| Key | Value |
|---|---|
| FileSize | 82496 |
| MD5 | 43D3D1E677D34B8B3F09B1B9294504C2 |
| PackageDescription | Security Information and Events Management System [ Log Agent ] The Prelude Log Monitoring Lackey (LML) is the host-based sensor program part of the Prelude SIEM suite. It can act as a centralized log collector for local or remote systems, or as a simple log analyzer (such as swatch). It can run as a network server listening on a syslog port or analyze log files. It supports logfiles in the BSD syslog format and is able to analyze any logfile by using the PCRE library. It can apply logfile-specific analysis through plugins such as PAX. It can send an alert to the Prelude Manager when a suspicious log entry is detected. |
| PackageMaintainer | Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com> |
| PackageName | prelude-lml |
| PackageSection | admin |
| PackageVersion | 5.2.0-2 |
| SHA-1 | 91609F1AB67590ABD21F6E001EC28938622BB7AE |
| SHA-256 | 9E3DA3636244F3724A0A235453DF659AE41E94E1E917DD585154858ED8E5D8B0 |
| hashlookup:children-total | 15 |
| hashlookup:trust | 50 |
The searched file hash includes 15 children files known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileName | ./usr/share/doc/prelude-lml/changelog.Debian.gz |
| FileSize | 1940 |
| MD5 | BA8B0BE24F851F06B9A56C0E2E6A92F0 |
| SHA-1 | 20145DBAFD5971EB812DA4E5E1EC14ED8F0DC15B |
| SHA-256 | CE4F7632AF2AA97260E5E50F78EB187C04C5A0E8CFA168FEBEF594E0C5C2DB38 |
| SSDEEP | 48:X9ldn67t82pPD/CWtazITmH+kaKxBCB/xXkxIIO1COK:n8582pPD/CWtacyH+JB/xXcII5 |
| TLSH | T11F410CC64098B42E318633F0CD9526379D9D2EF98A20AAB9DD88111DCF0659E6BF3935 |
| Key | Value |
|---|---|
| FileName | ./etc/prelude-lml/plugins.rules |
| FileSize | 836 |
| MD5 | 446480A94DE7E09917ACD9C48361234B |
| SHA-1 | CCC52AC2BE9F8DCFFA54115CD8F46FC7995DC8D5 |
| SHA-256 | 6E009A53AD344BD1563EA2A2B79A8D3F53886948567979355EA3FCCD2C3F6BF9 |
| SSDEEP | 24:SslZ+0CJBxd1ayS3EPSR0LSjTWdEkoF7lS5EPgLRSaAgm:S++0CJBX1ayS3yS+LSncEnS5ygLqgm |
| TLSH | T172014C1F878D253101E584E23099E1D9462AD2D9ABF0E091F7DE855C6B3497E51A9D40 |
| tar:gname | bin |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | ./usr/lib/x86_64-linux-gnu/prelude-lml/pcre.so |
| FileSize | 43504 |
| MD5 | 57F1580D4A1B0CCA5C006638FE3174B2 |
| SHA-1 | E0A679D0708CDDD042A4506EE8E3A3ABD25BE84C |
| SHA-256 | F9A45BD4B127FF966A248CCB2A4F9815209F1E0C5F1580C13DD816BC328B6227 |
| SSDEEP | 768:mqGc0TAcAQQoZhJR5BpxZhJR5Bpxs0ckMU8Es0ckMU8Es0ckMU8Es0ckMU8EP3/I:mqGc0TAcBIMbrPRG/xiIHtArId7vN |
| TLSH | T1A413E80FB0914CBCC4D4A171CA9BD6226931B0589531162FAF4093BD2EF76359BBBD72 |
| Key | Value |
|---|---|
