ScanSSH - fast SSH server and open proxy scanner

Monkey.org Developments

ScanSSH supports scanning a list of addresses and networks for open proxies, SSH protocol servers, Web and SMTP servers. Where possible ScanSSH, displays the version number of the running services. ScanSSH protocol scanner supports random selection of IP addresses from large network ranges and is useful for gathering statistics on the deployment of SSH protocol servers in a company or the Internet as whole.

The first version of the ScanSSH protocol scanner was released in September 2000. You can download the current version below.

Download

scanssh-2.1.tar.gz [GPG sig] - Release 2005-03-05 New

Minor improvements to open proxy detection.

Ability to scan via SOCKS proxies.

scanssh-2.0.tar.gz [GPG sig] - Release 2004-04-07

Supports open proxy detection.

High performance by using libevent.

scanssh-1.6b.tar.gz - Release 2001-11-30

scanssh-1.55.tar.gz [mirror] - Release 2001-04-04

To build ScanSSH, you need to install libevent and libdnet.
The ScanSSH protocol scanner is distributed under a 4-clause BSD-license and completely free for any use including commercial.

Example

$ scanssh -p -e excludes 10.0.0.0/24

[...] 10.0.0.17:23 <refused> 10.0.0.5:6588 <refused> 10.0.0.5:1080 SOCKS v5 10.0.0.5:8080 http proxy 10.0.0.2:23 <timeout> 10.0.0.141:23 <timeout> 10.0.0.17:23 <timeout> 10.0.0.23:22 SSH-1.99-OpenSSH_3.8 10.0.0.195:80 Apache/2.0.30 (Unix) mod_ssl/2.2 10.0.0.5:22 SSH-1.99-OpenSSH_3.6.1 [...]

Happpy Hacking

Keep me happy while
hacking on ScanSSH.

Reduce my wishlist!

Support ScanSSH

Search:

Keywords:

Search Amazon

Features

ScanSSH supports the following features:

Variable scanning speed. Per default, ScanSSH sends out 100 probes per second. The -r flag can be used to change the number of probes sent per second.
Open proxy detection. The -p flag initializes scan modules to detect open proxies on common ports.
Random sampling. It is possible to randomly sample hosts on the Internet, for example, by specifying 'random(1000)/0.0.0.0/0' as address parameter.

For more features, please check the man page.

References

ScanSSH - Scanning the Internet for SSH Servers

Niels Provos and Peter Honeyman, 16th USENIX Systems Administration Conference (LISA). San Diego, CA, December 2001. [ps]

Support

If you are inclined, you can
send me books or,
send me music or,
leave a tip for me with PayPal. Sign up for it.

Niels Provos

Last modified: Wed Apr 7 23:29:34 EDT 2004

You can keep me happy while hacking by reducing my Wishlists: Books, Music