| Key | Value |
|---|---|
| FileName | ./usr/sbin/kmsgsd |
| FileSize | 19004 |
| MD5 | D5E0588FE8044078762C6D8BB0B0D28F |
| SHA-1 | 08F82201A9EA661863CDC2435D68D8CA9001AD4D |
| SHA-256 | 524A411FA39682A765007A0B3BE637CDC647B102F1F44FA3CEFD5A7A28886BF5 |
| SSDEEP | 384:F5KnZtlkifoVJs3J62xARlqWNKMiTegJOEw/ltNjjIiPJG9NbTgn:On9k+SJs3J6YARlhNKMiTVJ7eltNjjFH |
| TLSH | T18C82C647EF900EA7C4C7CD350A1F839516FD9DCFA291A36BB95CC6843B07A096C9B884 |
| hashlookup:parent-total | 1 |
| hashlookup:trust | 55 |
The searched file hash is included in 1 parent files which include package known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileSize | 177936 |
| MD5 | E9F7276F57D85B8F40570257A5C02C23 |
| PackageDescription | Port Scan Attack Detector PSAD is a collection of four lightweight system daemons (in Perl and C) designed to work with iptables to detect port scans. It features: * a set of highly configurable danger thresholds (with sensible defaults provided); * verbose alert messages that include the source, destination, scanned port range, beginning and end times, TCP flags, and corresponding Nmap options; * reverse DNS information; * alerts via email; * automatic blocking of offending IP addresses via dynamic firewall configuration. . When combined with fwsnort and the iptables string match extension, PSAD is capable of detecting many attacks described in the Snort rule set that involve application layer data. |
| PackageMaintainer | Franck Joncourt <franck.joncourt@gmail.com> |
| PackageName | psad |
| PackageSection | admin |
| PackageVersion | 2.4.3-1.2 |
| SHA-1 | 6480C22B25217D1775DAE573ADCA00A2782DC195 |
| SHA-256 | B777E2394861DAFBAD03156745639FC667F4B72927330457B628B898B9484914 |