关键词: TCP报文 端口 标志位 操作系统 探测

Abstract:

Operating system detection is an important research aspect in network security. This information is useful for security analysis, and can also be usedfor the basis of network attacks. According to the shortcomings of the existing OS detection tools, based on the deep research of the structure of TCP  packets, a method through TCP packets alteration is put forward, and the OS detection based on this method is implemented. The system can detect the hos  t directly, and analyze the basic information such as OS types, and open services.

Key words: TCP packet, port, flag, operating system, detection