Why using it ? :
Now why would you use this tool instead of the widely used nmap port scanner ?
- Because you don't like to wait
- Because when nmap receives his acknowledgments a bit slowly (slow network or slow server) it reduces the scan speed (it takes sometime 10 minutes or more).
- Because you have a huge IP range to scan and you want to be able to scan 65535 ports on all IP in a reasonable delay.
- Simple & efficient design
- Service identification using amap
- Source Port option
- Fast scan based on Nmap Top port
- Fexible Slow scan to avoid scan detection (-d and -m option)
Performances:
- On a good LAN network it takes approximately 2m30 sec to scan all open ports of a host.
- On Internet it is quite variable but tends to settle around 2 minutes (from 1m20 sec to 2m40) when using a high speed connection against a Fast server (ideal conditions ...).
Here is the help message when your launch the synator without any parameter
Usage: bin/Synator2v1.pl
[-h IP]
[-s tcp|udp]
[-f OutputFilename]
(-p Destination PortNumber)
(-S Source PortNumber)
(-b Service Banner Grabbing)
(-c ShowClosedPort)
(-d DelayInSeconds)
(-m maxSynPacketBeforeDelay)
Options -p support multiple value separated by ',' and '-' ie 21,80 or 1-100.
Important Note:
- Using a hostname instead of an IP address is not supported yet (is it really useful ?)
- Avoid scanning with a wifi card
- Avoid using synator inside a Virtual Machine, there is a high performance drop !
- Synator does not work with some wifi card like the WPN311, this is bug due to libdnet that is unable to get the network configuration from the card "addr_net: undef input".
- Perform DNS resolution when a hostname is given as IP
using supercat to colorize the logsource
debian package
package using repository
After using this tool, I must say that it is very powerful and fast! Bravo
RépondreSupprimer1min21s to scan 65535 ports on a box on the internet. And no wrong results. Nice Shot :P
RépondreSupprimer