#separator \x09
#set_separator	,
#empty_field	(empty)
#unset_field	-
#path	telemetry
#open	2024-12-04-13-00-28
#fields	ts	peer	metric_type	prefix	name	unit	labels	label_values	value
#types	time	string	string	string	string	string	vector[string]	vector[string]	double
1733317228.117456	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733317228.117456	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733317228.117456	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733317228.117456	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733317228.117456	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733317228.117456	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733317228.117456	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	500850.0
1733317228.117456	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	702.0
1733317228.117456	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1394757.0
1733317228.117456	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	48739.0
1733317228.117456	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	746322.0
1733317228.117456	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1843444.0
1733317228.117456	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9181.0
1733317228.117456	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9181.0
1733317228.117456	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733317228.117456	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3138.0
1733317228.117456	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	236.0
1733317228.117456	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	234.0
1733317228.117456	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	124.0
1733317228.117456	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	226.0
1733317228.117456	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29577.0
1733317228.117456	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20555.0
1733317228.117456	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733317228.117456	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	154.0
1733317228.117456	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733317228.117456	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	10.0
1733317228.117456	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733317228.117456	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733317228.117456	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733317228.117456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733317228.117456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733317228.117456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	500850.0
1733317228.117456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	702.0
1733317228.117456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1394757.0
1733317228.117456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	48739.0
1733317228.117456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	746322.0
1733317228.117456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1843444.0
1733317228.117456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9181.0
1733317228.117456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9181.0
1733317228.117456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733317228.117456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3138.0
1733317228.117456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	236.0
1733317228.117456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	234.0
1733317228.117456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	124.0
1733317228.117456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	226.0
1733317228.117456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29577.0
1733317228.117456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20504.0
1733317228.117456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733317228.117456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	154.0
1733317228.117456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733317228.117456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	10.0
1733317228.117456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733317228.117456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733317228.117456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733317228.117456	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733317228.117456	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3916665406.0
1733317228.117456	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	12950926.0
1733317228.117456	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733317228.117456	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13000692.0
1733317228.117456	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.021611
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	703.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	206509.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21012.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3508.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	235.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	702.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	702.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1521.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1843471.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7708761.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3810860.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3810860.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8258531.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	745937.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	745534.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	746036.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	746018.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	728195.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	758025.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	746143.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	746480.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	996035.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3235.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1109.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3235.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	249511.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	8931.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	48739.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1843444.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718637.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26413.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	188.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	226.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	226.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9143.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29577.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135416.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29577.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29577.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21526.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	51.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	193.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20434.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20555.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20555.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20555.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41161.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20555.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	250.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	154.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1511.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	153.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733317228.117456	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733317228.117456	zeek	gauge	zeek	active-sessions	-	protocol	tcp	24.0
1733317228.117456	zeek	gauge	zeek	active-sessions	-	protocol	udp	0.0
1733317228.117456	zeek	gauge	zeek	active-sessions	-	protocol	icmp	3.0
1733317228.117456	zeek	counter	zeek	total-sessions	-	protocol	tcp	1795021.0
1733317228.117456	zeek	counter	zeek	total-sessions	-	protocol	udp	25420.0
1733317228.117456	zeek	counter	zeek	total-sessions	-	protocol	icmp	23030.0
1733317288.169401	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733317288.169401	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733317288.169401	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733317288.169401	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733317288.169401	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733317288.169401	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733317288.169401	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	501000.0
1733317288.169401	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	702.0
1733317288.169401	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1395179.0
1733317288.169401	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	48744.0
1733317288.169401	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	746523.0
1733317288.169401	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1843727.0
1733317288.169401	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9182.0
1733317288.169401	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9182.0
1733317288.169401	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733317288.169401	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3138.0
1733317288.169401	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	236.0
1733317288.169401	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	234.0
1733317288.169401	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	124.0
1733317288.169401	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	226.0
1733317288.169401	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29578.0
1733317288.169401	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20555.0
1733317288.169401	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733317288.169401	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	154.0
1733317288.169401	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733317288.169401	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	10.0
1733317288.169401	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733317288.169401	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733317288.169401	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733317288.169401	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733317288.169401	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733317288.169401	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	501000.0
1733317288.169401	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	702.0
1733317288.169401	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1395179.0
1733317288.169401	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	48744.0
1733317288.169401	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	746523.0
1733317288.169401	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1843727.0
1733317288.169401	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9182.0
1733317288.169401	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9182.0
1733317288.169401	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733317288.169401	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3138.0
1733317288.169401	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	236.0
1733317288.169401	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	234.0
1733317288.169401	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	124.0
1733317288.169401	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	226.0
1733317288.169401	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29578.0
1733317288.169401	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20504.0
1733317288.169401	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733317288.169401	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	154.0
1733317288.169401	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733317288.169401	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	10.0
1733317288.169401	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733317288.169401	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733317288.169401	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733317288.169401	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733317288.169401	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3917277582.0
1733317288.169401	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	12953782.0
1733317288.169401	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733317288.169401	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13003551.0
1733317288.169401	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.008616
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	703.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	206569.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21018.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3509.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	235.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	702.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	702.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1521.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1843788.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7710689.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3811864.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3811864.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8261090.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	746168.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	745764.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	746267.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	746249.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	728420.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	758257.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	746374.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	746711.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	996333.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3235.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1109.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3235.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	249578.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	8932.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	48744.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1843727.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718640.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26413.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	188.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	226.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	226.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9144.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29578.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135420.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29578.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29578.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21526.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	51.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	193.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20434.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20555.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20555.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20555.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41161.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20555.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	250.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	154.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1511.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	153.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733317288.169401	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733317288.169401	zeek	gauge	zeek	active-sessions	-	protocol	tcp	57.0
1733317288.169401	zeek	gauge	zeek	active-sessions	-	protocol	udp	0.0
1733317288.169401	zeek	gauge	zeek	active-sessions	-	protocol	icmp	5.0
1733317288.169401	zeek	counter	zeek	total-sessions	-	protocol	tcp	1795334.0
1733317288.169401	zeek	counter	zeek	total-sessions	-	protocol	udp	25420.0
1733317288.169401	zeek	counter	zeek	total-sessions	-	protocol	icmp	23035.0
1733317348.174856	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733317348.174856	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733317348.174856	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733317348.174856	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733317348.174856	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733317348.174856	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733317348.174856	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	501150.0
1733317348.174856	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	703.0
1733317348.174856	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1395580.0
1733317348.174856	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	48750.0
1733317348.174856	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	746778.0
1733317348.174856	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1844080.0
1733317348.174856	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9183.0
1733317348.174856	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9183.0
1733317348.174856	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733317348.174856	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3139.0
1733317348.174856	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	236.0
1733317348.174856	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	234.0
1733317348.174856	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	124.0
1733317348.174856	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	226.0
1733317348.174856	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29578.0
1733317348.174856	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20555.0
1733317348.174856	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733317348.174856	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	154.0
1733317348.174856	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733317348.174856	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	10.0
1733317348.174856	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733317348.174856	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733317348.174856	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733317348.174856	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733317348.174856	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733317348.174856	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	501150.0
1733317348.174856	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	703.0
1733317348.174856	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1395580.0
1733317348.174856	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	48750.0
1733317348.174856	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	746778.0
1733317348.174856	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1844080.0
1733317348.174856	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9183.0
1733317348.174856	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9183.0
1733317348.174856	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733317348.174856	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3139.0
1733317348.174856	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	236.0
1733317348.174856	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	234.0
1733317348.174856	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	124.0
1733317348.174856	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	226.0
1733317348.174856	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29578.0
1733317348.174856	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20504.0
1733317348.174856	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733317348.174856	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	154.0
1733317348.174856	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733317348.174856	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	10.0
1733317348.174856	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733317348.174856	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733317348.174856	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733317348.174856	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733317348.174856	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3918010437.0
1733317348.174856	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	12957244.0
1733317348.174856	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733317348.174856	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13007010.0
1733317348.174856	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.014097
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	704.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	206628.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21024.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3510.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	235.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	703.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	703.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1524.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1844109.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7712578.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3812895.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3812895.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8263569.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	746392.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	745988.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	746491.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	746473.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	728639.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	758482.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	746598.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	746935.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	996627.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3236.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1109.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3236.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	249648.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	8933.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	48750.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1844080.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718641.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26413.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	188.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	226.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	226.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9144.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29578.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135420.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29578.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29578.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21526.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	51.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	194.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20434.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20555.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20555.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20555.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41161.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20555.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	250.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	154.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1511.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	153.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733317348.174856	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733317348.174856	zeek	gauge	zeek	active-sessions	-	protocol	tcp	21.0
1733317348.174856	zeek	gauge	zeek	active-sessions	-	protocol	udp	2.0
1733317348.174856	zeek	gauge	zeek	active-sessions	-	protocol	icmp	6.0
1733317348.174856	zeek	counter	zeek	total-sessions	-	protocol	tcp	1795646.0
1733317348.174856	zeek	counter	zeek	total-sessions	-	protocol	udp	25423.0
1733317348.174856	zeek	counter	zeek	total-sessions	-	protocol	icmp	23040.0
1733317408.243671	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733317408.243671	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733317408.243671	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733317408.243671	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733317408.243671	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733317408.243671	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733317408.243671	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	501300.0
1733317408.243671	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	703.0
1733317408.243671	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1395758.0
1733317408.243671	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	48755.0
1733317408.243671	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	746872.0
1733317408.243671	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1844236.0
1733317408.243671	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9184.0
1733317408.243671	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9184.0
1733317408.243671	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733317408.243671	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3139.0
1733317408.243671	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	237.0
1733317408.243671	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	235.0
1733317408.243671	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	124.0
1733317408.243671	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	226.0
1733317408.243671	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29578.0
1733317408.243671	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20555.0
1733317408.243671	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733317408.243671	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	154.0
1733317408.243671	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733317408.243671	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	10.0
1733317408.243671	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733317408.243671	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733317408.243671	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733317408.243671	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733317408.243671	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733317408.243671	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	501300.0
1733317408.243671	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	703.0
1733317408.243671	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1395758.0
1733317408.243671	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	48755.0
1733317408.243671	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	746872.0
1733317408.243671	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1844236.0
1733317408.243671	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9184.0
1733317408.243671	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9184.0
1733317408.243671	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733317408.243671	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3139.0
1733317408.243671	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	237.0
1733317408.243671	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	235.0
1733317408.243671	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	124.0
1733317408.243671	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	226.0
1733317408.243671	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29578.0
1733317408.243671	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20504.0
1733317408.243671	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733317408.243671	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	154.0
1733317408.243671	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733317408.243671	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	10.0
1733317408.243671	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733317408.243671	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733317408.243671	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733317408.243671	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733317408.243671	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3918376153.0
1733317408.243671	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	12958867.0
1733317408.243671	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733317408.243671	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13008633.0
1733317408.243671	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.005826
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	704.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	206686.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21030.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3511.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	236.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	703.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	703.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1524.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1844263.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7713463.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3813352.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3813352.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8264684.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	746492.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	746088.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	746591.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	746573.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	728734.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	758582.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	746698.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	747035.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	996764.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3236.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1109.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3236.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	249685.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	8934.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	48755.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1844236.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718646.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26413.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	188.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	226.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	226.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9144.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29578.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135420.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29578.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29578.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21526.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	51.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	194.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20434.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20555.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20555.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20555.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41161.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20555.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	250.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	154.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1511.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	153.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733317408.243671	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733317408.243671	zeek	gauge	zeek	active-sessions	-	protocol	tcp	24.0
1733317408.243671	zeek	gauge	zeek	active-sessions	-	protocol	udp	0.0
1733317408.243671	zeek	gauge	zeek	active-sessions	-	protocol	icmp	3.0
1733317408.243671	zeek	counter	zeek	total-sessions	-	protocol	tcp	1795799.0
1733317408.243671	zeek	counter	zeek	total-sessions	-	protocol	udp	25423.0
1733317408.243671	zeek	counter	zeek	total-sessions	-	protocol	icmp	23041.0
1733317468.267262	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733317468.267262	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733317468.267262	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733317468.267262	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733317468.267262	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733317468.267262	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733317468.267262	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	501450.0
1733317468.267262	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	703.0
1733317468.267262	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1395904.0
1733317468.267262	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	48760.0
1733317468.267262	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	746965.0
1733317468.267262	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1844382.0
1733317468.267262	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9185.0
1733317468.267262	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9185.0
1733317468.267262	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733317468.267262	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3139.0
1733317468.267262	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	237.0
1733317468.267262	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	235.0
1733317468.267262	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	124.0
1733317468.267262	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	226.0
1733317468.267262	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29578.0
1733317468.267262	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20555.0
1733317468.267262	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733317468.267262	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	154.0
1733317468.267262	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733317468.267262	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	10.0
1733317468.267262	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733317468.267262	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733317468.267262	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733317468.267262	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733317468.267262	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733317468.267262	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	501450.0
1733317468.267262	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	703.0
1733317468.267262	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1395904.0
1733317468.267262	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	48760.0
1733317468.267262	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	746965.0
1733317468.267262	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1844382.0
1733317468.267262	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9185.0
1733317468.267262	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9185.0
1733317468.267262	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733317468.267262	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3139.0
1733317468.267262	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	237.0
1733317468.267262	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	235.0
1733317468.267262	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	124.0
1733317468.267262	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	226.0
1733317468.267262	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29578.0
1733317468.267262	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20504.0
1733317468.267262	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733317468.267262	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	154.0
1733317468.267262	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733317468.267262	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	10.0
1733317468.267262	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733317468.267262	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733317468.267262	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733317468.267262	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733317468.267262	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3918752169.0
1733317468.267262	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	12960464.0
1733317468.267262	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733317468.267262	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13010230.0
1733317468.267262	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.007285
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	704.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	206745.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21036.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3512.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	236.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	703.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	703.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1524.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1844398.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7714223.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3813729.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3813729.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8265612.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	746575.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	746171.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	746674.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	746656.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	728812.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	758665.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	746781.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	747118.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	996880.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3236.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1109.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3236.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	249718.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	8935.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	48760.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1844382.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718647.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26413.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	188.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	226.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	226.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9144.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29578.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135420.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29578.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29578.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21526.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	51.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	194.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20434.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20555.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20555.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20555.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41161.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20555.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	250.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	154.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1511.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	153.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733317468.267262	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733317468.267262	zeek	gauge	zeek	active-sessions	-	protocol	tcp	15.0
1733317468.267262	zeek	gauge	zeek	active-sessions	-	protocol	udp	0.0
1733317468.267262	zeek	gauge	zeek	active-sessions	-	protocol	icmp	2.0
1733317468.267262	zeek	counter	zeek	total-sessions	-	protocol	tcp	1795933.0
1733317468.267262	zeek	counter	zeek	total-sessions	-	protocol	udp	25423.0
1733317468.267262	zeek	counter	zeek	total-sessions	-	protocol	icmp	23043.0
1733317528.294091	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733317528.294091	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733317528.294091	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733317528.294091	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733317528.294091	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733317528.294091	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733317528.294091	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	501600.0
1733317528.294091	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	703.0
1733317528.294091	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1396118.0
1733317528.294091	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	48773.0
1733317528.294091	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	747057.0
1733317528.294091	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1844517.0
1733317528.294091	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9188.0
1733317528.294091	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9188.0
1733317528.294091	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733317528.294091	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3139.0
1733317528.294091	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	237.0
1733317528.294091	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	235.0
1733317528.294091	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	124.0
1733317528.294091	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	226.0
1733317528.294091	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29578.0
1733317528.294091	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20555.0
1733317528.294091	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733317528.294091	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	154.0
1733317528.294091	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733317528.294091	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	10.0
1733317528.294091	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733317528.294091	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733317528.294091	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733317528.294091	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733317528.294091	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733317528.294091	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	501600.0
1733317528.294091	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	703.0
1733317528.294091	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1396118.0
1733317528.294091	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	48773.0
1733317528.294091	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	747057.0
1733317528.294091	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1844517.0
1733317528.294091	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9188.0
1733317528.294091	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9188.0
1733317528.294091	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733317528.294091	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3139.0
1733317528.294091	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	237.0
1733317528.294091	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	235.0
1733317528.294091	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	124.0
1733317528.294091	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	226.0
1733317528.294091	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29578.0
1733317528.294091	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20504.0