| FileName | ./usr/lib/x86_64-linux-gnu/prelude-lml/debug.so |
| FileSize | 14488 |
| MD5 | 7B9E4F96DF40EFE7737A630B1085117A |
| SHA-1 | FA60240D361C8C9EAE7FD8C58DD5E26526F363DB |
| SHA-256 | CFFD9B557087CE83F594F4BB9E8C21BEFCDFA3CBB2C20566475FAD8464B19E79 |
| SSDEEP | 192:RZH8/c/NMMavXvn/3PHfXvn/3PHfayqC6XGtGomi:mc//avXvn/3PHfXvn/3PHfayqC62D |
| TLSH | T14252770EE220CE7EC5FCA272C59745712271A098B6B1123F7F90927A2DE731856B3D59 |
| Key | Value |
|---|---|
| FileName | ./usr/share/doc/packages/prelude-lml/HACKING.README |
| FileSize | 780 |
| MD5 | CE979EC4C4C9FD55949BA6867F0EB356 |
| SHA-1 | 2D6ACFF0197B79132F46DBE5FAFAC14975C0E1F0 |
| SHA-256 | 5CE75927A9FE75588107C5E2A7BF5979807A22A5AA9F21DFB3EB7497F9FB6DDB |
| SSDEEP | 12:hBe+oVOrqLRh15X2voInFi2yE0MevyCmFQMl9Kr1yAHkxbpfgtthcAkU5tDWg2:XywrqLvzHIE2M5yCmFjqNHkxNEeAvW |
| TLSH | T13E01F11EF36C62A8254609917282E3F6A20F41DACB214431E116D4C533BAA7E853F5DD |
| Key | Value |
|---|---|
| FileName | ./usr/share/doc/prelude-lml/NEWS.gz |
| FileSize | 10715 |
| MD5 | BB6531860D1CE9E30ED71E422F34791B |
| SHA-1 | 9A0E6FADCE0C9DACD9EC9E80CAC69640C9D498F6 |
| SHA-256 | 90F121310BCB4188334A80A85E69EC32A7A50C4686E56D9B2ABC88AB8695DB56 |
| SSDEEP | 192:bwdYusZzHnVekEctQdvpZqDRlMjpyrbKS+b19r0nOhsiSfF05Nh1r:nVZVYctQtpZIMjGK5TvSINb |
| TLSH | T1D922AF9AB116CFA50D85A6E42D47E8057CB72CEDF0938AA45B4E52C287C88B5841F8F8 |
| Key | Value |
|---|---|
| FileName | ./usr/include/prelude-lml/prelude-lml.h |
| FileSize | 2451 |
| MD5 | C8873A1D5DB87C894A91B6282224D966 |
| SHA-1 | E539858EA65341626964FEC5F4D452059A44F85F |
| SHA-256 | AE0B63C0C4CBFE7E690D8D55EA5BF32C2CDEC34FA92BBF79269198884AF94EBC |
| SSDEEP | 48:nymdpey3HTyiDNxUbta6zr4yno6SuYUSui7WoPoFnojTTnOB05s:bBD0XZ/Z |
| TLSH | T10851A9D1983EC7A63DB30BF120D652C3600962ED7A65DAC2754EF35C446737C1222BA3 |
| Key | Value |
|---|---|
| FileName | ./usr/share/doc/prelude-lml/README.Debian |
| FileSize | 517 |
| MD5 | 1298A4E7F1407B397C009E970A0EA593 |
| SHA-1 | 487955E33B167AA2C765B8B1BC951E55608DC0BA |
| SHA-256 | 2FC3B69E22C20B480C2AA5B833AD58E4BB3096BF6AC1D2EEA10F0327426B581B |
| SSDEEP | 12:nkcoBHPyNmY/m5LaR9dEB+EsRFkcvhY1V2kK0huKIcKe/m9:QNKmY/m5LudEB+EsbhCfK0huKIcKeu9 |
| TLSH | T1F9F09EE66DCD788511F0DBEAF022C090D65BFC5E50407131700CE1EE410234C05CE210 |
| Key | Value |
|---|---|
| FileName | ./usr/bin/prelude-lml |
| FileSize | 137568 |
| MD5 | 905BA331F9BA7049CA60CEFCBE1741B6 |
| SHA-1 | E944C69DF944D2976245A89408A37AA367EAEB19 |
| SHA-256 | 4BE2CB18FF3AA10FD4725C254150DD52088319C12B9B43C3AB743695A50AA802 |
| SSDEEP | 1536:kHK5KO0vtnekL7wgPeAgNFn3Y9uDexf9Ct9RbB0JrGrGRpgSR3CefXrhF4xGOm:koKOgtekLJLgclf9kBHapg+3zfNuxG |
