From the doc: 'The scanner has three modes of scanning: 1) Scans one ip address on open ports and takes all banners from servers, results of the analysis on vulnerability are kept In a file which name corresponds to the address of a host. 2) Scans a range of ip addresses on open ports and takes all banners from servers, results of the analysis on vulnerability are kept in a file log. In this mode of scanning it is necessary for you to specify starting ip address and final ip address. For example: ./scanner -m 127.0.0.1 -e 127.0.0.255 3) The scanner makes all too most as in the previous modes, but ip addresses are read from a file set by the user.'