-
Notifications
You must be signed in to change notification settings - Fork 0
urbanski/port-recon
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Folders and files
Name | Name | Last commit message | Last commit date | |
---|---|---|---|---|
Repository files navigation
port-recon is a tool that reads any argus-compatible flow data and identifies IP address and port combinations that may be publicly accessible. If they are publicly accessible (read: accessible from the system running port-recon) then it attempts to fingerprint the service and service version information for the service running on that port. port-recon is useful because IPv6 networks are not easily (or feasibly) scanned and port-recon can identify and scan active IPv6 hosts by validating their flows. requirements ============= python-psycopg2 usage ====== Most basic usage: ./port-recon -f [FILENAME] This prints all host:port combinations with a 128 packet threshold with the output format addr:port:open|closed|filtered|unknown:service fingerprint --networks [FILENAME] Specifies a networks file. The networks file contains a list of valid local network addresses. If no networks file is specified the default, 'networks.lst' is used. --ports [FILENAME] Specifies a ports file. The ports file contains a list of valid ports to identify. If no ports file is specified, then all ports less than 5000 are used. --thresh [int] Specifies the flow threshold. This is the minimum number of packets that must be in a flow for the flow to be considered valid. By default port-recon uses a threshold of 128 packets. This is very conservative. --ports-explicit If ports-explicit is signaled then port-recon will only attempt to identify ports in ports.lst. --confirm-ports Scans the remote host using nmap to determine if the port is open --fingerprint Scans the remote host with nmap nse to determine what server, and what version is running on the remote host. --os Not supported at this time. --only-open Only print ports that are open to stdout. --db Save results to a database. When db is enabled ports will not be scanned if they have been scanned recently. DB mode is the best option for production instances of port-recon that actively read flows. about ======== port-recon is maintained by will urbanski <urbanski@vt.edu> https://github.com/urbanski/port-recon/
About
finds open ports on your network based on flow data
Resources
Stars
Watchers
Forks
Releases
No releases published
Packages 0
No packages published