Loading

data.yaml

  1. - ctime: '0'
  2.   family: INET
  3.   local_address:
  4.     ip: 10.0.2.15
  5.     port: '62557'
  6.   metadata:
  7.     client_age: '1970-01-01 00:00:00'
  8.     client_urn: aff4:/C.d6346958b36eb1b6
  9.     hardware_info:
  10.       serial_number: '0'
  11.       system_manufacturer: innotek GmbH
  12.     hostname: MSEDGEWIN10
  13.     kernel_version: 10.0.17134
  14.     labels: ''
  15.     mac_address: '08002704eaae
  16.  
  17.       08002768a819
  18.  
  19.       463520524153
  20.  
  21.       5aad20524153
  22.  
  23.       701920524153'
  24.     os: Windows
  25.     os_release: '10'
  26.     os_version: 10.0.17134SP0
  27.     source_urn: aff4:/C.d6346958b36eb1b6/flows/F:279ABD85
  28.     system_labels: ''
  29.     timestamp: '2019-01-06 20:28:32'
  30.     uname: Windows-10-10.0.17134SP0
  31.     user_labels: ''
  32.     usernames: '[u''IEUser'', u''sshd_server'']'
  33.   pid: '0'
  34.   remote_address:
  35.     ip: 157.240.13.35
  36.     port: '80'
  37.   state: TIME_WAIT
  38.   type: SOCK_STREAM
  39.  
  40. - ctime: '0'
  41.   family: INET
  42.   local_address:
  43.     ip: 192.168.100.10
  44.     port: '54778'
  45.   metadata:
  46.     client_age: '1970-01-01 00:00:00'
  47.     client_urn: aff4:/C.d6346958b36eb1b6
  48.     hardware_info:
  49.       serial_number: '0'
  50.       system_manufacturer: innotek GmbH
  51.     hostname: MSEDGEWIN10
  52.     kernel_version: 10.0.17134
  53.     labels: ''
  54.     mac_address: '08002704eaae
  55.  
  56.       08002768a819
  57.  
  58.       463520524153
  59.  
  60.       5aad20524153
  61.  
  62.       701920524153'
  63.     os: Windows
  64.     os_release: '10'
  65.     os_version: 10.0.17134SP0
  66.     source_urn: aff4:/C.d6346958b36eb1b6/flows/F:279ABD85
  67.     system_labels: ''
  68.     timestamp: '2019-01-06 20:28:32'
  69.     uname: Windows-10-10.0.17134SP0
  70.     user_labels: ''
  71.     usernames: '[u''IEUser'', u''sshd_server'']'
  72.   pid: '6612'
  73.   remote_address:
  74.     ip: 192.168.100.18
  75.     port: '80'
  76.   state: FIN_WAIT2
  77.   type: SOCK_STREAM
  78.  
  79. - ctime: '0'
  80.   family: INET
  81.   local_address:
  82.     ip: 192.168.100.10
  83.     port: '58244'
  84.   metadata:
  85.     client_age: '1970-01-01 00:00:00'
  86.     client_urn: aff4:/C.d6346958b36eb1b6
  87.     hardware_info:
  88.       serial_number: '0'
  89.       system_manufacturer: innotek GmbH
  90.     hostname: MSEDGEWIN10
  91.     kernel_version: 10.0.17134
  92.     labels: ''
  93.     mac_address: '08002704eaae
  94.  
  95.       08002768a819
  96.  
  97.       463520524153
  98.  
  99.       5aad20524153
  100.  
  101.       701920524153'
  102.     os: Windows
  103.     os_release: '10'
  104.     os_version: 10.0.17134SP0
  105.     source_urn: aff4:/C.d6346958b36eb1b6/flows/F:279ABD85
  106.     system_labels: ''
  107.     timestamp: '2019-01-06 20:28:32'
  108.     uname: Windows-10-10.0.17134SP0
  109.     user_labels: ''
  110.     usernames: '[u''IEUser'', u''sshd_server'']'
  111.   pid: '6612'
  112.   remote_address:
  113.     ip: 192.168.100.18
  114.     port: '80'
  115.   state: FIN_WAIT2
  116.   type: SOCK_STREAM
  117.  
  118.  
  119. - ctime: '0'
  120.   family: INET
  121.   local_address:
  122.     ip: 192.168.100.10
  123.     port: '56402'
  124.   metadata:
  125.     client_age: '1970-01-01 00:00:00'
  126.     client_urn: aff4:/C.d6346958b36eb1b6
  127.     hardware_info:
  128.       serial_number: '0'
  129.       system_manufacturer: innotek GmbH
  130.     hostname: MSEDGEWIN10
  131.     kernel_version: 10.0.17134
  132.     labels: ''
  133.     mac_address: '08002704eaae
  134.  
  135.       08002768a819
  136.  
  137.       463520524153
  138.  
  139.       5aad20524153
  140.  
  141.       701920524153'
  142.     os: Windows
  143.     os_release: '10'
  144.     os_version: 10.0.17134SP0
  145.     source_urn: aff4:/C.d6346958b36eb1b6/flows/F:279ABD85
  146.     system_labels: ''
  147.     timestamp: '2019-01-06 20:28:32'
  148.     uname: Windows-10-10.0.17134SP0
  149.     user_labels: ''
  150.     usernames: '[u''IEUser'', u''sshd_server'']'
  151.   pid: '6612'
  152.   remote_address:
  153.     ip: 192.168.100.18
  154.     port: '80'
  155.   state: FIN_WAIT2
  156.   type: SOCK_STREAM