1733317528.294091	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733317528.294091	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	154.0
1733317528.294091	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733317528.294091	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	10.0
1733317528.294091	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733317528.294091	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733317528.294091	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733317528.294091	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733317528.294091	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3919184478.0
1733317528.294091	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	12962162.0
1733317528.294091	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733317528.294091	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13012137.0
1733317528.294091	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	3.96287
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	704.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	206804.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21042.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3513.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	236.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	703.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	703.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1524.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1844562.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7715222.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3814264.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3814264.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8266864.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	746687.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	746283.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	746787.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	746768.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	728919.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	758778.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	746894.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	747231.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	997026.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3236.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1109.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3236.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	249750.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	8938.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	48773.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1844517.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718649.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26413.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	188.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	226.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	226.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9144.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29578.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135420.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29578.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29578.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21526.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	52.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	194.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20434.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20555.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20555.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20555.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41161.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20555.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	250.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	154.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1511.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	153.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733317528.294091	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733317528.294091	zeek	gauge	zeek	active-sessions	-	protocol	tcp	41.0
1733317528.294091	zeek	gauge	zeek	active-sessions	-	protocol	udp	1.0
1733317528.294091	zeek	gauge	zeek	active-sessions	-	protocol	icmp	4.0
1733317528.294091	zeek	counter	zeek	total-sessions	-	protocol	tcp	1796093.0
1733317528.294091	zeek	counter	zeek	total-sessions	-	protocol	udp	25424.0
1733317528.294091	zeek	counter	zeek	total-sessions	-	protocol	icmp	23046.0
1733317588.337179	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733317588.337179	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733317588.337179	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733317588.337179	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733317588.337179	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733317588.337179	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733317588.337179	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	501750.0
1733317588.337179	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	703.0
1733317588.337179	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1396410.0
1733317588.337179	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	48790.0
1733317588.337179	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	747225.0
1733317588.337179	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1844760.0
1733317588.337179	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9191.0
1733317588.337179	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9191.0
1733317588.337179	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733317588.337179	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3139.0
1733317588.337179	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	237.0
1733317588.337179	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	235.0
1733317588.337179	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	124.0
1733317588.337179	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	226.0
1733317588.337179	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29578.0
1733317588.337179	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20555.0
1733317588.337179	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733317588.337179	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	154.0
1733317588.337179	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733317588.337179	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	10.0
1733317588.337179	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733317588.337179	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733317588.337179	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733317588.337179	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733317588.337179	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733317588.337179	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	501750.0
1733317588.337179	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	703.0
1733317588.337179	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1396410.0
1733317588.337179	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	48790.0
1733317588.337179	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	747225.0
1733317588.337179	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1844760.0
1733317588.337179	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9191.0
1733317588.337179	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9191.0
1733317588.337179	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733317588.337179	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3139.0
1733317588.337179	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	237.0
1733317588.337179	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	235.0
1733317588.337179	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	124.0
1733317588.337179	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	226.0
1733317588.337179	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29578.0
1733317588.337179	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20504.0
1733317588.337179	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733317588.337179	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	154.0
1733317588.337179	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733317588.337179	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	10.0
1733317588.337179	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733317588.337179	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733317588.337179	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733317588.337179	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733317588.337179	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3919707899.0
1733317588.337179	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	12964634.0
1733317588.337179	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733317588.337179	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13014632.0
1733317588.337179	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	3.389951
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	704.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	206864.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21048.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3514.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	236.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	703.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	703.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1524.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1844809.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7716679.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3814994.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3814994.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8268683.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	746851.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	746447.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	746951.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	746932.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	729078.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	758942.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	747058.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	747395.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	997245.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3236.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1109.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3236.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	249805.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	8941.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	48790.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1844760.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718650.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26413.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	188.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	226.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	226.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9144.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29578.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135420.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29578.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29578.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21526.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	52.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	194.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20434.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20555.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20555.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20555.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41161.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20555.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	250.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	154.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1511.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	153.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733317588.337179	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733317588.337179	zeek	gauge	zeek	active-sessions	-	protocol	tcp	44.0
1733317588.337179	zeek	gauge	zeek	active-sessions	-	protocol	udp	0.0
1733317588.337179	zeek	gauge	zeek	active-sessions	-	protocol	icmp	6.0
1733317588.337179	zeek	counter	zeek	total-sessions	-	protocol	tcp	1796335.0
1733317588.337179	zeek	counter	zeek	total-sessions	-	protocol	udp	25424.0
1733317588.337179	zeek	counter	zeek	total-sessions	-	protocol	icmp	23051.0
1733317648.356848	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733317648.356848	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733317648.356848	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733317648.356848	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733317648.356848	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733317648.356848	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733317648.356848	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	501900.0
1733317648.356848	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	704.0
1733317648.356848	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1396729.0
1733317648.356848	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	48806.0
1733317648.356848	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	747396.0
1733317648.356848	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1845023.0
1733317648.356848	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9194.0
1733317648.356848	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9194.0
1733317648.356848	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733317648.356848	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3139.0
1733317648.356848	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	237.0
1733317648.356848	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	235.0
1733317648.356848	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	124.0
1733317648.356848	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	226.0
1733317648.356848	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29578.0
1733317648.356848	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20555.0
1733317648.356848	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733317648.356848	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	154.0
1733317648.356848	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733317648.356848	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	10.0
1733317648.356848	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733317648.356848	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733317648.356848	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733317648.356848	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733317648.356848	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733317648.356848	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	501900.0
1733317648.356848	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	704.0
1733317648.356848	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1396729.0
1733317648.356848	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	48806.0
1733317648.356848	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	747396.0
1733317648.356848	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1845023.0
1733317648.356848	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9194.0
1733317648.356848	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9194.0
1733317648.356848	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733317648.356848	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3139.0
1733317648.356848	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	237.0
1733317648.356848	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	235.0
1733317648.356848	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	124.0
1733317648.356848	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	226.0
1733317648.356848	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29578.0
1733317648.356848	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20504.0
1733317648.356848	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733317648.356848	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	154.0
1733317648.356848	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733317648.356848	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	10.0
1733317648.356848	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733317648.356848	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733317648.356848	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733317648.356848	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733317648.356848	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3920262338.0
1733317648.356848	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	12967213.0
1733317648.356848	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733317648.356848	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13017214.0
1733317648.356848	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	2.976681
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	705.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	206922.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21054.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3515.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	236.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	704.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	704.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1526.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1845073.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7718264.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3815803.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3815803.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8270667.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	747030.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	746626.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	747130.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	747111.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	729252.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	759121.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	747237.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	747574.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	997486.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3236.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1109.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3236.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	249867.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	8944.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	48806.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1845023.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718651.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26414.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	188.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	226.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	226.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9144.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29578.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135420.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29578.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29578.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21526.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	52.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	194.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20434.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20555.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20555.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20555.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41161.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20555.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	250.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	155.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1521.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	154.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733317648.356848	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733317648.356848	zeek	gauge	zeek	active-sessions	-	protocol	tcp	45.0
1733317648.356848	zeek	gauge	zeek	active-sessions	-	protocol	udp	1.0
1733317648.356848	zeek	gauge	zeek	active-sessions	-	protocol	icmp	4.0
1733317648.356848	zeek	counter	zeek	total-sessions	-	protocol	tcp	1796594.0
1733317648.356848	zeek	counter	zeek	total-sessions	-	protocol	udp	25425.0
1733317648.356848	zeek	counter	zeek	total-sessions	-	protocol	icmp	23054.0
1733317708.367154	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733317708.367154	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733317708.367154	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733317708.367154	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733317708.367154	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733317708.367154	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733317708.367154	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	502050.0
1733317708.367154	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	704.0
1733317708.367154	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1397128.0
1733317708.367154	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	48821.0
1733317708.367154	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	747625.0
1733317708.367154	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1845358.0
1733317708.367154	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9197.0
1733317708.367154	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9197.0
1733317708.367154	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733317708.367154	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3139.0
1733317708.367154	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	237.0
1733317708.367154	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	235.0
1733317708.367154	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	124.0
1733317708.367154	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	226.0
1733317708.367154	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29579.0
1733317708.367154	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20555.0
1733317708.367154	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733317708.367154	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	155.0
1733317708.367154	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733317708.367154	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	10.0
1733317708.367154	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733317708.367154	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733317708.367154	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733317708.367154	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733317708.367154	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733317708.367154	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	502050.0
1733317708.367154	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	704.0
1733317708.367154	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1397128.0
1733317708.367154	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	48821.0
1733317708.367154	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	747625.0
1733317708.367154	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1845358.0
1733317708.367154	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9197.0
1733317708.367154	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9197.0
1733317708.367154	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733317708.367154	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3139.0
1733317708.367154	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	237.0
1733317708.367154	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	235.0
1733317708.367154	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	124.0
1733317708.367154	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	226.0
1733317708.367154	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29579.0
1733317708.367154	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20504.0
1733317708.367154	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733317708.367154	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	155.0
1733317708.367154	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733317708.367154	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	10.0
1733317708.367154	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733317708.367154	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733317708.367154	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733317708.367154	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733317708.367154	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3920951898.0
1733317708.367154	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	12970488.0
1733317708.367154	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733317708.367154	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13020286.0
1733317708.367154	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.42946
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	705.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	206982.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21060.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3516.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	236.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	704.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	704.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1526.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1845407.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7720261.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3816813.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3816813.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8273179.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	747257.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	746853.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	747357.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	747338.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	729474.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	759349.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	747464.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	747801.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	997789.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3236.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1109.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3236.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	249943.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	8947.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	48821.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1845358.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718656.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26414.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	188.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	226.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	226.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9145.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29579.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135429.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29579.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29579.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21526.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	52.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	194.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20434.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20555.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20555.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20555.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41161.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20555.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	250.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	155.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1521.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	154.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733317708.367154	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733317708.367154	zeek	gauge	zeek	active-sessions	-	protocol	tcp	46.0
1733317708.367154	zeek	gauge	zeek	active-sessions	-	protocol	udp	0.0
1733317708.367154	zeek	gauge	zeek	active-sessions	-	protocol	icmp	3.0
1733317708.367154	zeek	counter	zeek	total-sessions	-	protocol	tcp	1796926.0
1733317708.367154	zeek	counter	zeek	total-sessions	-	protocol	udp	25425.0
1733317708.367154	zeek	counter	zeek	total-sessions	-	protocol	icmp	23056.0
1733317768.381984	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733317768.381984	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733317768.381984	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733317768.381984	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733317768.381984	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733317768.381984	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733317768.381984	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	502200.0
1733317768.381984	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	704.0
1733317768.381984	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1397526.0
1733317768.381984	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	48832.0
1733317768.381984	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	747876.0
1733317768.381984	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1845716.0
1733317768.381984	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9198.0
1733317768.381984	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9198.0
1733317768.381984	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733317768.381984	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3139.0
1733317768.381984	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	237.0
1733317768.381984	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	235.0
1733317768.381984	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	124.0
1733317768.381984	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	226.0
1733317768.381984	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29579.0
1733317768.381984	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20555.0
1733317768.381984	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733317768.381984	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	155.0
1733317768.381984	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733317768.381984	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	10.0
1733317768.381984	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733317768.381984	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733317768.381984	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733317768.381984	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733317768.381984	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733317768.381984	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	502200.0
1733317768.381984	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	704.0
1733317768.381984	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1397526.0
1733317768.381984	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	48832.0
1733317768.381984	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	747876.0
1733317768.381984	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1845716.0
1733317768.381984	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9198.0
1733317768.381984	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9198.0
1733317768.381984	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733317768.381984	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3139.0
1733317768.381984	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	237.0
1733317768.381984	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	235.0
1733317768.381984	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	124.0
1733317768.381984	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	226.0
1733317768.381984	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29579.0
1733317768.381984	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20504.0
1733317768.381984	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733317768.381984	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	155.0
1733317768.381984	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733317768.381984	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	10.0
1733317768.381984	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733317768.381984	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733317768.381984	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733317768.381984	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733317768.381984	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3921679901.0
1733317768.381984	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	12973939.0
1733317768.381984	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733317768.381984	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13023705.0
1733317768.381984	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.00462
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	705.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	207042.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21066.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3517.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	236.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	704.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	704.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1526.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1845746.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7722256.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3817827.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3817827.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8275746.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	747489.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	747085.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	747589.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	747570.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	729701.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	759581.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	747696.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	748033.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	998107.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3236.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1109.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3236.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	250029.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	8949.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	48832.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1845716.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718657.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26414.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	188.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	226.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	226.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9145.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29579.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135429.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29579.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29579.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21526.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	52.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	194.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20434.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20555.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20555.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20555.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41161.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20555.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	250.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	155.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1521.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	154.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733317768.381984	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733317768.381984	zeek	gauge	zeek	active-sessions	-	protocol	tcp	27.0
1733317768.381984	zeek	gauge	zeek	active-sessions	-	protocol	udp	0.0
1733317768.381984	zeek	gauge	zeek	active-sessions	-	protocol	icmp	3.0
1733317768.381984	zeek	counter	zeek	total-sessions	-	protocol	tcp	1797262.0
1733317768.381984	zeek	counter	zeek	total-sessions	-	protocol	udp	25425.0
1733317768.381984	zeek	counter	zeek	total-sessions	-	protocol	icmp	23059.0
1733317828.384901	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733317828.384901	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733317828.384901	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733317828.384901	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733317828.384901	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733317828.384901	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733317828.384901	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	502350.0
1733317828.384901	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	704.0
1733317828.384901	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1397829.0
1733317828.384901	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	48844.0
1733317828.384901	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	748033.0
1733317828.384901	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1846051.0
1733317828.384901	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9201.0
1733317828.384901	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9201.0
1733317828.384901	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733317828.384901	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3145.0
1733317828.384901	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	237.0
1733317828.384901	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	235.0
1733317828.384901	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	124.0
1733317828.384901	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	227.0
1733317828.384901	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29580.0
1733317828.384901	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20556.0
1733317828.384901	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733317828.384901	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	155.0
1733317828.384901	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733317828.384901	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	10.0
1733317828.384901	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733317828.384901	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733317828.384901	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733317828.384901	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733317828.384901	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733317828.384901	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	502350.0
1733317828.384901	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	704.0
1733317828.384901	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1397829.0
1733317828.384901	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	48844.0
1733317828.384901	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	748033.0
1733317828.384901	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1846051.0
1733317828.384901	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9201.0
1733317828.384901	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9201.0
1733317828.384901	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733317828.384901	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3145.0
1733317828.384901	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	237.0
1733317828.384901	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	235.0
1733317828.384901	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	124.0
1733317828.384901	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	227.0
1733317828.384901	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29580.0
1733317828.384901	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20505.0
1733317828.384901	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733317828.384901	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	155.0
1733317828.384901	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733317828.384901	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	10.0
1733317828.384901	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733317828.384901	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733317828.384901	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733317828.384901	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733317828.384901	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3922376784.0
1733317828.384901	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	12977435.0
1733317828.384901	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733317828.384901	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13027201.0
1733317828.384901	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.003849
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	705.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	207101.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21072.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3518.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	236.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	704.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	704.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1526.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1846141.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7723860.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3818613.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3818613.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8277631.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	747659.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	747255.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	747759.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	747740.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	729866.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	759758.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	747866.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	748203.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	998344.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3242.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1115.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3242.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	250096.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	8951.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	48844.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1846051.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718662.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26415.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	188.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	227.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	227.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9145.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29580.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135437.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29580.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29580.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21527.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	52.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	194.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20435.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20556.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20556.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20556.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41163.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20556.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	250.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	155.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1521.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	154.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733317828.384901	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733317828.384901	zeek	gauge	zeek	active-sessions	-	protocol	tcp	41.0
