fi6s: Fast IPv6 scanner

fi6s is an IPv6 port scanner designed to be fast. This is achieved by sending and processing raw packets asynchronously. The design and goal are pretty similar to Masscan, though it is not as full-featured yet.

Installation

# apt install gcc make git libpcap-dev
$ git clone https://github.com/sfan5/fi6s.git
$ cd fi6s
$ make BUILD_TYPE=release

Usage

Usage is pretty easy, fi6s will try to auto-detect the dirty technical details (source/dest MAC, source IP).

# ./fi6s -p 80,8000-8100 2001:db8::/120

This example will:

• scan 2001:db8::/120 subnet (256 addresses in total)
• scans port 80 and ports 8000 to 8100 (102 ports in total)
• output scan results to stdout in the “list” format

There are more different ways of specifying an address range to scan if you aren’t sure what’s about to happen to invoke fi6s with –echo-hosts and it will print every host that would’ve been scanned.

For advanced features please consult the output of ./fi6s -h.

Grabbing banners

Since fi6s has its own TCP stack, the OS stack needs to disable to avoid interference with banner grabbing (RST packets). This is most easily done using ip6tables and a constant –source-port.

Banner grabbing is then enabled by passing –banners:

# ip6tables -A INPUT -p tcp -m tcp –dport 12345 -j DROP
# ./fi6s -p 22 –banners –source-port 12345 2001:db8::/120

Copyright (C) 2016 sfan5 <sfan5@live.de>

Source: https://github.com/sfan5/