/
wireshark-capture-init-long.json
7 lines (7 loc) · 36.6 KB
/
wireshark-capture-init-long.json
1
2
3
4
5
6
7
{"ip": {"out": {"id": [13074, 13075], "ttl": 64}}, "time_end": 1535533604.846403, "expire_type": "i", "entropy": 1.380744, "payload": {"out": "02010600af2b569d0003000000000000c0a803d5c0a8030100000000b8d7af2b"}, "num_pkts_out": 2, "pr": 17, "time_start": 1535533604.844632, "dhcp": [{"hlen": "6", "xid": "2938853021", "ciaddr": "0.0.0.0", "hops": "0", "giaddr": "0.0.0.0", "chaddr": "b8d7af2b32a900000000000000000000", "yiaddr": "192.168.3.213", "secs": "3", "flags": "0", "htype": "1", "siaddr": "192.168.3.1", "options": [{"msg_type": "DHCPOFFER"}, {"server_id": "c0a80301"}, {"address_time": "0000a8c0"}, {"renewal_time": "00005460"}, {"rebinding_time": "000093a8"}, {"subnet_mask": "ffffff00"}, {"broadcast_address": "c0a803ff"}, {"router": "c0a80301"}, {"domain_server": "c0a80301"}], "op": "2"}, {"hlen": "6", "xid": "2938853021", "ciaddr": "0.0.0.0", "hops": "0", "giaddr": "0.0.0.0", "chaddr": "b8d7af2b32a900000000000000000000", "yiaddr": "192.168.3.213", "secs": "4", "flags": "0", "htype": "1", "siaddr": "192.168.3.1", "options": [{"msg_type": "DHCPACK"}, {"server_id": "c0a80301"}, {"address_time": "0000a8c0"}, {"renewal_time": "00005460"}, {"rebinding_time": "000093a8"}, {"subnet_mask": "ffffff00"}, {"broadcast_address": "c0a803ff"}, {"router": "c0a80301"}, {"domain_server": "c0a80301"}], "op": "2"}], "bytes_out": 600, "byte_dist_std": 58.215446, "da": "192.168.3.213", "wht": [21.983, -2.12, 0.68, -1.9167], "byte_dist_mean": 21.983333, "idp_len_out": 328, "total_entropy": 828.446174, "byte_dist": [229, 7, 1, 7, 8, 0, 2, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 2, 0, 0, 0, 0, 0, 0, 1, 1, 0, 1, 1, 0, 0, 0, 1, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 1, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 2, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 8, 1, 0, 0, 0, 0, 0, 2, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 7, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 5], "dp": 68, "sp": 67, "packets": [{"b": 300, "ipt": 0, "dir": "<"}, {"b": 300, "ipt": 1, "dir": "<"}], "idp_out": "45000148331200004011be6cc0a80301c0a803d5004300440134c4ad02010600af2b569d0003000000000000c0a803d5c0a8030100000000b8d7af2b32a900000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000638253633501023604c0a8030133040000a8c03a04000054603b04000093a80104ffffff001c04c0a803ff0304c0a803010604c0a80301ff0000000000000000", "sa": "192.168.3.1"}
{"pr": 17, "time_start": 1535533605.946304, "bytes_out": 3533, "sp": 5353, "packets": [{"b": 102, "ipt": 0, "dir": "<"}, {"b": 102, "ipt": 499, "dir": "<"}, {"b": 102, "ipt": 499, "dir": "<"}, {"b": 62, "ipt": 499, "dir": "<"}, {"b": 62, "ipt": 999, "dir": "<"}, {"b": 114, "ipt": 1100, "dir": "<"}, {"b": 114, "ipt": 499, "dir": "<"}, {"b": 114, "ipt": 499, "dir": "<"}, {"b": 74, "ipt": 499, "dir": "<"}, {"b": 74, "ipt": 999, "dir": "<"}, {"b": 102, "ipt": 1099, "dir": "<"}, {"b": 102, "ipt": 499, "dir": "<"}, {"b": 102, "ipt": 499, "dir": "<"}, {"b": 62, "ipt": 499, "dir": "<"}, {"b": 62, "ipt": 999, "dir": "<"}, {"b": 114, "ipt": 1099, "dir": "<"}, {"b": 114, "ipt": 499, "dir": "<"}, {"b": 114, "ipt": 500, "dir": "<"}, {"b": 74, "ipt": 499, "dir": "<"}, {"b": 74, "ipt": 999, "dir": "<"}, {"b": 134, "ipt": 12706, "dir": "<"}, {"b": 134, "ipt": 499, "dir": "<"}, {"b": 134, "ipt": 499, "dir": "<"}, {"b": 385, "ipt": 500, "dir": "<"}, {"b": 385, "ipt": 999, "dir": "<"}, {"b": 385, "ipt": 999, "dir": "<"}, {"b": 136, "ipt": 166, "dir": "<"}], "time_end": 1535533635.618195, "byte_dist_std": 