Key | Value |
---|---|
FileSize | 967490 |
MD5 | E5C68DD695165154F058F455D6F007F4 |
PackageDescription | Next Generation Intrusion Detection and Prevention Tool Suricata is a network Intrusion Detection System (IDS). It is based on rules (and is fully compatible with snort rules) to detect a variety of attacks / probes by searching packet content. . It can also be used as Intrusion Prevention System (IPS), and as higher layer firewall. . This new Engine supports Multi-Threading, Automatic Protocol Detection (IP, TCP, UDP, ICMP, HTTP, TLS, FTP and SMB), Gzip Decompression, Fast IP Matching and coming soon hardware acceleration on CUDA and OpenCL GPU cards. . This version has inline (NFQUEUE) support enabled. |
PackageMaintainer | Pierre Chifflier <pollux@debian.org> |
PackageName | suricata |
PackageSection | net |
PackageVersion | 3.2.1-1+deb9u1 |
SHA-1 | 861884C161FCECB1A08AC5C2CCB7EFE31F49FFDF |
SHA-256 | 0A44F173D30890C0DDBD78968BE8F53671C404B00C4F600F1FEB5BAECFBFB19C |
hashlookup:children-total | 29 |
hashlookup:trust | 50 |
The searched file hash includes 29 children files known and seen by metalookup. A sample is included below:
Key | Value |
---|---|
CRC32 | 6D700B70 |
FileName | ./etc/suricata/classification.config |
FileSize | 3533 |
MD5 | ED4A4D01BEC414FBAD1BD9A0A053FBBD |
OpSystemCode | 362 |
ProductCode | 163709 |
SHA-1 | 0E4A5F3E0A62590FBB0C6209884DEB55C3FA4697 |
SHA-256 | CF8B437A88729AE94134E96911990CAF625E614EA4C2464CFB6B24FE95F1CF0D |
SSDEEP | 48:Q+6eUqKOpqh7MdGjV/lv5rV/lYwEljCgk8w44jdrbzZksFN8v:Qkqhd/lIl6fx6t |
SpecialCode | |
TLSH | T1DC71BC831508BD7B2BC34D66C69143A6AA7A428CFD33156C7CFBD7041704899E7772A5 |
db | nsrl_modern_rds |
insert-timestamp | 1646982957.1317284 |
source | NSRL |
tar:gname | bin |
tar:uname | root |
Key | Value |
---|---|
CRC32 | F0EF1234 |
FileName | ./etc/suricata/rules/stream-events.rules |
FileSize | 11879 |
MD5 | 7DF99BCBC320BCCBA843048279C5AD3A |
OpSystemCode | 362 |
ProductCode | 15991 |
SHA-1 | 0FFB08A4AF6A400CF2D621A1C9A0061B93EF54A3 |
SHA-256 | A5C0C81AD67F9F324117FF0DBE67EF83DCBD1CAA50E0C92967A8B83F673DFD8B |
SSDEEP | 192:ffKUKQE8OO8VdRw22CRNQKNKJCkjes4kJZVbWpNKBl:ffKUKQE8OO8VdRw22CRNQKNKJCkjepkd |
SpecialCode | |
TLSH | T1D9324C599BA40AFA07DBD00041A1F6F17EBF5356FD081E81B9F1FD28F3891A563B0266 |
db | nsrl_modern_rds |
insert-timestamp | 1646983677.498256 |
source | NSRL |
Key | Value |
---|---|
FileName | ./usr/bin/suricatasc |
FileSize | 2263 |
MD5 | A5AF38692D7C642DB0ECFA69944645B0 |
SHA-1 | 146662C0604E24BE29866D3487460E4D01BE7B9A |
SHA-256 | 1571DD306F3D3A9E11E6E753CAAADB2AFA7B5D3A27C33826426C202226CF0520 |
SSDEEP | 24:zQ2viyUVOkHxHqTbV3LiAbrQ2zgsfSFL6DbDDLVyYRF1i0vE5BwCI2kZOiOd/I:dayUjH0LiSQ2ksfSB4Dv0s4tIb0m |
TLSH | T1E241A604681611B61F8200EA541894EAF32B3B4B326C7471E1C8CB147F50A34E3F72F9 |
Key | Value |
---|---|
CRC32 | 539BF8C2 |
FileName | ./etc/suricata/rules/smtp-events.rules |
FileSize | 4939 |
MD5 | 526AFDDF17F6F675ECB8EA4D701A2FCF |
OpSystemCode | 362 |
ProductCode | 163709 |
SHA-1 | 17E5511928E4892E7764B377CB691CA3096E88C8 |
SHA-256 | 32AFD2176B6DE1B51A8A24E580768C08AE108024A045416450BC6E9AA61A0D9F |
SSDEEP | 96:FAQr0LHBS04dyL0g+Y0idJ0wGyne0RkyaX05xE0BqZl0dbulh0N971i0zlXlA0HZ:FVCHQdKZb3NaA2ogK97nlx7Kmc7SeE3f |
SpecialCode | |
TLSH | T10AA18B86EBE614FE06CF816A81B978F13A7F87A2B9380580B5F4BD5CC3C4055537929B |
