sfan5/fi6s sfan5/fi6s

  • Stars
    star
    159
  • Rank 234,603 (Top 5 %)
  • Language
    C
  • License
    Other
  • Created about 8 years ago
  • Updated 5 months ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
sfan5/fi6s
github

sfan5

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

IPv6 network scanner designed to be fast

fi6s: Fast IPv6 scanner

fi6s is an IPv6 port scanner designed to be fast. This is achieved by sending and processing raw packets asynchronously. The design and goal is pretty similar to Masscan, though it is not as full-featured yet.

Compiling

Building fi6s is fairly easy on any recent Linux system, e.g. on Ubuntu:

# apt install gcc make git libpcap-dev
$ git clone https://github.com/sfan5/fi6s.git
$ cd fi6s
$ make BUILD_TYPE=release

The scanner executable will be ready at ./fi6s.

Note that fi6s is developed and tested solely on Linux. It should work on other UNIX-like platforms, but don't expect it to run on Windows.

Usage

Usage is pretty easy, fi6s will try to auto-detect the dirty technical details such as source, router MAC addresses and source IP.

# ./fi6s -p 80,8000-8100 2001:db8::/120

This example will:

  • scan the 2001:db8::/120 subnet (256 addresses in total)
  • scan TCP ports 80 and 8000 to 8100 (102 ports in total)
  • send as many packets per second as possible
  • output scan results to standard output in the "list" format

There are more different ways of specifying an address range to scan, if you aren't sure what's about to happen invoke fi6s with --print-hosts to print all IPs or --print-summary to get a quick overview about the scan.

For more advanced features please consult the output of fi6s --help.

Grabbing banners

Since fi6s has its own TCP stack, the OS' stack needs to disabled to avoid interference with banner grabbing (RST packets). This is easily done using ip6tables and a constant --source-port.

Banner grabbing is then enabled by passing --banners:

# ip6tables -A INPUT -p tcp -m tcp --dport 12345 -j DROP
# ./fi6s -p 22 --banners --source-port 12345 2001:db8::xx

UDP

Dropping packets before they reach the OS stack is not required for UDP scans, but is still a good idea to avoid a flood of ICMPv6 unreachable responses.

Other than that you only need an additional --udp:

# ip6tables -A INPUT -p udp -m udp --dport 12345 -j DROP
# ./fi6s -p 53 --banners --udp --source-port 12345 2001:db8::xx

Note that unlike with TCP, you will only get useful (or any) results if you scan a port whose protocol is supported by fi6s. You can use fi6s --list-protocols to view a list.

More Repositories

1

pytgbridge

Better than teleirc
Python
13
star
2

we_env

Minetest mod to aid forming terrain by hand (with WorldEdit)
Lua
10
star
3

minetest_classic

The classic Minetest-c55 0.3 experience brought back.
Lua
7
star
4

mt2obj

Converts .mts schematics to Waveform .obj geometries (Proof of Concept)
Python
6
star
5

pkgbuild-linux-bcachefs

PKGBUILD for Linux with bcachefs support
Shell
5
star
6

minetestbot-modules

phenny modules for the #minetest channel bot
Python
5
star
7

minetest-teaching

Basic Mathematics teaching mod for Minetest
Lua
4
star
8

tgsupportbot

Telegram bot for interactive user support
Python
4
star
9

c-socks5

A small SOCKS5 proxy server written in C (+IPv6 support)
C
4
star
10

dnshammer

DNS mass-resolving tool
C++
3
star
11

pkgbuild-bcache-tools

PKGBUILD for bcache-tools (with bcachefs support)
Shell
3
star
12

things

物
Shell
2
star
13

spk

bad but simple archive format
C
2
star
14

fancontrol-c

C port of the "fancontrol" script from lm_sensors: Temperature dependent fan speed control
C
2
star
15

minetest-nm

Minetest mod for tracking node modifications
Lua
1
star
16

mingw-pkgs

A collection of scripts to cross-compile various libraries, tools, applications to Windows via MinGW.
Shell
1
star