Even more advaned Port scanner (Multi-Threaded) 100p in 10s

trojan_56 · **Posted:** Sun Mar 15, 2009 9:40 pm

Parameter #1: Server to scan
Parameter #2: Starting IP
Parameter #2: Ending IP
(Will always scan in 10s)

Progress output in COMM.
Results at the end.
(Fastest possible scanning in current release, try not to do more than 400 ports at once, if you do, give a rest for 30 secs then start new from last IP, dodgy server connection errors otherwise)

For best results scan 150 ports...

Code:

$Serv = $p1
$CPort = $p2
$HPort = $p3
$Return = ""

$i = 0
FOR $i = 0 TO 9
   $c[$i] = 0
NEXT

@Check
   $j = 0
   FOR $j = 0 TO 9
      IF LEN($c[$j]) = 1 THEN
         IF $c[$j] = 1 THEN
            $Return = $Return$d[$j],
         END IF
         $c[$j] = pingport($p1,$CPort)
         $d[$j] = $CPort
         SAYCOMM $CPort
         $CPort = $CPort + 1
      END IF
   NEXT

IF $CPort > $p3 THEN
   @Recheck
   $k = 0
   FOR $k = 0 TO 9
      IF LEN($c[$k]) > 1 THEN
         GOTO Recheck
      ELSE
         IF $c[$k] = 1 THEN
            IF INSTR("$Return","$d[$k],") < 1 THEN
               $Return = $Return$d[$k],
            END IF
         END IF
      END IF
   NEXT
ELSE
   GOTO Check
END IF

SAY $Return
EXIT

trojan_56 · **Posted:** Mon Mar 23, 2009 12:44 am

I recommend using a script like this for long scans...
This basically does 150 ports ports and then waits 30 seconds...
Used in conjuction with the above script...

150 is most stable, if you want to make it go faster, you will have to set a larger break between scans, like 300-400/60 seconds, else it will be very unstable. (don't use more than 400, this is very unstable due to server issues)

Code:

$IP = $p1
$Start = $p2
$End = $p3
$P = $p2
//////////////////////SET PORTS HERE/////////////////////
$P2 = $P + 150
////////////^////////////////////////////////////////////
$FReturn = ""

@scan
   SAYCOMM Scanning $P - $P2
   $a = RUN(Scan.ds $IP $P $P2)

   IF $P > $End THEN
      GOTO End
   END IF

   $FReturn = $FReturn$Return

   $a = RIGHT("$now",8)|$seconds = LEFT($a,2) * 3600|$secondsT = MID($a,4,2) * 60|$seconds = $seconds + $secondsT + RIGHT("$a",2)

   //////////////////////SET TIMER HERE/////////////////////
   $c = $seconds + 30
   ////////////////^/////////////////////////////////////////

   @a
      $a = RIGHT("$now",8)|$seconds = LEFT($a,2) * 3600|$secondsT = MID($a,4,2) * 60|$seconds = $seconds + $secondsT + RIGHT("$a",2)

   IF $seconds = $c THEN
      $P = $P2
      //////////////////////SET PORTS HERE/////////////////////
      $P2 = $P2 + 150
      /////////////^///////////////////////////////////////////
      GOTO scan
   ELSE
      GOTO a
   END IF

@End
   SAY $FReturn
   EXIT

Saberuneko · **Posted:** Fri Mar 27, 2009 3:58 pm

That's an ass-kicking scanner! AWESOME!

Dawn · **Joined:** Sun Nov 23, 2008 10:54 am **Posts:** 17

hiho!

just want so contribute something to the community

I noticed something:

If you scan 20 ips/ports at a time you wont get responses in the same order of the requests.(only tested with ips ~~)
I don't know its consciously to make DSO more realistic or just a coincidence.

Mayby you could increase the speed of checking/scanning by using some kind of Buffering (don't if this is the appropriate word).

What i mean:
1.scan ips/ports (as much as you can without getting an error)
2.add them to a cache
3.check if they had responded
3.1 remove the ones who has responded and save the result
3.2 add new ones to the cache for thoses removed
4.back to 3.!
5.display the results

i already implemented this but it end up to be really slow because the huge amount of variables you have to create (if you want to scan a huge amount of ips and store the result... think the nonexistig ips/ports could have been deleted...)and the impossibility of deallocating memory in DSO (or at least i dont know how xD)

hydrotoxin · **Posted:** Sun Nov 01, 2009 8:35 pm

Thats one trick to speed it up, you're right.

If you look at Trojans Scanner he does exactly that, including to be aware of one thing:
DSO limits you to 30 open connections.
So you cannot scan such a huge amount of ip's/ports at one time and have to wait...
viewtopic.php?f=11&t=378

Dawn · **Joined:** Sun Nov 23, 2008 10:54 am **Posts:** 17

k! sorry for spamming xD

Even more advaned Port scanner (Multi-Threaded) 100p in 10s

Who is online