Fingerprinting [Archive] - Antionline Forums - Maximum Security for a Connected World

Click to See Complete Forum and Search --> : Fingerprinting

jayhawk

February 27th, 2002, 06:25 PM

Looking for tools that I can use to fingerprint systems. I'm using windows xp so I can't use nmap. Are there any good alternatives out there?

KorpDeath

February 27th, 2002, 06:42 PM

How about mingsweeper?
http://www.hoobie.net/mingsweeper/

KorpDeath

February 27th, 2002, 07:03 PM

Or maybe X-probe?

http://www.sys-security.com/html/projects/X.html

jayhawk

March 1st, 2002, 03:42 PM

Can't get any of them to work proporly. Found a program called Retina that told me that the target computer was either a win95, win98 or winNT system.

Any theories why xprobe and mingsweep doesn't work. Would really like to try those programs out as well.

Thanx

s0nIc

March 1st, 2002, 04:04 PM

well good fingerprinting tools are mostly found in networking tools..

i suggest you visit www.firewall.cx and see their downloads.. i have roughly lots of their softwares in my box and i am quite impressed.. especially with the packet annalyzer and IP Tools..

micael

March 1st, 2002, 04:17 PM

You can read some of our previous threads about fingerprinting and related.

http://www.antionline.com/showthread.php?s=&threadid=157644
http://www.antionline.com/showthread.php?s=&threadid=131862
http://www.antionline.com/showthread.php?s=&threadid=131216

There are not many tools for Windows but these threads can maybe give you a hint about were to look for more information.

I have been using ISS and it works quite well but its a expensive program and you would probably find cheaper or even freeware programs which suits your need.

Btw nmap should work under WinXP if you can find the appropriate packet driver. Try a search on www.google.com for packet drivers for WinXP.

~micael

jayhawk

March 5th, 2002, 01:44 PM

I'm not able to compile xprobe. Does anyone know where to find a precompiled version for windows xp. Or is anyone willing to give an explanaition how to compile it?

Ghost_25inf

March 5th, 2002, 02:19 PM

Are you talking about Active stack Fingerprinting or passive stack finger printing? Then I would go with siphon, a passive port mapping, OS id, and network topology tool.
Check out www.gravitino.net/projects/siphon Though I would have to say I am not too sure how thats going to work on an xp system. Also check out Cheops though I havent used it myself, It has turned up some good reviews. Hope this solves your delema. see Ya.

T1T3SONET

March 5th, 2002, 03:58 PM

jayhawk,

I haven't tried this on an XP system, but it was built for WinNT and Win2000, so it should work on XP. Check out this link:

LanGuard Network Scanner (http://www.gfi.com/languard/lanscan.htm)

jayhawk

March 5th, 2002, 04:11 PM

T1T3SONET,

as far as I know, Languard doesn't perform OS-fingerprinting...

There has to be someone here that has successfully fingerprinted an OS using windows xp?

oplin

March 5th, 2002, 05:30 PM

i belive there i a version of nmap for win 2000 but i don't know were it is located

Mankan

March 5th, 2002, 05:43 PM

Just thought I'd drop a link for those of you who haven't seen it/read the article.

ICMP based remote OS TCP/IP stack fingerprinting techniques (http://www.phrack.org/show.php?p=57&a=7)

Cheers,