計算機常用端口 HTTP:80:HTTP。 DHCP:服務器端的端口號是67 DHCP:客戶機端的端口號是68 POP3:POP3僅僅是接收協議,POP3客戶端使用SMTP向服務器發送郵件。POP3所用的端口號是110。 SMTP:端口號是25。SMTP真正關心的不是郵件如何被傳送,而只關心郵件是否能順利到達目的地。SMTP具有健壯的郵件處 理特性,這種特性允許郵件依據一定標准自動路由,SMTP具有當郵件地址不存在時立即通知用戶的能力,並且具有在一定 時間內將不可傳輸的郵件返回發送方的特點。 Telnet:端口號是23。Telnet是一種最老的Internet應用,起源於ARPNET。它的名字是“電信網絡協議 (Telecommunication Network Protocol)”的縮寫。 FTP:FTP使用的端口有20和21。20端口用於數據傳輸,21端口用於控制信令的傳輸,控制信息和數據能夠同時傳輸,這是 FTP的特殊這處。FTP采用的是TCP連接。 TFTP:端口號69,使用的是UDP的連接。 DNS:53,名稱服務 NetBIOS:137,138,139,其中137、138是UDP端口,當通過網上鄰居傳輸文件時用這個端口。而139端口:通過這個端口進入 的連接試圖獲得NetBIOS/SMB服務。這個協議被用於windows文件和打印機共享和 SAMBA。還有WINS Regisrtation也用它。 NNTP 網絡新聞傳輸協議:119 SNMP(簡單網絡管理協議):161端口 RPC(遠程過程調用)服務:135端口 QQ:使用8000(服務端)和4000端口(客戶端) 21 端口:21 端口主要用於FTP(File Transfer Protocol,文件傳輸協議)服務。 23 端口:23 端口主要用於Telnet(遠程登錄)服務,是Internet上普遍采用的登錄和仿真程序。 25 端口:25 端口為SMTP(Simple Mail Transfer Protocol,簡單郵件傳輸協議)服務器所開放,主要用於發送郵件,如 今絕大多數郵件服務器都使用該協議。 53 端口:53 端口為DNS(Domain Name Server,域名服務器)服務器所開放,主要用於域名解析,DNS 服務在NT 系統中 使用的最為廣泛。 67、68 端口:67、68 端口分別是為Bootp 服務的Bootstrap Protocol Server(引導程序協議服務端)和Bootstrap Protocol Client(引導程序協議客戶端)開放的端口。 69 端口:TFTP 是Cisco 公司開發的一個簡單文件傳輸協議,類似於FTP。 79 端口:79 端口是為Finger 服務開放的,主要用於查詢遠程主機在線用戶、操作系統類型以及是否緩沖區溢出等用戶的 詳細信息。 80 端口:80 端口是為HTTP(HyperText Transport Protocol,超文本傳輸協議)開放的,這是上網沖浪使用最多的協議 ,主要用於在WWW(World Wide Web,萬維網)服務上傳輸信息的協議。 99 端口:99 端口是用於一個名為“Metagram Relay”(亞對策延時)的服務該服務比較少見,一般是用不到的。 109、110 端口:109 端口是為POP2(Post Office Protocol Version2,郵局協議2)服務開放的,110 端口是為POP3(郵 件協議3)服務開放的,POP2、POP3 都是主要用於接收郵件的。 111 端口:111 端口是SUN 公司的RPC(Remote Procedure Call,遠程過程調用)服務所開放的端口,主要用於分布式系 統中不同計算機的內部進程通信,RPC 在多種網絡服務中都是很重要的組件。 113 端口:113 端口主要用於Windows 的“Authentication Service”(驗證服務)。 119 端口:119 端口是為“Network News Transfer Protocol”(網絡新聞組傳輸協議,簡稱NNTP)開放的。 135 端口:135 端口主要用於使用RPC(Remote Procedure Call,遠程過程調用)協議並提供DCOM(分布式組件對象模型 )服務。 137 端口:137 端口主要用於“NetBIOS Name Service”(NetBIOS名稱服務)。 139 端口:139 端口是為“NetBIOS Session Service”提供的,主要用於提供Windows 文件和打印機共享以及Unix 中的 Samba 服務。 143 端口:143 端口主要是用於“Internet Message Access Protocol”v2(Internet 消息訪問協議,簡稱IMAP)。 161 端口:161 端口是用於“Simple Network Management Protocol”(簡單網絡管理協議,簡稱SNMP)。 443 端口:443 端口即網頁瀏覽端口,主要是用於HTTPS 服務,是提供加密和通過安全端口傳輸的另一種HTTP。 554 端口:554 端口默認情況下用於“Real Time Streaming Protocol”(實時流協議,簡稱RTSP)。 1024 端口:1024 端口一般不固定分配給某個服務,在英文中的解釋是“Reserved”(保留)。 1080 端口:1080 端口是Socks 代理服務使用的端口,大家平時上網使用的WWW 服務使用的是HTTP 協議的代理服務。 1755 端口:1755 端口默認情況下用於“Microsoft Media Server”(微軟媒體服務器,簡稱MMS)。 1433 端口: SQL Server 數據庫 1521 端口: Oracle 數據庫 3306端口 : MySQL 數據庫 3389端口: 遠程桌面 rdp 6379端口: Redis 端口 9092 端口: DB2 11211端口: memcached 端口 27017端口: mongodb 數據庫 9200端口: ElasticSearch 數據庫 5601端口: Kibana 5044端口: Logstash 大數據常見端口匯總: Hadoop: 50070:HDFS WEB UI端口 8020 : 高可用的HDFS RPC端口 9000 : 非高可用的HDFS RPC端口 8088 : Yarn 的WEB UI 接口 8485 : JournalNode 的RPC端口 8019 : ZKFC端口 Zookeeper: 2181 : 客戶端連接zookeeper的端口 2888 : zookeeper集群內通訊使用,Leader監聽此端口 3888 : zookeeper端口 用於選舉leader Hbase: 60010:Hbase的master的WEB UI端口 60030:Hbase的regionServer的WEB UI 管理端口 Hive: 9083 : metastore服務默認監聽端口 10000:Hive 的JDBC端口 Spark: 7077 : spark 的master與worker進行通訊的端口 standalone集群提交Application的端口 8080 : master的WEB UI端口 資源調度 8081 : worker的WEB UI 端口 資源調度 4040 : Driver的WEB UI 端口 任務調度 18080:Spark History Server的WEB UI 端口 Kafka: 9092: Kafka集群節點之間通信的RPC端口 CDH: 7180: Cloudera Manager WebUI端口 7182: Cloudera Manager Server 與 Agent 通訊端口 HUE: 8888: Hue WebUI 端口 以下為搜索到的可用端口詳細對應表 TCP端口(靜態端口) TCP 0= Reserved TCP 1=TCP Port Service