Yapscan Update: Scan Unlimited Hosts

Previous versions of yapscan had an annoying habbit of consuming large amounts of memory if you tried to do a really big portscan.  The latest version calculates the amount of memory that will be required, and if it’s above a user-configurable maximum (150MB by default), it breaks the scan into smaller chunks.

Download the latest version here.

In the example below the memory limit is set artificially low at 5 MB.  We can see that yapscan now detects that it won’t have sufficient memory and splits the scan into chunks.

$ sudo ./yapscan -sS localhost/24 -i lo -m 5m -p 1-1024
Starting Yapscan v0.7.0-beta ( http://pentestmonkey.net/tools/yapscan )

———————————————————-
|                   Scan Information                       |
———————————————————-
Scan type: ……… TCP
Interface: ……… lo
Bandwidth limit: … 1000000 bits/sec
Source address: …. 127.0.0.1
RTT: …………… 0.950000 secs
Retries: ……….. 0
Max Memory: …….. 5000 KBytes (Scanning up to 78 hosts at once)
Port range: …….. 1-1024
Port count: …….. 1024
Show closed ports .. off
WARNING: Network address wasn’t used to specify range to be scanned

######## Scan of first 78 hosts started at 2007-06-18 19:48:24 +0000 #########
127.0.0.1:25    smtp    Len=44 TTL=64 IPID=0 FLAGS=SA______ SEQ=0x5da61087 ACK=0x4cbb77cf WIN=32792
127.0.0.1:53    domain  Len=44 TTL=64 IPID=0 FLAGS=SA______ SEQ=0x5ceda1af ACK=0x2e6a7121 WIN=32792
127.0.0.1:631   ipp     Len=44 TTL=64 IPID=0 FLAGS=SA______ SEQ=0x5df082b1 ACK=0xc814eab6 WIN=32792
127.0.0.1:22    ssh     Len=44 TTL=64 IPID=0 FLAGS=SA______ SEQ=0x5e01a789 ACK=0x0aa84272 WIN=32792
127.0.0.1:902   vmware-authd    Len=44 TTL=64 IPID=0 FLAGS=SA______ SEQ=0x5e93d221 ACK=0x9c1bc21f WIN=32792
127.0.0.1:80    http    Len=44 TTL=64 IPID=0 FLAGS=SA______ SEQ=0x5f2667cd ACK=0xd4888704 WIN=32792
####### Scan completed at 2007-06-18 19:48:51 +0000 #########
6 positive results.

79872 packets (3194880 bytes) sent in 25.56 secs.
Scan rate was: 999855 bits/sec | 124982 bytes/sec | 3125 packets/sec.

######## Scan of hosts 79 to 156 started at 2007-06-18 19:48:51 +0000 #########
####### Scan completed at 2007-06-18 19:49:16 +0000 #########
6 positive results.

79872 packets (3194880 bytes) sent in 25.56 secs.
Scan rate was: 999910 bits/sec | 124989 bytes/sec | 3125 packets/sec.

######## Scan of hosts 157 to 234 started at 2007-06-18 19:49:16 +0000 #########
####### Scan completed at 2007-06-18 19:49:42 +0000 #########
6 positive results.

79872 packets (3194880 bytes) sent in 25.56 secs.
Scan rate was: 999903 bits/sec | 124988 bytes/sec | 3125 packets/sec.

######## Scan of hosts 235 to 256 started at 2007-06-18 19:49:42 +0000 #########
####### Scan completed at 2007-06-18 19:49:49 +0000 #########
6 positive results.

22528 packets (901120 bytes) sent in 7.21 secs.
Scan rate was: 999892 bits/sec | 124987 bytes/sec | 3125 packets/sec.

 

Tags:

Posted in Blog