SecPoint.com Port scanner
http://www.secpoint.com/Multi-Threaded-TCP-Port-Scanner.html
pscan is a multithreaded TCP Port scanner with possibility to scan any range 
of TCP ports on any IP address. It has both Connect and Syn scan features.


History: 
--------
## 1.0	initial release
## 1.1	you could use not only port range, but single ports and port lists 
		(check -p option)
## 1.2	default port list is now not 1-1024, but is a list of frequently 
		used ports; duplicates check
## 1.3	added more default ports.
## 2.0	- Added option -s for Syn scan. 
		- Scanning made faster thanks to Syn scan
		- Added even more default ports
		- Improved error handler for Syn scan
		- Improved text output
		- Fixed minor bugs: 
			- changed pathname to oui.txt and port-numbers.txt files
			- added missing call to cleanup function WSACleanup
		A new branch of the program has been created to support Syn scan.
		Syn scan was necessary because under some circumstances of heavy load, 
		the Connect scan can hang routers. Syn scan is multithreaded and uses 
		the standard library pcap on Unix/Linux operating systems. 
		Please be aware that Syn scan requires a higher level of authorization,
		if compared to connect sockets: in Unix/Linux pscan requires root 
		privilege. 
		In some operating systems, Syn scan is performed using connectionless 
		"raw" sockets, therefore the usage of pscan is subject to possible 
		restriction to the usage of raw sockets in such operating systems.
		With Syn scan, option -w is not used because the program does not use
		connected sockets, so it doesn't have to loop reading a socket until 
		the timeout is reached. The receive function doesn't have to poll over 
		a number of sockets, but simply reads the packets passing through the 
		network card, for all ports, and displays the message of "open port"
		when the packet coming from the remote IP contains the information that
		the remote port is open. For the same reason, options -a and -n are not
		used. The first one because packets sent to closed ports are simply 
		not being replied to, so they cannot be counted; the second one because
		the function that reads packets is one, and performs this by reading 
		packets from the network card, not from multiple sockets.
		

Description:
------------
This tool could be used to scan ports of certain IP.
It also could describe each port with standard name (well-known and registered
ports). 

To make simple start run it as
./pscan IP
and you will get a list of the most frequently used ports of IP scanned.

But you could choose some options for scan. 
./pscan IP [options]


Options:
--------

-p <ports>
Could be used like:
  -p start-end  (-p 130-445)
  -p port	(-p 137)
  -p list	(-p 135,137,139,445,1024)
By default (without -p switch) tool will make best assumptions and scan 
frequently used ports. Those include ports 1-2000 and our special selection to 
make scan more efficient and quick at the same time. 

-s
Performs a Syn scan. Default is Connect scan. With Syn scan, -n -w and -a are
not used

-n <inst>	default:  -n 10
number of simultaneous instances of scan. More instances - higher the speed,
but higher system resources. Only for Connect scan.

-w <time>	default: -w 1000
Max waiting time for each port in milliseconds. Only for Connect scan.

-a
Report all ports (OPENED, CLOSED and TIMEDOUT). By default you will see 
only OPENED ports reported. Only for Connect scan.

-r
Resolve ports to known services. There is a file port-numbers.txt, it will be 
used to print name of well-known and registered ports. This file should 
be in CURRENT directory!

-M
MAC lookup of remote IP. Arp system tool used to check for MAC. 

-h
Hide on-fly port displaying (display report at the end)


You also could add    > log.txt  or  >> log.txt   to the command to get output
in the file:
./pscan <IP> [...] > log.txt        this will create or re-create log.txt
./pscan <IP> [...] >> log.txt       this will append to log.txt


---------------------
www.SecPoint.com Team

Check for more free security scan tools at http://www.secpoint.com
Try port scanner http://www.secpoint.com/free-port-scan.html
and free vulnerability scan at http://www.secpoint.com/free-vulnerability-scan.html
Free windows shares scan tool also available at http://www.secpoint.com
The Portable Penetrator - http://www.secpoint.com/portable-penetrator.html
The Cloud Vulnerability Scanner http://www.secpoint.com/cloud-penetrator-web-vulnerability-scanner.html