Solved

Unable to determine version of windows running using NMAP TCP/ip fingerprint.

Posted on 2014-10-06
2
341 Views
Last Modified: 2014-10-10
Hi and thank you in advance,

I am having trouble identifying which version of windows an host is running.  I have been reading NMAP articles on TCP/IP fingerprinting and still have an issue determining the version of windows running.  Please help decipher the TCP/IP finger print.  I was looking at the following line, WIN(W1=1%W2=3F%W3=4%W4=4%W5=10%W6=200), and was thinking that the fingerprint points to Windows 2000.  

TCP/IP Fingerprint Below:
SCAN(V=6.47%E=4%D=10/6%OT=21%CT=1%CU=%PV=N%G=Y%TM=5432AF37%P=i686-pc-windows-windows)
SEQ(CI=I%II=I)
OPS(O1=%O2=%O3=%O4=%O5=%O6=)
WIN(W1=1%W2=3F%W3=4%W4=4%W5=10%W6=200)
ECN(R=Y%DF=N%TG=20%W=3%O=%CC=N%Q=)
T1(R=Y%DF=N%TG=20%S=Z%A=O%F=R%RD=0%Q=)
T2(R=Y%DF=N%TG=20%W=80%S=Z%A=O%F=R%O=%RD=0%Q=)
T3(R=OS:Y%DF=N%TG=20%W=100%S=Z%A=O%F=R%O=%RD=0%Q=)
T4(R=Y%DF=N%TG=20%W=400%S=A%A=OS:Z%F=R%O=%RD=0%Q=)
T5(R=Y%DF=N%TG=20%W=7A69%S=Z%A=O%F=R%O=%RD=0%Q=)
T6(R=Y%DF=N%TG=20%W=8000%S=A%A=Z%F=R%O=%RD=0%Q=)
T7(R=Y%DF=N%TG=20%W=FFFF%S=Z%A=O%F=R%O=%RD=0%Q=)
U1(R=N)
IE(R=Y%DFI=N%TG=20%CD=S)
0
Comment
Question by:cesemj
2 Comments
 
LVL 13

Accepted Solution

by:
Gabriel Clifton earned 500 total points
ID: 40364008
Try this site for further explanation: http://nmap.org/nmap-fingerprinting-old.html
0
 

Author Comment

by:cesemj
ID: 40364080
reviewing now. - thanks.
0

Featured Post

Complete VMware vSphere® ESX(i) & Hyper-V Backup

Capture your entire system, including the host, with patented disk imaging integrated with VMware VADP / Microsoft VSS and RCT. RTOs is as low as 15 seconds with Acronis Active Restore™. You can enjoy unlimited P2V/V2V migrations from any source (even from a different hypervisor)

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this increasingly digital world, security hacks are no longer just a threat, but a reality. As we've witnessed with Target's big identity hack 2013, Heartbleed in 2015, and now Cloudbleed, companies and their leaders need to prepare for the unthi…
February 24, 2017 — On February 23, Travis Ormandy, a vulnerability researcher at Google, reported on Twitter (https://twitter.com/taviso/status/834900838837411840) that massive stores of data have been leaked by CloudFlare, a company that provide…
In this video, we discuss why the need for additional vertical screen space has become more important in recent years, namely, due to the transition in the marketplace of 4x3 computer screens to 16x9 and 16x10 screens (so-called widescreen format). …
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

808 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question