db | nsrl_modern_rds |
insert-timestamp | 1646987153.2108016 |
source | NSRL |
tar:gname | bin |
tar:uname | root |
Key | Value |
---|---|
FileName | ./usr/bin/suricata |
FileSize | 2665952 |
MD5 | 4E71FE0CDE026E517D6DBBDB3A381273 |
SHA-1 | 1BE15765678276700B0AD4BD9AA4CD03014A1DFA |
SHA-256 | DA37BFCB836C8937309E70E31CC3097600E1F77E06CF65C5B700B78B94CE7983 |
SSDEEP | 49152:GoHA+3QC2xLJFSPrxruz6nyMwdQDa/51TZQBiVem+BeB4S5m8msOiHU6kR:G3TF0rdIx1xciVe1eB4Mc1y |
TLSH | T195C54C02B1B2509DC469C47087EB9271AE71F8AE42357C7F2CB5E9303FA1D712B6A716 |
Key | Value |
---|---|
FileName | ./usr/share/doc/suricata/README.Debian |
FileSize | 2764 |
MD5 | 1944D6053424944A81BC6A2FA3EE4BDF |
SHA-1 | 2103A4D04021FF3A17260BD285CB91D04D37A370 |
SHA-256 | 36FF0F6B1C568D2A3D2B63AFA3FF20D1A91D12AC959D1FD277155B13DB086A75 |
SSDEEP | 48:aGFZLEUU+Tpb0Ifz380i0ss3nAIbRDQ+DIZFpkKYj450BwB1xYwEZd2z:lbf9Tss3pRQDka7Id2z |
TLSH | T1335156C31E0086F58412FA7EDA4E11E4EB1978BC32A67C321BEDA844B41553433FDA65 |
Key | Value |
---|---|
FileName | ./etc/logrotate.d/suricata |
FileSize | 183 |
MD5 | 3255074F50B2042AAD1490E8A88AA3A2 |
SHA-1 | 3D6C94A11053F9BE63CD841E1651BCDCA9E0B0D5 |
SHA-256 | F95789A4166F06C69695C31DE79BF586CD72C0A862CF50292E35D2AE342F6C96 |
SSDEEP | 3:EJvCMNL8+SCMNLu10X5vpMW/CFsdI9zNcxQLdAVQVasTMROTRjJ8gC4FT651N:EJqM3rMzKW/CFKyNSQLdAVQcsTvbFTk |
TLSH | T1D9C022F50803A8560C88847CC63A814CDEC048002C04486BCAEDECB003091383B0A200 |
Key | Value |
---|---|
CRC32 | 1979806F |
FileName | ./etc/suricata/rules/files.rules |
FileSize | 3004 |
MD5 | CAB751742CFE00414F5BAF6FEDA4EB8A |
OpSystemCode | 362 |
ProductCode | 163709 |
SHA-1 | 4404AB5CED978D9C5F555401F6D572E4B1CAAC17 |
SHA-256 | 63B6472F95C8FDC4917A7DC898973B46F4BB85405C218E9DAF7369D0F30BD685 |
SSDEEP | 48:RQkZ31rYmT4LpgXci7Ol8J//OTt/sEmzJOJh:T1rigX7iA/ot/EzIh |
SpecialCode | |
TLSH | T1E8514B891F581C7A4FD5B2B6A3DE34E4A6A7C29EF5126D54E1C03018E3448BB53F1077 |
db | nsrl_modern_rds |
insert-timestamp | 1647003804.3381867 |
source | NSRL |
tar:gname | bin |
tar:uname | root |
Key | Value |
---|---|
CRC32 | D941D6B6 |
FileName | ./usr/lib/python2.7/dist-packages/suricatasc-0.9.egg-info |
FileSize | 650 |
MD5 | 6224573C6FF34A9D573FB9B5CD1A5644 |
OpSystemCode | 362 |
ProductCode | 163709 |
SHA-1 | 493F36693293EE8CE6E5E20EFF96FE543006E4F1 |
SHA-256 | F308F499C07F19676A7B2F1064116C39FC47C72F9211EB70D678FB44C632C67A |
SSDEEP | 12:DaQWakQsMl3PTsMOiM8JXBQSZZjgjRVkNd5ABvjhjPQI54/GkSgWC0AEkL:DaF2sMlfTsMS8x+z4WXQIyNWAEkL |
SpecialCode | |
TLSH | T193F0DD8175E0DDD96FA789919919D3DA6A3247006E4D785E78EC021CDEA1431D37C07C |
db | nsrl_modern_rds |
insert-timestamp | 1647005736.8243248 |
source | NSRL |
tar:gname | bin |
tar:uname | root |
Key | Value |
---|---|
CRC32 | 8D62341A |
FileName | usr/share/suricata/reference.config |
FileSize | 1375 |
MD5 | 1843F82685DF884407AEE2B1EF0FDB88 |
OpSystemCode | 362 |
ProductCode | 163709 |
RDS:package_id | 285090 |
SHA-1 | 4CA97A54D42728C8500DECAE407D78DC3FA6B407 |
SHA-256 | 43117FC342EEBF1DC4942541B19F2A3A37CF22A3C0E4D0B48E4DBC6D40B81610 |
SSDEEP | 24:IAGyG/Qk/ccHVUtPkGDTADoeFAGE3aj4toXSy:k/lKKoeFhfay |
SpecialCode | |
TLSH | T14B21BBCF490BC9B207208E15E0F26B5BBB2757EE20AB45A9F14A680C5780FB3B016771 |
db | nsrl_modern_rds |
insert-timestamp | 1662198410.7032514 |
source | delta.db |
tar:gname | root |
tar:uname | root |