| Key | Value |
|---|---|
| FileName | ./usr/sbin/kmsgsd |
| FileSize | 24208 |
| MD5 | 1EB4A71C871BEAD169E0FD24731CDD02 |
| SHA-1 | 3D1E2F76D880897E10C632B6F093F6E69B9CCCAB |
| SHA-256 | C25DB837E9A1671B3D140D244C39CB08CA625F5115287AA546EB7D3C62BA074E |
| SSDEEP | 192:CWctE8pxx7k3+2CKzSBPQwOW1ThCwnBY/833hlFJxdlfCFvaI/YVegtQ6LWsmZcM:AvhkTCKzWPpOWtC/wJJx3si1Vht1Wtl |
| TLSH | T140B2A683DF052E26D0E6CF36459ED224273CA896B3525317BE8C46F45F1778CAEA148E |
| hashlookup:parent-total | 1 |
| hashlookup:trust | 55 |
The searched file hash is included in 1 parent files which include package known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileSize | 178648 |
| MD5 | 265BA7D23108DDF15E63466DB6E37FCC |
| PackageDescription | Port Scan Attack Detector PSAD is a collection of four lightweight system daemons (in Perl and C) designed to work with iptables to detect port scans. It features: * a set of highly configurable danger thresholds (with sensible defaults provided); * verbose alert messages that include the source, destination, scanned port range, beginning and end times, TCP flags, and corresponding Nmap options; * reverse DNS information; * alerts via email; * automatic blocking of offending IP addresses via dynamic firewall configuration. . When combined with fwsnort and the iptables string match extension, PSAD is capable of detecting many attacks described in the Snort rule set that involve application layer data. |
| PackageMaintainer | Franck Joncourt <franck.joncourt@gmail.com> |
| PackageName | psad |
| PackageSection | admin |
| PackageVersion | 2.4.3-1.2~deb9u1 |
| SHA-1 | DA3F44AA5EAF2D5A0B37785BE12FCA313BD2A24D |
| SHA-256 | C7A98FE454943F1F172EC9A3CC68B08660B7B9C6158FC96BF4093D79EC8D6710 |