Network Analysis
Name | Response | Post-Analysis Lookup |
---|---|---|
smtp.gmail.com | 64.233.188.108 |
- TCP Requests
No traffic
ICMP traffic
No ICMP traffic performed.
IRC traffic
No IRC requests performed.
Suricata Alerts
Flow | SID | Signature | Category |
---|---|---|---|
TCP 142.251.8.108:587 -> 192.168.56.103:49166 | 2260002 | SURICATA Applayer Detect protocol only one direction | Generic Protocol Command Decode |
TCP 192.168.56.103:49166 -> 142.251.8.108:587 | 906200054 | SSLBL: Malicious JA3 SSL-Client Fingerprint detected (Tofsee) | undefined |
Suricata TLS
Flow | Issuer | Subject | Fingerprint |
---|---|---|---|
TLSv1 192.168.56.103:49166 142.251.8.108:587 |
C=US, O=Google Trust Services LLC, CN=GTS CA 1C3 | CN=smtp.gmail.com | 5b:45:37:1e:52:7e:3c:86:d1:d6:68:34:a3:03:1c:11:aa:87:0e:aa |
Snort Alerts
No Snort Alerts