| Key | Value |
|---|---|
| FileSize | 51096 |
| MD5 | 86D99498C89C625B9C41E4C35B639A1B |
| PackageDescription | Plugins for the audit event dispatcher The audispd-plugins package provides plugins for the real-time interface to the audit system, audispd. These plugins can do things like relay events to remote machines or analyze events for suspicious behavior. |
| PackageMaintainer | Ubuntu MOTU Developers <ubuntu-motu@lists.ubuntu.com> |
| PackageName | audispd-plugins |
| PackageSection | admin |
| PackageVersion | 1.7.4-1 |
| SHA-1 | 7A933C70C16618F116662F875E89CCB5436115D8 |
| SHA-256 | EE25BA7C47429E71D659DC3BE6E9D92043837E8C836E851FE417F0B2674DF168 |
| hashlookup:children-total | 18 |
| hashlookup:trust | 50 |
The searched file hash includes 18 children files known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileName | zos-remote.conf.5.gz |
| FileSize | 1308 |
| MD5 | F26E5D43E9C722758BA2CBEDFB6878CA |
| RDS:package_id | 187003 |
| SHA-1 | 132F05BBF20D7B38A4323287015CBD4052E7C003 |
| SHA-256 | F99F4F353C0D415205A36BF390D78580EDA7568B5974F06F12A0AE136CFA5010 |
| SSDEEP | 24:X8ja6giO03jpjOcB8ruCecUBaLbE5+uh7bZHR8WX6EzdfopXe6XIp6ioqZqp0xPt:XwVgizpjOcB8KC6BegdhfZ3Vzdcfio+l |
| TLSH | T1B921F890D8045433C3AB47B5946F908BD4BE8EA4C9A698D78E7B0244CD3C747EDB00AF |
| insert-timestamp | 1679424419.538601 |
| source | RDS.db |
| Key | Value |
|---|---|
| FileName | ./sbin/audisp-remote |
| FileSize | 18376 |
| MD5 | 2D7F079C0E312D51ECBCF19F173785D6 |
| SHA-1 | 24B5EFFEC947BBC737971AEA619825F4BB11B0D0 |
| SHA-256 | 26A05CA1C7DCFEB77945B9BBB5DDD9E74A711EFEB71FBE3656CD04A79DB1BE74 |
| SSDEEP | 192:XeHrQK+ukySkR+rH/stNv+PgMkl5Q4yC3uxwqM3:IE0SkAEtgPklq4yC3uxK |
| TLSH | T10D82B59673E7AB27C5902E3951F34313B3AD4EA55F64A30B2A0504DE0ED2F409D7E2C5 |
| Key | Value |
|---|---|
| CRC32 | 41DA0A99 |
| FileName | ./etc/audisp/plugins.d/au-prelude.conf |
| FileSize | 280 |
| MD5 | FDBE0EAE23D0AB3963F81D4102E1CC4B |
| OpSystemCode | 362 |
| ProductCode | 183705 |
| RDS:package_id | 182052 |
| SHA-1 | 25FE37B04A644C1438DD2B609C6190BAC368918F |
| SHA-256 | CD39364F42336B4A3D5F6E1B56216C4A28732FE90F633413CDC2617304EFA7E6 |
| SSDEEP | 6:mV7id4EjQEXsoA0EvdQj3KYAmJGp6LOjkeGNy9Vd1ZY:mF+JHvElyBPGfRWAVd1G |
| SpecialCode | |
| TLSH | T19AD0C2B121B4B27814093A413A8BC5E999BAB09656281415243D88A46126074E323B86 |
| db | nsrl_modern_rds |
| insert-timestamp | 1679426507.4377716 |
| source | RDS.db |
| Key | Value |
|---|---|
| FileName | ./usr/share/doc/python-audit/changelog.gz |
| FileSize | 5935 |
| MD5 | 1A4EC7D72147E772BB2E17C09894F075 |
| SHA-1 | 55D888AB08AC08B9D44B4C1DEBD2D18248BE8804 |
| SHA-256 | 58B7501C8B53E6ACECF3468830B4DAC0E03A0A837FA8AB2A65D94C1A90BD0D10 |
| SSDEEP | 96:ZD9i/o+Q17K5RLLW0gmUFqy7A3dmgFHwPuygaL92M/0Wicov79iXyeHcD:N4A+qKn8qoAtmg2PW80Wic6 |
| TLSH | T1B5C19F139D41C2D3A32C32367C712F628618CAAEDDF4A7319D720169716AB33D1147B7 |
| Key | Value |
|---|---|
| FileName | ./usr/share/man/man5/audisp-prelude.conf.5.gz |
| FileSize | 1351 |
| MD5 | D84374E28972F5E5D0ED077021117446 |
