{"id":647,"date":"2007-12-10T09:33:46","date_gmt":"2007-12-10T09:33:46","guid":{"rendered":"https:\/\/www.darknet.org.uk\/2007\/12\/scanrand-download-stateless-tcp-scanner-with-syn-cookies\/"},"modified":"2015-09-09T19:39:45","modified_gmt":"2015-09-09T11:39:45","slug":"scanrand-download-stateless-tcp-scanner-with-syn-cookies","status":"publish","type":"post","link":"https:\/\/www.darknet.org.uk\/2007\/12\/scanrand-download-stateless-tcp-scanner-with-syn-cookies\/","title":{"rendered":"scanrand – Download Stateless TCP Scanner with Syn Cookies"},"content":{"rendered":"
[ad]<\/p>\n
Scanrand is extremely quick and effective port scanner. It works by forking two distinct processes:<\/p>\n
This makes it extremely fast.<\/p>\n
If you haven’t heard of the suite, Scanrand is one of the five tools in Paketto Keiretsu by Dan “Effugas” Kaminsky of Doxpara Research.<\/p>\n
Scanrand implements numerous options; reasonable defaults are selected when no specific guidance is received from the user. The only thing mandated is a target destination, which may be specified using either a FQDN(Fully Qualified Domain Name) or a numeric specification.<\/p>\n
These numerics may employ any number of dashes, commas, or combination thereof at the same time. For example, scanrand 10.0.1-255.1-10,20:80,137-139 works fine.<\/p>\n
More ports will be scanned by default when scanning a single host than when sca
\nnning a network. Scanrand is able to estimate remote hopcount by examining incoming TTLs.<\/p>\n
Note please to install scanrand you need to first install the provided libnet, libtomcrypt and libpcap tarballs.<\/p>\n
It’s a good alternative to nmap<\/a> for certain purposes<\/p>\n You can read a good article on Scanrand here:<\/p>\n Scanrand Dissected: A New Breed of Network Scanner<\/a><\/p>\n The article includes nmap vs scanrand.<\/p>\n You can download Scanrand here (as part of Paketto):<\/p>\n