Partner Spotlight: Looking for a Splunk alternative to store all the Shodan data? Check out
Gravwell
2024-08-12T18:44:45.512602
Microsoft RPC Endpoint Mapper
51a227ae-825b-41f2-b4a9-1ac9557a1018
version: v1.0
annotation: Ngc Pop Key Service
ncacn_ip_tcp: 192.168.4.127:49664
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc:...
2024-08-12T13:17:32.420163
mDNS:
services:
9/tcp workstation:
Name=ic-ii-5600368 [00:14:f9:ff:40:49]
Address=169.254.8.113 192.168.4.127
22/tcp ssh:
Name=ic-ii-5600368
Address=169.254.8.113 192.168.4.127
22/tcp sftp-ssh:
Name=ic-ii-5600368
Address=169.254.8.113 192.168.4.12...
2024-08-12T10:14:21.784913
HTTP/1.0 401 Authorization Required
Server: alphapd/2.1.8
Date: Tue Jan 1 12:53:05 2019
Pragma: no-cache
Cache-Control: no-cache
Content-type: text/html
Content-length: 103
WWW-Authenticate: Digest realm="DCS-5010L_F5",qop="auth", nonce="97c98cb9bb916b5ede852f16970374ff"
IP Camera:
...
2024-08-11T23:05:56.015558
HTTP/1.0 401 Authorization Required
Server: alphapd/2.1.8
Date: Wed Jun 12 01:18:02 2019
Pragma: no-cache
Cache-Control: no-cache
Content-type: text/html
Content-length: 103
WWW-Authenticate: Digest realm="DCS-930LB1_43",qop="auth", nonce="1e0c047a1f317a5e8456371ed77f9348"
IP Camera:
...
2024-08-11T16:35:51.280799
Microsoft RPC Endpoint Mapper
51a227ae-825b-41f2-b4a9-1ac9557a1018
version: v1.0
annotation: Ngc Pop Key Service
ncacn_ip_tcp: 192.168.4.127:49664
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc:...
2024-08-10T13:31:06.462339
HTTP/1.1 200 OK
Content-Length: 6843
Content-Type: text/html
Date: Sat, 10 Aug 2024 12:36:14 GMT
Server: Kestrel
Accept-Ranges: bytes
ETag: "1d8a605e1c11ebb"
Last-Modified: Tue, 02 Aug 2022 00:22:00 GMT
Vary: Accept-Encoding
X-Response-Time-ms: 58
Interzone:
Version: 10.8.3
Local...
2024-08-08T05:27:57.191309
fox a 0 -1 fox hello
{
fox.version=s:1.0.1
id=i:352
hostName=s:192.168.4.127
hostAddress=s:192.168.4.127
app.name=s:Station
app.version=s:3.8.401
vm.name=s:Java HotSpot(TM) Embedded Client VM
vm.version=s:25.161-b01
os.name=s:QNX
os.version=s:6.5.0
station.name=s:PIQ266_kHOUSE
lang=s:en
timeZone=...
2024-08-04T20:53:44.837634
Microsoft RPC Endpoint Mapper
d95afe70-a6d5-4259-822e-2c84da1ddb0d
version: v1.0
protocol: [MS-RSP]: Remote Shutdown Protocol
provider: wininit.exe
ncacn_ip_tcp: 192.168.4.127:49152
ncalrpc: WindowsShutdown
ncacn_np: \\HCSS-ECS-92F0\PIPE\InitShutdown
ncalrpc: WMsgKRpc065780
76f226...
2024-08-04T06:58:11.227272
HTTP/1.0 401 Authorization Required
Server: alphapd
Date: Sun Aug 4 01:58:10 2024
Pragma: no-cache
Cache-Control: no-cache
Content-type: text/html
Content-length: 103
WWW-Authenticate: Basic realm="DCS-932L_2C"
IP Camera:
MAC Address: 28:10:7B:25:95:2C
Version: 1.14
Hardware Ver...
2024-08-03T10:15:51.376767
NetBIOS Response:
Server Name: TOPAZ
MAC Address: 00:00:00:00:00:00
Names:
TOPAZ <0x0>
TOPAZ <0x3>
TOPAZ <0x20>
\x01\x02__MSBROWSE__\x02 <0x1>
MYGROUP <0x1d>
MYGROUP <0x1e>
MYGROUP <0x0>
Additional Interfaces:
192.168.3.127
192.168.4.127
China, Shanghai
Canada, Cambridge
United States, Cleveland Heights