Multiplexer TCP 2=Death TCP 5=Remote Job Entry,yoyo TCP 7=Echo TCP 11=Skun TCP 12=Bomber TCP 16=Skun TCP 17=Skun TCP 18=消息傳輸協議,skun TCP 19=Skun TCP 20=FTP Data,Amanda TCP 21=文件傳輸,Back Construction,Blade Runner,Doly Trojan,Fore,FTP trojan,Invisible FTP,Larva,WebEx,WinCrash TCP 22=遠程登錄協議 TCP 23=遠程登錄(Telnet),Tiny Telnet Server (= TTS) TCP 25=電子郵件(SMTP),Ajan,Antigen,Email Password Sender,Happy 99,Kuang2,ProMail trojan,Shtrilitz,Stealth,Tapiras,Terminator,WinPC,WinSpy,Haebu Coceda TCP 27=Assasin TCP 28=Amanda TCP 29=MSG ICP TCP 30=Agent 40421 TCP 31=Agent 31,Hackers Paradise,Masters Paradise,Agent 40421 TCP 37=Time,ADM worm TCP 39=SubSARI TCP 41=DeepThroat,Foreplay TCP 42=Host Name Server TCP 43=WHOIS TCP 44=Arctic TCP 48=DRAT TCP 49=主機登錄協議 TCP 50=DRAT TCP 51=IMP Logical Address Maintenance,Fuck Lamers Backdoor TCP 52=MuSka52,Skun TCP 53=DNS,Bonk (DOS Exploit) TCP 54=MuSka52 TCP 58=DMSetup TCP 59=DMSetup TCP 63=whois++ TCP 64=Communications Integrator TCP 65=TACACS-Database Service TCP 66=Oracle SQL*NET,AL-Bareki TCP 67=Bootstrap Protocol Server TCP 68=Bootstrap Protocol Client TCP 69=TFTP,W32.Evala.Worm,BackGate Kit,Nimda,Pasana,Storm,Storm worm,Theef,Worm.Cycle.a TCP 70=Gopher服務,ADM worm TCP 79=用戶查詢(Finger),Firehotcker,ADM worm TCP 80=超文本服務器(Http),Executor,RingZero TCP 81=Chubo,Worm.Bbeagle.q TCP 82=Netsky-Z TCP 88=Kerberos krb5服務 TCP 99=Hidden Port TCP 102=消息傳輸代理 TCP 108=SNA網關訪問服務器 TCP 109=Pop2 TCP 110=電子郵件(Pop3),ProMail TCP 113=Kazimas,Auther Idnet TCP 115=簡單文件傳輸協議 TCP 118=SQL Services,Infector 1.4.2 TCP 119=新聞組傳輸協議(Newsgroup(Nntp)),Happy 99 TCP 121=JammerKiller,Bo jammerkillah TCP 123=網絡時間協議(NTP),Net Controller TCP 129=Password Generator Protocol TCP 133=Infector 1.x TCP 135=微軟DCE RPC end-point mapper服務 TCP 137=微軟Netbios Name服務(網上鄰居傳輸文件使用) TCP 138=微軟Netbios Name服務(網上鄰居傳輸文件使用) TCP 139=微軟Netbios Name服務(用於文件及打印機共享) TCP 142=NetTaxi TCP 143=Internet 郵件訪問協議版本 4(IMAP4) TCP 146=FC Infector,Infector TCP 150=NetBIOS Session Service TCP 156=SQL服務器 TCP 161=Snmp TCP 162=Snmp-Trap TCP 170=A-Trojan TCP 177=X Display管理控制協議 TCP 179=Border網關協議(BGP) TCP 190=網關訪問控制協議(GACP) TCP 194=Irc TCP 197=目錄定位服務(DLS) TCP 220=Internet 郵件訪問協議版本 3(IMAP3) TCP 256=Nirvana TCP 315=The Invasor TCP 371=ClearCase版本管理軟件 TCP 389=Lightweight Directory Access Protocol (LDAP) TCP 396=Novell Netware over IP TCP 420=Breach TCP 421=TCP Wrappers TCP 443=安全服務(HTTPS) TCP 444=Simple Network Paging Protocol(SNPP) TCP 445=Microsoft-DS TCP 455=Fatal Connections TCP 456=Hackers paradise,FuseSpark TCP 458=蘋果公司QuickTime TCP 513=Grlogin TCP 514=RPC Backdoor UDP 520=Rip TCP 531=Rasmin,Net666 TCP 544=kerberos kshell TCP 546=DHCP Client TCP 547=DHCP Server TCP 548=Macintosh文件服務 TCP 555=Ini-Killer,Phase Zero,Stealth Spy TCP 569=MSN TCP 605=SecretService TCP 606=Noknok8 TCP 660=DeepThroat TCP 661=Noknok8 TCP 666=Attack FTP,Satanz Backdoor,Back Construction,Dark Connection Inside 1.2 TCP 667=Noknok7.2 TCP 668=Noknok6 TCP 669=DP trojan TCP 692=GayOL TCP 707=Welchia,nachi TCP 777=AIM Spy TCP 808=RemoteControl,WinHole TCP 815=Everyone Darling TCP 901=Backdoor.Devil TCP 911=Dark Shadow TCP 990=ssl加密 TCP 993=IMAP TCP 999=DeepThroat TCP 1000=Der Spaeher TCP 1001=Silencer,WebEx,Der Spaeher TCP 1003=BackDoor TCP 1010=Doly TCP 1011=Doly TCP 1012=Doly TCP 1015=Doly TCP 1016=Doly TCP 1020=Vampire TCP 1023=Worm.Sasser.e TCP端口(動態端口) TCP 1024=NetSpy.698(YAI) TCP 1025=NetSpy.698,Unused Windows