add a sample malicious SSL sha1 to be detected in test9/files.log

stratosphereips · Oct 7, 2022 · 1fbfa1e · 1fbfa1e
1 parent cceee96
commit 1fbfa1e
Showing 1 changed file with 1 addition and 0 deletions.
diff --git a/dataset/test9-mixed-zeek-dir/files.log b/dataset/test9-mixed-zeek-dir/files.log
@@ -1,4 +1,5 @@
 {"ts":29.869534,"fuid":"FqhaAy4xsmJ3AR63A3","tx_hosts":["147.32.80.7"],"rx_hosts":["10.0.2.15"],"conn_uids":["CAeDWs37BipkfP21u9"],"source":"HTTP","depth":0,"analyzers":["SHA1","MD5"],"mime_type":"text/plain","duration":0.0,"is_orig":false,"seen_bytes":593,"total_bytes":593,"missing_bytes":0,"overflow_bytes":0,"timedout":false,"md5":"df7c845e4eadd7bac6cbfe2087bbd482","sha1":"8800350f53cb7bfc883962e965461d94ab5d2616"}
+{"ts":29.869535,"fuid":"FVLBz82Xxot5ThXh8i","tx_hosts":["199.212.0.160"],"rx_hosts":["192.168.1.15"],"conn_uids":["CNI7Td42i6Fe9Va9z"],"source":"SSL","depth":0,"analyzers":["MD5","SHA1"],"mime_type":"text/json","duration":0.0003619194030761719,"local_orig":false,"is_orig":false,"seen_bytes":12276,"missing_bytes":0,"overflow_bytes":0,"timedout":false,"md5":"3f17c645e35a1ee6a38c2c4e88db5feb","sha1":"39ad79bf7241475b725430053492ed28bacdc9f9"}
 {"ts":30.045479,"fuid":"FypKKm49ugFVDFcWx5","tx_hosts":["195.113.232.73"],"rx_hosts":["10.0.2.15"],"conn_uids":["CeXwwk4XHhkKHn7kag"],"source":"HTTP","depth":0,"analyzers":["SHA1","MD5"],"mime_type":"text/plain","duration":0.0,"is_orig":false,"seen_bytes":14,"total_bytes":14,"missing_bytes":0,"overflow_bytes":0,"timedout":false,"md5":"cd5a4d3fdd5bffc16bf959ef75cf37bc","sha1":"33bf88d5b82df3723d5863c7d23445e345828904"}
 {"ts":75.392182,"fuid":"Fof12j3ZQveQ7ySav8","tx_hosts":["147.32.80.7"],"rx_hosts":["10.0.2.15"],"conn_uids":["C7PV2MIAhIMN249Sd"],"source":"HTTP","depth":0,"analyzers":["SHA1","MD5"],"mime_type":"text/plain","duration":0.0,"is_orig":false,"seen_bytes":593,"total_bytes":593,"missing_bytes":0,"overflow_bytes":0,"timedout":false,"md5":"df7c845e4eadd7bac6cbfe2087bbd482","sha1":"8800350f53cb7bfc883962e965461d94ab5d2616"}
 {"ts":78.530598,"fuid":"FvAMLD3e8nsgUxYkgc","tx_hosts":["147.32.80.7"],"rx_hosts":["10.0.2.15"],"conn_uids":["C8G51c2okC2VhFo4T4"],"source":"HTTP","depth":0,"analyzers":["SHA1","MD5"],"mime_type":"text/plain","duration":0.0,"is_orig":false,"seen_bytes":593,"total_bytes":593,"missing_bytes":0,"overflow_bytes":0,"timedout":false,"md5":"df7c845e4eadd7bac6cbfe2087bbd482","sha1":"8800350f53cb7bfc883962e965461d94ab5d2616"}