Seg Scanner is a python package made to help with segmentation scanning during network security assessments. It scans a list of ports in an IP range and returns a list of open ports.
Seg-scanner (short for segmentation scanner) checks to make sure that a computer in one subnet cannot reach a computer in another. It is made to quickly scan a list of IPs and corresponding ports. Many cyber security compliance criteria require that network segementation be implemented. For example PCI DSS requires that systems which store, process or transmit credit card data are isolated from those that do not. Segmentation scanning confirms that a computer on a certain subnet cannot reach another by attempting to connect to all ports of the corresponding subnet. If no ports are accessible the network can be seen as properly segmented. This seg scanner can be used in the following scenarios:
- Ethical hacking & Red Teaming
- Confirming Security Policy Implementation
- Confirming that Zero Trust has been correctly implemented
- Confirming that micro-segmentation has been correctly implemented
- Compliance
For more info on the use-cases of network segemntation watch the video below.
The seg-scanner package is an asynchronous and multi-threaded port scanner that takes an IP range, and a list of ports. It opens a socket and attempts to connect to every port in the list of ports for each IP in the IP range. It returns a list of open ports to standard output. A request to a specific port on a specific IP is made asynchronously. When scanning a subnet, multiple threads are spawned with each thread making asynchronous request for a corresponding IP. This package is made to support both UDP and TCP port scanning.
More details on port scanning and it's inner workings along with an in-depth description for the diagram below can be found here.
The way Seg Scanner implements multi-threading & async function calls allows it to scan an IP range for accessable ports signignificantly faster than a tool like nmap. Although nmap is a go-to tool for many, in an enviroment where being stealthy is not a concern Seg Scanner will complete scans more quickly.
To install this package run the following command in your command line:
pip install segScanner==1.0.0
When contributing to this repository, please first discuss the change you wish to make via issue here on GitHub. Make sure all pull requests are tagged with a specific ticket number found in the repositories issues section.Before making any changes please create your own branch. Follow all three points below before opening a PR:
- Any changes you want to create must be tagged to an issue opened on this repo. If an issue you've found does not yet exit, please open it.
- Ensure any install or build dependencies are removed before the end of the layer when doing a build.
- Make sure all corresponding test cases pass.
- Update the README.md with details of changes to the interface, this includes new environment variables, exposed ports, useful file locations and container parameters.
Note that we have a code of conduct. Follow it in all your interactions with the project.
A list of known issues and features that are currently being addressed are maintained on the github issues tab. Please look at the list of known issues before raising a new issue.
If you have benefited from this project and use Monero please consider donanting to the following address: 47RoH3K4j8STLSh8ZQ2vUXZdh7GTK6dBy7uEBopegzkp6kK4fBrznkKjE3doTamn3W7A5DHbWXNdjaz2nbZmSmAk8X19ezQ