56.281146, "da": "224.0.0.251", "wht": [67.929, -2.2321, -4.5338, -3.5766], "idp_out": "4500008200134000ff11d5dec0a803d5e00000fb14e914e9006e9a150000000000010000000100001c545241444652492d476174657761792d623864376166326233326139056c6f63616c0000ff00011c545241444652492d476174657761792d623864376166326233326139056c6f63616c0000010001000000ff0004c0a803d5", "entropy": 1.680581, "num_pkts_out": 27, "idp_len_out": 130, "ip": {"out": {"id": [19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 49], "ttl": 255}}, "expire_type": "a", "total_entropy": 5937.491316, "sa": "192.168.3.213", "byte_dist": [174, 27, 0, 3, 15, 18, 0, 0, 0, 0, 0, 0, 0, 0, 0, 4, 4, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 14, 0, 0, 0, 4, 2, 0, 1, 0, 0, 0, 0, 0, 0, 1, 3, 0, 23, 0, 0, 1, 3, 29, 12, 1, 0, 0, 11, 12, 11, 3, 0, 0, 6, 0, 0, 0, 15, 0, 0, 16, 1, 16, 11, 0, 16, 0, 0, 0, 0, 0, 0, 1, 0, 31, 0, 15, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 10, 0, 76, 23, 22, 13, 15, 14, 5, 4, 1, 0, 0, 32, 0, 0, 16, 10, 0, 0, 1, 20, 0, 0, 16, 0, 15, 0, 0, 0, 0, 0, 0, 7, 0, 0, 0, 2, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 3, 3, 0, 0, 0, 0, 0, 3, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 3, 0, 0, 0, 0, 0, 3, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 3, 0, 3, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 6, 16], "payload": {"out": "0000000000010000000100001c545241444652492d476174657761792d623864"}, "dp": 5353, "byte_dist_mean": 67.928673}
{"ip": {"in": {"id": [45], "ttl": 255}, "out": {"id": [14224], "ttl": 64}}, "idp_in": "45000047002d4000ff11f351c0a803d5c0a803017533003500336020fe8701000001000000000000026677036f746109686f6d65736d61727404696b6561036e65740000010001", "time_end": 1535533635.52784, "entropy": 5.079151, "payload": {"in": "fe8701000001000000000000026677036f746109686f6d65736d61727404696b", "out": "fe8781800001000500040001026677036f746109686f6d65736d61727404696b"}, "num_pkts_out": 1, "pr": 17, "time_start": 1535533635.561004, "bytes_in": 43, "num_pkts_in": 1, "dns": [{"rc": 0, "rr": [], "qn": "fw.ota.homesmart.ikea.net"}], "bytes_out": 300, "byte_dist_std": 53.069465, "da": "192.168.3.213", "wht": [59.122, 1.2041, 3.7988, 2.3819], "byte_dist_mean": 59.122449, "idp_len_out": 328, "total_entropy": 1742.148682, "byte_dist": [75, 23, 9, 6, 8, 2, 6, 2, 0, 6, 1, 0, 1, 4, 1, 0, 0, 0, 0, 1, 0, 0, 1, 1, 0, 1, 0, 0, 1, 0, 0, 0, 4, 0, 2, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 8, 0, 0, 4, 3, 5, 3, 3, 2, 3, 8, 3, 0, 0, 0, 4, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 4, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 10, 5, 4, 6, 6, 3, 1, 3, 2, 0, 3, 1, 7, 11, 9, 1, 0, 4, 15, 7, 3, 0, 6, 1, 0, 1, 0, 0, 0, 0, 0, 1, 1, 0, 0, 0, 0, 0, 2, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 13, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 2, 0], "dp": 30003, "idp_len_in": 71, "sp": 53, "packets": [{"b": 43, "ipt": 4294967262, "dir": "<"}, {"b": 300, "ipt": 33, "dir": ">"}], "idp_out": "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", "sa": "192.168.3.1"}
