impostor

spoof OS detection by messing with the tcp stack

Based on security cloak by Craig Heffner: https://web.archive.org/web/20061202015837/http://www.craigheffner.com/security/

Inspired by: https://nmap.org/book/nmap-defenses-trickery.html#nmap-defenses-os-spoofing

usage

./impostor <profile> profiles are defined in profiles.ini

Screenshots

Linux

Before:

After:

unfortunately the results are currently far form perfect. will most likely have to play with the window size on linux

Windows

Before:

After:

TODO

~~windows version~~

Continue research and explore advanced methods involing things like spoofed services

Name		Name	Last commit message	Last commit date
Latest commit History 9 Commits
windows		windows
LICENSE		LICENSE
README.md		README.md
impostor.py		impostor.py
profiles.ini		profiles.ini

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

windows

windows

LICENSE

LICENSE

README.md

README.md

impostor.py

impostor.py

profiles.ini

profiles.ini

Repository files navigation

impostor

usage

Screenshots

Linux

Before:

After:

Windows

Before:

After:

TODO

About

Releases

Packages

Languages

License

superswan/impostor

Folders and files

Latest commit

History

Repository files navigation

impostor

usage

Screenshots

Linux

Before:

After:

Windows

Before:

After:

TODO

About

Topics

Resources

License

Stars

Watchers

Forks

Languages