Key | Value |
---|---|
MD5 | 0D80F2AC5320805E6F21EF06694603EA |
PackageArch | x86_64 |
PackageDescription | The audit package contains the user space utilities for storing and searching the audit records generated by the audit subsystem in the Linux 2.6 and later kernels. |
PackageMaintainer | CentOS Buildsys <bugs@centos.org> |
PackageName | audit |
PackageRelease | 4.el8 |
PackageVersion | 3.0.7 |
SHA-1 | F611632ED5858EEF35F00EB418B1759953BBFB6E |
SHA-256 | A038E06E05A7A6FFE3DF0AA4D4A172BA4C29A2146275ADC2903BE18748AA445C |
hashlookup:children-total | 85 |
hashlookup:trust | 50 |
The searched file hash includes 85 children files known and seen by metalookup. A sample is included below:
Key | Value |
---|---|
FileName | usr/share/audit-rules/30-ospp-v42-2-modify-success.rules |
FileSize | 826 |
MD5 | F583259AD73E913DB48A76E8A0C24863 |
RDS:package_id | 294718 |
SHA-1 | 0035557B33B9BBB564FB1DE550BA031D49C37F30 |
SHA-256 | CAEB9A7F4BB77AB89027F11789E02EB6E9B4F2FC4346EEAEA25EFE1730D83FE6 |
SSDEEP | 12:j3toeuFecEIWyb0FeVEIWyb0FecwIwWyb0FeVwIwWyb0FeHAWyb0Fe3MAWybE:j2gczWKVzWKcwLWKVwLWKgWK3rWT |
TLSH | T15001D29342B430F05F6B43A3C864DEB83405471E93635DC5D186E9D9DD1943ABEC390E |
insert-timestamp | 1696439445.0774827 |
source | db.sqlite |
tar:gname | root |
tar:uname | root |
Key | Value |
---|---|
FileName | auditd.service |
FileSize | 1661 |
MD5 | 9A846E703AC09F0E83738278EDF5F490 |
RDS:package_id | 293704 |
SHA-1 | 022270FA45E53F8998ED6BA6C0CB49DBCFC4567C |
SHA-256 | 524FAA3783A5BEBD8AF18AB22F654EE0C12DD942BD7F0EAB6BC279EBFB99F439 |
SSDEEP | 48:D3mP/j6dPCsmLh8/4UgKjq+WGtpC/FUonnuBiyU:Di6YlP8pWG+tUonuBs |
TLSH | T1E2311C137697A3F104913880FF231BD59B2621AC230675288CD9A085F5A1FA8823AFF9 |
insert-timestamp | 1678960539.5851963 |
source | RDS.db |
Key | Value |
---|---|
FileName | ./usr/share/doc/audit/ChangeLog |
FileSize | 11477 |
MD5 | F5906DAFD9500E976DAF28770BC8172A |
SHA-1 | 077789A8F537F292DB31813ABE4CC11461B48024 |
SHA-256 | 5D03236D92DCEEE52E7E70C7F44600D5280CF4458A91663F425E04FF31C1E472 |
SSDEEP | 192:/n8jYqqIEmpdxQNutzAU7Z4rYrHUIao0kNfoBkZ9chZzO3dgfO05ve2uzV4lzp1V:f8jhtEmn6utzx7Z+YrHUIeBkZ9ch43dU |
TLSH | T1B232D71A735C261614E22769763D20922B3E81BEAB0F19EB44EAD3067F052E4D27F75C |
Key | Value |
---|---|
FileName | ./usr/share/man/man5/auditd.conf.5.gz |
FileSize | 6841 |
MD5 | 4C995396A9EBEE5CEC1138CABCCB51D6 |
RDS:package_id | 293683 |
SHA-1 | 0BD56CF325A3242B111927850AE6E10D2A4F6D0F |
SHA-256 | 902053BBF311B19370F1DCDECD18E5E887882CFE3A2C1FD862926035349EFEA3 |
SSDEEP | 192:AhecJQoNLg1B16bR1ZSZNBZGn53ZPqJIJC:yFJtLMq/ZUbm3ZyJIM |
TLSH | T181E18E0014841B3BFE0E4BD9E882F338E69D98CBD407727F2A50277516676149F7E1A8 |
insert-timestamp | 1678953074.8046045 |
source | RDS.db |
tar:gname | root |
tar:uname | root |
Key | Value |
---|---|
FileName | ./usr/share/audit/sample-rules/30-pci-dss-v31.rules |
FileSize | 6179 |
MD5 | 70B8DE2048C6B44A784AB221B95BA995 |
RDS:package_id | 293704 |
SHA-1 | 129423A508685ECE22A9EB155D9A0150EEF0FD82 |
SHA-256 | A6D974558DAE7B6D24EDF083A0D72BB8D15AC463DA0717FCD854235168390033 |
SSDEEP | 192:KGct29tkiKacQHguhLCZ0/XKANc4cIiKy2/P:KGcw9zcQH3SGhiF2/P |
