Replicator
Replicating PECL releases as pharext packages since 2015

Fork me on GitHub

ssdeep

Fuzzy hashing makes it easy to identify similar or almost identical text by simply comparing two hashes against each other.
License: New BSD License
View at PECL

The ssdeep project page describes it as a library for “…computing context triggered piecewise hashes (CTPH). Also called fuzzy hashes, CTPH can match inputs that have homologies. Such inputs have sequences of identical bytes in the same order, although bytes in between these sequences may be different in both content and length”.

For an in depth paper explaining context triggered piecewise hashes please see http://dfrws.org/2006/proceedings/12-Kornblum.pdf

ssdeep API Information

Requires at least ssdeep v2.5.

This extensions wraps the ssdeep fuzzy hashing API created by Jesse Kornblum.

For more information about ssdeep, the API and context triggered piecewise hashing please see http://ssdeep.sourceforge.net/

ssdeep Licensing Exemption

Although ssdeep and the fuzzy hashing API are usually licensed under GNU GPLv2 Jesse Kornblum has licenced them to PECL under the terms of the Perl Artistic Licence with the following declaration: “I hereby license ssdeep, the current version and all subsequent versions, under the terms of the Perl Artistic License, for inclusion into the PECL.” See http://news.php.net/php.pecl.dev/7625 for the verbatim email.

Package Signatures Date Pharext
ssdeep 1.1.0 ⤋ phar (130.7 KB)
 rsa.sig gpg.asc 2018-02-19 v4.1.2
⤋ phar.gz (32.1 KB)
 rsa.sig gpg.asc 2018-02-19 v4.1.2
⤋ phar.bz2 (27.9 KB)
 rsa.sig gpg.asc 2018-02-19 v4.1.2

Download latest version and signatures:


curl -sS \
     -O https://replicator.pharext.org/phars/ssdeep/ssdeep-1.1.0.ext.phar \
     -O https://replicator.pharext.org/sigs/ssdeep/ssdeep-1.1.0.ext.phar.sig \
     -O https://replicator.pharext.org/sigs/ssdeep/ssdeep-1.1.0.ext.phar.asc

Verify with a public key:

RSA replicator.pub


curl -sSO https://replicator.pharext.org/replicator.pub

openssl dgst \
	-verify replicator.pub \
	-signature ssdeep-1.1.0.ext.phar.sig \
	           ssdeep-1.1.0.ext.phar
-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnzsDXNox5V0V9GLcnXEu
kxnhFs9+/AMm//1qJAoNwP6sgmYShuyI3NDZzCmT7tOIcpqW0I4P8D1Psrftyqbt
spedAvyOLCLZXaOuE130aMlvfqEiO+s8ZVZL8aHLE/orLbpOexEs33a1j6shl5C6
MoojzK3uYccL4XJfj0t2nrC+XMfWE9oQGvyLZv3tNCzH4Oy7knWVVy10EKbKgPft
izCFR+0mPYw35RN3gAGrug+khnVRMRNpS7B0uZ6E29Bgsrud9l91mVbrL+DaoaSa
IFGeYuFGe2ZpHUfxf16S0w7ybPrrJJsD6cYOtwXjRZo+4ux6PdKZ+m3hnKWoj9IF
OwIDAQAB
-----END PUBLIC KEY-----

OpenPGP 4093AEF6.pub


curl -sSO https://replicator.pharext.org/4093AEF6.pub

gpg --import 4093AEF6.pub

gpg --verify ssdeep-1.1.0.ext.phar.asc \
             ssdeep-1.1.0.ext.phar
-----BEGIN PGP PUBLIC KEY BLOCK-----
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=avra
-----END PGP PUBLIC KEY BLOCK-----