| Key | Value |
|---|---|
| FileSize | 31122556 |
| MD5 | 0BD462EC50E4FFE9A2BB4B645F38F977 |
| PackageDescription | Network Forensic Analysis Tool (NFAT) This package contains a Network Forensic Analysis Tool (NFAT) that performs deep processing and inspection of network traffic (mainly PCAP files, but it also capable of directly live capturing from a network interface). It includes: password extracting, building a network map, reconstruct TCP sessions, extract hashes of encrypted passwords and even convert them to a Hashcat format in order to perform an offline Brute Force attack. . The main goal of the project is to provide solution to security researchers and network administrators with the task of network traffic analysis while they try to identify weaknesses that can be used by a potential attacker to gain access to critical points on the network. . On Linux it is a Command Line Interface tool. |
| PackageMaintainer | Kali Developers <devel@kali.org> |
| PackageName | bruteshark |
| PackageSection | contrib/utils |
| PackageVersion | 1.2.5+git20211030.1.e8974ef-0kali1~jan+nus2 |
| SHA-1 | 22BEBF7BE8ED916460036D461F44008D72D5897B |
| SHA-256 | 00D81B1E756696A3D9AD20B38DDEA8A834256D70313280133D694A083F529EC5 |
| hashlookup:children-total | 317 |
| hashlookup:trust | 50 |
The searched file hash includes 317 children files known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileName | snap-hashlookup-import/System.ComponentModel.Primitives.dll |
| FileSize | 55232 |
| MD5 | 52A965AC3640397439B1D1A7824299C5 |
| SHA-1 | 0129F40251EE826F84CDC8AF56850699D71CB9E4 |
| SHA-256 | 592B6D3CD1FE4549BEB5D02B6A8B07B5D306424E3DD39C6358185FADD2B9132C |
| SHA-512 | 72D5D3BB1111EE7A6726476306C9C385EAF62E47709F96DD8D6192D490AD49C31B25B3D3FC60C52FB6B97C0D62B30049156B1EFAC1D0D33389650DB7BE2BB3EF |
| SSDEEP | 768:AgMx7w2RqjnW3g3Uoi6Yzp6QHOHj1M+UpNSZC9z9:ALmbKg3lYWHpgNSZez9 |
| TLSH | T1BA434B855BA80221F9FB673961FC845170B0D7A90731EAD70A08E8E82E977D93E3617D |
| insert-timestamp | 1700727365.685958 |
| mimetype | application/x-dosexec |
| source | snap:b8J2plQLzO4PwKCpW0g2y0Ps54wpUMtr_205 |
| Key | Value |
|---|---|
| FileName | snap-hashlookup-import/System.Runtime.InteropServices.RuntimeInformation.dll |
| FileSize | 27584 |
| MD5 | 16530FF7AADB84DB9C34D9F20E0197E4 |
| SHA-1 | 01CC21AE30A947D418A8F3FE1115D2A004CFC614 |
| SHA-256 | B6CBBF2AA17544E9D240A686E675F24D27D731003DAA1BFE5918A024165443B2 |
| SHA-512 | 474E1FB270E1884975D8BDD661AC174B8EE14D1C4E3C8DB934C43A3C4BF2E73E04FA59C1411A8511EFE47903A9BC90F269EBB79FBF1061EBE102533B4CF11DFB |
