Nmap Development mailing list archives
forcing nmap to show the OS signature
From: "DePriest, Jason R." <jrdepriest () gmail com>
Date: Thu, 1 Nov 2007 13:29:19 -0600
I am trying to dig up some of the systems with gen1 fingerprints but not gen2. I don't see a good way to force nmap to print out the fingerprint in a way that I can cut and past in to the submission form. I get something like this (running nmap -sSU -O2 -T4 -vv <hostip>) Device type: WAP Running (JUST GUESSING) : D-Link embedded (86%), TRENDnet embedded (86%) OS fingerprint not ideal because: Missing a closed TCP port so results incomplete Aggressive OS guesses: D-Link DWL-624+ or TRENDnet TEW-432BRP wireless broadband router (86%) No exact OS matches for host (test conditions non-ideal). TCP/IP fingerprint by osscan system #2: SCAN(V=4.22SOC8%D=11/1%OT=22%CT=%CU=%PV=Y%G=N%TM=472A2712%P=i686-pc-linux-gnu) SEQ(SP=106%GCD=1%ISR=107%TI=I%II=I%SS=S%TS=U) SEQ(SP=105%GCD=1%ISR=107%TI=I%II=I%SS=S%TS=U) OPS(O1=M564%O2=M564%O3=M564%O4=M564%O5=M564%O6=M564) WIN(W1=1000%W2=1000%W3=1000%W4=1000%W5=1000%W6=1000) ECN(R=Y%DF=N%TG=40%W=1000%O=M564%CC=N%Q=) T1(R=Y%DF=N%TG=40%S=O%A=S+%F=AS%RD=0%Q=) T2(R=N) T3(R=N) T4(R=N) U1(R=N) IE(R=Y%DFI=N%TG=40%TOSI=Z%CD=S%SI=S%DLI=S) with -vv (2 'verbose'). The fingerprint is not recognized by the form. By the way, the guesses are all sorts of wrong. The system is a Juniper Netscreen 208 firewall/vpn. -Jason _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://SecLists.Org
Current thread:
- forcing nmap to show the OS signature DePriest, Jason R. (Nov 01)
- Re: forcing nmap to show the OS signature David Fifield (Nov 01)