vrr/nDPI
2
0
Fork 0
mirror of https://github.com/vel21ripn/nDPI.git synced 2026-04-28 15:09:47 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 6
nDPI/tests/cfgs/default/result/rockstar_games.pcapng.out
Ivan Nardi faca0a6565 ndpiReader: improve statistics
2025-10-22 20:34:29 +02:00

47 lines
5.5 KiB
Text
Raw Blame History

DPI Packets (TCP): 18 (6.00 pkts/flow)
DPI Packets (UDP): 4 (4.00 pkts/flow)
Confidence DPI : 4 (flows)
Num dissector calls: 5 (1.25 diss/flow)
LRU cache ookla: 0/0/0 (insert/search/found)
LRU cache bittorrent: 0/0/0 (insert/search/found)
LRU cache stun: 0/0/0 (insert/search/found)
LRU cache tls_cert: 1/3/0 (insert/search/found)
LRU cache mining: 0/0/0 (insert/search/found)
LRU cache msteams: 0/0/0 (insert/search/found)
LRU cache fpc_dns: 0/3/0 (insert/search/found)
Automa host: 3/3 (search/found)
Automa domain: 3/0 (search/found)
Automa tls cert: 1/1 (search/found)
Automa risk mask: 0/0 (search/found)
Automa common alpns: 4/4 (search/found)
Patricia risk mask: 2/0 (search/found)
Patricia risk mask IPv6: 0/0 (search/found)
Patricia risk: 0/0 (search/found)
Patricia risk IPv6: 0/0 (search/found)
Patricia protocols: 6/2 (search/found)
Patricia protocols IPv6: 0/0 (search/found)
Hash malicious ja4: 5/0 (search/found)
Hash malicious sha1: 1/0 (search/found)
Hash TCP fingerprints: 3/3 (search/found)
Hash public domain suffix: 0/0 (search/found)
Hash ja4 custom protos: 5/0 (search/found)
Hash fp custom protos: 4/0 (search/found)
Hash url custom protos: 0/0 (search/found)
RockstarGames 25 8964 4
Fun 25 8964 4
Game 25 8964 4
JA Host Stats:
IP Address # JA4C
1 192.168.1.27 1
2 192.168.1.23 2
3 192.168.1.42 1
1 TCP 192.168.1.23:50624 <-> 92.123.164.188:443 [proto: 91.449/TLS.RockstarGames][Stack: TLS.RockstarGames][IP: 467/Akamai][Encrypted][Confidence: DPI][FPC: 467/Akamai, Confidence: IP address][DPI packets: 6][cat: Game/8][Breed: Fun][3 pkts/637 bytes <-> 3 pkts/3060 bytes][Goodput ratio: 73/94][0.09 sec][Hostname/SNI: gamedownloads.rockstargames.com][TLS Supported Versions: TLSv1.3;TLSv1.2][bytes ratio: -0.655 (Download)][IAT c2s/s2c min/avg/max/stddev: 5/1 24/24 42/48 18/24][Pkt Len c2s/s2c min/avg/max/stddev: 54/60 212/1020 517/2934 215/1353][Risk: ** TLS (probably) Not Carrying HTTPS **][Risk Score: 10][Risk Info: No ALPN][nDPI Fingerprint: d0c089c9468acb464176944aecdf4b4e][TCP Fingerprint: 2_128_65535_6bb88f5575fd/Windows][TLSv1.2][JA4: t13d201200_2b729b4bf6f3_e24568c0d440][JA3S: 15c4d139d9f284ce5a6e4380e77c1f5c][Firefox][Cipher: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50]
