External Service Auditor

Understanding Port Scanning

Port Scanning is a method used by engineers and security researchers to identify which ports on a network are open and listening to connections. Each port is associated with a specific service type (e.g. 22 for SSH, 80 for HTTP).

TCP vs UDP: TCP scans are connection-oriented and require a 3-way handshake. UDP scans are "best-effort" and harder to detect. For security, any port that isn't strictly required for public service should be closed or firewalled.