{"timestamp":"2024-08-02T14:21:23.992673+0000","flow_id":1879083606744645,"pcap_cnt":2035,"event_type":"http","src_ip":"10.3.10.8","src_port":50296,"dest_ip":"10.3.99.1","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":2,"http":{"hostname":"10.3.99.1","url":"/plugin/search/","http_user_agent":"Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 10.0; WOW64; Trident/7.0; Specula; Microsoft Outlook 16.0","http_content_type":"text/html","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":59,"request_headers":[{"name":"Connection","value":"Keep-Alive"},{"name":"Content-Type","value":"application/x-www-form-urlencoded"},{"name":"Accept","value":"*/*"},{"name":"Accept-Language","value":"en-us"},{"name":"User-Agent","value":"Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 10.0; WOW64; Trident/7.0; Specula; Microsoft Outlook 16.0"},{"name":"Content-Length","value":"58"},{"name":"Host","value":"10.3.99.1"}],"response_headers":[{"name":"Server","value":"Microsoft-IIS/8.5"},{"name":"Content-Type","value":"text/html; charset=UTF-8"},{"name":"Date","value":"Fri, 02 Aug 2024 14:21:23 GMT"},{"name":"Content-Length","value":"59"}]}}
{"timestamp":"2024-08-02T14:21:25.662846+0000","flow_id":1879083606744645,"pcap_cnt":2147,"event_type":"fileinfo","src_ip":"10.3.99.1","src_port":80,"dest_ip":"10.3.10.8","dest_port":50296,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.3.99.1","url":"/plugin/search/","http_user_agent":"Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 10.0; WOW64; Trident/7.0; Specula; Microsoft Outlook 16.0","http_content_type":"text/html","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":59},"app_proto":"http","fileinfo":{"filename":"/plugin/search/","gaps":false,"state":"CLOSED","stored":false,"size":59,"tx_id":2}}
{"timestamp":"2024-08-02T14:21:25.662900+0000","flow_id":1879083606744645,"pcap_cnt":2150,"event_type":"http","src_ip":"10.3.10.8","src_port":50296,"dest_ip":"10.3.99.1","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":3,"http":{"hostname":"10.3.99.1","url":"/css/1vaHF9847ooFJg/qcOiyus","http_user_agent":"Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 10.0; WOW64; Trident/7.0; Specula; Microsoft Outlook 16.0","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"length":3601,"request_headers":[{"name":"Connection","value":"Keep-Alive"},{"name":"Accept","value":"*/*"},{"name":"Accept-Language","value":"en-us"},{"name":"User-Agent","value":"Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 10.0; WOW64; Trident/7.0; Specula; Microsoft Outlook 16.0"},{"name":"Host","value":"10.3.99.1"}],"response_headers":[{"name":"Server","value":"Microsoft-IIS/8.5"},{"name":"Content-Type","value":"text/html; charset=UTF-8"},{"name":"Date","value":"Fri, 02 Aug 2024 14:21:25 GMT"},{"name":"Etag","value":"\"f10fe5014dbd8c47c778f48dedc2e236abcdf289\""},{"name":"Content-Length","value":"3601"}]}}
{"timestamp":"2024-08-02T14:21:35.798876+0000","flow_id":1879083606744645,"pcap_cnt":2403,"event_type":"fileinfo","src_ip":"10.3.99.1","src_port":80,"dest_ip":"10.3.10.8","dest_port":50296,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.3.99.1","url":"/css/1vaHF9847ooFJg/qcOiyus","http_user_agent":"Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 10.0; WOW64; Trident/7.0; Specula; Microsoft Outlook 16.0","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"length":3601},"app_proto":"http","fileinfo":{"filename":"/css/1vaHF9847ooFJg/qcOiyus","gaps":false,"state":"CLOSED","stored":false,"size":3601,"tx_id":3}}
{"timestamp":"2024-08-02T14:21:35.852075+0000","flow_id":1879083606744645,"pcap_cnt":2404,"event_type":"http","src_ip":"10.3.10.8","src_port":50296,"dest_ip":"10.3.99.1","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":4,"http":{"hostname":"10.3.99.1","url":"/css/1vaHF9847ooFJg/4ucoST8b","http_user_agent":"Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 10.0; WOW64; Trident/7.0; Specula; Microsoft Outlook 16.0","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"length":5,"request_headers":[{"name":"Connection","value":"Keep-Alive"},{"name":"Accept","value":"*/*"},{"name":"Accept-Language","value":"en-us"},{"name":"User-Agent","value":"Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 10.0; WOW64; Trident/7.0; Specula; Microsoft Outlook 16.0"},{"name":"Host","value":"10.3.99.1"}],"response_headers":[{"name":"Server","value":"Microsoft-IIS/8.5"},{"name":"Content-Type","value":"text/html; charset=UTF-8"},{"name":"Date","value":"Fri, 02 Aug 2024 14:21:35 GMT"},{"name":"Cache-Control","value":"no-store"},{"name":"Etag","value":"\"9101d1c3914af5bc0473f62f428d23864d6381fd\""},{"name":"Content-Length","value":"5"}]}}
