Passive Fingerprinting

[Lance Spitzner <lance () spitzner net>]

Passive Fingerprinting is a method of determining
a remote operating system based solely on sniffer
traces.  Though the concept is not new, little has
been documented about it.  To help me in the
analysis of system attacks, I have developed such 
documentation.

I have written a rough draft and a database for
passive fingerprinting.  I am hoping some of the
guru's here could check it out and give me their
suggestions/experiences.  Also, I would appreciate
any signatures to add to the database.  The paper
is a working draft.

Passive Fingerprinting:
http://www.enteract.com/~lspitz/finger.html

Thanks!

Lance Spitzner
http://www.enteract.com/~lspitz/papers.html