| Key | Value |
|---|---|
| CRC32 | 1979806F |
| FileName | ./etc/suricata/rules/files.rules |
| FileSize | 3004 |
| MD5 | CAB751742CFE00414F5BAF6FEDA4EB8A |
| OpSystemCode | {'MfgCode': '1006', 'OpSystemCode': '362', 'OpSystemName': 'TBD', 'OpSystemVersion': 'none'} |
| ProductCode | {'ApplicationType': 'Operating System', 'Language': 'English', 'MfgCode': '1722', 'OpSystemCode': '599', 'ProductCode': '163709', 'ProductName': 'BlackArch Linux', 'ProductVersion': '2017.03.01'} |
| SHA-1 | 4404AB5CED978D9C5F555401F6D572E4B1CAAC17 |
| SHA-256 | 63B6472F95C8FDC4917A7DC898973B46F4BB85405C218E9DAF7369D0F30BD685 |
| SSDEEP | 48:RQkZ31rYmT4LpgXci7Ol8J//OTt/sEmzJOJh:T1rigX7iA/ot/EzIh |
| SpecialCode | |
| TLSH | T1E8514B891F581C7A4FD5B2B6A3DE34E4A6A7C29EF5126D54E1C03018E3448BB53F1077 |
| db | nsrl_modern_rds |
| insert-timestamp | 1647003804.3381867 |
| source | NSRL |
| tar:gname | bin |
| tar:uname | root |
| hashlookup:parent-total | 28 |
| hashlookup:trust | 100 |
The searched file hash is included in 28 parent files which include package known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileSize | 790798 |
| MD5 | 08896A6400899FF4AC1721259156BADB |
| PackageDescription | Next Generation Intrusion Detection and Prevention Tool Suricata is a network Intrusion Detection System (IDS). It is based on rules (and is fully compatible with snort rules) to detect a variety of attacks / probes by searching packet content. . It can also be used as Intrusion Prevention System (IPS), and as higher layer firewall. . This new Engine supports Multi-Threading, Automatic Protocol Detection (IP, TCP, UDP, ICMP, HTTP, TLS, FTP and SMB), Gzip Decompression, Fast IP Matching and coming soon hardware acceleration on CUDA and OpenCL GPU cards. . This version has inline (NFQUEUE) support enabled. |
| PackageMaintainer | Pierre Chifflier <pollux@debian.org> |
| PackageName | suricata |
| PackageSection | net |
| PackageVersion | 3.2.1-1+deb9u1 |
| SHA-1 | 000E2E76E42D3F2E224AF146428F874FC66D78A2 |
| SHA-256 | B11B5BB0BD2CB742CA001378D67760573E87E4C3EE79C515B6F11322B0256028 |
| Key | Value |
|---|---|
| FileName | https://ftp.lysator.liu.se/pub/OpenBSD/6.3/packages//amd64//suricata-4.0.4p2.tgz |
| MD5 | 561B1C7FCBDC4D716A5C2155F8A8DFC6 |
| SHA-1 | 1567082B421644D096883F0AE64229ED77F310AB |
| SHA-256 | 81E5973E74D8ADC2E17220F732BA3409C017356BDA5D6CAFEE3A674E5681BA4E |
| SSDEEP | 24576:n7dXcvi1TGq4cH3RzfQ7gdtrTKhSWWIcwJr6PCXcg8AN4gA7OYN:nZgi1Tv48hzfEg7r2hSDIHr6PfKN4KYN |
| TLSH | T1DD65337F206A044F2B353E49BEB3161D4F248B47D1BD8E01087457671EADB8D2A9F93A |
| Key | Value |
|---|---|
| FileName | https://ftp.lysator.liu.se/pub/OpenBSD/6.3/packages//i386//suricata-4.0.4p2.tgz |
| MD5 | 2E02ED26C2619BA1338A944616F05ADA |
| SHA-1 | 16A4109A42487E93C2D0824EDDF0C83E4FDE9DA5 |
| SHA-256 | 78E59F63F091C76661B4ADF1C80A13FB03EFE36E0195654CADE351FDAA80BD76 |
| SSDEEP | 24576:/6KQlAvfrsO4BwurPZw5mMNhv0D3zF6K5LKzmiJK5JtujnEU3ASj+lkBYN:/6MvfrsO4CutOxazFnf5JtyjQSjwMYN |
| TLSH | T1905533841F591506F2FFA2F97A27011691A34BD946BA041B2EFCFCD68D2C7F9D2058B8 |
| Key | Value |
|---|---|
| FileName | https://ftp.lysator.liu.se/pub/OpenBSD/6.4/packages//powerpc//suricata-4.0.5p0.tgz |
| MD5 | 26F62D6248C89668E3BBF26D8E8AD989 |
| SHA-1 | 294F05C7044F03FA234F15CB5E4E56AD6EA1B4EB |
| SHA-256 | 051ACCFE3433815E8B01074BA912AC98850D1A247249C174B5F375BE79D86DD1 |
| SSDEEP | 24576:pG3qOZMP6EWLulVPAnO2Vr1B5D+7S0ghIFVEdlGEkNFxX4PF18lxS8+VvRL:pGZZMPwLuTPAOwdCSdKVx7WPF1CS8C |
| TLSH | T10865337869214F2096E207C6063404E8AF9FA3F528967E57CEED4D87188447AFCDF69C |
| Key | Value |
|---|---|
| FileName | https://ftp.lysator.liu.se/pub/OpenBSD/6.4/packages//mips64//suricata-4.0.5p0.tgz |
| MD5 | A72E7F15B42C47123680CD48660AEE63 |
| SHA-1 | 2A9F888EFE137535B944FE28E90AF4743AEAFD60 |
| SHA-256 | F31C51551126C6881188B5D4DC3791537E57D3A02B78043993577754F8D635B9 |
| SSDEEP | 24576:wndfawOXPc3Tng7MckRZwebO9fmXRxLHlAc8XVTB788Yamc3ELZyEnDRL:QywOELWMfdbO9fSJKc8XVTB78tamKRE1 |