{"timestamp":"2024-08-02T14:21:47.823838+0000","flow_id":1879083606744645,"pcap_cnt":2439,"event_type":"fileinfo","src_ip":"10.3.99.1","src_port":80,"dest_ip":"10.3.10.8","dest_port":50296,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.3.99.1","url":"/css/1vaHF9847ooFJg/4ucoST8b","http_user_agent":"Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 10.0; WOW64; Trident/7.0; Specula; Microsoft Outlook 16.0","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"length":5},"app_proto":"http","fileinfo":{"filename":"/css/1vaHF9847ooFJg/4ucoST8b","gaps":false,"state":"CLOSED","stored":false,"size":5,"tx_id":4}}
{"timestamp":"2024-08-02T14:21:47.823900+0000","flow_id":1879083606744645,"pcap_cnt":2441,"event_type":"http","src_ip":"10.3.10.8","src_port":50296,"dest_ip":"10.3.99.1","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":5,"http":{"hostname":"10.3.99.1","url":"/css/1vaHF9847ooFJg/4ucoST8b","http_user_agent":"Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 10.0; WOW64; Trident/7.0; Specula; Microsoft Outlook 16.0","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"length":1447,"request_headers":[{"name":"Connection","value":"Keep-Alive"},{"name":"Accept","value":"*/*"},{"name":"Accept-Language","value":"en-us"},{"name":"User-Agent","value":"Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 10.0; WOW64; Trident/7.0; Specula; Microsoft Outlook 16.0"},{"name":"Host","value":"10.3.99.1"}],"response_headers":[{"name":"Server","value":"Microsoft-IIS/8.5"},{"name":"Content-Type","value":"text/html; charset=UTF-8"},{"name":"Date","value":"Fri, 02 Aug 2024 14:21:47 GMT"},{"name":"Cache-Control","value":"no-store"},{"name":"Etag","value":"\"833e097f5cd55ed39695bb61ae76134a03d77525\""},{"name":"Content-Length","value":"1447"}]}}
{"timestamp":"2024-08-02T14:21:47.919172+0000","flow_id":1879083606744645,"pcap_cnt":2444,"event_type":"fileinfo","src_ip":"10.3.99.1","src_port":80,"dest_ip":"10.3.10.8","dest_port":50296,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.3.99.1","url":"/css/1vaHF9847ooFJg/4ucoST8b","http_user_agent":"Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 10.0; WOW64; Trident/7.0; Specula; Microsoft Outlook 16.0","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"length":1447},"app_proto":"http","fileinfo":{"filename":"/css/1vaHF9847ooFJg/4ucoST8b","gaps":false,"state":"CLOSED","stored":false,"size":1447,"tx_id":5}}
{"timestamp":"2024-08-02T14:21:47.961514+0000","flow_id":1879083606744645,"pcap_cnt":2446,"event_type":"fileinfo","src_ip":"10.3.10.8","src_port":50296,"dest_ip":"10.3.99.1","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.3.99.1","url":"/css/1vaHF9847ooFJg","http_user_agent":"Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 10.0; WOW64; Trident/7.0; Specula; Microsoft Outlook 16.0","http_content_type":"text/html","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":0},"app_proto":"http","fileinfo":{"filename":"/css/1vaHF9847ooFJg","gaps":false,"state":"CLOSED","stored":false,"size":138,"tx_id":6}}
{"timestamp":"2024-08-02T14:21:47.961514+0000","flow_id":1879083606744645,"pcap_cnt":2446,"event_type":"http","src_ip":"10.3.10.8","src_port":50296,"dest_ip":"10.3.99.1","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":6,"http":{"hostname":"10.3.99.1","url":"/css/1vaHF9847ooFJg","http_user_agent":"Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 10.0; WOW64; Trident/7.0; Specula; Microsoft Outlook 16.0","http_content_type":"text/html","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":0,"request_headers":[{"name":"Connection","value":"Keep-Alive"},{"name":"Content-Type","value":"application/x-www-form-urlencoded"},{"name":"Accept","value":"*/*"},{"name":"Accept-Language","value":"en-us"},{"name":"User-Agent","value":"Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 10.0; WOW64; Trident/7.0; Specula; Microsoft Outlook 16.0"},{"name":"Content-Length","value":"138"},{"name":"Host","value":"10.3.99.1"}],"response_headers":[{"name":"Server","value":"Microsoft-IIS/8.5"},{"name":"Content-Type","value":"text/html; charset=UTF-8"},{"name":"Date","value":"Fri, 02 Aug 2024 14:21:47 GMT"},{"name":"Content-Length","value":"0"}]}}
