Key | Value |
---|---|
FileSize | 1268512 |
MD5 | 2C933F90AB568F9792448D4B51BC3B7E |
PackageDescription | Next Generation Intrusion Detection and Prevention Tool Suricata is a network Intrusion Detection System (IDS). It is based on rules (and is fully compatible with snort rules) to detect a variety of attacks / probes by searching packet content. . It can also be used as Intrusion Prevention System (IPS), and as higher layer firewall. . This new Engine supports Multi-Threading, Automatic Protocol Detection (IP, TCP, UDP, ICMP, HTTP, TLS, FTP and SMB), Gzip Decompression, Fast IP Matching and coming soon hardware acceleration on CUDA and OpenCL GPU cards. . This version has inline (NFQUEUE) support enabled. |
PackageMaintainer | Pierre Chifflier <pollux@debian.org> |
PackageName | suricata |
PackageSection | net |
PackageVersion | 1:4.1.2-2~bpo9+1 |
SHA-1 | F8C24F124DAEAA45C0581C19D9CC1C0CEA335B01 |
SHA-256 | 78BAB9B922EEC2524F868BC867D382540A9C1EDC9EAD3232274DB049EB62E587 |
hashlookup:children-total | 42 |
hashlookup:trust | 50 |
The searched file hash includes 42 children files known and seen by metalookup. A sample is included below:
Key | Value |
---|---|
FileName | ./usr/lib/python2.7/site-packages/suricata/sc/suricatasc.py |
FileSize | 16393 |
MD5 | 968B1D7449C84B8EE3C3B6D02D22D8EC |
SHA-1 | 03EF69E0B1D67EF9C34ADAE4C1B3B67D28A3BA47 |
SHA-256 | 42883C3D00221A61CE00FE04C4348C1CB79935D8CD16BB5E12D24EE95340ADF8 |
SSDEEP | 384:v+Se2D23fjVqHVNSrkjnUKDNfH4SUw1T6/escZx/SkEz2F:v+SenPjMHnSrkjnUKDNfH4SUw1T6/esQ |
TLSH | T1557221025DEE9093D7D7D01D88BBE94352922B133405283EB57CFA983FA6DB1C3E5998 |
tar:gname | bin |
tar:uname | root |
Key | Value |
---|---|
FileName | ./usr/bin/suricata |
FileSize | 4428832 |
MD5 | 9CCE529C52901E78450AA69B25D94C62 |
SHA-1 | 04BBDC13F6955E5853E1C10B0C1A6BED61F783D0 |
SHA-256 | 215161A7A65F7117F9024A38D3AE8D6AE53EE7D57E05047577F01FA505A1A4C2 |
SSDEEP | 49152:NEaAPUqzaZq+FxWGp5mA7i468soxkCcN7pfX82qQJ:NEaAPUlCg5T7iTFoxg1X81 |
TLSH | T1BD267D78D90C7F93FBC6F1BC8A9D47A151277598D624C06A3D1F328DE981B90C26336A |
Key | Value |
---|---|
FileName | ./usr/lib/python3/dist-packages/suricata/config/defaults.py |
FileSize | 101 |
MD5 | 2F344BB70EA225374D235F204BE3FDD5 |
SHA-1 | 062F7184AAB85081B42DE8EB50B91B2FE1964D1E |
SHA-256 | 6000739BB3A3028E1CAC768E3C5274998907678A0CA215F8DBF071EE3AE17B34 |
SSDEEP | 3:ghHK0IvBEREsz6XwKDGvs6JAWHnTey9KqK9vn:0HIJs+AiF6Znqy9E9v |
TLSH | T12EB012E910015CFCCC49D0B8F955816F3FC576D011042890A3CCDF00440003A36F9300 |
Key | Value |
---|---|
FileName | ./etc/suricata/suricata.yaml |
FileSize | 74314 |
MD5 | CE8A34955593AA5D2E689E0DE037D4BB |
SHA-1 | 08EBED68FE5CDC73702495FFFFF32C3162406BEB |
SHA-256 | 827EFBCC3F72ECC95984706642FC8D2F0825FD3CE87BF387F6DF86EF68A26550 |
SSDEEP | 1536:8gGGpzzzRdmyeHpw2M6pNjfO2JkAVhW+jOoT:8gGG9XRQyeHpwb6phrW+yoT |
TLSH | T1E673F8077649317D5B4140A5A6AEA2C2B32491AF53F2A47C70DEC16C2F0B97053FBAF9 |
