| Key | Value |
|---|---|
| FileName | ./usr/sbin/kmsgsd |
| FileSize | 17768 |
| MD5 | 6DFFD47664A0B6335AAD9478A6E19A81 |
| SHA-1 | 3921276FACBDB1555B23DDBCB3D04CA631D54FEB |
| SHA-256 | 713DB03FF2FFC18597F56827811391A0DC9AE57A9AFA47A72EE29939C5687236 |
| SSDEEP | 384:HLEunggTj4q5Kk6wzIGMHj5O/vOs72gOlz0dKa:rEIfTJkk6+MHrsSRmdK |
| TLSH | T17782184AB61BE9F3C1D7157E064B237D21318422AB53E267BB0C37582722619BD1233F |
| hashlookup:parent-total | 1 |
| hashlookup:trust | 55 |
The searched file hash is included in 1 parent files which include package known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileSize | 178692 |
| MD5 | DEB7525F3F34AEF708192E7FE824F7B2 |
| PackageDescription | Port Scan Attack Detector PSAD is a collection of four lightweight system daemons (in Perl and C) designed to work with iptables to detect port scans. It features: * a set of highly configurable danger thresholds (with sensible defaults provided); * verbose alert messages that include the source, destination, scanned port range, beginning and end times, TCP flags, and corresponding Nmap options; * reverse DNS information; * alerts via email; * automatic blocking of offending IP addresses via dynamic firewall configuration. . When combined with fwsnort and the iptables string match extension, PSAD is capable of detecting many attacks described in the Snort rule set that involve application layer data. |
| PackageMaintainer | Franck Joncourt <franck.joncourt@gmail.com> |
| PackageName | psad |
| PackageSection | admin |
| PackageVersion | 2.4.3-1.2 |
| SHA-1 | 74D6007F00F2189F2FB8583FFD0D6687B22D13DD |
| SHA-256 | B11F864DB52AE87A3AD22B0B04EDD9703006CF7AB50B9D6CA84C73265D06CAA8 |