Help - Search - Member List - Calendar
Full Version: Ipcscan V/s Xscan
GovernmentSecurity.org > The Archives > General Network Security
arun0075
Apr 7 2004, 03:30 PM
This happend with me recently i use to scan through IPCscan and in this week i noticed that i am not able to get hit also not able to get the stuff going.. sad.gif i think my ISP blocked the port 139 which the ips scan uses. but when i turned on my xscan i am able to scan normally polly scan uses sum other port lol smile.gif but i want to know which port i can use so that my IPCscan still works.. Can Sum 1 help on this smile.gif
EXPLOiTED
Apr 7 2004, 05:38 PM
uhhh...hm...dont make sense
-Arthy-
Apr 7 2004, 05:58 PM
QUOTE (arun0075 @ Apr 7 2004, 03:30 PM)
but i want to know which port i can use so that my IPCscan still works.. Can Sum 1 help on this smile.gif

Hmm
1 out of the miljon?

But this doesn't make sence :S
arun0075
Apr 7 2004, 09:55 PM
1. i use to scan through IPCscan
2. i think my ISP blocked the port 139 which the ipcscan uses to crack winnt passes that is the reason my ipcscan is not showing any results..
3. but i found out that xscan still works for me.. but xscan is lil slow and also xscan uses many different port like " 1-139,443,445,1080,1433,2049,3128,3389,7000-7010,8010,8080,8181"
4. Since xscan is slow i wanted to use ipcscan which is faster but using different port so that my isp can't block smile.gif or in other words i want to know which port xscan uses to scan for week nt

got it ??
phaeton
Apr 8 2004, 02:29 AM
i do believe they try to bf the passes through RPC which is 139...

tough luck :/ you could setup a tunnel from some inconspicuous port to 139...
Truepower
Apr 8 2004, 02:46 AM
if port 139 is closed for ipcscan itll be closed for xscan too, unless youre scanning for something other than ntpass with xscan in addition to 139

id also guess that you arent getting ntpass results because most people have protected themselves against it.

also, i could be wrong but i think some isps block certain 'hot' ports and services for a period to minimise attacks on their customers.

if you need to scan 139 do it on a scanstro, ill be surprised if you get any decent results though.
Ahmeket
Apr 8 2004, 04:45 PM
There are more ports than 139, you said it yourself that xscan uses many more ports than just 139.
flashlord
Apr 8 2004, 07:40 PM
I'm not sure but i think x-scan uses port 445 for Scanning Ntpw
misa
Apr 13 2004, 09:53 PM
xscan is too slow
cougar
Apr 13 2004, 10:18 PM
scan with sfind or scan1000.exe and check them afterwards smile.gif
ssszone
Apr 14 2004, 06:41 AM
scan500.exe or scan1000.exe
very cool scaner
x-scan seems slower
arn0ld
Apr 14 2004, 09:34 AM
i usually scan with scan1000.exe for port 139 and check afterwards with NTscan very nice progam biggrin.gif
KieMaN
Apr 14 2004, 11:44 AM
Xscan is too slow but you maybe find some good results
Littlelord
Apr 14 2004, 01:51 PM
I did some time ago an intensive testing of both, and I found the results of ntscan was very depending on the parameters I did set. With other words when I adjusted the parameters (less in paralell etc) and took the same dictionary I found more as it was fast.

Take some postivive results and rescan them with different parameters in ntscan and you will see what the beste params are for you.

LL
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
 
Invision Power Board © 2001-2005 Invision Power Services, Inc.