Port Scanning; the Good, Bad, & Ugly


By Brian Wilson

What is port scanning you might ask? Well port scanning can be describe many ways but basically is the act of sending packets to a destination of group of hosts to try to get a response. Why do I need to port scan and do others port scan me? You might want to port scan your broadband connection to see what your network has open to the internet and others may port scan you to find a way into your network. Port scanning can be done for good reasons and malicious purposes. Other real good reasons for port scanning is to see what ports your software might be using this can help you trouble shoot network issues. There are too many reasons to list here on the pros of ports scans and port scan software but you must first understand what a port is and how it affects you computer and network.

What is a port and how dose it work?

Ports are similar to addresses for example if you send a package to a friend you will have to put many entries on the shipping label for it to get to him. You would need a name, street number, city, State, zip code, and sometimes a country. Without this information your package would not get the recipient. Ports work in a similar way. Ports are part of the address for internet traffic. Ports also have to have other data to be used like an IP address, Protocol, and transport media.

Who controls port numbers?

Ports numbers are standardized though the “Internet Assigned Numbers Authority” or IANA. The port numbers are divided into three ranges: The Well Known Ports, Registered Ports, and the Dynamic and/or Private Ports.

The Well Known Ports are those from 0 through 1023. DCCP Well Known ports SHOULD NOT be used without IANA registration. The registration procedure is defined in [RFC4340], Section 19.9.

The Registered Ports are those from 1024 through 49151 DCCP Registered ports SHOULD NOT be used without IANA registration. The registration procedure is defined in [RFC4340], Section 19.9.

The Dynamic and/or Private Ports are those from 49152 through 65535.

Port Scanning Software.

Let’s now take a look at software that is used for port scanning. A lot of the software out there for port scanning also has other futures for vulnerability scanning. One of the most well known port scanning tools is NMAP.

Nmap ("Network Mapper") is a free open source utility for network exploration or security auditing. It was designed to rapidly scan large networks, although it works fine against single hosts. Nmap uses raw IP packets in novel ways to determine what hosts are available on the network, what services (application name and version) those hosts are offering, what operating systems (and OS versions) they are running, what type of packet filters/firewalls are in use, and dozens of other characteristics. Nmap runs on most types of computers and both console and graphical versions are available. Nmap is free and open source (description from NMAP’s website).

Angry IP scanner is a very fast IP scanner and port scanner. It can scan IP addresses in any range as well as any their ports. Its binary file size is very small compared to other IP or port scanners. Angry IP scanner simply pings each IP address to check if it's alive, then optionally it is resolving its hostname, determines the MAC address, scans ports, etc. The amount of gathered data about each host can be extended with the available plugin's (description from angryziber.com).

SuperScan 4 is a Powerful TCP port scanner, pinger, and resolver. Here are some of the futures; Superior scanning speed, Support for unlimited IP ranges, Improved host detection using multiple ICMP methods, TCP SYN scanning, UDP scanning (two methods), IP address import supporting ranges and CIDR formats, Simple HTML report generation, Source port scanning, Fast hostname resolving, Extensive banner grabbing, Massive built-in port list description database, IP and port scan order randomization, A selection of useful tools (ping, trace route, Whois etc). SuperScan is from foundstone.com and this description was gathered from there website.

Online Scanners

There are also websites that offer free port scans to help you secure your network. Here is a list of a few scanning sites.

Sygate Online Scan (scan.sygate.com) extended security check (Stealth Scan, Trojan Scan.

Planet Security Firewall-Check (planet-security.net) Fast, extended check, checks currently high-endangered ports.

Crucialtests (crucialtests.com) concise, incl. advisor.

ShieldsUP (grc.com) Quick Scanner, clearly laid out.

How to block all the scanning

Now that you have seen what ports scanning is and the uses for it you might want to know how to protect you network from scans. The best thing to do is have a firewall and use up-to-date Anti-virus & Anti-Spyware programs. You will not be able to stop the scans on your network but with a good firewall the person scanning you will not see any traffic back and hopefully assume your connection is not on or no assemble. To find more information on port scanning and the tools used try to Google it.


