Nmap Development mailing list archives
Re: nmap OS detection
From: Sebastian Brestin <sebastianbrestin () gmail com>
Date: Mon, 15 Sep 2014 21:54:00 +0300
I have tried --fuzzy/--osscan-guess. TCP 22 is always open since they are linux/unix servers, another TCP port from the -F is surely closed and there are no UDP services listening. Debug is a good idea, I will look into it. And there may be switches/firewalls that block. Not sure. Because it works on ipv4, I am guessing that there may be some ipv6 filtering. I tried -sS. It is funny because with the same machines, using ipv4 works just fine. The services that listen on ipv4 should listen on ipv6 as well. And when the ubuntu machine is scanned from another source machine it is recognized as ubuntu. But aix and hpux are still not recognized. -sgb On Mon, Sep 15, 2014 at 7:47 PM, Jacek Wielemborek <d33tah () gmail com> wrote:
15.09.2014 18:42, Sebastian Brestin:I've speed read the book Nmap Network Scanning. But I have no clue inwhichdirection to investigate more. And time is not my friend. Please give meathinner direction than "read up on OS detection". -sgb1. Have you tried --osscan-guess? 2. Did you find at least one open and one closed TCP port and one closed UDP port? 3. Did you test debug output to see why Nmap complains about no perfect match? 4. Maybe your firewall messes with the packets? I can also see you're using -sT, which is a connect() scan - I would try -sS just to make sure.
_______________________________________________ Sent through the dev mailing list http://nmap.org/mailman/listinfo/dev Archived at http://seclists.org/nmap-dev/
Current thread:
- nmap OS detection Sebastian Brestin (Sep 15)
- Re: nmap OS detection Jacek Wielemborek (Sep 15)
- Message not available
- Re: nmap OS detection Jacek Wielemborek (Sep 15)
- Re: nmap OS detection Sebastian Brestin (Sep 15)
- Message not available
- Re: nmap OS detection Jacek Wielemborek (Sep 15)