nDPI icon indicating copy to clipboard operation
nDPI copied to clipboard
verified publisher icon ntop

Improve Data Exfiltration

Open lucaderi opened this issue 2 years ago • 1 comments

Using https://github.com/m57/dnsteal the following traffic is generated and better flow risks shall be generated

dnsteal.pcap.zip

lucaderi avatar Sep 29 '23 20:09 lucaderi

What flow risks would you prefer?

For now all 5 flows get already two relevant flow risks:

Risk stats [found 5 (100.0 %) flows with risks]:
	Susp DNS Traffic                             5 [33.3 %]
	Non-Printable/Invalid Chars Detected         5 [33.3 %]
	Minor Issues                                 5 [33.3 %]

utoni avatar Oct 18 '23 15:10 utoni