Alternative to NLChecker

[RocketRacoon]

Hey guys, I have been using NLChecker in order to get NON-standard RDP ports, but i want to test another options in order to compare results and time spent in checking IP lists!

Also If someone could help me or guide me...

For example do you use a big list with just one port for example:
masscan with one por 3395->then NLChecker
or
masscan with several ports lets say 100 ports 3385,3365,3341,3325, etc and then NLChecker

Hopefully you can help with this!

PS> If someone is capable to bring me a solution for this, where I can get quick and accurate IP list for RDP with NON-standard ports, we can partnership in some way if you are looking for access!

 

[Prokhorenco]

A way i can think of is the following:

1. Find IP ranges you want to scan for: Here
2. masscan -p<PORT(S)> -Pn -sS -iL targets.txt --rate 10000 --excludefile block.txt | awk '{print $4}' > results.txt
3. Then nmap scan the discovered IPs from results.txt and feed the nmap output into a tool called BruteSpray

For checking for RDP on nonstandard ports you could just use nmap to scan all ports (-p-) and then look for the service and version on those ports: nmap -sC -sV -p- -iL results.txt -oA finals.txt. From here just grep out the IPs and nonstandard ports from finals.txt into another file.