Query result

Key	Value
FileName	./usr/sbin/knockd
FileSize	44104
MD5	C467DB7BB8D5D9FFD6EE2072F5D57D32
SHA-1	2F7D4F1A0E333E553F6751E6DC9A751862D60DBA
SHA-256	EF4156D697E7ADBEA9E14FD16F3AD8D3A73751D24A0CA560FC449BFE5BAA3A7D
SSDEEP	384:bmUDVSlrfzDSh5KVwFh40+wg3frv+5+odmXP7kpk4nbt9QwZtJ+3Qe/M3FBS2i2M:21Da5KuFD+wg3fd/7kpku9QwZtJjX
TLSH	T1DE13090BB7E348FDC095C37086AB9A696E3074547722672F36947B742E02F69471E933
hashlookup:parent-total	1
hashlookup:trust	55

Network graph view

The searched file hash is included in 1 parent files which include package known and seen by metalookup. A sample is included below:

Key	Value
MD5	A16AE743D46108B5C4D05B28317CFEC0
PackageArch	x86_64
PackageDescription	It listens to all traffic on an ethernet (or PPP) interface, looking for special "knock" sequences of port-hits. A client (package knock) makes these port-hits by sending a TCP (or UDP) packet to a port on the server. This port need not be open -- since knockd listens at the link-layer level, it sees all traffic even if it's destined for a closed port. When the server detects a specific sequence of port-hits, it runs a command defined in its configuration file. This can be used to open up holes in a firewall for quick access.
PackageMaintainer	https://bugs.opensuse.org
PackageName	knockd
PackageRelease	lp151.2.3
PackageVersion	0.7
SHA-1	C7AF9DD242B6D15CC65F44C2083DB60E49D8D0EB
SHA-256	A5E8C30FB4DA762130433ECD328E00DAD29C9546B7F5039902AB67A58CAF33D7