| Key | Value |
|---|---|
| FileName | ./usr/lib/i386-linux-gnu/prelude-manager/filters/idmef-criteria.so |
| FileSize | 9468 |
| MD5 | 38158158E9DF355E6DA6C19ECA0C8183 |
| SHA-1 | 1E8C58863F3BEB47276387482F9E067E225A7D17 |
| SHA-256 | 0EA849CB46991F310B44DA57C7A0AC31CB0F33482790473615E2DBC428CA6331 |
| SSDEEP | 192:a3umh8g6001RfIFX3Qgc2EwjH9a152A/CC39tXeXzf6UfPjpG:aea60DdggTjda1cCneXzSUd |
| TLSH | T12012E74BBAD6CBB7E19203BC1193437A61355044EBE3C293B948739879A3298CF72375 |
| hashlookup:parent-total | 1 |
| hashlookup:trust | 55 |
The searched file hash is included in 1 parent files which include package known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileSize | 247236 |
| MD5 | E54E6CB3307D53190A66592F4890BF59 |
| PackageDescription | Security Information and Events Management System [ Manager ] Prelude Manager is the main program of the Prelude SIEM suite. It is a multithreaded server which handles connections from the Prelude sensors. It is able to register local or remote sensors, let the operator configure them remotely, receive alerts, and store alerts in a database or any format supported by reporting plugins, thus providing centralized logging and analysis. The IDMEF standard is used for alert representation. Support for filtering plugins allows you to hook in different places in the Manager to define custom criteria for alert relaying and logging. . This package provides the Prelude Manager, which is a high availability server that accepts secured connections from distributed sensors or other managers and saves received events to a media specified by the user (database, log files, mail, etc). |
| PackageMaintainer | Pierre Chifflier <pollux@debian.org> |
| PackageName | prelude-manager |
| PackageSection | admin |
| PackageVersion | 4.1.1-2 |
| SHA-1 | 827B51EE6A95072A16F99A930AA2F2B5F2F1AB1A |
| SHA-256 | 4E7C04750EE53BC806E19E491987977B359F07F6C6F2FFD2A7212542424DFEC0 |