Masscan seems to only perform ARP requests to find the gateway, making it resolve any host IP, even those in the same subnet, to the gateway’s mac address.
This causes some false negatives for machines in the same subnet if the gateway decides not to forward the tcp packet to the same subnet
I understand that ARP requests are a little out of scope for a scanner like masscan, so could it perhaps be documented somewhere on the main page? Or perhaps a warning of some sort could be displayed when attempting to scan the same subnet?
Masscan seems to only perform ARP requests to find the gateway, making it resolve any host IP, even those in the same subnet, to the gateway’s mac address.
This causes some false negatives for machines in the same subnet if the gateway decides not to forward the tcp packet to the same subnet
I understand that ARP requests are a little out of scope for a scanner like masscan, so could it perhaps be documented somewhere on the main page? Or perhaps a warning of some sort could be displayed when attempting to scan the same subnet?