| Key | Value |
|---|---|
| FileName | ./usr/sbin/kmsgsd |
| FileSize | 24096 |
| MD5 | C6181F81111B30653FBBCB531ACE0FC6 |
| SHA-1 | 3DA64C82F02D8123899020057ACC2DD3E2C2E0EA |
| SHA-256 | 11E979358BA3B193A15785A0852D69D76D2833DA096D25DF7F43A83D49EBC4E3 |
| SSDEEP | 192:vKHnD8X+2M+civ9/OalxV9V7oDX9rNtuvIuhJkDYQOFD6LWsmZcBWL16G:yq+3+4WINtuAuYDYQ1WtaW5 |
| TLSH | T1C1B2A687DF052D17D4E7CF35459E9279273C28A2B3629327BE8C42B41F57ACC9EA104A |
| hashlookup:parent-total | 1 |
| hashlookup:trust | 55 |
The searched file hash is included in 1 parent files which include package known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileSize | 178136 |
| MD5 | D72F4450F016071E0F7F95B86D5020FA |
| PackageDescription | Port Scan Attack Detector PSAD is a collection of four lightweight system daemons (in Perl and C) designed to work with iptables to detect port scans. It features: * a set of highly configurable danger thresholds (with sensible defaults provided); * verbose alert messages that include the source, destination, scanned port range, beginning and end times, TCP flags, and corresponding Nmap options; * reverse DNS information; * alerts via email; * automatic blocking of offending IP addresses via dynamic firewall configuration. . When combined with fwsnort and the iptables string match extension, PSAD is capable of detecting many attacks described in the Snort rule set that involve application layer data. |
| PackageMaintainer | Debian QA Group <packages@qa.debian.org> |
| PackageName | psad |
| PackageSection | admin |
| PackageVersion | 2.4.6-1 |
| SHA-1 | 4F2327A8A8FBCC2FC22FEF1D8D1F26B4D8B2758F |
| SHA-256 | 3B0BF844CCF2B9D4588155223021B2C5A2B020679218940D1AF656710BA21B0B |