Key | Value |
---|---|
FileName | usr/share/suricata/rules/modbus-events.rules |
FileSize | 2078 |
MD5 | 64FD31BB768F6850C9AD506ECEF18260 |
SHA-1 | 14EC79C026093406155CAA093B47AD65B27BC78E |
SHA-256 | 9AA717E2DCA317271E7A484E14C38CB8E666BA5716E9B5FBC413EB18F85BB632 |
SSDEEP | 48:H030ag920TTWo0Km0YO0BFMD09WhL09t20IdvtB0eXO0V5UT:H0kagU0TTN0Km0YO0B2D09Wx09t20IdG |
TLSH | T1A9412815DFF408F90BC3815895AEA4E626BE52C1BA1D55B1FEB0BE48E38C970C23214A |
tar:gname | root |
tar:uname | root |
Key | Value |
---|---|
FileName | ./usr/share/doc/suricata/changelog.gz |
FileSize | 25814 |
MD5 | 0429A219833A41760A48F0B6722BEF95 |
SHA-1 | 15E30D792AD8D4918FAC212032F8BFB6D629EF13 |
SHA-256 | A8347298548A8D8F1121BD32F70E98FA12B110D3A90682DF9BF0B02E9EC36AAC |
SSDEEP | 384:NX1QdkYD0WN7U6bTvX+otCXshmwB5q7gEiUKrFdPx1JMeCnXPSWJeouGO:xyWYgUU6/TtzkiUKrHx1JMPnaWJv5O |
TLSH | T11DC2F1A99A5B031B0CFCE34558D922D4D1E584504D8872139D3BBA874E98B4BBFB3399 |
Key | Value |
---|---|
FileName | ./usr/share/doc/suricata/copyright |
FileSize | 8326 |
MD5 | F169775908F80DC8FEBCB48C67DFAF50 |
SHA-1 | 171C33D25959E746E05D892A6BB3E08035B57FA2 |
SHA-256 | 7C6339D845CDFC37CA17AFAD82739EC38745E907DCA6D51ADC48471E68160C52 |
SSDEEP | 192:FX4mRb7ZUWTorsCrs7X3I3d258mmFAQG8U9m:14mdZNErsCrs7nCdKmFAQG8U9m |
TLSH | T1210286CF393C43B52ED523E3E4218E96F225B7AA321E5417A58CD3589A1B81F53F2069 |
Key | Value |
---|---|
CRC32 | 539BF8C2 |
FileName | ./etc/suricata/rules/smtp-events.rules |
FileSize | 4939 |
MD5 | 526AFDDF17F6F675ECB8EA4D701A2FCF |
OpSystemCode | 362 |
ProductCode | 163709 |
SHA-1 | 17E5511928E4892E7764B377CB691CA3096E88C8 |
SHA-256 | 32AFD2176B6DE1B51A8A24E580768C08AE108024A045416450BC6E9AA61A0D9F |
SSDEEP | 96:FAQr0LHBS04dyL0g+Y0idJ0wGyne0RkyaX05xE0BqZl0dbulh0N971i0zlXlA0HZ:FVCHQdKZb3NaA2ogK97nlx7Kmc7SeE3f |
SpecialCode | |
TLSH | T10AA18B86EBE614FE06CF816A81B978F13A7F87A2B9380580B5F4BD5CC3C4055537929B |
db | nsrl_modern_rds |
insert-timestamp | 1646987153.2108016 |
source | NSRL |
tar:gname | bin |
tar:uname | root |
Key | Value |
---|---|
FileName | ./usr/share/doc/suricata/README.Debian |
FileSize | 2764 |
MD5 | 1944D6053424944A81BC6A2FA3EE4BDF |
SHA-1 | 2103A4D04021FF3A17260BD285CB91D04D37A370 |
SHA-256 | 36FF0F6B1C568D2A3D2B63AFA3FF20D1A91D12AC959D1FD277155B13DB086A75 |
SSDEEP | 48:aGFZLEUU+Tpb0Ifz380i0ss3nAIbRDQ+DIZFpkKYj450BwB1xYwEZd2z:lbf9Tss3pRQDka7Id2z |
TLSH | T1335156C31E0086F58412FA7EDA4E11E4EB1978BC32A67C321BEDA844B41553433FDA65 |
Key | Value |
---|---|
FileName | ./usr/share/suricata/rules/stream-events.rules |
FileSize | 12820 |
MD5 | 5F0FCE36565E8CBB01FA602FB7C58C93 |
SHA-1 | 2CCE3F5307A5927BD66C8B8E8C9F2AAC694EE577 |
SHA-256 | 866ECFCEEE125176B2A6DB736B3BC3D0CC7E07C39ECB480B3E2790D531F677DF |
SSDEEP | 384:ffKUKQE8OO8VcBuRw22CRNQKNKJCkjepkjVYdWpQ:a9QA7sQNcVYqQ |
TLSH | T1F8424E599B940AFA07DBD00041A1F6F17EBF5356FD081E81B9F1FD28F3891A5A3B0266 |
tar:gname | bin |
tar:uname | root |