Hi All,
Just came across this little tool for the Linux 2.4 Kernel, and it sound pretty good in theory.
Basically, this patch will fool nmaps OS fingerprinting feature.
How can a hacker compromise what he thinks is a Win2K machine and launches his attack based on Win2K vulnerabilities, when in reality, it is a Linux machine?The characteristics that can be changed are:
- TCP Initial Sequence Number (ISN)
- TCP initial window size
- TCP options (their types, values and order in the packet)
- IP ID numbers
- answers to some pathological TCP packets
- answers to some UDP packets
I know that this wouldnt replace any other security tools like Firewalls and Antivirus, and it could be considered to some extent "Security by Obscurity", but I think that it could be a nice inclusion to your systems overall"Security Suite".
Check it out at:
http://ippersonality.sourceforge.net/
Reply With Quote