In 2012, One Man Port Scanned The Entire Internet

Discussion in 'User Submitted News' started by Rydian, Mar 19, 2013.

Mar 19, 2013
  1. Rydian
    OP

    Member Rydian Resident Furvert™

    Joined:
    Feb 4, 2010
    Messages:
    27,883
    Location:
    Cave Entrance, Watching Cyan Write Letters
    Country:
    United States
    [​IMG]

    The results are pretty interesting. The guy was able to log into things like door security systems and printers, and use them to scan nearby IPs/ports to gather info. The source has all sorts of stats and maps he compiled, showing some pretty interesting info...
    • .net is more common than .com as far as servers that respond go. I'd put my money on a lot of it being due to domain-squatters, since it's not like every squat puts up a page of ads, sometimes they just put up nothing so they don't have any hosting bills... it's just surprising how much more common .net is.

    • IIS is listed fourth in the web server list... but this is only of the servers that actually gave their signature out. A lot of servers will specifically give no signature because it often includes the version number, which somebody can compare against released exploits. Since so many servers (#3 on the list) stop their signature from being transmitted I'm not sure how accurate the #1, #2, and #4 spots are, since #3 is a mix of 'em.

    • Of the printers with network access, HP tops the list. Not too surprised here, I worked with networked printers at a college for a while and some of the fancier models could definitely do network communication outside of a remote spooling service.

    • 591 million IPs showed use/response during that time. He notes that this is just the IPs that responded in any way... refusal to respond to IMCP and having no ports open is not uncommon at all (no port forwarding in a home router and the IMCP option disabled will do it, some routers I've seen do it by default), in fact he notes that the ones that did NOT respond but also had records were even larger, 729 million of those, giving 1.3 billion addresses.
      • This is still a good chunk less than what's been officially allocated though, which shows that IPv4, if given better reservations, could have lasted longer without CGNAT.
    [​IMG] Source
    [​IMG] Suggested Reading
     


  2. DinohScene

    Member DinohScene The Gift of Dino

    Joined:
    Oct 11, 2011
    Messages:
    12,930
    Location:
    В небо
    Country:
    Antarctica
    Wow .__.

    That it took 2 years is astonishing.

    Interesting to see why simple things always work better then complicated stuff.
     
    SuzieJoeBob likes this.
  3. DaggerV

    Member DaggerV Archmagi of the Emerald Moon

    Joined:
    Dec 3, 2009
    Messages:
    932
    Country:
    United States
    I wanted to call bull, but this took place over a couple of years, so nevermind. Though the data doesn't surprise me at all after working for a couple of the schools, I can only imagine how poorly secured your typical consumer is.
     
  4. nukeboy95

    Member nukeboy95 Leave luck to heaven.

    Joined:
    Aug 24, 2010
    Messages:
    2,273
    Location:
    not sure
    Country:
    United States
    so he scanned everything ;)
     
  5. RedCoreZero

    Banned RedCoreZero Creativity is Power

    Joined:
    Nov 12, 2012
    Messages:
    526
    Location:
    Lived in Florida
    Country:
    United States
    My passwords are totally not 'PasswordZero'
     
  6. Rydian
    OP

    Member Rydian Resident Furvert™

    Joined:
    Feb 4, 2010
    Messages:
    27,883
    Location:
    Cave Entrance, Watching Cyan Write Letters
    Country:
    United States
    Well, it can often take a few minutes to scan all the ports on a single IP, what with not wanting to flood any devices and checking a full range. Even with as many devices under control as there are, a single round of scanning could take a while, and he wanted to do lots of scans to see which ones were active at which times and all that crap.
     
    DinohScene likes this.
  7. pasc

    Member pasc GBATemps official GBA Freak

    Joined:
    Sep 9, 2006
    Messages:
    2,572
    Location:
    Germany
    Country:
    Germany
    Also adding:

    Simple things seem effective, however many times there is a quite complex background going on.

    The easy way isn't always the most rewarding.

    On topic:

    Neat.
     
