{"timestamp":"2024-03-05T02:26:08.550593+0000","flow_id":1863472041498435,"in_iface":"ens5","event_type":"fileinfo","src_ip":"10.0.7.2","src_port":80,"dest_ip":"1.0.1.6","dest_port":61616,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"example.com","url":"/hax?jsp=/app/rest/server;.jsp","http_user_agent":"Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1","xff":"19.1.7.178","http_content_type":"text/html","http_method":"POST","protocol":"HTTP/1.1","status":200,"redirect":"https://example.com/hax?jsp=/app/rest/server;.jsp","length":162},"app_proto":"http","fileinfo":{"filename":"/hax","gaps":false,"state":"CLOSED","stored":false,"size":162,"tx_id":0}}
{"timestamp":"2024-03-05T02:10:13.474061+0000","flow_id":63052250987122,"in_iface":"ens5","event_type":"http","src_ip":"19.1.6.1","src_port":37264,"dest_ip":"1.0.1.6","dest_port":80,"proto":"TCP","tx_id":0,"http":{"hostname":"example.com","url":"/hax?jsp=/app/rest/server;.jsp","http_user_agent":"Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36","http_content_type":"text/html","http_method":"POST","protocol":"HTTP/1.1","status":200,"redirect":"https://example.com/hax?jsp=/app/rest/server;.jsp","length":162}}
{"timestamp":"2024-03-05T02:01:42.954074+0000","flow_id":1478566064033492,"in_iface":"ens5","event_type":"http","src_ip":"19.1.7.178","src_port":42472,"dest_ip":"1.0.1.6","dest_port":80,"proto":"TCP","tx_id":0,"http":{"hostname":"sh1.example.com","url":"/hax?jsp=/app/rest/server;.jsp","http_user_agent":"Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.150 Safari/537.36","http_content_type":"text/html","http_method":"POST","protocol":"HTTP/1.1","status":200,"redirect":"https://sh1.example.com/hax?jsp=/app/rest/server;.jsp","length":162}}
{"timestamp":"2024-03-05T02:00:32.776417+0000","flow_id":371710037611164,"in_iface":"ens5","event_type":"http","src_ip":"19.1.7.195","src_port":15410,"dest_ip":"1.0.1.6","dest_port":80,"proto":"TCP","tx_id":0,"http":{"hostname":"sh1.example.com","url":"/hax?jsp=/app/rest/server;.jsp","http_user_agent":"Mozilla/5.0 (X11; Linux x86_64; en-US) Gecko/20171214 Firefox/100.0esr","http_content_type":"text/html","http_method":"POST","protocol":"HTTP/1.1","status":200,"redirect":"https://sh1.example.com/hax?jsp=/app/rest/server;.jsp","length":162}}
{"timestamp":"2024-03-05T01:57:52.309970+0000","flow_id":130854703612555,"in_iface":"ens5","event_type":"http","src_ip":"19.1.7.198","src_port":1778,"dest_ip":"1.0.1.6","dest_port":80,"proto":"TCP","tx_id":0,"http":{"hostname":"example.com","url":"/hax?jsp=/app/rest/server;.jsp","http_user_agent":"Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36","http_content_type":"text/html","http_method":"POST","protocol":"HTTP/1.1","status":200,"redirect":"https://example.com/hax?jsp=/app/rest/server;.jsp","length":162}}