masscan

Network scanner for scanning as fast as possible. Best run with elevated privileges. Nmap compatibility run masscan --nmap to find out more. More information: https://github.com/robertdavidgraham/masscan.

• Scan an IP or network subnet for port 80:

masscan ip_address|network_prefix --ports 80

• Scan a class B subnet for the top 100 ports at 100,000 packets per second:

masscan 10.0.0.0/16 --top-ports 100 --rate 100000

• Scan a class B subnet avoiding ranges from a specific exclude file:

masscan 10.0.0.0/16 --top-ports 100 --excludefile path/to/file

• Scan the Internet for web servers running on port 80 and 443:

masscan 0.0.0.0/0 --ports 80,443 --rate 10000000

• Scan the Internet for DNS servers running on UDP port 53:

masscan 0.0.0.0/0 --ports U:53 --rate 10000000

• Scan the Internet for a specific port range and export to a file:

masscan 0.0.0.0/0 --ports 0-65535 --output-format binary|grepable|json|list|xml --output-filename path/to/file

• Read binary scan results from a file and output to stdout:

masscan --readscan path/to/file