Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

The problem that 65535 ports are fully open #2514

Open
Ma1Dong opened this issue Aug 27, 2022 · 9 comments
Open

The problem that 65535 ports are fully open #2514

Ma1Dong opened this issue Aug 27, 2022 · 9 comments
Labels
Nmap

Comments

@Ma1Dong
Copy link

Ma1Dong commented Aug 27, 2022

The problem that 65535 ports are fully open is frequently encountered. Or thousands of ports open. If I want to skip the scan of the IP address if the number of ports exceeds 200, how should I solve this problem? Thank you.
@Ma1Dong Ma1Dong added the Nmap label Aug 27, 2022
@bhaveshraj336
Copy link

Can I try resolving these issue?

@bhaveshraj336
Copy link

@Ma1Dong I think you should give range of 200 ports at a time ?

@sell1ng
Copy link

sell1ng commented Aug 29, 2022

Put a cap on the ports

@Ma1Dong
Copy link
Author

Ma1Dong commented Aug 30, 2022

@Ma1Dong I think you should give range of 200 ports at a time ?

I didn't express myself clearly,sorry。What I mean is When I scan the port of an IP,he result is that all ports on this IP are open,Obviously, this is caused by firewall policy,so,When I scan the addresses in bulk(nmap -iL ip.txt),I want to skip the IP in there,I can't use timeout,This may affect the results of other ip。

so,it is a good idea for me to skip the scan of an IP when the number of ports is greater than 200。What should I do,thank you!

For example,I need to scan 100 IP addresses,In the scan result, all ports of the 60th IP address are open. This IP address occupies a lot of scanning time。

The command I use is:
nmap -p- -sV -T4 -Pn -iL IP.txt -oN result.txt
图片

@bhaveshraj336
Copy link

@Ma1Dong I think you should give range of 200 ports at a time ?

I didn't express myself clearly,sorry。What I mean is When I scan the port of an IP,he result is that all ports on this IP are open,Obviously, this is caused by firewall policy,so,When I scan the addresses in bulk(nmap -iL ip.txt),I want to skip the IP in there,I can't use timeout,This may affect the results of other ip。

so,it is a good idea for me to skip the scan of an IP when the number of ports is greater than 200。What should I do,thank you!

For example,I need to scan 100 IP addresses,In the scan result, all ports of the 60th IP address are open. This IP address occupies a lot of scanning time。

The command I use is:
nmap -p- -sV -T4 -Pn -iL IP.txt -oN result.txt
图片

So I think we should add a -count option also

@Ma1Dong
Copy link
Author

Ma1Dong commented Aug 30, 2022

@Ma1Dong I think you should give range of 200 ports at a time ?

I didn't express myself clearly,sorry。What I mean is When I scan the port of an IP,he result is that all ports on this IP are open,Obviously, this is caused by firewall policy,so,When I scan the addresses in bulk(nmap -iL ip.txt),I want to skip the IP in there,I can't use timeout,This may affect the results of other ip。
so,it is a good idea for me to skip the scan of an IP when the number of ports is greater than 200。What should I do,thank you!
For example,I need to scan 100 IP addresses,In the scan result, all ports of the 60th IP address are open. This IP address occupies a lot of scanning time。
The command I use is:
nmap -p- -sV -T4 -Pn -iL IP.txt -oN result.txt
图片

So I think we should add a -count option also

sorry,I don't understand what you mean,What I'm thinking is that when you have too many open ports, I want to skip this IP scan。Nmap does not provide this parameter。

@Ma1Dong
Copy link
Author

Ma1Dong commented Aug 30, 2022

@Ma1Dong I think you should give range of 200 ports at a time ?

I didn't express myself clearly,sorry。What I mean is When I scan the port of an IP,he result is that all ports on this IP are open,Obviously, this is caused by firewall policy,so,When I scan the addresses in bulk(nmap -iL ip.txt),I want to skip the IP in there,I can't use timeout,This may affect the results of other ip。
so,it is a good idea for me to skip the scan of an IP when the number of ports is greater than 200。What should I do,thank you!
For example,I need to scan 100 IP addresses,In the scan result, all ports of the 60th IP address are open. This IP address occupies a lot of scanning time。
The command I use is:
nmap -p- -sV -T4 -Pn -iL IP.txt -oN result.txt
图片

So I think we should add a -count option also

sorry,I don't understand what you mean,What I'm thinking is that when you have too many open ports, I want to skip this IP scan。Nmap does not provide this parameter。
yes,You are correct。You can add a -count option,Defines a maximum number of ports,For example, the default is 200 ports,When the number of ports in an IP address exceeds this number,Skip this IP scan,This will greatly enhance the experience。

@bhaveshraj336
Copy link

@rewanthtammana @bonsaiviking @wongwaituck Hey could you let me know where I can do the changes ?

@duaa-abdelgadir
Copy link

@bhaveshraj336 https://seclists.org/nmap-dev/2014/q2/545 you can try this patch

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Nmap
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@Ma1Dong @bhaveshraj336 @duaa-abdelgadir @sell1ng