RE: Service fingerprinting submissions

["Thomas Tavaris J (Tavaris)" <tjthomas () LGSInnovations com>]

Hi Brandon,

It can be sanitized data. I'm only primarily interested in the
"{responsestring}" (taken from vscan-community.html) portion of the
submission. All of the nmap generated service fingerprints I've seen
don't contain any sensitive responsestrings (admittedly that could just
be my interpretation or dearth of submissions I've seen) - It really
doesn't pertain to one or two submissions but I'd like to look at all of
the submission as whole. I am trying to develop some methods for
characterizing response strings. 


-Tavaris


-----Original Message-----
From: Brandon Enright [mailto:bmenrigh () ucsd edu] 
Sent: Friday, April 18, 2008 3:50 PM
To: Thomas Tavaris J (Tavaris)
Cc: nmap-dev () insecure org; bmenrigh () ucsd edu
Subject: Re: Service fingerprinting submissions

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Fri, 18 Apr 2008 15:46:56 -0400
"Thomas Tavaris J (Tavaris)" <tjthomas () LGSInnovations com> wrote:

> Hello,
>
> Does anyone maintain a collection/archive of all the service 
> fingerprinting submissions pertaining to the regular expressions 
> contained in the current nmap-service-probes file?
>
> Is it possible to gain access to the original submissions?
>
> Best Regards,
> ---
> Tavaris

Tavaris,

The original submissions can often contain personal/private/sensitive
information and so generally can't be made public.  If you have
specific questions about the submission(s) behind a particular match
line I suspect someone will be able to help out.

Brandon

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.7 (GNU/Linux)

iD8DBQFICPt0qaGPzAsl94IRAvvmAJ0Vzad2BzJR1ILKKQacs0OqzGtcLwCbBzZD
/2Y8Zhm3R021wS6BNX7mb/w=
=ltSU
-----END PGP SIGNATURE-----

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org