BFW Firewall & Router

por **kainlite** » Qua Out 24, 2007 6:46 pm

Author: kainlite
URL: http://brazilfw.com.br/users/kainlite/pof/pof.tgz
Add-on State: Stable
Add-on Version: 1.0
Original Project Version: 2.0.8
Original Project URL: http://lcamtuf.coredump.cx/p0f/
System Version Required: 2.29b5
Other Packages Required: None
Other Packages Conflict: None

Description:

What is p0f v2?

P0f v2 is a versatile passive OS fingerprinting tool. P0f can identify the operating system on:

- machines that connect to your box (SYN mode),
- machines you connect to (SYN+ACK mode),
- machine you cannot connect to (RST+ mode),
- machines whose communications you can observe.

P0f can also do many other tricks, and can detect or measure the following:

- firewall presence, NAT use (useful for policy enforcement),
- existence of a load balancer setup,
- the distance to the remote system and its uptime,
- other guy's network hookup (DSL, OC3, avian carriers) and his ISP.

Instalation Instructions:
Standard Instalation

Utilization Instructions:

Explore the WebAdmin :P

sorry about my inglish ^^ :P

regards

Agradecimientos : Digimat q me pasaste los links de los proyectos ^^ aca tan :P... thanks bender.. i'll check the error now =P

por **Bender** » Qua Out 24, 2007 7:05 pm

kainlite,

Aparece no Webadmin o item p0f, mas dá erro:
500 Internal Error
There was an unusual problem serving the requested URL '/cgi-bin/pof.cgi'.

Notei também que no arquivo pof.list não tem o pof.cgi:

Código: Selecionar todos: /var/lib/lrpkg/pof.list /etc/p0f/p0f.fp /etc/p0f/p0fa.fp /etc/p0f/p0fo.fp /etc/p0f/p0fr.fp /usr/sbin/p0f /usr/sbin/p0frep

Também pode adicionar em Description do addon as informações do projeto original:

What is p0f v2?

P0f v2 is a versatile passive OS fingerprinting tool. P0f can identify the operating system on:

- machines that connect to your box (SYN mode),
- machines you connect to (SYN+ACK mode),
- machine you cannot connect to (RST+ mode),
- machines whose communications you can observe.

P0f can also do many other tricks, and can detect or measure the following:

- firewall presence, NAT use (useful for policy enforcement),
- existence of a load balancer setup,
- the distance to the remote system and its uptime,
- other guy's network hookup (DSL, OC3, avian carriers) and his ISP.

Bom trabalho!! :D

por **kainlite** » Qua Out 24, 2007 7:20 pm

listo bender ya esta corregido el error.. es q llevaba 4 addons hechos =( :P se me pasaron las lineas q guarda la parte del webadmin =P

saludos bender

gracias por la descripcion

por **Bender** » Qua Out 24, 2007 7:34 pm

Continua dando erro:
500 Internal Error
There was an unusual problem serving the requested URL '/cgi-bin/pof.cgi'.

O Cutter também:
500 Internal Error
There was an unusual problem serving the requested URL '/cgi-bin/cutter.cgi'.

por **kainlite** » Qua Out 24, 2007 7:37 pm

ahh.. ya se q es... =( me olvide de cambiar los permisos de los archivos =(

por **kainlite** » Qua Out 24, 2007 8:11 pm

ahora si bender ya no tendrias q tener problema con ninguno de los 2 addons.. avisame cualquier cosa saludos ^^

por **Bender** » Qua Out 24, 2007 8:55 pm

Funcionou 100%.

por **kainlite** » Qua Out 24, 2007 8:57 pm

por **gamba47** » Qua Out 24, 2007 10:25 pm

kainlite, estas ON FIRE!!!!!!!!!

por **kainlite** » Qua Out 24, 2007 10:47 pm

=P toy haciendo addons como loco :P

por **vanderlpp** » Dom Out 28, 2007 11:50 pm

DÚVIDA!!!

Explique melhor o funcionamento deste addon, e as funcionalidades, por favor...

outra coisa, explique melhor esses resultados:

Código: Selecionar todos: 209.85.133.19:80 - Linux 2.4.2x (firewall!) -> 192.200.200.124:55902 (distance 13, link: unspecified) 192.200.200.124:55881 - UNKNOWN [4298:128:1:*:.:A:?:?] -> 192.200.200.254:8180 (link: unspecified) 192.200.200.254:8180 - Linux 2.4.2x -> 192.200.200.124:55881 (distance 0, link: unspecified) 192.200.200.124:55902 - Windows XP -> 209.85.133.19:80 (distance 0, link: unspecified) 192.200.200.124:55902 - Windows XP -> 209.85.133.19:80 (distance 0, link: unspecified) 192.200.200.124:55902 - Windows XP -> 209.85.133.19:80 (distance 0, link: unspecified) 192.200.200.124:55902 - Windows XP -> 209.85.133.19:80 (distance 0, link: unspecified) 209.85.133.19:80 - Linux 2.4.2x (firewall!) -> 192.200.200.124:55902 (distance 13, link: unspecified) 192.200.200.124:55902 - Windows XP -> 209.85.133.19:80 (distance 0, link: unspecified) 209.85.133.19:80 - Linux 2.4.2x (firewall!) -> 192.200.200.124:55902 (distance 13, link: unspecified) 209.85.133.19:80 - Linux 2.4.2x (firewall!) -> 192.200.200.124:55902 (distance 13, link: unspecified) 192.200.200.124:55902 - UNKNOWN [65535:128:1:*:.:A:?:?] -> 209.85.133.19:80 (link: unspecified) 209.85.133.19:80 - Linux 2.4.2x (firewall!) -> 192.200.200.124:55902 (distance 13, link: unspecified) 209.85.133.19:80 - Linux 2.4.2x (firewall!) -> 192.200.200.124:55902 (distance 13, link: unspecified) 209.85.133.19:80 - Linux 2.4.2x (firewall!) -> 192.200.200.124:55902 (distance 13, link: unspecified) 209.85.133.19:80 - Linux 2.4.2x (firewall!) -> 192.200.200.124:55902 (distance 13, link: unspecified) 192.200.200.254:8180 - Linux 2.4.2x -> 192.200.200.124:55881 (distance 0, link: unspecified) 209.85.133.19:80 - Linux 2.4.2x (firewall!) -> 192.200.200.124:55902 (distance 13, link: unspecified) 192.200.200.124:55881 - Windows XP

Obrigado,

Muito bom mesmo o seu trabalho...

por **kainlite** » Sáb Nov 10, 2007 5:11 pm

http://lcamtuf.coredump.cx/p0f/p0f.shtml

here i think u can get a little help

por **Gibzon** » Dom Nov 11, 2007 12:28 am

kain, decis que esto es mejor que la opcion que trae el nmap?

gracias por el addon :aplause:

por **kainlite** » Dom Nov 11, 2007 5:56 am

la verdad q no te sabria decir gibzon.. si te fijas en la pagina del nmap.. vas a ver el link al p0f.. yo creo q son para cosas distintas.. y q el nmap trae integrado algo similar... pero la verdad no se..

saludos Gibzon

BFW Firewall & Router

p0f Addon

p0f Addon

Quem está online