Possibly wrong list for portscan

Question

Possibly wrong list for portscan

theyosh opened this issue 5 years ago · comments

Describe the bug
It looks like that the loop for nmap is using a wrong list? At https://github.com/x1mdev/ReconPi/blob/master/recon.sh#L131 the file with host names is used for scanning ports. But in that list there could be a lot of hosts with the same ip (all subdomains). That would take a long time to scan the same host.

To Reproduce
Run the scan against a wildcard DNS domain. All subdomains are valid and producing an IP

Expected behavior
Use the list of "$IPS"/"$domain"-ips.txt of line https://github.com/x1mdev/ReconPi/blob/master/recon.sh#L123 In there are the unique IP numbers of all the subdomain hosts.

Screenshots
None

Desktop (please complete the following information):
Linux black-pearl 4.19.75-v7+ #1270 SMP Tue Sep 24 18:45:11 BST 2019 armv7l GNU/Linux (RPI 3B+)

Additional context
I think that port scanning is not depending on (v)host names. So therefore I would think that only the unique IP address are enough for port scanning. Could be wrong....

x1m · Answer 1 · Wed Nov 13 2019 21:23:57 GMT+0800 (China Standard Time)

Good issue, let me check take a look at this. Feel free to create a pull request if you know a solution.

TheYOSH · Answer 2 · Tue Nov 26 2019 05:33:45 GMT+0800 (China Standard Time)

Closing as PR is merged :)

x1m · Answer 3 · Tue Nov 26 2019 06:02:42 GMT+0800 (China Standard Time)

Forgot about closing the issue, cheers :)