Services Block TCP 1026=Unused Windows Services Block TCP 1027=Unused Windows Services Block TCP 1028=Unused Windows Services Block TCP 1029=Unused Windows Services Block TCP 1030=Unused Windows Services Block TCP 1033=Netspy TCP 1035=Multidropper TCP 1042=Bla TCP 1045=Rasmin TCP 1047=GateCrasher TCP 1050=MiniCommand TCP 1059=nimreg TCP 1069=Backdoor.TheefServer.202 TCP 1070=Voice,Psyber Stream Server,Streaming Audio Trojan TCP 1080=Wingate,Worm.BugBear.B,Worm.Novarg.B TCP 1090=Xtreme,VDOLive TCP 1092=LoveGate TCP 1095=Rat TCP 1097=Rat TCP 1098=Rat TCP 1099=Rat TCP 1110=nfsd-keepalive TCP 1111=Backdoor.AIMVision TCP 1155=Network File Access TCP 1170=Psyber Stream Server,Streaming Audio trojan,Voice TCP 1200=NoBackO TCP 1201=NoBackO TCP 1207=Softwar TCP 1212=Nirvana,Visul Killer TCP 1234=Ultors TCP 1243=BackDoor-G,SubSeven,SubSeven Apocalypse TCP 1245=VooDoo Doll TCP 1269=Mavericks Matrix TCP 1313=Nirvana TCP 1349=BioNet TCP 1433=Microsoft SQL服務 TCP 1441=Remote Storm TCP 1492=FTP99CMP(BackOriffice.FTP) TCP 1503=NetMeeting T.120 TCP 1509=Psyber Streaming Server TCP 1600=Shivka-Burka TCP 1688=Key Management Service(密鑰管理服務) TCP 1703=Exloiter 1.1 TCP 1720=NetMeeting H.233 call Setup TCP 1723=VPN 網關(PPTP) TCP 1731=NetMeeting音頻調用控制 TCP 1807=SpySender TCP 1966=Fake FTP 2000 TCP 1976=Custom port TCP 1981=Shockrave TCP 1990=stun-p1 cisco STUN Priority 1 port TCP 1990=stun-p1 cisco STUN Priority 1 port TCP 1991=stun-p2 cisco STUN Priority 2 port TCP 1992=stun-p3 cisco STUN Priority 3 port,ipsendmsg IPsendmsg TCP 1993=snmp-tcp-port cisco SNMP TCP port TCP 1994=stun-port cisco serial tunnel port TCP 1995=perf-port cisco perf port TCP 1996=tr-rsrb-port cisco Remote SRB port TCP 1997=gdp-port cisco Gateway Discovery Protocol TCP 1998=x25-svc-port cisco X.25 service (XOT) TCP 1999=BackDoor,TransScout TCP 2000=Der Spaeher,INsane Network TCP 2002=W32. Beagle .AX @mm TCP 2001=Transmisson scout TCP 2002=Transmisson scout TCP 2003=Transmisson scout TCP 2004=Transmisson scout TCP 2005=TTransmisson scout TCP 2011=cypress TCP 2015=raid-cs TCP 2023=Ripper,Pass Ripper,Hack City Ripper Pro TCP 2049=NFS TCP 2115=Bugs TCP 2121=Nirvana TCP 2140=Deep Throat,The Invasor TCP 2155=Nirvana TCP 2208=RuX TCP 2255=Illusion Mailer TCP 2283=HVL Rat5 TCP 2300=PC Explorer TCP 2311=Studio54 TCP 2556=Worm.Bbeagle.q TCP 2565=Striker TCP 2583=WinCrash TCP 2600=Digital RootBeer TCP 2716=Prayer Trojan TCP 2745=Worm.BBeagle.k TCP 2773=Backdoor,SubSeven TCP 2774=SubSeven2.1&2.2 TCP 2801=Phineas Phucker TCP 2989=Rat TCP 3024=WinCrash trojan TCP 3127=Worm.Novarg TCP 3128=RingZero,Worm.Novarg.B TCP 3129=Masters Paradise TCP 3150=Deep Throat,The Invasor TCP 3198=Worm.Novarg TCP 3210=SchoolBus TCP 3332=Worm.Cycle.a TCP 3333=Prosiak TCP 3389=超級終端(遠程桌面) TCP 3456=Terror TCP 3459=Eclipse 2000 TCP 3700=Portal of Doom TCP 3791=Eclypse TCP 3801=Eclypse TCP 3996=Portal of Doom,RemoteAnything TCP 4000=騰訊QQ客戶端 TCP 4060=Portal of Doom,RemoteAnything TCP 4092=WinCrash TCP 4242=VHM TCP 4267=SubSeven2.1&2.2 TCP 4321=BoBo TCP 4444=Prosiak,Swift remote TCP 4500=W32.HLLW.Tufas TCP 4567=File Nail TCP 4590=ICQTrojan TCP 4899=Remote Administrator服務器 TCP 4950=ICQTrojan TCP 5000=WindowsXP服務器,Blazer 5,Bubbel,Back Door Setup,Sockets de Troie TCP 5001=Back Door Setup,Sockets de Troie TCP 5002=cd00r,Shaft TCP 5011=One of the Last Trojans (OOTLT) TCP 5025=WM Remote KeyLogger TCP 5031=Firehotcker,Metropolitan,NetMetro