."}, {"X509v3 Subject Key Identifier": "0D:B5:63:64:33:D7:52:A8:16:1C:0A:56:79:B5:B0:EE:1E:C3:B4:4A"}, {"X509v3 Subject Alternative Name": "DNS:eu.logentries.com, DNS:logentries.com, DNS:*.eu.logentries.com, DNS:*.logentries.com, DNS:*.eu.logentries.net"}, {"X509v3 Key Usage": "Digital Signature, Key Encipherment"}, {"X509v3 Extended Key Usage": "TLS Web Server Authentication, TLS Web Client Authentication"}, {"X509v3 CRL Distribution Points": ".Full Name:. URI:http:..crl.sca1b.amazontrust.com.sca1b.crl."}, {"X509v3 Certificate Policies": "Policy: 2.16.840.1.114412.1.2.Policy: 2.23.140.1.2.1."}, {"Authority Information Access": "OCSP - URI:http:..ocsp.sca1b.amazontrust.com.CA Issuers - URI:http:..crt.sca1b.amazontrust.com.sca1b.crt."}, {"X509v3 Basic Constraints": "CA:FALSE"}], "signature": "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", "serial_number": "07ff5d7da44a397b86d30dc088dfde12", "subject": [{"commonName": "eu.logentries.com"}], "signature_key_size": 2048, "signature_algo": "sha256WithRSAEncryption", "issuer": [{"countryName": "US"}, {"organizationName": "Amazon"}, {"organizationalUnitName": "Server CA 1B"}, {"commonName": "Amazon"}]}, {"subject_public_key_algo": "rsaEncryption", "validity_not_before": "Oct 22 00:00:00 2015 GMT", "validity_not_after": "Oct 19 00:00:00 2025 GMT", "subject_public_key_size": 2048, "length": 1101, "extensions": [{"X509v3 Basic Constraints": "CA:TRUE, pathlen:0"}, {"X509v3 Key Usage": "Digital Signature, Certificate Sign, CRL Sign"}, {"X509v3 Subject Key Identifier": "59:A4:66:06:52:A0:7B:95:92:3C:A3:94:07:27:96:74:5B:F9:3D:D0"}, {"X509v3 Authority Key Identifier": "keyid:84:18:CC:85:34:EC:BC:0C:94:94:2E:08:59:9C:C7:B2:10:4E:0A:08."}, {"Authority Information Access": "OCSP - URI:http:..ocsp.rootca1.amazontrust.com.CA Issuers - URI:http:..crt.rootca1.amazontrust.com.rootca1.cer."}, {"X509v3 CRL Distribution Points": ".Full Name:. URI:http:..crl.rootca1.amazontrust.com.rootca1.crl."}, {"X509v3 Certificate Policies": "Policy: 2.23.140.1.2.1."}], "signature": "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", "serial_number": "067f94578587e8ac77deb253325bbc998b560d", "subject": [{"countryName": "US"}, {"organizationName": "Amazon"}, {"organizationalUnitName": "Server CA 1B"}, {"commonName": "Amazon"}], "signature_key_size": 2048, "signature_algo": "sha256WithRSAEncryption", "issuer": [{"countryName": "US"}, {"organizationName": "Amazon"}, {"commonName": "Amazon Root CA 1"}]}, {"subject_public_key_algo": "rsaEncryption", "validity_not_before": "May 25 12:00:00 2015 GMT", "validity_not_after": "Dec 31 01:00:00 2037 GMT", "subject_public_key_size": 2048, "length": 1174, "extensions": [{"X509v3 Basic Constraints": "CA:TRUE"}, {"X509v3 Key Usage": "Digital Signature, Certificate Sign, CRL Sign"}, {"X509v3 Subject Key Identifier": "84:18:CC:85:34:EC:BC:0C:94:94:2E:08:59:9C:C7:B2:10:4E:0A:08"}, {"X509v3 Authority Key Identifier": "keyid:9C:5F:00:DF:AA:01:D7:30:2B:38:88:A2:B8:6D:4A:9C:F2:11:91:83."