Key | Value |
---|---|
FileName | ./usr/bin/bro |
FileSize | 6795712 |
MD5 | EB8517C84C8BF8D54D062A9F34A65895 |
SHA-1 | 893F7E64EDF5944C973A1B3DF5D9808EA9A71F5D |
SHA-256 | 38FF2B4117E5A0871BB3292B13BCFF417E9E8CB3E6FF1298342C757E0FAE1FA3 |
SSDEEP | 98304:OWbv3RQl4NmR7suiutIRaz9UCpE3DtWPmUE/wn+f3:Xhi467suiuIozSCpE3DDUOwA |
TLSH | T1AA667D4BFB129879F2A351B10787EBF208346A3B4053807AED4DDF6C74762969F062B5 |
hashlookup:parent-total | 1 |
hashlookup:trust | 55 |
The searched file hash is included in 1 parent files which include package known and seen by metalookup. A sample is included below:
Key | Value |
---|---|
FileSize | 2146596 |
MD5 | 715DDA352978A06C454F3F9E1A9F2E10 |
PackageDescription | passive network traffic analyzer Bro is primarily a security monitor that inspects all traffic on a link in depth for signs of suspicious activity. More generally, however, Bro supports a wide range of traffic analysis tasks even outside of the security domain, including performance measurements and helping with trouble-shooting. . Bro comes with built-in functionality for a range of analysis and detection tasks, including detecting malware by interfacing to external registries, reporting vulnerable versions of software seen on the network, identifying popular web applications, detecting SSH brute-forcing, validating SSL certificate chains, among others. |
PackageMaintainer | Hilko Bengen <bengen@debian.org> |
PackageName | bro |
PackageSection | net |
PackageVersion | 2.5.5-1+b1 |
SHA-1 | ADDBA3C68018E7E0366903CFD3A139B5FBEFA2EE |
SHA-256 | D47AE636E7A6BA350FDE96A6EAA40B4C9CBB10B9848483ED6FD2279D7704D199 |