Software Alternatives, Accelerators & Startups

MASSCAN Reviews and details

Screenshots and images

  • MASSCAN Landing page
    Landing page //
    2022-11-04

Badges

Promote MASSCAN. You can add any of these badges on your website.

SaaSHub badge
Show embed code

Videos

Tool Review - Masscan (Scan the whole internet)

SCANNING AT SCALE (masscan, nmap, axiom, recon.dev)

Social recommendations and mentions

We have tracked the following product recommendations or mentions on various public social media platforms and blogs. They can help you see what people think about MASSCAN and what they use it for.
  • What You Get After Running an SSH Honeypot for 30 Days
    A lot of these seem to use zmap (https://github.com/zmap/zmap) for the initial scan. Often with default parameters such as zmap setting ip id to 54321, having tcp initial window at 65535, having no SACK bit set and masscan with no SACK bit either, tcp initial window at 1024, tcp maximum segment size 1460 (which is strange to put below initial window size!), (older versions having fixed src port 61000 or 60000 from... - Source: Hacker News / about 1 month ago
  • Mass Scanning
    Can I get banned for mass scanning with https://github.com/robertdavidgraham/masscan or does it slow down any other vms from other persons? Source: about 1 year ago
  • Has anyone ever had their homelab or network hacked? What happened?
    Nope, this doesn't work any more. Shodan checks all ports (so any attackers using data from Shodan already know which ports you have open), and tools like masscan (https://github.com/robertdavidgraham/masscan) let you portscan the entire IPv4 address space in less than 10 minutes. Source: about 1 year ago
  • Private server intruded
    The discord user at the time used the tool "Masscan" to scan every 25565 port on the internet, he claims he was able to get the entire internet scanned in just a few minutes with a 512MB buyvm slice. Source: about 1 year ago
  • My home server is frustrating me. Please help me, home server wizards.
    Changing the default port does nothing for security. It only prevents some basic brute force or default password scripts. Anyone is able to scan for it in no time anyway (https://github.com/robertdavidgraham/masscan). Source: over 1 year ago
  • Should I be Concerned?
    But it should blow away the far-too-common belief that no-one's after you because you're not interesting enough. IPv4 is smaller than we think. It is not difficult to scan the entire ipv4 space in minutes. And every single one of those is going to knock your door on the way past. Source: over 1 year ago
  • Ask HN: Looking for an Old Article
    I'm not sure about the article, but the blazingly-fast IP scanner sounds a lot like Masscan. It can scan the entire Internet in 5 minutes and has received a lot of press: https://github.com/robertdavidgraham/masscan is one of many articles about it. - Source: Hacker News / over 1 year ago
  • Is my Synology getting port-scanned?
    Here's an except from the masscan docs:. Source: over 1 year ago
  • Is the Masscan thing harmful?
    Note that there is a legitimate IP port scanner that is also called "masscan" (https://github.com/robertdavidgraham/masscan), but honestly this person could also just be naming itself that to obscure its intentions and make itself seem harmless. I wouldn't be surprised if it isn't even using it. Source: over 1 year ago
  • Is this something i should worry about? Its whitelist, online mode, and the ip/user has been banned. Its been happening for a week now
    Masscan is a tool for scanning large segments of the internet for open ports. I've used it previously and it's not an inherently malicious tool. Source: over 1 year ago
  • Python experience, how do I get into cybersecurity?
    Security researchers (think malware reverse engineering) often make small custom tools in python. A place I worked made a lot of custom tools to scan the internet (similar to massscan). I think you may want to look into cybersecurity vendors that do this kind of network security and research and see if you can help. DM me if I can help you out more. Source: over 1 year ago
  • Large scale Internet SSH brute force attacks seem to have stopped here
    "Not hard", to say the least, yeah: https://github.com/robertdavidgraham/masscan. - Source: Hacker News / almost 2 years ago
  • TIFU by exposing my Pi to the outside world with default user:password
