| Key | Value |
|---|---|
| FileName | ./usr/sbin/kmsgsd |
| FileSize | 22672 |
| MD5 | 73D5B10B331F2A1CCB0A95982C2B7F0C |
| SHA-1 | 28D1775F0D2FA136E1D79D152FAFA9A96608A8AC |
| SHA-256 | 02ADCC8E3C0128A9866B1B61C7D1AFA216A083F17A4901F566B6595F3D326018 |
| SSDEEP | 192:RKXUwnCHNa/8ju8abPbdOYtRaSnqDGnFF0Jz7RR/6Q/mA3ic7ZuemmlwVDjoiT:ZHNa0juR/NqDGnFF0hPOwdkRx |
| TLSH | T1EFA2FA4A75A0897DC1D9CA30CA5F81396530B8C56732A73F3F4C26341F13B64AE1EA6B |
| hashlookup:parent-total | 1 |
| hashlookup:trust | 55 |
The searched file hash is included in 1 parent files which include package known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileSize | 178592 |
| MD5 | 7F285A2D231E6690475160554C1D1BB0 |
| PackageDescription | Port Scan Attack Detector PSAD is a collection of four lightweight system daemons (in Perl and C) designed to work with iptables to detect port scans. It features: * a set of highly configurable danger thresholds (with sensible defaults provided); * verbose alert messages that include the source, destination, scanned port range, beginning and end times, TCP flags, and corresponding Nmap options; * reverse DNS information; * alerts via email; * automatic blocking of offending IP addresses via dynamic firewall configuration. . When combined with fwsnort and the iptables string match extension, PSAD is capable of detecting many attacks described in the Snort rule set that involve application layer data. |
| PackageMaintainer | Thiago Andrade Marques <andrade@debian.org> |
| PackageName | psad |
| PackageSection | admin |
| PackageVersion | 2.4.6-2 |
| SHA-1 | 57F495032AE50F5ADA921779EB026BB7F2BCAB84 |
| SHA-256 | 20F1FB5DAC24C96B9E1414D733A8E2DD3BF36043925B2280A657A6564EAFC44C |