~ubuntu-branches/ubuntu/hardy/prelude-manager/hardy

« back to all changes in this revision

Viewing changes to plugins/decodes/prelude-nids/passive-os-fingerprint.h

Committer: Bazaar Package Importer
Author(s): Mickael Profeta
Date: 2004-04-07 16:36:24 UTC
Revision ID: james.westby@ubuntu.com-20040407163624-atc9ndab836a8sx9

Tags: upstream-0.8.10

Import upstream version 0.8.10

files added:

AUTHORS

COPYING

COPYING.OpenSSL

ChangeLog

INSTALL

Makefile.am

Makefile.in

NEWS

README

acinclude.m4

aclocal.m4

config.guess

config.h

config.h.in

config.sub

configure

configure.in

depcomp

docs

docs/Makefile.am

docs/Makefile.in

docs/api

docs/api/Makefile.am

docs/api/Makefile.in

docs/api/html

docs/api/html/c4.html

docs/api/html/index.html

docs/api/html/index.sgml

docs/api/html/prelude-manager-admin-server.html

docs/api/html/prelude-manager-auth.html

docs/api/html/prelude-manager-idmef-db-output.html

docs/api/html/prelude-manager-idmef-message-read.html

docs/api/html/prelude-manager-idmef-message-scheduler.html

docs/api/html/prelude-manager-idmef-util.html

docs/api/html/prelude-manager-ntp.html

docs/api/html/prelude-manager-pconfig.html

docs/api/html/prelude-manager-plugin-db.html

docs/api/html/prelude-manager-plugin-decode.html

docs/api/html/prelude-manager-plugin-filter.html

docs/api/html/prelude-manager-plugin-report.html

docs/api/html/prelude-manager-plugin-util.html

docs/api/html/prelude-manager-report-infos.html

docs/api/html/prelude-manager-sensor-server.html

docs/api/html/prelude-manager-server-generic.html

docs/api/html/prelude-manager-server-logic.html

docs/api/html/prelude-manager-ssl.html

docs/api/prelude-manager-docs.sgml

docs/api/prelude-manager-sections.txt

docs/api/prelude-manager.types

docs/api/sgml

docs/api/sgml/admin-server.sgml

docs/api/sgml/auth.sgml

docs/api/sgml/idmef-db-output.sgml

docs/api/sgml/idmef-message-read.sgml

docs/api/sgml/idmef-message-scheduler.sgml

docs/api/sgml/idmef-util.sgml

docs/api/sgml/ntp.sgml

docs/api/sgml/object_index.sgml

docs/api/sgml/pconfig.sgml

docs/api/sgml/plugin-db.sgml

docs/api/sgml/plugin-decode.sgml

docs/api/sgml/plugin-filter.sgml

docs/api/sgml/plugin-report.sgml

docs/api/sgml/plugin-util.sgml

docs/api/sgml/report-infos.sgml

docs/api/sgml/sensor-server.sgml

docs/api/sgml/server-generic.sgml

docs/api/sgml/server-logic.sgml

docs/api/sgml/ssl.sgml

docs/api/sgml/tree_index.sgml

docs/api/tmpl

docs/api/tmpl/admin-server.sgml

docs/api/tmpl/auth.sgml

docs/api/tmpl/db.sgml

docs/api/tmpl/decode.sgml

docs/api/tmpl/idmef-db-output.sgml

docs/api/tmpl/idmef-message-read.sgml

docs/api/tmpl/idmef-message-scheduler.sgml

docs/api/tmpl/idmef-util.sgml

docs/api/tmpl/ntp.sgml

docs/api/tmpl/pconfig.sgml

docs/api/tmpl/plugin-db.sgml

docs/api/tmpl/plugin-decode.sgml

docs/api/tmpl/plugin-filter.sgml

docs/api/tmpl/plugin-report.sgml

docs/api/tmpl/plugin-util.sgml

docs/api/tmpl/prelude-manager-unused.sgml

docs/api/tmpl/report-infos.sgml

docs/api/tmpl/report.sgml

docs/api/tmpl/sensor-server.sgml

docs/api/tmpl/server-generic.sgml

docs/api/tmpl/server-logic.sgml

docs/api/tmpl/ssl.sgml

install-sh

ltmain.sh

manager-adduser

manager-adduser/Makefile.am

manager-adduser/Makefile.in

manager-adduser/manager-adduser.c

manager-adduser/ssl-register-client.c

manager-adduser/ssl-register-client.h

missing

mkinstalldirs

plugins

plugins/Makefile.am

plugins/Makefile.in

plugins/db

plugins/db/Makefile.am

plugins/db/Makefile.in

plugins/db/mysql

plugins/db/mysql/Makefile.am

plugins/db/mysql/Makefile.in

plugins/db/mysql/mysql.c

plugins/db/mysql/mysql.sql

plugins/db/pgsql

plugins/db/pgsql/Makefile.am

plugins/db/pgsql/Makefile.in

plugins/db/pgsql/pgsql.c

plugins/db/pgsql/postgres.sql

plugins/decodes