{"timestamp":"2024-08-02T14:22:00.992645+0000","flow_id":1879083606744645,"pcap_cnt":2459,"event_type":"http","src_ip":"10.3.10.8","src_port":50296,"dest_ip":"10.3.99.1","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":7,"http":{"hostname":"10.3.99.1","url":"/css/1vaHF9847ooFJg/4ucoST8b","http_user_agent":"Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 10.0; WOW64; Trident/7.0; Specula; Microsoft Outlook 16.0","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"length":5,"request_headers":[{"name":"Connection","value":"Keep-Alive"},{"name":"Accept","value":"*/*"},{"name":"Accept-Language","value":"en-us"},{"name":"User-Agent","value":"Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 10.0; WOW64; Trident/7.0; Specula; Microsoft Outlook 16.0"},{"name":"Host","value":"10.3.99.1"}],"response_headers":[{"name":"Server","value":"Microsoft-IIS/8.5"},{"name":"Content-Type","value":"text/html; charset=UTF-8"},{"name":"Date","value":"Fri, 02 Aug 2024 14:22:00 GMT"},{"name":"Cache-Control","value":"no-store"},{"name":"Etag","value":"\"9101d1c3914af5bc0473f62f428d23864d6381fd\""},{"name":"Content-Length","value":"5"}]}}
{"timestamp":"2024-08-02T14:22:12.985986+0000","flow_id":1879083606744645,"pcap_cnt":2519,"event_type":"fileinfo","src_ip":"10.3.99.1","src_port":80,"dest_ip":"10.3.10.8","dest_port":50296,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.3.99.1","url":"/css/1vaHF9847ooFJg/4ucoST8b","http_user_agent":"Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 10.0; WOW64; Trident/7.0; Specula; Microsoft Outlook 16.0","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"length":5},"app_proto":"http","fileinfo":{"filename":"/css/1vaHF9847ooFJg/4ucoST8b","gaps":false,"state":"CLOSED","stored":false,"size":5,"tx_id":7}}
{"timestamp":"2024-08-02T14:22:13.043600+0000","flow_id":1879083606744645,"pcap_cnt":2520,"event_type":"http","src_ip":"10.3.10.8","src_port":50296,"dest_ip":"10.3.99.1","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":8,"http":{"hostname":"10.3.99.1","url":"/css/1vaHF9847ooFJg/4ucoST8b","http_user_agent":"Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 10.0; WOW64; Trident/7.0; Specula; Microsoft Outlook 16.0","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"length":5,"request_headers":[{"name":"Connection","value":"Keep-Alive"},{"name":"Accept","value":"*/*"},{"name":"Accept-Language","value":"en-us"},{"name":"User-Agent","value":"Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 10.0; WOW64; Trident/7.0; Specula; Microsoft Outlook 16.0"},{"name":"Host","value":"10.3.99.1"}],"response_headers":[{"name":"Server","value":"Microsoft-IIS/8.5"},{"name":"Content-Type","value":"text/html; charset=UTF-8"},{"name":"Date","value":"Fri, 02 Aug 2024 14:22:13 GMT"},{"name":"Cache-Control","value":"no-store"},{"name":"Etag","value":"\"9e1af8586e5b4f5318e1c3c6d4a3ce305427ebd2\""},{"name":"Content-Length","value":"5"}]}}
{"timestamp":"2024-08-02T14:20:39.242604+0000","flow_id":1879083606744645,"event_type":"fileinfo","src_ip":"10.3.99.1","src_port":80,"dest_ip":"10.3.10.8","dest_port":50296,"proto":"TCP","pkt_src":"stream (flow timeout)","http":{"hostname":"10.3.99.1","url":"/css/1vaHF9847ooFJg/4ucoST8b","http_user_agent":"Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 10.0; WOW64; Trident/7.0; Specula; Microsoft Outlook 16.0","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"length":5},"app_proto":"http","fileinfo":{"filename":"/css/1vaHF9847ooFJg/4ucoST8b","gaps":false,"state":"CLOSED","stored":false,"size":5,"tx_id":8}}
{"timestamp":"2023-11-17T16:06:58.330253+0000","flow_id":2208306856841147,"pcap_cnt":1451,"event_type":"fileinfo","src_ip":"10.0.1.130","src_port":80,"dest_ip":"10.0.1.8","dest_port":55183,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_content_type":"application/octet-stream","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":412},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":412,"tx_id":4}}
{"timestamp":"2023-11-17T16:07:06.699382+0000","flow_id":2208306856841147,"pcap_cnt":1479,"event_type":"fileinfo","src_ip":"10.0.1.130","src_port":80,"dest_ip":"10.0.1.8","dest_port":55183,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_content_type":"application/octet-stream","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":648},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":648,"tx_id":5}}
{"timestamp":"2023-11-17T16:07:06.699382+0000","flow_id":2208306856841147,"pcap_cnt":1479,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":5,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_content_type":"application/octet-stream","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":648,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"1736"},{"name":"Expect","value":"100-continue"}],"response_headers":[{"name":"Content-Length","value":"648"},{"name":"Content-Type","value":"application/octet-stream"},{"name":"Date","value":"Fri, 17 Nov 2023 16:06:58 GMT"}]}}