1733317828.384901	zeek	gauge	zeek	active-sessions	-	protocol	udp	3.0
1733317828.384901	zeek	gauge	zeek	active-sessions	-	protocol	icmp	46.0
1733317828.384901	zeek	counter	zeek	total-sessions	-	protocol	tcp	1797511.0
1733317828.384901	zeek	counter	zeek	total-sessions	-	protocol	udp	25525.0
1733317828.384901	zeek	counter	zeek	total-sessions	-	protocol	icmp	23105.0
1733317888.416958	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733317888.416958	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733317888.416958	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733317888.416958	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733317888.416958	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733317888.416958	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733317888.416958	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	502500.0
1733317888.416958	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	704.0
1733317888.416958	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1398122.0
1733317888.416958	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	48863.0
1733317888.416958	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	748198.0
1733317888.416958	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1846338.0
1733317888.416958	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9205.0
1733317888.416958	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9205.0
1733317888.416958	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733317888.416958	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3145.0
1733317888.416958	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	237.0
1733317888.416958	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	235.0
1733317888.416958	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	124.0
1733317888.416958	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	227.0
1733317888.416958	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29580.0
1733317888.416958	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20556.0
1733317888.416958	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733317888.416958	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	155.0
1733317888.416958	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733317888.416958	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	10.0
1733317888.416958	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733317888.416958	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733317888.416958	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733317888.416958	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733317888.416958	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733317888.416958	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	502500.0
1733317888.416958	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	704.0
1733317888.416958	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1398122.0
1733317888.416958	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	48863.0
1733317888.416958	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	748198.0
1733317888.416958	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1846338.0
1733317888.416958	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9205.0
1733317888.416958	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9205.0
1733317888.416958	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733317888.416958	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3145.0
1733317888.416958	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	237.0
1733317888.416958	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	235.0
1733317888.416958	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	124.0
1733317888.416958	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	227.0
1733317888.416958	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29580.0
1733317888.416958	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20505.0
1733317888.416958	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733317888.416958	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	155.0
1733317888.416958	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733317888.416958	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	10.0
1733317888.416958	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733317888.416958	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733317888.416958	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733317888.416958	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733317888.416958	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3922918714.0
1733317888.416958	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	12979940.0
1733317888.416958	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733317888.416958	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13029706.0
1733317888.416958	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.009554
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	705.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	207159.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21078.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3519.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	236.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	704.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	704.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1526.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1846383.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7725316.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3819364.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3819364.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8279428.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	747821.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	747417.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	747921.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	747902.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	730023.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	759920.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	748028.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	748365.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	998561.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3242.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1115.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3242.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	250151.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	8955.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	48863.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1846338.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718663.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26415.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	188.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	227.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	227.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9145.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29580.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135437.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29580.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29580.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21527.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	52.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	194.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20435.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20556.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20556.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20556.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41163.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20556.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	250.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	155.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1521.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	154.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733317888.416958	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733317888.416958	zeek	gauge	zeek	active-sessions	-	protocol	tcp	40.0
1733317888.416958	zeek	gauge	zeek	active-sessions	-	protocol	udp	0.0
1733317888.416958	zeek	gauge	zeek	active-sessions	-	protocol	icmp	5.0
1733317888.416958	zeek	counter	zeek	total-sessions	-	protocol	tcp	1797748.0
1733317888.416958	zeek	counter	zeek	total-sessions	-	protocol	udp	25525.0
1733317888.416958	zeek	counter	zeek	total-sessions	-	protocol	icmp	23110.0
1733317948.468321	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733317948.468321	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733317948.468321	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733317948.468321	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733317948.468321	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733317948.468321	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733317948.468321	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	502650.0
1733317948.468321	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	705.0
1733317948.468321	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1398510.0
1733317948.468321	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	48896.0
1733317948.468321	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	748410.0
1733317948.468321	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1846646.0
1733317948.468321	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9210.0
1733317948.468321	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9210.0
1733317948.468321	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733317948.468321	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3145.0
1733317948.468321	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	237.0
1733317948.468321	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	235.0
1733317948.468321	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	124.0
1733317948.468321	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	227.0
1733317948.468321	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29581.0
1733317948.468321	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20556.0
1733317948.468321	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733317948.468321	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	155.0
1733317948.468321	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733317948.468321	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	10.0
1733317948.468321	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733317948.468321	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733317948.468321	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733317948.468321	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733317948.468321	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733317948.468321	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	502650.0
1733317948.468321	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	705.0
1733317948.468321	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1398510.0
1733317948.468321	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	48896.0
1733317948.468321	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	748410.0
1733317948.468321	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1846646.0
1733317948.468321	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9210.0
1733317948.468321	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9210.0
1733317948.468321	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733317948.468321	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3145.0
1733317948.468321	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	237.0
1733317948.468321	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	235.0
1733317948.468321	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	124.0
1733317948.468321	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	227.0
1733317948.468321	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29581.0
1733317948.468321	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20505.0
1733317948.468321	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733317948.468321	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	155.0
1733317948.468321	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733317948.468321	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	10.0
1733317948.468321	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733317948.468321	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733317948.468321	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733317948.468321	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733317948.468321	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3923566424.0
1733317948.468321	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	12983004.0
1733317948.468321	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733317948.468321	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13032770.0
1733317948.468321	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.006322
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	706.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	207218.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21084.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3520.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	236.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	705.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	705.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1528.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1846685.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7727179.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3820362.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3820362.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8281758.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	748031.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	747627.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	748132.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	748112.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	730228.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	760132.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	748239.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	748577.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	998841.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3242.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1115.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3242.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	250219.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	8961.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	48896.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1846646.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718667.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26415.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	188.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	227.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	227.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9146.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29581.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135441.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29581.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29581.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21527.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	52.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	194.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20435.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20556.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20556.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20556.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41163.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20556.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	250.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	155.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1521.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	154.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733317948.468321	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733317948.468321	zeek	gauge	zeek	active-sessions	-	protocol	tcp	39.0
1733317948.468321	zeek	gauge	zeek	active-sessions	-	protocol	udp	0.0
1733317948.468321	zeek	gauge	zeek	active-sessions	-	protocol	icmp	0.0
1733317948.468321	zeek	counter	zeek	total-sessions	-	protocol	tcp	1798050.0
1733317948.468321	zeek	counter	zeek	total-sessions	-	protocol	udp	25525.0
1733317948.468321	zeek	counter	zeek	total-sessions	-	protocol	icmp	23110.0
1733318008.475456	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733318008.475456	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733318008.475456	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733318008.475456	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733318008.475456	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733318008.475456	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733318008.475456	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	502800.0
1733318008.475456	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	705.0
1733318008.475456	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1398690.0
1733318008.475456	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	48914.0
1733318008.475456	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	748511.0
1733318008.475456	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1846802.0
1733318008.475456	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9215.0
1733318008.475456	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9215.0
1733318008.475456	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733318008.475456	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3145.0
1733318008.475456	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	237.0
1733318008.475456	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	235.0
1733318008.475456	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	124.0
1733318008.475456	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	227.0
1733318008.475456	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29581.0
1733318008.475456	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20556.0
1733318008.475456	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733318008.475456	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	155.0
1733318008.475456	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733318008.475456	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	10.0
1733318008.475456	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733318008.475456	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733318008.475456	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733318008.475456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733318008.475456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733318008.475456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	502800.0
1733318008.475456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	705.0
1733318008.475456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1398690.0
1733318008.475456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	48914.0
1733318008.475456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	748511.0
1733318008.475456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1846802.0
1733318008.475456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9215.0
1733318008.475456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9215.0
1733318008.475456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733318008.475456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3145.0
1733318008.475456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	237.0
1733318008.475456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	235.0
1733318008.475456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	124.0
1733318008.475456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	227.0
1733318008.475456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29581.0
1733318008.475456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20505.0
1733318008.475456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733318008.475456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	155.0
1733318008.475456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733318008.475456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	10.0
1733318008.475456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733318008.475456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733318008.475456	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733318008.475456	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733318008.475456	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3923951493.0
1733318008.475456	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	12984758.0
1733318008.475456	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733318008.475456	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13034524.0
1733318008.475456	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.004184
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	706.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	207277.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21090.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3521.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	236.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	705.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	705.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1528.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1846826.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7728016.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3820801.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3820801.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8282774.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	748122.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	747718.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	748223.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	748203.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	730314.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	760223.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	748330.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	748668.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	998954.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3242.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1115.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3242.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	250241.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	8965.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	48914.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1846802.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718671.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26415.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	188.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	227.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	227.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9146.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29581.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135441.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29581.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29581.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21527.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	52.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	194.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20435.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20556.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20556.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20556.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41163.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20556.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	250.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	155.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1521.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	154.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733318008.475456	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733318008.475456	zeek	gauge	zeek	active-sessions	-	protocol	tcp	20.0
1733318008.475456	zeek	gauge	zeek	active-sessions	-	protocol	udp	2.0
1733318008.475456	zeek	gauge	zeek	active-sessions	-	protocol	icmp	2.0
1733318008.475456	zeek	counter	zeek	total-sessions	-	protocol	tcp	1798187.0
1733318008.475456	zeek	counter	zeek	total-sessions	-	protocol	udp	25527.0
1733318008.475456	zeek	counter	zeek	total-sessions	-	protocol	icmp	23112.0
1733318068.523459	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733318068.523459	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733318068.523459	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733318068.523459	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733318068.523459	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733318068.523459	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733318068.523459	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	502950.0
1733318068.523459	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	705.0
1733318068.523459	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1398928.0
1733318068.523459	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	48941.0
1733318068.523459	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	748637.0
1733318068.523459	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1846988.0
1733318068.523459	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9218.0
1733318068.523459	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9218.0
1733318068.523459	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733318068.523459	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3145.0
1733318068.523459	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	237.0
1733318068.523459	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	235.0
1733318068.523459	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	124.0
1733318068.523459	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	227.0
1733318068.523459	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29581.0
1733318068.523459	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20556.0
1733318068.523459	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733318068.523459	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	155.0
1733318068.523459	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733318068.523459	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	10.0
1733318068.523459	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733318068.523459	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733318068.523459	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733318068.523459	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733318068.523459	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733318068.523459	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	502950.0
1733318068.523459	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	705.0
1733318068.523459	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1398928.0
1733318068.523459	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	48941.0
1733318068.523459	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	748637.0
1733318068.523459	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1846988.0
1733318068.523459	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9218.0
1733318068.523459	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9218.0
1733318068.523459	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733318068.523459	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3145.0
1733318068.523459	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	237.0
1733318068.523459	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	235.0
1733318068.523459	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	124.0
1733318068.523459	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	227.0
1733318068.523459	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29581.0
1733318068.523459	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20505.0
1733318068.523459	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733318068.523459	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	155.0
1733318068.523459	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733318068.523459	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	10.0
1733318068.523459	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733318068.523459	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733318068.523459	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733318068.523459	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733318068.523459	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3924383742.0
1733318068.523459	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	12986747.0
1733318068.523459	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733318068.523459	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13036513.0
1733318068.523459	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.00385
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	706.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	207336.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21096.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3522.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	236.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	705.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	705.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1528.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1847011.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7729169.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3821431.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3821431.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8284186.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	748249.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	747845.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	748350.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	748330.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	730436.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	760350.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	748457.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	748795.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	999119.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3242.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1115.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3242.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	250279.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	8970.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	48941.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1846988.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718673.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26415.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	188.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	227.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	227.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9146.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29581.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135441.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29581.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29581.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21527.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	52.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	194.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20435.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20556.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20556.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20556.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41163.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20556.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	250.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	155.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1521.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	154.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733318068.523459	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733318068.523459	zeek	gauge	zeek	active-sessions	-	protocol	tcp	23.0
1733318068.523459	zeek	gauge	zeek	active-sessions	-	protocol	udp	0.0
1733318068.523459	zeek	gauge	zeek	active-sessions	-	protocol	icmp	0.0
1733318068.523459	zeek	counter	zeek	total-sessions	-	protocol	tcp	1798372.0
1733318068.523459	zeek	counter	zeek	total-sessions	-	protocol	udp	25527.0
1733318068.523459	zeek	counter	zeek	total-sessions	-	protocol	icmp	23112.0
1733318128.551666	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733318128.551666	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733318128.551666	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733318128.551666	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733318128.551666	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733318128.551666	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733318128.551666	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	503100.0
1733318128.551666	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	705.0
1733318128.551666	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1399157.0
1733318128.551666	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	48960.0
1733318128.551666	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	748739.0
1733318128.551666	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1847160.0
1733318128.551666	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9223.0
1733318128.551666	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9223.0
1733318128.551666	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733318128.551666	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3145.0
1733318128.551666	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	237.0
1733318128.551666	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	235.0
1733318128.551666	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	124.0
1733318128.551666	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	227.0
1733318128.551666	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29585.0
1733318128.551666	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20556.0
1733318128.551666	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733318128.551666	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	155.0
1733318128.551666	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733318128.551666	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	11.0
1733318128.551666	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733318128.551666	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733318128.551666	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733318128.551666	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733318128.551666	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733318128.551666	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	503100.0
1733318128.551666	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	705.0
1733318128.551666	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1399157.0
1733318128.551666	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	48960.0
1733318128.551666	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	748739.0
1733318128.551666	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1847160.0
1733318128.551666	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9223.0
1733318128.551666	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9223.0
1733318128.551666	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733318128.551666	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3145.0
1733318128.551666	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	237.0
1733318128.551666	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	235.0
1733318128.551666	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	124.0
1733318128.551666	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	227.0
1733318128.551666	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29585.0
1733318128.551666	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20505.0
1733318128.551666	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733318128.551666	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	155.0
1733318128.551666	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733318128.551666	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	11.0
1733318128.551666	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733318128.551666	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733318128.551666	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733318128.551666	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733318128.551666	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3924871852.0
1733318128.551666	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	12988754.0
1733318128.551666	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733318128.551666	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13038520.0
1733318128.551666	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.010625
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	706.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	207395.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21102.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3523.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	236.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	705.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	705.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1528.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1847196.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7730277.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3822018.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3822018.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8285477.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	748365.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	747961.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	748466.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	748446.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	730547.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	760470.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	748573.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	748911.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	999273.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3242.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1115.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3242.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	250317.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	8973.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	48960.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1847160.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718683.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26415.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	188.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	227.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	227.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9150.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29585.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135450.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29585.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29585.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21527.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	52.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	194.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20435.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20556.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20556.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20556.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41163.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20556.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	250.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	155.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1521.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	154.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733318128.551666	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733318128.551666	zeek	gauge	zeek	active-sessions	-	protocol	tcp	31.0
1733318128.551666	zeek	gauge	zeek	active-sessions	-	protocol	udp	4.0
1733318128.551666	zeek	gauge	zeek	active-sessions	-	protocol	icmp	1.0
1733318128.551666	zeek	counter	zeek	total-sessions	-	protocol	tcp	1798552.0
1733318128.551666	zeek	counter	zeek	total-sessions	-	protocol	udp	25531.0
1733318128.551666	zeek	counter	zeek	total-sessions	-	protocol	icmp	23113.0
1733318188.618932	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733318188.618932	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733318188.618932	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733318188.618932	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733318188.618932	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733318188.618932	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733318188.618932	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	503250.0
1733318188.618932	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	705.0
1733318188.618932	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1399528.0
1733318188.618932	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	48998.0
1733318188.618932	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	748935.0
1733318188.618932	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1847464.0
1733318188.618932	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9230.0
1733318188.618932	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9230.0
1733318188.618932	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733318188.618932	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3145.0
1733318188.618932	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	237.0
1733318188.618932	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	235.0
1733318188.618932	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	124.0
1733318188.618932	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	227.0
1733318188.618932	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29585.0
1733318188.618932	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20556.0
1733318188.618932	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733318188.618932	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	155.0
1733318188.618932	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733318188.618932	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	11.0
1733318188.618932	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733318188.618932	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733318188.618932	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733318188.618932	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733318188.618932	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733318188.618932	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	503250.0
1733318188.618932	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	705.0
1733318188.618932	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1399528.0
1733318188.618932	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	48998.0
1733318188.618932	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	748935.0
1733318188.618932	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1847464.0
1733318188.618932	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9230.0
1733318188.618932	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9230.0
