EH-Net

Ethical Hacking Discussions and Related Certifications => Network Pen Testing => Topic started by: Manu Zacharia (-M-) on July 07, 2006, 12:51:17 PM


Title: OS Fingerprinting using ICMP - AFCEH Question
Post by: Manu Zacharia (-M-) on July 07, 2006, 12:51:17 PM
Hi Friends,

I am posting more questions that I have faced during my AFCEH course. Please discuss the same. The next question is:
Quote
In the OS Fingerprinting technique of using Ping and Traceroute, what is the mathematical calculation that one needs to perform?

1.   Final TTL Value + Number of Hops
2.   Final TTL Value + Number of Hops - 1
3.   Final  TTL Value + Number of Hops - Round Trip Time
4.   Initial TTL Value + Number of Hops
5.   Initial TTL Value + Number of Hops + Round Trip Time

Regards,

The Morpheus

Title: Re: OS Fingerprinting using ICMP - AFCEH Question
Post by: Dengar13 on July 07, 2006, 02:10:36 PM
Are we here to pass this for you?  Do you have any idea what the answer is or are you relying solely on us?

Title: Re: OS Fingerprinting using ICMP - AFCEH Question
Post by: Manu Zacharia (-M-) on July 07, 2006, 09:18:31 PM
Hi Dengar and fellow friends,

If my frequent postings of questions have hurted any of the fellow members, I am extremely sorry for the same. My aim was to share the questions (especially the tricky questions) with the fellow forum members as it would be opening up new thinking dimensions for all wanna-be ethical hackers. If I did anything wrong, moderators - please point out the same.

Regarding the answers, as per the book Network Security - A Hacker's Perspective, it is given that the Initial TTL value of a data packet = Final TTL value of the packet + Number of routers in the path.

However, in the question it is not asking for the Initial TTL value, it is asking for just the mathematical calculation. So I think, the answer is (2). Since there are two options for the answer, I consider it as a tricky one and wanted to share it with the rest of the forum. If you or anybody felt that I have some other intentions, sorry for the same.

Regards,

The Morpheus

Title: Re: OS Fingerprinting using ICMP - AFCEH Question
Post by: pcsneaker on July 08, 2006, 04:48:32 AM
Quote
Regarding the answers, as per the book Network Security - A Hacker's Perspective, it is given that the Initial TTL value of a data packet = Final TTL value of the packet + Number of routers in the path.

Quote
So I think, the answer is (2)

Quote
2.   Final TTL Value + Number of Hops - 1

Just read what you have posted and review your math...


Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com