Fingerprintx – Tool to Fingerprint Services Running on Ports

Fingerprintx is a port scanner tool that helps to find the open ports and to fingerprintx the services running in the port.

What is the Open Port Scanner?

The open port scanner examines the external IP address and detects open ports on the connection.

It aims to identify if port forwarding is correctly configured or if a firewall obstructs server applications.

Common Ports

  • 20 FTP – Data
  • 21 FTP – Control
  • 22 SSH Remote Login Protocol
  • 23 Telnet
  • 25 Simple Mail Transfer Protocol (SMTP)
  • 110 POP3
  • 115 Simple File Transfer Protocol (SFTP)
  • 118 SQL Services
  • 53 Domain Name System (DNS)
  • 443 HTTPS
  • 143 IMAP
  • 389 LDAP
  • 37 Time Protocol
  • 123 Network Time Protocol
  • 530 Remote procedure call
  • 547 DHCPv6 server

Fingerprints

The tools support fingerprinting services like RDP, SSH, MySQL, PostgreSQL, Kafka, etc.

It can be used with port scanners to fingerprint a set of ports identified during a port scan.

Fingerprintx Over Nmap

Nmap is the most popular tool for network scanning; the tool developers state the following reasons for using fingerprints instead of Nmap.

fingerprintx: works smarter, not harder: the first plugin run against a server with port 8080 open is the http plugin. The default service approach cuts down scanning time in the best case. Most of the time, the services running on ports 80, 443, and 22 are http, https, and ssh — so that’s what fingerprint checks first.

fingerprintx: supports JSON output with the –json flag. Nmap supports numerous output options (standard, XML, grep), but they often need help to parse and script appropriately. fingerprintx supports json output which eases integration with other tools in processing pipelines.

Key Features

Fast fingerprinting of exposed services
Application layer service discovery
It plays nicely with other command line tools
Automatic metadata collection from identified service

Protocols Supported

SERVICETRANSPORTSERVICETRANSPORT
HTTPTCPREDISTCP
SSHTCPMQTT3TCP
MODBUSTCPVNCTCP
TELNETTCPMQTT5TCP
FTPTCPRSYNCTCP
SMBTCPRPCTCP
DNSTCPOracleDBTCP
SMTPTCPRTSPTCP
PostgreSQLTCPMQTT5TCP (TLS)
RDPTCPHTTPSTCP (TLS)
POP3TCPSMTPSTCP (TLS)
KAFKATCPMQTT3TCP (TLS)
MySQLTCPRDPTCP (TLS)
MSSQLTCPPOP3STCP (TLS)
LDAPTCPLDAPSTCP (TLS)
IMAPTCPIMAPSTCP (TLS)
SNMPUDPKafkaTCP (TLS)
OPENVPNUDPNETBIOS-NSUDP
IPSECUDPDHCPUDP
STUNUDPNTPUDP
DNSUDP

Installation

go install github.com/praetorian-inc/fingerprintx/cmd/fingerprintx@latest

Usage help:

fingerprints -h

To Run a Scan

$ fingerprint -t 127.0.0.1:8000
http://127.0.0.1:8000

To Clone

Please consider following and supporting us to stay updated with the latest information.

Linumonk

Leave a Comment
Share
Published by
Linumonk
Tags: kali linuxOSINT
3 years ago

Recent Posts

How UDP Works and Why It Is So Fast

When people ask how UDP works, the simplest answer is this: UDP sends data quickly…

2 days ago

How EDR Killers Bypass Security Tools

Endpoint Detection and Response (EDR) solutions have become a cornerstone of modern cybersecurity, designed to…

6 days ago

AI-Generated Malware Campaign Scales Threats Through Vibe Coding Techniques

A large-scale malware campaign leveraging AI-assisted development techniques has been uncovered, revealing how attackers are…

6 days ago

How Does a Firewall Work Step by Step

How Does a Firewall Work Step by Step? What Is a Firewall and How Does…

6 days ago

Fake VPN Download Trap Can Steal Your Work Login in Minutes

People trying to securely connect to work are being tricked into doing the exact opposite.…

1 week ago

This Android Bug Can Crack Your Lock Screen in 60 Seconds

A newly disclosed Android vulnerability is making noise for a good reason. Researchers showed that…

2 weeks ago