Key | Value |
---|---|
FileSize | 193174 |
MD5 | 1855A3AAFB84C80E262CC33ED7F42335 |
PackageDescription | User space tools for security auditing The audit package contains the user space utilities for storing and searching the audit records generated by the audit subsystem in the Linux 2.6 kernel. . Also contains the audit dispatcher "audisp". |
PackageMaintainer | Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com> |
PackageName | auditd |
PackageSection | admin |
PackageVersion | 1:2.6.6-1ubuntu1.1 |
SHA-1 | B049BD6CD61C6D734FBA99BD96EEFF058BD14BEC |
SHA-256 | 6B2138BBF75A4E5194B1B1E7254208A9812B66397BEDA2A2E2CD53BFCD7A46F2 |
hashlookup:children-total | 62 |
hashlookup:trust | 50 |
The searched file hash includes 62 children files known and seen by metalookup. A sample is included below:
Key | Value |
---|---|
FileName | ./usr/share/doc/auditd/examples/rules/30-stig.rules.gz |
FileSize | 2171 |
MD5 | 343E32B79DFA69B74838FC2902239832 |
SHA-1 | 02E255C49C8B8B037D8C2AB105177D15A6D48C63 |
SHA-256 | 12C1870F94233ED5631ED5033EF6E911CEC608F655D77781C910764672E742FC |
SSDEEP | 48:XV1aMO75SalNaijSC8Sm05lgBXunB72fq+JIpmoXxdxbxr2+z+:faShfwgB+ByjIYuPZh2u+ |
TLSH | T1A3415A8E5DBFCB15BC73CB08085EBBA45D554450181ED3E23C10B161AF3AAA9E6E013A |
Key | Value |
---|---|
FileName | ./sbin/ausearch |
FileSize | 107996 |
MD5 | E466C995FE691360F03902F1E87EBD7E |
SHA-1 | 04A39D3447A5D76733059239A2DB6DB0A6D8686A |
SHA-256 | 5252AA0DD86A0979D7D063B13944050345CE748EE0DF4DBBACB0765345A4F8E5 |
SSDEEP | 1536:h12rBl1WmH7nDB2vOSmb6GtrSeoHF0zNKDHPsWD4wAwbDeh30:h1gfH7DucrzawKDH4 |
TLSH | T1F1B33D15F382D8F2F6B34AB517565722273048069313F3E2FA193BE96E721827E163B4 |
Key | Value |
---|---|
FileName | ./usr/share/doc/auditd/examples/rules/30-nispom.rules.gz |
FileSize | 1368 |
MD5 | 4802871AC8700C9AC83241B3913B66C3 |
SHA-1 | 0CF26EA9FCCBDF00F488802398986BF2E65817E0 |
SHA-256 | D5EE4D2C1E644658362260D23F25278B1F3B4250B02469DC062D25EDF311A776 |
SSDEEP | 24:XxsVjaWxrfmZMT/VK5+MRhFAU3Hq4IG5NJVkrJyFz6YDxspOLxnMhoKTZ:X6jPeZMTs5+oYU3om4dmjxs4L+HZ |
TLSH | T15321D8E6501B842093A89A44FD397CA36949702C57798AC18DB24236F28B25F1F664A1 |
Key | Value |
---|---|
CRC32 | 871200C4 |
FileName | README-rules |
FileSize | 890 |
MD5 | B56EE86EA7721E8667C1CAAC29D8AA4A |
OpSystemCode | 362 |
ProductCode | 163556 |
SHA-1 | 164BBC86312C7982281CA48086F2E37C5577FD07 |
SHA-256 | CEFDB6887DBF0CDBD77B8E4D796D27F6721AF71590A1A1FDE8B1E2D5F9490427 |
SSDEEP | 24:g9zoov6fwInXYhOOayvCEH5RmVjBjT6Mxn:UwfJXYhfLZUj9 |
SpecialCode | |
TLSH | T14411CC1B2E881B2A81933AE2FDDD23D8AF2242BD635CA520149F500AFC02B7585E39D4 |
db | nsrl_modern_rds |
insert-timestamp | 1646986441.264619 |
source | NSRL |
Key | Value |
---|---|
CRC32 | 4F86115E |
FileName | ./usr/share/doc/auditd/examples/rules/22-ignore-chrony.rules |
FileSize | 252 |
MD5 | 82BD33F23A828FA4C071B4FA14FEFCA0 |
OpSystemCode | 362 |
ProductCode | 214118 |
RDS:package_id | 298595 |
SHA-1 | 1C70886DA693BB5940340CA611AF173121268A12 |
SHA-256 | 2D90890ED78C0F75CD572D3E4D4055FF0884D4C7E63E2732EA97728B85CA272D |
SSDEEP | 6:jLVfHLGNrA5BEDijFen4WmdKl38jFeg4WmdKlv:jL9+M5BEkFenLmdKl3yFegLmdKlv |
SpecialCode | |
TLSH | T1D4D0A7625171703246CD47AE91B49DE82A25504347271BC4B0F58AAD613BC71FECFDB9 |
db | nsrl_modern_rds |
insert-timestamp | 1696458478.476194 |
source | db.sqlite |
tar:gname | root |
tar:uname | root |
Key | Value |
---|---|
FileName | ./usr/share/doc/auditd/README.Debian |
FileSize | 762 |
MD5 | B3227334EE362039157636427817912B |
SHA-1 | 1F16E2C6AF3B44FF3BBCA62804A4CEFB56111887 |
SHA-256 | 3FC3C889319C32A4CF030D58687C4E9F9AEA049F7E097028059406F397EB69A8 |
SSDEEP | 12:3+PQ8EXgb3jLUXJNFB4h6A+ysf2HCY2NO8J8BCQk6PfGWRVGWRROxnJYzGLun:3kEXgfgXJpPA+yTHCY201Xk6Wf+WJYzH |
TLSH | T1D50128273E80D7765640F0B1FD5A61D1DA2A34A833043074259DA10FE99552A93FDF76 |
Key | Value |
---|---|
CRC32 | C7459450 |
FileName | ausearch.8.gz |
FileSize | 4195 |
MD5 | D105B5EC08EFC5AB68950A4B478F3579 |
OpSystemCode | 362 |
ProductCode | 163556 |
SHA-1 | 201578A6019D5C0D0208E45CA68078ACEF3CAFAB |
SHA-256 | 1313529824FA1166266954F214DC3D2A67FBDBE1E78829D2A28D5B9577CC0B2B |
SSDEEP | 96:Tgon39EvPvyL7r6SaskaVApOt4/6duYNqZz1N:Nn39Ev3yuSaaVApO2/6duYNgN |
SpecialCode | |
TLSH | T192817E40996A08A6EBBD275AF42F84CC0E0253AA700B52A90429512F68522388FE70ED |
db | nsrl_modern_rds |
insert-timestamp | 1646990638.1322198 |
source | NSRL |
Key | Value |
---|---|
CRC32 | ECC1E13D |
FileName | ./etc/audisp/plugins.d/syslog.conf |
FileSize | 517 |
MD5 | 57421191EFE78160BD7E085DE99BF5CD |
OpSystemCode | 362 |
ProductCode | 163556 |
RDS:package_id | 298595 |
SHA-1 | 21AE729077A2D61BF35844445AFCEA26AB5D4643 |
SHA-256 | 3899D01E19AE0A6E08398CF43C4A0C5A3A709E464BDA1FE7491E5273F8569DD5 |
SSDEEP | 12:q1AKRNcA5yxfAun+jxqupDoBuM33nLS+eyeRqNwv:qb5yxfAmK/U3LS+/Xmv |
SpecialCode | |
TLSH | T187F0C076F2283675094817859F9AD3E6492A1FFA3138302320DE0C6C1225DE192B7FC5 |
db | nsrl_modern_rds |
insert-timestamp | 1696459818.5596983 |
source | db.sqlite |
tar:gname | root |
tar:uname | root |
Key | Value |
---|---|
CRC32 | 9B2DA067 |
FileName | ./usr/share/man/man8/audispd.8.gz |
FileSize | 1159 |
MD5 | 135BB7129C559DBFDA3D7DB7C4F119C7 |
OpSystemCode | 362 |
ProductCode | 183711 |
RDS:package_id | 222721 |
SHA-1 | 2303B4F9ED81D8A3970B9F5236A990B86F91AC88 |
SHA-256 | A472521EACF96BAFF706D46B0BF46FBDC6FAEA3530B0990E1BC5E05CB1FC73E6 |
SSDEEP | 24:XuGxmtghkwHrEkYNBBZfiAc47XEf6AlOC6NCGW/NEjOyq05L0Xn7VJ:XuwFhk3vjoC61OC6cGGEVDwXn7VJ |
SpecialCode | |
TLSH | T1C321CA417E287187A971F41256C3544123042C5B07F9745EF7FF857F51280DA879DB52 |
db | nsrl_modern_rds |
insert-timestamp | 1727040854.401868 |
source | RDS.db |
Key | Value |
---|---|
CRC32 | 7DF13B87 |
FileName | ./usr/share/doc/auditd/examples/rules/12-ignore-error.rules |
FileSize | 323 |
MD5 | 36F92F7626B1CD656761007B22387701 |
OpSystemCode | 362 |
ProductCode | 163556 |
RDS:package_id | 298595 |
SHA-1 | 2456D36E739911DFDB80125CE948B62D83F54ACA |
SHA-256 | FBE9C55FA3B47D8295753AF8F8962EF870CA870B218B12025B419B7DD943397C |
SSDEEP | 6:jLVZDAvQazlgDitdUqLFi52Vc3fskRgANbJzSZB02AoMAZYsn1MdR6E+ZkoF4V3p:jL7DmI8EEcPskL2Cr+ZZKVZ |
SpecialCode | |
TLSH | T1B2E0261B77110BB40AA120C8C58E61E0BB8948BD6364E308002BC2613F458B2A9E7AD8 |
db | nsrl_modern_rds |
insert-timestamp | 1696458478.5657125 |
source | db.sqlite |