Network reconnaissance tool for network enthusiasts.
- Port scanning with service detection
- Network host discovery (ping sweep)
- OS fingerprinting via TTL analysis
- DNS lookups (forward and reverse)
- Service banner grabbing
- Common vulnerability checks
- Multi-threaded scanning
- JSON and text export formats
git clone https://github.com/00x127/Elysium
cd Elysium
chmod +x scanner.pyRequirements: Python 3.6+
Scan all ports:
python3 scanner.py 192.168.1.1 -p allScan specific ports:
python3 scanner.py example.com -p 80,443,22Scan port range:
python3 scanner.py 10.0.0.1 -p 1-1000Ping sweep:
python3 scanner.py 192.168.1.0/24 --pingBanner grabbing:
python3 scanner.py target.com -p common --bannerVulnerability detection:
python3 scanner.py 192.168.1.1 -p top100 --vulnsFull reconnaissance:
python3 scanner.py target.com -p common --banner --vulns --os --traceroute --dnsExport results:
python3 scanner.py target.com -p common -o results.jsonBasic TTL-based detection:
python3 scanner.py target.com --osEnhanced detection with traceroute:
python3 scanner.py target.com --os --traceroute| Option | Description |
|---|---|
target |
IP address, hostname, or CIDR network |
-p, --ports |
Ports to scan (common, top100, all, or custom) |
-t, --threads |
Number of threads (default: 200) |
-T, --timeout |
Timeout in seconds (default: 2.0) |
--ping |
Perform network ping sweep |
--os |
Perform OS detection |
--traceroute |
Use traceroute for accurate OS detection |
--dns |
Perform DNS lookup |
--banner |
Grab service banners |
--vulns |
Check for common vulnerabilities |
-o, --output |
Save results to file |
--format |
Output format (json or txt) |
common- 19 most common portstop100- Top 100 commonly used portsall- All 65535 ports80,443,8080- Comma-separated list1-1000- Port range20-25,80,443- Combined specification