{"timestamp":"2023-11-17T16:07:06.701055+0000","flow_id":2208306856841147,"pcap_cnt":1480,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_content_type":"application/octet-stream","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":648},"app_proto":"http","fileinfo":{"filename":"/data","gaps":true,"state":"TRUNCATED","stored":false,"size":1736,"tx_id":5}}
{"timestamp":"2023-11-17T16:07:06.765640+0000","flow_id":2208306856841147,"pcap_cnt":1482,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_content_type":"application/octet-stream","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":348},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":240,"tx_id":6}}
{"timestamp":"2023-11-17T16:07:06.765640+0000","flow_id":2208306856841147,"pcap_cnt":1482,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":6,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_content_type":"application/octet-stream","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":348,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"240"},{"name":"Expect","value":"100-continue"}],"response_headers":[{"name":"Content-Length","value":"348"},{"name":"Content-Type","value":"application/octet-stream"},{"name":"Date","value":"Fri, 17 Nov 2023 16:07:06 GMT"}]}}
{"timestamp":"2023-11-17T16:07:14.877918+0000","flow_id":2208306856841147,"pcap_cnt":1510,"event_type":"fileinfo","src_ip":"10.0.1.130","src_port":80,"dest_ip":"10.0.1.8","dest_port":55183,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_content_type":"application/octet-stream","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":348},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":348,"tx_id":6}}
{"timestamp":"2023-11-17T16:07:14.948494+0000","flow_id":2208306856841147,"pcap_cnt":1513,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_content_type":"application/octet-stream","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":496},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":1288,"tx_id":7}}
{"timestamp":"2023-11-17T16:07:14.948494+0000","flow_id":2208306856841147,"pcap_cnt":1513,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":7,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_content_type":"application/octet-stream","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":496,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"1288"},{"name":"Expect","value":"100-continue"}],"response_headers":[{"name":"Content-Length","value":"496"},{"name":"Content-Type","value":"application/octet-stream"},{"name":"Date","value":"Fri, 17 Nov 2023 16:07:14 GMT"}]}}
{"timestamp":"2023-11-17T16:07:23.269539+0000","flow_id":2208306856841147,"pcap_cnt":1963,"event_type":"fileinfo","src_ip":"10.0.1.130","src_port":80,"dest_ip":"10.0.1.8","dest_port":55183,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_content_type":"application/octet-stream","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":496},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":496,"tx_id":7}}
{"timestamp":"2023-11-17T16:07:23.317564+0000","flow_id":2208306856841147,"pcap_cnt":1966,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_content_type":"application/octet-stream","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":200},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":240,"tx_id":8}}
{"timestamp":"2023-11-17T16:07:23.317564+0000","flow_id":2208306856841147,"pcap_cnt":1966,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":8,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_content_type":"application/octet-stream","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":200,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"240"},{"name":"Expect","value":"100-continue"}],"response_headers":[{"name":"Content-Length","value":"200"},{"name":"Content-Type","value":"application/octet-stream"},{"name":"Date","value":"Fri, 17 Nov 2023 16:07:22 GMT"}]}}
{"timestamp":"2023-11-17T16:07:35.004539+0000","flow_id":2208306856841147,"pcap_cnt":1986,"event_type":"fileinfo","src_ip":"10.0.1.130","src_port":80,"dest_ip":"10.0.1.8","dest_port":55183,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_content_type":"application/octet-stream","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":200},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":200,"tx_id":8}}
{"timestamp":"2023-11-17T16:07:35.074970+0000","flow_id":2208306856841147,"pcap_cnt":1989,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_content_type":"application/octet-stream","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":732},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":240,"tx_id":9}}
