{"id":664,"date":"2011-10-20T08:15:55","date_gmt":"2011-10-20T08:15:55","guid":{"rendered":"http:\/\/www.ubuntupirates.com\/?p=210"},"modified":"2011-10-20T08:15:55","modified_gmt":"2011-10-20T08:15:55","slug":"scanssh-fast-ssh-server-and-open-proxy-scanner","status":"publish","type":"post","link":"https:\/\/www.jameseduard.com\/?p=664","title":{"rendered":"ScanSSH – Fast SSH server and open proxy scanner"},"content":{"rendered":"

ScanSSH<\/a><\/strong><\/em> supports scanning a list of addresses and networks for open proxies, SSH protocol servers, Web and SMTP servers. Where possible ScanSSH, displays the version number of the running services. ScanSSH protocol scanner supports random selection of IP addresses from large network ranges and is useful for gathering statistics on the deployment of SSH protocol servers in a company or the Internet as whole
\nFeatures<\/strong><\/em>
\nScanSSH supports the following features:
\nVariable scanning speed. Per default, ScanSSH sends out 100 probes per second. The -r flag can be used to change the number of probes sent per second.
\nOpen proxy detection. The -p flag initializes scan modules to detect open proxies on common ports.
\nRandom sampling. It is possible to randomly sample hosts on the Internet, for example, by specifying \u2018random(1000)\/0.0.0.0\/0? as address parameter.
\nInstall scanssh on ubuntu
\nOpen the terminal and run the following command
\n<\/p>\n

sudo apt-get install scanssh<\/pre>\n
<\/em>
\nUsing Scanssh<\/strong>
\nSyntax<\/strong>
\nscanssh [-VIERph] [-s scanners,…] [-n ports,…] [-u socks hosts,…] [-e excludefile] addresses\u2026<\/em>
\n-V\u2019 Causes scanssh to print its version number.
\n-I\u2019 Does not send a SSH identification string.
\n-E\u2019 Exit the program, if the file containing the addresses for exclusion can not be found.
\n-R\u2019 If addresses are generated at random, this flag causes the program to ignore excluded addresses from the exclude file. The default behaviour is to always exclude addresses.
\n-p\u2019 Specifies that ScanSSH should operate as a proxy detector. This flag sets the default modes and default scanners to detect open proxies.
\n-h\u2019 Displays the usage of the program.
\n-n ports,\u2026\u2019 Specifies the port numbers to scan. Ports are separated by commas. Each specified scanner is run for each port in this list. The default is 22.
\n-u socks hosts,\u2026
\nA list of comma separated host:port pairs of SOCKS proxies that scanssh should use to scan through.
\n-s scanners\u2019 Specifies a number of scanners should be executed for each open port. Multiple scanners are separated by commas. The following scanners are currently supported:
\nssh\u2019 Finds versions for SSH, Web and SMTP servers.
\nsocks5? Detects if a SOCKS V5 proxy is running on the port.
\nsocks4? Detects if a SOCKS V4 proxy is running on the port.
\nhttp-proxy\u2019 Detects a HTTP get proxy.
\nhttp-connect<\/em>
\nDetects a HTTP connect proxy.
\ntelnet-proxy<\/em>
\nDetects telnet based proxy servers.
\n-e excludefile<\/em>
\nSpecifies the file that contains the addresses to be excluded from the scan. The syntax is the same as for the addresses on the command line.
\nScanssh Examples<\/strong><\/em>
\nThe following command scans the class C network 10.0.0.0 – 10.0.0.255 for open proxies:
\nscanssh -p 10.0.0.0\/24<\/em>
\nThe next command scans for ssh servers on port 22 only:
\nscanssh -n 22 -s ssh 192.168.0.0\/16<\/em>
\nThe following command can be used in a parallel scan. Two hosts scan the specified networks randomly, where this is the first host:
\nscanssh \u2018random(0,rsd)\/split(1,2)\/(192.168.0.0\/16 10.1.0.0\/24):22,80?<\/em><\/p>\n","protected":false},"excerpt":{"rendered":"
ScanSSH supports scanning a list of addresses and networks for open proxies, SSH protocol servers, Web and SMTP servers. Where possible ScanSSH, displays the version number of the running services. ScanSSH protocol scanner supports random selection of IP addresses from large network ranges and is useful for gathering statistics on the deployment of SSH protocol<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[9,10],"tags":[346,347,348,277,349],"class_list":["post-664","post","type-post","status-publish","format-standard","hentry","category-network-security","category-networking","tag-fast-ssh","tag-open-proxy","tag-proxies","tag-scanner","tag-scanssh"],"_links":{"self":[{"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/posts\/664","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=664"}],"version-history":[{"count":0,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/posts\/664\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=664"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=664"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=664"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}