2 TCP 192.168.1.23:50630 <-> 23.38.18.80:443 [proto: 91.449/TLS.RockstarGames][Stack: TLS.RockstarGames][IP: 467/Akamai][Encrypted][Confidence: DPI][FPC: 467/Akamai, Confidence: IP address][DPI packets: 6][cat: Game/8][Breed: Fun][3 pkts/691 bytes <-> 3 pkts/1620 bytes][Goodput ratio: 75/89][< 1 sec][Hostname/SNI: s.rsg.sc][(Advertised) ALPNs: h2;http/1.1][(Negotiated) ALPN: h2][TLS Supported Versions: GREASE;TLSv1.3;TLSv1.2][bytes ratio: -0.402 (Download)][IAT c2s/s2c min/avg/max/stddev: 0/1 21/22 42/42 21/20][Pkt Len c2s/s2c min/avg/max/stddev: 54/60 230/540 571/1494 241/675][nDPI Fingerprint: 645fbd5c41652ebdf3911c1eae2e3254][TCP Fingerprint: 2_128_65535_6bb88f5575fd/Windows][TLSv1.2][JA4: t13d1516h2_8daaf6152771_e5627efa2ab1][JA3S: 35af4c8cd9495354f7d701ce8ad7fd2d][Chrome][Cipher: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0]
3 UDP 192.168.1.42:59487 <-> 192.81.241.191:61457 [proto: 30.449/DTLS.RockstarGames][Stack: DTLS.RockstarGames][IP: 0/Unknown][Encrypted][Confidence: DPI][FPC: 30/DTLS, Confidence: DPI][DPI packets: 4][cat: Game/8][Breed: Fun][4 pkts/840 bytes <-> 3 pkts/1102 bytes][Goodput ratio: 80/88][0.53 sec][bytes ratio: -0.135 (Mixed)][IAT c2s/s2c min/avg/max/stddev: 0/118 137/206 294/293 121/88][Pkt Len c2s/s2c min/avg/max/stddev: 133/102 210/367 325/867 71/354][Risk: ** Weak TLS Cipher **** TLS (probably) Not Carrying HTTPS **** Missing SNI TLS Extn **][Risk Score: 160][Risk Info: SNI should always be present / No ALPN / Cipher TLS_RSA_WITH_AES_256_CBC_SHA][nDPI Fingerprint: 170bca7e36be69125842855806b9e749][DTLSv1.0][JA4: dd1i080400_051fb07a0855_133c09cafeba][JA3S: 749bd1edea60396ffaa65213b7971718][Issuer: C=US][Subject: C=US, CN=*.relay.ros.rockstargames.com][Certificate SHA-1: AB:59:0E:11:EC:94:4D:D5:D3:40:7E:6E:3B:8B:6A:19:CA:B7:85:2C][Firefox][Validity: 2014-09-12 21:31:19 - 2037-02-15 21:31:19][Cipher: TLS_RSA_WITH_AES_256_CBC_SHA][PLAIN TEXT (140912213119Z)][Plen Bins: 0,14,28,0,14,14,0,0,14,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,14,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
4 TCP 192.168.1.27:64057 <-> 104.255.105.53:443 [proto: 91.449/TLS.RockstarGames][Stack: TLS.RockstarGames][IP: 0/Unknown][Encrypted][Confidence: DPI][FPC: 0/Unknown, Confidence: Unknown][DPI packets: 6][cat: Game/8][Breed: Fun][3 pkts/691 bytes <-> 3 pkts/323 bytes][Goodput ratio: 75/45][0.26 sec][Hostname/SNI: rgl.rockstargames.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: GREASE;TLSv1.3;TLSv1.2][bytes ratio: 0.363 (Upload)][IAT c2s/s2c min/avg/max/stddev: 0/0 70/60 141/119 70/60][Pkt Len c2s/s2c min/avg/max/stddev: 54/60 230/108 571/201 241/66][nDPI Fingerprint: 645fbd5c41652ebdf3911c1eae2e3254][TCP Fingerprint: 2_128_65535_6bb88f5575fd/Windows][TLSv1.2][JA4: t13d1516h2_8daaf6152771_e5627efa2ab1][JA3S: 76c691f46143bf86e2d1bb73c6187767][Chrome][Cipher: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
Reference in a new issue View git blame Copy permalink