{"timestamp":"2023-11-17T16:07:35.074970+0000","flow_id":2208306856841147,"pcap_cnt":1989,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":9,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_content_type":"application/octet-stream","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":732,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"240"},{"name":"Expect","value":"100-continue"}],"response_headers":[{"name":"Content-Length","value":"732"},{"name":"Content-Type","value":"application/octet-stream"},{"name":"Date","value":"Fri, 17 Nov 2023 16:07:34 GMT"}]}}
{"timestamp":"2023-11-17T16:07:46.866151+0000","flow_id":2208306856841147,"pcap_cnt":2008,"event_type":"fileinfo","src_ip":"10.0.1.130","src_port":80,"dest_ip":"10.0.1.8","dest_port":55183,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_content_type":"application/octet-stream","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":732},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":732,"tx_id":9}}
{"timestamp":"2023-11-17T16:07:46.899295+0000","flow_id":2208306856841147,"pcap_cnt":2020,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_content_type":"application/octet-stream","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":12856},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":968,"tx_id":10}}
{"timestamp":"2023-11-17T16:07:46.902169+0000","flow_id":2208306856841147,"pcap_cnt":2121,"event_type":"fileinfo","src_ip":"10.0.1.130","src_port":80,"dest_ip":"10.0.1.8","dest_port":55183,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_content_type":"application/octet-stream","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":139876},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"TRUNCATED","stored":false,"size":102400,"tx_id":10}}
{"timestamp":"2023-11-17T16:07:46.919079+0000","flow_id":2208306856841147,"pcap_cnt":2662,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":10,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_content_type":"application/octet-stream","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":910975,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"968"},{"name":"Expect","value":"100-continue"}],"response_headers":[{"name":"Content-Type","value":"application/octet-stream"},{"name":"Date","value":"Fri, 17 Nov 2023 16:07:46 GMT"},{"name":"Transfer-Encoding","value":"chunked"}]}}
{"timestamp":"2023-11-17T16:07:56.863863+0000","flow_id":2208306856841147,"pcap_cnt":2695,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_content_type":"application/octet-stream","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":14192},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":968,"tx_id":11}}
{"timestamp":"2023-11-17T16:07:56.868147+0000","flow_id":2208306856841147,"pcap_cnt":2780,"event_type":"fileinfo","src_ip":"10.0.1.130","src_port":80,"dest_ip":"10.0.1.8","dest_port":55183,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_content_type":"application/octet-stream","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":110552},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"TRUNCATED","stored":false,"size":102400,"tx_id":11}}
{"timestamp":"2023-11-17T16:07:56.868147+0000","flow_id":2208306856841147,"pcap_cnt":2780,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":11,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_content_type":"application/octet-stream","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":110552,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"968"},{"name":"Expect","value":"100-continue"}],"response_headers":[{"name":"Content-Type","value":"application/octet-stream"},{"name":"Date","value":"Fri, 17 Nov 2023 16:07:56 GMT"},{"name":"Transfer-Encoding","value":"chunked"}]}}
{"timestamp":"2023-11-17T16:08:05.796267+0000","flow_id":2208306856841147,"pcap_cnt":3340,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":12,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"968"},{"name":"Expect","value":"100-continue"}]}}
{"timestamp":"2023-11-17T16:08:05.798926+0000","flow_id":2208306856841147,"pcap_cnt":3344,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":968,"tx_id":12}}
{"timestamp":"2023-11-17T16:08:15.454981+0000","flow_id":2208306856841147,"pcap_cnt":3914,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":13,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"968"},{"name":"Expect","value":"100-continue"}]}}
{"timestamp":"2023-11-17T16:08:15.455311+0000","flow_id":2208306856841147,"pcap_cnt":3923,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":968,"tx_id":13}}