| SSDEEP | 384:5WHXDWsZhWa7CTgXBEl3HqJdu5nBZZPNeP6P7HRN72uttR9zw5:mlW0tBEJPffxtP9z |
| TLSH | T104C26CA5DBAC8107ECAB2B3195B6D0623F3967890B30B6E7079DE1580C877C56B3067D |
| insert-timestamp | 1700727363.7312534 |
| mimetype | application/x-dosexec |
| source | snap:b8J2plQLzO4PwKCpW0g2y0Ps54wpUMtr_205 |
| Key | Value |
|---|---|
| FileName | ./usr/share/doc/bruteshark/examples/Pcap_Examples/PCAPNG Examples/SMB - NTLMSSP (Windows 10).pcapng |
| FileSize | 141820 |
| MD5 | E0FC609D7FDB8C8479519F382B16F0F5 |
| SHA-1 | 02D0A4D0457A37080FF709C99A37AA64A3532644 |
| SHA-256 | D033D315A7905269493FF5CCEC0CB89840735EA736A1659ED3D20BEE6319CFF7 |
| SSDEEP | 768:+4gmdDtFwOhienT0llf6NIds0Q7serRdWzoNQKjUnKqW3oQK2dMfcvBCNIj131kl:+4gmdDt2cienH42yfajccqGdlFFNdI |
| TLSH | T10AD35305E3B5EACBD2215D7C0BB3A3416B1AF5036AA55B5D5F383A694CE234DFC042B8 |
| Key | Value |
|---|---|
| FileName | ./usr/lib/brutesharkcli/libclrjit.so |
| FileSize | 2802528 |
| MD5 | 5B98DE19F0503049E77E2804CCF8FEAF |
| SHA-1 | 038B70C95410953A70EE6BEDD59FBBA101A770D4 |
| SHA-256 | 1DC2736744A92D0A1F16B4F19562C3F5931A8E12B6EEAFD3D359F2F4D90D9EDB |
| SSDEEP | 49152:pEmy6fHIUrI429OLbFzNAMKfZek0Ey8l85nXr3uTYWp/cxHUd4khVd/QEh9X5J63:pEm5H5NNAMKfZekj85nXr0YWp/cxHU2f |
| TLSH | T1E1D56C127BE2447CD05981351FDFC771D136B8B522226AAF32D0A7303BB7CA16A1E676 |
| Key | Value |
|---|---|
| FileName | ./usr/lib/brutesharkcli/PacketDotNet.dll |
| FileSize | 256512 |
| MD5 | E06FE1BAF46236A265880B58917C0645 |
| SHA-1 | 0406D5AD7309D9F08E9AAD007EFFB88419AE27D3 |
| SHA-256 | FC3A6E061DED81659CCF23090ECE552B8F22AE81EB9313C8FFAFC0DA5B51FB20 |
| SSDEEP | 6144:w4VZhCdBIx1RR+ZIcU1vs12jGpzSHgZSr8lXOXOvpYmGult:wa8dBIx1aZItJjkBSr8lXOeBj |
| TLSH | T11F440A2553B95A3DE29E2374F4314C328FF4BD0732A5E3BEC989A86E2847B51D841277 |
| Key | Value |
|---|---|
| FileName | ./usr/lib/brutesharkcli/BruteSharkCli.pdb |
| FileSize | 25184 |
| MD5 | DF62B8A9DA988AAE74B2FF59406E11AB |
| SHA-1 | 05ECD658D99CEF04C7FF8752E5D647201BD820E5 |
| SHA-256 | A6559AEF37A9461561CB60D9D752D0ADED6AFEA28A208B21D41B655CDFB8D4EE |
| SSDEEP | 384:IjHAdGe37t3g//OPJh+4iT4zRsLaVV6tD7jZszQZczXWCiJ6RHKfujk3KeGXtJDV:IjHz6Zw/2hhLHc0BttJ1E8N9IAxkFA |
| TLSH | T1D7B2C423C30CD625C9455935A1B2C36A3736CB14939ADF36E1D8A768FDEF74807B2268 |
| Key | Value |
|---|---|
| FileName | ./usr/share/doc/bruteshark/examples/Pcap_Examples/PCAPNG Examples/Telnet - Char Mode2.pcapng |
| FileSize | 13716 |
| MD5 | D55AFE200192E21FDDA89212EF7C9F37 |
| SHA-1 | 064885282F6B1AB3664661022D929225F1F32C60 |
| SHA-256 | 7C3DC130A940ECC5214567A434EC54A91019887F7076609A7F1F9DE7F23A60D2 |
