Find SSH servers (without NMAP)
Platform-independently find SSH servers (or other services with open ports) on an IPv4 subnet, WITHOUT NMAP.
Scan entire IPv4 subnet in less than 1 second using Python standard library
asyncio coroutines and a single thread.
asyncio coroutine method uses ONE thread and is significantly faster than
concurrent.futures.ThreadPoolExecutor, even (perhaps especially) with hundreds of threads in the ThreadPool.
Although speed advantages weren't seen in our testing,
findssh works with PyPy as well.
To allow use from other programs, you can install by:
pip install findssh
or from this repo:
pip install -e .
from command line:
Command line options
-scheck the string from the server to attempt to verify the correct service has been found
-ttimeout per server (seconds) useful for high latency connection
-bbaseip (check other subnet besides your own)
-pnetwork port to scan (default 22)
These tests used 500 ms timeout on WiFi.
Coroutine (single thread, fast, lean, recommended):
%timeit findssh.main() 522 ms ± 1.26 ms per loop (mean ± std. dev. of 7 runs, 1 loop each)
Thread pool (100 thread max, slow, heavy):
%timeit findssh.threadpool.main() 1.39 s ± 213 ms per loop (mean ± std. dev. of 7 runs, 1 loop each)