{"timestamp":"2023-11-17T16:08:25.171689+0000","flow_id":2208306856841147,"pcap_cnt":4142,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":14,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"904"},{"name":"Expect","value":"100-continue"}]}}
{"timestamp":"2023-11-17T16:08:25.225635+0000","flow_id":2208306856841147,"pcap_cnt":4143,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":904,"tx_id":14}}
{"timestamp":"2023-11-17T16:08:35.699547+0000","flow_id":2208306856841147,"pcap_cnt":4175,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":15,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"240"},{"name":"Expect","value":"100-continue"}]}}
{"timestamp":"2023-11-17T16:08:35.747679+0000","flow_id":2208306856841147,"pcap_cnt":4176,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":240,"tx_id":15}}
{"timestamp":"2023-11-17T16:08:45.887979+0000","flow_id":2208306856841147,"pcap_cnt":4190,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":16,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"752"},{"name":"Expect","value":"100-continue"}]}}
{"timestamp":"2023-11-17T16:08:45.928115+0000","flow_id":2208306856841147,"pcap_cnt":4191,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":752,"tx_id":16}}
{"timestamp":"2023-11-17T16:08:56.152925+0000","flow_id":2208306856841147,"pcap_cnt":4239,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":17,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"240"},{"name":"Expect","value":"100-continue"}]}}
{"timestamp":"2023-11-17T16:08:56.199605+0000","flow_id":2208306856841147,"pcap_cnt":4240,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":240,"tx_id":17}}
{"timestamp":"2023-11-17T16:09:06.169629+0000","flow_id":2208306856841147,"pcap_cnt":4265,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":18,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"968"},{"name":"Expect","value":"100-continue"}]}}
{"timestamp":"2023-11-17T16:09:06.169785+0000","flow_id":2208306856841147,"pcap_cnt":4271,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":968,"tx_id":18}}
{"timestamp":"2023-11-17T16:09:17.983676+0000","flow_id":2208306856841147,"pcap_cnt":4510,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":19,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"1352"},{"name":"Expect","value":"100-continue"}]}}
{"timestamp":"2023-11-17T16:09:18.053652+0000","flow_id":2208306856841147,"pcap_cnt":4511,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":1352,"tx_id":19}}
{"timestamp":"2023-11-17T16:09:35.893704+0000","flow_id":2208306856841147,"pcap_cnt":4565,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":20,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"29020"},{"name":"Expect","value":"100-continue"}]}}
{"timestamp":"2023-11-17T16:09:35.893876+0000","flow_id":2208306856841147,"pcap_cnt":4566,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0},"app_proto":"http","fileinfo":{"filename":"/data","gaps":true,"state":"TRUNCATED","stored":false,"size":29020,"tx_id":20}}
{"timestamp":"2023-11-17T16:09:35.897222+0000","flow_id":2208306856841147,"pcap_cnt":4567,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":21,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"240"},{"name":"Expect","value":"100-continue"}]}}
{"timestamp":"2023-11-17T16:09:35.945396+0000","flow_id":2208306856841147,"pcap_cnt":4568,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":240,"tx_id":21}}
{"timestamp":"2023-11-17T16:09:48.102990+0000","flow_id":2208306856841147,"pcap_cnt":4653,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":22,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"240"},{"name":"Expect","value":"100-continue"}]}}
{"timestamp":"2023-11-17T16:09:48.154836+0000","flow_id":2208306856841147,"pcap_cnt":4654,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":240,"tx_id":22}}
{"timestamp":"2023-11-17T16:10:00.390847+0000","flow_id":2208306856841147,"pcap_cnt":4742,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":23,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"240"},{"name":"Expect","value":"100-continue"}]}}
{"timestamp":"2023-11-17T16:10:00.442884+0000","flow_id":2208306856841147,"pcap_cnt":4743,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":240,"tx_id":23}}
{"timestamp":"2023-11-17T16:10:12.445895+0000","flow_id":2208306856841147,"pcap_cnt":4822,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":24,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"968"},{"name":"Expect","value":"100-continue"}]}}
{"timestamp":"2023-11-17T16:10:12.445988+0000","flow_id":2208306856841147,"pcap_cnt":4827,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":968,"tx_id":24}}