{"ip": {"in": {"id": [0, 42652, 42653, 42654, 42655], "ttl": 246}, "out": {"id": [46, 47, 48, 50, 51], "ttl": 128}}, "ppi": [{"b": 0, "seq": 3808147508, "ack": 0, "rseq": 0, "flags": "S", "t": 0, "olen": 8, "opts": [{"mss": 1460}, {"ws": 0}], "rack": 0, "dir": ">"}, {"b": 0, "seq": 2491221727, "ack": 3808147509, "rseq": 0, "flags": "SA", "t": 0, "olen": 8, "opts": [{"mss": 1460}, {"noop": null}, {"ws": 8}], "rack": 1, "dir": "<"}, {"b": 0, "seq": 3808147509, "ack": 2491221728, "rseq": 1, "flags": "A", "t": 0, "olen": 0, "opts": [], "rack": 1, "dir": ">"}, {"b": 230, "seq": 3808147509, "ack": 2491221728, "rseq": 0, "flags": "PA", "t": 1, "olen": 0, "opts": [], "rack": 1, "dir": ">"}, {"b": 0, "seq": 2491221728, "ack": 3808147739, "rseq": 1, "flags": "A", "t": 2, "olen": 0, "opts": [], "rack": 230, "dir": "<"}, {"b": 544, "seq": 2491221728, "ack": 3808147739, "rseq": 0, "flags": "PA", "t": 444, "olen": 0, "opts": [], "rack": 230, "dir": "<"}, {"b": 0, "seq": 3808147739, "ack": 2491222272, "rseq": 230, "flags": "FA", "t": 444, "olen": 0, "opts": [], "rack": 544, "dir": ">"}, {"b": 0, "seq": 2491222272, "ack": 3808147739, "rseq": 544, "flags": "FA", "t": 444, "olen": 0, "opts": [], "rack": 0, "dir": "<"}, {"b": 0, "seq": 3808147740, "ack": 2491222273, "rseq": 1, "flags": "A", "t": 444, "olen": 0, "opts": [], "rack": 1, "dir": ">"}, {"b": 0, "seq": 2491222273, "ack": 3808147740, "rseq": 1, "flags": "A", "t": 445, "olen": 0, "opts": [], "rack": 0, "dir": "<"}], "idp_in": "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", "time_end": 1535533636.006033, "tcp": {"out": {"opt_len": 8, "flags": "S", "opts": [{"mss": 1460}, {"ws": 0}], "first_window_size": 7168}, "in": {"opt_len": 8, "flags": "SA", "opts": [{"mss": 1460}, {"noop": null}, {"ws": 8}], "first_window_size": 29200}, "first_seq": 3808147508}, "expire_type": "a", "entropy": 5.812574, "payload": {"in": "485454502f312e3120333034204e6f74204d6f6469666965640d0a436f6e6e65", "out": "474554202f666565642f76657273696f6e5f696e666f2e6a736f6e2048545450"}, "num_pkts_out": 5, "pr": 6, "time_start": 1535533635.561303, "bytes_in": 544, "num_pkts_in": 5, "http": [{"in": [{"version": "HTTP/1.1"}, {"code": "304"}, {"reason": "Not Modified"}, {"Connection": "close"}, {"Age": "77268"}, {"Date": "Wed, 29 Aug 2018 09:07:15 GMT"}, {"ETag": ".d1a8a1d9d239b927b36b8dee2c0481f0."}, {"Server": "AmazonS3"}, {"x-amz-id-2": "33xGIgKvS6VobGzE+AF0+WKniN+eVDSn1Pqp0aqEWmQKK17t+b3fijz5Bw2gN/LmdR9vHj6cVGc="}, {"x-amz-replication-status": "COMPLETED"}, {"x-amz-request-id": "CB8E5B4486B901B3"}, {"x-amz-version-id": "Sr0K8Yzml0FaJ2teL__QnPyNkkVSc6ty"}, {"X-Cache": "Hit from cloudfront"}, {"Via": "1.1 f1aae20f846887012ffd8dbff8427609.cloudfront.net (CloudFront)"}, {"X-Amz-Cf-Id": "QljxKwDqkvcnoKOkLkBJ8wSw8C5NqtKdTQM0FeHqkBl7b8dHCZuIEQ=="}, {"body": "00000000000000000000000000000000"}], "out": [{"method": "GET"}, {"uri": "/feed/version_info.json"}, {"version": "HTTP/1.0"}, {"User-Agent": "HertzClient/1.0 (GW (1).(4).(15); Id 886f4449-46ad-44e6-a200-96f208aa6bfe)"}, {"Host": "fw.ota.homesmart.ikea.net"}, {"If-Modified-Since": "Mon, 02 Jul 2018 11:32:25 GMT"}, {"Connection": "close"}, {"body": "00000000000000000000000000000000"}]}], "bytes_out": 230, "byte_dist_std": 23.593018, "da": "13.32.98.176", "wht": [76.745, 0.72222, -0.37597, -0.85917], "byte_dist_mean": 76.745478, "idp_len_out": 270, "total_entropy": 4498.932206, "byte_dist": [0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 20, 0, 0, 20, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 39, 0, 2, 0, 0, 0, 0, 0, 5, 5, 0, 4, 2, 23, 13, 6, 22, 21, 18, 9, 13, 6, 13, 8, 20, 10, 20, 1, 0, 3, 0, 0, 0, 6, 7, 10, 4, 8, 4, 7, 8, 5, 3, 8, 4, 7, 5, 2, 5, 5, 1, 8, 10, 1, 5, 4, 2, 1, 1, 0, 0, 0, 0, 3, 0, 24, 8, 14, 24, 36, 21, 6, 2, 21, 4, 7, 11, 12, 25, 28, 2, 6, 14, 11, 24, 8, 6, 5, 6, 2, 10, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0], "dp": 80, "idp_len_in": 584, "sp": 34088, "packets": [{"b": 230, "ipt": 1, "dir": ">"}, {"b": 544, "ipt": 443, "dir": "<"}], "idp_out": "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", "sa": "192.168.3.213"}
