Hi, I understand that certain parameters within TCP protocol definition are set to different default values by different operating systems and this inturn is used for TCP/IP fingerprinting. But, Is there a TCP/IP fingerprint database that tells the relation between the various TCP protocol fields and the corresponding values that might determine the type of Operating System ?
Which is the best fingerprinting tool and how far is fingerprinting helpful in safeguarding against attacks ?
I searched the internet, i got only fingerprint submission pages, but did not get a database. Any ideas ?
Thx in advans, Karthik Balaguru