Skip to content

bad-antics/nullsec-netprobe

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
README.md
README.md
 
 
netprobe.nim
netprobe.nim
 
 

Repository files navigation

nullsec-netprobe

    ███▄    █  █    ██  ██▓     ██▓      ██████ ▓█████  ▄████▄  
    ██ ▀█   █  ██  ▓██▒▓██▒    ▓██▒    ▒██    ▒ ▓█   ▀ ▒██▀ ▀█  
   ▓██  ▀█ ██▒▓██  ▒██░▒██░    ▒██░    ░ ▓██▄   ▒███   ▒▓█    ▄ 
   ▓██▒  ▐▌██▒▓▓█  ░██░▒██░    ▒██░      ▒   ██▒▒▓█  ▄ ▒▓▓▄ ▄██▒
   ▒██░   ▓██░▒▒█████▓ ░██████▒░██████▒▒██████▒▒░▒████▒▒ ▓███▀ ░
   ░ ▒░   ▒ ▒ ░▒▓▒ ▒ ▒ ░ ▒░▓  ░░ ▒░▓  ░▒ ▒▓▒ ▒ ░░░ ▒░ ░░ ░▒ ▒  ░
   ░ ░░   ░ ▒░░░▒░ ░ ░ ░ ░ ▒  ░░ ░ ▒  ░░ ░▒  ░ ░ ░ ░  ░  ░  ▒   
      ░   ░ ░  ░░░ ░ ░   ░ ░     ░ ░   ░  ░  ░     ░   ░        
            ░                          ░    ░           ░        
   ▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄
   █░░░░░░░░░░░░░░░░ N E T P R O B E ░░░░░░░░░░░░░░░░░░░░░░░░█
   ▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀
                       bad-antics

Nim

Overview

nullsec-netprobe is a stealthy network reconnaissance tool written in Nim. Compiles to tiny native binaries with minimal footprint, perfect for covert operations and embedded deployment.

Features

  • 🔍 Service Detection - Banner grabbing and version fingerprinting
  • 🌐 DNS Enumeration - Zone transfers, subdomain brute-force
  • 🎭 Stealth Scans - SYN, FIN, NULL, XMAS scan modes
  • 📡 ARP Discovery - Local network mapping
  • 🔐 SSL/TLS Analysis - Certificate inspection, cipher enumeration
  • 📊 OS Fingerprinting - TCP/IP stack analysis

Requirements

  • Nim 2.0+
  • libpcap (for raw packet operations)
  • Root privileges (for raw sockets)

Installation

git clone https://github.com/bad-antics/nullsec-netprobe.git
cd nullsec-netprobe
nim c -d:release --opt:size netprobe.nim
strip netprobe

Usage

# Quick TCP scan
./netprobe scan -t 192.168.1.1 -p 1-1000

# Stealth SYN scan
./netprobe scan -t 192.168.1.0/24 -p 22,80,443 --syn

# DNS enumeration
./netprobe dns -d example.com --subdomains wordlist.txt

# ARP scan local network
./netprobe arp -i eth0

# SSL certificate analysis
./netprobe ssl -t 192.168.1.1 -p 443

# OS fingerprinting
./netprobe os -t 192.168.1.1

Options

Flag Description
-t, --target Target IP/hostname/CIDR
-p, --ports Port(s) to scan
-i, --interface Network interface
--syn SYN stealth scan
--fin FIN scan
--null NULL scan
--xmas XMAS scan
-T, --timing Timing (0-5)
-o, --output Output file

Binary Size

Nim compiles to efficient native code:

  • Debug: ~500KB
  • Release: ~150KB
  • Release + Strip + UPX: ~50KB

Disclaimer

For authorized security testing only. Unauthorized network scanning is illegal.

License

NullSec Proprietary License

Author

bad-antics - NullSec Security Team

Part of the NullSec Security Toolkit

GitHub Discord

About

Stealthy network reconnaissance toolkit in Nim

Topics

security nim async rate-limiting pentesting port-scanner recon network-scanner reconnaissance security-hardened nullsec

Resources

Readme
Activity

Stars

2 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages