| Key | Value |
|---|---|
| MD5 | 1D12A1C6BC97EBAE909B2D3A4AE8859B |
| PackageArch | noarch |
| PackageDescription | Prelude-Correlator allows conducting multi-stream correlations thanks to a powerful programming language for writing correlation rules. With any type of alert able to be correlated, event analysis becomes simpler, quicker and more incisive. This correlation alert then appears within the Prewikka interface and indicates the potential target information via the set of correlation rules. |
| PackageMaintainer | papoteur <papoteur> |
| PackageName | prelude-correlator |
| PackageRelease | 5.mga9 |
| PackageVersion | 5.2.0 |
| SHA-1 | FE5FBC2BE7D409351014E20A9D0F358FC39E39D8 |
| SHA-256 | 170133198133AB574941538E1E03892595DBA0682F4EAC2D6EF9C8EE9403F3A1 |
| hashlookup:children-total | 57 |
| hashlookup:trust | 50 |
The searched file hash includes 57 children files known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileName | ./usr/lib/python3.6/site-packages/preludecorrelator/config.py |
| FileSize | 2767 |
| MD5 | B541BAD9DCDE0EA08C09EC4322638366 |
| SHA-1 | 013AE0F08BA1B1D933DFF9B3BC1527945741B4F6 |
| SHA-256 | B7CA730FF3BDA84FEB5E3827731D5B8554ADD8DCCCBE94FB6A09CA0CCDA8B0B7 |
| SSDEEP | 48:VxDg4yUjHTYFuu7Gq+dGSsh3hgKv2cUHhdozaCju:bEwTmuu7GqeGSs/ASS |
| TLSH | T104515545242DA4AB82139658D84BC19EEB297B87355E403039FCF3987F0C460D1E398D |
| Key | Value |
|---|---|
| FileName | ./var/lib/prelude-correlator/prelude-correlator/ciarmy.dat |
| FileSize | 215845 |
| MD5 | 4D74A48FCAF9BE65572B7865A7914C52 |
| SHA-1 | 027D69A6CBF1A522A6F39F891AAA5FF3C252D556 |
| SHA-256 | A8F69235B1B442A1515DD6E44B5CA0D299B3CE25F1EE6596D88015BC987CFD40 |
| SSDEEP | 3072:Wn+qhnASubteC9PmpdYQP22ybNY40LIbZxSqy+lZX2YGPrbqy+1IwN2:Wn+KnTC9lMwN2 |
| TLSH | T1E824885573BF2FF5CEC6808E5382C4A6609A51A7DAA3F5E49FDB36807D01080FAF4652 |
| Key | Value |
|---|---|
| FileName | ./etc/prelude-correlator/rules/python/BusinessHourPlugin.py |
| FileSize | 1782 |
| MD5 | B9456CC17B7D83D5E4984E4439EF42BD |
| SHA-1 | 05A8AA84DAC3B52538900E92145E40289595E223 |
| SHA-256 | 35D495CACCEBD01F14BC4802C385B6E248DF80C027919676CEDBAD171CE53D22 |
| SSDEEP | 24:efbmIjvUpbkgK2ahJiyUVOkHxHqTbVloY5AwHF4kqTPs+wcGSHyAH7pCyZE1aryk:efyIjvU9xDg4yUjHTYh45TP4SSAbpCaj |
| TLSH | T15C31438E91719DB16A1103E5348F55DEB22A1A97D29A98983D5C818C7F04EF202B73E4 |
| Key | Value |
|---|---|
| FileName | ./usr/lib/python3.10/site-packages/preludecorrelator/__pycache__/utils.cpython-310.pyc |
| FileSize | 797 |
| MD5 | EC399AC38693198FF5F68A1F2093F42E |
| SHA-1 | 1587CACF0E5394E3C2B349AF7B67E8F3AEC0F9ED |
| SHA-256 | 210068566B2C6FC377B300B6182A01F06249B1D5226F180124689171862E97DE |
| SSDEEP | 24:VqLuf/q7y3AlLAgU9yhsABfNFfGMg3BmZ:gLunq7y3AlLnIyzBfNFGMyQ |
| TLSH | T1BD0125C70656074EDC2BF67AA9D61D5108886177F00E117336561161BF4E094803195E |