1733318188.618932	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733318188.618932	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3145.0
1733318188.618932	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	237.0
1733318188.618932	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	235.0
1733318188.618932	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	124.0
1733318188.618932	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	227.0
1733318188.618932	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29585.0
1733318188.618932	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20505.0
1733318188.618932	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733318188.618932	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	155.0
1733318188.618932	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733318188.618932	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	11.0
1733318188.618932	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733318188.618932	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733318188.618932	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733318188.618932	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733318188.618932	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3925515571.0
1733318188.618932	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	12991768.0
1733318188.618932	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733318188.618932	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13041534.0
1733318188.618932	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.003561
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	706.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	207454.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21108.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3524.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	236.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	705.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	705.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1528.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1847506.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7732138.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3822975.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3822975.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8287714.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	748567.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	748163.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	748668.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	748648.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	730744.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	760673.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	748775.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	749113.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	999547.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3242.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1115.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3242.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	250389.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	8980.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	48998.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1847464.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718685.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26419.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	188.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	227.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	227.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9151.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29586.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135454.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29586.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29586.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21527.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	52.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	194.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20435.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20556.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20556.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20556.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41163.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20556.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	250.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	155.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1521.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	154.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733318188.618932	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733318188.618932	zeek	gauge	zeek	active-sessions	-	protocol	tcp	40.0
1733318188.618932	zeek	gauge	zeek	active-sessions	-	protocol	udp	0.0
1733318188.618932	zeek	gauge	zeek	active-sessions	-	protocol	icmp	2.0
1733318188.618932	zeek	counter	zeek	total-sessions	-	protocol	tcp	1798860.0
1733318188.618932	zeek	counter	zeek	total-sessions	-	protocol	udp	25531.0
1733318188.618932	zeek	counter	zeek	total-sessions	-	protocol	icmp	23115.0
1733318248.622188	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733318248.622188	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733318248.622188	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733318248.622188	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733318248.622188	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733318248.622188	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733318248.622188	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	503400.0
1733318248.622188	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	706.0
1733318248.622188	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1399950.0
1733318248.622188	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	49020.0
1733318248.622188	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	749175.0
1733318248.622188	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1847793.0
1733318248.622188	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9234.0
1733318248.622188	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9234.0
1733318248.622188	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733318248.622188	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3145.0
1733318248.622188	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	237.0
1733318248.622188	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	235.0
1733318248.622188	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	124.0
1733318248.622188	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	227.0
1733318248.622188	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29586.0
1733318248.622188	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20556.0
1733318248.622188	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733318248.622188	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	155.0
1733318248.622188	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733318248.622188	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	11.0
1733318248.622188	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733318248.622188	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733318248.622188	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733318248.622188	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733318248.622188	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733318248.622188	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	503400.0
1733318248.622188	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	706.0
1733318248.622188	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1399950.0
1733318248.622188	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	49020.0
1733318248.622188	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	749175.0
1733318248.622188	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1847793.0
1733318248.622188	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9234.0
1733318248.622188	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9234.0
1733318248.622188	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733318248.622188	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3145.0
1733318248.622188	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	237.0
1733318248.622188	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	235.0
1733318248.622188	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	124.0
1733318248.622188	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	227.0
1733318248.622188	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29586.0
1733318248.622188	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20505.0
1733318248.622188	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733318248.622188	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	155.0
1733318248.622188	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733318248.622188	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	11.0
1733318248.622188	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733318248.622188	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733318248.622188	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733318248.622188	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733318248.622188	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3926196246.0
1733318248.622188	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	12995081.0
1733318248.622188	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733318248.622188	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13044847.0
1733318248.622188	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.007732
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	707.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	207513.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21114.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3525.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	236.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	706.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	706.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1530.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1847829.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7734105.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3824078.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3824078.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8290292.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	748800.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	748396.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	748901.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	748881.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	730972.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	760906.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	749008.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	749346.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	999848.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3242.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1115.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3242.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	250457.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	8984.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	49020.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1847793.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718687.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26419.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	188.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	227.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	227.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9151.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29586.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135454.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29586.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29586.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21527.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	52.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	194.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20435.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20556.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20556.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20556.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41163.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20556.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	250.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	156.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1531.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	155.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733318248.622188	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733318248.622188	zeek	gauge	zeek	active-sessions	-	protocol	tcp	35.0
1733318248.622188	zeek	gauge	zeek	active-sessions	-	protocol	udp	1.0
1733318248.622188	zeek	gauge	zeek	active-sessions	-	protocol	icmp	1.0
1733318248.622188	zeek	counter	zeek	total-sessions	-	protocol	tcp	1799182.0
1733318248.622188	zeek	counter	zeek	total-sessions	-	protocol	udp	25532.0
1733318248.622188	zeek	counter	zeek	total-sessions	-	protocol	icmp	23116.0
1733318308.720266	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733318308.720266	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733318308.720266	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733318308.720266	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733318308.720266	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733318308.720266	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733318308.720266	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	503550.0
1733318308.720266	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	706.0
1733318308.720266	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1400330.0
1733318308.720266	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	49054.0
1733318308.720266	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	749395.0
1733318308.720266	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1848098.0
1733318308.720266	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9238.0
1733318308.720266	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9238.0
1733318308.720266	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733318308.720266	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3145.0
1733318308.720266	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	238.0
1733318308.720266	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	236.0
1733318308.720266	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	124.0
1733318308.720266	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	227.0
1733318308.720266	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29586.0
1733318308.720266	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20556.0
1733318308.720266	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733318308.720266	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	156.0
1733318308.720266	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733318308.720266	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	11.0
1733318308.720266	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733318308.720266	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733318308.720266	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733318308.720266	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733318308.720266	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733318308.720266	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	503550.0
1733318308.720266	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	706.0
1733318308.720266	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1400330.0
1733318308.720266	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	49054.0
1733318308.720266	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	749395.0
1733318308.720266	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1848098.0
1733318308.720266	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9238.0
1733318308.720266	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9238.0
1733318308.720266	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733318308.720266	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3145.0
1733318308.720266	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	238.0
1733318308.720266	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	236.0
1733318308.720266	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	124.0
1733318308.720266	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	227.0
1733318308.720266	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29586.0
1733318308.720266	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20505.0
1733318308.720266	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733318308.720266	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	156.0
1733318308.720266	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733318308.720266	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	11.0
1733318308.720266	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733318308.720266	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733318308.720266	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733318308.720266	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733318308.720266	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3926846362.0
1733318308.720266	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	12998231.0
1733318308.720266	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733318308.720266	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13047997.0
1733318308.720266	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.011128
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	707.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	207573.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21120.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3526.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	237.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	706.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	706.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1530.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1848121.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7735932.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3825071.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3825071.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8292595.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	749008.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	748604.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	749109.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	749089.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	731175.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	761115.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	749216.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	749554.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	1000119.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3243.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1115.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3243.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	250520.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	8990.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	49054.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1848098.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718688.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26421.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	188.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	227.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	227.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9151.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29586.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135454.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29586.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29586.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21527.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	52.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	195.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20435.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20556.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20556.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20556.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41163.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20556.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	250.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	157.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1541.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	156.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733318308.720266	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733318308.720266	zeek	gauge	zeek	active-sessions	-	protocol	tcp	19.0
1733318308.720266	zeek	gauge	zeek	active-sessions	-	protocol	udp	2.0
1733318308.720266	zeek	gauge	zeek	active-sessions	-	protocol	icmp	2.0
1733318308.720266	zeek	counter	zeek	total-sessions	-	protocol	tcp	1799469.0
1733318308.720266	zeek	counter	zeek	total-sessions	-	protocol	udp	25534.0
1733318308.720266	zeek	counter	zeek	total-sessions	-	protocol	icmp	23118.0
1733318368.804934	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733318368.804934	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733318368.804934	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733318368.804934	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733318368.804934	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733318368.804934	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733318368.804934	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	503700.0
1733318368.804934	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	706.0
1733318368.804934	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1400574.0
1733318368.804934	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	49082.0
1733318368.804934	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	749523.0
1733318368.804934	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1848286.0
1733318368.804934	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9245.0
1733318368.804934	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9245.0
1733318368.804934	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733318368.804934	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3146.0
1733318368.804934	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	238.0
1733318368.804934	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	236.0
1733318368.804934	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	124.0
1733318368.804934	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	227.0
1733318368.804934	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29586.0
1733318368.804934	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20556.0
1733318368.804934	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733318368.804934	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	157.0
1733318368.804934	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733318368.804934	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	11.0
1733318368.804934	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733318368.804934	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733318368.804934	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733318368.804934	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733318368.804934	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733318368.804934	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	503700.0
1733318368.804934	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	706.0
1733318368.804934	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1400574.0
1733318368.804934	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	49082.0
1733318368.804934	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	749523.0
1733318368.804934	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1848286.0
1733318368.804934	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9245.0
1733318368.804934	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9245.0
1733318368.804934	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733318368.804934	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3146.0
1733318368.804934	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	238.0
1733318368.804934	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	236.0
1733318368.804934	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	124.0
1733318368.804934	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	227.0
1733318368.804934	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29586.0
1733318368.804934	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20505.0
1733318368.804934	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733318368.804934	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	157.0
1733318368.804934	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733318368.804934	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	11.0
1733318368.804934	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733318368.804934	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733318368.804934	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733318368.804934	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733318368.804934	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3927307222.0
1733318368.804934	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	13000337.0
1733318368.804934	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733318368.804934	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13050103.0
1733318368.804934	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.001903
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	707.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	207631.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21126.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3527.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	237.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	706.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	706.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1530.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1848312.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7737164.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3825713.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3825713.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8294051.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	749139.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	748735.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	749240.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	749220.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	731301.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	761246.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	749347.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	749685.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	1000299.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3243.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1115.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3243.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	250569.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	8995.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	49082.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1848286.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718691.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26421.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	188.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	227.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	227.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9151.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29586.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135454.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29586.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29586.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21527.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	52.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	195.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20435.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20556.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20556.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20556.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41163.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20556.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	250.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	157.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1541.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	156.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733318368.804934	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733318368.804934	zeek	gauge	zeek	active-sessions	-	protocol	tcp	26.0
1733318368.804934	zeek	gauge	zeek	active-sessions	-	protocol	udp	0.0
1733318368.804934	zeek	gauge	zeek	active-sessions	-	protocol	icmp	0.0
1733318368.804934	zeek	counter	zeek	total-sessions	-	protocol	tcp	1799660.0
1733318368.804934	zeek	counter	zeek	total-sessions	-	protocol	udp	25534.0
1733318368.804934	zeek	counter	zeek	total-sessions	-	protocol	icmp	23118.0
1733318428.848059	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733318428.848059	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733318428.848059	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733318428.848059	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733318428.848059	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733318428.848059	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733318428.848059	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	503850.0
1733318428.848059	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	706.0
1733318428.848059	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1400835.0
1733318428.848059	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	49115.0
1733318428.848059	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	749661.0
1733318428.848059	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1848494.0
1733318428.848059	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9250.0
1733318428.848059	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9250.0
1733318428.848059	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733318428.848059	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3146.0
1733318428.848059	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	238.0
1733318428.848059	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	236.0
1733318428.848059	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	124.0
1733318428.848059	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	227.0
1733318428.848059	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29588.0
1733318428.848059	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20557.0
1733318428.848059	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733318428.848059	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	157.0
1733318428.848059	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733318428.848059	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	11.0
1733318428.848059	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733318428.848059	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733318428.848059	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733318428.848059	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733318428.848059	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733318428.848059	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	503850.0
1733318428.848059	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	706.0
1733318428.848059	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1400835.0
1733318428.848059	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	49115.0
1733318428.848059	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	749661.0
1733318428.848059	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1848494.0
1733318428.848059	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9250.0
1733318428.848059	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9250.0
1733318428.848059	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733318428.848059	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3146.0
1733318428.848059	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	238.0
1733318428.848059	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	236.0
1733318428.848059	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	124.0
1733318428.848059	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	227.0
1733318428.848059	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29588.0
1733318428.848059	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20506.0
1733318428.848059	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733318428.848059	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	157.0
1733318428.848059	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733318428.848059	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	11.0
1733318428.848059	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733318428.848059	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733318428.848059	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733318428.848059	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733318428.848059	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3927810475.0
1733318428.848059	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	13002625.0
1733318428.848059	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733318428.848059	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13052391.0
1733318428.848059	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.002851
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	707.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	207689.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21132.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3528.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	237.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	706.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	706.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1530.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1848521.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7738449.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3826433.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3826433.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8295578.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	749276.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	748872.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	749378.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	749357.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	731433.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	761386.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	749485.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	749823.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	1000481.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3243.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1115.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3243.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	250612.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	9001.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	49115.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1848494.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718699.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26421.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	188.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	227.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	227.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9153.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29588.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135466.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29588.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29588.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21527.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	53.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	195.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20435.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20557.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20557.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20557.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41165.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20557.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	250.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	157.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1541.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	156.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733318428.848059	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733318428.848059	zeek	gauge	zeek	active-sessions	-	protocol	tcp	27.0
1733318428.848059	zeek	gauge	zeek	active-sessions	-	protocol	udp	0.0
1733318428.848059	zeek	gauge	zeek	active-sessions	-	protocol	icmp	0.0
1733318428.848059	zeek	counter	zeek	total-sessions	-	protocol	tcp	1799869.0
1733318428.848059	zeek	counter	zeek	total-sessions	-	protocol	udp	25534.0
1733318428.848059	zeek	counter	zeek	total-sessions	-	protocol	icmp	23118.0
1733318488.903790	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733318488.903790	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733318488.903790	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733318488.903790	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733318488.903790	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733318488.903790	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733318488.903790	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	504000.0
1733318488.903790	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	706.0
1733318488.903790	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1401141.0
1733318488.903790	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	49141.0
1733318488.903790	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	749818.0
1733318488.903790	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1848726.0
1733318488.903790	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9255.0
1733318488.903790	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9255.0
1733318488.903790	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733318488.903790	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3146.0
1733318488.903790	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	238.0
1733318488.903790	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	236.0
1733318488.903790	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	124.0
1733318488.903790	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	227.0
1733318488.903790	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29588.0
1733318488.903790	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20557.0
1733318488.903790	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733318488.903790	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	157.0
1733318488.903790	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733318488.903790	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	11.0
1733318488.903790	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733318488.903790	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733318488.903790	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733318488.903790	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733318488.903790	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733318488.903790	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	504000.0
1733318488.903790	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	706.0
1733318488.903790	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1401141.0
1733318488.903790	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	49141.0
1733318488.903790	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	749818.0
1733318488.903790	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1848726.0
1733318488.903790	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9255.0
1733318488.903790	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9255.0
1733318488.903790	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733318488.903790	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3146.0
1733318488.903790	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	238.0
1733318488.903790	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	236.0
1733318488.903790	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	124.0
1733318488.903790	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	227.0
1733318488.903790	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29588.0
1733318488.903790	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20506.0
1733318488.903790	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733318488.903790	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	157.0
1733318488.903790	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733318488.903790	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	11.0
1733318488.903790	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733318488.903790	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733318488.903790	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733318488.903790	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733318488.903790	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3928584108.0
1733318488.903790	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	13005362.0
1733318488.903790	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733318488.903790	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13055128.0
1733318488.903790	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.006482
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	707.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	207748.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21138.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3529.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	237.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	706.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	706.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1530.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1848765.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7739976.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3827233.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3827233.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8297441.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	749444.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	749040.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	749546.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	749525.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	731596.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	761554.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	749653.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	749991.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	1000708.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3243.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1115.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3243.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	250671.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	9006.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	49141.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1848726.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718700.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26422.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	188.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	227.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	227.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9153.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29588.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135466.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29588.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29588.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21527.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	53.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	195.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20435.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20557.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20557.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20557.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41165.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20557.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	250.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	157.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1541.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	156.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733318488.903790	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733318488.903790	zeek	gauge	zeek	active-sessions	-	protocol	tcp	37.0