TCP 5032=Metropolitan TCP 5190=ICQ Query TCP 5321=Firehotcker TCP 5333=Backage Trojan Box 3 TCP 5343=WCrat TCP 5400=Blade Runner,BackConstruction1.2 TCP 5401=Blade Runner,Back Construction TCP 5402=Blade Runner,Back Construction TCP 5471=WinCrash TCP 5512=Illusion Mailer TCP 5521=Illusion Mailer TCP 5550=Xtcp,INsane Network TCP 5554=Worm.Sasser TCP 5555=ServeMe TCP 5556=BO Facil TCP 5557=BO Facil TCP 5569=Robo-Hack TCP 5598=BackDoor 2.03 TCP 5631=PCAnyWhere data TCP 5632=PCAnyWhere TCP 5637=PC Crasher TCP 5638=PC Crasher TCP 5698=BackDoor TCP 5714=Wincrash3 TCP 5741=WinCrash3 TCP 5742=WinCrash TCP 5760=Portmap Remote Root Linux Exploit TCP 5880=Y3K RAT TCP 5881=Y3K RAT TCP 5882=Y3K RAT TCP 5888=Y3K RAT TCP 5889=Y3K RAT TCP 5900=WinVnc TCP 6000=Backdoor.AB TCP 6006=Noknok8 TCP 6129=Dameware Nt Utilities服務器 TCP 6272=SecretService TCP 6267=廣外女生 TCP 6400=Backdoor.AB,The Thing TCP 6500=Devil 1.03 TCP 6661=Teman TCP 6666=TCPshell.c TCP 6667=NT Remote Control,Wise 播放器接收端口 TCP 6668=Wise Video廣播端口 TCP 6669=Vampyre TCP 6670=DeepThroat,iPhone TCP 6671=Deep Throat 3.0 TCP 6711=SubSeven TCP 6712=SubSeven1.x TCP 6713=SubSeven TCP 6723=Mstream TCP 6767=NT Remote Control TCP 6771=DeepThroat TCP 6776=BackDoor-G,SubSeven,2000 Cracks TCP 6777=Worm.BBeagle TCP 6789=Doly Trojan TCP 6838=Mstream TCP 6883=DeltaSource TCP 6912=Shit Heep TCP 6939=Indoctrination TCP 6969=GateCrasher,Priority,IRC 3 TCP 6970=RealAudio,GateCrasher TCP 7000=Remote Grab,NetMonitor,SubSeven1.x TCP 7001=Freak88 TCP 7201=NetMonitor TCP 7215=BackDoor-G,SubSeven TCP 7001=Freak88,Freak2k TCP 7300=NetMonitor TCP 7301=NetMonitor TCP 7306=NetMonitor,NetSpy 1.0 TCP 7307=NetMonitor,ProcSpy TCP 7308=NetMonitor,X Spy TCP 7323=Sygate服務器端 TCP 7424=Host Control TCP 7511=聰明基因 TCP 7597=Qaz TCP 7609=Snid X2 TCP 7626=冰河 TCP 7777=The Thing TCP 7789=Back Door Setup,ICQKiller TCP 7983=Mstream TCP 8000=騰訊OICQ服務器端,XDMA TCP 8010=Wingate,Logfile TCP 8011=WAY2.4 TCP 8080=WWW 代理,Ring Zero,Chubo,Worm.Novarg.B TCP 8102=網絡神偷 TCP 8181=W32.Erkez.D@mm TCP 8520=W32.Socay.Worm TCP 8594=I-Worm/Bozori.a TCP 8787=BackOfrice 2000 TCP 8888=Winvnc TCP 8897=Hack Office,Armageddon TCP 8989=Recon TCP 9000=Netministrator TCP 9325=Mstream TCP 9400=InCommand 1.0 TCP 9401=InCommand 1.0 TCP 9402=InCommand 1.0 TCP 9872=Portal of Doom TCP 9873=Portal of Doom TCP 9874=Portal of Doom TCP 9875=Portal of Doom TCP 9876=Cyber Attacker TCP 9878=TransScout TCP 9989=Ini-Killer TCP 9898=Worm.Win32.Dabber.a TCP 9999=Prayer Trojan TCP 10067=Portal of Doom TCP 10080=Worm.Novarg.B TCP 10084=Syphillis TCP 10085=Syphillis TCP 10086=Syphillis TCP 10101=BrainSpy TCP 10167=Portal Of Doom TCP 10168=Worm.Supnot.78858.c,Worm.LovGate.T TCP 10520=Acid Shivers TCP 10607=Coma trojan TCP 10666=Ambush TCP 11000=Senna Spy TCP 11050=Host Control TCP 11051=Host Control TCP 11223=Progenic,Hack ’99KeyLogger TCP 11831=TROJ_LATINUS.SVR TCP 12076=Gjamer,MSH.104b TCP 12223=Hack’99 KeyLogger TCP 12345=GabanBus,NetBus 1.6/1.7,Pie Bill Gates,X-bill TCP 12346=GabanBus,NetBus 1.6/1.7,X-bill TCP 12349=BioNet TCP 12361=Whack-a-mole TCP 12362=Whack-a-mole TCP 12363=Whack-a-mole TCP12378=W32/Gibe@MM TCP 12456=NetBus TCP 12623=DUN Control TCP 12624=Buttman TCP 12631=WhackJob,WhackJob.NB1.7 TCP 12701=Eclipse2000 TCP 12754=Mstream TCP 13000=Senna Spy TCP 13010=Hacker Brazil TCP 13013=Psychward TCP 13223=Tribal Voice的聊天程序PowWow TCP 13700=Kuang2 