| Key | Value |
|---|---|
| FileName | ./usr/sbin/kmsgsd |
| FileSize | 13672 |
| MD5 | E82F5764BA125A1323CEDB74173449A7 |
| SHA-1 | 31DA597E0E3F66628AC65CDE73290890D664C572 |
| SHA-256 | 5971267CDEA68770A61B14C3FA93994A678B7ABEEE6F2D536093586ADD00D0F2 |
| SSDEEP | 192:dkdGgWHussTcXhw3k9OR5Y/AajW6Zp+jg81yVaTD/mZH0Is:dkdGgWFRwcVlh81yIDOo |
| TLSH | T1D152E7C6A5E78A2BCCC7133635E6DA1C67B1C4C9E2831BEF398C66643F134995D21782 |
| hashlookup:parent-total | 1 |
| hashlookup:trust | 55 |
The searched file hash is included in 1 parent files which include package known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileSize | 172986 |
| MD5 | 364DDE300E17D62795C8F393E3E0297A |
| PackageDescription | Port Scan Attack Detector PSAD is a collection of four lightweight system daemons (in Perl and C) designed to work with iptables to detect port scans. It features: * a set of highly configurable danger thresholds (with sensible defaults provided); * verbose alert messages that include the source, destination, scanned port range, beginning and end times, TCP flags, and corresponding Nmap options; * reverse DNS information; * alerts via email; * automatic blocking of offending IP addresses via dynamic firewall configuration. . When combined with fwsnort and the iptables string match extension, PSAD is capable of detecting many attacks described in the Snort rule set that involve application layer data. |
| PackageMaintainer | Franck Joncourt <franck@debian.org> |
| PackageName | psad |
| PackageSection | admin |
| PackageVersion | 2.2.3-1 |
| SHA-1 | E869097B6A82452DD643A9DEDCA4B3259C3FDF9E |
| SHA-256 | 966EF26BADD3491C3B3DF1A00C243BCC3A3C840CBB55DA5A7F94878A1BE65AB5 |