TL;DR — Quick Summary
RustScan scans all 65,535 ports in under 3 seconds, then pipes results to Nmap for service detection. The fastest port scanner, written in Rust.
RustScan finds open ports in seconds. All 65,535 ports, then Nmap takes over for the deep analysis.
Installation
# macOS
brew install rustscan
# Cargo
cargo install rustscan
# Docker
docker pull rustscan/rustscanUsage
# Scan all ports
rustscan -a 192.168.1.1
# Scan with Nmap service detection
rustscan -a 192.168.1.1 -- -sV
# Specific ports
rustscan -a 192.168.1.1 -p 80,443,8080
# Port range
rustscan -a 192.168.1.1 -r 1-1000
# Multiple targets
rustscan -a 192.168.1.1,192.168.1.2
# Rate limiting
rustscan -a 192.168.1.1 --ulimit 5000
# Timeout
rustscan -a 192.168.1.1 --timeout 2000
# Nmap flags passthrough
rustscan -a 192.168.1.1 -- -sC -sV -A
# Output
rustscan -a 192.168.1.1 --greppableSummary
- RustScan scans all 65,535 ports in seconds (3s on localhost)
- Auto-pipes results to Nmap for service/vulnerability detection
- Adaptive rate limiting to avoid overwhelming targets
- Docker support for isolated scanning environments
- Written in Rust — fast, safe, cross-platform