Kali Linux Tools

Fingerprintx – Tool to Fingerprint Services Running on Ports

Fingerprintx is a port scanner tool that helps to find the open ports and to fingerprintx the services running in the port.

What is the Open Port Scanner?

The open port scanner examines the external IP address and detects open ports on the connection.

It aims to identify if port forwarding is correctly configured or if a firewall obstructs server applications.

Common Ports

  • 20 FTP – Data
  • 21 FTP – Control
  • 22 SSH Remote Login Protocol
  • 23 Telnet
  • 25 Simple Mail Transfer Protocol (SMTP)
  • 110 POP3
  • 115 Simple File Transfer Protocol (SFTP)
  • 118 SQL Services
  • 53 Domain Name System (DNS)
  • 443 HTTPS
  • 143 IMAP
  • 389 LDAP
  • 37 Time Protocol
  • 123 Network Time Protocol
  • 530 Remote procedure call
  • 547 DHCPv6 server

Fingerprints

The tools support fingerprinting services like RDP, SSH, MySQL, PostgreSQL, Kafka, etc.

It can be used with port scanners to fingerprint a set of ports identified during a port scan.

Fingerprintx Over Nmap

Nmap is the most popular tool for network scanning; the tool developers state the following reasons for using fingerprints instead of Nmap.

fingerprintx: works smarter, not harder: the first plugin run against a server with port 8080 open is the http plugin. The default service approach cuts down scanning time in the best case. Most of the time, the services running on ports 80, 443, and 22 are http, https, and ssh — so that’s what fingerprint checks first.

fingerprintx: supports JSON output with the –json flag. Nmap supports numerous output options (standard, XML, grep), but they often need help to parse and script appropriately. fingerprintx supports json output which eases integration with other tools in processing pipelines.

Key Features

Fast fingerprinting of exposed services
Application layer service discovery
It plays nicely with other command line tools
Automatic metadata collection from identified service

Protocols Supported

SERVICETRANSPORTSERVICETRANSPORT
HTTPTCPREDISTCP
SSHTCPMQTT3TCP
MODBUSTCPVNCTCP
TELNETTCPMQTT5TCP
FTPTCPRSYNCTCP
SMBTCPRPCTCP
DNSTCPOracleDBTCP
SMTPTCPRTSPTCP
PostgreSQLTCPMQTT5TCP (TLS)
RDPTCPHTTPSTCP (TLS)
POP3TCPSMTPSTCP (TLS)
KAFKATCPMQTT3TCP (TLS)
MySQLTCPRDPTCP (TLS)
MSSQLTCPPOP3STCP (TLS)
LDAPTCPLDAPSTCP (TLS)
IMAPTCPIMAPSTCP (TLS)
SNMPUDPKafkaTCP (TLS)
OPENVPNUDPNETBIOS-NSUDP
IPSECUDPDHCPUDP
STUNUDPNTPUDP
DNSUDP

Installation

go install github.com/praetorian-inc/fingerprintx/cmd/fingerprintx@latest

Usage help:

fingerprints -h

To Run a Scan

$ fingerprint -t 127.0.0.1:8000
http://127.0.0.1:8000

To Clone

Please consider following and supporting us to stay updated with the latest information.

Linumonk

Leave a Comment
Share
Published by
Linumonk
Tags: kali linuxOSINT
2 years ago

Recent Posts

Kali Linux 2024.4 Released, What’s New?

Kali Linux 2024.4, the final release of 2024, brings a wide range of updates and…

2 hours ago

Lifetime-Amsi-EtwPatch : Disabling PowerShell’s AMSI And ETW Protections

This Go program applies a lifetime patch to PowerShell to disable ETW (Event Tracing for…

2 hours ago

GPOHunter – Active Directory Group Policy Security Analyzer

GPOHunter is a comprehensive tool designed to analyze and identify security misconfigurations in Active Directory…

2 days ago

2024 MITRE ATT&CK Evaluation Results – Cynet Became a Leader With 100% Detection & Protection

Across small-to-medium enterprises (SMEs) and managed service providers (MSPs), the top priority for cybersecurity leaders…

5 days ago

SecHub : Streamlining Security Across Software Development Lifecycles

The free and open-source security platform SecHub, provides a central API to test software with…

1 week ago

Hawker : The Comprehensive OSINT Toolkit For Cybersecurity Professionals

Don't worry if there are any bugs in the tool, we will try to fix…

1 week ago