}, {"Authority Information Access": "OCSP - URI:http:..ocsp.rootg2.amazontrust.com.CA Issuers - URI:http:..crt.rootg2.amazontrust.com.rootg2.cer."}, {"X509v3 CRL Distribution Points": ".Full Name:. URI:http:..crl.rootg2.amazontrust.com.rootg2.crl."}, {"X509v3 Certificate Policies": "Policy: X509v3 Any Policy."}], "signature": "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", "serial_number": "067f944a2a27cdf3fac2ae2b01f908eeb9c4c6", "subject": [{"countryName": "US"}, {"organizationName": "Amazon"}, {"commonName": "Amazon Root CA 1"}], "signature_key_size": 2048, "signature_algo": "sha256WithRSAEncryption", "issuer": [{"countryName": "US"}, {"stateOrProvinceName": "Arizona"}, {"localityName": "Scottsdale"}, {"organizationName": "Starfield Technologies, Inc."}, {"commonName": "Starfield Services Root Certificate Authority - G2"}]}, {"subject_public_key_algo": "rsaEncryption", "validity_not_before": "Sep 2 00:00:00 2009 GMT", "validity_not_after": "Jun 28 17:39:16 2034 GMT", "subject_public_key_size": 2048, "length": 1145, "extensions": [{"X509v3 Basic Constraints": "CA:TRUE"}, {"X509v3 Key Usage": "Digital Signature, Certificate Sign, CRL Sign"}, {"X509v3 Subject Key Identifier": "9C:5F:00:DF:AA:01:D7:30:2B:38:88:A2:B8:6D:4A:9C:F2:11:91:83"}, {"X509v3 Authority Key Identifier": "keyid:BF:5F:B7:D1:CE:DD:1F:86:F4:5B:55:AC:DC:D7:10:C2:0E:A9:88:E7."}, {"Authority Information Access": "OCSP - URI:http:..o.ss2.us..CA Issuers - URI:http:..x.ss2.us.x.cer."}, {"X509v3 CRL Distribution Points": ".Full Name:. URI:http:..s.ss2.us.r.crl."}, {"X509v3 Certificate Policies": "Policy: X509v3 Any Policy."}], "signature": "231de38a57ca7de917794cf11e55fdcc536e3e470fdfc655f2b20436ed801f53c45d34286bbec755fc67eacb3f7f90b233cd1b58108202f8f82ff51360d405cef18108c1dda775974f18b96ddef7939108ba7e402cedc1eabb769e3306771d0d087f53dd1b64ab8227f169d54d5eaef4a1c375a758442df23c7098acba69b695777f0f315e2cfca0873a4769f0795ff41454a4955e1178126027ce9fc277ff2353775dbaffea59e7dbcfaf9296ef249a35107a9c91c60e7d99f63f19dff57254e115a907597b83bf522e468cb20064761c48d3d879e86e56ccae2c0390d7193899e4ca09195bff0796b0a87f3449df56a9f7b05fed33ed8c47b730035df4038c", "serial_number": "a70e4a4c3482b77f", "subject": [{"countryName": "US"}, {"stateOrProvinceName": "Arizona"}, {"localityName": "Scottsdale"}, {"organizationName": "Starfield Technologies, Inc."}, {"commonName": "Starfield Services Root Certificate Authority - G2"}], "signature_key_size": 2048, "signature_algo": "sha256WithRSAEncryption", "issuer": [{"countryName": "US"}, {"organizationName": "Starfield Technologies, Inc."