plugins/decodes/Makefile.am

plugins/decodes/Makefile.in

plugins/decodes/prelude-nids

plugins/decodes/prelude-nids/Makefile.am

plugins/decodes/prelude-nids/Makefile.in

plugins/decodes/prelude-nids/decode.c

plugins/decodes/prelude-nids/ethertype.h

plugins/decodes/prelude-nids/nethdr.h

plugins/decodes/prelude-nids/nids-alert-id.h

plugins/decodes/prelude-nids/optparse.c

plugins/decodes/prelude-nids/optparse.h

plugins/decodes/prelude-nids/packet-decode.c

plugins/decodes/prelude-nids/packet-decode.h

plugins/decodes/prelude-nids/packet.h

plugins/decodes/prelude-nids/passive-os-fingerprint.c

plugins/decodes/prelude-nids/passive-os-fingerprint.h

plugins/filters

plugins/filters/Makefile.am

plugins/filters/Makefile.in

plugins/reports

plugins/reports/Makefile.am

plugins/reports/Makefile.in

plugins/reports/debug

plugins/reports/debug/Makefile.am

plugins/reports/debug/Makefile.in

plugins/reports/debug/debug.c

plugins/reports/textmod

plugins/reports/textmod/Makefile.am

plugins/reports/textmod/Makefile.in

plugins/reports/textmod/textmod.c

plugins/reports/xmlmod

plugins/reports/xmlmod/Makefile.am

plugins/reports/xmlmod/Makefile.in

plugins/reports/xmlmod/idmef-message.dtd

plugins/reports/xmlmod/xmlmod.c

prelude-manager-db-create.sh

prelude-manager-db-create.sh.in

prelude-manager.conf

prelude-manager.conf.in

src/Makefile.am

src/Makefile.in

src/admin-server.c

src/db-plugins.c

src/decode-plugins.c

src/filter-plugins.c

src/idmef-db-output.c

src/idmef-message-read.c

src/idmef-message-scheduler.c

src/idmef-util.c

src/include

src/include/Makefile.am

src/include/Makefile.in

src/include/admin-server.h

src/include/auth.h

src/include/db.h

src/include/decode.h

src/include/idmef-db-output.h

src/include/idmef-message-read.h

src/include/idmef-message-scheduler.h

src/include/idmef-util.h

src/include/ntp.h

src/include/pconfig.h

src/include/plugin-db.h

src/include/plugin-decode.h

src/include/plugin-filter.h

src/include/plugin-report.h

src/include/plugin-util.h

src/include/report.h

src/include/sensor-server.h

src/include/server-generic.h

src/include/server-logic.h

src/include/ssl.h

src/ntp.c

src/pconfig.c

src/plugins-util.c

src/prelude-manager.c

src/report-plugins.c

src/sensor-server.c

src/server-generic.c

src/server-logic.c

src/ssl.c

Show diffs side-by-side

added added

removed removed

plugins/decodes/prelude-nids/passive-os-fingerprint.h

#ifndef _PASSIVE_OS_FINGERPRINT_H

#define _PASSIVE_OS_FINGERPRINT_H

/*****

* This file is part of the Prelude program.

* This program is free software; you can redistribute it and/or modify

* it under the terms of the GNU General Public License as published by

* the Free Software Foundation; either version 2, or (at your option)

* any later version.

* This program is distributed in the hope that it will be useful,

* but WITHOUT ANY WARRANTY; without even the implied warranty of

* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the

* GNU General Public License for more details.

* You should have received a copy of the GNU General Public License

* along with this program; see the file COPYING. If not, write to

* the Free Software Foundation, 675 Mass Ave, Cambridge, MA 02139, USA.

*****/

#include <inttypes.h>

#include <sys/types.h>

/* based on ettercap os fingerprint database */

/* WWWW:_MSS:TT:WS:S:N:D:T:F:LN */

#define FINGERPRINT_SIZE 28

typedef struct

{

int mss;

int len;

int wscale;

uint16_t win;

uint8_t ttl;

uint8_t sackok;

uint8_t nop;

uint8_t df;

uint32_t timestamp;

uint8_t flags;

} pof_host_data_t;

void passive_os_fingerprint_zero(pof_host_data_t *p);

void passive_os_fingerprint_dump(idmef_alert_t *alert, pof_host_data_t *p);

#endif /* _PASSIVE_OS_FINGERPRINT_H */

Older »