Fingerprintx is a port scanner tool that helps to find the open ports and to fingerprintx the services running in the port.
What is the Open Port Scanner?
The open port scanner examines the external IP address and detects open ports on the connection.
It aims to identify if port forwarding is correctly configured or if a firewall obstructs server applications.
Common Ports
- 20 FTP – Data
- 21 FTP – Control
- 22 SSH Remote Login Protocol
- 23 Telnet
- 25 Simple Mail Transfer Protocol (SMTP)
- 110 POP3
- 115 Simple File Transfer Protocol (SFTP)
- 118 SQL Services
- 53 Domain Name System (DNS)
- 443 HTTPS
- 143 IMAP
- 389 LDAP
- 37 Time Protocol
- 123 Network Time Protocol
- 530 Remote procedure call
- 547 DHCPv6 server
Fingerprints
The tools support fingerprinting services like RDP, SSH, MySQL, PostgreSQL, Kafka, etc.
It can be used with port scanners to fingerprint a set of ports identified during a port scan.
Fingerprintx Over Nmap
Nmap is the most popular tool for network scanning; the tool developers state the following reasons for using fingerprints instead of Nmap.
fingerprintx: works smarter, not harder: the first plugin run against a server with port 8080 open is the http plugin. The default service approach cuts down scanning time in the best case. Most of the time, the services running on ports 80, 443, and 22 are http, https, and ssh — so that’s what fingerprint checks first.
fingerprintx: supports JSON output with the –json flag. Nmap supports numerous output options (standard, XML, grep), but they often need help to parse and script appropriately. fingerprintx supports json output which eases integration with other tools in processing pipelines.
Key Features
Fast fingerprinting of exposed services
Application layer service discovery
It plays nicely with other command line tools
Automatic metadata collection from identified service
Protocols Supported
| SERVICE | TRANSPORT | SERVICE | TRANSPORT |
|---|---|---|---|
| HTTP | TCP | REDIS | TCP |
| SSH | TCP | MQTT3 | TCP |
| MODBUS | TCP | VNC | TCP |
| TELNET | TCP | MQTT5 | TCP |
| FTP | TCP | RSYNC | TCP |
| SMB | TCP | RPC | TCP |
| DNS | TCP | OracleDB | TCP |
| SMTP | TCP | RTSP | TCP |
| PostgreSQL | TCP | MQTT5 | TCP (TLS) |
| RDP | TCP | HTTPS | TCP (TLS) |
| POP3 | TCP | SMTPS | TCP (TLS) |
| KAFKA | TCP | MQTT3 | TCP (TLS) |
| MySQL | TCP | RDP | TCP (TLS) |
| MSSQL | TCP | POP3S | TCP (TLS) |
| LDAP | TCP | LDAPS | TCP (TLS) |
| IMAP | TCP | IMAPS | TCP (TLS) |
| SNMP | UDP | Kafka | TCP (TLS) |
| OPENVPN | UDP | NETBIOS-NS | UDP |
| IPSEC | UDP | DHCP | UDP |
| STUN | UDP | NTP | UDP |
| DNS | UDP |
Installation
go install github.com/praetorian-inc/fingerprintx/cmd/fingerprintx@latest
Usage help:
fingerprints -h
To Run a Scan
$ fingerprint -t 127.0.0.1:8000
http://127.0.0.1:8000
Please consider following and supporting us to stay updated with the latest information.
