| Key | Value |
|---|---|
| FileName | ./etc/suricata/rules/tls-events.rules |
| FileSize | 4987 |
| MD5 | 1DB1548146525DAA0C284D1391741C0A |
| SHA-1 | 200864E95D3A1B4CCB7C835F55C4C42E5F222CD4 |
| SHA-256 | BD5C404CCCB9B2A05CD76DCF84A4FAC76C3249B92B942D51F527314726184D6A |
| SSDEEP | 96:aAa+0CtO0wtnh0Ytw0ytI0dutr0jtS0stl0qFKIt80+bt/0IPtG0i1tZ0WtH0gtV:atSeMbg |
| TLSH | T12DA17C868FA04CBD0BCE511C41AEE9E276FD479279692502ADF97E1CC3C8BE051302E6 |
| hashlookup:parent-total | 2 |
| hashlookup:trust | 60 |
The searched file hash is included in 2 parent files which include package known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileSize | 927684 |
| MD5 | 83B28914C7B81E08669AA89560CC25FA |
| PackageDescription | Next Generation Intrusion Detection and Prevention Tool Suricata is a network Intrusion Detection System (IDS). It is based on rules (and is fully compatible with snort rules) to detect a variety of attacks / probes by searching packet content. . It can also be used as Intrusion Prevention System (IPS), and as higher layer firewall. . This new Engine supports Multi-Threading, Automatic Protocol Detection (IP, TCP, UDP, ICMP, HTTP, TLS, FTP and SMB), Gzip Decompression, Fast IP Matching and coming soon hardware acceleration on CUDA and OpenCL GPU cards. . This version has inline (NFQUEUE) support enabled. |
| PackageMaintainer | Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com> |
| PackageName | suricata |
| PackageSection | net |
| PackageVersion | 3.2-2ubuntu3 |
| SHA-1 | 3A84B4AAE6224AFA2C11F11650B0B9549ADB5A45 |
| SHA-256 | 937C378E9924370AD2DBC1F4FAF0986E7DB1D2D621011CC172D4D72225C69E80 |
| Key | Value |
|---|---|
| FileSize | 936302 |
| MD5 | 09EF02700886E4DC3E8145217B4D7035 |
| PackageDescription | Next Generation Intrusion Detection and Prevention Tool Suricata is a network Intrusion Detection System (IDS). It is based on rules (and is fully compatible with snort rules) to detect a variety of attacks / probes by searching packet content. . It can also be used as Intrusion Prevention System (IPS), and as higher layer firewall. . This new Engine supports Multi-Threading, Automatic Protocol Detection (IP, TCP, UDP, ICMP, HTTP, TLS, FTP and SMB), Gzip Decompression, Fast IP Matching and coming soon hardware acceleration on CUDA and OpenCL GPU cards. . This version has inline (NFQUEUE) support enabled. |
| PackageMaintainer | Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com> |
| PackageName | suricata |
| PackageSection | net |
| PackageVersion | 3.2-2ubuntu3 |
| SHA-1 | BE8C1742A11F74AB728CEE1CEA6B184BC5744B6A |
| SHA-256 | E20EA8D03F4F3BBCF617274EBC857D0DE2F6EAE8936CEDC9DC4B3623CF416164 |