yohooooo
Mar 10 2004, 10:41 AM
Guys,
Any idea how to avoid OS detection if tool like nmap is scanning ny system ???
I did a search on google but most mentioned need to tune some kernel parameters but it did not explain in details.
Thanks
yohooooo
B1narypro
Mar 10 2004, 01:42 PM
Security through Obscurity. Deception Tool Kit is a tool which generates fake information related to your machine. For example if your running Linux, then you can have DTK generate a fake snapshot of another OS. Also you can drop all incoming ICMP traffic through your rule sets in your firewall so initially scanning tools won't see you.
Blackknight
Mar 10 2004, 10:44 PM
Anyone who does normal ping request.. i never use them they are unreliable.
But for spoofing your OS info just google.. once you know how they get the fingerprint you know howto fake it :)DTK is good
yohooooo
Mar 12 2004, 06:00 PM
I tried dropping ICMP but nmap still able to detect i'm running linux when i did a stealth scan, it uses fingerprinting.
Let me try the DTK
Thanks guys
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please
click here.
