macOS
brew install masscanlocal Homebrew formula metadata
sudo port install masscanMacPorts ports tree · net/masscan/Portfile · source: api.github.com
brew
TCP port scanner, scans entire Internet in under 5 minutes. Version 1.3.2 via Homebrew; verified from local package data.
install
brew install masscanlocal Homebrew formula metadata
sudo port install masscanMacPorts ports tree · net/masscan/Portfile · source: api.github.com
sudo apk add masscanAlpine Linux edge package indexes · masscan · source: dl-cdn.alpinelinux.org
sudo apt install masscanDebian stable package indexes · masscan · source: deb.debian.org
sudo dnf install masscanFedora Rawhide package metadata · masscan · source: dl.fedoraproject.org
nix profile install nixpkgs#masscannixpkgs package indexes · pkgs/by-name/ma/masscan/package.nix · source: api.github.com
sudo pacman -S masscanArch Linux sync databases · masscan · source: geo.mirror.pkgbuild.com
overview
TCP port scanner, scans entire Internet in under 5 minutes
history
MASSCAN is an Internet-scale TCP port scanner designed to transmit probes asynchronously at very high packet rates. It is packaged as a security and networking CLI because it gives users an `nmap`-like command surface for wide-range scanning rather than deep per-host enumeration.
The public GitHub repository was created in July 2013, and early releases appeared in September and October 2013. The README describes the tool as able to scan the entire Internet in under five minutes from a single machine at up to 10 million packets per second, using its own TCP/IP stack and asynchronous transmit and receive threads.
MASSCAN's 1.0 release arrived in October 2013, and a Kali-tagged prerelease was already published in September 2013. Later releases added practical improvements such as dynamic libpcap loading, memcached support, and IPv6 support in the 1.3.0 line, followed by fixes for the IPv6 transition.
The design section of the README explicitly positions MASSCAN relative to earlier high-speed scanners such as scanrand, unicornscan, and ZMap, while making the command-line and output style familiar to `nmap` users.
MASSCAN is widely adopted for a command-line security tool: the repository has tens of thousands of GitHub stars and thousands of forks, and the supplied package metadata lists packages across Homebrew, Debian, Ubuntu, Fedora, Arch, Alpine, MacPorts, and Nix.
Its package-manager footprint reflects its role in security labs, reconnaissance workflows, and network inventory jobs where users want a readily installable binary rather than building research code by hand.
Users provide ports and target ranges, for example `masscan -p80,8000-8100 10.0.0.0/8`, and can emit or reuse configuration with `--echo` and `-c`. The README documents XML, binary, grepable, JSON, and list output formats.
MASSCAN is tuned for breadth. The README contrasts it with `nmap`: it uses randomized host order, raw packet sending, no default ports, no DNS resolution, and an asynchronous model suited to large address ranges. It also warns that banner grabbing and other TCP interactions can conflict with the host network stack unless source IPs, source ports, and firewall rules are configured carefully.
The default configuration file is `/etc/masscan/masscan.conf`, and command-line settings override that default. The README recommends using exclude files for Internet-scale scans and includes prominent cautions about scanning responsibly.
MASSCAN is package-nerd significant because it is one of the canonical examples of a single-purpose C security tool that package managers make safe to acquire, update, and remove across many Unix-like systems.
It also shows why packaging security tools matters: users get reproducible builds and OS integration for software that otherwise encourages copying binaries or building from source before running high-impact network scans.
security posture
large-scale network scanning tool.
red risk · high confidence · escape-surveillance-offensive
Before unattended agent use, check whether the tool reads plaintext credentials, writes remote state, publishes artifacts, or shells out to plugins.
local files
These source-backed paths show where this package keeps local settings or durable credentials. Automic Vault can use them as review targets for secret scanning, migration, and command approval.
Config paths the tool may read or write during local use.
/etc/masscan/masscan.confexecutables
| Command | Kind | Exposure | Note |
|---|---|---|---|
masscan | cli | global executable |
freshness
These signals separate page generation age, package-manager activity, and upstream release comparison. Version lag is warned only when an evidence URL and comparable versions are present.
https://github.com/robertdavidgraham/masscan
install metadata
| Package key | brew:masscan |
|---|---|
| Version | 1.3.2 |
| Package manager | Homebrew |
| Package manager page | https://formulae.brew.sh/formula/masscan |
| Homepage | https://github.com/robertdavidgraham/masscan/ |
| Repository | https://github.com/robertdavidgraham/masscan |
| Upstream docs | https://github.com/robertdavidgraham/masscan#readme |
| License | AGPL-3.0-only |
| Source archive | https://github.com/robertdavidgraham/masscan/archive/refs/tags/1.3.2.tar.gz |
| Bottle | available (on arm64_big_sur, arm64_linux, arm64_monterey, arm64_sequoia, arm64_sonoma, arm64_tahoe, arm64_ventura, big_sur, catalina, monterey, sonoma, ventura, x86_64_linux) |
| Homebrew post-install | not defined |
| Service | none declared |
registry facts
| Source Database | Homebrew formula API |
|---|---|
| Tap | homebrew/core |
| Full Name | masscan |
| Version Scheme | 0 |
| Revision | 0 |
| Head Version | HEAD |
| Bottle Stable Root URL | https://ghcr.io/v2/homebrew/core |
| Deprecated | no |
| Disabled | no |
| Keg Only | no |
| URL Keys |
|
source database matches
Matches are pulled from external package-manager indexes and kept separate from local Automic Vault package links.
masscan 2:1.3.2+ds1-2
TCP port scanner
https://github.com/robertdavidgraham/masscan
sudo apt install masscanmasscan
nix profile install nixpkgs#masscanmasscan 2:1.3.2+ds1-1
TCP port scanner
https://github.com/robertdavidgraham/masscan
sudo apt install masscanmasscan 1.3.2-r2
TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes
https://github.com/robertdavidgraham/masscan
sudo apk add masscanmasscan-doc 1.3.2-r2
TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes (documentation)
https://github.com/robertdavidgraham/masscan
sudo apk add masscan-docmasscan 1.3.2-15.fc44
This is an Internet-scale port scanner
https://github.com/robertdavidgraham/masscan
sudo dnf install masscanmasscan 1.3.2-2
TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes
https://github.com/robertdavidgraham/masscan
sudo pacman -S masscanmasscan
sudo port install masscansource trail
This page is generated by av-web from the private package SQLite artifact built by scripts/generate-pkg-sqlite.py.
View the package source record on GitHub.