pwnat
The only tool/technique to punch holes through firewalls/NATs where multiple clients & server can be behind separate NATs without any 3rd party involvement. Pwnat is a newly developed technique, exploiting a property of NAT translation tables, with no 3rd party, port forwarding, DMZ, DNS, router admin requirements, STUN/TURN/UPnP/ICE, or spoofing. (by samyk)
masscan
TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes. (by robertdavidgraham)
| pwnat | masscan | |
|---|---|---|
| 15 | 64 | |
| 3,088 | 22,670 | |
| - | - | |
| 5.8 | 7.8 | |
| 4 months ago | about 2 months ago | |
| C | C | |
| GNU General Public License v3.0 only | GNU Affero General Public License v3.0 |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
pwnat
Posts with mentions or reviews of pwnat.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2024-02-14.
- How to copy a file between devices?
- How does Linux NAT a ping?
- pwnat: Nat to NAT client-server communication
- Working as intended?
-
Don't bother upgrading to the 'Priority' plan to get the static IP address.
you are correct it has been a while since my starlink was active but check this out it sounds like a possible solution although a small vps with a tunnel would also work but this seems to be serverless http://samy.pl/pwnat/
-
[Network-Programming] I created some tools to bypass port-forwarding requirements for P2P online multiplayer. Might also need a slight sanity check - advice appreciated!
Here is another method to study https://github.com/samyk/pwnat
-
Are there any services that relay ssh connection?
You can try this... https://samy.pl/pwnat/ not sure if it handles double nat, which is common these days, but might be worth trying.
-
Q: how to serve http(s) out of a home network without public IP?
maybe check out http://samy.pl/pwnat/
- Using UDP in multiplayer...
-
LAPSUS$ ringleader suspected to be 16-year-old British teen
I remember when I was a kid using Moxie Marlinspike's SSLStrip to mitm some friends, not to mention setting up pwnat so I could connect back to my home computer from a linux computer at school. https://samy.pl/pwnat/
masscan
Posts with mentions or reviews of masscan.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2023-06-22.
- Why so many bots?
-
Mass Scanning
Can I get banned for mass scanning with https://github.com/robertdavidgraham/masscan or does it slow down any other vms from other persons?
-
Has anyone ever had their homelab or network hacked? What happened?
Nope, this doesn't work any more. Shodan checks all ports (so any attackers using data from Shodan already know which ports you have open), and tools like masscan (https://github.com/robertdavidgraham/masscan) let you portscan the entire IPv4 address space in less than 10 minutes.
-
Private server intruded
https://github.com/LogoiLab/mcsl https://github.com/robertdavidgraham/masscan
-
My home server is frustrating me. Please help me, home server wizards.
Changing the default port does nothing for security. It only prevents some basic brute force or default password scripts. Anyone is able to scan for it in no time anyway (https://github.com/robertdavidgraham/masscan).
-
Should I be Concerned?
But it should blow away the far-too-common belief that no-one's after you because you're not interesting enough. IPv4 is smaller than we think. It is not difficult to scan the entire ipv4 space in minutes. And every single one of those is going to knock your door on the way past.
-
Ask HN: Looking for an Old Article
I'm not sure about the article, but the blazingly-fast IP scanner sounds a lot like Masscan. It can scan the entire Internet in 5 minutes and has received a lot of press: https://github.com/robertdavidgraham/masscan . https://rushter.com/blog/how-masscan-works/ is one of many articles about it.
-
Is my Synology getting port-scanned?
Here's an except from the masscan docs:
- I was hit with ransomware in my Plex server and I'm not sure where it came from. Could a DMZ be the cause?
- PSA: Masscan has changed his IP. Please block the new one on your firewall! Its likely our vps reporting worked.
What are some alternatives?
When comparing pwnat and masscan you can also consider the following projects:
coturn - coturn TURN server project
RustScan - 🤖 The Modern Port Scanner 🤖
mitmproxy - An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
zmap - ZMap is a fast single packet network scanner designed for Internet-wide network surveys.
bettercap - The Swiss Army knife for 802.11, BLE, IPv4 and IPv6 networks reconnaissance and MITM attacks.
amass - In-depth attack surface mapping and asset discovery
scapy - Scapy: the Python-based interactive packet manipulation program & library. Supports Python 2 & Python 3.
nuclei - Fast and customizable vulnerability scanner based on simple YAML based DSL.
Kaitai Struct - Kaitai Struct: declarative language to generate binary data parsers in C++ / C# / Go / Java / JavaScript / Lua / Nim / Perl / PHP / Python / Ruby
zgrab2-configurations - A repository for possible zgrab2 configurations
Ciphey - âš¡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes âš¡