cryptexctl
diff --git a/‎src/lib.rs‎
Lines changed: 2 additions & 2 deletions b/‎src/lib.rs‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎src/main.rs‎
Lines changed: 23 additions & 10 deletions b/‎src/main.rs‎
Lines changed: 23 additions & 10 deletions
diff --git a/‎src/patterns.rs‎
Lines changed: 101 additions & 98 deletions b/‎src/patterns.rs‎
Lines changed: 101 additions & 98 deletions
@@ -1,5 +1,5 @@
+pub mod patterns;
 pub mod scanner;
 pub mod service_detection;
-pub mod patterns;
+pub mod types;
 pub mod utils;
-pub mod types; 
@@ -1,17 +1,28 @@
+mod patterns;
 mod scanner;
 mod service_detection;
-mod utils;
 mod types;
-mod patterns;
+mod utils;
 
-use std::net::IpAddr;
-use std::str::FromStr;
-use clap::Parser;
-use anyhow::Result;
-use std::collections::HashMap;
 use crate::scanner::Scanner;
 use crate::types::ScanResult;
 use crate::utils::get_mac_vendor_for_ip;
+use anyhow::Result;
+use clap::Parser;
+use std::collections::HashMap;
+use std::net::IpAddr;
+use std::str::FromStr;
+
+/*
+ * Default concurrency based on typical ulimit -n values.
+ * macOS: ~256 default, so we use 200 to leave headroom for other FDs.
+ * Linux: usually 1024+ default, so we can go higher.
+ */
+#[cfg(target_os = "macos")]
+const DEFAULT_CONCURRENCY: usize = 200;
+
+#[cfg(not(target_os = "macos"))]
+const DEFAULT_CONCURRENCY: usize = 1000;
 
 #[derive(Parser, Debug)]
 #[command(author, version, about, long_about = None)]
@@ -22,7 +33,7 @@ struct Args {
     #[arg(short, long, default_value = "1000-2000")]
     ports: String,
 
-    #[arg(short, long, default_value = "1000")]
+    #[arg(short, long, default_value_t = DEFAULT_CONCURRENCY)]
     concurrency: usize,
 
     #[arg(short, long, default_value = "1000")]
@@ -42,15 +53,17 @@ fn parse_port_range(ports: &str) -> Result<std::ops::RangeInclusive<u16>> {
     let end = parts[1].parse::<u16>()?;
 
     if start > end {
-        return Err(anyhow::anyhow!("Start port must be less than or equal to end port"));
+        return Err(anyhow::anyhow!(
+            "Start port must be less than or equal to end port"
+        ));
     }
 
     Ok(start..=end)
 }
 
 fn format_scan_result(result: &ScanResult) -> String {
     let mut output = format!("[+] {}:{} is open", result.ip, result.port);
-    
+
     if let Some(service) = &result.service {
         output.push_str(&format!("\n    Service: {}", service.name));
         if let Some(version) = &service.version {
 
@@ -1,9 +1,9 @@
+use crate::types::{MacPrefix, NmapMatch, NmapProbe, NmapService, ServicePattern};
+use anyhow::Result;
 use regex::Regex;
+use std::collections::HashMap;
 use std::fs;
 use std::path::Path;
-use anyhow::Result;
-use std::collections::HashMap;
-use crate::types::{ServicePattern, NmapService, NmapProbe, NmapMatch, MacPrefix};
 
 lazy_static::lazy_static! {
     static ref MAC_PREFIXES: HashMap<String, String> = {
@@ -28,15 +28,15 @@ lazy_static::lazy_static! {
 
