### Example Output for -addr Scan Source: https://context7.com/xtls/realitlscanner/llms.txt Example log output showing connected targets, TLS version, ALPN protocol, domain, and issuer. ```text 2024/02/08 20:51:10 INFO Connected to target feasible=true host=107.172.103.9 tls=1.3 alpn=h2 domain=rocky-linux.tk issuer="Let's Encrypt" 2024/02/08 20:51:10 INFO Connected to target feasible=true host=107.172.103.11 tls=1.3 alpn=h2 domain=rn.allinai.dev issuer="Let's Encrypt" ``` -------------------------------- ### Feasible Target Output Example Source: https://context7.com/xtls/realitlscanner/llms.txt Example log output for a connected target that meets the feasibility criteria (TLS 1.3, h2 ALPN, valid cert info). ```text # 2024/02/08 20:51:00 INFO Enabled GeoIP # 2024/02/08 20:51:10 INFO Connected to target feasible=true host=1.1.1.1 ... geo=US ``` -------------------------------- ### Build and Run with Docker Source: https://github.com/xtls/realitlscanner/blob/main/README.md Build the container image and execute the scanner without requiring a local Go installation. ```bash docker build -t realitlscanner . ``` ```bash # show help docker run --rm realitlscanner # scan docker run --rm realitlscanner -addr 1.1.1.1 ``` -------------------------------- ### Non-Feasible Target Output Example (Debug) Source: https://context7.com/xtls/realitlscanner/llms.txt Example log output for a non-feasible target when running in debug mode (-v). Shows details like TLS version and ALPN negotiation. ```text # DEBUG Connected to target feasible=false ip=192.168.1.20 tls=1.2 alpn=http/1.1 cert-domain=old-server.local cert-issuer="Self-signed" ``` -------------------------------- ### Scanner Output Examples Source: https://github.com/xtls/realitlscanner/blob/main/README.md Sample stdout logs and CSV output generated by the scanner. ```text 2024/02/08 20:51:10 INFO Started all scanning threads time=2024-02-08T20:51:10.017+08:00 2024/02/08 20:51:10 INFO Connected to target feasible=true host=107.172.103.9 tls=1.3 alpn=h2 domain=rocky-linux.tk issuer="Let's Encrypt" 2024/02/08 20:51:10 INFO Connected to target feasible=true host=107.172.103.11 tls=1.3 alpn=h2 domain=rn.allinai.dev issuer="Let's Encrypt" 2024/02/08 20:51:13 INFO Connected to target feasible=true host=107.172.103.16 tls=1.3 alpn=h2 domain=san.hiddify01.foshou.vip issuer="Let's Encrypt" 2024/02/08 20:51:13 INFO Connected to target feasible=true host=107.172.103.19 tls=1.3 alpn=h2 domain=mgzx19.cnscholar.top issuer="Let's Encrypt" 2024/02/08 20:51:13 INFO Connected to target feasible=true host=107.172.103.22 tls=1.3 alpn=h2 domain=hy2.znull.top issuer=ZeroSSL 2024/02/08 20:51:21 INFO Connected to target feasible=true host=107.172.103.37 tls=1.3 alpn=h2 domain=c1.webgenbd.com issuer="Let's Encrypt" 2024/02/08 20:51:23 INFO Connected to target feasible=true host=107.172.103.46 tls=1.3 alpn=h2 domain=racknerd.myideal.xyz issuer="Let's Encrypt" 2024/02/08 20:51:38 INFO Scanning completed time=2024-02-08T20:51:38.988+08:00 elapsed=28.97043s ``` ```csv IP,ORIGIN,CERT_DOMAIN,CERT_ISSUER,GEO_CODE 202.70.64.2,ntc.net.np,*.ntc.net.np,"GlobalSign nv-sa",NP 196.200.160.70,mirror.marwan.ma,mirror.marwan.ma,"Let's Encrypt",MA 103.194.167.213,mirror.i3d.net,*.i3d.net,"Sectigo Limited",JP 194.127.172.131,nl.mirrors.clouvider.net,nl.mirrors.clouvider.net,"Let's Encrypt",NL 202.36.220.86,mirror.2degrees.nz,mirror.2degrees.nz,"Let's Encrypt",NZ 202.36.220.86,ubuntu.mirrors.theom.nz,mirror.2degrees.nz,"Let's Encrypt",NZ 158.37.28.65,ubuntu.hi.no,alma.hi.no,"Let's Encrypt",NO 193.136.164.6,ftp.rnl.tecnico.ulisboa.pt,ftp.rnl.ist.utl.pt,"Let's Encrypt",PT 75.2.60.5,cesium.di.uminho.pt,cesium.di.uminho.pt,"Let's Encrypt",US 195.14.50.21,mirror.corbina.net,ftp.corbina.net,"Let's Encrypt",RU ``` -------------------------------- ### CSV Output Format Example Source: https://context7.com/xtls/realitlscanner/llms.txt Example of the CSV output format, showing columns for IP, origin, certificate domain, issuer, and GeoIP country code. ```text IP,ORIGIN,CERT_DOMAIN,CERT_ISSUER,GEO_CODE 1.1.1.1,1.1.1.1,cloudflare-dns.com,"Cloudflare, Inc.",US 8.8.8.8,8.8.8.8,dns.google,"Google Trust Services LLC",US ``` -------------------------------- ### Example Log Output for -url Scan Source: https://context7.com/xtls/realitlscanner/llms.txt Example log output during a URL crawl scan, showing fetching status, parsed domain count, and thread initiation. ```text 2024/02/08 20:51:00 INFO Fetching url... 2024/02/08 20:51:01 INFO Parsed domains count=150 2024/02/08 20:51:01 INFO Started all scanning threads ``` -------------------------------- ### Build RealiTLScanner Docker Image Source: https://context7.com/xtls/realitlscanner/llms.txt Build a Docker image for RealiTLScanner. This allows running the scanner in a containerized environment without local Go installation. ```bash docker build -t realitlscanner . ``` -------------------------------- ### Build the Scanner Source: https://github.com/xtls/realitlscanner/blob/main/README.md Compile the project from source using Go. ```bash go build ``` -------------------------------- ### Build and Run RealiTLScanner Source: https://context7.com/xtls/realitlscanner/llms.txt Build the scanner using 'go build' and run it with various command-line flags to scan targets. ```bash go build ``` ```bash ./RealiTLScanner ``` ```bash ./RealiTLScanner -addr 1.2.3.4 ``` ```bash ./RealiTLScanner -addr www.microsoft.com ``` ```bash ./RealiTLScanner -addr 107.172.103.0/24 ``` ```bash ./RealiTLScanner -in targets.txt ``` ```bash ./RealiTLScanner -url https://launchpad.net/ubuntu/+archivemirrors ``` ```bash ./RealiTLScanner -addr 1.1.1.1 -port 443 -thread 10 -timeout 5 -out results.csv -v ``` -------------------------------- ### Run RealiTLScanner with GeoIP Enabled Source: https://context7.com/xtls/realitlscanner/llms.txt Execute the scanner with GeoIP enabled by placing the 'Country.mmdb' file in the working directory. The GEO_CODE column in the output will be populated. ```bash ./RealiTLScanner -addr 1.1.1.1 ``` -------------------------------- ### Run RealiTLScanner Docker with Custom Parameters Source: https://context7.com/xtls/realitlscanner/llms.txt Run the Docker container with custom scan parameters, such as specifying an IP range, thread count, and timeout duration. ```bash docker run --rm realitlscanner -addr 8.8.8.0/24 -thread 10 -timeout 5 ``` -------------------------------- ### Run RealiTLScanner in Verbose Mode Source: https://context7.com/xtls/realitlscanner/llms.txt Execute the scanner in verbose mode to see all connection attempts, including non-feasible ones. Useful for detailed debugging. ```bash ./RealiTLScanner -addr 192.168.1.0/24 -v ``` -------------------------------- ### Mount Targets and Output Directories in Docker Source: https://context7.com/xtls/realitlscanner/llms.txt Run the Docker container while mounting local directories for input targets and output results. This allows persistent storage of scan data. ```bash docker run --rm \ -v $(pwd)/targets.txt:/app/targets.txt \ -v $(pwd)/output:/app/output \ realitlscanner -in /app/targets.txt -out /app/output/results.csv ``` -------------------------------- ### Run the Scanner Locally Source: https://github.com/xtls/realitlscanner/blob/main/README.md Execute the scanner with various flags for target specification, output formatting, and performance tuning. ```bash # Show help ./RealiTLScanner # Scan a specific IP, IP CIDR or domain: ./RealiTLScanner -addr 1.2.3.4 # Note: infinity mode will be enabled automatically if `addr` is an IP or domain # Scan a list of targets from a file (targets should be divided by line break): ./RealiTLScanner -in in.txt # Crawl domains from a URL and scan: ./RealiTLScanner -url https://launchpad.net/ubuntu/+archivemirrors # Specify a port to scan, default: 443 ./RealiTLScanner -addr 1.1.1.1 -port 443 # Show verbose output, including failed scans and infeasible targets: ./RealiTLScanner -addr 1.2.3.0/24 -v # Save results to a file, default: out.csv ./RealiTLScanner -addr www.microsoft.com -out file.csv # Set a thread count, default: 1 ./RealiTLScanner -addr wiki.ubuntu.com -thread 10 # Set a timeout for each scan, default: 10 (seconds) ./RealiTLScanner -addr 107.172.1.1/16 -timeout 5 ``` -------------------------------- ### Run RealiTLScanner Docker Container Source: https://context7.com/xtls/realitlscanner/llms.txt Execute the RealiTLScanner Docker container to scan a single IP address. The '--rm' flag automatically removes the container after execution. ```bash docker run --rm realitlscanner -addr 1.1.1.1 ``` -------------------------------- ### Mount GeoIP Database in Docker Source: https://context7.com/xtls/realitlscanner/llms.txt Run the Docker container with the GeoIP database mounted. This enables geographic location data in the scan results when using the container. ```bash docker run --rm \ -v $(pwd)/Country.mmdb:/app/Country.mmdb \ realitlscanner -addr 1.1.1.1 ``` -------------------------------- ### Configure Scan Parameters Source: https://context7.com/xtls/realitlscanner/llms.txt Configure scan behavior using flags for port, concurrency, timeout, output file, verbose logging, and IPv6 support. ```bash ./RealiTLScanner -addr 1.1.1.1 -port 8443 ``` ```bash ./RealiTLScanner -addr 10.0.0.0/16 -thread 20 ``` ```bash ./RealiTLScanner -addr 1.1.1.1 -timeout 5 ``` ```bash ./RealiTLScanner -addr 1.1.1.1 -out my_results.csv ``` ```bash ./RealiTLScanner -addr 1.1.1.1 -v ``` ```bash ./RealiTLScanner -addr ::1 -46 ``` ```bash ./RealiTLScanner -addr 172.16.0.0/12 -port 443 -thread 50 -timeout 3 -out enterprise_scan.csv -v -46 ``` -------------------------------- ### Crawl Domains from URL with -url Source: https://context7.com/xtls/realitlscanner/llms.txt Use the -url flag to fetch a webpage, extract domains from HTTP/HTTPS links, and scan them. Useful for mirror lists or directories. ```bash ./RealiTLScanner -url https://launchpad.net/ubuntu/+archivemirrors -thread 10 ``` -------------------------------- ### Scan from File with -in Source: https://context7.com/xtls/realitlscanner/llms.txt Use the -in flag to read targets from a file, with one target per line. Supports IP addresses, CIDR ranges, and domain names. ```bash cat > targets.txt << EOF 1.1.1.1 8.8.8.8 cloudflare.com 192.168.1.0/24 example.org EOF ``` ```bash ./RealiTLScanner -in targets.txt -thread 5 -out scan_results.csv ``` -------------------------------- ### Download GeoIP Database Source: https://context7.com/xtls/realitlscanner/llms.txt Download the GeoIP Country database from the official releases. This file is required for the scanner to provide geographic location data. ```bash wget -O Country.mmdb https://github.com/Loyalsoldier/geoip/releases/latest/download/Country.mmdb ``` -------------------------------- ### Count Certificates by Issuer Source: https://context7.com/xtls/realitlscanner/llms.txt Use standard Unix tools to count unique certificate issuers from the CSV output. Requires the output to be comma-separated. ```bash cut -d',' -f4 microsoft.csv | sort | uniq -c | sort -rn ``` -------------------------------- ### Scan Single Address with -addr Source: https://context7.com/xtls/realitlscanner/llms.txt Use the -addr flag to scan a specific IP address, domain, or CIDR range. Enables 'infinite mode' for continuous expansion. ```bash ./RealiTLScanner -addr 1.1.1.1 ``` ```bash ./RealiTLScanner -addr cloudflare.com ``` ```bash ./RealiTLScanner -addr 192.168.1.0/24 ``` ```bash ./RealiTLScanner -addr 107.172.103.0/24 -v ``` -------------------------------- ### CSV Output Format Structure Source: https://context7.com/xtls/realitlscanner/llms.txt Defines the structure of the CSV output, listing the columns and their meaning. ```bash # Run a scan ./RealiTLScanner -addr www.microsoft.com -out microsoft.csv # CSV format structure: ``` -------------------------------- ### Filter CSV Output by Country Code Source: https://context7.com/xtls/realitlscanner/llms.txt Filter the CSV output to show only entries for a specific country code, such as 'US'. Assumes the country code is the last field in the CSV. ```bash grep ',US$' microsoft.csv ``` === COMPLETE CONTENT === This response contains all available snippets from this library. No additional content exists. Do not make further requests.