services.certificate
|
524a78b5e5b26b08a172d2f2f207c11171bd8d6ebdc14ae05317160341758afc |
|
services.discovery_method
|
IPV4_WALK_FULL_PRIORITY_1 |
|
services.extended_service_name
|
RDP |
|
services.jarm.fingerprint
|
14d14d16d14d14d08c14d14d14d14dfd9c9d14e4f4f67f94f0359f8b28f532 |
|
services.jarm.cipher_and_version_fingerprint
|
14d14d16d14d14d08c14d14d14d14d |
|
services.jarm.tls_extensions_sha256
|
fd9c9d14e4f4f67f94f0359f8b28f532 |
|
services.jarm.observed_at
|
2025-01-31T01:47:53.505374474Z |
|
services.labels
|
network-administration |
|
services.labels
|
remote-access |
|
services.observed_at
|
2025-02-15T17:16:45.105733956Z |
|
services.perspective_id
|
PERSPECTIVE_UNKNOWN |
|
services.port
|
3389 |
|
services.rdp.protocol_flags.extended_client_data_supported |
true |
|
services.rdp.protocol_flags.dynvc_graphics_pipeline |
true |
|
services.rdp.protocol_flags.neg_resp_reserved |
true |
|
services.rdp.protocol_flags.restricted_admin_mode |
true |
|
services.rdp.protocol_flags.restricted_auth_mode |
true |
|
services.rdp.selected_security_protocol.rdstls |
true |
|
services.rdp.selected_security_protocol.raw_value
|
4 |
|
services.rdp.selected_security_protocol.standard_rdp |
false |
|
services.rdp.selected_security_protocol.tls |
false |
|
services.rdp.selected_security_protocol.credssp |
false |
|
services.rdp.selected_security_protocol.credssp_early_auth |
false |
|
services.rdp.selected_security_protocol.error |
false |
|
services.rdp.selected_security_protocol.error_ssl_required |
false |
|
services.rdp.selected_security_protocol.error_ssl_forbidden |
false |
|
services.rdp.selected_security_protocol.error_ssl_cert_missing |
false |
|
services.rdp.selected_security_protocol.error_bad_flags |
false |
|
services.rdp.selected_security_protocol.error_hybrid_required |
false |
|
services.rdp.selected_security_protocol.error_ssl_user_auth_required |
false |
|
services.rdp.selected_security_protocol.error_unknown |
false |
|
services.rdp.x224_cc_pdu_srcref
|
13330 |
|
services.service_name
|
RDP |
|
services.source_ip
|
167.94.145.100 |
|
services.tls.version_selected
|
TLSv1_2 |
|
services.tls.cipher_selected
|
TLS_RSA_WITH_AES_256_GCM_SHA384 |
|
services.tls.certificates.leaf_fp_sha_256
|
524a78b5e5b26b08a172d2f2f207c11171bd8d6ebdc14ae05317160341758afc |
|
services.tls.certificates.leaf_data.subject_dn
|
CN=DESKTOP-TCRDU4C |
|
services.tls.certificates.leaf_data.issuer_dn
|
CN=DESKTOP-TCRDU4C |
|
services.tls.certificates.leaf_data.pubkey_bit_size
|
2048 |
|
services.tls.certificates.leaf_data.pubkey_algorithm
|
RSA |
|
services.tls.certificates.leaf_data.tbs_fingerprint
|
6acd86876e9a49ef34e89da83fadbe2383dbc8cccec1df3d7f5de7d296f6bc52 |
|
services.tls.certificates.leaf_data.fingerprint
|
524a78b5e5b26b08a172d2f2f207c11171bd8d6ebdc14ae05317160341758afc |
|
services.tls.certificates.leaf_data.issuer.common_name
|
DESKTOP-TCRDU4C |
|
services.tls.certificates.leaf_data.subject.common_name
|
DESKTOP-TCRDU4C |
|
services.tls.certificates.leaf_data.public_key.key_algorithm
|
RSA |
|
services.tls.certificates.leaf_data.public_key.rsa.modulus
|
02rf6QTosnXT9rwmR39r5LQ2WPG9ZMdSD1P41rDpVEI6YhpVsjYw8u5NIxok3qQubHIJjRlOMNxonPs4mUti90sYwxnxiRtS1DlNQl1U5MBldEIRHye4ziGtU+1oFI+XXldUQecLPS0Lg/fJiR2PWisA502r0Cz27OHoKu3Bre5KGxENU0UPWo3jZXfxPROAdDKbAztGsJ3+wah8DhblpIgF14Be+2ZdS4f7JDjrnB+Y1emUrt6f+n4pxoUIfqh2bxDEU1ceRmYXJTr5rWvyr2derOVb9lnDa9dSQgIjENnwIFf7NqX6XTYxJ5ITg5JoTh0SHqyILf66Hia9CImcrQ== |
|
services.tls.certificates.leaf_data.public_key.rsa.exponent
|
AAEAAQ== |
|
services.tls.certificates.leaf_data.public_key.rsa.length
|
256 |
|
services.tls.certificates.leaf_data.public_key.fingerprint
|
8b42a1828554fd0e2b6527b5c3da67769f0aa2ceff75ab20d459846a00122891 |
|
services.tls.certificates.leaf_data.signature.self_signed |
true |
|
services.tls.certificates.leaf_data.signature.signature_algorithm
|
SHA256-RSA |
|
services.tls.ja3s
|
f75082535b4a79c07b31bdd0e2b7eb87 |
|
services.tls.ja4s
|
t120100_009d_bc98f8e001b5 |
|
services.tls.versions.tls_version
|
TLSv1_2 |
|
services.tls.versions.ja3s
|
f75082535b4a79c07b31bdd0e2b7eb87 |
|
services.tls.versions.ja4s
|
t120100_009d_bc98f8e001b5 |
|
|
services.tls.versions.tls_version
|
TLSv1_1 |
|
services.tls.versions.ja3s
|
9f2e2080c0409c26ea913d9273e88773 |
|
services.tls.versions.ja4s
|
t110100_0035_bc98f8e001b5 |
|
|
services.tls.versions.tls_version
|
TLSv1_0 |
|
services.tls.versions.ja3s
|
91589ea825a2ee41810c85fab06d2ef6 |
|
services.tls.versions.ja4s
|
t100100_0035_bc98f8e001b5 |
|
|
services.transport_fingerprint.raw
|
64000,128,true,MNWNNS,1460,false,false |
|
services.transport_protocol
|
TCP |
|
services.truncated |
false |
|