     static ref SERVICE_PATTERNS: Vec<ServicePattern> = {
         let mut patterns = Vec::with_capacity(1000);
-        
+
         patterns.extend(get_ssh_patterns());
         patterns.extend(get_http_patterns());
         patterns.extend(get_smtp_patterns());
         patterns.extend(get_imap_patterns());
         patterns.extend(get_ftp_patterns());
         patterns.extend(get_mysql_patterns());
         patterns.extend(get_redis_patterns());
-        
+
         if let Ok(probes) = load_nmap_probes("src/assets/nmap-service-probes") {
             for probe in probes {
                 for nmap_match in probe.matches {
@@ -77,108 +77,99 @@ pub fn get_services_by_port(port: u16) -> Option<&'static Vec<NmapService>> {
 }
 
 pub fn get_ssh_patterns() -> Vec<ServicePattern> {
-    vec![
-        ServicePattern {
-            name: "SSH".to_string(),
-            regex: Regex::new(r"^SSH-\d\.\d").unwrap(),
-            probe: "SSH-2.0-OpenSSH_8.2p1\r\n".to_string(),
-            version_regex: Some(Regex::new(r"SSH-(\d\.\d)").unwrap()),
-            product_regex: Some(Regex::new(r"OpenSSH_([^\r\n]+)").unwrap()),
-            os_regex: Some(Regex::new(r"OpenSSH.*?([^\r\n]+)").unwrap()),
-            extra_info_regex: None,
-            cpe_regex: None,
-        },
-    ]
+    vec![ServicePattern {
+        name: "SSH".to_string(),
+        regex: Regex::new(r"^SSH-\d\.\d").unwrap(),
+        probe: "SSH-2.0-OpenSSH_8.2p1\r\n".to_string(),
+        version_regex: Some(Regex::new(r"SSH-(\d\.\d)").unwrap()),
+        product_regex: Some(Regex::new(r"OpenSSH_([^\r\n]+)").unwrap()),
+        os_regex: Some(Regex::new(r"OpenSSH.*?([^\r\n]+)").unwrap()),
+        extra_info_regex: None,
+        cpe_regex: None,
+    }]
 }
 
 pub fn get_http_patterns() -> Vec<ServicePattern> {
-    vec![
-        ServicePattern {
-            name: "HTTP".to_string(),
-            regex: Regex::new(r"^HTTP/\d\.\d").unwrap(),
-            probe: "HEAD / HTTP/1.1\r\nHost: localhost\r\n\r\n".to_string(),
-            version_regex: Some(Regex::new(r"HTTP/(\d\.\d)").unwrap()),
-            product_regex: Some(Regex::new(r"Server: ([^\r\n]+)").unwrap()),
-            os_regex: None,
-            extra_info_regex: None,
-            cpe_regex: None,
-        },
-    ]
+    vec![ServicePattern {
+        name: "HTTP".to_string(),
+        regex: Regex::new(r"^HTTP/\d\.\d").unwrap(),
+        probe: "HEAD / HTTP/1.1\r\nHost: localhost\r\n\r\n".to_string(),
+        version_regex: Some(Regex::new(r"HTTP/(\d\.\d)").unwrap()),
+        product_regex: Some(Regex::new(r"Server: ([^\r\n]+)").unwrap()),
+        os_regex: None,
+        extra_info_regex: None,
+        cpe_regex: None,
+    }]
 }
 
 pub fn get_ftp_patterns() -> Vec<ServicePattern> {
-    vec![
-        ServicePattern {
-            name: "FTP".to_string(),
-            regex: Regex::new(r"^220").unwrap(),
-            probe: "USER anonymous\r\n".to_string(),
-            version_regex: Some(Regex::new(r"220 ([^\r\n]+)").unwrap()),
-            product_regex: None,
-            os_regex: None,
-            extra_info_regex: None,
-            cpe_regex: None,
-        },
-    ]
+    vec![ServicePattern {
+        name: "FTP".to_string(),
+        regex: Regex::new(r"^220").unwrap(),
+        probe: "USER anonymous\r\n".to_string(),
+        version_regex: Some(Regex::new(r"220 ([^\r\n]+)").unwrap()),
+        product_regex: None,
+        os_regex: None,
+        extra_info_regex: None,
+        cpe_regex: None,
+    }]
 }
 
