Hosting Provided By

Re: Application-based fingerprinting ?

From: Javier Fernandez-Sanguino <jfernandez(at)germinus.com>
Date: Mon Feb 10 2003 - 06:10:46 EST

Anders Thulin wrote:
> Hi!
>
> Fingerprinting a TCP stack seems a fairly well understood technique by

There's also the issue of knowing "what's listening in an open port". Sample: web servers in ports 41254 or ldap servers on port 46254. Amap can do this kind of fingerprinting (http://www.thehackerschoice.com/releases.php) and so does Nessus with the find_service plugin #10330
(http://cvs.nessus.org/cgi-bin/cvsweb.cgi/nessus-plugins/plugins/find_service/).

You might want to take a look at these too.

Javi

This list is provided by the SecurityFocus Security Intelligence Alert (SIA) Service. For more information on SecurityFocus' SIA service which automatically alerts you to the latest security vulnerabilities please see: https://alerts.securityfocus.com/ Received on Mon Feb 10 10:22:50 2003

This message: [ Message body ]
Next message: dented-halo(at)hushmail.com: "how to isolate a virtual hosted website, in order to do a A&P?"
Previous message: Fabio Pietrosanti (naif): "Re: PBX Security"
In reply to Anders Thulin: "Application-based fingerprinting ?"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:02:32 EDT