S E C U R I T Y

Loading

Details
Stay Up To Date
Parent Checks

  • Network Scan

Need Membership

Yes

Need Proof Of Ownership

No

Estimate Time (Second)

10

Top 10 TCP Ports Scanner Detail

You need to know which services and ports are accessible over the internet. Because an attacker can easily learn. Check your top 10 tcp open ports with online port scanning tools.

How To Scan TCP Ports

Nmap is one of the most used tools for port scanning. We are using Nmap too. Nmap has a wide variety of parameters and a lot of scripts to work on port scans. Before going into the details of Nmap, let's simply explain what are the TCP protocol, IP addresses, and ports.

What is TCP Protocol?

TCP (Transmission Control Protocol) is a protocol that define rules to communicate with other system in a network. It is the most used protocol on the Internet. Most other protocols (HTTP, FTP, SSH, etc) use TCP. It defines some rules. The software on both the server and the client side follow these rules and communicate with each other.

What About IPs and Ports?

Although websites and emails operate over domain names, the addresses that computers can understand are IP's. IP addresses identify servers running on the network (internet). For example, securityforeveryone.com has an IP address (it has a format like 1.1.1.1). This IP address is unique and given to the server in an another country. Whenever you want to access this IP address, the huge infrastructure of the internet directs you to our server and you take the necessary actions. Port are the numbers that define services (softwares) on the server. A port number can be any value between 1 and 65535. There are known ports for known services. Even if you do not enter port information, HTTP requests use port 80 and HTTPS requests use port 443 of the remote server.

We understood the general structure, TCP,IP and Ports. Now let's look at how we can detect remote ports.


Online Port Scanning With Nmap

There are lots of ports, are we going to scan them all? Yes why not? We do this, but not with this tool. You can use the full port scanning tool to scan them all. This tool scans only the top 10 most used ports. Top 10 most used tcp ports are defined in the nmap page. To summarize we scan these ports:

Port Service
80 HTTP
23 Telnet
443 HTTPS
21 FTP
22 SSH
25 SMTP
3389 RDP
110 POP3
445 SMB
139 NetBIOS-SSN
Ok, let's move on how we detect open ports with nmap?


Methods to Find Open TCP Ports

We were going to write about Nmap's port scanning techniques, but we stopped. Here we say something for everyone, not for experts. So the only thing you need to know is we use Full TCP scan to find open tcp ports which gives the most reliable results for port scanning.

Some Advice for Common Problems

To minimize risks, there are a few things should do.

  1. If you do not use related service then stop it. Do not increase your attack surface. Stoping unnecessary services is one of the best practices and huge step in hardening operation systems. For example if port 21 open for ftp and you do not using it, stop ftp service.
  2. You should restrict access. Use either a firewall to allow specific IP addresses for your port if you can or change your service settings to make accessible only from localhost.
  3. Make sure your softwares are up to date. Do not miss any security patches.
  4. Use strong password if your services use an authentication mechanism (like ssh, ftp, rdp). Whole internet are scanning by attackers to detect weak passwords.