Re: Banner Grabbing

To:	"Michael J Condon" <mjc001@jjuno.com>
Subject:	Re: Banner Grabbing
From:	"Vikas Singhal" <vikas.programmer@gmail.com>
Date:	Thu, 28 Dec 2006 14:57:12 +0530
Cc:	pen-test@securityfocus.com
Delivered-to:	sp-com-lists@consult.net
Delivered-to:	pentest-list2@consult.net
Delivered-to:	mailing list pen-test@securityfocus.com
Delivered-to:	moderator for pen-test@securityfocus.com
Domainkey-signature:	a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=ik+rDQBynXjWccZkqVgbPgowDOX/W4JOiv5RgvkyQYg6OKOXN1UeFM373PbxBGiL7ODyv6wGglbtUSc5JBdMdFFN4oE9Dgk5VhSjpokEyQ+zkuozKBttZL6+7sYEzZGAro/5OCGHJwfSZELhlZg3bL9HCGDGihmjlyKrx9BSvso=
In-reply-to:	<052401c72551$230494f0$0300a8c0@m1chomelab.com>
List-help:	<mailto:pen-test-help@securityfocus.com>
List-id:	<pen-test.list-id.securityfocus.com>
List-post:	<mailto:pen-test@securityfocus.com>
List-subscribe:	<mailto:pen-test-subscribe@securityfocus.com>
List-unsubscribe:	<mailto:pen-test-unsubscribe@securityfocus.com>
Mailing-list:	contact pen-test-help@securityfocus.com; run by ezmlm
References:	<20061217214314.31307.qmail@securityfocus.com> <458628A2.9030208@dmzs.com> <a43117df0612180009t3f572594k56dbeeef976cbcb4@mail.gmail.com> <45869D9F.4070108@dmzs.com> <e5c44eea0612210738t47695f9ele13a0c8060d18e21@mail.gmail.com> <052401c72551$230494f0$0300a8c0@m1chomelab.com>
Resent-date:	Thu, 28 Dec 2006 17:19:32 -0700 (MST)
Resent-from:	pen-test-return-1078483333@securityfocus.com
Resent-message-id:	<20061229001932.B287D23A2EE@outgoing3.securityfocus.com>
Resent-sender:	listbounce@securityfocus.com
Sender:	listbounce@securityfocus.com

On 12/22/06, Michael J Condon <mjc001@jjuno.com> wrote:

What steps can be used to prevent "OS Banner Grabbing" by the client? Also,
what is the best method or "attack" to get to a banner on MS and non MS
Operating Systems?


You can do banner grabbing or OS finger printing(according to
discussion going on here) in two ways.
active and passive.
Active OS fingerprinting is risky but more reliable then passive and vice versa.
You can have a look in irongeek's passive OS fingerprintig video. its
pretty good.

http://www.irongeek.com/i.php?page=videos/passive-os-fingerprinting


- Vikas Singhal
.:[ Keep Learning ]:.

<Prev in Thread]	Current Thread	[Next in Thread>
Re: PCI Compliance (Vulnerability Scans), (continued) Re: PCI Compliance (Vulnerability Scans), Vivek Chudgar Re: PCI Compliance (Vulnerability Scans), David M. Zendzian Re: PCI Compliance (Vulnerability Scans), bf Re: PCI Compliance (Vulnerability Scans), David M. Zendzian Banner Grabbing, Michael J Condon Message not available Re: Banner Grabbing, Jamie Riden Message not available Re: Banner Grabbing, Jamie Riden Re: Banner Grabbing, Dan Catalin Vasile Re: Banner Grabbing, sami ghourabi Message not available Re: Banner Grabbing, sami ghourabi Re: Banner Grabbing, Vikas Singhal <= Re: Banner Grabbing, Eric Kollmann

Previous by Date:	RE: Traceroute question, Tal Argoni
Next by Date:	Re: Traceroute question, Rob Sherwood
Previous by Thread:	Re: Banner Grabbing, sami ghourabi
Next by Thread:	Re: Banner Grabbing, Eric Kollmann
Indexes:	[Date] [Thread] [Top] [All Lists]