Skip to main content

advanced_os_fingerprinting

hping3 192.168.1.103 -Q -p 139 -S
# -Q, will provide the sequential number of the packer
# -p, will specify the destination port
# -S will set the SYN flag

Once we have these numbers we can also generate a spectrogram and try to see what the spectrogram is more similar to. An hping script which can be used to this purpose is:

hping3 exec isn-spectrogram.htcl 192.168.1.103 100 135