| Key | Value |
|---|---|
| MD5 | DFE3990467015998F2A5CC64548C1C7F |
| PackageArch | x86_64 |
| PackageDescription | Liblognorm is a library and a tool to normalize log data. Liblognorm shall help to make sense out of syslog data, or, actually, any event data that is present in text form. In short words, one will be able to throw arbitrary log message to liblognorm, one at a time, and for each message it will output well-defined name-value pairs and a set of tags describing the message. So, for example, if you have traffic logs from three different firewalls, liblognorm will be able to "normalize" the events into generic ones. Among others, it will extract source and destination ip addresses and ports and make them available via well-defined fields. As the end result, a common log analysis application will be able to work on that common set and so this backend will be independent from the actual firewalls feeding it. Even better, once we have a well-understood interim format, it is also easy to convert that into any other vendor specific format, so that you can use that vendor's analysis tool. |
| PackageName | liblognorm5 |
| PackageRelease | 51.58 |
| PackageVersion | 2.0.6 |
| SHA-1 | 0B0DF91F39C54B25CD990069B71A664AD63CDCC8 |
| SHA-256 | 53C5095A9EB98D8EB2EA8B926CFDE3153BB2214AB617C18E8A6537A53382A09F |
| hashlookup:children-total | 4 |
| hashlookup:trust | 50 |
The searched file hash includes 4 children files known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileName | ./usr/share/doc/packages/liblognorm5/COPYING |
| FileSize | 26000 |
| MD5 | CA016DB57E008528DACE002188C73DAD |
| RDS:package_id | 263813 |
| SHA-1 | A240208D36BB6DC3A4DF33429773C4446AE0A05D |
| SHA-256 | 81F60F32D9F580E5DBBDCE08A4E45D4200E000A7090E4D89ADFDE09B627426A7 |
| SSDEEP | 384:DE56OuAbn/0UVef6wFDVxnF+7xqsvLt+z/k8E9HinIVFkspWM9bc7ops08BuQ/:DE5trbernFCL1leSWmc7ksNBuQ/ |
| TLSH | T16CC2953EB70513B206C206905A4FA4DEE32BD07932275A6474DDC15D23AB93543FBBEA |
| insert-timestamp | 1654960955.1655688 |
| source | modern.db |
| Key | Value |
|---|---|
| FileName | ./usr/lib64/liblognorm.so.5.1.0 |
| FileSize | 160720 |
| MD5 | CFEC81509B361105510DF2C5199156AC |
| SHA-1 | 35CF761C73DBD9004A9A61353BE33EE175FD6C80 |
| SHA-256 | 81FAA11C86D0A4ECF8975C3A38B632B7A8CB57E64B6B7F26F6CCCA589AFE6CBF |
| SSDEEP | 3072:YSYU/VeCHaioWtQjFlKRLAPt7kHaEpsR04Ypti:YfcDH9kjFlKRMt7kHaEpsR07pti |
| TLSH | T1A3F33917B2E614FCC0D5C930828BA2527D72F49297327A7F68849B753F42E385B1EB25 |
| Key | Value |
|---|---|
| FileName | ./usr/bin/lognormalizer |
| FileSize | 23152 |
| MD5 | 7B229BEE907DD7121DD36ECF5FD4390F |
| SHA-1 | C0D81599A00E155E1DD45F49DF9896FF77A5B3E6 |
| SHA-256 | A81E3C3915AE6B2B710368A627965F6FE48D7E8FAB2F437A635BCD3729C330A9 |
| SSDEEP | 192:RQTnOrwcOK9IgGsAVrc/Yicu5jCxMgDFce+iaB/MQMJ6IQZ8Qfdwusvi:D9INsArcIyCFDlAMQu6IQv |
| TLSH | T1A9A2E50AFA605A75C5C04B3044CB477262B1AD82EF32931F70CCB1B11F417A9AB2B7A9 |
| Key | Value |
|---|---|
| FileName | ./usr/lib64/liblognorm.so.5 |
| FileSize | 19 |
| MD5 | A8FCDB1BB728F5ECD6CBBAE8E7659FB2 |
| RDS:package_id | 302130 |
| SHA-1 | 616039FFCBC2860BDD6CCBE2F8CCE266040D2738 |
| SHA-256 | DC506019182DF648F05CB1C74CFBFA35E4AC8B6261AC9491BA03B93E8307792E |
| SSDEEP | 3:EJ1sFLmn:EEF6 |
| TLSH | |
| insert-timestamp | 1712771174.8268604 |
| source | db.sqlite |