1733318488.903790	zeek	gauge	zeek	active-sessions	-	protocol	udp	0.0
1733318488.903790	zeek	gauge	zeek	active-sessions	-	protocol	icmp	2.0
1733318488.903790	zeek	counter	zeek	total-sessions	-	protocol	tcp	1800111.0
1733318488.903790	zeek	counter	zeek	total-sessions	-	protocol	udp	25534.0
1733318488.903790	zeek	counter	zeek	total-sessions	-	protocol	icmp	23120.0
1733318548.904677	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733318548.904677	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733318548.904677	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733318548.904677	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733318548.904677	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733318548.904677	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733318548.904677	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	504150.0
1733318548.904677	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	707.0
1733318548.904677	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1401494.0
1733318548.904677	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	49169.0
1733318548.904677	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	750030.0
1733318548.904677	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1849038.0
1733318548.904677	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9261.0
1733318548.904677	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9261.0
1733318548.904677	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733318548.904677	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3146.0
1733318548.904677	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	238.0
1733318548.904677	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	236.0
1733318548.904677	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	124.0
1733318548.904677	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	227.0
1733318548.904677	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29590.0
1733318548.904677	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20559.0
1733318548.904677	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733318548.904677	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	157.0
1733318548.904677	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733318548.904677	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	11.0
1733318548.904677	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733318548.904677	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733318548.904677	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733318548.904677	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733318548.904677	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733318548.904677	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	504150.0
1733318548.904677	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	707.0
1733318548.904677	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1401494.0
1733318548.904677	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	49169.0
1733318548.904677	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	750030.0
1733318548.904677	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1849038.0
1733318548.904677	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9261.0
1733318548.904677	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9261.0
1733318548.904677	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733318548.904677	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3146.0
1733318548.904677	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	238.0
1733318548.904677	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	236.0
1733318548.904677	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	124.0
1733318548.904677	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	227.0
1733318548.904677	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29590.0
1733318548.904677	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20508.0
1733318548.904677	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733318548.904677	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	157.0
1733318548.904677	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733318548.904677	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	11.0
1733318548.904677	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733318548.904677	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733318548.904677	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733318548.904677	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733318548.904677	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3929335770.0
1733318548.904677	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	13008611.0
1733318548.904677	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733318548.904677	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13058377.0
1733318548.904677	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.003201
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	708.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	207806.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21144.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3530.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	237.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	707.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	707.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1532.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1849054.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7741754.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3828146.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3828146.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8299579.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	749637.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	749233.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	749739.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	749718.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	731784.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	761747.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	749846.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	750184.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	1000968.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3243.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1115.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3243.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	250738.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	9011.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	49169.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1849038.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718709.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26425.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	188.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	227.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	227.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9153.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29590.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135482.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29590.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29590.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21530.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	53.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	195.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20437.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20559.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20559.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20559.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41169.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20559.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	250.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	157.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1541.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	156.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733318548.904677	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733318548.904677	zeek	gauge	zeek	active-sessions	-	protocol	tcp	13.0
1733318548.904677	zeek	gauge	zeek	active-sessions	-	protocol	udp	0.0
1733318548.904677	zeek	gauge	zeek	active-sessions	-	protocol	icmp	3.0
1733318548.904677	zeek	counter	zeek	total-sessions	-	protocol	tcp	1800397.0
1733318548.904677	zeek	counter	zeek	total-sessions	-	protocol	udp	25534.0
1733318548.904677	zeek	counter	zeek	total-sessions	-	protocol	icmp	23123.0
1733318608.949504	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733318608.949504	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733318608.949504	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733318608.949504	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733318608.949504	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733318608.949504	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733318608.949504	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	504300.0
1733318608.949504	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	707.0
1733318608.949504	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1401782.0
1733318608.949504	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	49207.0
1733318608.949504	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	750169.0
1733318608.949504	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1849269.0
1733318608.949504	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9267.0
1733318608.949504	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9267.0
1733318608.949504	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733318608.949504	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3146.0
1733318608.949504	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	238.0
1733318608.949504	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	236.0
1733318608.949504	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	124.0
1733318608.949504	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	227.0
1733318608.949504	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29593.0
1733318608.949504	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20561.0
1733318608.949504	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733318608.949504	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	157.0
1733318608.949504	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733318608.949504	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	11.0
1733318608.949504	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733318608.949504	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733318608.949504	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733318608.949504	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733318608.949504	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733318608.949504	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	504300.0
1733318608.949504	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	707.0
1733318608.949504	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1401782.0
1733318608.949504	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	49207.0
1733318608.949504	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	750169.0
1733318608.949504	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1849269.0
1733318608.949504	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9267.0
1733318608.949504	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9267.0
1733318608.949504	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733318608.949504	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3146.0
1733318608.949504	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	238.0
1733318608.949504	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	236.0
1733318608.949504	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	124.0
1733318608.949504	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	227.0
1733318608.949504	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29593.0
1733318608.949504	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20510.0
1733318608.949504	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733318608.949504	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	157.0
1733318608.949504	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733318608.949504	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	11.0
1733318608.949504	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733318608.949504	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733318608.949504	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733318608.949504	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733318608.949504	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3929919248.0
1733318608.949504	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	13011031.0
1733318608.949504	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733318608.949504	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13060797.0
1733318608.949504	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.000885
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	708.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	207864.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21150.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3531.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	237.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	707.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	707.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1532.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1849306.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7743235.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3828943.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3828943.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8301288.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	749791.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	749387.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	749893.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	749872.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	731933.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	761902.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	750000.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	750338.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	1001180.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3243.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1115.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3243.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	250796.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	9018.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	49207.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1849269.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718720.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26435.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	188.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	227.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	227.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9154.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29593.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135502.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29593.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29593.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21533.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	53.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	195.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20439.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20561.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20561.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20561.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41173.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20561.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	250.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	157.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1541.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	156.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733318608.949504	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733318608.949504	zeek	gauge	zeek	active-sessions	-	protocol	tcp	34.0
1733318608.949504	zeek	gauge	zeek	active-sessions	-	protocol	udp	0.0
1733318608.949504	zeek	gauge	zeek	active-sessions	-	protocol	icmp	4.0
1733318608.949504	zeek	counter	zeek	total-sessions	-	protocol	tcp	1800646.0
1733318608.949504	zeek	counter	zeek	total-sessions	-	protocol	udp	25534.0
1733318608.949504	zeek	counter	zeek	total-sessions	-	protocol	icmp	23127.0
1733318668.954370	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733318668.954370	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733318668.954370	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733318668.954370	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733318668.954370	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733318668.954370	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733318668.954370	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	504450.0
1733318668.954370	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	707.0
1733318668.954370	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1402081.0
1733318668.954370	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	49226.0
1733318668.954370	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	750334.0
1733318668.954370	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1849516.0
1733318668.954370	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9272.0
1733318668.954370	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9272.0
1733318668.954370	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733318668.954370	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3147.0
1733318668.954370	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	238.0
1733318668.954370	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	236.0
1733318668.954370	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	124.0
1733318668.954370	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	227.0
1733318668.954370	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29594.0
1733318668.954370	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20561.0
1733318668.954370	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733318668.954370	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	157.0
1733318668.954370	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733318668.954370	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	11.0
1733318668.954370	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733318668.954370	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733318668.954370	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733318668.954370	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733318668.954370	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733318668.954370	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	504450.0
1733318668.954370	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	707.0
1733318668.954370	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1402081.0
1733318668.954370	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	49226.0
1733318668.954370	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	750334.0
1733318668.954370	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1849516.0
1733318668.954370	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9272.0
1733318668.954370	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9272.0
1733318668.954370	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733318668.954370	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3147.0
1733318668.954370	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	238.0
1733318668.954370	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	236.0
1733318668.954370	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	124.0
1733318668.954370	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	227.0
1733318668.954370	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29594.0
1733318668.954370	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20510.0
1733318668.954370	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733318668.954370	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	157.0
1733318668.954370	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733318668.954370	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	11.0
1733318668.954370	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733318668.954370	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733318668.954370	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733318668.954370	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733318668.954370	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3930466906.0
1733318668.954370	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	13013590.0
1733318668.954370	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733318668.954370	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13063356.0
1733318668.954370	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.003755
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	708.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	207924.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21156.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3532.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	237.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	707.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	707.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1532.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1849553.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7744690.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3829765.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3829765.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8303123.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	749956.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	749552.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	750059.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	750037.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	732093.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	762070.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	750166.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	750504.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	1001404.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3244.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1115.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3244.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	250854.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	9022.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	49226.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1849516.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718723.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26435.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	188.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	227.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	227.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9155.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29594.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135506.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29594.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29594.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21533.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	53.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	196.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20439.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20561.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20561.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20561.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41173.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20561.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	250.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	157.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1541.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	156.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733318668.954370	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733318668.954370	zeek	gauge	zeek	active-sessions	-	protocol	tcp	31.0
1733318668.954370	zeek	gauge	zeek	active-sessions	-	protocol	udp	1.0
1733318668.954370	zeek	gauge	zeek	active-sessions	-	protocol	icmp	5.0
1733318668.954370	zeek	counter	zeek	total-sessions	-	protocol	tcp	1800885.0
1733318668.954370	zeek	counter	zeek	total-sessions	-	protocol	udp	25536.0
1733318668.954370	zeek	counter	zeek	total-sessions	-	protocol	icmp	23132.0
1733318729.030124	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733318729.030124	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733318729.030124	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733318729.030124	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733318729.030124	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733318729.030124	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733318729.030124	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	504600.0
1733318729.030124	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	707.0
1733318729.030124	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1402461.0
1733318729.030124	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	49276.0
1733318729.030124	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	750544.0
1733318729.030124	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1849910.0
1733318729.030124	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9282.0
1733318729.030124	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9282.0
1733318729.030124	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733318729.030124	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3149.0
1733318729.030124	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	238.0
1733318729.030124	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	236.0
1733318729.030124	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	124.0
1733318729.030124	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	228.0
1733318729.030124	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29594.0
1733318729.030124	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20561.0
1733318729.030124	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733318729.030124	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	157.0
1733318729.030124	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733318729.030124	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	11.0
1733318729.030124	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733318729.030124	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733318729.030124	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733318729.030124	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733318729.030124	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733318729.030124	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	504600.0
1733318729.030124	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	707.0
1733318729.030124	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1402461.0
1733318729.030124	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	49276.0
1733318729.030124	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	750544.0
1733318729.030124	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1849910.0
1733318729.030124	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9282.0
1733318729.030124	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9282.0
1733318729.030124	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733318729.030124	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3149.0
1733318729.030124	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	238.0
1733318729.030124	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	236.0
1733318729.030124	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	124.0
1733318729.030124	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	228.0
1733318729.030124	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29594.0
1733318729.030124	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20510.0
1733318729.030124	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733318729.030124	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	157.0
1733318729.030124	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733318729.030124	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	11.0
1733318729.030124	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733318729.030124	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733318729.030124	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733318729.030124	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733318729.030124	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3931147860.0
1733318729.030124	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	13017637.0
1733318729.030124	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733318729.030124	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13067410.0
1733318729.030124	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.009028
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	708.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	207983.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21162.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3533.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	237.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	707.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	707.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1532.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1849988.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7746674.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3830815.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3830815.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8305393.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	750161.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	749757.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	750264.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	750242.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	732293.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	762278.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	750371.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	750709.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	1001673.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3246.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1117.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3246.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	250918.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	9031.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	49276.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1849910.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718725.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26437.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	188.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	228.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	228.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9155.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29594.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135506.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29594.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29594.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21535.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	53.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	196.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20439.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20561.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20561.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20561.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41173.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20561.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	252.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	157.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1541.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	156.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733318729.030124	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733318729.030124	zeek	gauge	zeek	active-sessions	-	protocol	tcp	25.0
1733318729.030124	zeek	gauge	zeek	active-sessions	-	protocol	udp	2.0
1733318729.030124	zeek	gauge	zeek	active-sessions	-	protocol	icmp	49.0
1733318729.030124	zeek	counter	zeek	total-sessions	-	protocol	tcp	1801173.0
1733318729.030124	zeek	counter	zeek	total-sessions	-	protocol	udp	25634.0
1733318729.030124	zeek	counter	zeek	total-sessions	-	protocol	icmp	23181.0
1733318789.030166	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733318789.030166	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733318789.030166	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733318789.030166	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733318789.030166	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733318789.030166	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733318789.030166	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	504750.0
1733318789.030166	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	707.0
1733318789.030166	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1402760.0
1733318789.030166	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	49293.0
1733318789.030166	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	750696.0
1733318789.030166	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1850166.0
1733318789.030166	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9286.0
1733318789.030166	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9286.0
1733318789.030166	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733318789.030166	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3149.0
1733318789.030166	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	238.0
1733318789.030166	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	236.0
1733318789.030166	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	125.0
1733318789.030166	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	228.0
1733318789.030166	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29594.0
1733318789.030166	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20561.0
1733318789.030166	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733318789.030166	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	157.0
1733318789.030166	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733318789.030166	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	11.0
1733318789.030166	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733318789.030166	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733318789.030166	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733318789.030166	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733318789.030166	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733318789.030166	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	504750.0
1733318789.030166	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	707.0
1733318789.030166	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1402760.0
1733318789.030166	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	49293.0
1733318789.030166	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	750696.0
1733318789.030166	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1850166.0
1733318789.030166	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9286.0
1733318789.030166	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9286.0
1733318789.030166	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733318789.030166	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3149.0
1733318789.030166	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	238.0
1733318789.030166	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	236.0
1733318789.030166	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	125.0
1733318789.030166	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	228.0
1733318789.030166	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29594.0
1733318789.030166	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20510.0
1733318789.030166	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733318789.030166	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	157.0
1733318789.030166	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733318789.030166	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	11.0
1733318789.030166	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733318789.030166	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733318789.030166	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733318789.030166	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733318789.030166	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3931762335.0
1733318789.030166	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	13020167.0
1733318789.030166	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733318789.030166	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13069933.0
1733318789.030166	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.008994
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	708.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	208041.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21168.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3534.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	237.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	707.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	707.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1532.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1850211.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7748051.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3831609.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3831609.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8307146.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	750319.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	749915.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	750422.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	750400.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	732446.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	762437.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	750529.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	750867.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	1001875.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3246.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1117.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3246.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	250962.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	9034.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	49293.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1850166.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718730.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26438.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	189.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	228.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	228.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9155.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29594.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135506.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29594.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29594.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21535.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	53.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	196.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20439.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20561.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20561.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20561.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41173.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20561.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	252.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	157.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1541.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	156.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733318789.030166	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733318789.030166	zeek	gauge	zeek	active-sessions	-	protocol	tcp	39.0
1733318789.030166	zeek	gauge	zeek	active-sessions	-	protocol	udp	1.0
1733318789.030166	zeek	gauge	zeek	active-sessions	-	protocol	icmp	5.0
1733318789.030166	zeek	counter	zeek	total-sessions	-	protocol	tcp	1801390.0
1733318789.030166	zeek	counter	zeek	total-sessions	-	protocol	udp	25635.0
1733318789.030166	zeek	counter	zeek	total-sessions	-	protocol	icmp	23186.0
1733318849.129457	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733318849.129457	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733318849.129457	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733318849.129457	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733318849.129457	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733318849.129457	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733318849.129457	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	504900.0
1733318849.129457	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	708.0
1733318849.129457	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1403022.0
1733318849.129457	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	49325.0
1733318849.129457	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	750855.0
1733318849.129457	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1850406.0
1733318849.129457	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9292.0
1733318849.129457	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9292.0
1733318849.129457	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733318849.129457	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3149.0
1733318849.129457	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	238.0
1733318849.129457	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	236.0
1733318849.129457	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	125.0
1733318849.129457	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	228.0
1733318849.129457	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29594.0
1733318849.129457	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20561.0
1733318849.129457	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733318849.129457	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	157.0
1733318849.129457	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733318849.129457	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	11.0
1733318849.129457	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733318849.129457	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733318849.129457	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733318849.129457	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733318849.129457	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733318849.129457	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	504900.0
1733318849.129457	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	708.0
