[Webinar] Streamline your web hosting managementRegister Today

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 476
  • Last Modified:

Unable to determine version of windows running using NMAP TCP/ip fingerprint.

Hi and thank you in advance,

I am having trouble identifying which version of windows an host is running.  I have been reading NMAP articles on TCP/IP fingerprinting and still have an issue determining the version of windows running.  Please help decipher the TCP/IP finger print.  I was looking at the following line, WIN(W1=1%W2=3F%W3=4%W4=4%W5=10%W6=200), and was thinking that the fingerprint points to Windows 2000.  

TCP/IP Fingerprint Below:
SCAN(V=6.47%E=4%D=10/6%OT=21%CT=1%CU=%PV=N%G=Y%TM=5432AF37%P=i686-pc-windows-windows)
SEQ(CI=I%II=I)
OPS(O1=%O2=%O3=%O4=%O5=%O6=)
WIN(W1=1%W2=3F%W3=4%W4=4%W5=10%W6=200)
ECN(R=Y%DF=N%TG=20%W=3%O=%CC=N%Q=)
T1(R=Y%DF=N%TG=20%S=Z%A=O%F=R%RD=0%Q=)
T2(R=Y%DF=N%TG=20%W=80%S=Z%A=O%F=R%O=%RD=0%Q=)
T3(R=OS:Y%DF=N%TG=20%W=100%S=Z%A=O%F=R%O=%RD=0%Q=)
T4(R=Y%DF=N%TG=20%W=400%S=A%A=OS:Z%F=R%O=%RD=0%Q=)
T5(R=Y%DF=N%TG=20%W=7A69%S=Z%A=O%F=R%O=%RD=0%Q=)
T6(R=Y%DF=N%TG=20%W=8000%S=A%A=Z%F=R%O=%RD=0%Q=)
T7(R=Y%DF=N%TG=20%W=FFFF%S=Z%A=O%F=R%O=%RD=0%Q=)
U1(R=N)
IE(R=Y%DFI=N%TG=20%CD=S)
0
cesemj
Asked:
cesemj
1 Solution
 
Gabriel CliftonCommented:
Try this site for further explanation: http://nmap.org/nmap-fingerprinting-old.html
0
 
cesemjAuthor Commented:
reviewing now. - thanks.
0

Featured Post

Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now