Nmap Development mailing list archives
Re: OS detection problem
From: "sara fink" <sara.fink () gmail com>
Date: Mon, 24 Mar 2008 08:42:19 +0200
HI I still don't know what the router/switch runs but I have some guess. It is definitely not dlink or hp printer. Either it's some flavor of cisco or Juniper networks. 1 hop after that I find it's a Cisco flavor. On Mon, Mar 24, 2008 at 3:24 AM, João Medeiros <ignotus21 () gmail com> wrote:
Hi Sara, I tested this FP with my application and the most four closely system was: - [5.374400] Cisco VPN 3000 Concentrator VPN platform (software version 4.7.2.D) - [5.391158] HP LaserJet 4350 printer - [5.468121] D-Link DGS-3324SR or DSG-3612G switch - [5.583666] Juniper Networks M10 or M320 router (JUNOS 7.4R3.4) The value between braces is the Euclidean distance. Att, João Medeiros. On Sat, Mar 22, 2008 at 7:43 AM, sara fink <sara.fink () gmail com> wrote: > I ran a scan with OS detection. Instead I received a very scrambled > output. Here is what I received: > > No exact OS matches for host (If you know what OS is running on it, > see http://insecure.org/nmap/submit/ ). > TCP/IP fingerprint: > OS:SCAN(V=4.53%D=3/22%OT=179%CT=1%CU=37293%PV=N%DS=1%G=Y%TM=47E4DE7A%P=i686 > OS:-pc-linux-gnu)SEQ(SP=F9%GCD=1%ISR=FB%TI=I%II=I%SS=S%TS=7)SEQ(SP=FD%GCD=1 > OS:%ISR=10C%TI=I%II=I%SS=S%TS=7)SEQ(SP=104%GCD=1%ISR=105%TI=I%II=I%SS=S%TS= > OS:7)SEQ(SP=F8%GCD=1%ISR=104%TI=I%II=I%SS=S%TS=7)SEQ(SP=100%GCD=2%ISR=10A%T > OS:I=I%II=I%SS=S%TS=7)OPS(O1=M1142NW0NNT11%O2=M1142NW0NNT11%O3=M1142NW0NNT1 > OS:1%O4=M1142NW0NNT11%O5=M1142NW0NNT11%O6=M1142NNT11)WIN(W1=4074%W2=4074%W3 > OS:=4074%W4=4074%W5=4074%W6=403D)ECN(R=Y%DF=N%T=3E%W=4000%O=M1142NW0%CC=N%Q > OS:=)T1(R=Y%DF=N%T=3E%S=O%A=S+%F=AS%RD=0%Q=)T2(R=N)T3(R=Y%DF=N%T=3E%W=403D% > OS:S=O%A=S+%F=AS%O=M1142NW0NNT11%RD=0%Q=)T4(R=Y%DF=N%T=3E%W=0%S=A%A=Z%F=R%O > OS:=%RD=0%Q=)T5(R=Y%DF=N%T=3E%W=0%S=Z%A=S+%F=AR%O=%RD=0%Q=)T6(R=Y%DF=N%T=3E > OS:%W=0%S=A%A=Z%F=R%O=%RD=0%Q=)T7(R=Y%DF=N%T=3E%W=0%S=Z%A=S%F=AR%O=%RD=0%Q= > OS:)U1(R=Y%DF=Y%T=FD%TOS=0%IPL=38%UN=0%RIPL=G%RID=G%RIPCK=G%RUCK=G%RUL=G%RU > OS:D=G)IE(R=Y%DFI=S%T=FD%TOSI=Z%CD=S%SI=S%DLI=S) > > > Uptime: 282.958 days (since Wed Jun 13 14:24:57 2007) > Network Distance: 1 hop > TCP Sequence Prediction: Difficulty=256 (Good luck!) > IP ID Sequence Generation: Incremental > > > Any help will be highly appreciated. > > _______________________________________________ > Sent through the nmap-dev mailing list > http://cgi.insecure.org/mailman/listinfo/nmap-dev > Archived at http://SecLists.Org >
_______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://SecLists.Org
Current thread:
- OS detection problem sara fink (Mar 22)
- Re: OS detection problem João Medeiros (Mar 23)
- Re: OS detection problem Fyodor (Mar 23)
- Re: OS detection problem sara fink (Mar 23)
- Re: OS detection problem sara fink (Mar 23)
- Re: OS detection problem Fyodor (Mar 23)
- Re: OS detection problem João Medeiros (Mar 23)