{"pr": 2, "time_start": 1535533684.13793, "bytes_out": 8, "sp": null, "packets": [{"b": 8, "ipt": 0, "dir": "<"}], "time_end": 1535533684.13793, "byte_dist_std": 107.733467, "da": "224.0.0.251", "wht": [63.75, 0, -2.25, 61.5], "idp_out": "460000200039000001027f26c0a803d5e00000fb9404000016000904e00000fb", "entropy": 2.405639, "num_pkts_out": 1, "idp_len_out": 32, "ip": {"out": {"id": [57], "ttl": 1}}, "expire_type": "a", "total_entropy": 19.245111, "sa": "192.168.3.213", "byte_dist": [3, 0, 0, 0, 1, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0], "payload": {"out": "16000904e00000fb"}, "dp": null, "byte_dist_mean": 63.75}
{"ip": {"in": {"id": [58], "ttl": 255}, "out": {"id": [15038], "ttl": 64}}, "idp_in": "45000044003a4000ff11f347c0a803d5c0a8030175340035003061a15a180100000100000000000007776562686f6f6b0a6c6f67656e747269657303636f6d0000010001", "time_end": 1535533759.109303, "entropy": 4.927744, "payload": {"in": "5a180100000100000000000007776562686f6f6b0a6c6f67656e747269657303", "out": "5a188180000100030003000107776562686f6f6b0a6c6f67656e747269657303"}, "num_pkts_out": 1, "pr": 17, "time_start": 1535533759.116994, "bytes_in": 40, "num_pkts_in": 1, "dns": [{"rc": 0, "rr": [], "qn": "webhook.logentries.com"}], "bytes_out": 207, "byte_dist_std": 54.166156, "da": "192.168.3.213", "wht": [58.915, 0.76113, 6.3482, -2.6397], "byte_dist_mean": 58.91498, "idp_len_out": 235, "total_entropy": 1217.152746, "byte_dist": [57, 20, 9, 5, 4, 0, 1, 4, 0, 3, 2, 0, 3, 0, 0, 0, 0, 0, 0, 1, 3, 0, 0, 1, 2, 1, 0, 0, 0, 0, 0, 1, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 6, 0, 0, 2, 7, 2, 0, 3, 1, 2, 1, 0, 1, 0, 0, 3, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 2, 0, 0, 0, 0, 0, 0, 3, 2, 3, 3, 6, 0, 3, 2, 2, 0, 3, 2, 2, 8, 10, 0, 0, 3, 11, 2, 1, 0, 6, 0, 0, 0, 0, 0, 1, 0, 0, 1, 1, 0, 0, 0, 0, 0, 0, 1, 0, 1, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 3, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 1, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 9, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 1, 0, 0, 0], "dp": 30004, "idp_len_in": 68, "sp": 53, "packets": [{"b": 40, "ipt": 4294967288, "dir": "<"}, {"b": 207, "ipt": 7, "dir": ">"}], "idp_out": "450000eb3abe40004011771dc0a80301c0a803d50035753400d7bae15a188180000100030003000107776562686f6f6b0a6c6f67656e747269657303636f6d0000010001c00c000100010000003c000422fcb58ac00c000100010000003c0004369a7db4c00c000100010000003c000434d79243c014000200010002a3000019076e732d3137313409617773646e732d323202636f02756b00c014000200010002a3000017076e732d3135313009617773646e732d3630036f726700c014000200010002a3000013066e732d31313909617773646e732d3134c01fc0ac00010001000288010004cdfbc077", "sa": "192.168.3.1"}
{"ip": {"in": {"id": [0, 18752, 18753, 18754, 18756, 18757, 18758, 18759, 18760, 18761, 18762, 18763, 18764, 18765], "ttl": 236}, "out": {"id": [59, 60, 61, 62, 63, 64, 65, 66, 67, 68, 69, 70, 71, 72, 73, 74, 75, 76, 77], "ttl": 128}}, "ppi": [{"b": 0, "seq": 4014806794, "ack": 0, "rseq": 0, "flags": "S", "t": 0, "olen": 8, "opts": [{"mss": 1460}, {"ws": 0}], "rack": 0, "dir": ">"}, {"b": 0, "seq": 546768747, "ack": 4014806795, "rseq": 0, "flags": "SA", "t": 29, "olen": 8, "opts": [{"mss": 1460}, {"noop": null}, {"ws": 8}], "rack": 1, "dir": "<"}, {"b": 0, "seq": 4014806795, "ack": 546768748, "rseq": 1, "flags": "A", "t": 29, "olen": 0, "opts": [], "rack": 1, "dir": ">"}, {"b": 110, "seq": 4014806795, "ack": 546768748, "rseq": 0, "flags": "PA", "t": 29, "olen": 0, "opts": [], "rack": 1, "dir": ">"}, {"b": 0, "seq": 546768748, "ack": 4014806905, "rseq": 1, "flags": "A", "t": 58, "olen": 0, "opts": [], "rack": 