Work in progress, various Python scripts for recon or network testing.
Runs a masscan scan on a host or network to get open ports, and then runs nmap against those ports to grab services and versions. Prints results to console, or optionally will output nmap results to a text file.
Will scan a network cidr (i.e. 192.168.8.0/24), however it's coded at the moment to only scan private ip ranges. Obviously only to be used on a network you have permission to scan.
$ ./recon.py --ip 192.168.8.8 --ports 0-1024
$ ./recon.py --ip 192.168.8.0/24 --ports 0-1024 # scan a cidr block
$ ./recon.py --ip 192.168.8.8 --ports 0-65535 --file # outputs to $(pwd)/results/192.168.1.10.nmap.txt
$ ./recon.py -h
Recon Scan
usage: recon.py [-h] [--ip IP] [--ports PORTS] [--rate {500,1000}] [--file]
[--verbose] [--version]
Recon Scan
optional arguments:
-h, --help show this help message and exit
--ip IP, -i IP ip address or cidr (i.e 192.168.8.0/24) to scan. Note:
Will only scan private networks.
--ports PORTS, -p PORTS
port range to scan, example 0-443 or 22,135,443
--rate {500,1000}, -r {500,1000}
rate for masscan packets, default 500, max 1000
--file output nmap results to a text file
--verbose print more results to console
--version, -v show program's version number and exitSimple script to test if a port is open on a host.
$ ./port-tester.py --ip 192.168.8.8 --port 53
$ ./port-tester.py -h
Port Tester, tests if a port is open on an IP
usage: port-tester.py [-h] [--ip IP] [--port PORT] [--file] [--version]
Port Tester Script
optional arguments:
-h, --help show this help message and exit
--ip IP, -i IP ip address to test
--port PORT, -p PORT port to test
--file output results to a text file
--version, -v show program's version number and exit