A Passive OS-Fingerprinting framework using honeypot
Suleiman, Abdul Kareem
Abu Shamat, Rashid
This paper proposes a comprehensive framework for passive OS fingerprinting to countermeasure attacks in network systems. First of all, a passive OS fingerprinting tool is integrated with efficient honeypot system to lure attackers in the system. Thereafter, the collected data from the attacker undergoes an efficient filtration algorithm to reduce the congestion in the network as well as make fast analysis. Finally, the filtered data is sent out to an analysis tool to grasp as much information as possible about the attacker in a short time. Experimental results demonstrate the effectiveness of our proposed framework in identifying the vulnerabilities in the network system as well as the ability to countermeasure attacks through identifying their OS, and thus, escalating their further actions.