Re: libsf.db TCP Fingerprinting database

Harish KS · ‎03-13-2009

Hi all,

I am trying to use libsf library in MinGW for active fingerprint OS detection. It uses libsf.db fingerprint databse. This databse is generate at compile time by taking a flat file database as input. I could compile the sources of libsf but not able to generate this libsf.db database. If anyone ahs used libsf, please help.

Matti_Kurkela · ‎03-13-2009

This seems to be the developer's source package for libsf:

http://www.packetfactory.net/projects/libsf/

The source package contains a README file which contains the instructions for compiling and installing the software. The compilation step should also compile the db creation tool in the "import" sub-directory.

The Makefiles suggest that the name of the db creation tool might be "libsf_import", not "db_import". And there are two fingerprint files in the "import" directory: nmap-fp.txt and nmap-os-fingerprints.

Looks like the developer has been a little sloppy in updating the documentation to match the new changes!

If I'm correct, the step 3 of the instructions in the README should be:

3. cd import; ./libsf_import -a nmap-os-fingerprints

This step should produce the libsf.db file. The step 4 is just copying the file to wherever it is supposed to be installed.

MK

MK

Harish KS · ‎03-13-2009

Hi,

Thanks for the reply kurkela.

Yes, i tried to create libsf.db by using libsf_import file. But not able to do so. dbptr->put (dbptr->put(dbptr, &dbkey, &dbdata, R_NOOVERWRITE) in libsf_import.c file) is failing inconsistantly. I got the libdb binaries libdb-1.85 binaries (db.h and libdb.a) for mingw from net and using these to create libsf.db.

Since i don't have libsf.db, i am not able to use libsf to detect OS of remote node.

I am attaching the DB generation part of libsf that is used to generate libsf.db.

Regards
Harish

Categories

Company

Local Language

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Discussions

Forums

Forums

Discussions

Forums

Discussions

Forums

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Community

Resources

Other HPE Sites

Discussions

Forums

Blogs

Re: libsf.db TCP Fingerprinting database

libsf.db TCP Fingerprinting database

Re: libsf.db TCP Fingerprinting database

Re: libsf.db TCP Fingerprinting database