110, "dir": "<"}, {"b": 1460, "seq": 546768748, "ack": 4014806905, "rseq": 0, "flags": "A", "t": 59, "olen": 0, "opts": [], "rack": 110, "dir": "<"}, {"b": 2636, "seq": 546770208, "ack": 4014806905, "rseq": 1460, "flags": "PA", "t": 59, "olen": 0, "opts": [], "rack": 110, "dir": "<"}, {"b": 639, "seq": 546772844, "ack": 4014806905, "rseq": 2636, "flags": "PA", "t": 59, "olen": 0, "opts": [], "rack": 110, "dir": "<"}, {"b": 0, "seq": 4014806905, "ack": 546771668, "rseq": 110, "flags": "A", "t": 59, "olen": 0, "opts": [], "rack": -1176, "dir": ">"}, {"b": 0, "seq": 4014806905, "ack": 546773483, "rseq": 0, "flags": "A", "t": 59, "olen": 0, "opts": [], "rack": 639, "dir": ">"}, {"b": 267, "seq": 4014806905, "ack": 546773483, "rseq": 0, "flags": "PA", "t": 115, "olen": 0, "opts": [], "rack": 639, "dir": ">"}, {"b": 6, "seq": 4014807172, "ack": 546773483, "rseq": 267, "flags": "PA", "t": 115, "olen": 0, "opts": [], "rack": 639, "dir": ">"}, {"b": 85, "seq": 4014807178, "ack": 546773483, "rseq": 6, "flags": "PA", "t": 115, "olen": 0, "opts": [], "rack": 639, "dir": ">"}, {"b": 0, "seq": 546773483, "ack": 4014807178, "rseq": 639, "flags": "A", "t": 144, "olen": 0, "opts": [], "rack": 0, "dir": "<"}, {"b": 91, "seq": 546773483, "ack": 4014807263, "rseq": 0, "flags": "PA", "t": 146, "olen": 0, "opts": [], "rack": 85, "dir": "<"}, {"b": 389, "seq": 4014807263, "ack": 546773574, "rseq": 85, "flags": "PA", "t": 147, "olen": 0, "opts": [], "rack": 91, "dir": ">"}, {"b": 245, "seq": 546773574, "ack": 4014807652, "rseq": 91, "flags": "PA", "t": 177, "olen": 0, "opts": [], "rack": 389, "dir": "<"}, {"b": 0, "seq": 4014807652, "ack": 546773819, "rseq": 389, "flags": "A", "t": 177, "olen": 0, "opts": [], "rack": 245, "dir": ">"}, {"b": 501, "seq": 4014807652, "ack": 546773819, "rseq": 0, "flags": "PA", "t": 196, "olen": 0, "opts": [], "rack": 245, "dir": ">"}, {"b": 245, "seq": 546773819, "ack": 4014808153, "rseq": 245, "flags": "PA", "t": 226, "olen": 0, "opts": [], "rack": 501, "dir": "<"}, {"b": 389, "seq": 4014808153, "ack": 546774064, "rseq": 501, "flags": "PA", "t": 227, "olen": 0, "opts": [], "rack": 245, "dir": ">"}, {"b": 245, "seq": 546774064, "ack": 4014808542, "rseq": 245, "flags": "PA", "t": 257, "olen": 0, "opts": [], "rack": 389, "dir": "<"}, {"b": 0, "seq": 4014808542, "ack": 546774309, "rseq": 389, "flags": "A", "t": 257, "olen": 0, "opts": [], "rack": 245, "dir": ">"}, {"b": 389, "seq": 4014808542, "ack": 546774309, "rseq": 0, "flags": "PA", "t": 257, "olen": 0, "opts": [], "rack": 245, "dir": ">"}, {"b": 245, "seq": 546774309, "ack": 4014808931, "rseq": 245, "flags": "PA", "t": 288, "olen": 0, "opts": [], "rack": 389, "dir": "<"}, {"b": 405, "seq": 4014808931, "ack": 546774554, "rseq": 389, "flags": "PA", "t": 288, "olen": 0, "opts": [], "rack": 245, "dir": ">"}, {"b": 245, "seq": 546774554, "ack": 4014809336, "rseq": 245, "flags": "PA", "t": 318, "olen": 0, "opts": [], "rack": 405, "dir": "<"}, {"b": 0, "seq": 4014809336, "ack": 546774799, "rseq": 405, "flags": "A", "t": 318, "olen": 0, "opts": [], "rack": 245, "dir": ">"}, {"b": 69, "seq": 4014809336, "ack": 546774799, "rseq": 0, "flags": "PA", "t": 319, "olen": 0, "opts": [], "rack": 245, "dir": ">"}, {"b": 0, "seq": 4014809405, "ack": 546774799, "rseq": 69, "flags": "FA", "t": 319, "olen": 0, "opts": [], "rack": 245, "dir": ">"}, {"b": 69, "seq": 546774799, "ack": 4014809406, "rseq": 245, "flags": "PA", "t": 348, "olen": 0, "opts": [], "rack": 1, "dir": "<"}, {"b": 0, "seq": 546774868, "ack": 4014809406, "rseq": 69, "flags": "FA", "t": 348, "olen": 0, "opts": [], "rack": 