 pub fn get_mysql_patterns() -> Vec<ServicePattern> {
-    vec![
-        ServicePattern {
-            name: "MySQL".to_string(),
-            regex: Regex::new(r"^\x00").unwrap(),
-            probe: "\x4a\x00\x00\x00\x0a\x35\x2e\x35\x2e\x35".to_string(),
-            version_regex: Some(Regex::new(r"(\d+\.\d+\.\d+)").unwrap()),
-            product_regex: None,
-            os_regex: None,
-            extra_info_regex: None,
-            cpe_regex: None,
-        },
-    ]
+    vec![ServicePattern {
+        name: "MySQL".to_string(),
+        regex: Regex::new(r"^\x00").unwrap(),
+        probe: "\x4a\x00\x00\x00\x0a\x35\x2e\x35\x2e\x35".to_string(),
+        version_regex: Some(Regex::new(r"(\d+\.\d+\.\d+)").unwrap()),
+        product_regex: None,
+        os_regex: None,
+        extra_info_regex: None,
+        cpe_regex: None,
+    }]
 }
 
 pub fn get_smtp_patterns() -> Vec<ServicePattern> {
-    vec![
-        ServicePattern {
-            name: "SMTP".to_string(),
-            regex: Regex::new(r"^220.*ESMTP|^220.*SMTP|^220.*OpenSMTPD|^220.*Postfix|^220.*Sendmail|^220.*Microsoft").unwrap(),
-            probe: "EHLO localhost\r\n".to_string(),
-            version_regex: Some(Regex::new(r"220.*?([^\r\n]+)").unwrap()),
-            product_regex: Some(Regex::new(r"220.*?(OpenSMTPD|Postfix|Sendmail|Microsoft|ESMTP)").unwrap()),
-            os_regex: None,
-            extra_info_regex: None,
-            cpe_regex: None,
-        },
-    ]
+    vec![ServicePattern {
+        name: "SMTP".to_string(),
+        regex: Regex::new(
+            r"^220.*ESMTP|^220.*SMTP|^220.*OpenSMTPD|^220.*Postfix|^220.*Sendmail|^220.*Microsoft",
+        )
+        .unwrap(),
+        probe: "EHLO localhost\r\n".to_string(),
+        version_regex: Some(Regex::new(r"220.*?([^\r\n]+)").unwrap()),
+        product_regex: Some(
+            Regex::new(r"220.*?(OpenSMTPD|Postfix|Sendmail|Microsoft|ESMTP)").unwrap(),
+        ),
+        os_regex: None,
+        extra_info_regex: None,
+        cpe_regex: None,
+    }]
 }
 
 pub fn get_imap_patterns() -> Vec<ServicePattern> {
-    vec![
-        ServicePattern {
-            name: "IMAP".to_string(),
-            regex: Regex::new(r"^\* OK.*IMAP|^\* OK.*Dovecot|^\* OK.*Cyrus").unwrap(),
-            probe: "A001 CAPABILITY\r\n".to_string(),
-            version_regex: Some(Regex::new(r"IMAP(\d+[^\s]*)").unwrap()),
-            product_regex: Some(Regex::new(r"(Dovecot|Cyrus)").unwrap()),
-            os_regex: None,
-            extra_info_regex: None,
-            cpe_regex: None,
-        },
-    ]
+    vec![ServicePattern {
+        name: "IMAP".to_string(),
+        regex: Regex::new(r"^\* OK.*IMAP|^\* OK.*Dovecot|^\* OK.*Cyrus").unwrap(),
+        probe: "A001 CAPABILITY\r\n".to_string(),
+        version_regex: Some(Regex::new(r"IMAP(\d+[^\s]*)").unwrap()),
+        product_regex: Some(Regex::new(r"(Dovecot|Cyrus)").unwrap()),
+        os_regex: None,
+        extra_info_regex: None,
+        cpe_regex: None,
+    }]
 }
 
