Skip to content

superswan/impostor

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
windows
windows
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
impostor.py
impostor.py
 
 
profiles.ini
profiles.ini
 
 

Repository files navigation

impostor

spoof OS detection by messing with the tcp stack

Based on security cloak by Craig Heffner: https://web.archive.org/web/20061202015837/http://www.craigheffner.com/security/

Inspired by: https://nmap.org/book/nmap-defenses-trickery.html#nmap-defenses-os-spoofing

usage

./impostor <profile> profiles are defined in profiles.ini

Screenshots

Linux

Before:

nmap-ubuntu-1.png

After:

nmap-ubuntu-2.png

unfortunately the results are currently far form perfect. will most likely have to play with the window size on linux

Windows

Before:

nmap-windows.png

After:

nmap-windows-2.png

TODO

windows version

  • Continue research and explore advanced methods involing things like spoofed services

About

spoof OS detection by messing with the tcp stack

Topics

network anti-forensics netsec-tools

Resources

Readme

License

Unlicense license
Activity

Stars

14 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages