AllExperts > Encyclopedia 
Search      
Find out about volunteering to AllExperts

Port scanner: Encyclopedia BETA


Free Encyclopedia
 Home · Index · Browse A-Z  · Questions and Answers ·
Encyclopedia

Contents

Browse A-Z
ABCDEFGHIJKLMNOPQRSTUVWXYZNum


License
Disclaimer

 
 
 
 
Free Online Courses
12 Weeks to Weight Loss
Take Charge of Stress
Learn How to Bake
Budgeting 101
Deeper Faith
DIY Fashion Makeover

       MORE E-COURSES
 
   

A B C D E F G H I J K L M N O P Q R S T U V W X Y Z  Misc

Port scanner

A port scanner is a piece of software designed to search a network host for open ports. This is often used by administrators to check the security of their networks and by crackers to compromise it.

To portscan a host is to scan for multiple listening ports on a single target host. To portsweep is to scan multiple hosts for a specific listening port. The latter is typically used in searching for a specific service. For example, the numerous SQL based computer worms crawling the Internet are port sweeping looking for hosts listening on TCP/UDP port 1433.

TCP/IP basic knowledge

The protocol stack that is most common on the Internet today is TCP/IP. In this system, hosts are referenced using two components: an address and a port number. There are 65535 distinct and usable port numbers. Most services use a limited range of numbers; these numbers eventually become assigned by the IANA when the service becomes important enough.

Some port scanners only scan the most common, or most commonly vulnerable, port numbers on a given host. See: List of TCP and UDP port numbers.

The result of a scan on a port is usually generalized into one of three categories:
*Accepted or Open: The host sent a reply indicating that a service is listening on the port.
*Denied or Closed: The host sent a reply indicating that connections will be denied to the port.
*Dropped or Blocked: There was no reply from the host.

Open ports present two vulnerabilities of which administrators must be wary:#Security and stability concerns associated with the program responsible for delivering the service.#Security and stability concerns associated with the operating system that is running on the host.

Closed ports only present the latter of the two vulnerabilities that open ports do. Blocked ports do not present any reasonable vulnerabilities. Of course, there is the possibility that there are no (yet) known vulnerabilities in either the software or operating system.

The information gathered by a port scan has many legitimate uses, including the ability to verify the security of a network. Port scanning can however also be used by those who intend to compromise security. Many exploits rely upon port scans to find open ports and send large quantities of data in an attempt to trigger a condition known as a buffer overflow. Such behavior can compromise the security of a network and the computers therein, resulting in the loss or exposure of sensitive information and the ability to do work.

Problems with ISP's and Port Scanning

Many Internet service providers deny their customers the ability to perform port scans outside of their home networks. This is usually covered in the Terms of Service or Acceptable Use Policy to which the customer must have already agreed. Most public and private networks also place such limitations upon their users.

Port Scanners

*Angry IP Scanner - Open source, Windows software.
*Blue's Port Scanner - Windows, very fast because of adaptive multithreading
*Netmon - Network monitoring appliance with on-demand port scanner and silent background port scanner.
*NetworkActiv Port Scanner - Free, multifunctional, multi-mode, UDP/TCP Windows port scanner.
*nmap is a popular port scanning tool for many platforms.
*Scanmetender Standard - Free multifunctional very fast Windows/Linux network scanner.
*Unicornscan is an advanced port scanning tool for Unix-like systems.

Online Searchable Ports Database

*Ports & Services Database

Online Portscanner

*Sygate Online Scan extended security check (Stealth Scan, Trojan Scan)
*Planet Security Firewall-Check Fast, extended check, checks currently high-endangered ports
*Crucialtests concise, incl. advisor
*ShieldsUP (Gibson Research Corporation) Quick Scanner, clearly laid out
*DerKeiler's Port Scanner You can only scan your IP, useful when you are in an internet cafe with many restrictions.
*AuditMyPC Free Port Scanning Can scan all 65535 ports.
*Online Port Scanner Can scan specific IP in case the IP you want to test is not the one you are calling from

See also

*Computer insecurity
*Computer security
*Cracking
*TCP/IP
*Internet

External links

Discussions of the legal implications of Port Scanning

*Port Scanning and its Legal Implications from the Asian School of Cyber Laws
*The Ethics and Legality of Port Scanning is a PDF of a paper by Shaun Jamieson, published on October 8, 2001 as part of the SANS Reading Room



Email this page
About Us | Advertise on This Site | User Agreement | Privacy Policy | Kids' Privacy Policy | Help
About and About.com are registered trademarks of About, Inc. The About logo is a trademark of About, Inc. All rights reserved.
This is the "GNU Free Documentation License" reference article from the English Wikipedia. All text is available under the terms of the GNU Free Documentation License. See also our Disclaimer.