Tom Moertel's Weblog: Concurrent port scanner in Haskell http://blog.moertel.com/articles/2004/03/13/concurrent-port-scanner-in-haskell en-us 40 Quality rants on programming theory and stuff geeks like Concurrent port scanner in Haskell <p>In <a href="http://www.hulver.com/scoop/story/2004/3/11/154543/749">another draft of his article about Scheme programming</a>, <a href="http://www.hulver.com/scoop/user/jacob">jacob</a> shows how he approaches the problem of writing a <span class="caps">TCP</span> port scanner. That seemed like a fun problem, and so I whipped up this version in one of my favorite programming languages, Haskell:</p> <div class="typocode"><pre><code class="typocode_haskell "><span class='keyword'>module</span> <span class='conid'>Main</span> <span class='layout'>(</span><span class='varid'>main</span><span class='layout'>)</span> <span class='keyword'>where</span> <span class='keyword'>import</span> <span class='conid'>Control</span><span class='varop'>.</span><span class='conid'>Concurrent</span> <span class='keyword'>import</span> <span class='conid'>Control</span><span class='varop'>.</span><span class='conid'>Exception</span> <span class='keyword'>import</span> <span class='conid'>Data</span><span class='varop'>.</span><span class='conid'>Maybe</span> <span class='keyword'>import</span> <span class='conid'>Network</span> <span class='keyword'>import</span> <span class='conid'>Network</span><span class='varop'>.</span><span class='conid'>BSD</span> <span class='keyword'>import</span> <span class='conid'>System</span><span class='varop'>.</span><span class='conid'>Environment</span> <span class='keyword'>import</span> <span class='conid'>System</span><span class='varop'>.</span><span class='conid'>Exit</span> <span class='keyword'>import</span> <span class='conid'>System</span><span class='varop'>.</span><span class='conid'>IO</span> <span class='varid'>main</span> <span class='keyglyph'>::</span> <span class='conid'>IO</span> <span class='layout'>(</span><span class='layout'>)</span> <span class='varid'>main</span> <span class='keyglyph'>=</span> <span class='keyword'>do</span> <span class='varid'>args</span> <span class='keyglyph'>&lt;-</span> <span class='varid'>getArgs</span> <span class='keyword'>case</span> <span class='varid'>args</span> <span class='keyword'>of</span> <span class='keyglyph'>[</span><span class='varid'>host</span><span class='layout'>,</span> <span class='varid'>from</span><span class='layout'>,</span> <span class='varid'>to</span><span class='keyglyph'>]</span> <span class='keyglyph'>-&gt;</span> <span class='varid'>withSocketsDo</span> <span class='varop'>$</span> <span class='varid'>scanRange</span> <span class='varid'>host</span> <span class='keyglyph'>[</span><span class='varid'>read</span> <span class='varid'>from</span> <span class='keyglyph'>..</span> <span class='varid'>read</span> <span class='varid'>to</span><span class='keyglyph'>]</span> <span class='keyword'>_</span> <span class='keyglyph'>-&gt;</span> <span class='varid'>usage</span> <span class='varid'>usage</span> <span class='keyglyph'>=</span> <span class='keyword'>do</span> <span class='varid'>hPutStrLn</span> <span class='varid'>stderr</span> <span class='str'>"Usage: Portscan host from_port to_port"</span> <span class='varid'>exitFailure</span> <span class='varid'>scanRange</span> <span class='varid'>host</span> <span class='varid'>ports</span> <span class='keyglyph'>=</span> <span class='varid'>mapM</span> <span class='layout'>(</span><span class='varid'>threadWithChannel</span> <span class='varop'>.</span> <span class='varid'>scanPort</span> <span class='varid'>host</span> <span class='varop'>.</span> <span class='varid'>fromIntegral</span><span class='layout'>)</span> <span class='varid'>ports</span> <span class='varop'>&gt;&gt;=</span> <span class='varid'>mapM_</span> <span class='varid'>hitCheck</span> <span class='keyword'>where</span> <span class='varid'>hitCheck</span> <span class='varid'>mvar</span> <span class='keyglyph'>=</span> <span class='varid'>takeMVar</span> <span class='varid'>mvar</span> <span class='varop'>&gt;&gt;=</span> <span class='varid'>maybe</span> <span class='layout'>(</span><span class='varid'>return</span> <span class='layout'>(</span><span class='layout'>)</span><span class='layout'>)</span> <span class='varid'>printHit</span> <span class='varid'>printHit</span> <span class='varid'>port</span> <span class='keyglyph'>=</span> <span class='varid'>putStrLn</span> <span class='varop'>=&lt;&lt;</span> <span class='varid'>showService</span> <span class='varid'>port</span> <span class='varid'>threadWithChannel</span> <span class='varid'>action</span> <span