1, "dir": "<"}, {"b": 0, "seq": 4014809406, "ack": 546774869, "rseq": 1, "flags": "A", "t": 348, "olen": 0, "opts": [], "rack": 1, "dir": ">"}], "idp_in": "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", "time_end": 1535533759.466736, "tcp": {"out": {"opt_len": 8, "flags": "S", "opts": [{"mss": 1460}, {"ws": 0}], "first_window_size": 7168}, "in": {"opt_len": 8, "flags": "SA", "opts": [{"mss": 1460}, {"noop": null}, {"ws": 8}], "first_window_size": 26883}, "first_seq": 4014806794}, "expire_type": "a", "entropy": 7.746941, "payload": {"in": "160303004a020000460303b7998eaed3310bd3b6a76f424814c754410430d6ad", "out": "1603030069010000650303000000c46ac94f973bd4235a6d9d7f981831c8d082"}, "num_pkts_out": 19, "pr": 6, "time_start": 1535533759.118199, "bytes_in": 6120, "num_pkts_in": 14, "hd": {"i": "16", "sm": "00", "cv": "14", "cm": "fc", "n": 10}, "bytes_out": 2610, "byte_dist_std": 56.073269, "da": "34.252.181.138", "wht": [106.52, 0.47881, -0.24147, -1.9494], "byte_dist_mean": 106.517984, "idp_len_out": 150, "total_entropy": 67630.795712, "byte_dist": [109, 168, 73, 160, 99, 61, 136, 51, 50, 38, 41, 35, 26, 60, 41, 52, 32, 28, 28, 62, 34, 31, 61, 56, 20, 23, 32, 27, 32, 65, 41, 25, 62, 24, 20, 26, 25, 19, 29, 25, 23, 28, 42, 30, 24, 35, 91, 56, 231, 81, 49, 36, 34, 30, 19, 25, 37, 49, 43, 25, 21, 29, 33, 17, 33, 36, 21, 32, 19, 29, 18, 33, 49, 28, 31, 14, 32, 15, 19, 21, 35, 15, 28, 43, 28, 98, 30, 21, 22, 30, 41, 23, 11, 21, 36, 28, 24, 74, 32, 66, 27, 66, 50, 46, 46, 55, 25, 34, 46, 55, 52, 108, 50, 19, 80, 69, 114, 39, 28, 37, 20, 23, 37, 25, 31, 37, 23, 24, 27, 37, 53, 35, 21, 28, 65, 30, 27, 20, 27, 26, 18, 20, 16, 22, 29, 26, 22, 18, 20, 16, 24, 25, 28, 20, 25, 30, 30, 22, 36, 26, 26, 18, 13, 33, 31, 15, 27, 15, 22, 22, 20, 24, 23, 20, 21, 25, 19, 28, 31, 27, 18, 34, 17, 27, 36, 31, 23, 30, 43, 17, 24, 16, 31, 35, 24, 25, 35, 29, 23, 22, 30, 14, 30, 24, 17, 24, 13, 37, 30, 26, 18, 23, 25, 26, 16, 29, 24, 16, 28, 17, 19, 19, 38, 36, 27, 15, 18, 23, 29, 19, 21, 39, 22, 23, 26, 25, 18, 30, 21, 16, 32, 20, 37, 15, 24, 18, 15, 28, 20, 27, 21, 22, 24, 19, 30, 41], "dp": 443, "idp_len_in": 1300, "tls": {"s_cert": [{"subject_public_key_algo": "rsaEncryption", "validity_not_before": "Apr 10 00:00:00 2018 GMT", "validity_not_after": "May 10 12:00:00 2019 GMT", "subject_public_key_size": 2048, "length": 1203, "extensions": [{"X509v3 Authority Key Identifier": "keyid:59:A4:66:06:52:A0:7B:95:92:3C:A3:94:07:27:96:74:5B:F9:3D:D0."}, {"X509v3 Subject Key Identifier": "0D:B5:63:64:33:D7:52:A8:16:1C:0A:56:79:B5:B0:EE:1E:C3:B4:4A"}, {"X509v3 Subject Alternative Name": "DNS:eu.logentries.com, DNS:logentries.com, DNS:*.eu.logentries.com, DNS:*.logentries.com, DNS:*.eu.logentries.net"}, {"X509v3 Key Usage": "Digital Signature, Key Encipherment"}, {"X509v3 Extended Key Usage": "TLS Web Server Authentication, TLS Web Client Authentication"}, {"X509v3 CRL Distribution Points": ".Full Name:. URI:http:..crl.sca1b.amazontrust.com.sca1b.crl."}, {"X509v3 Certificate Policies": "Policy: 2.16.840.1.114412.1.2.Policy: 2.23.140.1.2.1."}, {"Authority Information Access": "OCSP - URI:http:..ocsp.sca1b.amazontrust.com.CA Issuers - URI:http:..crt.sca1b.amazontrust.com.sca1b.crt."