Re: Banner Grabbing

To:	"Pravin Jayakumar" <pravinjay@gmail.com>
Subject:	Re: Banner Grabbing
From:	"Jamie Riden" <jamesr@europe.com>
Date:	Fri, 22 Dec 2006 17:49:21 +1300
Cc:	pen-test@securityfocus.com
Delivered-to:	sp-com-lists@consult.net
Delivered-to:	pentest-list2@consult.net
Delivered-to:	mailing list pen-test@securityfocus.com
Delivered-to:	moderator for pen-test@securityfocus.com
Domainkey-signature:	a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:sender:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references:x-google-sender-auth; b=lQJT020EkkbRuzOSyV711DOqFeogJtzQrT856jFzk2GLcxNnq5xi+7M6Ve8/Qi/xJCwA2AfHObw3oGH5KYACVfdjVAKRl0whA4nIyHSkaNoPFMwoEyBOukH3k4fdFGwYUtX7Ejc9Mug0Pm1ep1MxPLQWVK2eJ7O/Af8s5v8lULE=
In-reply-to:	<bb4595f70612212037s549750c9g7a9b6160655c4c33@mail.gmail.com>
List-help:	<mailto:pen-test-help@securityfocus.com>
List-id:	<pen-test.list-id.securityfocus.com>
List-post:	<mailto:pen-test@securityfocus.com>
List-subscribe:	<mailto:pen-test-subscribe@securityfocus.com>
List-unsubscribe:	<mailto:pen-test-unsubscribe@securityfocus.com>
Mailing-list:	contact pen-test-help@securityfocus.com; run by ezmlm
References:	<20061217214314.31307.qmail@securityfocus.com> <458628A2.9030208@dmzs.com> <a43117df0612180009t3f572594k56dbeeef976cbcb4@mail.gmail.com> <45869D9F.4070108@dmzs.com> <e5c44eea0612210738t47695f9ele13a0c8060d18e21@mail.gmail.com> <052401c72551$230494f0$0300a8c0@m1chomelab.com> <17b0fcab0612211955t574eab1bn410f8d7b34c187c8@mail.gmail.com> <17b0fcab0612212016o826ff50oe448f202f2aba47@mail.gmail.com> <bb4595f70612212037s549750c9g7a9b6160655c4c33@mail.gmail.com>
Resent-date:	Thu, 21 Dec 2006 21:51:34 -0700 (MST)
Resent-from:	pen-test-return-1078483314@securityfocus.com
Resent-message-id:	<20061222045134.990F5237071@outgoing3.securityfocus.com>
Resent-sender:	listbounce@securityfocus.com
Sender:	listbounce@securityfocus.com
Sender:	jamie.riden@gmail.com

On 22/12/06, Pravin Jayakumar <pravinjay@gmail.com> wrote:

Jamie,

"telnet victim.example.com <port>' will often get you a banner"

This will give the type of web application u r using and not the OS, if am
right


True - however the OS 'banner' is not usually exposed via services so
you need to infer from individual services and maybe stuff like
p0f/nmap.

Or is there some special sense to "OS banner grabbing" which I'm missing?

cheers,
Jamie
--
Jamie Riden, CISSP / jamesr@europe.com / jamie.riden@gmail.com
NZ Honeynet project - http://www.nz-honeynet.org/

<Prev in Thread]	Current Thread	[Next in Thread>
PCI Compliance (Vulnerability Scans), 09sparky RE: PCI Compliance (Vulnerability Scans), Erin Carroll Re: RE: PCI Compliance (Vulnerability Scans), 09sparky Re: PCI Compliance (Vulnerability Scans), David M. Zendzian Re: PCI Compliance (Vulnerability Scans), Vivek Chudgar Re: PCI Compliance (Vulnerability Scans), David M. Zendzian Re: PCI Compliance (Vulnerability Scans), bf Re: PCI Compliance (Vulnerability Scans), David M. Zendzian Banner Grabbing, Michael J Condon Message not available Re: Banner Grabbing, Jamie Riden Message not available Re: Banner Grabbing, Jamie Riden <= Re: Banner Grabbing, Dan Catalin Vasile Re: Banner Grabbing, sami ghourabi Message not available Re: Banner Grabbing, sami ghourabi Re: Banner Grabbing, Vikas Singhal Re: Banner Grabbing, Eric Kollmann

Previous by Date:	Re: Port 1443, Jamie Riden
Next by Date:	Re: Banner Grabbing, Dan Catalin Vasile
Previous by Thread:	Re: Banner Grabbing, Jamie Riden
Next by Thread:	Re: Banner Grabbing, Dan Catalin Vasile
Indexes:	[Date] [Thread] [Top] [All Lists]