Questions tagged [os-fingerprinting]
23 questions
8
votes
3 answers
Passive fingerprinting of HTTPS client
Is it possible to passively fingerprint a HTTPS client, based solely on data visible to a network eavesdropper?
In other words, consider a network monitoring box that can see all the packets (but doesn't know any private keys and is only passively…
D.W.
- 98,420
- 30
- 267
- 572
8
votes
1 answer
Message signing disabled (dangerous, but default)
Over the last couple of years, I've developed a fairly keen interest in Penetration Testing & Information Security. Throughout this time, I've acquired (and accumulated) a range of different devices with network capabilities, primarily, in an effort…
voices
- 1,649
- 7
- 22
- 36
7
votes
2 answers
Extra p0f v3 fingerprints files?
p0f v3 is a passive operating system detector. The latest release is 3.08b, dating to November, 2014. Given the releases of Windows 10, multiple Linux, Firefox and Chrome versions since then, the fingerprints file doesn't identify a lot of TCP SYN…
Bruce Ediger
- 4,552
- 2
- 25
- 26
5
votes
8 answers
Is it useful to determine the name of the server software while doing a penetration test?
Getting the name of the server software through netcat or curl or any other method, is really useful?
I mean, OS fingerprinting is useful in order to tailor an attack. For example with regard to OS command injection it's obviously important since…
g9999
- 225
- 1
- 4
- 8
5
votes
2 answers
How effective is changing the MAC address?
Since every vendor has a MAC address range, and Apple has network card models that only they use (Airport), I suppose that it is very easy to identify a network package as coming from an Apple device, even if the traffic is encrypted.
One of the…
SystematicFrank
- 315
- 2
- 9
4
votes
2 answers
OS Fingerprinting for Android
Are traditional OS-fingerprinting techniques effective in identifying Android smartphones (OS version) on a network. From my research I found most Android network mappers can be only run from Android platforms and tools such as nmap are…
Ali Ahmad
- 4,784
- 8
- 35
- 61
3
votes
2 answers
Spoofing OS during browsing
I am using http://www.mybrowserinfo.com/ to gather some info about me while browsing.
I want to change my OS to appear that its a Windows Xp machine.(No VM solutions please:D)
If you have any related material how this sites fingerprint you please…
blended
- 2,841
- 3
- 15
- 16
3
votes
1 answer
Is there a way to find out what information website queries about us?
What tool or software should I look for to find out what "fingerprinting" data
a website is tracking?
Like, I want to know, if website looks for a cache and/or fonts installed in system, or Canval, WebGL methods. There was a great project doing…
Anton
- 141
- 1
3
votes
1 answer
How is fingerprint authentication integrated with a backend server?
If a fingerprint authentication mechanism, such as iOS's Touch Id, informs an app that it has been successful, how does one securely call back to a web server such that a security ticket can be authorised? Surely, something verifiable must be…
Ian Warburton
- 1,147
- 1
- 10
- 16
2
votes
5 answers
OS fingerprinting: can I rely on the results?
Using nmap -O www.example.com I get:
Running (JUST GUESSING): Microsoft Windows 7|2008 (90%)
So I can say the target site is running Windows.
Using xprobe2 -v www.example.com, I'm just astonished at the fact that the results are completely…
g9999
- 225
- 1
- 4
- 8
2
votes
2 answers
How does Cloudflare track their client? Tor is not a workaround
I mirrored a ecommerce site using wget. This site seems to use Cloudflare to handle their web traffic.
What's interesting is that after 90 % or so of the mirroring was done, wget started to produce/receive a lot of error messages. I then tried to…
hensti
- 151
- 3
2
votes
1 answer
OS Fingerprinting difficulties with nmap and zenmap
I am a college student and I am doing a project on information gathering and I am having some difficulties when I run nmap and zenmap for OS fingerprinting.
I get some results that I don't understand, searched the results but found nothing can…
esseker lavezzi
- 21
- 3
1
vote
1 answer
How to hide PC characteristics on the internet from tools like NMAP etc
Is there a way to disguise your PC characteristics from tools like NMAP and others on the internet? For instance if the OS you are using is Ubuntu is there a way to make it show up as something else. Are firewalls able to block PC's based on there…
Rideboards
- 559
- 4
- 7
1
vote
0 answers
Determining Windows version from a list of files
I have a list of files taken from a dead system, but not the actual files themselves, or any other information (e.g. properties) that would indicate the OS version. Is there a way to determine the version of the OS based on the presence of…
Plesbien
- 11
- 1
1
vote
1 answer
Passive fingerprinting of DNS client
Given a network trace that includes DNS request packets, is it possible to infer or guess which DNS client send those requests?
In other words, consider a network monitoring box that can see all the DNS packets sent from/to a particular host. Can…
D.W.
- 98,420
- 30
- 267
- 572