TCP/IP stack fingerprinting

Encyclopedia : T : TC : TCP : TCP/IP stack fingerprinting

---

---

 

TCP/IP stack fingerprinting (or OS fingerprinting) is the process in computing of determining the identity of a remote host's operating system by analyzing packets from that host.

There are two different types, active and passive. Passive OS fingerprinting identifies the remote operating system with packets that are received, without sending any packets. Active OS fingerprinting, by contrast, sends packets and waits for a response (or lack of one). Active OS fingerprinting sometimes sends strange packets, because different implementations respond differently to such errors.

Nmap is a tool that performs TCP/IP stack fingerprinting.

External links

• [Remote OS detection via TCP/IP Stack FingerPrinting]
• [Defeating TCP/IP Stack Fingerprinting]
• [Strange Attractors and TCP/IP Sequence Number Analysis - One Year Later]

---

 

---

From Wikipedia, the Free Encyclopedia. Original article here. Support Wikipedia by contributing or donating.
All text is available under the terms of the GNU Free Documentation License See Wikipedia Copyrights for details.

---

Search Titles

0

1

2

3

4

5

6

7

8

9

A

B

C

D

E

F

G

H

I

J

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Y

Z

?