1733318849.129457	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1403022.0
1733318849.129457	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	49325.0
1733318849.129457	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	750855.0
1733318849.129457	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1850406.0
1733318849.129457	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9292.0
1733318849.129457	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9292.0
1733318849.129457	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733318849.129457	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3149.0
1733318849.129457	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	238.0
1733318849.129457	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	236.0
1733318849.129457	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	125.0
1733318849.129457	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	228.0
1733318849.129457	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29594.0
1733318849.129457	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20510.0
1733318849.129457	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733318849.129457	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	157.0
1733318849.129457	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733318849.129457	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	11.0
1733318849.129457	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733318849.129457	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733318849.129457	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733318849.129457	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733318849.129457	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3932287904.0
1733318849.129457	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	13022678.0
1733318849.129457	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733318849.129457	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13072444.0
1733318849.129457	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.000129
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	709.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	208101.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21174.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3535.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	237.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	708.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	708.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1534.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1850428.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7749412.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3832335.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3832335.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8308743.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	750463.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	750058.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	750566.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	750544.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	732584.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	762581.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	750673.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	751011.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	1002075.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3246.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1117.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3246.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	251018.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	9040.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	49325.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1850406.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718731.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26438.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	189.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	228.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	228.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9155.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29594.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135506.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29594.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29594.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21535.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	53.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	196.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20439.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20561.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20561.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20561.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41173.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20561.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	252.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	157.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1541.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	156.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733318849.129457	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733318849.129457	zeek	gauge	zeek	active-sessions	-	protocol	tcp	17.0
1733318849.129457	zeek	gauge	zeek	active-sessions	-	protocol	udp	1.0
1733318849.129457	zeek	gauge	zeek	active-sessions	-	protocol	icmp	4.0
1733318849.129457	zeek	counter	zeek	total-sessions	-	protocol	tcp	1801603.0
1733318849.129457	zeek	counter	zeek	total-sessions	-	protocol	udp	25636.0
1733318849.129457	zeek	counter	zeek	total-sessions	-	protocol	icmp	23189.0
1733318909.142380	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733318909.142380	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733318909.142380	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733318909.142380	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733318909.142380	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733318909.142380	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733318909.142380	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	505050.0
1733318909.142380	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	708.0
1733318909.142380	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1403253.0
1733318909.142380	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	49351.0
1733318909.142380	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	750971.0
1733318909.142380	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1850585.0
1733318909.142380	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9296.0
1733318909.142380	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9296.0
1733318909.142380	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733318909.142380	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3149.0
1733318909.142380	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	238.0
1733318909.142380	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	236.0
1733318909.142380	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	125.0
1733318909.142380	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	228.0
1733318909.142380	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29594.0
1733318909.142380	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20561.0
1733318909.142380	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733318909.142380	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	157.0
1733318909.142380	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733318909.142380	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	11.0
1733318909.142380	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733318909.142380	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733318909.142380	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733318909.142380	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733318909.142380	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733318909.142380	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	505050.0
1733318909.142380	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	708.0
1733318909.142380	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1403253.0
1733318909.142380	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	49351.0
1733318909.142380	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	750971.0
1733318909.142380	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1850585.0
1733318909.142380	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9296.0
1733318909.142380	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9296.0
1733318909.142380	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733318909.142380	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3149.0
1733318909.142380	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	238.0
1733318909.142380	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	236.0
1733318909.142380	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	125.0
1733318909.142380	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	228.0
1733318909.142380	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29594.0
1733318909.142380	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20510.0
1733318909.142380	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733318909.142380	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	157.0
1733318909.142380	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733318909.142380	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	11.0
1733318909.142380	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733318909.142380	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733318909.142380	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733318909.142380	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733318909.142380	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3932713054.0
1733318909.142380	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	13024615.0
1733318909.142380	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733318909.142380	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13074381.0
1733318909.142380	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.000159
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	709.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	208160.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21180.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3536.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	237.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	708.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	708.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1534.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1850616.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7750534.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3832962.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3832962.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8310138.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	750588.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	750183.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	750692.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	750669.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	732704.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	762707.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	750799.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	751137.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	1002240.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3246.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1117.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3246.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	251056.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	9045.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	49351.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1850585.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718733.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26438.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	189.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	228.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	228.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9155.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29594.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135506.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29594.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29594.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21535.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	54.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	196.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20439.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20561.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20561.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20561.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41173.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20561.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	252.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	157.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1541.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	156.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733318909.142380	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733318909.142380	zeek	gauge	zeek	active-sessions	-	protocol	tcp	28.0
1733318909.142380	zeek	gauge	zeek	active-sessions	-	protocol	udp	0.0
1733318909.142380	zeek	gauge	zeek	active-sessions	-	protocol	icmp	3.0
1733318909.142380	zeek	counter	zeek	total-sessions	-	protocol	tcp	1801788.0
1733318909.142380	zeek	counter	zeek	total-sessions	-	protocol	udp	25636.0
1733318909.142380	zeek	counter	zeek	total-sessions	-	protocol	icmp	23192.0
1733318969.197176	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733318969.197176	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733318969.197176	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733318969.197176	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733318969.197176	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733318969.197176	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733318969.197176	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	505200.0
1733318969.197176	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	708.0
1733318969.197176	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1403520.0
1733318969.197176	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	49382.0
1733318969.197176	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	751117.0
1733318969.197176	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1850807.0
1733318969.197176	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9301.0
1733318969.197176	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9301.0
1733318969.197176	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733318969.197176	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3149.0
1733318969.197176	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	238.0
1733318969.197176	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	236.0
1733318969.197176	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	125.0
1733318969.197176	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	228.0
1733318969.197176	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29594.0
1733318969.197176	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20561.0
1733318969.197176	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733318969.197176	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	157.0
1733318969.197176	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733318969.197176	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	11.0
1733318969.197176	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733318969.197176	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733318969.197176	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733318969.197176	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733318969.197176	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733318969.197176	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	505200.0
1733318969.197176	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	708.0
1733318969.197176	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1403520.0
1733318969.197176	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	49382.0
1733318969.197176	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	751117.0
1733318969.197176	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1850807.0
1733318969.197176	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9301.0
1733318969.197176	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9301.0
1733318969.197176	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733318969.197176	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3149.0
1733318969.197176	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	238.0
1733318969.197176	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	236.0
1733318969.197176	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	125.0
1733318969.197176	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	228.0
1733318969.197176	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29594.0
1733318969.197176	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20510.0
1733318969.197176	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733318969.197176	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	157.0
1733318969.197176	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733318969.197176	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	11.0
1733318969.197176	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733318969.197176	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733318969.197176	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733318969.197176	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733318969.197176	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3933209440.0
1733318969.197176	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	13026885.0
1733318969.197176	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733318969.197176	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13076651.0
1733318969.197176	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.005833
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	709.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	208219.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21186.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3537.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	237.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	708.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	708.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1534.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1850843.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7751877.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3833712.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3833712.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8311748.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	750733.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	750328.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	750837.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	750814.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	732844.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	762852.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	750944.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	751282.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	1002435.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3246.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1117.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3246.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	251106.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	9051.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	49382.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1850807.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718740.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26440.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	189.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	228.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	228.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9155.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29594.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135506.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29594.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29594.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21535.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	54.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	196.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20439.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20561.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20561.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20561.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41173.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20561.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	252.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	157.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1541.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	156.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733318969.197176	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733318969.197176	zeek	gauge	zeek	active-sessions	-	protocol	tcp	33.0
1733318969.197176	zeek	gauge	zeek	active-sessions	-	protocol	udp	0.0
1733318969.197176	zeek	gauge	zeek	active-sessions	-	protocol	icmp	3.0
1733318969.197176	zeek	counter	zeek	total-sessions	-	protocol	tcp	1802013.0
1733318969.197176	zeek	counter	zeek	total-sessions	-	protocol	udp	25636.0
1733318969.197176	zeek	counter	zeek	total-sessions	-	protocol	icmp	23194.0
1733319029.251878	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733319029.251878	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733319029.251878	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733319029.251878	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733319029.251878	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733319029.251878	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733319029.251878	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	505350.0
1733319029.251878	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	708.0
1733319029.251878	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1403698.0
1733319029.251878	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	49406.0
1733319029.251878	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	751217.0
1733319029.251878	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1850971.0
1733319029.251878	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9307.0
1733319029.251878	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9307.0
1733319029.251878	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733319029.251878	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3149.0
1733319029.251878	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	238.0
1733319029.251878	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	236.0
1733319029.251878	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	125.0
1733319029.251878	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	228.0
1733319029.251878	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29594.0
1733319029.251878	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20561.0
1733319029.251878	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733319029.251878	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	157.0
1733319029.251878	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733319029.251878	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	11.0
1733319029.251878	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733319029.251878	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733319029.251878	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733319029.251878	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733319029.251878	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733319029.251878	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	505350.0
1733319029.251878	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	708.0
1733319029.251878	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1403698.0
1733319029.251878	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	49406.0
1733319029.251878	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	751217.0
1733319029.251878	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1850971.0
1733319029.251878	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9307.0
1733319029.251878	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9307.0
1733319029.251878	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733319029.251878	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3149.0
1733319029.251878	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	238.0
1733319029.251878	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	236.0
1733319029.251878	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	125.0
1733319029.251878	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	228.0
1733319029.251878	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29594.0
1733319029.251878	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20510.0
1733319029.251878	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733319029.251878	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	157.0
1733319029.251878	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733319029.251878	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	11.0
1733319029.251878	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733319029.251878	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733319029.251878	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733319029.251878	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733319029.251878	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3933600932.0
1733319029.251878	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	13028697.0
1733319029.251878	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733319029.251878	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13078463.0
1733319029.251878	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.001816
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	709.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	208278.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21192.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3538.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	237.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	708.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	708.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1534.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1850994.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7752804.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3834206.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3834206.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8312786.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	750826.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	750421.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	750930.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	750907.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	732932.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	762945.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	751037.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	751375.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	1002557.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3246.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1117.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3246.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	251135.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	9056.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	49406.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1850971.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718741.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26440.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	189.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	228.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	228.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9155.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29594.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135506.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29594.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29594.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21535.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	54.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	196.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20439.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20561.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20561.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20561.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41173.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20561.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	252.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	157.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1541.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	156.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733319029.251878	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733319029.251878	zeek	gauge	zeek	active-sessions	-	protocol	tcp	20.0
1733319029.251878	zeek	gauge	zeek	active-sessions	-	protocol	udp	0.0
1733319029.251878	zeek	gauge	zeek	active-sessions	-	protocol	icmp	3.0
1733319029.251878	zeek	counter	zeek	total-sessions	-	protocol	tcp	1802161.0
1733319029.251878	zeek	counter	zeek	total-sessions	-	protocol	udp	25636.0
1733319029.251878	zeek	counter	zeek	total-sessions	-	protocol	icmp	23197.0
1733319089.253109	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733319089.253109	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733319089.253109	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733319089.253109	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733319089.253109	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733319089.253109	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733319089.253109	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	505500.0
1733319089.253109	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	708.0
1733319089.253109	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1403975.0
1733319089.253109	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	49429.0
1733319089.253109	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	751359.0
1733319089.253109	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1851190.0
1733319089.253109	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9312.0
1733319089.253109	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9312.0
1733319089.253109	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733319089.253109	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3149.0
1733319089.253109	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	238.0
1733319089.253109	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	236.0
1733319089.253109	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	125.0
1733319089.253109	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	228.0
1733319089.253109	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29594.0
1733319089.253109	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20561.0
1733319089.253109	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733319089.253109	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	157.0
1733319089.253109	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733319089.253109	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	11.0
1733319089.253109	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733319089.253109	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733319089.253109	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733319089.253109	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733319089.253109	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733319089.253109	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	505500.0
1733319089.253109	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	708.0
1733319089.253109	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1403975.0
1733319089.253109	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	49429.0
1733319089.253109	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	751359.0
1733319089.253109	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1851190.0
1733319089.253109	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9312.0
1733319089.253109	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9312.0
1733319089.253109	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733319089.253109	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3149.0
1733319089.253109	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	238.0
1733319089.253109	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	236.0
1733319089.253109	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	125.0
1733319089.253109	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	228.0
1733319089.253109	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29594.0
1733319089.253109	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20510.0
1733319089.253109	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733319089.253109	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	157.0
1733319089.253109	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733319089.253109	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	11.0
1733319089.253109	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733319089.253109	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733319089.253109	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733319089.253109	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733319089.253109	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3934230993.0
1733319089.253109	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	13031207.0
1733319089.253109	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733319089.253109	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13080973.0
1733319089.253109	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.011032
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	60.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	709.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	208337.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21198.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3539.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	237.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	708.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	708.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1534.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1851222.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7754214.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3834970.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3834970.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8314473.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	750978.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	750573.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	751082.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	751059.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	733079.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	763097.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	751189.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	751527.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	1002764.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3246.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1117.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3246.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	251190.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	9060.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	49429.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1851190.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718742.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26440.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	189.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	228.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	228.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9155.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29594.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135506.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29594.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29594.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21535.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	54.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	196.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20439.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20561.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20561.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20561.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41173.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20561.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	252.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	157.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1541.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	156.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733319089.253109	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733319089.253109	zeek	gauge	zeek	active-sessions	-	protocol	tcp	24.0
1733319089.253109	zeek	gauge	zeek	active-sessions	-	protocol	udp	2.0
1733319089.253109	zeek	gauge	zeek	active-sessions	-	protocol	icmp	7.0
1733319089.253109	zeek	counter	zeek	total-sessions	-	protocol	tcp	1802382.0
1733319089.253109	zeek	counter	zeek	total-sessions	-	protocol	udp	25638.0
1733319089.253109	zeek	counter	zeek	total-sessions	-	protocol	icmp	23203.0
1733319149.327454	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733319149.327454	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733319149.327454	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733319149.327454	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733319149.327454	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733319149.327454	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733319149.327454	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	505650.0
1733319149.327454	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	709.0
1733319149.327454	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1404230.0
1733319149.327454	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	49452.0
1733319149.327454	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	751491.0
1733319149.327454	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1851371.0
1733319149.327454	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9316.0
1733319149.327454	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9316.0
1733319149.327454	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733319149.327454	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3149.0
1733319149.327454	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	238.0
1733319149.327454	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	236.0
1733319149.327454	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	125.0
1733319149.327454	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	228.0
1733319149.327454	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29595.0
1733319149.327454	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20561.0
1733319149.327454	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733319149.327454	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	157.0
1733319149.327454	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733319149.327454	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	11.0
1733319149.327454	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733319149.327454	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733319149.327454	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733319149.327454	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733319149.327454	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733319149.327454	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	505650.0
1733319149.327454	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	709.0
1733319149.327454	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1404230.0
1733319149.327454	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	49452.0
1733319149.327454	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	751491.0
1733319149.327454	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1851371.0
1733319149.327454	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9316.0
1733319149.327454	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9316.0
1733319149.327454	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733319149.327454	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3149.0
1733319149.327454	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	238.0
1733319149.327454	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	236.0
1733319149.327454	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	125.0
1733319149.327454	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	228.0
1733319149.327454	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29595.0
1733319149.327454	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20510.0
1733319149.327454	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733319149.327454	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	157.0
1733319149.327454	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733319149.327454	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	11.0
1733319149.327454	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733319149.327454	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733319149.327454	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733319149.327454	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733319149.327454	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3934650623.0
1733319149.327454	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	13033283.0
1733319149.327454	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733319149.327454	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13083053.0
1733319149.327454	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.009845
