{{tag>[network linux bash security]}}

=====Pure bash TCP portscan and bannergrabber====

====Sequential portscan====
<code>
#!/bin/bash

IP=1.2.3.4

for port in {1..1023}
do
	echo -n "${IP} port ${port} - "
	timeout 1s bash -c "</dev/tcp/${IP}/${port}" 2>/dev/null && echo open || echo closed
done

</code>

====Parallel portscan====
Test 10 ports in parallel.
<code>
#!/bin/bash

PAR=10
IP=127.0.0.1

(
for port in {1..1000}
do
	((i=i%PAR)); ((i++==0)) && wait
	timeout 1s bash -c "</dev/tcp/${IP}/${port}" 2>/dev/null && echo ${port} open || echo ${port} closed &
done
)
</code>

====Bannergrab====
<code>
#!/bin/bash

IP=1.2.3.4

for i in {1..1000}
do
	echo -n "${IP} port ${i} - "
	timeout 1s bash -c "head -1 </dev/tcp/${IP}/${i}" 2>/dev/null || echo closed
done

</code>