Penetration Testing mailing list archives

Re: Banner Grabbing

From: Dan Catalin Vasile <hardware_cta () yahoo com>
Date: Thu, 21 Dec 2006 22:48:28 -0800 (PST)

Every OS have a fingerprint not a banner. Services
have banners.
Nmap have a database of OS fingerprints and can tell
you what type of OS is on the target. But there are OS
that return similar responses, so telling the
difference between them is difficult. Also there is a
project at http://ippersonality.sourceforge.net/ that
can modify the behaviour of the OS.

So 'attacking' the OS fingerprint is not a straight
line and not always return a good result.

Have secure fun,
Dan


--- Michael J Condon <mjc001 () jjuno com> wrote:

What steps can be used to prevent "OS Banner
Grabbing" by the client? Also, 
what is the best method or "attack" to get to a
banner on MS and non MS 
Operating Systems?



__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com

Current thread:

RE: PCI Compliance (Vulnerability Scans), (continued)
- RE: PCI Compliance (Vulnerability Scans) Erin Carroll (Dec 16)
- Re: RE: PCI Compliance (Vulnerability Scans) 09sparky (Dec 17)
  - Re: PCI Compliance (Vulnerability Scans) David M. Zendzian (Dec 17)
    - Re: PCI Compliance (Vulnerability Scans) Vivek Chudgar (Dec 19)
    - Re: PCI Compliance (Vulnerability Scans) David M. Zendzian (Dec 19)
    - Re: PCI Compliance (Vulnerability Scans) bf (Dec 21)
    - Re: PCI Compliance (Vulnerability Scans) David M. Zendzian (Dec 21)
    - Banner Grabbing Michael J Condon (Dec 21)
    - Message not available
    - Re: Banner Grabbing Jamie Riden (Dec 21)
    - Message not available
    - Re: Banner Grabbing Jamie Riden (Dec 21)
    - Re: Banner Grabbing Dan Catalin Vasile (Dec 22)
    - Re: Banner Grabbing sami ghourabi (Dec 22)
    - Message not available
    - Re: Banner Grabbing sami ghourabi (Dec 26)
    - Re: Banner Grabbing Vikas Singhal (Dec 28)
    - Re: Banner Grabbing Eric Kollmann (Dec 29)