Re: Fingerprinting Firewall
From: Fatih OZAVCI (fatih.ozavci_at_infosecurenet.com)
Date: 04/13/05
- Previous message: psiphon_at_infosecguides.com: "Re: 'in-line' pentest and pentest linux distro?"
- In reply to: Prashant Gawade: "Fingerprinting Firewall"
- Next in thread: David L Rice: "RE: Fingerprinting Firewall"
- Reply: David L Rice: "RE: Fingerprinting Firewall"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 13 Apr 2005 10:18:24 +0300 To: Prashant Gawade <prashant.gawade@paladion.net>
hi,
some firewalls (like checkpoint fw-1) have by-default open services, you
can detect firewall if this services or ports are open.
for example 256/18264/264 ports are open, this firewall is checkpoint fw-1.
also you can analyze tcp/ip fingerprints for firewall operation system
(*bsd, linux, solaris etc.)
good luck.
Fatih Ozavci
IT Security Consultant
Prashant Gawade wrote:
>
> hi
>
> We all know that, we can identify firewall using various methods and tools like "firewalk".
> Is there any method or tool available which will remotely fingerprint and enumerate rule base configured on the firewall?
>
>
> Prashant Vijayanand Gawade
> Paladion Networks
> Security Engineer
> Navi- Mumbai
>
- Previous message: psiphon_at_infosecguides.com: "Re: 'in-line' pentest and pentest linux distro?"
- In reply to: Prashant Gawade: "Fingerprinting Firewall"
- Next in thread: David L Rice: "RE: Fingerprinting Firewall"
- Reply: David L Rice: "RE: Fingerprinting Firewall"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
