p0f
p0f is a versatile passive OS and application fingerprinter, and a tool for detecting NAT/connection sharing. It is useful for penetration testing, routine network monitoring, and forensics, and to aid abuse detection tools such as IDSes, spam filters, or honeypots.
| Tags | Security Networking Firewalls Monitoring Systems Administration Utilities |
|---|---|
| Licenses | LGPL |
| Operating Systems | POSIX AIX Windows Windows Mac OS X BSD Linux Solaris Unix |
| Implementation | C |
Recent releases
- 16 Jan 2012 23:18
Release Notes: This complete rewrite adds a range of new TCP fingerprinting mechanisms, sophisticated NAT detection, HTTP inspection and fingerprinting, and updated signatures.
- 06 Sep 2006 03:41
Release Notes: New fingerprints were added. Diagnostic and statistics query mode and utilities were contributed. Other minor fixes were made.
- 10 Aug 2006 07:45
Release Notes: New fingerprints were added, including ones for Windows Vista. Support for older architectures was improved. The plugin query capability was improved. Minor bugfixes were made.
- 09 Mar 2006 13:11
Release Notes: New signatures, better logging, and various minor improvements. Fixes to compile on newer Linux distributions. A Cygwin port.
- 13 Sep 2004 12:33
Release Notes: Established connection fingerprinting (ACK mode) is now supported. 802.1Q VLAN support had been added. New fingerprints are available. Minor other tweaks have been added.
Recent comments
I'm looking for an up-to-date fingerprint collection. Is there one?
lcam
19 Aug 2003 01:41
Heartbeat
- Popularity Score
- 827.11
- Vitality Score
- 53.80
- Subscriptions
- 207
