[ad]<\/p>\n
Ah can’t believe I haven’t posted about this one before, one of my favourite tools! It was a big breakthrough to have a passive OS-fingerprinting tool after relying on Nmap<\/a> and Xprobe2<\/a> for the longest time.<\/p>\n OS fingerprinting<\/a> is a very important part of a pen-test during the information gathering stage.<\/p>\n P0f v2 is a versatile passive OS fingerprinting tool. P0f can identify the operating system on:<\/p>\n P0f can also do many other tricks, and can detect or measure the following:<\/p>\n All this even when the device in question is behind an overzealous packet firewall, when our favourite active scanner<\/a> can’t do much. P0f does not generate ANY additional network traffic, direct or indirect. No name lookups, no mysterious probes, no ARIN queries, nothing. How? It’s simple: magic. Find out more here<\/a>. <\/p>\n P0f is quite useful for gathering all kinds of profiling information about your users, customers or attackers (IDS, honeypot, firewall), tech espionage (laugh…), active or passive policy enforcement (restricting access for certain systems or otherwise handling them differently; or detecting guys with illegal network hookups using masquerade detection), content optimization, pen-testing (especially with SYN+ACK and RST+ACK modes), thru-firewall fingerprinting… plus all the tasks active fingerprinting is suitable for. And, of course, it has a high coolness factor, even if you are not a sysadmin.<\/p>\n P0f v2 is lightweight, secure and fast enough to be run almost anywhere, hands-free for an extended period of time. <\/p>\n You can donwload p0f v2 here:<\/p>\n\n
\n