| TLSH | T142D3080FB1914D7CC5C0E571CA9BE2122A70B458A731262F3E4097B92EA6B7C567FA31 |
| Key | Value |
|---|---|
| FileName | ./usr/share/doc/packages/prelude-lml/README |
| FileSize | 1742 |
| MD5 | A5924B09DE4B82B6F15A5BE943CA79F2 |
| SHA-1 | CBF9D34C6A6077CE6250E1E681663EBFF1E19795 |
| SHA-256 | E36B8D95200965696F8FB79B0338C070E7A370B6B52F1227F7187AC201B3B4E0 |
| SSDEEP | 24:ykwdzTaLVNECo7w5QlXlunfy1XICIrYKZQgDnJkt8MswCHJfVKcDwaq+ygXA:SwECo7Hlua1XtKZQg1kt8DXJfVsP |
| TLSH | T1AE3116FFA2687270734525C87216E0FBCBA375AEE2602571FC9C94D5632A39C4236B85 |
| Key | Value |
|---|---|
| FileName | ./usr/lib/tmpfiles.d/prelude-lml.conf |
| FileSize | 34 |
| MD5 | 9AA765C0FBD435BC86E8A9D53018E6BB |
| SHA-1 | E09E2FA82BD7D652E6770F0A6923AEFB5CCA817E |
| SHA-256 | 225A587D7BDE0445A26EAF9D1B049B32C4B88CB75D73EDDB6EA932FB00C24999 |
| SSDEEP | 3:kQe4VjC3HJ:kQldC3J |
| TLSH |
| Key | Value |
|---|---|
| FileName | ./etc/prelude-lml/prelude-lml.conf |
| FileSize | 7132 |
| MD5 | F82835D4ACD6BBAF8921C8D4E77E3EC7 |
| SHA-1 | DA00B13132CB0C36EB4CD880F3C6F7CE7D9763F6 |
| SHA-256 | 0F141D76ABF3DBD91333996034FF9644C2600657D2D4F7CF833AFF22CE68B2FD |
| SSDEEP | 192:mKqkehijEnNUiXyB0Xus6vzGUgp4MGSO25e:mkSPUsW4OP |
| TLSH | T14DE18566D24D373B13CB03A150AEE1DD9B3D904D6E73301162DD98687201E7892FBBE5 |
| Key | Value |
|---|---|
| FileName | ./usr/share/doc/prelude-lml/copyright |
| FileSize | 7042 |
| MD5 | FD3812A430FE63F003C96F99CD0161BB |
| SHA-1 | 77CCAFEDD12E5C02306373C6DD53FF79E61163C6 |
| SHA-256 | 50A5508C4A8FCD0B26167DF51CD1DE94A014AE1ACDA2D9350B5818E6785289D7 |
| SSDEEP | 192:x4PE6LOrXc3vlRH3o13hy5pWo/z4zqeFs:xSE6ars3vvXqhUWo/z4zqeFs |
| TLSH | T1F6E1964E1A40C7BB19C01BA0394F95DAE31757EE767EC490105E938E9E0BB3A27F64D4 |
| Key | Value |
|---|---|
| FileName | ./lib/systemd/system/prelude-lml.service |
| FileSize | 152 |
| MD5 | 8C583644419BCD84F97511F76D10284A |
| SHA-1 | 9E329CC69398403460EDDA0CDA307153F7980D0A |
| SHA-256 | B1833CB9E3EAE96398A4645ED706256053E9BA15B6EE81F4ABED3BFC2200DD66 |
| SSDEEP | 3:zMZa7+rUSXABlRVGmDMzdK+aQ9sHSdS5czTLESkQmWA1+DRvn:z8tU6wlzGmDMzdK+aG858ILQmWA4Rv |
| TLSH | T1C3C08C29F48064A0980A2AABCE724BA85A504508AF8DF82436A124291AC0656A4348A9 |
| Key | Value |
|---|---|
| FileName | ./usr/share/doc/prelude-lml/AUTHORS |
| FileSize | 114 |
| MD5 | CF3E49FA50248D0A0C89D6BF622736A3 |
| SHA-1 | FE9280DEC27F2D0D2AD673B55345C7574355FBF0 |
| SHA-256 | EC48BA539A4569DC26AF5D609E14ECB759A63231760E2ABB7D920A0BA1D5A811 |
| SSDEEP | 3:L2UorMXR9D9Vf0S4FQXMqKEL1pz0tYMKn:L2UorMB9T4+MqKEh+YMKn |
| TLSH | T144B012ED2138B05B7F43984C5265D4E79DD33DEAC17080D77A30F4D107740515428381 |