Network Ports
A Very Short Brush-up On Ports

A fundamental part of most security tests is to scan the in-scope network segment for available services. These services, also known as network daemons, are processes that run on networked systems and listen to incoming network traffic through the use of ports. The available range of port numbers goes from 0 to 65,535. Depending on the type of application, services can listen to incoming requests over TCP or UDP, and sometimes both.

A key factor is that many applications and services make use of predetermined, so-called well-known, port numbers. For example, web services primarily serve their content via port 80 over TCP. A full list of more or less well-established port numbers can be viewed at https://www.iana.org/ assignments/service-names-port-numbers/service-names-port-numbers.xhtml. Some commonly used protocols and port numbers:

  • TELNET 23 TCP
  • FTP 20,21 TCP
  • SSH 22 TCP UDP 22
  • HTTP TCP 80
  • HTTPS TCP 443
  • SMB TCP 445
  • SNMP UDP 161,162
  • DNS TCP 53
  • SMTP TCP 25
  • IMAP TCP,UDP 143
  • POP3 TCP,UDP 995
  • RDP TCP,UDP 3389
  • Microsoft SQL TCP,UDP 1433
  • MYSQL TCP,UDP 3306

Note: Any service can be configured to run on any port. The IANA list should only be used as a reference sheet. Any seasoned security tester will tell you that it’s possible to find services running nonstandard ports, such as an SSH server operating on port number 22222 instead of its standard port of 22.

Robert Svensson

Tags: #ports #network #securitytesting

2017-10-30 16:20:00

This is the personal website and article collection of me — Robert Svensson. I currently work for Contentful writing about APIs, coding and the future of content management

You can also find out what I'm up to by following me on GitHub, Twitter and LinkedIn. Feel free to send me an e-mail at robert@artandhacks.se