i use superscan 3 in order to get fresh socks bro is dere any risk involve in scanning open ports ?????
and bro i am really upset becuz no open port becuz i think my ip ranges didnt match and i know its da tough step in ip scanning to get correct ip ranges bro plzzz help how to get open ports through correct ip ranges
i heard dat dese ports hav timings in which dey r open is it rite???
thankxxx in indvance

Hi,

Well firstly find out what your ADSL modems IP is.
Any other ips on the same range will probably be other modems/users of your ISP.

Ports have to be open all the time otherwise they would not work for the users trying to use those services.

For example a webserver will always have port 80 open.

Most Proxies Owners lock their socks to only work from valid ranges, because leaving proxies open is a security risk.

It takes lots of time and patience to find open proxies.
As for IP ranges try searching the iternet to find out proxies for isps in your country.

Xtreame

just wondering whats the point of scanning for open ports?

Hi,

Good question so here goes.

Programs fall into two classes Servers and Clients.

Servers are piece of software which provide information or services to a client.
A Client is a piece of software or hardware which gets information for a user.

So a webserver would be a server and a browser would be a client.

Now all Servers (or Services as they can also be called) have to share data via a PORT.

A port is an open doorway which commmunication is done through and they each have a number. Since only one service can be active on a port at any given time to listen for requests by a client.


Now to make life easier for makers of client software most services/servers run on designated port numbers a web browser by default tries to get information on port 80 from the target ip.

SO logic states that if you were to scan an ip and see something listening on port 80 its probably a web server - port 8080 its probably a proxy, port 1080 its a socks proxy - 25 an smtp server etc etc etc.

Now ports can be numbered 1-16.7 million and for more secure information its worth putting these services on ports people dont expect because most people will only scan the so called "known ports" numbers like 21, 25, 80, 110, 1080, 8080, 6667 etc etc.

So you use scanning to find out which door is open and to try and predict which services a machine is using so that you can hack or exploit it.

Example:

I scan a machine and find port 80 is open. I know there is a webserver.
I then use telnet to the machine on port 80 and send a bad request for a page like ASDFKSDJFASKDLFJSDKLFJSFSJD.asp - the request will then fail - but it will tell me what version of the webserver it is and what OS I am up against.

I can then look for exploits that version information I get back, if Im lucky its linux as there would be more exploits available to use.

But essentially as a starting point finding out what is running on a target pc is the point of port scanning. And while you can do this by hand using telnet it would take for ever to take one machine so automated scanners are much faster since doing 3 commands x 16.7 million ports by hand is allot of typing.

Ok I think that about covers it.

Xtreame

In Komails case he is either trying to get arround firwalls that prevent him from surfing certain sites by using someone elses proxy to get his files from the internet.

This can also be used to hide your identity if your hacking (altough its a very very very sloppy method I would not recommend - unless you plan to use about 30 proxies to your destination and at least 5 missdirecteted servers inbetwen.)

It proxies in the US for example could be used to make it look like he is coming from the US instead of his countr which is great for countries where services like some upload providers ban those countries like india.)

But proxies are generally used to hide who you are, and as I said its a very very weak approach it does not take much to track people back if you know what your doing.

Xtreame

ohh i thought it was for proxies but wasn't sure thanks for the info

Well yes, proxies, and machine attackes in general, when you are trying to hack a server finding out whats running is the first step.

Once you know whats on, you can then search milw0rm or other exploit databases to see if any of the services you discover have any faults that can be used to gain entry.

Xtreame

sounds cool i'll never try it lol sounds to risky for me but great details man thanks