Network Capture
Overview
Section titled “Overview”Evidence: Network Capture
Description: Collect Network Capture
Category: System
Platform: macos
Short Name: nc
Is Parsed: No
Sent to Investigation Hub: Yes
Collect File(s): No
Data Collected
Section titled “Data Collected”This collector gathers structured data about network capture.
Network Capture Data
Section titled “Network Capture Data”| Field | Description | Example |
|---|---|---|
Timestamp | Timestamp | Example value |
IPVersion | IP Version | Example value |
Protocol | Protocol | Example value |
SourceAddress | Source Address | Example value |
DestinationAddress | Destination Address | Example value |
InterfaceIndex | Interface Index | 123 |
SourcePort | Source Port | Example value |
DestinationPort | Destination Port | Example value |