  8. Thanatos Telos

    Member Thanatos Telos random stuff

    Joined:
    Sep 13, 2009
    Messages:
    841
    Country:
    United States
    Would he happen to be from Portland?

    Gahars, your time is numbered.
     
    Wizerzak likes this.
  9. BowlOfSpiders

    Member BowlOfSpiders hi

    Joined:
    Feb 10, 2009
    Messages:
    649
    Location:
    United States
    Country:
    United States
    Don't worry. Gahars has a range of puns.
     
  10. Gahars

    Member Gahars Bakayaro Banzai

    Joined:
    Aug 5, 2011
    Messages:
    10,254
    Location:
    New Jersey
    Country:
    United States
    Huh. I know the internet's gone mobile, but I never realized it was port-able.

    Ball's in your court, chumps.
     
    BowlOfSpiders and SuzieJoeBob like this.
  11. Thanatos Telos

    Member Thanatos Telos random stuff

    Joined:
    Sep 13, 2009
    Messages:
    841
    Country:
    United States
    I'm not worried, I have this competition in the net.

    Version for the challenge:
    Bring it, I'll court your girlfriend at this rate.
     
  12. FAST6191

    Reporter FAST6191 Techromancer

    pip
    Joined:
    Nov 21, 2005
    Messages:
    21,745
    Country:
    United Kingdom
    I am surprised- I have floated around much of the UK, Europe and the US and it has been a good 5 years since I saw anything that did not have a everything blocked (ICMP give or take though it is not so troubling) by virtue of not being a simple passthrough modem. This is nice as the last 5 years have seen an explosion in the number of NAS, network printers, IP cameras and other basic network devices I have been called in to deploy.

    Also what is up with Mauritius?
     
  13. SuzieJoeBob

    Member SuzieJoeBob NOT a New Member

    Joined:
    Dec 20, 2008
    Messages:
    524
    Country:
    United States
    Doh s***!!!! Real competition this time!!!!

    More Off-Topic: Oh God....I just noticed that Gahars is apparently from NJ. First, we had to claim the Jersey Shore cast as our own, and now Gahars..... O_O
     
  14. KingVamp

    Member KingVamp Great... AETHER!

    Joined:
    Sep 13, 2009
    Messages:
    9,608
    Country:
    United States
    So... they kind of pulled a Batman.
     
  15. Thanatos Telos

    Member Thanatos Telos random stuff

    Joined:
    Sep 13, 2009
    Messages:
    841
    Country:
    United States
    Thanks, I'm from VA, and do you know who else is from Virginia? Flipping Rydian.

    First On-Topic: Well, I looked through their website and I'm impressed. (Not a pun.) That one guy managed to do all of that in one year. Damn.
     
  16. SuzieJoeBob

    Member SuzieJoeBob NOT a New Member

    Joined:
    Dec 20, 2008
    Messages:
    524
    Country:
    United States
    I'd be afraid to see his electric bill....
     
  17. Chary

    Reporter Chary GBAtemp's #1 Naoto

    pip
    Joined:
    Oct 2, 2012
    Messages:
    3,110
    Location:
    Steins Gate World Line
    Country:
    United States
    ...Woah

    Can't believe that they could get into security cameras. Pretty cool.
     
  18. Hyro-Sama

    Member Hyro-Sama I'm from the fucking future.

    Joined:
    Oct 25, 2009
    Messages:
    4,255
    Location:
    After Earth
    Country:
    Japan
    I can't believe someone actually compared Gahars to Jersey Shore.
     
    Felipe_9595, Rydian and Gahars like this.
  19. Gahars

    Member Gahars Bakayaro Banzai

    Joined:
    Aug 5, 2011
    Messages:
    10,254
    Location:
    New Jersey
    Country:
    United States
    I'm so offended.

    Seriously though, I'm a total JWoww.
     
  20. Hyro-Sama

    Member Hyro-Sama I'm from the fucking future.

    Joined:
    Oct 25, 2009
    Messages:
    4,255
    Location:
    After Earth
    Country:
    Japan
    Does that mean Guild is like Snooki?
     

Share This Page