{"timestamp":"2023-11-17T16:10:24.130901+0000","flow_id":2208306856841147,"pcap_cnt":5062,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":25,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"1352"},{"name":"Expect","value":"100-continue"}]}}
{"timestamp":"2023-11-17T16:10:24.239554+0000","flow_id":2208306856841147,"pcap_cnt":5063,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":1352,"tx_id":25}}
{"timestamp":"2023-11-17T16:10:32.460575+0000","flow_id":2208306856841147,"pcap_cnt":5452,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":26,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"48668"},{"name":"Expect","value":"100-continue"}]}}
{"timestamp":"2023-11-17T16:10:32.645667+0000","flow_id":2208306856841147,"pcap_cnt":5453,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0},"app_proto":"http","fileinfo":{"filename":"/data","gaps":true,"state":"TRUNCATED","stored":false,"size":48668,"tx_id":26}}
{"timestamp":"2023-11-17T16:10:51.532880+0000","flow_id":2208306856841147,"pcap_cnt":5556,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":27,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"36616"},{"name":"Expect","value":"100-continue"}]}}
{"timestamp":"2023-11-17T16:10:51.533007+0000","flow_id":2208306856841147,"pcap_cnt":5557,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0},"app_proto":"http","fileinfo":{"filename":"/data","gaps":true,"state":"TRUNCATED","stored":false,"size":36616,"tx_id":27}}
{"timestamp":"2023-11-17T16:10:51.535251+0000","flow_id":2208306856841147,"pcap_cnt":5558,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":28,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"240"},{"name":"Expect","value":"100-continue"}]}}
{"timestamp":"2023-11-17T16:10:51.588837+0000","flow_id":2208306856841147,"pcap_cnt":5559,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":240,"tx_id":28}}
{"timestamp":"2023-11-17T16:11:03.692223+0000","flow_id":2208306856841147,"pcap_cnt":5588,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":29,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"240"},{"name":"Expect","value":"100-continue"}]}}
{"timestamp":"2023-11-17T16:11:03.783737+0000","flow_id":2208306856841147,"pcap_cnt":5589,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":240,"tx_id":29}}
{"timestamp":"2023-11-17T16:11:12.134123+0000","flow_id":2208306856841147,"pcap_cnt":5605,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":30,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"240"},{"name":"Expect","value":"100-continue"}]}}
{"timestamp":"2023-11-17T16:11:12.178470+0000","flow_id":2208306856841147,"pcap_cnt":5606,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":240,"tx_id":30}}
{"timestamp":"2023-11-17T16:11:23.035913+0000","flow_id":2208306856841147,"pcap_cnt":5720,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":31,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"240"},{"name":"Expect","value":"100-continue"}]}}
{"timestamp":"2023-11-17T16:11:23.105496+0000","flow_id":2208306856841147,"pcap_cnt":5721,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":240,"tx_id":31}}
{"timestamp":"2023-11-17T16:11:32.317042+0000","flow_id":2208306856841147,"pcap_cnt":5769,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":32,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"240"},{"name":"Expect","value":"100-continue"}]}}
{"timestamp":"2023-11-17T16:11:32.379170+0000","flow_id":2208306856841147,"pcap_cnt":5770,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":240,"tx_id":32}}
{"timestamp":"2023-11-17T16:11:42.082563+0000","flow_id":2208306856841147,"pcap_cnt":5788,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":33,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"240"},{"name":"Expect","value":"100-continue"}]}}
{"timestamp":"2023-11-17T16:11:42.280467+0000","flow_id":2208306856841147,"pcap_cnt":5789,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":240,"tx_id":33}}
{"timestamp":"2023-11-17T16:11:53.746205+0000","flow_id":2208306856841147,"pcap_cnt":5926,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":34,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"240"},{"name":"Expect","value":"100-continue"}]}}
{"timestamp":"2023-11-17T16:11:53.789516+0000","flow_id":2208306856841147,"pcap_cnt":5927,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":240,"tx_id":34}}
{"timestamp":"2023-11-17T16:12:05.560427+0000","flow_id":2208306856841147,"pcap_cnt":5967,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":35,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"240"},{"name":"Expect","value":"100-continue"}]}}