The Virus TCP 14456=Solero TCP 14500=PC Invader TCP 14501=PC Invader TCP 14502=PC Invader TCP 14503=PC Invader TCP 15000=NetDaemon 1.0 TCP 15092=Host Control TCP 15104=Mstream TCP 16484=Mosucker TCP 16660=Stacheldraht (DDoS) TCP 16772=ICQ Revenge TCP 16959=Priority TCP 16969=Priority TCP 17027=提供廣告服務的Conducent"adbot"共享軟件 TCP 17166=Mosaic TCP 17300=Kuang2 The Virus TCP 17490=CrazyNet TCP 17500=CrazyNet TCP 17569=Infector 1.4.x + 1.6.x TCP 17777=Nephron TCP 18753=Shaft (DDoS) TCP 19191=藍色火焰 TCP 19864=ICQ Revenge TCP 20000=Millennium II (GrilFriend) TCP 20001=Millennium II (GrilFriend) TCP 20002=AcidkoR TCP 20034=NetBus 2 Pro TCP 20168=Lovgate TCP 20203=Logged,Chupacabra TCP 20331=Bla TCP 20432=Shaft (DDoS) TCP 20808=Worm.LovGate.v.QQ TCP 213 35=Tribal Flood Network,Trinoo TCP 21544=Schwindler 1.82,GirlFriend TCP 21554=Schwindler 1.82,GirlFriend,Exloiter 1.0.1.2 TCP 22222=Prosiak,RuXUploader2.0 TCP 22784=Backdoor.Intruzzo TCP 23432=Asylum 0.1.3 TCP 23444=網絡公牛 TCP 23456=Evil FTP,Ugly FTP,WhackJob TCP 23476=Donald Dick TCP 23477=Donald Dick TCP 23777=INet Spy TCP 26274=Delta TCP 26681=Spy Voice TCP 27374=Sub Seven 2.0+,Backdoor.Baste TCP 27444=Tribal Flood Network,Trinoo TCP 27665=Tribal Flood Network,Trinoo TCP 29431=Hack Attack TCP 29432=Hack Attack TCP 29104=Host Control TCP 29559=TROJ_LATINUS.SVR TCP 29891=The Unexplained TCP 30001=Terr0r32 TCP 30003=Death,Lamers Death TCP 30029=AOL trojan TCP 30100=NetSphere 1.27a,NetSphere 1.31 TCP 30101=NetSphere 1.31,NetSphere 1.27a TCP 30102=NetSphere 1.27a,NetSphere 1.31 TCP 30103=NetSphere 1.31 TCP 30303=Sockets de Troie TCP 30722=W32.Esbot.A TCP 30947=Intruse TCP 30999=Kuang2 TCP 31336=Bo Whack TCP 31337=Baron Night,BO client,BO2,Bo Facil,BackFire,Back Orifice,DeepBO,Freak2k,NetSpy TCP 31338=NetSpy,Back Orifice,DeepBO TCP 31339=NetSpy DK TCP 31554=Schwindler TCP 31666=BOWhack TCP 31778=Hack Attack TCP 31785=Hack Attack TCP 31787=Hack Attack TCP 31789=Hack Attack TCP 31791=Hack Attack TCP 31792=Hack Attack TCP 32100=PeanutBrittle TCP 32418=Acid Battery TCP 33333=Prosiak,Blakharaz 1.0 TCP 33577=Son Of Psychward TCP 33777=Son Of Psychward TCP 33911=Spirit 2001a TCP 34324=BigGluck,TN,Tiny Telnet Server TCP 34555=Trin00 (Windows) (DDoS) TCP 35555=Trin00 (Windows) (DDoS) TCP 36794=Worm.Bugbear-A TCP 37651=YAT TCP 40412=The Spy TCP 40421=Agent 40421,Masters Paradise.96 TCP 40422=Masters Paradise TCP 40423=Masters Paradise.97 TCP 40425=Masters Paradise TCP 40426=Masters Paradise 3.x TCP 41666=Remote Boot TCP 43210=Schoolbus 1.6/2.0 TCP 44444=Delta Source TCP 44445=Happypig TCP 45576=未知代理 TCP 47252=Prosiak TCP 47262=Delta TCP 47878=BirdSpy2 TCP 49301=Online Keylogger TCP 50505=Sockets de Troie TCP 50766=Fore,Schwindler TCP 51966=CafeIni TCP 53001=Remote Windows Shutdown TCP 53217=Acid Battery 2000 TCP 54283=Back Door-G,Sub7 TCP 54320=Back Orifice 2000,Sheep TCP 54321=School Bus .69-1.11,Sheep,BO2K TCP 57341=NetRaider TCP 58008=BackDoor.Tron TCP 58009=BackDoor.Tron TCP 58339=ButtFunnel TCP 59211=BackDoor.DuckToy TCP 60000=Deep Throat TCP 60068=Xzip 6000068 TCP 60411=Connection TCP 60606=TROJ_BCKDOR.G2.A TCP 61466=Telecommando TCP 61603=Bunker-kill TCP 63485=Bunker-kill TCP 65000=Devil,DDoS TCP 65432=Th3tr41t0r,The Traitor TCP 65530=TROJ_WINMITE.10 TCP 65535=RC,Adore Worm/Linux UDP端口(靜態端口) UDP 1=Sockets des Troie UDP 9=Chargen UDP 19=Chargen UDP 69=Pasana UDP 80=Penrox UDP 371=ClearCase版本管理軟件 