Question

S fingerprinting is the method used to determine the operating system running on a remote target system. It is an important scanning method, as the attacker will have a greater probability of success if he/she knows the OS. Active stack fingerprinting is one of the types of OS fingerprinting.

Which of the following is true about active stack fingerprinting?
a. Uses password crackers to escalate system privileges
b. Is based on the fact that various vendors of OS implement the TCP stack differently
c. TCP connect scan
d. Uses sniffing techniques instead of the scanning techniques
e. Is based on the differential implantation of the stack and the various ways an OS responds to it

Answer 1

b. Is based on the fact that various vendors of OS implement the TCP stack differently

Step-by-step explanation:

Operating system vendors make use of TCP/IP based networking stack for interconnectivity. There are severeal different Operating system in the market - Window, Linus, Solaris, HP-UX etc. There operating systems have some individual characteristics of their respective TCP/IP stack implementation parameters - for example window size, time to live etc. These distingusihing characteristics are used by active stack fingerprinting tools to determine information about the OS.