Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/turbo/openftp4

A list of all FTP servers in IPv4 that allow anonymous logins.
https://github.com/turbo/openftp4

ftp web-security

Last synced: about 2 months ago
JSON representation

A list of all FTP servers in IPv4 that allow anonymous logins.

Awesome Lists containing this project

README 

        
# openftp4



This is a list of all FTP servers directly connected to port 21 in the IPv4 address space that allow anonymous logins. The login must be completed in less than 15 seconds to qualify for this list.  



How and why this list was created is documented in detail in my blog post [*Mass-analyzing a chunk of the Internet*](http://255.wf/2016-09-18-mass-analyzing-a-chunk-of-the-internet/). You can do whatever you want with this data. Consider linking to this repo if you find something interesting or odd.



The last scan contains **796,268** servers that allow anonymous access. This is **4.31486 %** of the **18,454,087** services running on port 21 in IPv4.



### Usage



1) Decompress the file



```sh

gzip -d openftp4.txt.gz

```



2) Hack away



### Format



The data follows this loose format:



```text

ip|timestamp|banner

```



- `ip` is the IPv4 address (`^([0-9.]+)\|`).

- `timestamp` is the unix timestamp of the exchange with that server (`^+?\|(\d+)\|`).

- `banner` is **everything** after the second `|` and includes the full initial banner, every response code and the full login exchange (`\|\d+\|(.+)$`).



Just a hint: If you are going to interact in any way with these servers, consider piping the list through `shuf` each time you try something new so you don't hit the same server(s) over and over again. Also, don't sort the list before rescanning, because you will encounter IP slashes that belong to one network. Think about what it looks like from their perspective ;-).



If you want to be extra nice, provide your actual email address (or one you have access to) as the password (blog post for details), so server admins can contact you.



### Donate



It costs $2 per week to keep the scan running. If you want to throw some money our way (for cookies and stuff), please do so at `14MzwUsRfZTygggU39LECLvamDwFpa2Vjj`.



## [![](https://news.ycombinator.com/y18.gif) Discussion](https://news.ycombinator.com/item?id=12523455)



- News: [SoftPedia](http://news.softpedia.com/news/nearly-800-000-ftp-servers-accessible-online-without-authentication-508421.shtml) • [D. Pratt (German)](https://dominicpratt.de/unsichere-ftp-server/) • [IDG: NETWORKWORLD](http://www.networkworld.com/article/3121655/security/teenager-claims-to-have-accessed-ftps-downloaded-data-from-every-state-with-us-domain.html#comments) • [mob3](http://mob3.net/forum/threads/user-scans-all-open-ftp-servers-on-ipv4-posts-ip-results.6391/)

- Discussion elsewehre: [HN](https://news.ycombinator.com/item?id=12527989) • [r/DataHoarder](https://www.reddit.com/r/DataHoarder/comments/53cyhm/list_of_all_anonymous_login_ftp_servers_worldwide/) • [r/opendirectories](https://www.reddit.com/r/opendirectories/comments/53b0ar/a_list_of_all_ftp_servers_in_the_whole_internet/) • [r/netsec](https://www.reddit.com/r/netsec/comments/53bori/massanalyzing_a_chunk_of_the_internet/) • [r/sysadmin](https://www.reddit.com/r/sysadmin/comments/53cor1/someone_just_posted_every_open_ftp_server_on_ipv4/)



### In the Wild



Applications that use this dataset:



- [FTPeek](http://tinyletter.com/theroyals) tries to find interesting things and sends you a newsletter.



### Exclusion



(This doesn't concern FTP servers that are public by design.)



Read the blog post to learn how servers are excluded from this list. This list might be updated in the future. If you want to see your IP excluded from the list should it ever be updated, then consider fixing your stuff.