TLSH | T149D13157636927319D1743E3EA5CB2EAE718809D3336B4EC4184A079EC6643A63E371E |
insert-timestamp | 1678960636.6124964 |
source | RDS.db |
tar:gname | root |
tar:uname | root |
Key | Value |
---|---|
FileName | usr/share/audit-rules/README-rules |
FileSize | 1421 |
MD5 | 6405EBAE48BB89AF7FF7DF3385F1448E |
RDS:package_id | 294718 |
SHA-1 | 148ACBDD22A8BF666CA5A3E284E4AC9EBF910926 |
SHA-256 | 00E0926039F166A9F8D5B0B825E33358C7F2C1CCC6F86067BA2F684C26D13F95 |
SSDEEP | 24:zPopzNwKFwInXYhOOayvCEAqH/JuNLcoY1awOdzXxLmEZ:UxFJXYhfLAC7ONXxLZ |
TLSH | T125210F1B67899B2A408333DAFECE12D9AF1581BD5368A530549F001EBE5177915F39D0 |
insert-timestamp | 1696439444.1184876 |
source | db.sqlite |
tar:gname | root |
tar:uname | root |
Key | Value |
---|---|
FileName | usr/share/audit-rules/30-ospp-v42-3-access-failed.rules |
FileSize | 625 |
MD5 | 852D1A243E59DD5961F3D9F5C5592BAC |
RDS:package_id | 294718 |
SHA-1 | 149781B05552A0CDA6C6159984F21EE76540A154 |
SHA-256 | 74AA84E36882DD5F1BC4F1953B938FC6425A00D28D0C36232B16A5AEADC7B413 |
SSDEEP | 12:jEttqOQYENLFecOr9DeFeVOr9DeFecOm9DeFeVOm9D+:jkqO3JcOr9nVOr9ncOm9nVOm9K |
TLSH | T1BEF096DFC33434744A0A179789B54FBDF808511D533359CAC68416C1FE514B52AC2EAD |
insert-timestamp | 1696439445.0373838 |
source | db.sqlite |
tar:gname | root |
tar:uname | root |
Key | Value |
---|---|
CRC32 | 1770520E |
FileName | usr/share/audit-rules/10-base-config.rules |
FileSize | 244 |
MD5 | DEF45A38095C1C16EA919317B8020A83 |
OpSystemCode | 362 |
ProductCode | 214118 |
RDS:package_id | 294718 |
SHA-1 | 17C157514A3D87C906A6C830DF30C7FF3966C798 |
SHA-256 | 54C2CEBDAADFB928F7327CC066218E38743F0FF94D02FE162A7A415E148D23A8 |
SSDEEP | 6:jO2/q9RjRiNChQYF9FxNVYKAtOFPQYmFnNGd:jOuqHIQGYF9Lx+OQBgd |
SpecialCode | |
TLSH | T117D0A72D87B4B571095E03DF6A4673F39E6D214DA5603019208F683B458739FC53BA92 |
db | nsrl_modern_rds |
insert-timestamp | 1696439445.5309117 |
source | db.sqlite |
tar:gname | root |
tar:uname | root |
Key | Value |
---|---|
CRC32 | E6CC413F |
FileName | restart |
FileSize | 334 |
MD5 | 40141CF10ED47668D0A09874C33C0A2F |
OpSystemCode | 362 |
ProductCode | 17393 |
RDS:package_id | 298595 |
SHA-1 | 1A7BCAD44937197D17F1999F7DDE6DF89E0C207F |
SHA-256 | A05E10B60BED05F24F61C89978787EFD911B38B8AC42FB8703E7EE05A837801C |
SSDEEP | 6:hm0Tau/sATtq1KRagRbLscGaUJRFKTAdAFRhIXMDKEVnRq6QPJQyMkXysgr2n:w0mul4O9hUNANFRCedJQPGkBgK |
SpecialCode | |
TLSH | T126E026833191A3349E0B00A3EC327229516A916C630C625889E6F143D40E66FA1B5F13 |
db | nsrl_modern_rds |
insert-timestamp | 1696459041.5486174 |
source | db.sqlite |
tar:gname | root |
tar:uname | root |
Key | Value |
---|---|
FileName | ./usr/share/man/man8/auditctl.8.gz |
FileSize | 7374 |
MD5 | D57E3B7635A0169AEF8FF71DBFB07959 |
RDS:package_id | 293683 |
SHA-1 | 205F4D225DB70C305386BD0820AAA33713FBD039 |
SHA-256 | 11BABFD1AB764971DF44A1C75B56FB7EE14FCA48BC73FE566C3BD88DD52EC595 |
SSDEEP | 192:90pCkWWwjSbXwmP2k3ZMwn8PcJP7isFKLNE0:Zkc2Xh5CnYigKRP |
TLSH | T138E1AD27FE7CA4E4B88F4DB015542FD012942EB1D584A903B5E17BE22B54C7BAE6827C |
insert-timestamp | 1678953132.0810657 |
source | RDS.db |
tar:gname | root |
tar:uname | root |