-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathrunmasscan.sh
executable file
·95 lines (76 loc) · 2.16 KB
/
runmasscan.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
#!/bin/bash
if [[ $EUID -ne 0 ]]; then
echo "This script must run as root"
exit 1
fi
if [ $# -lt 2 ]; then
echo "usage: $0 <IFACE> <IP|DNS|hosts file> [directory for log files]"
exit 1
fi
iface=$1
if [ -e "$2" ]; then
hosts="-iL $2"
test_host=$(head -n 1 $2)
else
hosts="$2"
test_host="$2"
fi
if [ -z "$3" ]; then
path="./"
elif [ "${3:${#2}-1:1}" != "/" ]; then
path="$3/"
else
path="$3"
fi
# log the scanner's IP address configuration
timestamp=`date '+%Y%m%d-%H%M%S'`
ifconfig > ${timestamp}_ipconfig.txt
route -n > ${timestamp}_route-n.txt
# Initialization of Interesting Ports List
tcp_telnet=23,107
tcp_ftp=20,21
tcp_ssh=22
tcp_msprc=135
tcp_smtp=25,465,587
tcp_domain=53
tcp_tftp=69
tcp_http=80,443,1080,4343,4433,5357,8014,8080,8081,8082,8088,8443,8888,9090,10000
tcp_pop=109,110
tcp_rpcbind=111
tcp_adds=88,389,363,464,636,3268,3269
tcp_sftp=115
tcp_snmp=161
tcp_smb=139,445
tcp_vpn=500
tcp_imap=143,993
tcp_rlogin=513
tcp_rmi=1099,1100
tcp_mssql=1433,1434
tcp_oracle=1030,1046,1289,1521,1658,1830,5500,5501,5522,5560,5580,7443
tcp_mqtt=1883,8883
tcp_nfs=2049
tcp_mysql=3306
tcp_rdp=3389
tcp_postgresql=5432
tcp_x11=6000-6005
tcp_sip=5060,5061
tcp_vnc=5800-5803,5900-5903
tcp_mongodb=27017-27019
tcp_elastic=9200,9300
tcp_couchdb=5984
tcp_neo4j=7473,7474
tcp_winrm=5985,5986
tcp_ports="$tcp_telnet,$tcp_ftp,$tcp_ssh,$tcp_msprc,$tcp_smtp,$tcp_domain,$tcp_tftp,$tcp_http,$tcp_pop,$tcp_rpcbind,$tcp_adds,$tcp_sftp,$tcp_snmp,$tcp_smb,$tcp_vpn,$tcp_imap,$tcp_rlogin,$tcp_rmi,$tcp_mssql,$tcp_oracle,$tcp_mqtt,$tcp_nfs,$tcp_mysql,$tcp_rdp,$tcp_postgresql,$tcp_x11,$tcp_sip,$tcp_vnc,$tcp_mongodb,$tcp_elastic,$tcp_couchdb,$tcp_neo4j,$tcp_winrm"
# Initialization of Nmap Options
masscan_options="-Pn -v --open --banners --rate 1000 -e $iface"
# Initialization of Nmap Executable Path
masscan=masscan
# Scan Interesting TCP Ports
command="$masscan $masscan_options -sS -p $exclude_hosts $tcp_ports $hosts -oX ${path}${timestamp}_masscan-tcp-interesting_${2/\//-}.xml"
echo $command
$command
# Scan All TCP Ports
command="$masscan $masscan_options -sS -p 0-65535 $exclude_hosts $hosts -oX ${path}${timestamp}_masscan-tcp-all_${2/\//-}.xml"
echo $command
$command
exit 0