Kali Linux Tools

Fingerprintx – Tool to Fingerprint Services Running on Ports

Fingerprintx is a port scanner tool that helps to find the open ports and to fingerprintx the services running in the port.

What is the Open Port Scanner?

The open port scanner examines the external IP address and detects open ports on the connection.

It aims to identify if port forwarding is correctly configured or if a firewall obstructs server applications.

Common Ports

  • 20 FTP – Data
  • 21 FTP – Control
  • 22 SSH Remote Login Protocol
  • 23 Telnet
  • 25 Simple Mail Transfer Protocol (SMTP)
  • 110 POP3
  • 115 Simple File Transfer Protocol (SFTP)
  • 118 SQL Services
  • 53 Domain Name System (DNS)
  • 443 HTTPS
  • 143 IMAP
  • 389 LDAP
  • 37 Time Protocol
  • 123 Network Time Protocol
  • 530 Remote procedure call
  • 547 DHCPv6 server

Fingerprints

The tools support fingerprinting services like RDP, SSH, MySQL, PostgreSQL, Kafka, etc.

It can be used with port scanners to fingerprint a set of ports identified during a port scan.

Fingerprintx Over Nmap

Nmap is the most popular tool for network scanning; the tool developers state the following reasons for using fingerprints instead of Nmap.

fingerprintx: works smarter, not harder: the first plugin run against a server with port 8080 open is the http plugin. The default service approach cuts down scanning time in the best case. Most of the time, the services running on ports 80, 443, and 22 are http, https, and ssh — so that’s what fingerprint checks first.

fingerprintx: supports JSON output with the –json flag. Nmap supports numerous output options (standard, XML, grep), but they often need help to parse and script appropriately. fingerprintx supports json output which eases integration with other tools in processing pipelines.

Key Features

Fast fingerprinting of exposed services
Application layer service discovery
It plays nicely with other command line tools
Automatic metadata collection from identified service

Protocols Supported

SERVICETRANSPORTSERVICETRANSPORT
HTTPTCPREDISTCP
SSHTCPMQTT3TCP
MODBUSTCPVNCTCP
TELNETTCPMQTT5TCP
FTPTCPRSYNCTCP
SMBTCPRPCTCP
DNSTCPOracleDBTCP
SMTPTCPRTSPTCP
PostgreSQLTCPMQTT5TCP (TLS)
RDPTCPHTTPSTCP (TLS)
POP3TCPSMTPSTCP (TLS)
KAFKATCPMQTT3TCP (TLS)
MySQLTCPRDPTCP (TLS)
MSSQLTCPPOP3STCP (TLS)
LDAPTCPLDAPSTCP (TLS)
IMAPTCPIMAPSTCP (TLS)
SNMPUDPKafkaTCP (TLS)
OPENVPNUDPNETBIOS-NSUDP
IPSECUDPDHCPUDP
STUNUDPNTPUDP
DNSUDP

Installation

go install github.com/praetorian-inc/fingerprintx/cmd/fingerprintx@latest

Usage help:

fingerprints -h

To Run a Scan

$ fingerprint -t 127.0.0.1:8000
http://127.0.0.1:8000

To Clone

Please consider following and supporting us to stay updated with the latest information.

Linumonk

Leave a Comment
Share
Published by
Linumonk
Tags: kali linuxOSINT
2 years ago

Recent Posts

garak, LLM Vulnerability Scanner : The Comprehensive Tool For Assessing Language Model Security

garak checks if an LLM can be made to fail in a way we don't…

7 hours ago

Vermilion : Mastering Linux Post-Exploitation For Red Team Success

Vermilion is a simple and lightweight CLI tool designed for rapid collection, and optional exfiltration…

7 hours ago

AD-CS-Forest-Exploiter : Mastering Security Through PowerShell For AD CS Misconfiguration

ADCFFS is a PowerShell script that can be used to exploit the AD CS container…

7 hours ago

Usage Of Tartufo – A Comprehensive Guide To Securing Your Git Repositories

Tartufo will, by default, scan the entire history of a git repository for any text…

7 hours ago

Loco : A Rails-Inspired Framework For Rust Developers

Loco is strongly inspired by Rails. If you know Rails and Rust, you'll feel at…

1 day ago

Monolith : The Ultimate Tool For Storing Entire Web Pages As Single HTML Files

A data hoarder’s dream come true: bundle any web page into a single HTML file.…

1 day ago