Penetration Testing mailing list archives
Re: Banner Grabbing
From: Dan Catalin Vasile <hardware_cta () yahoo com>
Date: Thu, 21 Dec 2006 22:48:28 -0800 (PST)
Every OS have a fingerprint not a banner. Services have banners. Nmap have a database of OS fingerprints and can tell you what type of OS is on the target. But there are OS that return similar responses, so telling the difference between them is difficult. Also there is a project at http://ippersonality.sourceforge.net/ that can modify the behaviour of the OS. So 'attacking' the OS fingerprint is not a straight line and not always return a good result. Have secure fun, Dan --- Michael J Condon <mjc001 () jjuno com> wrote:
What steps can be used to prevent "OS Banner Grabbing" by the client? Also, what is the best method or "attack" to get to a banner on MS and non MS Operating Systems?
__________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Current thread:
- RE: PCI Compliance (Vulnerability Scans), (continued)
- RE: PCI Compliance (Vulnerability Scans) Erin Carroll (Dec 16)
- Re: RE: PCI Compliance (Vulnerability Scans) 09sparky (Dec 17)
- Re: PCI Compliance (Vulnerability Scans) David M. Zendzian (Dec 17)
- Re: PCI Compliance (Vulnerability Scans) Vivek Chudgar (Dec 19)
- Re: PCI Compliance (Vulnerability Scans) David M. Zendzian (Dec 19)
- Re: PCI Compliance (Vulnerability Scans) bf (Dec 21)
- Re: PCI Compliance (Vulnerability Scans) David M. Zendzian (Dec 21)
- Banner Grabbing Michael J Condon (Dec 21)
- Message not available
- Re: Banner Grabbing Jamie Riden (Dec 21)
- Message not available
- Re: Banner Grabbing Jamie Riden (Dec 21)
- Re: PCI Compliance (Vulnerability Scans) David M. Zendzian (Dec 17)
- Re: Banner Grabbing Dan Catalin Vasile (Dec 22)
- Re: Banner Grabbing sami ghourabi (Dec 22)
- Message not available
- Re: Banner Grabbing sami ghourabi (Dec 26)
- Re: Banner Grabbing Vikas Singhal (Dec 28)
- Re: Banner Grabbing Eric Kollmann (Dec 29)