Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

Re: [OT] Remote OS Fingerprinting - ICMP/TCP

From: Erik <security () vanwesten net>
Date: Sun, 22 May 2011 21:04:46 +0200
Op 22-5-2011 9:32, Vimal™ schreef:

Hi List,

I am trying to fingerprint the OS of a remote DNS server (Using ICMP and TCP).

nmap result shows Linux Kernel 2.6
Only Port 53 (UDP and TCP) is open.

http://www.securitypronews.com/securitypronews-24-20030929OSFingerprintingwithICMP.html
http://nmap.org/nmap-fingerprinting-old.html  -   [FINGERPRINTING METHODOLOGY]

Can anybody help me by sending the packet level response for different
OS / Kernel versions. Or any ready made scripts for doing the same.

I am using Scapy (python) for crafting the packets.

Kindly advise.


Try passive fingerprinting with p0f. http://lcamtuf.coredump.cx/p0f.shtml

Good luck,

Erik



------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board
Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. 
http://www.iacertification.org
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: