| Key | Value |
|---|---|
| FileName | ./usr/sbin/kmsgsd |
| FileSize | 18392 |
| MD5 | DF3ABCA89AE21DCF50CBA1512604B732 |
| SHA-1 | 1AA713806632C270F2A2AA758EEA58AE306E5A03 |
| SHA-256 | 7D6518BA85B0129A75AE88A933FA2D5A2AB3E5FA543DD8FAA534DF825593C547 |
| SSDEEP | 384:VdlPqiGnyaQc32/AKxtDAGD/k2knsfyVJYhzxkBFsPO8bicny:VdlPqiGnyaQc32/NDN/k2ksfychuBP8b |
| TLSH | T11F82D74A727398BEC4D487348A5F823529707499E332672F3E1CA6742F52B241F1F96A |
| hashlookup:parent-total | 1 |
| hashlookup:trust | 55 |
The searched file hash is included in 1 parent files which include package known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileSize | 148184 |
| MD5 | 2A2C41984A25848D37E46AB85275EA63 |
| PackageDescription | Port Scan Attack Detector PSAD is a collection of four lightweight system daemons (in Perl and C) designed to work with iptables to detect port scans. It features: * a set of highly configurable danger thresholds (with sensible defaults provided); * verbose alert messages that include the source, destination, scanned port range, beginning and end times, TCP flags, and corresponding Nmap options; * reverse DNS information; * alerts via email; * automatic blocking of offending IP addresses via dynamic firewall configuration. . When combined with fwsnort and the iptables string match extension, PSAD is capable of detecting many attacks described in the Snort rule set that involve application layer data. |
| PackageMaintainer | Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com> |
| PackageName | psad |
| PackageSection | admin |
| PackageVersion | 2.2.3-1 |
| SHA-1 | 802694DEEBF3C75DA382A48D9C0BDA3DB47D63AA |
| SHA-256 | E0EFEDC63ACF2C7F52A0426A5C4B145E4AA1D172845632E515B90FDE7CD8ECF8 |