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	61.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	710.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	208396.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21204.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3540.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	237.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	709.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	709.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1537.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1851398.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7755378.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3835653.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3835653.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8315929.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	751109.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	750704.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	751213.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	751190.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	733205.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	763229.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	751320.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	751658.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	1002925.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3246.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1117.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3246.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	251220.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	9064.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	49452.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1851371.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718745.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26441.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	189.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	228.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	228.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9156.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29595.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135510.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29595.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29595.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21535.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	54.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	196.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20439.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20561.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20561.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20561.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41173.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20561.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	252.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	157.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1541.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	156.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733319149.327454	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733319149.327454	zeek	gauge	zeek	active-sessions	-	protocol	tcp	24.0
1733319149.327454	zeek	gauge	zeek	active-sessions	-	protocol	udp	0.0
1733319149.327454	zeek	gauge	zeek	active-sessions	-	protocol	icmp	3.0
1733319149.327454	zeek	counter	zeek	total-sessions	-	protocol	tcp	1802554.0
1733319149.327454	zeek	counter	zeek	total-sessions	-	protocol	udp	25638.0
1733319149.327454	zeek	counter	zeek	total-sessions	-	protocol	icmp	23206.0
1733319209.356447	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733319209.356447	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733319209.356447	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733319209.356447	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733319209.356447	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733319209.356447	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733319209.356447	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	505800.0
1733319209.356447	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	709.0
1733319209.356447	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1404598.0
1733319209.356447	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	49474.0
1733319209.356447	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	751698.0
1733319209.356447	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1851658.0
1733319209.356447	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9319.0
1733319209.356447	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9319.0
1733319209.356447	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733319209.356447	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3149.0
1733319209.356447	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	239.0
1733319209.356447	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	237.0
1733319209.356447	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	125.0
1733319209.356447	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	228.0
1733319209.356447	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29595.0
1733319209.356447	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20561.0
1733319209.356447	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733319209.356447	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	157.0
1733319209.356447	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733319209.356447	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	11.0
1733319209.356447	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733319209.356447	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733319209.356447	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733319209.356447	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733319209.356447	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733319209.356447	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	505800.0
1733319209.356447	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	709.0
1733319209.356447	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1404598.0
1733319209.356447	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	49474.0
1733319209.356447	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	751698.0
1733319209.356447	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1851658.0
1733319209.356447	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9319.0
1733319209.356447	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9319.0
1733319209.356447	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733319209.356447	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3149.0
1733319209.356447	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	239.0
1733319209.356447	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	237.0
1733319209.356447	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	125.0
1733319209.356447	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	228.0
1733319209.356447	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29595.0
1733319209.356447	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20510.0
1733319209.356447	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733319209.356447	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	157.0
1733319209.356447	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733319209.356447	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	11.0
1733319209.356447	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733319209.356447	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733319209.356447	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733319209.356447	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733319209.356447	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3935292453.0
1733319209.356447	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	13036293.0
1733319209.356447	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733319209.356447	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13086059.0
1733319209.356447	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.007023
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	61.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	710.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	208456.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21210.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3541.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	238.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	709.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	709.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1537.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1851695.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7757144.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3836666.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3836666.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8318210.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	751315.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	750910.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	751419.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	751396.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	733406.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	763435.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	751526.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	751864.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	1003200.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3246.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1117.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3246.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	251289.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	9068.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	49474.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1851658.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718747.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26441.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	189.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	228.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	228.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9156.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29595.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135510.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29595.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29595.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21535.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	54.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	196.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20439.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20561.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20561.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20561.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41173.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20561.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	252.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	157.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1541.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	156.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733319209.356447	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733319209.356447	zeek	gauge	zeek	active-sessions	-	protocol	tcp	30.0
1733319209.356447	zeek	gauge	zeek	active-sessions	-	protocol	udp	0.0
1733319209.356447	zeek	gauge	zeek	active-sessions	-	protocol	icmp	7.0
1733319209.356447	zeek	counter	zeek	total-sessions	-	protocol	tcp	1802845.0
1733319209.356447	zeek	counter	zeek	total-sessions	-	protocol	udp	25638.0
1733319209.356447	zeek	counter	zeek	total-sessions	-	protocol	icmp	23212.0
1733319269.390381	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733319269.390381	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733319269.390381	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733319269.390381	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733319269.390381	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733319269.390381	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733319269.390381	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	505950.0
1733319269.390381	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	709.0
1733319269.390381	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1404924.0
1733319269.390381	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	49497.0
1733319269.390381	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	751871.0
1733319269.390381	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1851910.0
1733319269.390381	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9324.0
1733319269.390381	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9324.0
1733319269.390381	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733319269.390381	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3149.0
1733319269.390381	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	239.0
1733319269.390381	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	237.0
1733319269.390381	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	125.0
1733319269.390381	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	228.0
1733319269.390381	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29595.0
1733319269.390381	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20561.0
1733319269.390381	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733319269.390381	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	157.0
1733319269.390381	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733319269.390381	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	11.0
1733319269.390381	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733319269.390381	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733319269.390381	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733319269.390381	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733319269.390381	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733319269.390381	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	505950.0
1733319269.390381	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	709.0
1733319269.390381	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1404924.0
1733319269.390381	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	49497.0
1733319269.390381	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	751871.0
1733319269.390381	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1851910.0
1733319269.390381	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9324.0
1733319269.390381	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9324.0
1733319269.390381	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733319269.390381	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3149.0
1733319269.390381	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	239.0
1733319269.390381	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	237.0
1733319269.390381	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	125.0
1733319269.390381	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	228.0
1733319269.390381	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29595.0
1733319269.390381	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20510.0
1733319269.390381	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733319269.390381	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	157.0
1733319269.390381	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733319269.390381	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	11.0
1733319269.390381	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733319269.390381	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733319269.390381	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733319269.390381	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733319269.390381	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3935875173.0
1733319269.390381	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	13039015.0
1733319269.390381	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733319269.390381	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13088781.0
1733319269.390381	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.00506
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	61.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	710.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	208515.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21216.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3542.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	238.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	709.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	709.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1537.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1851967.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7758766.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3837583.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3837583.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8320271.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	751501.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	751096.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	751605.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	751582.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	733587.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	763621.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	751712.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	752050.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	1003455.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3246.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1117.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3246.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	251358.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	9072.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	49497.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1851910.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718748.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26441.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	189.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	228.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	228.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9156.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29595.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135510.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29595.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29595.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21535.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	54.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	196.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20439.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20561.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20561.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20561.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41173.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20561.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	252.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	157.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1541.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	156.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733319269.390381	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733319269.390381	zeek	gauge	zeek	active-sessions	-	protocol	tcp	46.0
1733319269.390381	zeek	gauge	zeek	active-sessions	-	protocol	udp	1.0
1733319269.390381	zeek	gauge	zeek	active-sessions	-	protocol	icmp	9.0
1733319269.390381	zeek	counter	zeek	total-sessions	-	protocol	tcp	1803109.0
1733319269.390381	zeek	counter	zeek	total-sessions	-	protocol	udp	25639.0
1733319269.390381	zeek	counter	zeek	total-sessions	-	protocol	icmp	23219.0
1733319329.453110	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733319329.453110	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733319329.453110	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733319329.453110	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733319329.453110	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733319329.453110	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733319329.453110	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	506100.0
1733319329.453110	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	709.0
1733319329.453110	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1405291.0
1733319329.453110	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	49524.0
1733319329.453110	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	752079.0
1733319329.453110	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1852216.0
1733319329.453110	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9329.0
1733319329.453110	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9329.0
1733319329.453110	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733319329.453110	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3149.0
1733319329.453110	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	239.0
1733319329.453110	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	237.0
1733319329.453110	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	125.0
1733319329.453110	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	228.0
1733319329.453110	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29595.0
1733319329.453110	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20561.0
1733319329.453110	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733319329.453110	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	157.0
1733319329.453110	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733319329.453110	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	11.0
1733319329.453110	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733319329.453110	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733319329.453110	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733319329.453110	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733319329.453110	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733319329.453110	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	506100.0
1733319329.453110	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	709.0
1733319329.453110	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1405291.0
1733319329.453110	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	49524.0
1733319329.453110	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	752079.0
1733319329.453110	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1852216.0
1733319329.453110	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9329.0
1733319329.453110	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9329.0
1733319329.453110	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733319329.453110	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3149.0
1733319329.453110	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	239.0
1733319329.453110	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	237.0
1733319329.453110	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	125.0
1733319329.453110	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	228.0
1733319329.453110	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29595.0
1733319329.453110	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20510.0
1733319329.453110	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733319329.453110	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	157.0
1733319329.453110	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733319329.453110	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	11.0
1733319329.453110	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733319329.453110	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733319329.453110	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733319329.453110	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733319329.453110	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3936625660.0
1733319329.453110	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	13042280.0
1733319329.453110	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733319329.453110	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13092046.0
1733319329.453110	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.001597
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	61.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	710.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	208573.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21222.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3543.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	238.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	709.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	709.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1537.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1852262.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7760541.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3838623.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3838623.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8322496.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	751702.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	751297.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	751806.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	751783.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	733783.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	763822.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	751913.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	752251.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	1003722.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3246.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1117.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3246.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	251424.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	9077.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	49524.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1852216.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718749.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26441.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	189.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	228.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	228.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9156.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29595.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135510.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29595.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29595.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21535.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	54.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	196.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20439.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20561.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20561.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20561.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41173.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20561.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	252.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	157.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1541.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	156.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733319329.453110	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733319329.453110	zeek	gauge	zeek	active-sessions	-	protocol	tcp	34.0
1733319329.453110	zeek	gauge	zeek	active-sessions	-	protocol	udp	0.0
1733319329.453110	zeek	gauge	zeek	active-sessions	-	protocol	icmp	11.0
1733319329.453110	zeek	counter	zeek	total-sessions	-	protocol	tcp	1803393.0
1733319329.453110	zeek	counter	zeek	total-sessions	-	protocol	udp	25639.0
1733319329.453110	zeek	counter	zeek	total-sessions	-	protocol	icmp	23230.0
1733319389.459451	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733319389.459451	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733319389.459451	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733319389.459451	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733319389.459451	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733319389.459451	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733319389.459451	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	506250.0
1733319389.459451	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	709.0
1733319389.459451	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1405623.0
1733319389.459451	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	49537.0
1733319389.459451	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	752254.0
1733319389.459451	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1852470.0
1733319389.459451	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9330.0
1733319389.459451	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9330.0
1733319389.459451	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733319389.459451	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3149.0
1733319389.459451	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	239.0
1733319389.459451	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	237.0
1733319389.459451	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	125.0
1733319389.459451	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	228.0
1733319389.459451	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29596.0
1733319389.459451	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20561.0
1733319389.459451	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733319389.459451	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	157.0
1733319389.459451	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733319389.459451	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	11.0
1733319389.459451	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733319389.459451	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733319389.459451	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733319389.459451	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733319389.459451	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733319389.459451	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	506250.0
1733319389.459451	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	709.0
1733319389.459451	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1405623.0
1733319389.459451	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	49537.0
1733319389.459451	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	752254.0
1733319389.459451	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1852470.0
1733319389.459451	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9330.0
1733319389.459451	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9330.0
1733319389.459451	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733319389.459451	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3149.0
1733319389.459451	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	239.0
1733319389.459451	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	237.0
1733319389.459451	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	125.0
1733319389.459451	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	228.0
1733319389.459451	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29596.0
1733319389.459451	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20510.0
1733319389.459451	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733319389.459451	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	157.0
1733319389.459451	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733319389.459451	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	11.0
1733319389.459451	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733319389.459451	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733319389.459451	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733319389.459451	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733319389.459451	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3937296396.0
1733319389.459451	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	13045130.0
1733319389.459451	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733319389.459451	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13094896.0
1733319389.459451	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.007396
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	61.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	710.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	208632.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21228.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3544.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	238.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	709.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	709.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1537.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1852535.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7762066.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3839521.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3839521.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8324458.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	751879.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	751474.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	751983.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	751960.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	733955.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	764000.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	752090.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	752428.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	1003953.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3246.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1117.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3246.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	251478.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	9079.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	49537.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1852470.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718758.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26444.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	189.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	228.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	228.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9157.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29596.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135513.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29596.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29596.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21535.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	54.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	196.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20439.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20561.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20561.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20561.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41173.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20561.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	252.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	158.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1551.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	157.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733319389.459451	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733319389.459451	zeek	gauge	zeek	active-sessions	-	protocol	tcp	49.0
1733319389.459451	zeek	gauge	zeek	active-sessions	-	protocol	udp	3.0
1733319389.459451	zeek	gauge	zeek	active-sessions	-	protocol	icmp	13.0
1733319389.459451	zeek	counter	zeek	total-sessions	-	protocol	tcp	1803651.0
1733319389.459451	zeek	counter	zeek	total-sessions	-	protocol	udp	25642.0
1733319389.459451	zeek	counter	zeek	total-sessions	-	protocol	icmp	23242.0
1733319449.471963	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733319449.471963	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733319449.471963	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733319449.471963	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733319449.471963	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733319449.471963	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733319449.471963	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	506400.0
1733319449.471963	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	710.0
1733319449.471963	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1405880.0
1733319449.471963	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	49567.0
1733319449.471963	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	752384.0
1733319449.471963	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1852702.0
1733319449.471963	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9335.0
1733319449.471963	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9335.0
1733319449.471963	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733319449.471963	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3149.0
1733319449.471963	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	239.0
1733319449.471963	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	237.0
1733319449.471963	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	125.0
1733319449.471963	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	228.0
1733319449.471963	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29596.0
1733319449.471963	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20561.0
1733319449.471963	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733319449.471963	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	158.0
1733319449.471963	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733319449.471963	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	11.0
1733319449.471963	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733319449.471963	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733319449.471963	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733319449.471963	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733319449.471963	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733319449.471963	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	506400.0
1733319449.471963	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	710.0
1733319449.471963	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1405880.0
1733319449.471963	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	49567.0
1733319449.471963	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	752384.0
1733319449.471963	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1852702.0
1733319449.471963	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9335.0
1733319449.471963	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9335.0
1733319449.471963	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733319449.471963	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3149.0
1733319449.471963	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	239.0
1733319449.471963	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	237.0
1733319449.471963	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	125.0
1733319449.471963	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	228.0
1733319449.471963	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29596.0
1733319449.471963	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20510.0
1733319449.471963	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733319449.471963	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	158.0
1733319449.471963	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733319449.471963	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	11.0
1733319449.471963	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733319449.471963	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733319449.471963	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733319449.471963	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733319449.471963	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3937784259.0
1733319449.471963	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	13047384.0
1733319449.471963	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733319449.471963	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13097150.0
1733319449.471963	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.006517
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	61.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	711.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	208691.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21234.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3545.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	238.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	710.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	710.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1539.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1852761.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7763376.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3840269.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3840269.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8326046.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	752022.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	751617.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	752126.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	752103.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	734093.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	764143.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	752233.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	752571.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	1004151.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3246.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1117.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3246.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	251533.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	9085.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	49567.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1852702.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718759.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26444.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	189.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	228.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	228.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9157.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29596.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135513.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29596.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29596.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21535.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	54.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	196.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20439.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20561.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20561.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20561.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41173.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20561.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	252.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	158.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1551.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	157.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733319449.471963	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733319449.471963	zeek	gauge	zeek	active-sessions	-	protocol	tcp	52.0
1733319449.471963	zeek	gauge	zeek	active-sessions	-	protocol	udp	0.0
1733319449.471963	zeek	gauge	zeek	active-sessions	-	protocol	icmp	7.0
1733319449.471963	zeek	counter	zeek	total-sessions	-	protocol	tcp	1803871.0
1733319449.471963	zeek	counter	zeek	total-sessions	-	protocol	udp	25642.0
1733319449.471963	zeek	counter	zeek	total-sessions	-	protocol	icmp	23248.0
1733319509.519827	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733319509.519827	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733319509.519827	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733319509.519827	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733319509.519827	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733319509.519827	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733319509.519827	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	506550.0
1733319509.519827	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	710.0
1733319509.519827	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1406250.0
1733319509.519827	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	49576.0
1733319509.519827	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	752617.0
1733319509.519827	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1853031.0
1733319509.519827	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9339.0
1733319509.519827	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9339.0
1733319509.519827	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733319509.519827	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3149.0
1733319509.519827	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	239.0
1733319509.519827	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	237.0
1733319509.519827	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	125.0