{"timestamp":"2023-11-17T16:12:05.689236+0000","flow_id":2208306856841147,"pcap_cnt":5968,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":240,"tx_id":35}}
{"timestamp":"2023-11-17T16:12:13.632488+0000","flow_id":2208306856841147,"pcap_cnt":6018,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":36,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"240"},{"name":"Expect","value":"100-continue"}]}}
{"timestamp":"2023-11-17T16:12:13.686656+0000","flow_id":2208306856841147,"pcap_cnt":6019,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":240,"tx_id":36}}
{"timestamp":"2023-11-17T16:12:25.527848+0000","flow_id":2208306856841147,"pcap_cnt":6195,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":37,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"240"},{"name":"Expect","value":"100-continue"}]}}
{"timestamp":"2023-11-17T16:12:25.587959+0000","flow_id":2208306856841147,"pcap_cnt":6196,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":240,"tx_id":37}}
{"timestamp":"2023-11-17T16:12:33.411334+0000","flow_id":2208306856841147,"pcap_cnt":6258,"event_type":"http","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":38,"http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0,"request_headers":[{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"},{"name":"Host","value":"10.0.1.130"},{"name":"Content-Length","value":"240"},{"name":"Expect","value":"100-continue"}]}}
{"timestamp":"2023-11-17T16:12:33.479554+0000","flow_id":2208306856841147,"pcap_cnt":6259,"event_type":"fileinfo","src_ip":"10.0.1.8","src_port":55183,"dest_ip":"10.0.1.130","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.1.130","url":"/data","http_user_agent":"Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko","http_method":"POST","protocol":"HTTP/1.1","length":0},"app_proto":"http","fileinfo":{"filename":"/data","gaps":false,"state":"CLOSED","stored":false,"size":240,"tx_id":38}}
{"timestamp":"2023-07-26T17:52:16.080691+0000","flow_id":797302157615392,"pcap_cnt":102,"event_type":"fileinfo","src_ip":"10.0.76.64","src_port":80,"dest_ip":"10.0.76.215","dest_port":50248,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.76.64","url":"/","http_user_agent":"Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36","http_content_type":"application/octet-stream","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":12},"app_proto":"http","fileinfo":{"filename":"/","gaps":false,"state":"CLOSED","stored":false,"size":12,"tx_id":18}}
{"timestamp":"2023-07-26T17:52:16.125080+0000","flow_id":797302157615392,"pcap_cnt":104,"event_type":"fileinfo","src_ip":"10.0.76.215","src_port":50248,"dest_ip":"10.0.76.64","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"10.0.76.64","url":"/","http_user_agent":"Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36","http_content_type":"application/octet-stream","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":12},"app_proto":"http","fileinfo":{"filename":"/","gaps":false,"state":"CLOSED","stored":false,"size":24,"tx_id":19}}
{"timestamp":"2023-07-26T17:52:16.125080+0000","flow_id":797302157615392,"pcap_cnt":104,"event_type":"http","src_ip":"10.0.76.215","src_port":50248,"dest_ip":"10.0.76.64","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":19,"http":{"hostname":"10.0.76.64","url":"/","http_user_agent":"Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36","http_content_type":"application/octet-stream","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":12,"request_headers":[{"name":"Cache-Control","value":"no-cache"},{"name":"Connection","value":"Keep-Alive"},{"name":"Pragma","value":"no-cache"},{"name":"Content-Type","value":"*/*"},{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36"},{"name":"Content-Length","value":"24"},{"name":"Host","value":"10.0.76.64"}],"response_headers":[{"name":"Date","value":"Wed, 26 Jul 2023 17:52:15 GMT"},{"name":"Content-Length","value":"12"},{"name":"Content-Type","value":"application/octet-stream"}]}}
{"timestamp":"2023-07-26T17:51:46.054564+0000","flow_id":797302157615392,"event_type":"fileinfo","src_ip":"10.0.76.64","src_port":80,"dest_ip":"10.0.76.215","dest_port":50248,"proto":"TCP","pkt_src":"stream (flow timeout)","http":{"hostname":"10.0.76.64","url":"/","http_user_agent":"Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36","http_content_type":"application/octet-stream","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":12},"app_proto":"http","fileinfo":{"filename":"/","gaps":false,"state":"CLOSED","stored":false,"size":12,"tx_id":19}}