Skip to main content
U.S. flag

An official website of the United States government

Dot gov

The .gov means it’s official.
Federal government websites often end in .gov or .mil. Before sharing sensitive information, make sure you’re on a federal government site.

Https

The site is secure.
The https:// ensures that you are connecting to the official website and that any information you provide is encrypted and transmitted securely.

Curated Kaspersky Hash Set - 2017

NIST has made available a curated release of National Software Reference Library (NSRL) Reference Data Set (RDS) metadata and file hashes in response to the DHS directive on Kaspersky applications. The data set includes the products listed in the directive plus additional Kaspersky products from the NSRL collection. System administrators and IT personnel tasked with addressing the directive may use this RDS release with third party administrative tools to discover the presence of potential Kaspersky installations.

The most recent release may always be found at https://s3.amazonaws.com/rds.nsrl.nist.gov/kaspersky/current/RDS_Kaspersky.iso (11MB ISO file).

NIST has also made available a supplementary set of Kaspersky software signature data derived from the NSRL's Diskprint methodology.  It is available in the RDS, SWID, and DFXML formats.  The most recent release of this may always be found at https://s3.amazonaws.com/rds.nsrl.nist.gov/kaspersky/current/Diskprint_Kaspersky.zip (4MB Zip file).

A description of the version, contents, digital signatures, and derivation methods may be separately found at https://s3.amazonaws.com/rds.nsrl.nist.gov/kaspersky/readme.txt.

Please contact nsrl [at] nist.gov with questions about the data set.

Created September 6, 2017, Updated October 24, 2017