Fingerprintx – Tool to Fingerprint Services Running on Ports

Fingerprintx is a port scanner tool that helps to find the open ports and to fingerprintx the services running in the port.

What is the Open Port Scanner?

The open port scanner examines the external IP address and detects open ports on the connection.

It aims to identify if port forwarding is correctly configured or if a firewall obstructs server applications.

Common Ports

• 20 FTP – Data
• 21 FTP – Control
• 22 SSH Remote Login Protocol
• 23 Telnet
• 25 Simple Mail Transfer Protocol (SMTP)
• 110 POP3
• 115 Simple File Transfer Protocol (SFTP)
• 118 SQL Services
• 53 Domain Name System (DNS)
• 443 HTTPS
• 143 IMAP
• 389 LDAP
• 37 Time Protocol
• 123 Network Time Protocol
• 530 Remote procedure call
• 547 DHCPv6 server

Fingerprints

The tools support fingerprinting services like RDP, SSH, MySQL, PostgreSQL, Kafka, etc.

It can be used with port scanners to fingerprint a set of ports identified during a port scan.

Fingerprintx Over Nmap

Nmap is the most popular tool for network scanning; the tool developers state the following reasons for using fingerprints instead of Nmap.

fingerprintx: works smarter, not harder: the first plugin run against a server with port 8080 open is the http plugin. The default service approach cuts down scanning time in the best case. Most of the time, the services running on ports 80, 443, and 22 are http, https, and ssh — so that’s what fingerprint checks first.

fingerprintx: supports JSON output with the –json flag. Nmap supports numerous output options (standard, XML, grep), but they often need help to parse and script appropriately. fingerprintx supports json output which eases integration with other tools in processing pipelines.

Key Features

Fast fingerprinting of exposed services
Application layer service discovery
It plays nicely with other command line tools
Automatic metadata collection from identified service

Protocols Supported

SERVICE	TRANSPORT	SERVICE	TRANSPORT
HTTP	TCP	REDIS	TCP
SSH	TCP	MQTT3	TCP
MODBUS	TCP	VNC	TCP
TELNET	TCP	MQTT5	TCP
FTP	TCP	RSYNC	TCP
SMB	TCP	RPC	TCP
DNS	TCP	OracleDB	TCP
SMTP	TCP	RTSP	TCP
PostgreSQL	TCP	MQTT5	TCP (TLS)
RDP	TCP	HTTPS	TCP (TLS)
POP3	TCP	SMTPS	TCP (TLS)
KAFKA	TCP	MQTT3	TCP (TLS)
MySQL	TCP	RDP	TCP (TLS)
MSSQL	TCP	POP3S	TCP (TLS)
LDAP	TCP	LDAPS	TCP (TLS)
IMAP	TCP	IMAPS	TCP (TLS)
SNMP	UDP	Kafka	TCP (TLS)
OPENVPN	UDP	NETBIOS-NS	UDP
IPSEC	UDP	DHCP	UDP
STUN	UDP	NTP	UDP
DNS	UDP

Installation

go install github.com/praetorian-inc/fingerprintx/cmd/fingerprintx@latest

Usage help:

fingerprints -h

To Run a Scan

$ fingerprint -t 127.0.0.1:8000
http://127.0.0.1:8000

Please consider following and supporting us to stay updated with the latest information.