vrr/nDPI
2
0
Fork 0
mirror of https://github.com/vel21ripn/nDPI.git synced 2026-04-28 15:09:47 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 5
nDPI/tests/cfgs/default/result/hamachi.pcapng.out
Toni Uhlig 285496d0b9 Add (generic) MsgPack protocol dissector. 
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
2025-12-08 17:50:20 +01:00

44 lines
3.3 KiB
Text
Raw Blame History

DPI Packets (TCP): 8 (4.00 pkts/flow)
DPI Packets (UDP): 5 (5.00 pkts/flow)
Confidence DPI : 3 (flows)
Num dissector calls: 192 (64.00 diss/flow)
LRU cache ookla: 0/0/0 (insert/search/found)
LRU cache bittorrent: 0/0/0 (insert/search/found)
LRU cache stun: 0/0/0 (insert/search/found)
LRU cache tls_cert: 0/0/0 (insert/search/found)
LRU cache mining: 0/0/0 (insert/search/found)
LRU cache msteams: 0/0/0 (insert/search/found)
LRU cache fpc_dns: 0/3/0 (insert/search/found)
Automa host: 1/1 (search/found)
Automa domain: 1/0 (search/found)
Automa tls cert: 0/0 (search/found)
Automa risk mask: 0/0 (search/found)
Automa common alpns: 0/0 (search/found)
Patricia risk mask: 2/0 (search/found)
Patricia risk mask IPv6: 0/0 (search/found)
Patricia risk: 0/0 (search/found)
Patricia risk IPv6: 0/0 (search/found)
Patricia protocols: 6/0 (search/found)
Patricia protocols IPv6: 0/0 (search/found)
Hash malicious ja4: 1/0 (search/found)
Hash malicious sha1: 0/0 (search/found)
Hash TCP fingerprints: 2/2 (search/found)
Hash public domain suffix: 0/0 (search/found)
Hash ja4 custom protos: 1/0 (search/found)
Hash fp custom protos: 1/0 (search/found)
Hash url custom protos: 0/0 (search/found)
Hamachi 18 2896 3
Acceptable 18 2896 3
VPN 18 2896 3
JA Host Stats:
IP Address # JA4C
1 192.168.1.30 1
1 UDP 192.168.1.30:55865 <-> 158.120.24.193:17771 [proto: 451/Hamachi][Stack: Hamachi][IP: 0/Unknown][Encrypted][Confidence: DPI][FPC: 0/Unknown, Confidence: Unknown][DPI packets: 5][cat: VPN/2][Breed: Acceptable][5 pkts/870 bytes <-> 5 pkts/838 bytes][Goodput ratio: 76/75][< 1 sec][bytes ratio: 0.019 (Mixed)][IAT c2s/s2c min/avg/max/stddev: 356/16 698/785 1015/1093 258/445][Pkt Len c2s/s2c min/avg/max/stddev: 118/118 174/168 208/196 42/35][Risk: ** Susp Entropy **][Risk Score: 10][Risk Info: Entropy: 6.800 (Compressed Executable?)][Plen Bins: 0,0,40,0,30,30,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
2 TCP 192.168.1.30:61356 <-> 158.120.16.201:12975 [proto: 451/Hamachi][Stack: Hamachi][IP: 0/Unknown][Encrypted][Confidence: DPI][FPC: 0/Unknown, Confidence: Unknown][DPI packets: 4][cat: VPN/2][Breed: Acceptable][3 pkts/530 bytes <-> 1 pkts/66 bytes][Goodput ratio: 67/0][0.05 sec][TCP Fingerprint: 2_128_64240_6bb88f5575fd/Windows][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,100,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
3 TCP 192.168.1.30:56766 <-> 158.120.16.205:443 [proto: 91.451/TLS.Hamachi][Stack: TLS.Hamachi][IP: 0/Unknown][Encrypted][Confidence: DPI][FPC: 0/Unknown, Confidence: Unknown][DPI packets: 4][cat: VPN/2][Breed: Acceptable][3 pkts/526 bytes <-> 1 pkts/66 bytes][Goodput ratio: 67/0][0.04 sec][Hostname/SNI: secure.logmein.com][TLS Supported Versions: TLSv1.3;TLSv1.2][Risk: ** TLS (probably) Not Carrying HTTPS **][Risk Score: 10][Risk Info: No ALPN][nDPI Fingerprint: d051843534db3d6c4002fa0aee61788f][TCP Fingerprint: 2_128_64240_6bb88f5575fd/Windows][TLSv1.2][JA4: t13d471000_f3510ec30a8e_1f22a2ca17c4][Firefox][PLAIN TEXT (secure.logmein.com)][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,100,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
Reference in a new issue View git blame Copy permalink