Site Navigation

Date:      Fri, 09 Feb 2007 18:03:59 +0100
From:      Erik Norgaard <norgaard@locolomo.org>
To:        FreeBSD Questions <questions@freebsd.org>
Subject:   Passive fingerprinting howto
Message-ID:  <45CCA97F.5030708@locolomo.org>

---

next in thread | raw e-mail | index | archive | help

---

[-- Attachment #1 --]
Hi:

I know that packet filter can use passive fingerprinting to block or 
pass traffic, but I'd like to use it to identify what crapware is on my 
network.

Can snort do this or is there some other tool that can sniff traffic and 
identify the connected systems?

Thanks, Erik

-- 
Ph: +34.666334818                      web: http://www.locolomo.org

[-- Attachment #2 --]
0�	*�H��

��0�

10	+0�	*�H��


��
�0�p0�X�
ET+�0
	*�H��


0110	UDK10
U
TDC10UTDC OCES CA0
061115083154Z
081115090154Z0u10	UDK1)0'U
 Ingen organisatorisk tilknytning1;0U
Erik N�rgaard0#UPID:9802-2002-2-5443697693150��0
	*�H��



��0��������WR�&���5��ʄ8#S^���f���Oパ���Br��IsPB��c�! >�r��&�8h�l3�?\.����U���GB���\E����3Q!��1Mr�w���P*�02�\|\&s�{b'`1&1�

���0��0U

��0+U$0"�20061115083154Z�20081115090154Z0�
7U �
.0�
*0�
&
*�P�)



0�
0/+

#http://www.certifikat.dk/repository0��+
0��0
TDC0

��For anvendelse af certifikatet g�lder OCES vilk�r, CPS og OCES CP, der kan hentes fra www.certifikat.dk/repository. Bem�rk, at TDC efter vilk�rene har et begr�nset ansvar ift. professionelle parter.0A+


50301+
0
�%http://ocsp.certifikat.dk/ocsp/status0 U0�norgaard@locolomo.org0��U}0{0K�I�G�E0C10	UDK10
U
TDC10UTDC OCES CA10UCRL15570,�*�(�&http://crl.oces.certifikat.dk/oces.crl0U#0�`���Vd~'gPKs�;�0U�~kG'�f+��Q{
�m&���0	U00	*�H��}A0
V7.1�0
	*�H��


�

OJ����'��|���)�%Ҋ��i`1�
^�n�E���
�jJ�w���K�Ӽ�B��65V���SǶw`�y$L=YX������ʷ�/����\�E��~��,�P���W$AB�\汎�͙
��7����%$�	N��-ށ�"/��Ww#�ғ�kM��A6�S0d�D~��\w*z�P�q��`�#�	69�
�;p��S�6 �	뛨3��:9�s_
�����.�'�³Q����$S0yA�ƶlqfL�i�0�p0�X�
ET+�0
	*�H��


0110	UDK10
U
TDC10UTDC OCES CA0
061115083154Z
081115090154Z0u10	UDK1)0'U
 Ingen organisatorisk tilknytning1;0U
Erik N�rgaard0#UPID:9802-2002-2-5443697693150��0
	*�H��



��0��������WR�&���5��ʄ8#S^���f���Oパ���Br��IsPB��c�! >�r��&�8h�l3�?\.����U���GB���\E����3Q!��1Mr�w���P*�02�\|\&s�{b'`1&1�

���0��0U

��0+U$0"�20061115083154Z�20081115090154Z0�
7U �
.0�
*0�
&
*�P�)



0�
0/+

#http://www.certifikat.dk/repository0��+
0��0
TDC0

��For anvendelse af certifikatet g�lder OCES vilk�r, CPS og OCES CP, der kan hentes fra www.certifikat.dk/repository. Bem�rk, at TDC efter vilk�rene har et begr�nset ansvar ift. professionelle parter.0A+


50301+
0
�%http://ocsp.certifikat.dk/ocsp/status0 U0�norgaard@locolomo.org0��U}0{0K�I�G�E0C10	UDK10
U
TDC10UTDC OCES CA10UCRL15570,�*�(�&http://crl.oces.certifikat.dk/oces.crl0U#0�`���Vd~'gPKs�;�0U�~kG'�f+��Q{
�m&���0	U00	*�H��}A0
V7.1�0
	*�H��


�

OJ����'��|���)�%Ҋ��i`1�
^�n�E���
�jJ�w���K�Ӽ�B��65V���SǶw`�y$L=YX������ʷ�/����\�E��~��,�P���W$AB�\汎�͙
��7����%$�	N��-ށ�"/��Ww#�ғ�kM��A6�S0d�D~��\w*z�P�q��`�#�	69�
�;p��S�6 �	뛨3��:9�s_
�����.�'�³Q����$S0yA�ƶlqfL�i�1�*0�&

090110	UDK10
U
TDC10UTDC OCES CAET+�0	+��
G0	*�H��

	1	*�H��


0	*�H��

	1
070209170359Z0#	*�H��

	1	�ڼ���xwI�eF�*0H	+

�71;090110	UDK10
U
TDC10UTDC OCES CAET+�0J*�H��

	1;�90110	UDK10
U
TDC10UTDC OCES CAET+�0R	*�H��

	1E0C0
*�H��
0*�H��
�0
*�H��

@0+0
*�H��

(0
	*�H��



���np,=* �4�@0�!�D�|Rt���R��.�
<ػN'��*��d��>x:[�g�~�p�g�,�
H+���7�(]{����b�CQ��tSA^@���t�"D8}N��u}��L�G�̝��fu�

---

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?45CCA97F.5030708>

Legal Notices | © 1995-2025 The FreeBSD Project. All rights reserved.

Contact