}, {"X509v3 Basic Constraints": "CA:FALSE"}], "signature": "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", "serial_number": "07ff5d7da44a397b86d30dc088dfde12", "subject": [{"commonName": "eu.logentries.com"}], "signature_key_size": 2048, "signature_algo": "sha256WithRSAEncryption", "issuer": [{"countryName": "US"}, {"organizationName": "Amazon"}, {"organizationalUnitName": "Server CA 1B"}, {"commonName": "Amazon"}]}, {"subject_public_key_algo": "rsaEncryption", "validity_not_before": "Oct 22 00:00:00 2015 GMT", "validity_not_after": "Oct 19 00:00:00 2025 GMT", "subject_public_key_size": 2048, "length": 1101, "extensions": [{"X509v3 Basic Constraints": "CA:TRUE, pathlen:0"}, {"X509v3 Key Usage": "Digital Signature, Certificate Sign, CRL Sign"}, {"X509v3 Subject Key Identifier": "59:A4:66:06:52:A0:7B:95:92:3C:A3:94:07:27:96:74:5B:F9:3D:D0"}, {"X509v3 Authority Key Identifier": "keyid:84:18:CC:85:34:EC:BC:0C:94:94:2E:08:59:9C:C7:B2:10:4E:0A:08."}, {"Authority Information Access": "OCSP - URI:http:..ocsp.rootca1.amazontrust.com.CA Issuers - URI:http:..crt.rootca1.amazontrust.com.rootca1.cer."}, {"X509v3 CRL Distribution Points": ".Full Name:. URI:http:..crl.rootca1.amazontrust.com.rootca1.crl."}, {"X509v3 Certificate Policies": "Policy: 2.23.140.1.2.1."}], "signature": "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", "serial_number": "067f94578587e8ac77deb253325bbc998b560d", "subject": [{"countryName": "US"}, {"organizationName": "Amazon"}, {"organizationalUnitName": "Server CA 1B"}, {"commonName": "Amazon"}], "signature_key_size": 2048, "signature_algo": "sha256WithRSAEncryption", "issuer": [{"countryName": "US"}, {"organizationName": "Amazon"}, {"commonName": "Amazon Root CA 1"}]}, {"subject_public_key_algo": "rsaEncryption", "validity_not_before": "May 25 12:00:00 2015 GMT", "validity_not_after": "Dec 31 01:00:00 2037 GMT", "subject_public_key_size": 2048, "length": 1174, "extensions": [{"X509v3 Basic Constraints": "CA:TRUE"}, {"X509v3 Key Usage": "Digital Signature, Certificate Sign, CRL Sign"}, {"X509v3 Subject Key Identifier": "84:18:CC:85:34:EC:BC:0C:94:94:2E:08:59:9C:C7:B2:10:4E:0A:08"}, {"X509v3 Authority Key Identifier": "keyid:9C:5F:00:DF:AA:01:D7:30:2B:38:88:A2:B8:6D:4A:9C:F2:11:91:83."}, {"Authority Information Access": "OCSP - URI:http:..ocsp.rootg2.amazontrust.com.CA Issuers - URI:http:..crt.rootg2.amazontrust.com.rootg2.cer."}, {"X509v3 CRL Distribution Points": ".Full Name:. URI:http:..crl.rootg2.amazontrust.com.rootg2.crl."}, {"X509v3 Certificate Policies": "Policy: X509v3 Any Policy."}], "signature": "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", "serial_number": "067f944a2a27cdf3fac2ae2b01f908eeb9c4c6", "subject": [{"countryName": "US"}, {"organizationName": "Amazon"}, {"commonName": "Amazon Root CA 1"}], "signature_key_size": 2048, "signature_algo": "sha256WithRSAEncryption", "issuer": [{"countryName": "US"}, {"stateOrProvinceName": "Arizona"}, {"localityName": "Scottsdale"}, {"organizationName": "Starfield Technologies, Inc."}, {"commonName": "Starfield Services Root Certificate Authority - G2"}]}, {"subject_public_key_algo": "rsaEncryption", "validity_not_before": "Sep 2 00:00:00 2009 GMT", "validity_not_after": "Jun 28 17:39:16 2034 GMT", "subject_public_key_size": 2048, "length": 1145, "extensions": [{"X509v3 Basic Constraints": "CA:TRUE"}, {"X509v3 Key Usage": "Digital Signature, Certificate Sign, CRL Sign"}, {"X509v3 Subject Key Identifier": "9C:5F:00:DF:AA:01:D7:30:2B:38:88:A2:B8:6D:4A:9C:F2:11:91:83"}, {"X509v3 Authority Key Identifier": "keyid:BF:5F:B7:D1:CE:DD:1F:86:F4:5B:55:AC:DC:D7:10:C2:0E:A9:88:E7."}, {"Authority Information Access": "OCSP - URI:http:..o.ss2.us..CA Issuers - URI:http:..x.ss2.us.x.cer."}, {"X509v3 CRL Distribution Points": ".Full Name:. URI:http:..s.ss2.us.r.crl."}, {"X509v3 Certificate Policies": "Policy: X509v3 Any Policy."