Need help in result of masscan

sabyasachi · August 7, 2018, 6:02pm

Hi

I have scannad 35 IP addresses for a particular domain with masscan with the following command.

masscan -p0-65535 -iL listOfIPs -oX resultPortScan.xml

But in the output file it is showing only five IPs have open ports. That’s also only the common ports like 22, 80, 53, 443, 80.

At least all of these 35 IPs must have at least one open port. Why only five IPs are coming in the output ? Is there any possibility that I have been blocked by firewall ?
What would be the best possible option to get service and versions of these open ports ? Nmap don’t give best result always and it is too slow.

It may happen that I am making a very simple mistake here to execute the command in masscan. Thanks in advance.

sabyasachi · August 7, 2018, 6:15pm

Also I have seen that in nmap it is showing more open ports in almost all IP addresses. What is the wrong step that I am doing in masscan ?

plwylie · August 14, 2018, 8:53pm

It could be that the ports are closed or filtered by a firewall. When I scan with nmap I get better results when I use -Pn to prevent nmap from probing. Sometimes probing will prevent finding open ports and services due to firewalls, IDS, or IPS.

Topic		Replies	Views
Bulk IP scanning for ports by masscan Recon Techniques	7	22427	November 21, 2018
Sud-domain scan odd results - nmap, dnsgoodies, ping, censys.io Starter Zone	4	2527	October 28, 2016
Using nMap and Autonomous System numbers (ASN) for Discovery of GOODIES* (*maybe) Starter Zone	3	9560	September 4, 2019
Open ports discovery Starter Zone	2	1280	May 9, 2021
Virtual Servers Starter Zone	3	1937	December 28, 2021

Need help in result of masscan

Related Topics