More Resources

Unable to open RSS Feed $XMLfilename with error HTTP ERROR: 404, exiting

More Broadband Internet Information:

Related Articles

Wi-Fi Hotspot Security
You've set up your Boingo account, you're hanging out at the Home Turf sports bar in LAX and you figure you'll do a little business or check your e-mail while sipping a Chardonnay. Well, that's the point of Wi-Fi hotspots; being able to take care of a few things while in a relaxing atmosphere.
Mind Machine Interfacing
SQUID:In 1984 I was partnered with a Cable TV engineer and founding father by the name of Ray Osborne. He was working with people developing oscillating noise loop broadband technologies.
Two Enter Internet Battle
Consumers understand that when there is more competition in a market, there are lower prices. This is especially true in the computer industry where it is reported that 68% of households have a computer.
Some DSL Broadband Definitions
Often too many people get confused with all the definitions, here we have explained in easy to understand terms.ADSL:Asymmetric Digital Subscriber Line - asymmetric meaning it's faster downstream than upstream.
Broadband Satellite Antenna Pizza Box Size
Thanks to the transfer technologies and governments spending on military needs, soon the public will have Broadband Satellite antennas no larger than the dimensions of a Pizza Box. Lightening fast Internet from the heavens.
Broadband - Will it Affect Your Online Marketing Future?
The coming age of general Broadband use bearing down uponus, minute by minute, is going to leave many changes in its wake. Some will be welcome; others will demand all we can do, just to keep up!Of course, items like high quality graphics, streaming videoand movies on demand will be commonplace.
Broadband is State-of-the-Art Internet Access: How Can a Broadband Cable Benefit You?
We are now well ensconced in a time when the Web is riddled with graphics, animations, sounds, and videos, bringing about a necessity for superior internet access such as that which broadband can provide. The fact is that anything less than the speed supplied by a broadband cable has become inadequate for today's Web users.
DSL Internet is a Simple and Easy Way to Get Fast Internet Service
DSL - which stands for Digital Subscriber Line - is a great way to get high-speed internet service, without having to get a cable modem, or live in an area that has cable lines. DSL providers have very fast and comparatively cheap internet connectivity.
Wireless Technologies in Mass Transit for Convenience and Safety
Modern Mass Transit is making it easier for commuters, especially with the latest inter connecting wireless technologies. Many buses, commuter trains, shuttles and even trolley cars now have WiFi wireless computer access so no one is out of touch during the travel time.
3G EV-DO or How the Internet Got Its Wings!
The Internet, as most people know it, is history.It just seems like yesterday the Internet was just onebig mass of wires and cables; a glorified file sharing warehouse with more than a few too many lines sticking out.
Find the Best Broadband Provider for You
To find the best broadband provider for you takes some effort.Like anything in life, doing the research is critical to getting the best product at the best price.
Broadband Features
Internet service providers are becoming more and more present as the internet makes its way into more and more homes in America. This is making it harder to decide which ISP to subscribe to.
Wireless Network Hammerin
The wireless network in my house went haywire. It worked on three PCs, one had a horrible connection, and one can't connect.
Business Satellite Internet Products Compared - 2005
There are a number of options available for Business Class Satellite Internet connectivity in the U.S.
Its On! (Free Internet TV - Watch TV Online)
Get ready because "there's going to be television out the wazoo!" This according to Jonathan Klein, the president of CNN - U.S.
Broadband Connection to the Central Sun
You may have noticed the expansion of consciousness that has taken place since the Harmonic Concordance. This is due to the new Broadband connection that has been created to the Universe's Central Sun.
A Cheap Alternative To Broadband?
Are you a dial-up user looking for a faster connection,but don't like Broadband prices? If so, you should take a look at a new service called OnSpeed, which has received rave reviews in Internet technology publications.What OnSpeed does is to re-route web pages and email viaits own servers, compressing the data on the fly prior to sending it onwards to your PC.
Unlimited Bandwidth and Overselling
One of the most controversial topics surrounding web hosting is the practice of overselling bandwidth, and rightfully so. The practice of overselling has enormous potential for disaster - ask any webmaster who has ever woken up to a cold, unforgiving "Bandwidth Exceeded" message where his or her site should be.
What are Your Internet Connection Solutions?
Of primary concern to all internet users is their actual connection to the internet.A user needs to look at all the factors and weigh the benefits and costsReliability - is the connection available 24/7, or do you get a busy signal?Speed - at what speeds can a user upload and download files?Costs - what are the setup and monthly costs for the internet connection service?Support - is support available 24/7 and is it free or is there a cost associated with it?Availability - is the desired service available at your location?Available options with good and bad features include:Local dial up with phone company (local isp) - While this many times is the simplest, often times, they are the most costly and support can be an issue.
Time to Redefine Telecom
Telecommunication, according to Wikipedia, is the extension of communication over a distance. In practice, it also recognizes that something may be lost in the process; hence the term 'telecommunication' covers all forms of distance and/or conversion of the original communications, including radio, telegraphy, television, telephony, data communication and computer networking.