UDP 445=公共Internet文件系統(CIFS) UDP 500=Internet密鑰交換(IP安全性 ,IKE) UDP端口(動態端口) UDP 1025=Maverick’s Matrix 1.2 - 2.0 UDP 1026=Remote Explorer 2000 UDP 1027=UC聊天軟件,Trojan.Huigezi.e UDP 1028=3721上網助手(用途不明,建議用戶警惕!),KiLo,SubSARI UDP 1029=SubSARI UDP 1031=Xot UDP 1032=Akosch4 UDP 1104=RexxRave UDP 1111=Daodan UDP 1116=Lurker UDP 1122=Last 2000,Singularity UDP 1183=Cyn,SweetHeart UDP 1200=NoBackO UDP 1201=NoBackO UDP 1342=BLA trojan UDP 1344=Ptakks UDP 1349=BO dll UDP 1561=MuSka52 UDP 1701=VPN網關(L2TP) UDP 1772=NetControle UDP 1978=Slapper UDP 1985=Black Diver UDP 2000=A-trojan,Fear,Force,GOTHIC Intruder,Last 2000,Real 2000 UDP 2001=Scalper UDP 2002=Slapper UDP 2015=raid-cs UDP 2018=rellpack UDP 2130=Mini BackLash UDP 2140=Deep Throat,Foreplay,The Invasor UDP 2222=SweetHeart,Way UDP 2339=Voice Spy UDP 2702=Black Diver UDP 2989=RAT UDP 3150=Deep Throat UDP 3215=XHX UDP 3333=Daodan UDP 3801=Eclypse UDP 3996=Remote Anything UDP 4128=RedShad UDP 4156=Slapper UDP 4500=sae-urn/ (IP安全性,IKE NAT遍歷) UDP 5419=DarkSky UDP 5503=Remote Shell Trojan UDP 5555=Daodan UDP 5882=Y3K RAT UDP 5888=Y3K RAT UDP 6112=Battle .net Game UDP 6666=KiLo UDP 6667=KiLo UDP 6766=KiLo UDP 6767=KiLo,UandMe UDP 6838=Mstream Agent-handler UDP 7028=未知木馬 UDP 7424=Host Control UDP 7788=Singularity UDP 7983=MStream handler-agent UDP 8012=Ptakks UDP 8090=Aphex’s Remote Packet Sniffer UDP 8127=9_119,Chonker UDP 8488=KiLo UDP 8489=KiLo UDP 8787=BackOrifice 2000 UDP 8879=BackOrifice 2000 UDP 9325=MStream Agent-handler UDP 10000=XHX UDP 10067=Portal of Doom UDP 10084=Syphillis UDP 10100=Slapper UDP 10167=Portal of Doom UDP 10498=Mstream UDP 10666=Ambush UDP 11225=Cyn UDP 12321=Protoss UDP 12345=BlueIce 2000 UDP12378=W32/Gibe@MM UDP 12623=ButtMan,DUN Control UDP 15210=UDP remote shell backdoor server UDP 15486=KiLo UDP 16514=KiLo UDP 16515=KiLo UDP 18753=Shaft handler to Agent UDP 20433=Shaft UDP 21554=GirlFriend UDP 22784=Backdoor.Intruzzo UDP 23476=Donald Dick UDP 25123=MOTD UDP 26274=Delta Source UDP 26374=Sub-7 2.1 UDP 26444=Trin00/TFN2K UDP 26573=Sub-7 2.1 UDP 27184=Alvgus trojan 2000 UDP 27444=Trinoo UDP 29589=KiLo UDP 29891=The Unexplained UDP 30103=NetSphere UDP 31320=Little Witch UDP 31335=Trin00 DoS Attack UDP 31337=Baron Night,BO client,BO2,Bo Facil,BackFire,Back Orifice,DeepBO UDP 31338=Back Orifice,NetSpy DK,DeepBO UDP 31339=Little Witch UDP 31340=Little Witch UDP 31416=Lithium UDP 31787=Hack aTack UDP 31789=Hack aTack UDP 31790=Hack aTack UDP 31791=Hack aTack UDP 33390=未知木馬 UDP 34555=Trinoo UDP 35555=Trinoo UDP 43720=KiLo UDP 44014=Iani UDP 44767=School Bus UDP 46666=Taskman UDP 47262=Delta Source UDP 47785=KiLo UDP 49301=OnLine keyLogger UDP 49683=Fenster UDP 49698=KiLo UDP 52901=Omega UDP 54320=Back Orifice UDP 54321=Back Orifice 2000 UDP 54341=NetRaider Trojan UDP 61746=KiLO UDP 61747=KiLO UDP 61748=KiLO UDP 65432=The Traitor
端口利用
端口利用
21 FTP弱密碼
22 SSH弱密碼
23 telnet弱密碼
25 郵件偽造,vrfy/expn查詢郵件用戶信息,可使用smtp-user-enum工具來自動跑
53 DNS溢出、遠程代碼執行、允許區域傳送,dns劫持,緩存投毒,欺騙以及各種基於dns隧道的遠控
69 嘗試下載目標及其的各類重要配置文件
80 IIS6 RCE
80-89 應用服務器端口
110 POP3 可嘗試爆破,嗅探
111 NFS 權限配置不當
137 SMB
143 IMAP 爆破
161 SNMP 爆破默認團隊字符串,搜集目標內網信息
139 smb、嗅探
161 snmp默認團體名/弱口令漏洞
389 LDAP注入、匿名訪問、弱口令
443 poodle漏洞、應用服務器端口
445 ms17-010、ms08-067
464 kpasswd Kerberos 口令和鑰匙改換服務
512,513,514 Linux rexec 可爆破,rlogin登陸
554 RTSP
873 rsync
1080 ss 可以嘗試使用ss代理工具進行代理
1194 OpenVPN 想辦法釣VPN賬號,進內網
1352 Lotus 弱口令,信息泄漏,爆破
