| Key | Value |
|---|---|
| FileName | ./usr/sbin/kmsgsd |
| FileSize | 18296 |
| MD5 | AA1FE38F6F62660F7E68D1FDE187529A |
| SHA-1 | 1191254DE08777A881A614C7E45F26C09B1DE72A |
| SHA-256 | 4966EE8764758FFAA33979FDF25095F9B13A909D328CEA13D4ACFD433AB22A44 |
| SSDEEP | 192:RirSSN7b8FBoWMhcfTg9D4Ki6xBfekIk8QBi7EB2q3bnYRjpJCbbwtcgJP1yR/6e:e+M9D3ekIkb3gq3zYRjKHOn18PO45n |
| TLSH | T17682B78B7263447DC495C778C61F823529B07899F3326A3F3E1CA6742F52A142F1E96A |
| hashlookup:parent-total | 1 |
| hashlookup:trust | 55 |
The searched file hash is included in 1 parent files which include package known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileSize | 172752 |
| MD5 | A65CA1BBEA694C4392A7AC6D286CF184 |
| PackageDescription | Port Scan Attack Detector PSAD is a collection of four lightweight system daemons (in Perl and C) designed to work with iptables to detect port scans. It features: * a set of highly configurable danger thresholds (with sensible defaults provided); * verbose alert messages that include the source, destination, scanned port range, beginning and end times, TCP flags, and corresponding Nmap options; * reverse DNS information; * alerts via email; * automatic blocking of offending IP addresses via dynamic firewall configuration. . When combined with fwsnort and the iptables string match extension, PSAD is capable of detecting many attacks described in the Snort rule set that involve application layer data. |
| PackageMaintainer | Franck Joncourt <franck@debian.org> |
| PackageName | psad |
| PackageSection | admin |
| PackageVersion | 2.2.3-1 |
| SHA-1 | C24B3EB75495E56AA1E3E325FC15DA4B50EA0CC9 |
| SHA-256 | 92BDF82AFA59EC7882C66505B6E00DC850B7ADAE1D120599B6A0CA54C1DDBF2C |