This article will describe the most common network service and network ports. Ports are like small rooms in your whole house which is server.
Ports are responsible for every service running and executing on your server for user interaction. It is like the virtual point where network connections start and end.
These are software-based and managed by a computer’s OS. Each port is assigned a specific type of service or process that is only accessed by that port number.
// 01 Port Number
Every Port is assigned a specific identification number for their identification over the internet. These port numbers are fixed by IANA (Internet Assigned Number Authority) for global use.
Ports number and their service are standardized across all network-connected devices. Most of the ports are reserved for many types of protocols by the IANA service.
// 02 Port number and their service
| Port Number | Service | Protocol | Description |
|---|---|---|---|
| 7 | Echo | TCP, UDP | Echo service |
| 20 | FTP-data | TCP, SCTP | File transfer protocol for data transfer |
| 21 | FTP | TCP, UDP, SCTP | File transfer protocol (FTP) control connection |
| 22 | SSH-SCP | TCP, UDP, SCTP | Secure Shell, Secure Login, File Transfer (scp, sftp), and Port Forwarding |
| 23 | Telnet | TCP | Telnet protocol-unencrypted text communications |
| 25 | SMTP | TCP | Simple Mail Transfer Protocol, used for email routing between mail servers |
| 53 | DNS | TCP, UDP | DNS name resolver |
| 69 | TFTP | UDP | Trivial File Transfer Protocol |
| 80 | HTTP | TCP, UDP, SCTP | Hypertext Transfer Protocol (HTTP) uses TCP in versions 1.x and 2. HTTP/3 uses QUIC, a transport protocol on top of UDP |
| 88 | Kerberos | TCP, UDP | Network authentication system |
| 102 | Iso-tsap | TCP | ISO Transport Service Access Point (TSAP) Class 0 protocol |
| 110 | POP3 | TCP | Post Office Protocol, version 3 (POP3) |
| 135 | Microsoft EPMAP | TCP, UDP | Microsoft EPMAP (End Point Mapper), also known as DCE/RPC Locator service, is used to remotely manage services including DHCP server, DNS server and WINS. Also used by DCOM |
| 137 | NetBIOS-ns | TCP, UDP | NetBIOS Name Service, used for name registration and resolution |
| 139 | NetBIOS-ssn | TCP, UDP | NetBIOS Session Service |
| 143 | IMAP4 | TCP, UDP | Internet Message Access Protocol (IMAP), management of electronic mail messages on a server |
| 443 | HTTP over SSL | TCP, UDP, SCTP | Hypertext Transfer Protocol Secure (HTTPS) uses TCP in versions 1.x and 2. HTTP/3 uses QUIC, a transport protocol on top of UDP. |
| 464 | Kerberos | TCP, UDP | Kerberos Change/Set password |
| 465 | SMTP over TLS/SSL, SSM | TCP | Authenticated SMTP over TLS/SSL (SMTPS), URL Rendezvous Directory for SSM (Cisco protocol) |
| 587 | SMTP | TCP | Email message submission |
| 593 | Microsoft DCOM | TCP, UDP | HTTP RPC Ep Map, Remote procedure call over Hypertext Transfer Protocol, often used by Distributed Component Object Model services and Microsoft Exchange Server |
| 636 | LDAP over TLS/SSL | TCP, UDP | Lightweight Directory Access Protocol over TLS/SSL |
| 691 | MS Exchange | TCP | MS Exchange Routing |
| 902 | VMware Server | unofficial | VMware ESXi |
| 989 | FTP over SSL | TCP, UDP | FTPS Protocol (data), FTP over TLS/SSL |
| 990 | FTP over SSL | TCP, UDP | FTPS Protocol (control), FTP over TLS/SSL |
| 993 | IMAP4 over SSL | TCP | Internet Message Access Protocol over TLS/SSL (IMAPS) |
| 995 | POP3 over SSL | TCP, UDP | Post Office Protocol 3 over TLS/SSL |
| 1025 | Microsoft RPC | TCP | Microsoft operating systems tend to allocate one or more unsuspected, publicly exposed services (probably DCOM, but who knows) among the first handful of ports immediately above the end of the service port range (1024+). |
| 1194 | OpenVPN | TCP, UDP | OpenVPN |
| 1337 | WASTE | unofficial | WASTE Encrypted File Sharing Program |
| 1589 | Cisco VQP | TCP, UDP | Cisco VLAN Query Protocol (VQP) |
| 1725 | Steam | UDP | Valve Steam Client uses port 1725 |
| 2082 | cPanel | unofficial | cPanel default |
| 2083 | radsec, cPanel | TCP, UDP | Secure RADIUS Service (radsec), cPanel default SSL |
| 2483 | Oracle DB | TCP, UDP | Oracle database listening for insecure client connections to the listener, replaces port 1521 |
| 2484 | Oracle DB | TCP, UDP | Oracle database listening for SSL client connections to the listener |
| 2967 | Symantec AV | TCP, UDP | Symantec System Center agent (SSC-AGENT) |
| 3074 | XBOX Live | TCP, UDP | Xbox LIVE and Games for Windows – Live |
| 3306 | MySQL | TCP | MySQL database system |
| 3724 | World of Warcraft | TCP, UDP | Some Blizzard games, Unofficial Club Penguin Disney online game for kids |
| 4664 | Google Desktop | unofficial | Google Desktop Search |
| 5432 | PostgreSQL | TCP | PostgreSQL database system |
| 5900 | RFB/VNC Server | TCP, UDP | virtual Network Computing (VNC) Remote Frame Buffer RFB protocol |
| 6665 | IRC | TCP | Internet Relay Chat |
| 6669 | IRC | TCP | Internet Relay Chat |
| 6881 | BitTorrent | unofficial | BitTorrent is part of the full range of ports used most often |
| 6999 | BitTorrent | unofficial | BitTorrent is part of the full range of ports used most often |
| 6970 | Quicktime | unofficial | QuickTime Streaming Server |
| 8086 | Kaspersky AV | TCP | Kaspersky AV Control Center |
| 8087 | Kaspersky AV | UDP | Kaspersky AV Control Center |
| 8222 | VMware Server | TCP, UDP | VMware Server Management User Interface (insecure Web interface). |
| 9100 | PDL | TCP | PDL Data Stream, used for printing to certain network printers[1] |
| 10000 | BackupExec | unofficial | Webmin, Web-based Unix/Linux system administration tool (default port) |
| 12345 | NetBus | unofficial | NetBus remote administration tool (often Trojan horse). |
| 27374 | Sub7 | unofficial | Sub7 default |
| 18006 | Back Orifice | unofficial | Back Orifice 2000 remote administration tools |
// 03 Enumeration techniques on ports services
Below are the enumeration techniques that can be used for enumerating any port and its service. These are the major misconfiguration while the configuration of your network port that an attacker can further use to affect your network.
Ports and services to enumerate
| Port Number | Protocol | Enumeration Technique |
|---|---|---|
| 25 | TCP | Simple Mail Transfer Protocol (SMTP) |
| 53 | TCP, UDP | DNS Zone Transfer |
| 135 | TCP, UDP | Microsoft RPC Endpoint Mapper |
| 137 | UDP | NetBIOS Name Service (NBNS) |
| 139 | TCP | NetBIOS Session Service (SMB over NetBIOS) |
| 161 | UDP | Simple Network Management Protocol (SNMP) |
| 162 | TCP, UDP | SNMP Trap |
| 389 | TCP, UDP | Lightweight Directory Access Protocol (LDAP) |
| 445 | TCP, UDP | SMB over TCP (Direct Host) |
| 3268 | TCP, UDP | Global Catalog Service |