tag:blogger.com,1999:blog-37798047.post6475210462504692432..comments2024-01-16T05:48:33.523-05:00Comments on Errata Security: FAQ: from where can I scan the Internet?David Maynorhttp://www.blogger.com/profile/09921229607193067441noreply@blogger.comBlogger1125tag:blogger.com,1999:blog-37798047.post-38124647908535288452013-10-13T20:44:41.085-04:002013-10-13T20:44:41.085-04:00get access from friends colo'd at major IXs to...get access from friends colo'd at major IXs to GigE ports that won't be subject to uRPF, so you can source-spoof a bunch of networks.<br /><br />collect a ton of address space to listen on, e.g. the pull-up routes for entire countries, and GRE-tunnel the replies to listening hosts as needed.<br /><br />then do something like dscan's bag.c to tie it together, so scan sources are randomly distributed across the entire target space (the larger the scan, the better): https://github.com/dugsong/dscan<br /><br />YMMV.Dughttps://www.blogger.com/profile/07694740451059534700noreply@blogger.com