| SHA-1 | 5DAB7EBEE6645A308881C0635EB7542DB522F1A4 |
| SHA-256 | 8C71E242942FC33557F4E910275939D7791B68B3BB1D5C0F334B737CED11124A |
| SSDEEP | 24:XLcYSIFDwPaE531yI8oDuqO5FgGRAQ6BObF3/SGZy/pBOh+Nnfl:XLcYZKaE5FyBoDu3FgG96BOh3aG4/pkq |
| TLSH | T1C521D876A0188CE998E20F637031DA35401A13E0A7997204D09E01B5EB8EB73718D99F |
| Key | Value |
|---|---|
| CRC32 | 88842C8A |
| FileName | ./etc/audisp/plugins.d/audispd-zos-remote.conf |
| FileSize | 436 |
| MD5 | BE9F4B5B737E467A8FF69348A83108E3 |
| OpSystemCode | 362 |
| ProductCode | 183705 |
| RDS:package_id | 182052 |
| SHA-1 | 655063BC53686E399C1154FB82664812C1C188FF |
| SHA-256 | 85BF9CC51764A1EBA91D71BC62F291CD96708875FA364A81EB751148E9E8F3C0 |
| SSDEEP | 12:q0RofnEEgb3duRuRhK4xxi9h0cdYDMfM3aRWid1DfvKoaC:qYofnrgbRhKCi9h0uYdTid17bl |
| SpecialCode | |
| TLSH | T179E0ABF12AC53A630C3126008B9F70D8176BA3F2523E1445722BC6999AAE5A1C30B7D5 |
| db | nsrl_modern_rds |
| insert-timestamp | 1679426507.4327202 |
| source | RDS.db |
| Key | Value |
|---|---|
| FileName | audisp-remote.8.gz |
| FileSize | 519 |
| MD5 | F15D6E07F0F684984E69D556A18E5764 |
| RDS:package_id | 187003 |
| SHA-1 | 69040374ED8DD93820D998564DF3AD0CBA71BB96 |
| SHA-256 | 542F3AAC19801E1480FA1FCB41E00CF52B9620DB549C038DDD2E855E9CFE2B7B |
| SSDEEP | 12:XZCNAHJc49m8PXJ44B/SgRKdoU+GhcA9dta08SEucll:XZCNtKmEJ4NgPULhcA9/OQUl |
| TLSH | T1E7F075D1043E26376F6D36E5104337A5E36334EDC538452E6CC81483C01CD1B039146F |
| insert-timestamp | 1679424419.5313194 |
| source | RDS.db |
| Key | Value |
|---|---|
| CRC32 | 9DA9B2A7 |
| FileName | ./etc/audit/zos-remote.conf |
| FileSize | 246 |
| MD5 | 871BBE04101FF19CF1BAA0DD300C76EC |
| OpSystemCode | 362 |
| ProductCode | 183705 |
| RDS:package_id | 182052 |
| SHA-1 | 6FE4675388A81688FCE3618EEB16B331155DF1CE |
| SHA-256 | 392EF562F7CD7F6A1D474A506C32AD4B9171926A89E9D3BD90F6B420B9847A72 |
| SSDEEP | 6:jLVYQIRQFaH42kQ6VyK7naKQ8JRDEFGMKL3TJyMLEdNj5L/SiXykfXv:jLERTZ6sSaKlvE8HJyMGNtL6iXPfXv |
| SpecialCode | |
| TLSH | T168D0979108C72DF3206607CB022630D0130CA390073F00422D22E70F5F3FA9783172EA |
| db | nsrl_modern_rds |
| insert-timestamp | 1679426507.4216154 |
| source | RDS.db |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | ./usr/share/man/man5/audisp-remote.conf.5.gz |
| FileSize | 1065 |
| MD5 | 909E035B57B3F2319C91DA6C29D3CE8C |
| SHA-1 | 75518FA771CCC028F43C00344AA9C90246FF5B51 |
| SHA-256 | 9290436693F0C2F88C19CE9974E152B269250FA5A686F41327BE1B821D1EB327 |
| SSDEEP | 24:XcgtQ5bqOflBgEY+RiNC2QDQTlmDYlwOVp6bCfQOVFT4hhbrq:XcgeOqBgEpyCz7Ylw+8bVOVFyNq |
| TLSH | T11A11B6A52A9FA42248C03370DA46B70B5D6A51701DCD46A94E033A563C5F3D70D30896 |
| Key | Value |
|---|---|
| FileName | ./sbin/audisp-prelude |
| FileSize | 44500 |
| MD5 | 42EB77FA4CD143E35DA05B5F460BE2AF |
| SHA-1 | 7B9E6043B912BFE9C886B4829FDC73625A001B32 |
| SHA-256 | F4BBB102E37A8658A1D62B42A56884C45A465BCF87774B398875CA7220A38E79 |
| SSDEEP | 768:tXfgCOqFEs4AgirFNxMFySpZIp7GnvlwwkP:tvgCOIV4Ag0Ond8 |
| TLSH | T14213B42633F9492BC0907E7564A767B3F7EDDB858990D70F6E05088E1E81B4429BB3E0 |