Internet measurement of Tunisia's public IPv4 space
Fennec Scan — Tunisian IPv4 ASM research
You most likely reached this page because you found one of these addresses in
your firewall or server logs:
85.121.4.68, 85.121.4.178, 85.121.4.206
These hosts run an attack-surface measurement project: a
non-commercial, single-operator research effort that catalogues
publicly-reachable services across Tunisia's IPv4 range — the same kind of
internet-wide indexing done by Shodan, Censys, or Shadowserver, scoped to
Tunisia only. The reverse DNS of each address also points back here.
What the scan does
A low-rate SYN scan of a fixed list of common
service ports, with host order randomised.
For hosts that respond, a single standard protocol handshake to record the
public service banner (e.g. an HTTP Server: header or
an SSH version string) — exactly what any client sees on connecting.
What it never does
No authentication, login, or brute-force attempts.
No exploitation of vulnerabilities and no payloads beyond a normal protocol
handshake.
No high packet rates / denial-of-service pressure; no reading of private or
non-public data.
Opt out
If you operate a network or host and would prefer it excluded from all future
scans, tell us below (or email abuse@fennec-scan.org).
Requests are reviewed by a human; approved ranges are dropped from the very next
scan cycle and are not probed again.