}], "signature": "231de38a57ca7de917794cf11e55fdcc536e3e470fdfc655f2b20436ed801f53c45d34286bbec755fc67eacb3f7f90b233cd1b58108202f8f82ff51360d405cef18108c1dda775974f18b96ddef7939108ba7e402cedc1eabb769e3306771d0d087f53dd1b64ab8227f169d54d5eaef4a1c375a758442df23c7098acba69b695777f0f315e2cfca0873a4769f0795ff41454a4955e1178126027ce9fc277ff2353775dbaffea59e7dbcfaf9296ef249a35107a9c91c60e7d99f63f19dff57254e115a907597b83bf522e468cb20064761c48d3d879e86e56ccae2c0390d7193899e4ca09195bff0796b0a87f3449df56a9f7b05fed33ed8c47b730035df4038c", "serial_number": "a70e4a4c3482b77f", "subject": [{"countryName": "US"}, {"stateOrProvinceName": "Arizona"}, {"localityName": "Scottsdale"}, {"organizationName": "Starfield Technologies, Inc."}, {"commonName": "Starfield Services Root Certificate Authority - G2"}], "signature_key_size": 2048, "signature_algo": "sha256WithRSAEncryption", "issuer": [{"countryName": "US"}, {"organizationName": "Starfield Technologies, Inc."}, {"organizationalUnitName": "Starfield Class 2 Certification Authority"}]}], "c_version": 5, "c_random": "000000c46ac94f973bd4235a6d9d7f981831c8d0821e42076d6e52ed7343afc8", "srlt": [{"hs_types": [1], "b": 105, "hs_lens": [101], "tp": 22, "ipt": 0, "dir": ">"}, {"hs_types": [2], "b": 74, "hs_lens": [70], "tp": 22, "ipt": 29, "dir": "<"}, {"hs_types": [11], "b": 4642, "hs_lens": [4638], "tp": 22, "ipt": 0, "dir": "<"}, {"b": 4, "tp": 22, "ipt": 0, "dir": "<"}, {"hs_types": [16], "b": 262, "hs_lens": [258], "tp": 22, "ipt": 55, "dir": ">"}, {"b": 1, "tp": 20, "ipt": 0, "dir": ">"}, {"b": 80, "tp": 22, "ipt": 0, "dir": ">"}, {"b": 1, "tp": 20, "ipt": 30, "dir": "<"}, {"b": 80, "tp": 22, "ipt": 0, "dir": "<"}, {"b": 384, "tp": 23, "ipt": 0, "dir": ">"}, {"b": 240, "tp": 23, "ipt": 29, "dir": "<"}, {"b": 496, "tp": 23, "ipt": 19, "dir": ">"}, {"b": 240, "tp": 23, "ipt": 29, "dir": "<"}, {"b": 384, "tp": 23, "ipt": 0, "dir": ">"}, {"b": 240, "tp": 23, "ipt": 29, "dir": "<"}, {"b": 384, "tp": 23, "ipt": 0, "dir": ">"}, {"b": 240, "tp": 23, "ipt": 30, "dir": "<"}, {"b": 400, "tp": 23, "ipt": 0, "dir": ">"}, {"b": 240, "tp": 23, "ipt": 29, "dir": "<"}, {"b": 64, "tp": 21, "ipt": 0, "dir": ">"}, {"b": 64, "tp": 21, "ipt": 29, "dir": "<"}], "c_extensions": [{"supported_groups": "00020017"}, {"ec_point_formats": "0100"}, {"signature_algorithms": "000c020102030301030304010403"}], "s_version": 5, "scs": "003c", "s_random": "b7998eaed3310bd3b6a76f424814c754410430d6aded4db1771fd9db198e94a3", "cs": ["006b", "0039", "0067", "0033", "003d", "0035", "003c", "002f", "c009", "c00a", "c023", "c004", "c02b", "c0ae"], "c_key_length": 2064, "c_key_exchange": "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"}, "sp": 34089, "packets": [{"b": 110, "ipt": 29, "dir": ">"}, {"b": 1460, "ipt": 29, "dir": "<"}, {"b": 2636, "ipt": 0, "dir": "<"}, {"b": 639, "ipt": 0, "dir": "<"}, {"b": 267, "ipt": 55, "dir": ">"}, {"b": 6, "ipt": 0, "dir": ">"}, {"b": 85, "ipt": 0, "dir": ">"}, {"b": 91, "ipt": 30, "dir": "<"}, {"b": 389, "ipt": 0, "dir": ">"}, {"b": 245, "ipt": 29, "dir": "<"}, {"b": 501, "ipt": 19, "dir": ">"}, {"b": 245, "ipt": 29, "dir": "<"}, {"b": 389, "ipt": 0, "dir": ">"}, {"b": 245, "ipt": 29, "dir": "<"}, {"b": 389, "ipt": 0, "dir": ">"}, {"b": 245, "ipt": 30, "dir": "<"}, {"b": 405, "ipt": 0, "dir": ">"}, {"b": 245, "ipt": 29, "dir": "<"}, {"b": 69, "ipt": 0, "dir": ">"}, {"b": 69, "ipt": 29, "dir": "<"}], "idp_out": "45000096003d000080069d21c0a803d522fcb58a852901bbef4d170b2097076c50181c00a6ac00001603030069010000650303000000c46ac94f973bd4235a6d9d7f981831c8d0821e42076d6e52ed7343afc800001c006b003900670033003d0035003c002fc009c00ac023c004c02bc0ae01000020000a000400020017000b00020100000d000e000c020102030301030304010403", "sa": "192.168.3.213"}