| TLSH | T1CD6533A3FD4B7B90C13AD24087E370C899C9300885729F516B5F19EAE7B9C29EE1175E |
| Key | Value |
|---|---|
| FileSize | 897430 |
| MD5 | 8715C5090FA82B2E04124EE95774F0C2 |
| PackageDescription | Next Generation Intrusion Detection and Prevention Tool Suricata is a network Intrusion Detection System (IDS). It is based on rules (and is fully compatible with snort rules) to detect a variety of attacks / probes by searching packet content. . This new Engine supports Multi-Threading, Automatic Protocol Detection (IP, TCP, UDP, ICMP, HTTP, TLS, FTP and SMB), Gzip Decompression, Fast IP Matching and coming soon hardware acceleration on CUDA and OpenCL GPU cards. . This version has inline (NFQUEUE) support enabled. |
| PackageMaintainer | Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com> |
| PackageName | suricata |
| PackageSection | net |
| PackageVersion | 3.0-1 |
| SHA-1 | 2CD110345E629F7D20794E5F12AF05BF5FDE6F2B |
| SHA-256 | 80335B2DBFB7F7C8F9F1CB6EF1D96851BDABAAA9AA2DF4ACF636047FBF384C45 |
| Key | Value |
|---|---|
| FileSize | 927684 |
| MD5 | 83B28914C7B81E08669AA89560CC25FA |
| PackageDescription | Next Generation Intrusion Detection and Prevention Tool Suricata is a network Intrusion Detection System (IDS). It is based on rules (and is fully compatible with snort rules) to detect a variety of attacks / probes by searching packet content. . It can also be used as Intrusion Prevention System (IPS), and as higher layer firewall. . This new Engine supports Multi-Threading, Automatic Protocol Detection (IP, TCP, UDP, ICMP, HTTP, TLS, FTP and SMB), Gzip Decompression, Fast IP Matching and coming soon hardware acceleration on CUDA and OpenCL GPU cards. . This version has inline (NFQUEUE) support enabled. |
| PackageMaintainer | Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com> |
| PackageName | suricata |
| PackageSection | net |
| PackageVersion | 3.2-2ubuntu3 |
| SHA-1 | 3A84B4AAE6224AFA2C11F11650B0B9549ADB5A45 |
| SHA-256 | 937C378E9924370AD2DBC1F4FAF0986E7DB1D2D621011CC172D4D72225C69E80 |
| Key | Value |
|---|---|
| FileName | https://ftp.lysator.liu.se/pub/OpenBSD/6.4/packages//arm//suricata-4.0.5p0.tgz |
| MD5 | D58CEB15D7763221F1B7665BDB2E4838 |
| SHA-1 | 3C7AFC7B60AEACDDB0CE15BE18598DB994E707D5 |
| SHA-256 | A878510083D64ADEB4ED26371ADA6D2FD048224F16BAC4DCAA0693225F32F2CB |
| SSDEEP | 24576:8TjCG8S70nkJpvCImXCJoJvz9CzqXQrkWH4RcC4WAZMgur172ij8QLjnLyhanlWP:8Tj8SwsvCcmd5rWH4Z1rN172ij7LYel6 |
| TLSH | T1157533E93F4BB7B6F33245450FC19F610FE79C69195A6CA1CEC224FA208A2556F9039C |
| Key | Value |
|---|---|
| FileSize | 962134 |
| MD5 | 9E8B0F671591142C1702F1D69E020218 |
| PackageDescription | Next Generation Intrusion Detection and Prevention Tool Suricata is a network Intrusion Detection System (IDS). It is based on rules (and is fully compatible with snort rules) to detect a variety of attacks / probes by searching packet content. . It can also be used as Intrusion Prevention System (IPS), and as higher layer firewall. . This new Engine supports Multi-Threading, Automatic Protocol Detection (IP, TCP, UDP, ICMP, HTTP, TLS, FTP and SMB), Gzip Decompression, Fast IP Matching and coming soon hardware acceleration on CUDA and OpenCL GPU cards. . This version has inline (NFQUEUE) support enabled. |
| PackageMaintainer | Pierre Chifflier <pollux@debian.org> |
| PackageName | suricata |
| PackageSection | net |
| PackageVersion | 3.2.1-1+deb9u1 |
| SHA-1 | 41FDBE2FE5EB8598EE3DFBDB8041E4FF39BE356E |
| SHA-256 | E6D3A3F8915AF5DF90DD57F5A988830BB52B5673286694853B1EE782369F63C5 |
| Key | Value |
|---|---|
| FileName | https://ftp.lysator.liu.se/pub/OpenBSD/6.4/packages//sparc64//suricata-4.0.5p0.tgz |
| MD5 | CED4D18514282D5146D32C20FDFDBEFE |
| SHA-1 | 5AB196594D5D79ADB367793B94A53A0341645B9B |
| SHA-256 | E0640BC991E3B2FC29193103FE16EFFB99157EE10989A3E7F1D6E895547E6F23 |
| SSDEEP | 24576:i4Hs1eK2DZyrv82CugZ+wzcOi0FAAsCVCl9TOXxWEnJgfNL0ByxX0CmJX8sdnRkZ:i4Hs1h2dRDzcOi02AsCVq9TQxlJgx0wz |
| TLSH | T142753361262CD37A050BDE17585D050B925E3BD0AE1CE2DB8C356C3613A7B1AAB3B77C |