Libsf 0.1 review
DownloadLibsf is a stack fingerprinting library. Libsf allows the following: libsf_t *s;
|
|
Libsf is a stack fingerprinting library.
Libsf allows the following:
libsf_t *s;
s = libsf_init(LIBSF_ACTIVE, device, argv[optind], 0, 1, flags, errbuf);
libsf_active_id(s);
/* get the total number of matches */
tm = libsf_os_get_tm(s);
/* get the high score */
hs = libsf_os_get_hs(s);
printf("%d potential matches (highest score of %d)n", tm, hs);
printf("Highest scored OS guesses:n");
/* run through the OS list, dumping string that matches score */
while ((guess = libsf_os_get_match(s, hs)))
{
printf("%sn", guess);
}
libsf_destroy(s);
Installation:
0. nroff -man man/sf.3 | less
1. You'll need to build and install:
a. libnet 1.1.0 (http://www.packetfactory.net/libnet)
b. libpcap 0.6.x+ (http://www.tcpdump.org)
c. libdb old API - should be included with most modern OS releases - (http://www.sleepycat.com/)
2. ./configure && make && make install
3. cd import ; ./db_import -a fp-file
4. cp libsf.db /usr/local/share/libsf
Libsf 0.1 keywords