- Download and Run:
- Go to the Releases page
- Download the latest
hello_ips.exefile - Simply double-click to run the application
- If Windows SmartScreen appears, click "More info" and then "Run anyway"
Hello-IPs no longer ships a DMG package. To run the application on macOS, clone the repository and execute it from the Python sources. The steps are the same as for Linux users below.
-
Clone the Repository:
git clone https://github.com/Minemetero/Hello-IPs.git cd Hello-IPs -
Create and Activate a Virtual Environment:
python -m venv venv source venv/bin/activate -
Install Dependencies:
pip install -r requirements.txt
-
Run the Application:
python main.py
Tip
If you run into any issues during installation or usage, please open an issue on GitHub or contact the maintainers.
Hello-IPs is a user-friendly, GUI-based network scanning and device blocking tool designed for local area networks (LANs). The tool features an intuitive graphical interface that makes network management accessible to all users. Simply double-click the executable on Windows to get started.
The tool concurrently discovers devices via ARP scanning and gathers rich information about each device including its IP address, MAC address, vendor (via OUI mapping), device name (from reverse DNS and nbtstat), and an optional list of open ports. Additionally, Hello-IPs offers multiple experimental methods to block unauthorized devices.
Warning
This software is intended for use only on networks you administrate.
The blocking methods provided are experimental and may disrupt network communications.
Use this tool at your own risk; the author disclaims all liability for misuse.
-
Concurrent Scanning:
Scans each /24 subnet concurrently to speed up device discovery. -
Rich Device Information: Retrieves IP, MAC, vendor, device name, and optionally probes common open ports (e.g., 22, 23, 80, 443, 3389). The scanner can also fingerprint the operating system by analyzing TTL values, TCP options, and service banners.
-
Enhanced OS Fingerprinting: When enabled, Hello-IPs performs additional probes (TCP SYN and banner grabs) to refine the OS guess beyond basic TTL analysis.
-
Multiple Blocking Options:
Choose from seven methods:- ARP Poisoning
- ARP Flooding
- ARP Tornado (experimental)
- MAC Flooding (experimental)
- ICMP Unreachable (experimental)
- TCP SYN Flood (experimental)
- DNS Amplification (experimental)
-
User-Friendly GUI: Built with Tkinter, the interface features a clear control layout. Columns for vendor, open ports, and OS guesses can be toggled on or off.
project_root/
├── data/
│ └── nmap-mac-prefixes.txt # Vendor mapping file
├── output/ # Folder for generated output (e.g., ipconfig output)
├── network_scanner/
│ ├── __init__.py
│ ├── scanner.py # Network scanning & utility functions
│ ├── block.py # Device blocking functions
│ ├── probe.py # Optional probing functions
│ ├── gui.py # GUI for scanning and blocking
│ └── utils/ # Utility modules
│ ├── __init__.py
│ ├── logger.py # Common logging system
│ ├── log_saver.py # Saving logs
│ ├── file_saver.py # Save scan results
│ └── file_viewer.py # View the file results
├── main.py # Application entry point
└── requirements.txt # Python dependencies
- Using the GUI:
- Click "Scan Network" to start scanning.
- The table will display discovered devices along with IP, MAC, vendor, device name, guessed OS, and open ports.
- To block a device, select it from the table, choose a blocking method from the dropdown (seven options available), and specify a duration.
- Click "Block Selected Device" to initiate the blocking process.
The scanner automatically resolves the location of its data files at runtime.
When building a standalone executable with tools like Nuitka or PyInstaller,
ensure the data directory is bundled next to the binary. The application uses
an internal helper to locate data/nmap-mac-prefixes.txt relative to the
executable, so no additional code changes are required.
This project is licensed under the Apache License 2.0. All copyright remains with the author. The software is provided "AS IS" without warranties, and the user assumes full responsibility for any misuse or illegal activity arising from its use.
Warning
Hello-IPs is designed for authorized network management only. The blocking methods, particularly the experimental ones (ARP Tornado, MAC Flooding, and ICMP Unreachable), may severely disrupt network communications. Use them only on networks you administrate. The author disclaims all liability for any illegal or improper use of this software.
Contributions are welcome. Please fork the repository and submit a pull request with your enhancements or bug fixes.