1433 mssql(sql server) 注入,提權,sa弱口令,爆破
1500 ISPmanager 弱口令
1521 Oracle tns爆破,注入,彈shell…
1723 PPTP 爆破,想辦法釣VPN賬號,進內網
2082,2083 cPanel 弱口令
2049 NFS 權限配置不當
2181 Zookeeper
2375 docker
2601,2604 Zebra 默認密碼zerbra
3000 grafan
3128 Squid 弱口令
3306 mysql弱密碼
3312,3311 kangle 弱口令
3389 ms12-020、Windows rdp shift后門[需要03以下的系統]、爆破
3690 svn泄露,未授權訪問
4848 GlassFish 弱口令
4899 radmin
5000 Flask、Sybase/DB2 爆破,注入
5432 postgresql 爆破,注入,弱口令
5900,5901,5902 VNC 弱口令爆破 VNC提權
5984 couchdb
5985 SOAP
6379 redis未授權訪問
6443 Kubernetes
7001 weblogic、websphere
7002 WebLogic Java反序列化,弱口令
7778 Kloxo 主機面板登錄
8000 Ajenti 弱口令
8069 Zabbix 遠程執行,SQL注入
8080 jenkins、GeoServer、Kubernetes、JBOSS、libssh、poodle
8180 libssh - cve-2018-10933、JBOSS
8393、8983、8081、80、443、8080 solr
8443 Plesk 弱口令
8440-8450,8080-8089 應用服務器端口(可嘗試經典的topn,vpn,owa,webmail,目標oa,各類Java控制台,各類服務器Web管理面板,各類Web中間件漏 洞利用,各類Web框架漏洞利用等等……)
8161 ActiveMQ后台弱密碼(admin/admin)漏洞以及put寫shell
9080-9081,9090 WebSphere(應用服務器) Java反序列化/弱口令
9043 、9443 poodle
9200,9300 Elasticsearch未授權訪問漏洞、elasticsearch遠程命令執行、Elasticsearch任意文件讀取
11211 memcache
27017,27018 mongodb
43958 Serv-U
50070,50030 hadoop
61616 ActiveMQ
端口掃描:
80,443,22,21,25,2500,993,994,995,465,587,110,143,8080,47001,8081,81,8443,8088,8000,8888,8082,8090,88,8001,82,8008,9001,9000,8089,9080,8085,8086,8181,8139,8084,8889,8021,9002,8083,9999,9443,84,1755,7443,5985,8091,18100,10000,7001,8009,8002,83,7002,9090,6060,8022,6443,10001,7009,7003,6001,8003,8800,7081,7070,7005,8087,7082,8025,7004,40029,5000,5443,86,8026,7020,7010,7012,7006,7083,7018,10080,7015,7021,7019,8020,7026,7014,800,7024,7025,7013,7097,7011,7016,7000,7022,7023,808,9012,9663,3333,7088,9081,8663,7777,8553,4443,12601,6666,9553,89,8999,5222,48800,9023,9021,9211,9200,9208,9210,9207,9209,9213,22345,9212,9037,9205,9027,9201,9082,2222,85,90,1000,8686,18080,8100,8101,2083,8880,22222,9003,2096,8005,6000,7485,28080,843,7080,2087,8006,2013,18800,8134,87,8099,8060,97,2082,8077,48002,2095,2086,30000,1935,3211,8078,8106,9898,48003,2223,8070,7800,770,7510,55888,775,779,801,2053,2052,9929,1820,9919,33702,9918,9908,9916,9928,9939,8334,18801,91,18803,18980,776,8092,8336,3939,3601,15001,1090,9180,30001,2091,666,6520,58080,5357,15002,2888,3000,3501,7388,9332,8011,6510,1119,3080,554,6320,5186,20000,1,3,4,6,7,9,13,17,19,20,23,24,26,30,32,33,37,42,43,49,53,70,79,99,100,106,109,111,113,119,125,135,139,144,146,161,163,179,199,211,212,222,254,255,256,259,264,280,301,306,311,340,366,389,406,407,416,417,425,427,444,445,458,464,481,497,500,512,513,514,515,524,541,543,544,545,548,555,563,593,616,617,625,631,636,646,648,667,668,683,687,691,700,705,711,714,720,722,726,749,765,777,783,787,873,880,888,898,900,901,902,903,911,912,981,987,990,992,999,1001,1002,1007,1009,1010,1011,1021,1022,1023,1024,1025,1026,1027,1028,1029,1030,1031,1032,1033,1034,1035,1036,1037,1038,1039,1040,1041,1042,1043,1044,1045,1046,1047,1048,1049,1050,1051,1052,1053,1054,1055,1056,1057,1058,1059,1060,1061,1062,1063,1064,1065,1066,1067,1068,1069,1070,1071,1072,1073,1074,1075,1076,1077,1078,1079,1080,1081,1082,1083,1084,1085,1086,1087,1088,1089,1091,1092,1093,1094,1095,1096,1097,1098,1099,1100,1102,1104,1105,1106,1107,1108,1110,1111,1112,1113,1114,1117,1121,1122,1123,1124,1126,1130,1131,1132,1137,1138,1141,1145,1147,1148,1149,1151,1152,1154,1163,1164,1165,1166,1169,1174,1175,1183,1185,1186,1187,1192,1198,1199,1201,1213,1216,1217,1218,1233,1234,1236,1244,1247,1248,1259,1271,1272,