```{"timestamp":"2022-08-24T09:21:59.721455+0000","flow_id":832647823097712,"in_iface":"calia4048882f7f","event_type":"alert","src_ip":"10.48.45.33","src_port":59318,"dest_ip":"10.48.45.34","dest_port":1337,"proto":"TCP","tx_id":0,"alert":{"action":"allowed","gid":1,"signature_id":2017054,"rev":3,"signature":"ET WEB_SERVER WebShell Generic - ELF File Uploaded","category":"Potentially Bad Traffic","severity":2,"metadata":{"created_at":["2013_06_22"],"updated_at":["2020_04_24"]}},"http":{"hostname":"cloud.test","url":"/upload","http_user_agent":"Mozilla/5.0 (X11; Linux x86_64; rv:104.0) Gecko/20100101 Firefox/104.0","xff":"1.1.1.1","http_refer":"https://cloud.test/settings","http_method":"POST","protocol":"HTTP/1.1","length":0},"files":[{"filename":"elf-Linux-ARM64-bash.elf","sid":[],"gaps":false,"state":"UNKNOWN","stored":false,"size":42638,"tx_id":0}],"app_proto":"http","flow":{"pkts_toserver":39,"pkts_toclient":36,"bytes_toserver":50410,"bytes_toclient":2392,"start":"2022-08-24T09:21:59.720752+0000"}}
{"timestamp":"2022-08-24T09:21:59.724381+0000","flow_id":832647823097712,"in_iface":"calia4048882f7f","event_type":"fileinfo","src_ip":"10.48.45.33","src_port":59318,"dest_ip":"10.48.45.34","dest_port":1337,"proto":"TCP","http":{"hostname":"cloud.test","url":"/upload","http_user_agent":"Mozilla/5.0 (X11; Linux x86_64; rv:104.0) Gecko/20100101 Firefox/104.0","xff":"1.1.1.1","http_refer":"https://cloud.test/settings","http_method":"POST","protocol":"HTTP/1.1","length":0},"app_proto":"http","fileinfo":{"filename":"elf-Linux-ARM64-bash.elf","sid":[],"gaps":false,"state":"TRUNCATED","stored":false,"size":102158,"tx_id":0}}
{"timestamp":"2022-08-24T09:21:59.794060+0000","flow_id":832647823097712,"in_iface":"calia4048882f7f","event_type":"http","src_ip":"10.48.45.33","src_port":59318,"dest_ip":"10.48.45.34","dest_port":1337,"proto":"TCP","tx_id":0,"http":{"hostname":"cloud.test","url":"/upload","http_user_agent":"Mozilla/5.0 (X11; Linux x86_64; rv:104.0) Gecko/20100101 Firefox/104.0","xff":"1.1.1.1","http_content_type":"text/html","http_refer":"https://cloud.test/settings","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":27}}
{"timestamp":"2022-08-24T09:21:59.794116+0000","flow_id":832647823097712,"in_iface":"calia4048882f7f","event_type":"fileinfo","src_ip":"10.48.45.34","src_port":1337,"dest_ip":"10.48.45.33","dest_port":59318,"proto":"TCP","http":{"hostname":"cloud.test","url":"/upload","http_user_agent":"Mozilla/5.0 (X11; Linux x86_64; rv:104.0) Gecko/20100101 Firefox/104.0","xff":"1.1.1.1","http_content_type":"text/html","http_refer":"https://cloud.test/settings","http_method":"POST","protocol":"HTTP/1.1","status":200,"length":27},"app_proto":"http","fileinfo":{"filename":"/upload","sid":[],"gaps":false,"state":"CLOSED","stored":false,"size":27,"tx_id":0}}
{"timestamp":"2022-08-24T09:25:38.666530+0000","flow_id":832647823097712,"in_iface":"calia4048882f7f","event_type":"flow","src_ip":"10.48.45.33","src_port":59318,"dest_ip":"10.48.45.34","dest_port":1337,"proto":"TCP","app_proto":"http","flow":{"pkts_toserver":343,"pkts_toclient":311,"bytes_toserver":486634,"bytes_toclient":20942,"start":"2022-08-24T09:21:59.720752+0000","end":"2022-08-24T09:21:59.794537+0000","age":0,"state":"closed","reason":"timeout","alerted":true,"wrong_thread":true},"tcp":{"tcp_flags":"1b","tcp_flags_ts":"1b","tcp_flags_tc":"1b","syn":true,"fin":true,"psh":true,"ack":true,"state":"closed"}}
```