Solved

Unable to determine version of windows running using NMAP TCP/ip fingerprint.

Posted on 2014-10-06
2
330 Views
Last Modified: 2014-10-10
Hi and thank you in advance,

I am having trouble identifying which version of windows an host is running.  I have been reading NMAP articles on TCP/IP fingerprinting and still have an issue determining the version of windows running.  Please help decipher the TCP/IP finger print.  I was looking at the following line, WIN(W1=1%W2=3F%W3=4%W4=4%W5=10%W6=200), and was thinking that the fingerprint points to Windows 2000.  

TCP/IP Fingerprint Below:
SCAN(V=6.47%E=4%D=10/6%OT=21%CT=1%CU=%PV=N%G=Y%TM=5432AF37%P=i686-pc-windows-windows)
SEQ(CI=I%II=I)
OPS(O1=%O2=%O3=%O4=%O5=%O6=)
WIN(W1=1%W2=3F%W3=4%W4=4%W5=10%W6=200)
ECN(R=Y%DF=N%TG=20%W=3%O=%CC=N%Q=)
T1(R=Y%DF=N%TG=20%S=Z%A=O%F=R%RD=0%Q=)
T2(R=Y%DF=N%TG=20%W=80%S=Z%A=O%F=R%O=%RD=0%Q=)
T3(R=OS:Y%DF=N%TG=20%W=100%S=Z%A=O%F=R%O=%RD=0%Q=)
T4(R=Y%DF=N%TG=20%W=400%S=A%A=OS:Z%F=R%O=%RD=0%Q=)
T5(R=Y%DF=N%TG=20%W=7A69%S=Z%A=O%F=R%O=%RD=0%Q=)
T6(R=Y%DF=N%TG=20%W=8000%S=A%A=Z%F=R%O=%RD=0%Q=)
T7(R=Y%DF=N%TG=20%W=FFFF%S=Z%A=O%F=R%O=%RD=0%Q=)
U1(R=N)
IE(R=Y%DFI=N%TG=20%CD=S)
0
Comment
Question by:cesemj
2 Comments
 
LVL 13

Accepted Solution

by:
Gabriel Clifton earned 500 total points
ID: 40364008
Try this site for further explanation: http://nmap.org/nmap-fingerprinting-old.html
0
 

Author Comment

by:cesemj
ID: 40364080
reviewing now. - thanks.
0

Featured Post

The Eight Noble Truths of Backup and Recovery

How can IT departments tackle the challenges of a Big Data world? This white paper provides a roadmap to success and helps companies ensure that all their data is safe and secure, no matter if it resides on-premise with physical or virtual machines or in the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Worried about if Apple can protect your documents, photos, and everything else that gets stored in iCloud? Read on to find out what Apple really uses to make things secure.
One of the biggest threats facing all high-value targets are APT's.  These threats include sophisticated tactics that "often starts with mapping human organization and collecting intelligence on employees, who are nowadays a weaker link than network…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

776 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question