Optionally it can also select an arbitrary number of random IPs from the expanded IP list, instead. Typically useful in large vulnerability assessments where testing a sample of a baselined subnet (such as SIP) is more efficient than testing the entire subnet.