# Install synscan with Homebrew

Asynchronous half-open TCP portscanner. Version 5.02 via Homebrew; verified 2026-06-25.

## Install

```sh
sudo av install brew:synscan
```

Additional install commands:

### macOS

- Homebrew (100%):

```sh
brew install synscan
```

  Evidence: local Homebrew formula metadata

## Package facts

- **Package key:** brew:synscan
- **Package manager:** Homebrew
- **Package manager page:** <https://formulae.brew.sh/formula/synscan>
- **Version:** 5.02
- **Source summary:** Asynchronous half-open TCP portscanner
- **Homepage:** <https://digit-labs.org/files/tools/synscan/>
- **Upstream docs:** <https://digit-labs.org/files/tools/synscan>
- **License:** GPL-2.0-or-later
- **Source archive:** <https://digit-labs.org/files/tools/synscan/releases/synscan-5.02.tar.gz>
- **Last updated:** 2026-06-25T13:38:09+02:00
- **Generated:** 2026-07-08T07:18:31+00:00

## Executables

- sslog (cli)
- synscan (cli)
- sslog (alias)
- synscan (alias)

## Dependencies

- libpcap

## Install behavior

- Post-install hook: not defined
- Bottle: available on arm64_big_sur, arm64_linux, arm64_monterey, arm64_sequoia, arm64_sonoma, arm64_tahoe, arm64_ventura, big_sur, catalina, monterey, sonoma, ventura

## Freshness

- Page generated: 2026-07-08
- Package-manager version: 5.02
- Package-manager updated: 2026-06-25
- Local data: ok
- Upstream repository: https://digit-labs.org/files/tools/synscan/
- info: Release/tag comparison is only available for GitHub repositories.
## Project history and usage

synscan is a small security CLI: an asynchronous half-open TCP port scanner packaged by Homebrew for users who want a fast SYN-scan tool outside larger scanner suites.

### Project history

The official digit-labs page describes Synscan as an asynchronous half-open TCP port scanner that sends TCP packets with the SYN flag to blocks of destination addresses as fast as the host interface and kernel can support.

The same page records a compact lineage: Synscan versions up to 3.9b6 were based on version 1.6 by psychoid/tCl, while Synscan 5.0 was a complete rewrite with a cleaner codebase, efficiency improvements, checksum fixes, adjustable scan timing, and a simpler design intended to allow future IPv6 support.

### Adoption history

The input package facts show Homebrew packaging for `synscan`. Upstream also lists releases as tarballs and says the tool was known to compile on Linux, xBSD, Mac OS X, and Solaris, which explains why a portable Unix package manager would carry it.

### How it is used

synscan is used from the command line to perform half-open TCP port scans against ranges of destination addresses. Its companion executable `sslog` is also listed in the Homebrew-derived input facts.

The tool sits in the older Unix security-tool tradition: focused source tarballs, direct packet behavior, and terse CLI usage rather than a large service or framework.

### Why package nerds care

Package nerds care about synscan because it is the kind of sharp, single-purpose network tool that package managers preserve even when its upstream surface is just a small project page and release tarballs.

Its portability notes across Linux, BSD, macOS, and Solaris make it a good example of formula maintenance for low-level networking code.

### Timeline

- Pre-5.0: Synscan versions through 3.9b6 were based on version 1.6 by psychoid/tCl.
- 5.0: Synscan was rewritten with efficiency, checksum, timing, and design changes.
- 5.02: The digit-labs page lists synscan-5.02.tar.gz as the newest non-beta release.

### Related projects

- The official page points to the earlier bindshell.net synscan page and credits version 1.6 by psychoid/tCl as the base for older releases.
- In package taxonomies, synscan is adjacent to other TCP port scanners and packet-level security utilities.

### Sources

- <https://www.digit-labs.org/files/tools/synscan/>
- input source_facts.executables and source_facts.package-manager


## Security Notes

broad file, network, media, or database tool signal.

- **Geiger risk:** blue / medium
- broad file, network, media, or database tool signal

## Source Database Details

- **Source Database:** Homebrew formula API
- **Tap:** homebrew/core
- **Full Name:** synscan
- **Version Scheme:** 0
- **Revision:** 1
- **Bottle Stable Root URL:** <https://ghcr.io/v2/homebrew/core>
- **Deprecated:** no
- **Disabled:** no
- **Keg Only:** no
- **URL Keys:** stable


## Related links

- [Secret-risk packages](https://www.automicvault.com/pkg/secret-risk-packages/) - Has protected-tool coverage, approval-gate, or non-low Geiger security signals.
- [Terminal utility packages](https://www.automicvault.com/pkg/terminal-utilities/) - Matched terminal and command-line workflow metadata.
- [Networking and protocol packages](https://www.automicvault.com/pkg/networking-protocol-tools/) - Matched network, protocol, or remote-service metadata.
- [Security and crypto packages](https://www.automicvault.com/pkg/security-crypto-tools/) - Matched security, identity, cryptography, password, signing, or certificate metadata.
- [libpcap](https://www.automicvault.com/pkg/brew/libpcap/) - Runtime dependency declared by Homebrew.
- [masscan](https://www.automicvault.com/pkg/brew/masscan/) - Shares av.db curated category or tags: cli, network-scanning, port-scanner, security, tcp.
- [naabu](https://www.automicvault.com/pkg/brew/naabu/) - Shares av.db curated category or tags: cli, network-scanning, port-scanner, security.
- [nmap](https://www.automicvault.com/pkg/brew/nmap/) - Shares av.db curated category or tags: cli, network-scanning, port-scanner, security.
- [ike-scan](https://www.automicvault.com/pkg/brew/ike-scan/) - Shares av.db curated category or tags: cli, network-scanning, security.
- [rshijack](https://www.automicvault.com/pkg/brew/rshijack/) - Shares av.db curated category or tags: cli, security, tcp.
- [rustscan](https://www.automicvault.com/pkg/brew/rustscan/) - Shares av.db curated category or tags: cli, port-scanner, security.
- [scilla](https://www.automicvault.com/pkg/brew/scilla/) - Shares av.db curated category or tags: cli, port-scanner, security.
- [acme.sh](https://www.automicvault.com/pkg/brew/acme-sh/) - Shares av.db curated category or tags: cli, security.

## Combined YAML source

View the package source record on GitHub. [combined/synscan.yml](https://github.com/automic-vault/db/blob/main/combined/synscan.yml)


## Sources

- Nucleus package database
- Geiger risk classifier
- package-page enrichment
- curated package history
- package version freshness
- av.db category and tag curation
- package relationship graph
- cross-ecosystem install command graph
