| Key | Value |
|---|---|
| FileName | ./usr/sbin/kmsgsd |
| FileSize | 19060 |
| MD5 | 1A437A1EA994F4A4469F7F4B8A77FF8C |
| SHA-1 | 3D4A51970E795D153FC7618B0C9B9D329F0D9C3E |
| SHA-256 | C91AE003F3349B9F4A80AFF6CDA82AA12ADC1A5D6F691978BC2E0DC4D0B25EE6 |
| SSDEEP | 384:PYcwZo5uJ7amJRPgU6eQuFAm0olfQhkKBIo9jja3Z8iEDDNHG9ySNq:PnLYJ7amJRp6efFAm0K4hkKBIo9jjGic |
| TLSH | T12282B65BFF501EA7C4CBCD750A1E839216FDC8DF9381A36BB95CCA942B03A096D93485 |
| hashlookup:parent-total | 1 |
| hashlookup:trust | 55 |
The searched file hash is included in 1 parent files which include package known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileSize | 178376 |
| MD5 | 6072234861F3202722435F183F1D6DE7 |
| PackageDescription | Port Scan Attack Detector PSAD is a collection of four lightweight system daemons (in Perl and C) designed to work with iptables to detect port scans. It features: * a set of highly configurable danger thresholds (with sensible defaults provided); * verbose alert messages that include the source, destination, scanned port range, beginning and end times, TCP flags, and corresponding Nmap options; * reverse DNS information; * alerts via email; * automatic blocking of offending IP addresses via dynamic firewall configuration. . When combined with fwsnort and the iptables string match extension, PSAD is capable of detecting many attacks described in the Snort rule set that involve application layer data. |
| PackageMaintainer | Franck Joncourt <franck.joncourt@gmail.com> |
| PackageName | psad |
| PackageSection | admin |
| PackageVersion | 2.4.3-1.2~deb9u1 |
| SHA-1 | FABFF74EA76EC3C9EEA516AD2B565F4524E9EDE7 |
| SHA-256 | A5C7A8D05F97C33E07AA435E3AC982FC5A46252BD8A35A037CB4568FD7203746 |