class='keyglyph'>=</span> <span class='keyword'>do</span> <span class='varid'>mvar</span> <span class='keyglyph'>&lt;-</span> <span class='varid'>newEmptyMVar</span> <span class='varid'>forkIO</span> <span class='layout'>(</span><span class='varid'>action</span> <span class='varop'>&gt;&gt;=</span> <span class='varid'>putMVar</span> <span class='varid'>mvar</span><span class='layout'>)</span> <span class='varid'>return</span> <span class='varid'>mvar</span> <span class='varid'>scanPort</span> <span class='varid'>host</span> <span class='varid'>port</span> <span class='keyglyph'>=</span> <span class='varid'>withDefault</span> <span class='conid'>Nothing</span> <span class='layout'>(</span><span class='varid'>tryPort</span> <span class='varop'>&gt;&gt;</span> <span class='varid'>return</span> <span class='layout'>(</span><span class='conid'>Just</span> <span class='varid'>port</span><span class='layout'>)</span><span class='layout'>)</span> <span class='keyword'>where</span> <span class='varid'>tryPort</span> <span class='keyglyph'>=</span> <span class='varid'>connectTo</span> <span class='varid'>host</span> <span class='layout'>(</span><span class='conid'>PortNumber</span> <span class='varid'>port</span><span class='layout'>)</span> <span class='varop'>&gt;&gt;=</span> <span class='varid'>hClose</span> <span class='varid'>showService</span> <span class='varid'>port</span> <span class='keyglyph'>=</span> <span class='varid'>withDefault</span> <span class='layout'>(</span><span class='varid'>show</span> <span class='varid'>port</span><span class='layout'>)</span> <span class='varop'>$</span> <span class='keyword'>do</span> <span class='varid'>service</span> <span class='keyglyph'>&lt;-</span> <span class='varid'>getServiceByPort</span> <span class='varid'>port</span> <span class='str'>"tcp"</span> <span class='varid'>return</span> <span class='layout'>(</span><span class='varid'>show</span> <span class='varid'>port</span> <span class='varop'>++</span> <span class='str'>" "</span> <span class='varop'>++</span> <span class='varid'>serviceName</span> <span class='varid'>service</span><span class='layout'>)</span> <span class='varid'>withDefault</span> <span class='varid'>defaultVal</span> <span class='varid'>action</span> <span class='keyglyph'>=</span> <span class='varid'>handle</span> <span class='layout'>(</span><span class='varid'>const</span> <span class='varop'>$</span> <span class='varid'>return</span> <span class='varid'>defaultVal</span><span class='layout'>)</span> <span class='varid'>action</span> <span class='comment'>-- Local Variables: ***</span> <span class='comment'>-- compile-command: "ghc -o Portscan --make Portscan.hs" ***</span> <span class='comment'>-- End: ***</span> </code></pre></div> <p>Example usage:</p> <pre><code>$ ./Portscan internalhost.moertel.com 1 1000 21 ftp 22 ssh 80 http 111 sunrpc 139 netbios-ssn 443 https 445 microsoft-ds 631 ipp 709 720 </code></pre> <p>Care to give it a try in your favorite programming language?</p> Sat, 13 Mar 2004 12:00:00 -0500 urn:uuid:cedf8f106befcdd45ce56e04601c3ae7 Tom Moertel http://blog.moertel.com/articles/2004/03/13/concurrent-port-scanner-in-haskell programming haskell haskell portscan http://blog.moertel.com/articles/trackback/38 "Concurrent port scanner in Haskell" by tasos <p>oh my god</p> Tue, 13 Feb 2007 09:38:49 -0500 urn:uuid:dfe82101-83b0-4d03-a817-e724f80c248c http://blog.moertel.com/articles/2004/03/13/concurrent-port-scanner-in-haskell#comment-377 "Concurrent port scanner in Haskell" by nothingmuch <p>FWIW, your version is connect based while the versions he seemed to like abstract over pcap or something like that.</p> <p>I personally found the code pretty clear and interesting, and surprisingly concise for it&#8217;s async nature.</p> <p>What I would do to improve it as someone who is not really used to haskell is to use less point-free notation where crucial decisions are being made. This way bits of data that have significance are bound to symbols at the point where they make a difference, helping to draw attension to more subtle details.</p> <p>But maybe I&#8217;m just not used to reading haskell ;-)</p> Fri, 16 Jun 2006 11:08:54 -0400 urn:uuid: http://blog.moertel.com/articles/2004/03/13/concurrent-port-scanner-in-haskell#comment-129 "Concurrent port scanner in Haskell" by Kay <p>Awesome. That&#8217;s some well-written Haskell code.</p> <p>I&#8217;ve never seen the &#8220;case args of [a,b,c]&#8221; thing before. I&#8217;ve been doing it with &#8221;!!&#8221;.</p> <p>Also, you should post this on the haskell wiki.</p> Wed, 01 Feb 2006 20:58:31 -0500 urn:uuid: http://blog.moertel.com/articles/2004/03/13/concurrent-port-scanner-in-haskell#comment-111