wader/fq
1
1
Fork 0
mirror of https://github.com/wader/fq.git synced 2024-11-24 11:16:09 +03:00
Code Issues Projects Releases Wiki Activity
c233215aba
fq/format/inet/testdata/flow_missing_synack.fqtest
Mattias Wadman 29005c70bf interp,dump: Show address bar for root, nested roots and on format change 
Also increase indent for nested roots a bit.

Makes it a bit easier to read i think.
2022-08-09 18:09:41 +02:00

156 lines
14 KiB
Plaintext
Raw Blame History

# ssl_test.pcap from https://www.cloudshark.org/captures/a9718e5fdb28
$ fq '.tcp_connections | d' flow_missing_synack.pcap
|00 01 02 03 04 05 06 07 08 09 0a 0b 0c 0d 0e 0f|0123456789abcdef|.tcp_connections[0:8]:
| | | [0]{}: tcp_connection
| | | client{}:
| | | ip: "192.168.1.4"
| | | port: 2061
| | | has_start: false
| | | has_end: false
| | | skipped_bytes: 0
|00 01 02 03 04 05 06 07 08 09 0a 0b 0c 0d 0e 0f|0123456789abcdef|
0x0000|16 03 01 00 9e 01 00 00 9a 03 01 50 83 9c fa fe|...........P....| stream: raw bits
* |until 0x177.7 (end) (376) | |
| | | server{}:
| | | ip: "192.168.1.3"
| | | port: "https" (443) (http protocol over TLS/SSL)
| | | has_start: false
| | | has_end: false
| | | skipped_bytes: 0
|00 01 02 03 04 05 06 07 08 09 0a 0b 0c 0d 0e 0f|0123456789abcdef|
0x0000|16 03 01 00 35 02 00 00 31 03 01 50 83 9c 9f e3|....5...1..P....| stream: raw bits
* |until 0x42b.7 (end) (1068) | |
| | | [1]{}: tcp_connection
| | | client{}:
| | | ip: "192.168.1.4"
| | | port: 2068
| | | has_start: false
| | | has_end: false
| | | skipped_bytes: 0
|00 01 02 03 04 05 06 07 08 09 0a 0b 0c 0d 0e 0f|0123456789abcdef|
0x0000|16 03 01 00 9e 01 00 00 9a 03 01 50 83 9d 00 a1|...........P....| stream: raw bits
* |until 0x177.7 (end) (376) | |
| | | server{}:
| | | ip: "192.168.1.3"
| | | port: "https" (443) (http protocol over TLS/SSL)
| | | has_start: false
| | | has_end: false
| | | skipped_bytes: 0
|00 01 02 03 04 05 06 07 08 09 0a 0b 0c 0d 0e 0f|0123456789abcdef|
0x0000|16 03 01 00 35 02 00 00 31 03 01 50 83 9c a5 e5|....5...1..P....| stream: raw bits
* |until 0x42b.7 (end) (1068) | |
| | | [2]{}: tcp_connection
| | | client{}:
| | | ip: "192.168.1.4"
| | | port: 2070
| | | has_start: false
| | | has_end: false
| | | skipped_bytes: 0
|00 01 02 03 04 05 06 07 08 09 0a 0b 0c 0d 0e 0f|0123456789abcdef|
0x0000|16 03 01 00 9e 01 00 00 9a 03 01 50 83 9d 03 f3|...........P....| stream: raw bits
* |until 0x2ad.7 (end) (686) | |
| | | server{}:
| | | ip: "192.168.1.3"
| | | port: "https" (443) (http protocol over TLS/SSL)
| | | has_start: false
| | | has_end: false
| | | skipped_bytes: 0
|00 01 02 03 04 05 06 07 08 09 0a 0b 0c 0d 0e 0f|0123456789abcdef|
0x0000|16 03 01 00 35 02 00 00 31 03 01 50 83 9c a8 b2|....5...1..P....| stream: raw bits
* |until 0x53c.7 (end) (1341) | |
| | | [3]{}: tcp_connection
| | | client{}:
| | | ip: "192.168.1.4"
| | | port: 2071
| | | has_start: false
| | | has_end: false
| | | skipped_bytes: 0
|00 01 02 03 04 05 06 07 08 09 0a 0b 0c 0d 0e 0f|0123456789abcdef|
0x0000|16 03 01 01 6e 01 00 01 6a 03 01 50 83 9d 03 d8|....n...j..P....| stream: raw bits
* |until 0x2df.7 (end) (736) | |
| | | server{}:
| | | ip: "192.168.1.3"
| | | port: "https" (443) (http protocol over TLS/SSL)
| | | has_start: false
| | | has_end: false
| | | skipped_bytes: 0
|00 01 02 03 04 05 06 07 08 09 0a 0b 0c 0d 0e 0f|0123456789abcdef|
0x0000|16 03 01 00 51 02 00 00 4d 03 01 50 83 9c a8 fc|....Q...M..P....| stream: raw bits
* |until 0x1b7.7 (end) (440) | |
| | | [4]{}: tcp_connection
| | | client{}:
| | | ip: "192.168.1.4"
| | | port: 2072
| | | has_start: false
| | | has_end: false
| | | skipped_bytes: 0
|00 01 02 03 04 05 06 07 08 09 0a 0b 0c 0d 0e 0f|0123456789abcdef|
0x0000|16 03 01 01 6e 01 00 01 6a 03 01 50 83 9d 03 94|....n...j..P....| stream: raw bits
* |until 0x2fd.7 (end) (766) | |
| | | server{}:
| | | ip: "192.168.1.3"
| | | port: "https" (443) (http protocol over TLS/SSL)
| | | has_start: false
| | | has_end: false
| | | skipped_bytes: 0
|00 01 02 03 04 05 06 07 08 09 0a 0b 0c 0d 0e 0f|0123456789abcdef|
0x0000|16 03 01 00 51 02 00 00 4d 03 01 50 83 9c a8 d8|....Q...M..P....| stream: raw bits
* |until 0x1b7.7 (end) (440) | |
| | | [5]{}: tcp_connection
| | | client{}:
| | | ip: "192.168.1.4"
| | | port: 2073
| | | has_start: false
| | | has_end: false
| | | skipped_bytes: 0
|00 01 02 03 04 05 06 07 08 09 0a 0b 0c 0d 0e 0f|0123456789abcdef|
0x0000|16 03 01 01 6e 01 00 01 6a 03 01 50 83 9d 0d 96|....n...j..P....| stream: raw bits
* |until 0x2fd.7 (end) (766) | |
| | | server{}:
| | | ip: "192.168.1.3"
| | | port: "https" (443) (http protocol over TLS/SSL)
| | | has_start: false
| | | has_end: true
| | | skipped_bytes: 0
|00 01 02 03 04 05 06 07 08 09 0a 0b 0c 0d 0e 0f|0123456789abcdef|
0x0000|16 03 01 00 51 02 00 00 4d 03 01 50 83 9c b2 45|....Q...M..P...E| stream: raw bits
* |until 0x2d73.7 (end) (11636) | |
| | | [6]{}: tcp_connection
| | | client{}:
| | | ip: "192.168.1.4"
| | | port: 2078
| | | has_start: false
| | | has_end: false
| | | skipped_bytes: 0
|00 01 02 03 04 05 06 07 08 09 0a 0b 0c 0d 0e 0f|0123456789abcdef|
0x0000|16 03 01 01 6e 01 00 01 6a 03 01 50 83 9d d7 3a|....n...j..P...:| stream: raw bits
* |until 0x38c.7 (end) (909) | |
| | | server{}:
| | | ip: "192.168.1.3"
| | | port: "https" (443) (http protocol over TLS/SSL)
| | | has_start: false
| | | has_end: false
| | | skipped_bytes: 0
|00 01 02 03 04 05 06 07 08 09 0a 0b 0c 0d 0e 0f|0123456789abcdef|
0x0000|16 03 01 00 51 02 00 00 4d 03 01 50 83 9d 7c ac|....Q...M..P..|.| stream: raw bits
* |until 0x2d5.7 (end) (726) | |
| | | [7]{}: tcp_connection
| | | client{}:
| | | ip: "192.168.1.4"
| | | port: 2085
| | | has_start: false
| | | has_end: false
| | | skipped_bytes: 0
|00 01 02 03 04 05 06 07 08 09 0a 0b 0c 0d 0e 0f|0123456789abcdef|
0x0000|16 03 01 01 6e 01 00 01 6a 03 01 50 83 9e 02 2b|....n...j..P...+| stream: raw bits
* |until 0x4a0.7 (end) (1185) | |
| | | server{}:
| | | ip: "192.168.1.3"
| | | port: "https" (443) (http protocol over TLS/SSL)
| | | has_start: false
| | | has_end: false
| | | skipped_bytes: 0
|00 01 02 03 04 05 06 07 08 09 0a 0b 0c 0d 0e 0f|0123456789abcdef|
0x0000|16 03 01 00 51 02 00 00 4d 03 01 50 83 9d a7 8b|....Q...M..P....| stream: raw bits
* |until 0x4f3.7 (end) (1268) | |
Reference in New Issue View Git Blame Copy Permalink