unicornscan 命令

常用示例

说明

unicornscan is an asynchronous network scanner designed for high-speed reconnaissance. It uses a custom TCP/IP stack that separates packet sending and receiving into different threads, enabling much faster scanning than traditional scanners. The scanner supports various TCP flag combinations, UDP scanning, and OS/service fingerprinting through loadable modules. Its asynchronous design makes it particularly effective for scanning large networks. Output can be customized and saved to pcap files for later analysis. The tool integrates with databases for storing scan results.

参数

-m _mode_

Scan mode: T (TCP SYN), U (UDP), sf (connect), A (ARP).

-r _pps_

Packets per second rate.

-i _interface_

Network interface to use.

-I

Immediate mode: display results as found.

-v

Verbose output.

-H

Resolve hostnames in output.

-l _file_

Log output to file.

-w _file_

Write packets to pcap file.

-L _seconds_

Packet timeout (default: 7).

-p _ports_

Global ports to scan.

-B _port_

Source port for scanning.

-b _layer_

Send broken CRC: T (transport), N (network), TN (both).

-e _module_

Enable module (e.g., osdetect).

-E

Process error responses (ICMP, RST).

-Q

Quiet mode.

-h

Display help.