• Stars
    star
    653
  • Rank 68,968 (Top 2 %)
  • Language
  • License
    MIT License
  • Created about 8 years ago
  • Updated over 6 years ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

A list of all FTP servers in IPv4 that allow anonymous logins.

openftp4

This is a list of all FTP servers directly connected to port 21 in the IPv4 address space that allow anonymous logins. The login must be completed in less than 15 seconds to qualify for this list.

How and why this list was created is documented in detail in my blog post Mass-analyzing a chunk of the Internet. You can do whatever you want with this data. Consider linking to this repo if you find something interesting or odd.

The last scan contains 796,268 servers that allow anonymous access. This is 4.31486 % of the 18,454,087 services running on port 21 in IPv4.

Usage

  1. Decompress the file
gzip -d openftp4.txt.gz
  1. Hack away

Format

The data follows this loose format:

ip|timestamp|banner
  • ip is the IPv4 address (^([0-9.]+)\|).
  • timestamp is the unix timestamp of the exchange with that server (^+?\|(\d+)\|).
  • banner is everything after the second | and includes the full initial banner, every response code and the full login exchange (\|\d+\|(.+)$).

Just a hint: If you are going to interact in any way with these servers, consider piping the list through shuf each time you try something new so you don't hit the same server(s) over and over again. Also, don't sort the list before rescanning, because you will encounter IP slashes that belong to one network. Think about what it looks like from their perspective ;-).

If you want to be extra nice, provide your actual email address (or one you have access to) as the password (blog post for details), so server admins can contact you.

Donate

It costs $2 per week to keep the scan running. If you want to throw some money our way (for cookies and stuff), please do so at 14MzwUsRfZTygggU39LECLvamDwFpa2Vjj.

Discussion

In the Wild

Applications that use this dataset:

  • FTPeek tries to find interesting things and sends you a newsletter.

Exclusion

(This doesn't concern FTP servers that are public by design.)

Read the blog post to learn how servers are excluded from this list. This list might be updated in the future. If you want to see your IP excluded from the list should it ever be updated, then consider fixing your stuff.

More Repositories

1

js

turbo.js - perform massive parallel computations in your browser with GPGPU.
JavaScript
2,616
star
2

KPTI-PoC-Collection

Meltdown/Spectre PoC src collection.
C++
498
star
3

pg-shortkey

YouTube-like Short IDs as Postgres Primary Keys
PLpgSQL
463
star
4

c4

Open IP cameras in IPv4
131
star
5

justContext.js

Styleable context menu in pure JS (no jQuery).
JavaScript
80
star
6

zero2hero

C implementation of the file-less UAC exploit
C
72
star
7

pg-costop

Vector Arithmetic and Weighted, Variably Randomized Cosine Similarity Search in Postgres
PLpgSQL
40
star
8

nuTLS

Minimal, modern, dependency-free TLS 1.2 and 1.3 server/client library for x64 Linux.
C
38
star
9

zQuery

Pure JavaScript alternatives to jQuery things.
30
star
10

Kafka

Smallest possible C/++ GLSL framework (~550B) for demo-coding.
C++
24
star
11

treetop

Accurate memory and CPU usage stats for a linux process tree.
C#
22
star
12

medium125k

Dataset of 125,000 Medium Blog Post Titles and Subtitles (with Categories)
18
star
13

NanoCL

Zero-Overhead bare-metal GPGPU library for C++ on Windows.
C++
15
star
14

wasup

This experiment is no longer available.
10
star
15

ftprobe

Check if FTP server allows anonymous logins with no overhead. (buggy)
C
6
star
16

FormulaCompiler

Compile any code to basic mathematical formulas.
5
star
17

love2d-fxaa

FXAA Anti-Aliasing for Love2D
GLSL
4
star
18

gtfotfs

TFVC to Git Migration tool. Best for unattended migration using a unix system.
Shell
3
star
19

Recall

[asm.js experiment] Stack-based language that only knows about bit-ops.
3
star
20

Endering

Dictionary-assisted suffix-stripping morphographemic analyser
MoonScript
2
star
21

bee

(Archived, Incomplete) Text editor written in Bash 3
Shell
2
star
22

BrowserDisapproval

Subtly disapprove of browser choices.
2
star
23

mediatool

Dockerized ffmpeg, sox & imagemagick
Shell
1
star
24

mash

Summarity open-source monorepo
Nim
1
star
25

dlist

Naive doubly-linked list for Fennel
Fennel
1
star
26

ReduceRescan

Reduce a FTP banner grab JSON log and rescan with a custom payload. Used for openftp4.
Shell
1
star