 pub fn get_redis_patterns() -> Vec<ServicePattern> {
-    vec![
-        ServicePattern {
-            name: "Redis".to_string(),
-            regex: Regex::new(r"^\+PONG|^\+OK|^\$-|^\*[0-9]|^:[\d-]+|^ERR|^redis_version").unwrap(),
-            probe: "PING\r\n".to_string(),
-            version_regex: Some(Regex::new(r"redis_version:(\d+\.\d+\.\d+)").unwrap()),
-            product_regex: None,
-            os_regex: None,
-            extra_info_regex: None,
-            cpe_regex: None,
-        },
-    ]
+    vec![ServicePattern {
+        name: "Redis".to_string(),
+        regex: Regex::new(r"^\+PONG|^\+OK|^\$-|^\*[0-9]|^:[\d-]+|^ERR|^redis_version").unwrap(),
+        probe: "PING\r\n".to_string(),
+        version_regex: Some(Regex::new(r"redis_version:(\d+\.\d+\.\d+)").unwrap()),
+        product_regex: None,
+        os_regex: None,
+        extra_info_regex: None,
+        cpe_regex: None,
+    }]
 }
 
 pub fn load_nmap_services(file_path: &str) -> Result<Vec<NmapService>> {
@@ -198,7 +189,12 @@ pub fn load_nmap_services(file_path: &str) -> Result<Vec<NmapService>> {
         let parts: Vec<&str> = line.split_whitespace().collect();
         if parts.len() >= 3 {
             let name = parts[0].to_string();
-            let port = parts[1].split('/').next().unwrap_or("0").parse::<u16>().unwrap_or(0);
+            let port = parts[1]
+                .split('/')
+                .next()
+                .unwrap_or("0")
+                .parse::<u16>()
+                .unwrap_or(0);
             let protocol = parts[1].split('/').nth(1).unwrap_or("tcp").to_string();
             services.push(NmapService {
                 name,
@@ -248,7 +244,7 @@ pub fn load_nmap_probes(file_path: &str) -> Result<Vec<NmapProbe>> {
                 if parts.len() >= 3 {
                     let service = parts[1].to_string();
                     let pattern = parts[2].trim_matches(|c| c == 'm' || c == '|').to_string();
-                    
+
                     if pattern.contains("**") || pattern.contains("\\") || pattern.contains("^") {
                         continue;
                     }
@@ -286,13 +282,23 @@ pub fn load_nmap_probes(file_path: &str) -> Result<Vec<NmapProbe>> {
             }
         } else if line.starts_with("totalwaitms ") {
             if let Some(probe) = &mut current_probe {
-                if let Ok(ms) = line.split_whitespace().nth(1).unwrap_or("6000").parse::<u64>() {
+                if let Ok(ms) = line
+                    .split_whitespace()
+                    .nth(1)
+                    .unwrap_or("6000")
+                    .parse::<u64>()
+                {
                     probe.total_wait_ms = ms;
                 }
             }
         } else if line.starts_with("tcpwrappedms ") {
             if let Some(probe) = &mut current_probe {
-                if let Ok(ms) = line.split_whitespace().nth(1).unwrap_or("3000").parse::<u64>() {
+                if let Ok(ms) = line
+                    .split_whitespace()
+                    .nth(1)
+                    .unwrap_or("3000")
+                    .parse::<u64>()
+                {
                     probe.tcp_wrapped_ms = ms;
                 }
             }
@@ -325,12 +331,9 @@ pub fn load_mac_prefixes(file_path: &str) -> Result<Vec<MacPrefix>> {
             let prefix = parts[0].to_string();
             let vendor = parts[1..].join(" ");
 
-            prefixes.push(MacPrefix {
-                prefix,
-                vendor,
-            });
+            prefixes.push(MacPrefix { prefix, vendor });
         }
     }
 
     Ok(prefixes)
-}
+}