[Snort-users] How to detect OS with Snort?
peter.bates at ...15381...
Tue May 8 10:23:59 EDT 2012
-----BEGIN PGP SIGNED MESSAGE-----
On 08/05/2012 14:26, Borja Luaces wrote:
> Good afternoon,
> First of all I have to say that I am new to Snort.
> I am trying to create an alert rule to detect the OS but everytime
> I try it it seems not to work.
Nick has mentioned nmap but depending on what you're trying to do you
might have better luck with PRADS:
... or p0f, etc.
Senior Computer Security Officer Phone: +44(0)2076792049
Information Services Division Internal Ext: 32049
University College London
London WC1E 6BT
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.17 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
-----END PGP SIGNATURE-----
More information about the Snort-users