In 2012, One Man Port Scanned The Entire Internet

Discussion in 'User Submitted News' started by Rydian, Mar 19, 2013.

  1. Rydian
    OP

    Rydian Resident Furvert™

    Member
    27,883
    8,104
    Feb 4, 2010
    United States
    Cave Entrance, Watching Cyan Write Letters
    [​IMG]

    The results are pretty interesting. The guy was able to log into things like door security systems and printers, and use them to scan nearby IPs/ports to gather info. The source has all sorts of stats and maps he compiled, showing some pretty interesting info...
    • .net is more common than .com as far as servers that respond go. I'd put my money on a lot of it being due to domain-squatters, since it's not like every squat puts up a page of ads, sometimes they just put up nothing so they don't have any hosting bills... it's just surprising how much more common .net is.

    • IIS is listed fourth in the web server list... but this is only of the servers that actually gave their signature out. A lot of servers will specifically give no signature because it often includes the version number, which somebody can compare against released exploits. Since so many servers (#3 on the list) stop their signature from being transmitted I'm not sure how accurate the #1, #2, and #4 spots are, since #3 is a mix of 'em.

    • Of the printers with network access, HP tops the list. Not too surprised here, I worked with networked printers at a college for a while and some of the fancier models could definitely do network communication outside of a remote spooling service.

    • 591 million IPs showed use/response during that time. He notes that this is just the IPs that responded in any way... refusal to respond to IMCP and having no ports open is not uncommon at all (no port forwarding in a home router and the IMCP option disabled will do it, some routers I've seen do it by default), in fact he notes that the ones that did NOT respond but also had records were even larger, 729 million of those, giving 1.3 billion addresses.
      • This is still a good chunk less than what's been officially allocated though, which shows that IPv4, if given better reservations, could have lasted longer without CGNAT.
    [​IMG] Source
    [​IMG] Suggested Reading
     


  2. DinohScene

    DinohScene DinohScene <З MartyDreamy

    Member
    GBAtemp Patron
    DinohScene is a Patron of GBAtemp and is helping us stay independent!

    Our Patreon
    14,869
    11,232
    Oct 11, 2011
    Antarctica
    В небо
    Wow .__.

    That it took 2 years is astonishing.

    Interesting to see why simple things always work better then complicated stuff.
     
    SuzieJoeBob likes this.
  3. DaggerV

    DaggerV Archmagi of the Emerald Moon

    Member
    932
    199
    Dec 3, 2009
    United States
    I wanted to call bull, but this took place over a couple of years, so nevermind. Though the data doesn't surprise me at all after working for a couple of the schools, I can only imagine how poorly secured your typical consumer is.
     
  4. nukeboy95

    nukeboy95 Leave luck to heaven.

    Member
    2,273
    1,085
    Aug 24, 2010
    United States
    not sure
    so he scanned everything ;)
     
  5. RedCoreZero

    RedCoreZero Creativity is Power

    Banned
    526
    167
    Nov 12, 2012
    United States
    Lived in Florida
    My passwords are totally not 'PasswordZero'
     
  6. Rydian
    OP

    Rydian Resident Furvert™

    Member
    27,883
    8,104
    Feb 4, 2010
    United States
    Cave Entrance, Watching Cyan Write Letters
    Well, it can often take a few minutes to scan all the ports on a single IP, what with not wanting to flood any devices and checking a full range. Even with as many devices under control as there are, a single round of scanning could take a while, and he wanted to do lots of scans to see which ones were active at which times and all that crap.
     
    DinohScene likes this.
  7. pasc

    pasc GBATemps official GBA Freak

    Member
    2,586
    144
    Sep 9, 2006
    Gambia, The
    Germany
    Also adding:

    Simple things seem effective, however many times there is a quite complex background going on.

    The easy way isn't always the most rewarding.

    On topic:

    Neat.
     
  8. Thanatos Telos

    Thanatos Telos random stuff

    Member
    842
    187
    Sep 13, 2009
    United States
    Would he happen to be from Portland?

    Gahars, your time is numbered.
     
    Wizerzak likes this.
  9. BowlOfSpiders

    BowlOfSpiders hi

    Member
    649
    36
    Feb 10, 2009
    United States
    United States
    Don't worry. Gahars has a range of puns.
     
  10. Gahars

    Gahars Bakayaro Banzai

    Member
    10,254
    17,403
    Aug 5, 2011
    United States
    New Jersey
    Huh. I know the internet's gone mobile, but I never realized it was port-able.

    Ball's in your court, chumps.
     
    BowlOfSpiders and SuzieJoeBob like this.
  11. Thanatos Telos

    Thanatos Telos random stuff

    Member
    842
    187
    Sep 13, 2009
    United States
    I'm not worried, I have this competition in the net.

    Version for the challenge:
    Bring it, I'll court your girlfriend at this rate.
     
  12. FAST6191

    FAST6191 Techromancer

    pip Reporter
    22,927
    8,601
    Nov 21, 2005
    I am surprised- I have floated around much of the UK, Europe and the US and it has been a good 5 years since I saw anything that did not have a everything blocked (ICMP give or take though it is not so troubling) by virtue of not being a simple passthrough modem. This is nice as the last 5 years have seen an explosion in the number of NAS, network printers, IP cameras and other basic network devices I have been called in to deploy.

    Also what is up with Mauritius?
     
  13. SuzieJoeBob

    SuzieJoeBob NOT a New Member

    Member
    GBAtemp Patron
    SuzieJoeBob is a Patron of GBAtemp and is helping us stay independent!

    Our Patreon
    570
    275
    Dec 20, 2008
    United States
    Doh s***!!!! Real competition this time!!!!

    More Off-Topic: Oh God....I just noticed that Gahars is apparently from NJ. First, we had to claim the Jersey Shore cast as our own, and now Gahars..... O_O
     
  14. KingVamp

    KingVamp Great... AETHER!

    Member
    10,027
    1,791
    Sep 13, 2009
    United States
    So... they kind of pulled a Batman.
     
  15. Thanatos Telos

    Thanatos Telos random stuff

    Member
    842
    187
    Sep 13, 2009
    United States
    Thanks, I'm from VA, and do you know who else is from Virginia? Flipping Rydian.

    First On-Topic: Well, I looked through their website and I'm impressed. (Not a pun.) That one guy managed to do all of that in one year. Damn.
     
  16. SuzieJoeBob

    SuzieJoeBob NOT a New Member

    Member
    GBAtemp Patron
    SuzieJoeBob is a Patron of GBAtemp and is helping us stay independent!

    Our Patreon
    570
    275
    Dec 20, 2008
    United States
    I'd be afraid to see his electric bill....
     
  17. Chary

    Chary Never sleeps

    pip Reporter
    GBAtemp Patron
    Chary is a Patron of GBAtemp and is helping us stay independent!

    Our Patreon
    3,996
    11,148
    Oct 2, 2012
    United States
    ...Woah

    Can't believe that they could get into security cameras. Pretty cool.
     
  18. Hyro-Sama

    Hyro-Sama I'm from the fucking future.

    Member
    4,257
    3,015
    Oct 25, 2009
    After Earth
    I can't believe someone actually compared Gahars to Jersey Shore.
     
    Felipe_9595, Rydian and Gahars like this.
  19. Gahars

    Gahars Bakayaro Banzai

    Member
    10,254
    17,403
    Aug 5, 2011
    United States
    New Jersey
    I'm so offended.

    Seriously though, I'm a total JWoww.
     
  20. Hyro-Sama

    Hyro-Sama I'm from the fucking future.

    Member
    4,257
    3,015
    Oct 25, 2009
    After Earth
    Does that mean Guild is like Snooki?