    It's likely they were also hitting NAT limits of their firewall, as evidenced by their other devices taking a performance hit. They'd likely see a lot of improvement if they directly connected to the internet, just like all those millions of compromised routers and firewall that make up so many botnets already do. Also, if you scan naïvely and willy-nilly then you are going to get blocklisted and throttled. This... Source: almost 2 years ago
  • PFsense crashing on IP scan
    I'm attempting to help a school consolidate their IP space. They have been using a /8 for several decades and have thousands of devices spread out over the entire range with random "easy to remember" IP addresses like "10.25.25.25". I am trying to use the Masscan utility (https://github.com/robertdavidgraham/masscan) to find as many of the used IPs as possible so that we can begin to break up the /8 into smaller... Source: about 2 years ago
  • The internet is a global village, not a metropolis
    The numbers above demonstrate that it is theoretically possible to mass scan the entire internet. Effective free-to-use tools can be used to perform mass scans, converting this academic opportunity into practice. ZMap, Masscan, and others promise to scan the entire public IPv4 address space in some ten minutes or so on a typical desktop computer with a gigabit Ethernet connection. Researchers proved that the time... - Source: dev.to / about 2 years ago
  • Who's Attacking My Server?
    Masscan with the right setup (namely hardware + drivers but also connection obviously) can scan the entire IPv4 space (+ all ports) in ~5 minutes. Source Code: https://github.com/robertdavidgraham/masscan Article from PoC || GTFO with more internal details on how it works: https://www.alchemistowl.org/pocorgtfo/pocorgtfo15.pdf (Page 66) [Note: PDF is both a valid PDF + valid ZIP file with source code]. - Source: Hacker News / over 2 years ago
  • Offsite backup server advice
    That is almost a contradiction in terms. If there is a flaw in SSH (and there have been flaws), you are a sitting duck. SSH broadcasts it's version number, so hackers can know all the servers that are running vulnerable software the instant a vulnerability comes out. (Moving to a different port doesn't help, as anyone can scan the entire internet in 5 minutes.). Source: over 2 years ago
  • Identifying potential exposure following Log4j attack
    OP already said this, but they are correct, it's actually fairly trivial to find machines running minecraft servers if they are open to the internet, with tools like masscan you can iterate over thousands of IP addresses in minutes. Source: over 2 years ago
  • Advice about securing RDP connections for +/- 200 companies
    Just to emphasize the open port issue, take a look at masscan:. Source: over 2 years ago
  • Awesome CTF : Top Learning Resource Labs
    Masscan - Mass IP port scanner, TCP port scanner. Source: over 2 years ago
  • Was my raspberry hacked?
    Takes about 5 minutes to hit the entire internet with masscan. I get countless masscan pings on my rpi everyday (it identifies itself in the user agent unless the scanning party has changed it). Source: over 2 years ago

External sources with reviews and comparisons of MASSCAN

15 Best Nmap Alternatives Network Security Scanner
Masscan has a capacity of as much as 1.6 million packets per second on its Linux version. That is not all, Masscan can scale up to a hundred million packets per second on a computer that is rigged with eight 10 Gpbs installed cards that run on PF RING driver.
Alternatives to Nmap: from simple to advanced network scanning
By default, Masscan’s scan rate is 100,000 packets-per-second. The macOS or Windows version of this tool can be set to 300,000 packets-per-second. On Linux, Masscan can do 1.6 million packets-per-second. But it can scan up to 100 million packets-per-second on a computer rigged with eight 10-Gbps network cards installed in it and running the PF_RING driver.

Do you know an article comparing MASSCAN to other products?
Suggest a link to a post with product alternatives.

Suggest an article

MASSCAN discussion

Log in or Post with

This is an informative page about MASSCAN. You can review and discuss the product here. The primary details have not been verified within the last quarter, and they might be outdated. If you think we are missing something, please use the means on this page to comment or suggest changes. All reviews and comments are highly encouranged and appreciated as they help everyone in the community to make an informed choice. Please always be kind and objective when evaluating a product and sharing your opinion.