1733319509.519827	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	228.0
1733319509.519827	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29596.0
1733319509.519827	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20561.0
1733319509.519827	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733319509.519827	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	158.0
1733319509.519827	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733319509.519827	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	11.0
1733319509.519827	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733319509.519827	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733319509.519827	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733319509.519827	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733319509.519827	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733319509.519827	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	506550.0
1733319509.519827	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	710.0
1733319509.519827	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1406250.0
1733319509.519827	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	49576.0
1733319509.519827	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	752617.0
1733319509.519827	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1853031.0
1733319509.519827	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9339.0
1733319509.519827	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9339.0
1733319509.519827	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733319509.519827	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3149.0
1733319509.519827	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	239.0
1733319509.519827	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	237.0
1733319509.519827	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	125.0
1733319509.519827	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	228.0
1733319509.519827	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29596.0
1733319509.519827	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20510.0
1733319509.519827	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733319509.519827	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	158.0
1733319509.519827	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733319509.519827	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	11.0
1733319509.519827	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733319509.519827	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733319509.519827	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733319509.519827	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733319509.519827	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3938485131.0
1733319509.519827	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	13050711.0
1733319509.519827	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733319509.519827	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13100477.0
1733319509.519827	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.000718
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	61.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	711.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	208750.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21240.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3546.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	238.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	710.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	710.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1539.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1853071.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7765175.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3841272.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3841272.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8328305.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	752226.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	751821.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	752330.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	752307.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	734292.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	764347.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	752437.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	752775.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	1004421.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3246.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1117.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3246.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	251599.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	9087.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	49576.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1853031.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718760.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26444.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	189.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	228.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	228.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9157.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29596.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135513.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29596.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29596.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21535.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	54.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	196.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20439.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20561.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20561.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20561.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41173.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20561.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	252.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	158.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1551.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	157.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733319509.519827	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733319509.519827	zeek	gauge	zeek	active-sessions	-	protocol	tcp	29.0
1733319509.519827	zeek	gauge	zeek	active-sessions	-	protocol	udp	2.0
1733319509.519827	zeek	gauge	zeek	active-sessions	-	protocol	icmp	9.0
1733319509.519827	zeek	counter	zeek	total-sessions	-	protocol	tcp	1804171.0
1733319509.519827	zeek	counter	zeek	total-sessions	-	protocol	udp	25644.0
1733319509.519827	zeek	counter	zeek	total-sessions	-	protocol	icmp	23256.0
1733319569.526043	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733319569.526043	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733319569.526043	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733319569.526043	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733319569.526043	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733319569.526043	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733319569.526043	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	506700.0
1733319569.526043	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	710.0
1733319569.526043	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1406617.0
1733319569.526043	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	49609.0
1733319569.526043	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	752813.0
1733319569.526043	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1853325.0
1733319569.526043	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9345.0
1733319569.526043	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9345.0
1733319569.526043	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733319569.526043	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3149.0
1733319569.526043	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	239.0
1733319569.526043	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	237.0
1733319569.526043	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	125.0
1733319569.526043	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	228.0
1733319569.526043	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29596.0
1733319569.526043	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20561.0
1733319569.526043	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733319569.526043	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	158.0
1733319569.526043	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733319569.526043	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	11.0
1733319569.526043	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733319569.526043	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733319569.526043	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733319569.526043	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733319569.526043	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733319569.526043	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	506700.0
1733319569.526043	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	710.0
1733319569.526043	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1406617.0
1733319569.526043	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	49609.0
1733319569.526043	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	752813.0
1733319569.526043	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1853325.0
1733319569.526043	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9345.0
1733319569.526043	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9345.0
1733319569.526043	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733319569.526043	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3149.0
1733319569.526043	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	239.0
1733319569.526043	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	237.0
1733319569.526043	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	125.0
1733319569.526043	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	228.0
1733319569.526043	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29596.0
1733319569.526043	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20510.0
1733319569.526043	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733319569.526043	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	158.0
1733319569.526043	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733319569.526043	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	11.0
1733319569.526043	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733319569.526043	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733319569.526043	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733319569.526043	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733319569.526043	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3939120073.0
1733319569.526043	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	13053769.0
1733319569.526043	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733319569.526043	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13103537.0
1733319569.526043	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.006747
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	61.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	711.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	208809.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21246.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3547.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	238.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	710.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	710.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1539.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1853364.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7766988.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3842306.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3842306.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8330564.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	752430.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	752025.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	752534.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	752511.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	734491.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	764551.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	752641.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	752979.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	1004692.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3246.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1117.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3246.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	251666.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	9094.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	49609.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1853325.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718761.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26444.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	189.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	228.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	228.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9157.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29596.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135513.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29596.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29596.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21535.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	54.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	196.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20439.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20561.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20561.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20561.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41173.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20561.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	252.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	158.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1551.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	157.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733319569.526043	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733319569.526043	zeek	gauge	zeek	active-sessions	-	protocol	tcp	32.0
1733319569.526043	zeek	gauge	zeek	active-sessions	-	protocol	udp	0.0
1733319569.526043	zeek	gauge	zeek	active-sessions	-	protocol	icmp	7.0
1733319569.526043	zeek	counter	zeek	total-sessions	-	protocol	tcp	1804458.0
1733319569.526043	zeek	counter	zeek	total-sessions	-	protocol	udp	25644.0
1733319569.526043	zeek	counter	zeek	total-sessions	-	protocol	icmp	23262.0
1733319629.552235	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733319629.552235	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733319629.552235	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733319629.552235	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733319629.552235	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733319629.552235	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733319629.552235	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	506850.0
1733319629.552235	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	710.0
1733319629.552235	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1406887.0
1733319629.552235	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	49617.0
1733319629.552235	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	752967.0
1733319629.552235	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1853551.0
1733319629.552235	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9348.0
1733319629.552235	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9348.0
1733319629.552235	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733319629.552235	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3149.0
1733319629.552235	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	239.0
1733319629.552235	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	237.0
1733319629.552235	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	125.0
1733319629.552235	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	228.0
1733319629.552235	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29597.0
1733319629.552235	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20561.0
1733319629.552235	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733319629.552235	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	158.0
1733319629.552235	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733319629.552235	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	11.0
1733319629.552235	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733319629.552235	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733319629.552235	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733319629.552235	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733319629.552235	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733319629.552235	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	506850.0
1733319629.552235	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	710.0
1733319629.552235	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1406887.0
1733319629.552235	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	49617.0
1733319629.552235	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	752967.0
1733319629.552235	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1853551.0
1733319629.552235	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9348.0
1733319629.552235	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9348.0
1733319629.552235	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733319629.552235	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3149.0
1733319629.552235	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	239.0
1733319629.552235	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	237.0
1733319629.552235	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	125.0
1733319629.552235	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	228.0
1733319629.552235	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29597.0
1733319629.552235	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20510.0
1733319629.552235	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733319629.552235	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	158.0
1733319629.552235	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733319629.552235	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	11.0
1733319629.552235	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733319629.552235	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733319629.552235	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733319629.552235	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733319629.552235	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3939632924.0
1733319629.552235	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	13056117.0
1733319629.552235	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733319629.552235	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13105883.0
1733319629.552235	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.003163
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	61.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	711.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	208868.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21252.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3548.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	238.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	710.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	710.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1539.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1853594.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7768298.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3843049.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3843049.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8332240.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	752581.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	752176.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	752685.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	752662.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	734637.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	764703.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	752792.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	753130.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	1004896.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3246.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1117.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3246.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	251719.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	9096.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	49617.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1853551.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718764.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26444.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	189.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	228.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	228.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9158.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29597.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135517.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29597.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29597.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21536.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	54.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	196.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20439.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20561.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20561.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20561.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41173.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20561.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	252.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	158.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1551.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	157.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733319629.552235	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733319629.552235	zeek	gauge	zeek	active-sessions	-	protocol	tcp	31.0
1733319629.552235	zeek	gauge	zeek	active-sessions	-	protocol	udp	1.0
1733319629.552235	zeek	gauge	zeek	active-sessions	-	protocol	icmp	12.0
1733319629.552235	zeek	counter	zeek	total-sessions	-	protocol	tcp	1804676.0
1733319629.552235	zeek	counter	zeek	total-sessions	-	protocol	udp	25645.0
1733319629.552235	zeek	counter	zeek	total-sessions	-	protocol	icmp	23274.0
1733319689.589665	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733319689.589665	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733319689.589665	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733319689.589665	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733319689.589665	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733319689.589665	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733319689.589665	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	507000.0
1733319689.589665	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	710.0
1733319689.589665	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1407196.0
1733319689.589665	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	49641.0
1733319689.589665	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	753113.0
1733319689.589665	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1853846.0
1733319689.589665	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9352.0
1733319689.589665	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9352.0
1733319689.589665	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733319689.589665	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3150.0
1733319689.589665	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	239.0
1733319689.589665	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	237.0
1733319689.589665	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	125.0
1733319689.589665	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	229.0
1733319689.589665	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29597.0
1733319689.589665	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20561.0
1733319689.589665	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733319689.589665	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	158.0
1733319689.589665	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733319689.589665	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	11.0
1733319689.589665	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733319689.589665	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733319689.589665	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733319689.589665	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733319689.589665	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733319689.589665	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	507000.0
1733319689.589665	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	710.0
1733319689.589665	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1407196.0
1733319689.589665	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	49641.0
1733319689.589665	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	753113.0
1733319689.589665	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1853846.0
1733319689.589665	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9352.0
1733319689.589665	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9352.0
1733319689.589665	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733319689.589665	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3150.0
1733319689.589665	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	239.0
1733319689.589665	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	237.0
1733319689.589665	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	125.0
1733319689.589665	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	229.0
1733319689.589665	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29597.0
1733319689.589665	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20510.0
1733319689.589665	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733319689.589665	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	158.0
1733319689.589665	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733319689.589665	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	11.0
1733319689.589665	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733319689.589665	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733319689.589665	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733319689.589665	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733319689.589665	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3940236682.0
1733319689.589665	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	13059442.0
1733319689.589665	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733319689.589665	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13109208.0
1733319689.589665	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.008679
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	61.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	711.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	208927.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21258.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3549.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	238.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	710.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	710.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1539.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1853947.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7769778.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3843870.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3843870.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8334015.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	752741.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	752336.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	752845.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	752822.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	734792.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	764865.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	752952.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	753290.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	1005093.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3247.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1118.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3247.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	251756.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	9100.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	49641.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1853846.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718766.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26445.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	189.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	229.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	229.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9158.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29597.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135517.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29597.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29597.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21536.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	54.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	196.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20439.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20561.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20561.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20561.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41173.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20561.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	252.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	158.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1551.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	157.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733319689.589665	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733319689.589665	zeek	gauge	zeek	active-sessions	-	protocol	tcp	44.0
1733319689.589665	zeek	gauge	zeek	active-sessions	-	protocol	udp	3.0
1733319689.589665	zeek	gauge	zeek	active-sessions	-	protocol	icmp	53.0
1733319689.589665	zeek	counter	zeek	total-sessions	-	protocol	tcp	1804882.0
1733319689.589665	zeek	counter	zeek	total-sessions	-	protocol	udp	25738.0
1733319689.589665	zeek	counter	zeek	total-sessions	-	protocol	icmp	23327.0
1733319749.608404	zeek	gauge	process	resident_memory	bytes	(empty)	(empty)	0.0
1733319749.608404	zeek	gauge	process	virtual_memory	bytes	(empty)	(empty)	0.0
1733319749.608404	zeek	gauge	process	cpu	seconds	(empty)	(empty)	0.0
1733319749.608404	zeek	gauge	process	open_fds	-	(empty)	(empty)	0.0
1733319749.608404	zeek	counter	zeek	log-stream-writes	-	module,stream	PacketFilter,PacketFilter::LOG	1.0
1733319749.608404	zeek	counter	zeek	log-stream-writes	-	module,stream	LoadedScripts,LoadedScripts::LOG	519.0
1733319749.608404	zeek	counter	zeek	log-stream-writes	-	module,stream	Telemetry,Telemetry::LOG	507150.0
1733319749.608404	zeek	counter	zeek	log-stream-writes	-	module,stream	Stats,Stats::LOG	711.0
1733319749.608404	zeek	counter	zeek	log-stream-writes	-	module,stream	Weird,Weird::LOG	1407526.0
1733319749.608404	zeek	counter	zeek	log-stream-writes	-	module,stream	Analyzer::Logging,Analyzer::Logging::LOG	49666.0
1733319749.608404	zeek	counter	zeek	log-stream-writes	-	module,stream	SSL,SSL::LOG	753290.0
1733319749.608404	zeek	counter	zeek	log-stream-writes	-	module,stream	Conn,Conn::LOG	1854136.0
1733319749.608404	zeek	counter	zeek	log-stream-writes	-	module,stream	FINGERPRINT::JA4SSH,FINGERPRINT::JA4SSH::LOG	9357.0
1733319749.608404	zeek	counter	zeek	log-stream-writes	-	module,stream	SSH,SSH::LOG	9357.0
1733319749.608404	zeek	counter	zeek	log-stream-writes	-	module,stream	Reporter,Reporter::LOG	1.0
1733319749.608404	zeek	counter	zeek	log-stream-writes	-	module,stream	DNS,DNS::LOG	3150.0
1733319749.608404	zeek	counter	zeek	log-stream-writes	-	module,stream	Notice,Notice::LOG	239.0
1733319749.608404	zeek	counter	zeek	log-stream-writes	-	module,stream	CaptureLoss,CaptureLoss::LOG	237.0
1733319749.608404	zeek	counter	zeek	log-stream-writes	-	module,stream	NTP,NTP::LOG	125.0
1733319749.608404	zeek	counter	zeek	log-stream-writes	-	module,stream	DHCP,DHCP::LOG	229.0
1733319749.608404	zeek	counter	zeek	log-stream-writes	-	module,stream	HTTP,HTTP::LOG	29597.0
1733319749.608404	zeek	counter	zeek	log-stream-writes	-	module,stream	Files,Files::LOG	20561.0
1733319749.608404	zeek	counter	zeek	log-stream-writes	-	module,stream	X509,X509::LOG	16.0
1733319749.608404	zeek	counter	zeek	log-stream-writes	-	module,stream	SIP,SIP::LOG	158.0
1733319749.608404	zeek	counter	zeek	log-stream-writes	-	module,stream	SNMP,SNMP::LOG	49.0
1733319749.608404	zeek	counter	zeek	log-stream-writes	-	module,stream	DPD,DPD::LOG	11.0
1733319749.608404	zeek	counter	zeek	log-stream-writes	-	module,stream	Tunnel,Tunnel::LOG	4.0
1733319749.608404	zeek	counter	zeek	log-stream-writes	-	module,stream	RADIUS,RADIUS::LOG	5.0
1733319749.608404	zeek	counter	zeek	log-stream-writes	-	module,stream	KRB,KRB::LOG	4.0
1733319749.608404	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,PacketFilter,packet_filter,PacketFilter::LOG,Log::WRITER_ASCII	1.0
1733319749.608404	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,LoadedScripts,loaded_scripts,LoadedScripts::LOG,Log::WRITER_ASCII	519.0
1733319749.608404	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Telemetry,telemetry,Telemetry::LOG,Log::WRITER_ASCII	507150.0
1733319749.608404	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Stats,stats,Stats::LOG,Log::WRITER_ASCII	711.0
1733319749.608404	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Weird,weird,Weird::LOG,Log::WRITER_ASCII	1407526.0
1733319749.608404	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Analyzer::Logging,analyzer,Analyzer::Logging::LOG,Log::WRITER_ASCII	49666.0
1733319749.608404	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSL,ssl,SSL::LOG,Log::WRITER_ASCII	753290.0
1733319749.608404	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Conn,conn,Conn::LOG,Log::WRITER_ASCII	1854136.0
1733319749.608404	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,FINGERPRINT::JA4SSH,ja4ssh,FINGERPRINT::JA4SSH::LOG,Log::WRITER_ASCII	9357.0
1733319749.608404	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SSH,ssh,SSH::LOG,Log::WRITER_ASCII	9357.0
1733319749.608404	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Reporter,reporter,Reporter::LOG,Log::WRITER_ASCII	1.0
1733319749.608404	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DNS,dns,DNS::LOG,Log::WRITER_ASCII	3150.0
1733319749.608404	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Notice,notice,Notice::LOG,Log::WRITER_ASCII	239.0
1733319749.608404	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,CaptureLoss,capture_loss,CaptureLoss::LOG,Log::WRITER_ASCII	237.0
1733319749.608404	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,NTP,ntp,NTP::LOG,Log::WRITER_ASCII	125.0
1733319749.608404	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DHCP,dhcp,DHCP::LOG,Log::WRITER_ASCII	229.0
1733319749.608404	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,HTTP,http,HTTP::LOG,Log::WRITER_ASCII	29597.0
1733319749.608404	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Files,files,Files::LOG,Log::WRITER_ASCII	20510.0
1733319749.608404	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,X509,x509,X509::LOG,Log::WRITER_ASCII	6.0
1733319749.608404	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SIP,sip,SIP::LOG,Log::WRITER_ASCII	158.0
1733319749.608404	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,SNMP,snmp,SNMP::LOG,Log::WRITER_ASCII	49.0
1733319749.608404	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,DPD,dpd,DPD::LOG,Log::WRITER_ASCII	11.0
1733319749.608404	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,Tunnel,tunnel,Tunnel::LOG,Log::WRITER_ASCII	4.0
1733319749.608404	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,RADIUS,radius,RADIUS::LOG,Log::WRITER_ASCII	5.0
1733319749.608404	zeek	counter	zeek	log-writer-writes	-	filter-name,module,path,stream,writer	default,KRB,kerberos,KRB::LOG,Log::WRITER_ASCII	4.0
1733319749.608404	zeek	gauge	zeek	version_info	-	beta,commit,debug,major,minor,patch,version_number,version_string	false,0,false,6,0,9,60009,6.0.9	1.0
1733319749.608404	zeek	counter	zeek	net-received-bytes	-	(empty)	(empty)	3940774575.0
1733319749.608404	zeek	counter	zeek	net-received-packets	-	(empty)	(empty)	13062071.0
1733319749.608404	zeek	counter	zeek	net-dropped-packets	-	(empty)	(empty)	49766.0
1733319749.608404	zeek	counter	zeek	net-link-packets	-	(empty)	(empty)	13111837.0
1733319749.608404	zeek	gauge	zeek	net-packet-lag	seconds	(empty)	(empty)	0.0031
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	zeek_init	1.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	zeek_script_loaded	519.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	grab_vulnerable_versions	61.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	NetControl::init	1.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	filter_change_tracking	712.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	Broker::log_flush	208986.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	ChecksumOffloading::check	2.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	run_sync_hook	21264.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	Telemetry::log	3550.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	CaptureLoss::take_measurement	238.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	check_stats	711.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	net_stats_update	711.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	SumStats::finish_epoch	1541.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	TrimTraceFile::go	1.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	new_connection	1854180.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	conn_weird	7771289.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	conn_packets_threshold_crossed	3844756.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	ConnThreshold::packets_threshold_crossed	3844756.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension	8335944.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_supported_versions	752915.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_application_layer_protocol_negotiation	752510.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_signature_algorithm	753019.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_key_share	752996.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	ssl_extension_server_name	734961.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_confirmation_info	765039.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	ssl_client_hello	753126.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	ssl_handshake_message	753464.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	ssl_plaintext_data	1005309.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	dns_message	3247.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	dns_PTR_reply	1118.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	dns_end	3247.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	ssl_change_cipher_spec	251798.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	ssh_client_version	9105.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	analyzer_violation_info	49666.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	connection_state_remove	1854136.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	reporter_warning	1.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	get_file_handle	718767.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	connection_reused	26445.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	ntp_message	189.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	dhcp_message	229.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	DHCP::aggregate_msgs	229.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	http_request	9158.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	http_begin_entity	29597.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	http_header	135517.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	http_end_entity	29597.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	http_message_done	29597.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	dns_A_reply	754.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	connection_established	21536.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	ssl_alert	54.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	ssl_server_hello	178.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	dns_request	196.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	http_reply	20439.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	file_new	20561.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	file_over_new_connection	20561.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	file_sniff	20561.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	file_hash	41173.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	file_state_remove	20561.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	ssh_server_version	252.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	x509_certificate	51.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	x509_extension	370.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_subject_alternative_name	17.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	x509_ext_basic_constraints	51.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	x509_ocsp_ext_signed_certificate_timestamp	51.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	ssl_ecdh_server_params	18.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	dns_CNAME_reply	156.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	sip_request	158.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	sip_header	1551.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	sip_end_entity	157.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_request	24.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	file_timeout	7.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	dns_AAAA_reply	151.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_next_request	7.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	snmp_get_bulk_request	18.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	dns_rejected	36.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	content_gap	36378.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	radius_message	5.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	krb_as_request	4.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	Notice::begin_suppression	1.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	smb2_message	3.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	smb2_negotiate_request	3.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	smb1_message	3.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	smb1_negotiate_request	3.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	mqtt_connect	1.0
1733319749.608404	zeek	counter	zeek	event-handler-invocations	-	name	dce_rpc_bind	2.0
1733319749.608404	zeek	gauge	zeek	active-sessions	-	protocol	tcp	38.0
1733319749.608404	zeek	gauge	zeek	active-sessions	-	protocol	udp	0.0
1733319749.608404	zeek	gauge	zeek	active-sessions	-	protocol	icmp	6.0
1733319749.608404	zeek	counter	zeek	total-sessions	-	protocol	tcp	1805110.0
1733319749.608404	zeek	counter	zeek	total-sessions	-	protocol	udp	25738.0
1733319749.608404	zeek	counter	zeek	total-sessions	-	protocol	icmp	23332.0