diff --git a/securite/dm/pcap_analyzer/src/main.rs b/securite/dm/pcap_analyzer/src/main.rs index dd4ad80..bfac58f 100644 --- a/securite/dm/pcap_analyzer/src/main.rs +++ b/securite/dm/pcap_analyzer/src/main.rs @@ -67,7 +67,7 @@ fn main() -> Result<(), Box> { let last_timestamp = last_timestamp.map(tv_to_sec).unwrap_or_default(); println!("Last timestamp: {last_timestamp: >14.2}"); let avg_packet = total as f64 / (last_timestamp - first_timestamp); - println!("Avg packet rate: {avg_packet: >14.4}"); + println!("Avg packet rate: {avg_packet: >14.2}"); println!("Errors: {errs: >14}"); println!(); diff --git a/securite/dm/rapport.md b/securite/dm/rapport.md index e318a45..d7e202d 100644 --- a/securite/dm/rapport.md +++ b/securite/dm/rapport.md @@ -2,6 +2,8 @@ > Matthieu Jolimaitre +[TOC] + ## Exploring Macs and Hash Functions ### Task 2: Checking Software Digests @@ -168,7 +170,7 @@ pcap_analyzer ./trace2.pcap stats # non-IPv4 count: 1717607 # First timestamp: 1474265898.92 # Last timestamp: 1474309098.10 -# Avg packet rate: 0.0014 +# Avg packet rate: 708.60 # Errors: 1717607 # # Main Protocols: @@ -224,7 +226,10 @@ L'addresse ayant envoyée le plus grand nombre de packets est 58.51.150.96. #### List 3 characteristics of the traffic that seem unusual to you. -- Tout le traffic est en TCP. -- Le traffic est très étalé : < 0.01 packet par seconde. +- Le taux de trafic est élevé. +- Beaucoup de paquets sont envoyés par 58.51.150.96 (publique, classe A). +- Il y a bien plus d'addresses de sources que de destinations. -#### Provide a reasonable explanation for what traffic the trace represents, taking into account the unusual characteristics you have identified. \ No newline at end of file +#### Provide a reasonable explanation for what traffic the trace represents, taking into account the unusual characteristics you have identified. + +Le trafic est probablement issu d'un routeur. diff --git a/securite/dm/rapport.odt b/securite/dm/rapport.odt new file mode 100644 index 0000000..64a92f3 Binary files /dev/null and b/securite/dm/rapport.odt differ diff --git a/securite/dm/rapport.pdf b/securite/dm/rapport.pdf new file mode 100644 index 0000000..eacc7cb Binary files /dev/null and b/securite/dm/rapport.pdf differ