Question 1

What is magi?

Accepted Answer

magi is a fast, asynchronous TCP and UDP port scanner. It does connect scanning — a normal handshake on each port — so within its scope it only ever reports a port state it actually established. No raw packets, no guessing.

Question 2

Do I need root or admin privileges?

Accepted Answer

No. Because magi connects the way any client would instead of crafting raw packets, it needs no root, no administrator, and no special capabilities. It runs anywhere tokio does.

Question 3

What can I point it at?

Accepted Answer

A hostname, an IP address, or a CIDR block. A subnet expands to its host addresses and groups results by host. Anything larger than a /16 is refused, so a mistyped prefix can't turn into millions of probes.

Question 4

How does magi handle UDP?

Accepted Answer

Pass --udp. UDP has no handshake, so the verdict comes from how the host reacts: a reply is open, an ICMP port-unreachable is closed, and silence is open|filtered. ICMP delivery is reliable on Linux; macOS and Windows rate-limit it, so some closed ports there read as open|filtered.

Question 5

What does “untestable” mean?

Accepted Answer

A scanner's worst failure is calling a port closed when it was never tested. If a probe can't run — the process is out of file descriptors, or the host is unreachable — magi reports that port as untestable on stderr instead of counting it closed. For the file-descriptor case, lower --concurrency.

Question 6

Can I use it in scripts?

Accepted Answer

Yes. --json emits a JSON array on stdout while the progress counter stays on stderr, so `magi … --json | jq` keeps stdout clean. By default it prints a readable table grouped by host.

Question 7

Which platforms can I install it on?

Accepted Answer

Prebuilt binaries cover Linux and macOS on x86-64 and arm64, and Windows on x86-64 — one install command, or grab the archive from the releases page. Otherwise build from source with the stable Rust toolchain; there are no system libraries to install.

Question 8

Is it legal to scan with magi?

Accepted Answer

Only scan hosts you own or have written permission to scan. scanme.nmap.org is a sanctioned target for testing. Unsolicited scanning is illegal in many jurisdictions — in Switzerland it falls under Art. 143bis of the Criminal Code.

A port scanner built to be correct

Fast, focused, and honest

Fast and async

TCP and UDP

CIDR and JSON

It won't lie

Frequently asked questions