Jun
29
“
Now just run this command to output the analyzed results to a file. To paste into PowerShell: Right-click titlebar, Edit > Paste.
&".\p0f.exe" -s attacker.pcap -o analyze.log -l
This command will execute p0f against the “attacker.pcap” (your capture file name) and output the results to a file named analyze.log.
The –s switch causes p0f to scan the capture file. The –o switch will output to a file. The –l switch will format every entry into one line.
You should open up analyze.log and look through it!
” How To: OS Fingerprinting Using Wireshark Capture and p0f [Security] : Divide By Zero - a blog by Kamran Ayub