| Key | Value |
|---|---|
| FileName | ./usr/bin/suricata |
| FileSize | 3008836 |
| MD5 | C4AC494F6054E16D0F8B0149ED6E2BD2 |
| SHA-1 | 17BD0ECBF7983BCD287A3313968314995554EF7B |
| SHA-256 | 2AC97757116A41E4BA8B6E5B7948672148CF8248297DA1E7711D87D931EF2FBA |
| SSDEEP | 24576:p9iedBocBZuf0IYGg47sKr5XKV7E5mtYDuk1YCz//juDVtuAv+BqKovfvyx7p:Ti4LGfrYtesjE5mtouk15uDVtuA2BFp |
| TLSH | T10ED50913AF006EB7D5DBCD31C63DC241849C984A95D86726B9D88F89B60270B9EF7CC9 |
| hashlookup:parent-total | 1 |
| hashlookup:trust | 55 |
The searched file hash is included in 1 parent files which include package known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileSize | 735346 |
| MD5 | 2178982E60CD18287A96D111DB61276F |
| PackageDescription | Next Generation Intrusion Detection and Prevention Tool Suricata is a network Intrusion Detection System (IDS). It is based on rules (and is fully compatible with snort rules) to detect a variety of attacks / probes by searching packet content. . It can also be used as Intrusion Prevention System (IPS), and as higher layer firewall. . This new Engine supports Multi-Threading, Automatic Protocol Detection (IP, TCP, UDP, ICMP, HTTP, TLS, FTP and SMB), Gzip Decompression, Fast IP Matching and coming soon hardware acceleration on CUDA and OpenCL GPU cards. . This version has inline (NFQUEUE) support enabled. |
| PackageMaintainer | Pierre Chifflier <pollux@debian.org> |
| PackageName | suricata |
| PackageSection | net |
| PackageVersion | 3.2.1-1+deb9u1 |
| SHA-1 | 5F26CB0FFC3B44F1C36C9887F118699B07686ADF |
| SHA-256 | 09E271AEABCDA92134020DE8923A2DAC8D986134427C81102AF1BFE9ED2B513D |