Jump to content
Wubi

Portspoof: A Service Signature Obfuscator!

Recommended Posts

Posted

For those who believe in security via obscurity, Portspoof - the service signature obfuscator – could be the most important application in your arsenal. It is a multi-platform, free and open source software, distributed under GNU GPL version 2 license.

portspoof.png

Portspoof program is designed to enhance OS security through emulation of legitimate service signatures on otherwise closed ports. General goal of this program is to make the port scanning software (Nmap/Unicornscan/etc) process slow and output very difficult to interpret, thus making the attack reconnaissance phase a challenging and bothersome task. It uses a signature file that currently supports 1866 port signatures!

Portspoof features:

  • Fast: Multithreaded (by default 10 threads handle new incoming connections).
  • Lightweight: Requires small amount of system resources.
  • Portable: runs on BSD/Linux (support for OSX/Windows will be added).
  • Flexible: You can easily use your firewall rules to define ports that are going to be spoofed.
  • Effective against popular port scanners

By default, portspoof will bind only to one port – 4444 on all interfaces and is extremely CPU friendly. So, after running this program and scanning it with Nmap, you will find that though not many ports are open in reality, a lot of false open ports will be detected.

Download Portspoof:

Portspoof 0.1portspoof.zip

Sursa: PenTestIT — Your source for Information Security Related information!

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.



×
×
  • Create New...