Tcp fingerprint tool

Figure 7: Connections per second through the gateway. IP Forwarding. Technical Program. Skip to content. Star View license. Branches Tags. Could not load branches. Could not load tags.

Latest commit. Git stats 80 commits. Failed to load latest commit information. Mar 9, Apr 10, Fingerprint The list. Packages that exploit fingerprint biometric equipment. Tool count: 30 BlackArch fingerprint. An ASP fingerprinting tool and vulnerability scanner. A web application fingerprinter. Attempts to discover the version of a known web application by comparing static files at known locations. Those services are also frequently used for scraping purposes which I don't have any issues with, as long as the scraping traffic does not impair the websites or accesses private data.

The hypothesis is that different operating systems and different minor versions among those operating systems use different default values in their initial TCP SYN packet that initiates the TCP three-way handshake. I am perfectly aware that we could investigate the whole TCP packet exchange to deduce more information, such as for example what kind of TCP congestion control algorithm the client suggests.

But I will limit the analysis to the initial SYN packet. Enough theory. Let's get practical. Desktop Ubuntu But can we really correlate those values with operating systems?