Just want to learn.

Hello guys! I'd just like to learn about fingerprinting and signatures in general. I've watched cloudflare netdev 0x13 about XDP and eBPF, and I saw that cloudflare used/uses p0f so I looked it up. On a server that gets attacks regularly, I ran p0f for about 10 seconds, and made a sorting script, to count all the distinct signatures, and let me know how many lines of which signature, and display from high to low. I've gotten a few large numbers. One signature got 16k lines, which is pretty attack-likely. So i tried to block it, but it also blocked my uptime kuma monitoring. Any idea to use it better?
0 Replies
No replies yetBe the first to reply to this messageJoin

Did you find this page helpful?