Query result

Key	Value
FileName	./usr/sbin/knockd
FileSize	48304
MD5	25A892355F4855C100EF9CC048D536A2
SHA-1	6E9BDB5F45BC6D25F0A3793AC7CD3B6E657B3656
SHA-256	0895F5CDAB57821F282FD9AA4510FABAB6BCFFA2A427E0382352840C0A6EB4ED
SSDEEP	384:UaWiS8S1/CLX4cJqLQnzk0FmSEV/ncAY+nxLWF0dGlgLXP5yte31m+QerxnFBS2I:UD8sC810I3tQ+xWFTgYtUWIC2F5e
TLSH	T1E6231A0BF2A114BDC09186318ADF97276A31B581B632676F3A457B781E43F78C61FA13
hashlookup:parent-total	1
hashlookup:trust	55

Network graph view

The searched file hash is included in 1 parent files which include package known and seen by metalookup. A sample is included below:

Key	Value
MD5	F53671FC594FED03701C5F552EDA56F4
PackageArch	x86_64
PackageDescription	It listens to all traffic on an ethernet (or PPP) interface, looking for special "knock" sequences of port-hits. A client (package knock) makes these port-hits by sending a TCP (or UDP) packet to a port on the server. This port need not be open -- since knockd listens at the link-layer level, it sees all traffic even if it's destined for a closed port. When the server detects a specific sequence of port-hits, it runs a command defined in its configuration file. This can be used to open up holes in a firewall for quick access.
PackageMaintainer	https://bugs.opensuse.org
PackageName	knockd
PackageRelease	2.2
PackageVersion	0.8
SHA-1	11ACF0DB2AE41227E68ED28005C0D6E7CEF64B3D
SHA-256	B6D1A118D2EE24FA7BBEFB14DDB19E9E04B69934278CAEECF14297EACD4ED9E4