| SSDEEP | 192:+cqUuwjKUHUsXyKuuygIqcqqTjRKjrvfJQPI3wwa8ONoDvB:+NUJuKzXyKTX7bf3p |
| TLSH | T1FC525DBEB2372969E751B179D0FBFC29EAAD6B37913B80910958FC94785D80CA31113C |
| Key | Value |
|---|---|
| FileName | snap-hashlookup-import/System.IO.Compression.ZipFile.dll |
| FileSize | 35728 |
| MD5 | E20E33EC458C6D0550EAA68FF8BCF3C2 |
| SHA-1 | 06B7B7DB4793A9BDF671B03572536D06F8B1D6FD |
| SHA-256 | 0DC06C8E2ADF38DDF0F61DFECE2C95955FE7E9C45037F0E3CD987D46ED8713E1 |
| SHA-512 | 4F66209120C6DF474410F5987C8B7260F4685F257BF7D47944ECA80AC0015013ED5192772D7A4A6C956D917D83DC1C596699102B96297524A0BAD788DA7C15C7 |
| SSDEEP | 384:9WPTvWCTfpV3GrPt4wrwuzg3OhDd8KeD+BZpfmQiQlQUa/h2vNoAzgzt7HRN797F:2TbuK2wuzRk6YIUzZ97Ex9zrg |
| TLSH | T146F24AE15FD84926D8A76F3181B0D4917F3423CA2721EACF518CB6A52C933D5AF316B8 |
| insert-timestamp | 1700727365.4672563 |
| mimetype | application/x-dosexec |
| source | snap:b8J2plQLzO4PwKCpW0g2y0Ps54wpUMtr_205 |
| Key | Value |
|---|---|
| FileName | snap-hashlookup-import/System.IO.Compression.FileSystem.dll |
| FileSize | 15760 |
| MD5 | FA35A3C231AB61671C5A93D0D52E37AB |
| SHA-1 | 070B8408EA67F6965EC390EDEFD317103405E407 |
| SHA-256 | FB9EEA7CB0871029F46E2B72EA9376F353150B4BA70302F5AC5A8BBCA63EDFC3 |
| SHA-512 | A61E95300B603F9525F5471298BDB1BE4DBC7DE3B856CF1FAF2F86C765172AA5CAD392EE2B16E0CB21D056CA2D88DA57A25BFA4C51E54009EE230337B2E10A1A |
| SSDEEP | 192:pWu9RWvx0UdOeWvcuyjS7HnhWgN7awWhWv6gqzGslX01k9z3Ael2bKSI3u:pWu9RWp9do7HRN7PkGER9zRNSIe |
| TLSH | T1426228609BA88207ECAB9E7097B4EA437D3C77C22D00966A21C6F5591D933D5DF3062D |
| insert-timestamp | 1700727363.7734027 |
| mimetype | application/x-dosexec |
| source | snap:b8J2plQLzO4PwKCpW0g2y0Ps54wpUMtr_205 |
| Key | Value |
|---|---|
| CRC32 | 3BCED441 |
| FileName | usr/lib/dotnet/bootstrap/6.0.116/sdk/6.0.116/DotnetTools/dotnet-format/Microsoft.Extensions.Logging.Abstractions.dll |
| FileSize | 52616 |
| MD5 | E1AFA696FC9A7FCE9D1543034BD2F15F |
| OpSystemCode | 362 |
| ProductCode | 222992 |
| RDS:package_id | 308278 |
| SHA-1 | 0740F12982736C2E7895FC051CBF833A4D0974FF |
| SHA-256 | F5436DC033055BCE95B674ED24593DC5C7358429D71465DC705BF74A46E0632D |
| SHA-512 | B662E321949316A2767535B78DA45A98BEAA240AC900DEA859C71FD7716E16C6EF27B71576BAD0F46B53B975393696BAF980514CB1411FFA0B0AAF2A76A69CF6 |
| SSDEEP | 768:Zfypl8S1E+epzVZghb0zCa+uBToiUUs7QllmSVQW:Qpl8B+QJKhg28oEbmSVQW |
| SpecialCode | |
| TLSH | T104336E4467DC8623CBFF49B6A524E6429F3AC2957403C7472CDC516C1C5BBC81B91BAE |
| db | nsrl_modern_rds |
| insert-timestamp | 1727022741.8427453 |
| mimetype | application/x-dosexec |
| source | RDS.db |
| tar:gname | root |
| tar:uname | root |