Port scanning

Port Scanning


In computer networking a port is used to run services, a communication endpoint. A port is a point through which information flows from a program to your computer or to your computer from an internet or another computer in a network. A port has three different meanings - hardware port, internet port number, to port a software program from one platform to another. There are total of 65,535 ports in internet protocols.


Scanning is the second step of hacking followed by footprinting. In footprinting we gather as much information we can of our target. Port Scanning is one of the most popular techniques attacker use to discover services they can exploit to break into your computer system, according to SANS institute. Through Scanning an attacker will be able to find out - if the server is alive or not, an IP address of a target machine, system's architecture, services running on each system.








Tools used for port scanning 

  • Solarwinds
  • Advanced port scanner
  • Angry IP scanner
  • Nmap
  • Zenmap

Internet Port Number - Also known as virtual port numbers, IANA (Internet Assigned Numbers Authority) is responsible for the global coordination of the DNS Root, IP addressing and other internet protocol resources. Which includes registration of commonly used port numbers for well-known internet services.



Some of the most commonly used port numbers are

20/21 : FTP File Transfer Protocol

22 : SSH Secure Shell

23 : Telnet

25 : SMTP Simple Mail Transfer Protocol

53 : DNS Domain Name System(Server)

80 : HTTP Hypertext Transfer Protocol

110 : POP3 Post Office Protocol

143 : IMAP Internet Message Access Protocol

443 : HTTP Secure





The simple Nmap command scans 1,000 TCP ports on the host (target) machine. It divides into few states  - Open, closed, filtered.

Open - An open port simply means that an application is openly accepting TCP connections, UDP datagrams on this port. Attacker wants to attack an open port because here they see this as a vulnerability while administrators try to close or protect them with firewall.

Close - Close port means that the port is blocked from either coming into or going out of the network.

Filtered - Filtered port cannot be determined if the port is open, it simply means that it is inaccessible from any which ways. 


Learn : MAC address















Comments

Post a Comment

Popular

Ethical hacking terminologies

Image
Ethical Hacking Terminologies  Following is the list of terms that are frequently used in the field of ethical hacking . If you are not aware of these terms then it would be difficult for you to understand the concept of ethical hacking properly. Thus knowing this will ease your process of going further in this domain. Vulnerability -  A weakness, flaw or loophole in a system, network or any device that can be exploited. Threat -  A danger that can exploit an existing bug or vulnerability to compromise the security of a network system. Attack - An action that is done to extract a sensitive data by getting unauthorized access of a system. Phishing - A process where an attacker creates fake website or url which looks like a legit page but it's to trap the user to get sensitive data. Backdoor -  A hidden entry point which can bypass the authentication process i.e logins and passwords also known as trapdoor. Brute
Read more

OSI model

Image
OSI model OSI model is an acronym for Open Systems Interconnection is used to define how data is transferred from one system to another system in a computer network. Now you may ask how a network is formed? If two computers are connected to each other with LAN cables, connectors and Network Interface Card forms a network. Since the designing and infrastructure won't be similar of two computers the OSI model was introduced by ISO(International Organization for Standardization) in 1984 for a successful communication between computers or networks. OSI model consists of  7 different layers 1. Application layer 2. Presentation layer 3. Session layer 4. Transport layer 5. Network layer 6. Data link layer 7. Physical layer Now I'm going to give a mnemonic to remember the OSI model Please-Do-Not-Throw-Sausage-Pizza-Away, easy right? Application layer - Application layer does not include applications like chrome, firefox instead it incl
Read more

Phases of ethical hacking

Image
Phases of Ethical Hacking  In order to be successful in hacking, a hacker needs to follow some steps or you can say phases which involves 5 crucial stages which helps hackers to make a structured ethical hacking attack. Reconnaissance : This is the first phase of hacking   where an attacker gathers as much information as possible. It is also called as footprinting or information gathering. Information that we collect is divided in three groups - network, host, people. There are two types of reconnaissance  - Active & Passive. Active - Direct communication is involved to gather information about the target. Information can be regarding an individual or an organization so anytime if somebody is taking too much interest on you or your background - Be alert! Tools used to scan a network can be Nmap , Hping , etc Passive - Here indirect communication takes place. Information can be gathered using social media websites or public websites. Scanning :  Here an
Read more