Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
T
T
tigra2018-12-20 21:49:10
linux
tigra, 2018-12-20 21:49:10

What are the tools for analyzing suspicious traffic (OS)?

Actually, the task is to distinguish potentially synthetic traffic. Specifically, those who emulate mobile devices are of interest (ie, determine the user's OS by tcp packets).
There is p0f, but it is already ancient, the signatures are old, and it’s not very convenient to write this canvas to the database that it throws out (
Maybe someone uses more convenient and newer tools?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
D
Dmitry Shitskov, 2018-12-21
@Zarom

https://suricata-ids.org

Report
A
Alexey Cheremisin, 2018-12-21
@leahch

https://www.snort.org

Similar questions
V
Vitaliy Kybych2019-11-17 23:37:33
How to set up wifi adapter in VirtualBox? 4Reply
D
Dmitry Krymtsev2016-09-13 20:23:26
Why can't Telegram be installed with a simple apt\yum install telegram command from the official repository? 3Reply
A
Andrey2019-02-13 13:08:27
Is it possible to update the kernel in arch linux without rebooting? 3Reply
A
Andy Oker2020-11-14 13:46:28
Black screen error when starting Linux Debian 10, how to fix? 2Reply
E
Evgeny Akhmetov2016-09-14 10:22:27
How to roll back updates in ubuntu server? 2Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question