| Key | Value |
|---|---|
| FileName | ./usr/lib/systemd/system/prelude-correlator.service |
| FileSize | 321 |
| MD5 | CB1C2E965A028FA4D45B0312A68DF4B1 |
| SHA-1 | 1A011BC0634DA1C9587970CE1356AC0D0B59012E |
| SHA-256 | 641BF3A097CC9A11C2E1196063519D55A2EAA550A414A9E01BDEC7B981B89A9C |
| SSDEEP | 6:z8L49JVKqolXN5aXjyADMzdK+aBNUZVQDMVQDsPWfGB/QDMVQDsBILQmWA4Rv:z6EJIlXNwTTDOK+aBNUrcUQDDfDUQDsx |
| TLSH | T18EE086E5B6307870EC1537A8ED2784C40D4631CD462EE1A037A120E8B8934C6C2112F3 |
| Key | Value |
|---|---|
| FileName | ./usr/share/doc/packages/prelude-correlator/NEWS |
| FileSize | 17991 |
| MD5 | 54B012B09947277031B17573041F98DC |
| SHA-1 | 1AC708B9825A5BC046D3C4A53A1933E361DFE4C7 |
| SHA-256 | CF6F7B31ED5AD5E133C3B5E24EFBF9AB581DD7541BD8036B7CF3D6718C3A94C9 |
| SSDEEP | 384:OKAQJMpN4mtKUdLA+pR+Y9DQFBKmWOgyrx:I+wHvWmOgw |
| TLSH | T1C78287E277343712799227A6D2CB41DAB718A1EB9233D0747B9895C87A03063D3776CB |
| Key | Value |
|---|---|
| FileName | ./etc/prelude-correlator/rules/python/EventScanPlugin.py |
| FileSize | 2191 |
| MD5 | 47B28463DDB94268C26E550C37C7EA8D |
| SHA-1 | 1CD68BD9325E29448D88FF96FD8A351CFB8BB61E |
| SHA-256 | 1E9720EE73766F85F460974AED30D9D297C82DA289F585F3D3D7FBAC0FB34253 |
| SSDEEP | 48:efyIjvRW4FDg4yUjHTYyFIZN8rF2TtWSCsFEP:efyaVEwT/qZuuWStF0 |
| TLSH | T16141B84E9320DAB05D0906B5104791DC732916C3962E5C08BD2CD38D7BA5EB681755FC |
| Key | Value |
|---|---|
| FileName | ./usr/lib/python3.6/site-packages/preludecorrelator/require.py |
| FileSize | 1773 |
| MD5 | 6B74FB4E6B902BA1F8EFD8DB6D2B5DF3 |
| SHA-1 | 242636E006DD15C44B4A754161EABE026242EF0C |
| SHA-256 | 1C0ADC834F78DF28E4C8859F8F7A82F083CA499EA5E8F0F97F73DE7ADA0FF9F9 |
| SSDEEP | 24:QibkgK2ahJiyUVOkHxHqTbVloY5E8kL1oYGGYyeTt5fYGGS559b:VxDg4yUjHTY28kLm0Ynt5f0S5P |
| TLSH | T1A73174C72575BABBE902BD9071C261CDB69C2ED3B5285071B58C11C87F43970D2E25EA |
| Key | Value |
|---|---|
| FileName | ./usr/lib/python3.10/site-packages/preludecorrelator/__pycache__/__init__.cpython-310.pyc |
| FileSize | 223 |
| MD5 | AA0CB361E831567907D3E0A1E3B12B37 |
| SHA-1 | 3415F22D34A94F237A88CF4EBB0623839DC7D9A8 |
| SHA-256 | 0D8157DB1A4686C3E3EE1615453FD5087B559A95157558058A049A86AD0023B8 |
| SSDEEP | 6:y/48L0/32TmkFMWutHR8PIIaPib0/9YJgMrnQM5RDJ:C4p32qMM61ab/MgODJ |
| TLSH | T144D02356137CC5E3D4385231A010711444D82459E231D29F370C3556595D3940423D45 |
| Key | Value |
|---|---|
| FileName | ./usr/share/doc/packages/prelude-correlator/AUTHORS |
| FileSize | 125 |
| MD5 | CD2BB2FA7D21CFA818A39915F219C78D |
| SHA-1 | 36BEADC5993E89C3CB13B50245BA1420B2699517 |
| SHA-256 | 6597296AA1A8E5A55E8B9C3116BD9AD93A7C435D54E0B17B38D776C8E906EE16 |
| SSDEEP | 3:L2bKgJEiMEuR9D9Vf0S4FQXMk1aENzpzeLKbvn:L2rQEe9T4+Mk1aeNLn |
| TLSH | T11EB02BCC151000073C438C446251C5D644C23CE0C5FC80406210F05136380005514293 |