Add support for scanning multiple IPs #27
Comments
claudijd
changed the title
|
Requirements: 1.) Need a native mechanism to detect open ports |
|
+1 (ran into a need for this again today) |
|
4.) Have a way to detect SSH protocol (go a step beyond just knowing a service has port 22 open before we attempt to scan) <= an SSH protocol fingerprinter |
|
@claudijd When doing a request over multiple IPs do you want result for each ip in different array or final result to get combined in one result array |
|
@jinankjain I would like the resultant output of a multi-ip scan to be a single JSON document and an array of what we normally get from a scan seems like the right fit. |
|
@claudijd so results for all the IP would be combined that single json array? |
|
@jinankjain is making some progress on IP comma separated targeting in #65. Other syntax we should consider supporting could include.... 192.168.1.0/24 (== 192.168.1.1 thru 192.168.1.255) To gain the above, we'll probably need to implement some sort of IP parsing logic (at least for the CIDR notation). Consider Ruby IPAddr and CIDR gems to help with that. Might consider some customer parsing logic for the others. |
|
Perhaps we should also have a command-line switch to load targets from a file. Looks like -f it still open. Might also consider having a -o flag for writing our JSON documents to disk. |
|
@jinankjain yes, a single JSON array. |
|
Re-opening this issue, because it includes more than what was added in #65 I also realized we might consider updating the -h output to include an example of multi-ip usage. |
|
@jinankjain sounds great about the -f stuff, looking forward to seeing/reviewing it. |
|
#65 and #69 are getting us closer and closer to the eventual end state desire for this issue. What remains are the following...
|
|
@claudijd In the above list we need one more thing:
|
|
@jinankjain exactly, thanks for adding that |
|
Partial NMAP-style targeted added in #76 |
|
Remaining todo's include:
|
|
Also, added threading concept, but I think it's out of scope for this issue. |
|
Remaining TODO's include:
|
|
@claudijd I don't think so we would be able to support 192.168.1.1,2 (== 192.168.1.1 && 192.168.1.2) this syntax as we are using comma as separator for different IP address or HostName or Ranges. If we want this then we can do this under some another flag but not -t |
|
I'm fine with dropping 192.168.1.1,2 syntax as a requirement for the custom parser if it makes it easier, it's certainly one of the less common use cases with IP, CIDR, and "-" notation being preferred. |
|
@claudijd We can close this now |
|
@jinankjain I think we're still missing a fast way to detect open services, there is a pending PR for this in #92 but it's not mergable because a lot of the dependent code changed recently. |
|
@claudijd Let's see I will try to rebase that PR hope that works |
|
@jinankjain it likely needs a re-write because a lot of that code changed in the past couple days |
|
@claudijd I looked at the code and felt the same as we have completely refactored scan_engine so it needs a rewrite |
|
@jinankjain thanks for all your help with this, I really appreciate you championing this much needed feature set and hunting it down! |
Compliments of @leighalytle.
It should support scanning more than one host at a time.
1.) -t switch should support NMAP syntax targeting
2.) should add a -f switch to accept targeting info via file (should support NMAP style syntax)
The text was updated successfully, but these errors were encountered: