vrr/nDPI
2
0
Fork 0
mirror of https://github.com/vel21ripn/nDPI.git synced 2026-04-28 15:09:47 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 6
nDPI/tests/cfgs/default/result/custom_rules_ip.pcapng.out
Ivan Nardi 1fdb6df2b1
Fix FPC confidence with custom rules (#3008)
2025-10-23 12:29:39 +02:00

39 lines
3.4 KiB
Text
Raw Blame History

DPI Packets (TCP): 3 (1.00 pkts/flow)
Confidence Match by custom rule: 3 (flows)
Num dissector calls: 0 (0.00 diss/flow)
LRU cache ookla: 0/0/0 (insert/search/found)
LRU cache bittorrent: 0/0/0 (insert/search/found)
LRU cache stun: 0/0/0 (insert/search/found)
LRU cache tls_cert: 0/0/0 (insert/search/found)
LRU cache mining: 0/0/0 (insert/search/found)
LRU cache msteams: 0/0/0 (insert/search/found)
LRU cache fpc_dns: 0/0/0 (insert/search/found)
Automa host: 0/0 (search/found)
Automa domain: 0/0 (search/found)
Automa tls cert: 0/0 (search/found)
Automa risk mask: 0/0 (search/found)
Automa common alpns: 0/0 (search/found)
Patricia risk mask: 0/0 (search/found)
Patricia risk mask IPv6: 0/0 (search/found)
Patricia risk: 0/0 (search/found)
Patricia risk IPv6: 0/0 (search/found)
Patricia protocols: 3/3 (search/found)
Patricia protocols IPv6: 0/0 (search/found)
Hash malicious ja4: 0/0 (search/found)
Hash malicious sha1: 0/0 (search/found)
Hash TCP fingerprints: 3/3 (search/found)
Hash public domain suffix: 0/0 (search/found)
Hash ja4 custom protos: 0/0 (search/found)
Hash fp custom protos: 2/0 (search/found)
Hash url custom protos: 0/0 (search/found)
CustomProtocol 2 148 1
AmazonPrime 10 767 2
Acceptable 12 915 3
Web 12 915 3
1 TCP 192.168.1.126:56052 <-> 54.80.47.130:80 [proto: 7.60001/HTTP.AmazonPrime][Stack: HTTP.AmazonPrime][IP: 60001/AmazonPrime][ClearText][Confidence: Match by custom rule][FPC: 7.60001/HTTP.AmazonPrime, Confidence: Match by custom rule][DPI packets: 1][cat: Web/5][Breed: Acceptable][4 pkts/347 bytes <-> 4 pkts/272 bytes][Goodput ratio: 22/0][0.30 sec][bytes ratio: 0.121 (Mixed)][IAT c2s/s2c min/avg/max/stddev: 0/101 67/101 101/101 48/0][Pkt Len c2s/s2c min/avg/max/stddev: 66/66 87/68 141/74 31/3][TCP Fingerprint: 2_64_64240_2e3cee914fc1/Linux][PLAIN TEXT (/GET / HTTP/1.1)][Plen Bins: 0,0,100,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
2 TCP 192.168.1.126:41162 -> 8.248.73.247:443 [proto: 91.60001/TLS.AmazonPrime][Stack: TLS.AmazonPrime][IP: 60001/AmazonPrime][ClearText][Confidence: Match by custom rule][FPC: 91.60001/TLS.AmazonPrime, Confidence: Match by custom rule][DPI packets: 1][cat: Web/5][Breed: Acceptable][2 pkts/148 bytes -> 0 pkts/0 bytes][Goodput ratio: 0/0][1.06 sec][Risk: ** Unidirectional Traffic **][Risk Score: 10][Risk Info: No server to client traffic][nDPI Fingerprint: ed4184cfab060a404adb67ebea5b2f97][TCP Fingerprint: 2_64_64240_2e3cee914fc1/Linux][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
3 TCP 192.168.1.126:42176 -> 213.75.170.11:443 [proto: 91.60000/TLS.CustomProtocol][Stack: TLS.CustomProtocol][IP: 60000/CustomProtocol][ClearText][Confidence: Match by custom rule][FPC: 91.60000/TLS.CustomProtocol, Confidence: Match by custom rule][DPI packets: 1][cat: Web/5][Breed: Acceptable][2 pkts/148 bytes -> 0 pkts/0 bytes][Goodput ratio: 0/0][1.02 sec][Risk: ** Unidirectional Traffic **][Risk Score: 10][Risk Info: No server to client traffic][nDPI Fingerprint: ed4184cfab060a404adb67ebea5b2f97][TCP Fingerprint: 2_64_64240_2e3cee914fc1/Linux][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
Reference in a new issue View git blame Copy permalink