}, {"organizationalUnitName": "Starfield Class 2 Certification Authority"}]}], "c_version": 5, "c_random": "000000c7caec485f19ecb0a59dba33a551f0f2259bd46cb7d05abdda0033d7bb", "srlt": [{"hs_types": [1], "b": 105, "hs_lens": [101], "tp": 22, "ipt": 0, "dir": ">"}, {"hs_types": [2], "b": 74, "hs_lens": [70], "tp": 22, "ipt": 28, "dir": "<"}, {"hs_types": [11], "b": 4642, "hs_lens": [4638], "tp": 22, "ipt": 0, "dir": "<"}, {"b": 4, "tp": 22, "ipt": 0, "dir": "<"}, {"hs_types": [16], "b": 262, "hs_lens": [258], "tp": 22, "ipt": 55, "dir": ">"}, {"b": 1, "tp": 20, "ipt": 0, "dir": ">"}, {"b": 80, "tp": 22, "ipt": 0, "dir": ">"}, {"b": 1, "tp": 20, "ipt": 29, "dir": "<"}, {"b": 80, "tp": 22, "ipt": 0, "dir": "<"}, {"b": 384, "tp": 23, "ipt": 0, "dir": ">"}, {"b": 240, "tp": 23, "ipt": 28, "dir": "<"}, {"b": 496, "tp": 23, "ipt": 32, "dir": ">"}, {"b": 240, "tp": 23, "ipt": 28, "dir": "<"}, {"b": 384, "tp": 23, "ipt": 0, "dir": ">"}, {"b": 240, "tp": 23, "ipt": 28, "dir": "<"}, {"b": 384, "tp": 23, "ipt": 0, "dir": ">"}, {"b": 240, "tp": 23, "ipt": 28, "dir": "<"}, {"b": 400, "tp": 23, "ipt": 0, "dir": ">"}, {"b": 240, "tp": 23, "ipt": 28, "dir": "<"}, {"b": 64, "tp": 21, "ipt": 0, "dir": ">"}, {"b": 64, "tp": 21, "ipt": 28, "dir": "<"}], "c_extensions": [{"supported_groups": "00020017"}, {"ec_point_formats": "0100"}, {"signature_algorithms": "000c020102030301030304010403"}], "s_version": 5, "scs": "003c", "s_random": "8600ab2efdfd7747c73383cdabd071a48bb9e0b3b498408601159464bf8d5be8", "cs": ["006b", "0039", "0067", "0033", "003d", "0035", "003c", "002f", "c009", "c00a", "c023", "c004", "c02b", "c0ae"], "c_key_length": 2064, "c_key_exchange": "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"}, "sp": 50855, "packets": [{"b": 110, "ipt": 28, "dir": ">"}, {"b": 2920, "ipt": 28, "dir": "<"}, {"b": 1176, "ipt": 0, "dir": "<"}, {"b": 639, "ipt": 0, "dir": "<"}, {"b": 267, "ipt": 55, "dir": ">"}, {"b": 6, "ipt": 0, "dir": ">"}, {"b": 85, "ipt": 0, "dir": ">"}, {"b": 91, "ipt": 29, "dir": "<"}, {"b": 389, "ipt": 0, "dir": ">"}, {"b": 245, "ipt": 28, "dir": "<"}, {"b": 501, "ipt": 32, "dir": ">"}, {"b": 245, "ipt": 28, "dir": "<"}, {"b": 389, "ipt": 0, "dir": ">"}, {"b": 245, "ipt": 28, "dir": "<"}, {"b": 389, "ipt": 0, "dir": ">"}, {"b": 245, "ipt": 28, "dir": "<"}, {"b": 405, "ipt": 0, "dir": ">"}, {"b": 245, "ipt": 28, "dir": "<"}, {"b": 69, "ipt": 0, "dir": ">"}, {"b": 69, "ipt": 28, "dir": "<"}], "idp_out": "45000096003d000080067545c0a803d53412cc50c6a701bbef4d170b2c85deed50181c00a70f00001603030069010000650303000000c7caec485f19ecb0a59dba33a551f0f2259bd46cb7d05abdda0033d7bb00001c006b003900670033003d0035003c002fc009c00ac023c004c02bc0ae01000020000a000400020017000b00020100000d000e000c020102030301030304010403", "sa": "192.168.3.213"}