1277,1287,1296,1300,1301,1309,1310,1311,1322,1328,1334,1352,1417,1433,1434,1443,1455,1461,1494,1500,1501,1503,1521,1524,1533,1556,1580,1583,1594,1600,1641,1658,1666,1687,1688,1700,1717,1718,1719,1720,1721,1723,1761,1782,1783,1801,1805,1812,1839,1840,1862,1863,1864,1875,1900,1914,1947,1971,1972,1974,1984,1998,1999,2000,2001,2002,2003,2004,2005,2006,2007,2008,2009,2010,2020,2021,2022,2030,2033,2034,2035,2038,2040,2041,2042,2043,2045,2046,2047,2048,2049,2065,2068,2099,2100,2103,2105,2106,2107,2111,2119,2121,2126,2135,2144,2160,2161,2170,2179,2190,2191,2196,2200,2251,2260,2288,2301,2323,2366,2381,2382,2383,2393,2394,2399,2401,2492,2522,2525,2557,2601,2602,2604,2605,2607,2608,2638,2701,2702,2710,2717,2718,2725,2800,2809,2811,2869,2875,2909,2910,2920,2967,2968,2998,3001,3003,3005,3006,3007,3011,3013,3017,3030,3031,3052,3071,3077,3128,3168,3221,3260,3261,3268,3269,3283,3300,3301,3306,3322,3323,3324,3325,3351,3367,3369,3370,3371,3372,3389,3390,3404,3476,3493,3517,3527,3546,3551,3580,3659,3689,3690,3703,3737,3766,3784,3800,3801,3809,3814,3826,3827,3828,3851,3869,3871,3878,3880,3889,3905,3914,3918,3920,3945,3971,3986,3995,3998,4000,4001,4002,4003,4004,4005,4006,4045,4111,4125,4126,4129,4224,4242,4279,4321,4343,4444,4445,4446,4449,4550,4567,4662,4848,4899,4900,4998,5001,5002,5003,5004,5009,5030,5033,5050,5051,5054,5060,5061,5080,5087,5100,5101,5102,5120,5190,5200,5214,5221,5225,5226,5269,5280,5298,5405,5414,5431,5432,5440,5500,5510,5544,5550,5555,5560,5566,5631,5633,5666,5678,5679,5718,5730,5800,5801,5802,5810,5811,5815,5822,5825,5850,5859,5862,5877,5900,5901,5902,5903,5904,5906,5907,5910,5911,5915,5922,5925,5950,5952,5959,5960,5961,5962,5963,5987,5988,5989,5998,5999,6002,6003,6004,6005,6006,6007,6009,6025,6059,6100,6101,6106,6112,6123,6129,6156,6346,6389,6502,6543,6547,6565,6566,6567,6580,6646,6667,6668,6669,6689,6692,6699,6779,6788,6789,6792,6839,6881,6901,6969,7007,7100,7103,7106,7200,7201,7402,7435,7496,7512,7625,7627,7676,7741,7778,7911,7920,7921,7937,7938,7999,8007,8010,8031,8042,8045,8093,8180,8192,8193,8194,8200,8222,8254,8290,8291,8292,8300,8333,8383,8400,8402,8500,8600,8649,8651,8652,8654,8701,8873,8899,8994,9009,9010,9011,9040,9050,9071,9091,9099,9100,9101,9102,9103,9110,9111,9220,9290,9415,9418,9485,9500,9502,9503,9535,9575,9593,9594,9595,9618,9666,9876,9877,9878,9900,9917,9943,9944,9968,9998,10002,10003,10004,10009,10010,10012,10024,10025,10082,10180,10215,10243,10566,10616,10617,10621,10626,10628,10629,10778,11110,11111,11967,12000,12174,12265,12345,13456,13722,13782,13783,14000,14238,14441,14442,15000,15003,15004,15660,15742,16000,16001,16012,16016,16018,16080,16113,16992,16993,17877,17988,18040,18101,18988,19101,19283,19315,19350,19780,19801,19842,20005,20031,20221,20222,20828,21571,22939,23502,24444,24800,25734,25735,26214,27000,27352,27353,27355,27356,27715,28201,30718,30951,31038,31337,32768,32769,32770,32771,32772,32773,32774,32775,32776,32777,32778,32779,32780,32781,32782,32783,32784,32785,33354,33899,34571,34572,34573,35500,38292,40193,40911,41511,42510,44176,44442,44443,44501,45100,48080,49152,49153,49154,49155,49156,49157,49158,49159,49160,49161,49163,49165,49167,49175,49176,49400,49999,50000,50001,50002,50003,50006,50300,50389,50500,50636,50800,51103,51493,52673,52822,52848,52869,54045,54328,55055,55056,55555,55600,56737,56738,57294,57797,60020,60443,61532,61900,62078,63331,64623,64680,65000,65129,65389