Network Analysis
| Name | Response | Post-Analysis Lookup |
|---|---|---|
| www.google-analytics.com | 142.250.207.110 | |
| outbyte.com | 45.33.97.245 |
- UDP Requests
-
-
192.168.56.101:53004 164.124.101.2:53
-
192.168.56.101:54148 164.124.101.2:53
-
192.168.56.101:55146 164.124.101.2:53
-
192.168.56.101:59002 164.124.101.2:53
-
192.168.56.101:137 192.168.56.255:137
-
192.168.56.101:138 192.168.56.255:138
-
192.168.56.101:55149 239.255.255.250:1900
-
52.231.114.183:123 192.168.56.101:123
-
POST
204
https://www.google-analytics.com/mp/collect?measurement_id=G-SEW4YMR3XJ&api_secret=Bwp8gLa9SqG7iUYK8RMmcg
REQUEST
RESPONSE
BODY
POST /mp/collect?measurement_id=G-SEW4YMR3XJ&api_secret=Bwp8gLa9SqG7iUYK8RMmcg HTTP/1.1
Content-Type: application/json
Host: www.google-analytics.com
Content-Length: 665
Cache-Control: no-cache
HTTP/1.1 204 No Content
Date: Wed, 03 Jul 2024 00:25:36 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Content-Type: text/plain
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 0
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ICMP traffic
No ICMP traffic performed.
IRC traffic
No IRC requests performed.
Suricata Alerts
Suricata TLS
| Flow | Issuer | Subject | Fingerprint |
|---|---|---|---|
|
TLSv1 192.168.56.101:49163 45.33.97.245:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=RapidSSL TLS RSA CA G1 | CN=*.outbyte.com | d0:6e:29:18:9d:1c:99:37:a3:15:37:81:63:0c:69:08:8a:6c:31:4f |
|
TLSv1 192.168.56.101:49165 45.33.97.245:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=RapidSSL TLS RSA CA G1 | CN=*.outbyte.com | d0:6e:29:18:9d:1c:99:37:a3:15:37:81:63:0c:69:08:8a:6c:31:4f |
|
TLSv1 192.168.56.101:49164 45.33.97.245:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=RapidSSL TLS RSA CA G1 | CN=*.outbyte.com | d0:6e:29:18:9d:1c:99:37:a3:15:37:81:63:0c:69:08:8a:6c:31:4f |
|
TLSv1 192.168.56.101:49167 142.251.130.14:443 |
C=US, O=Google Trust Services, CN=WR2 | CN=*.google-analytics.com | ba:5d:a9:7f:41:46:b0:37:01:9e:05:b0:92:ba:41:c9:31:5b:4b:4a |
|
TLSv1 192.168.56.101:49166 45.33.97.245:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=RapidSSL TLS RSA CA G1 | CN=*.outbyte.com | d0:6e:29:18:9d:1c:99:37:a3:15:37:81:63:0c:69:08:8a:6c:31:4f |
Snort Alerts
No Snort Alerts