| Key | Value |
|---|---|
| FileName | ./usr/sbin/kmsgsd |
| FileSize | 19060 |
| MD5 | 0FFAAAEF670DD8A4B112202F6E576A27 |
| SHA-1 | 32372DCD2D71291414D25A71DFD06B25434F2760 |
| SHA-256 | 35288E04F2062F2AFDAC72FB106653DE11A1C0F4435468C2195A5AD1DD072282 |
| SSDEEP | 384:EnSeLZtTqi1wR+PPnrBi0oGgkoQC4NjgLJG9XHYV:EnS6tTzDs+c8oV |
| TLSH | T1E882F88B53209E1EF695C3BC5597C7A117F900E17BC38A29F53CFA042BC9E19A817E94 |
| hashlookup:parent-total | 1 |
| hashlookup:trust | 55 |
The searched file hash is included in 1 parent files which include package known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileSize | 178184 |
| MD5 | 82E900E6C9D163BD398A960A2A067C2C |
| PackageDescription | Port Scan Attack Detector PSAD is a collection of four lightweight system daemons (in Perl and C) designed to work with iptables to detect port scans. It features: * a set of highly configurable danger thresholds (with sensible defaults provided); * verbose alert messages that include the source, destination, scanned port range, beginning and end times, TCP flags, and corresponding Nmap options; * reverse DNS information; * alerts via email; * automatic blocking of offending IP addresses via dynamic firewall configuration. . When combined with fwsnort and the iptables string match extension, PSAD is capable of detecting many attacks described in the Snort rule set that involve application layer data. |
| PackageMaintainer | Franck Joncourt <franck.joncourt@gmail.com> |
| PackageName | psad |
| PackageSection | admin |
| PackageVersion | 2.4.3-1.2~deb9u1 |
| SHA-1 | DD63F1E2E951E1666A32DCE766D4777A503C21B2 |
| SHA-256 | CA6B0143F08C4029BFFA676CF6F4CF2DE6424ADEB7EB07AFF205C34BD8037A20 |