TCP/IP Fingerprinting Probes |
Attack Pattern ID: 315 (Standard Attack Pattern) | Typical Severity: Low | Status: Draft |
Summary
An attacker engages in TCP stack fingerprinting techniques to determine the type and version of operating systems on the network. TCP Fingerprinting involves manipulating portions of the TCP header or other characteristics in order to elicit a unique and identifiable response from an operating system. This response is compared against a database of known operating system fingerprints and a guess about the operating system type and version is made.
Target Attack Surface Description
Targeted OSI Layers: Network Layer Transport Layer Application Layer
Target Attack Surface Localities
Target Attack Surface Types: Host Service
Target Functional Services
Target Functional Service 1: None | ||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|
Protocol 1: Any | ||||||||||||
|
The ability to send and receive TCP segments from a target in order to identify a particular TCP stack implementation.
Nature | Type | ID | Name | Description | View(s) this relationship pertains to |
---|---|---|---|---|---|
ChildOf | Attack Pattern | 312 | Active OS Fingerprinting | Mechanism of Attack (primary)1000 | |
ParentOf | Attack Pattern | 320 | TCP Timestamp Probe | Mechanism of Attack (primary)1000 | |
ParentOf | Attack Pattern | 321 | TCP Sequence Number Probe | Mechanism of Attack (primary)1000 | |
ParentOf | Attack Pattern | 322 | TCP (ISN) Greatest Common Divisor Probe | Mechanism of Attack (primary)1000 | |
ParentOf | Attack Pattern | 323 | TCP (ISN) Counter Rate Probe | Mechanism of Attack (primary)1000 | |
ParentOf | Attack Pattern | 324 | TCP (ISN) Sequence Predictability Probe | Mechanism of Attack (primary)1000 | |
ParentOf | Attack Pattern | 325 | TCP Congestion Control Flag (ECN) Probe | Mechanism of Attack (primary)1000 | |
ParentOf | Attack Pattern | 326 | TCP Initial Window Size Probe | Mechanism of Attack (primary)1000 | |
ParentOf | Attack Pattern | 327 | TCP Options Probe | Mechanism of Attack (primary)1000 | |
ParentOf | Attack Pattern | 328 | TCP 'RST' Flag Checksum Probe | Mechanism of Attack (primary)1000 |