| Key | Value |
|---|---|
| FileName | ./usr/sbin/kmsgsd |
| FileSize | 19120 |
| MD5 | 1CCB8C63DA521F8A0BF5182AA973ECEB |
| SHA-1 | 1868F1D044C576B61EA21663D3DC948663FEF219 |
| SHA-256 | 5FC926763377E1122CAC67C10506B15B1140547E4B094F723B3E791F0E1B4CD6 |
| SSDEEP | 384:nBAIBqjnTqpfpKcfurSQ7JMQmMlpQxYuSGjLlaPjj2gKYG9D:FBqjnGpfpKcmrS0JMlxYupjLlaPjj2gg |
| TLSH | T135829946AF500EE7C4C7CD35095E936616FDDCCBA2C1636BB95C89942B039197CDB8C8 |
| hashlookup:parent-total | 1 |
| hashlookup:trust | 55 |
The searched file hash is included in 1 parent files which include package known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileSize | 178924 |
| MD5 | 8B3492541567A764178B10AA5ECE4628 |
| PackageDescription | Port Scan Attack Detector PSAD is a collection of four lightweight system daemons (in Perl and C) designed to work with iptables to detect port scans. It features: * a set of highly configurable danger thresholds (with sensible defaults provided); * verbose alert messages that include the source, destination, scanned port range, beginning and end times, TCP flags, and corresponding Nmap options; * reverse DNS information; * alerts via email; * automatic blocking of offending IP addresses via dynamic firewall configuration. . When combined with fwsnort and the iptables string match extension, PSAD is capable of detecting many attacks described in the Snort rule set that involve application layer data. |
| PackageMaintainer | Thiago Andrade Marques <andrade@debian.org> |
| PackageName | psad |
| PackageSection | admin |
| PackageVersion | 2.4.6-2 |
| SHA-1 | CC94DC06717CBD7974C4C585E8AAE79A6F00CECF |
| SHA-256 | 041ADF217985517DF5C5FDA216791DF003AEAF0FED6D14C5F46AF7F72BD8F602 |