Back to Tools

Port Reference Database

Quick reference for common ports, services, and security implications

Showing 73 of 73 ports

80

TCP

HTTP

medium

Hypertext Transfer Protocol

Unencrypted web traffic

443

TCP

HTTPS

low

HTTP over TLS/SSL

Encrypted web traffic

8080

TCP

HTTP Alternate

medium

Alternative HTTP port

Often used for proxies or dev servers

8443

TCP

HTTPS Alternate

low

Alternative HTTPS port

3000

TCP

Node.js Dev

medium

Common Node.js development port

5000

TCP

Flask/Development

medium

Python Flask default port

8000

TCP

Django/HTTP Alt

medium

Django/Alternative HTTP

3306

TCP

MySQL

critical

MySQL Database Server

Database exposure is high risk

5432

TCP

PostgreSQL

critical

PostgreSQL Database Server

27017

TCP

MongoDB

critical

MongoDB Database Server

Often misconfigured with no auth

6379

TCP

Redis

critical

Redis Key-Value Store

Often exposed without authentication

11211

TCP/UDP

Memcached

high

Memcached Object Caching

Can be used for DDoS amplification

9200

TCP

Elasticsearch

critical

Elasticsearch REST API

9300

TCP

Elasticsearch

critical

Elasticsearch Node Communication

1433

TCP

MSSQL

critical

Microsoft SQL Server

1521

TCP

Oracle DB

critical

Oracle Database

5984

TCP

CouchDB

high

Apache CouchDB

26257

TCP

CockroachDB

high

CockroachDB

7000

TCP

Cassandra

high

Apache Cassandra

7001

TCP

Cassandra SSL

high

Apache Cassandra SSL

25

TCP

SMTP

high

Simple Mail Transfer Protocol

Often blocked by ISPs

465

TCP

SMTPS

medium

SMTP over SSL (deprecated)

587

TCP

SMTP

medium

SMTP Submission

110

TCP

POP3

high

Post Office Protocol v3

995

TCP

POP3S

low

POP3 over SSL

143

TCP

IMAP

high

Internet Message Access Protocol

993

TCP

IMAPS

low

IMAP over SSL

20

TCP

FTP Data

high

FTP Data Transfer

21

TCP

FTP

high

FTP Control

Credentials sent in plaintext

22

TCP

SSH/SFTP

low

Secure Shell / SFTP

Secure but targeted by brute force

69

UDP

TFTP

high

Trivial File Transfer Protocol

No authentication

445

TCP

SMB

critical

Server Message Block

WannaCry/EternalBlue target

139

TCP

NetBIOS

high

NetBIOS Session Service

873

TCP

rsync

medium

rsync File Synchronization

2049

TCP/UDP

NFS

high

Network File System

23

TCP

Telnet

critical

Telnet Remote Access

Unencrypted - never use!

3389

TCP

RDP

critical

Remote Desktop Protocol

Common ransomware entry point

5900

TCP

VNC

high

Virtual Network Computing

5901

TCP

VNC

high

VNC Display :1

5902

TCP

VNC

high

VNC Display :2

5985

TCP

WinRM

high

Windows Remote Management HTTP

5986

TCP

WinRM

medium

Windows Remote Management HTTPS

53

TCP/UDP

DNS

medium

Domain Name System

DNS can be used for tunneling

88

TCP/UDP

Kerberos

medium

Kerberos Authentication

123

UDP

NTP

medium

Network Time Protocol

Can be used for DDoS amplification

161

UDP

SNMP

high

Simple Network Management Protocol

Often uses default communities

162

UDP

SNMP Trap

high

SNMP Trap

389

TCP/UDP

LDAP

high

Lightweight Directory Access Protocol

636

TCP

LDAPS

medium

LDAP over SSL

1080

TCP

SOCKS

medium

SOCKS Proxy

8888

TCP

Proxy

medium

HTTP Proxy

2375

TCP

Docker

critical

Docker unencrypted

Unauth Docker API = full host access

2376

TCP

Docker TLS

high

Docker encrypted

2377

TCP

Docker Swarm

high

Docker Swarm cluster

10250

TCP

Kubelet

critical

Kubernetes Kubelet API

10255

TCP

Kubelet RO

high

Kubernetes Kubelet Read-Only

6443

TCP

Kubernetes API

high

Kubernetes API Server

4243

TCP

Docker

critical

Docker (older)

67

UDP

DHCP

info

DHCP Server

68

UDP

DHCP

info

DHCP Client

111

TCP/UDP

RPCbind

medium

RPC Portmapper

179

TCP

BGP

high

Border Gateway Protocol

514

UDP

Syslog

low

System Logging

1194

UDP

OpenVPN

low

OpenVPN

1723

TCP

PPTP

high

Point-to-Point Tunneling Protocol

Deprecated, insecure

1883

TCP

MQTT

medium

Message Queuing Telemetry Transport

4444

TCP

Metasploit

critical

Metasploit default handler

Common reverse shell port

5672

TCP

RabbitMQ

medium

RabbitMQ AMQP

8161

TCP

ActiveMQ

high

Apache ActiveMQ Web Console

9000

TCP

PHP-FPM/SonarQube

medium

PHP FastCGI Process Manager

9090

TCP

Prometheus

medium

Prometheus Monitoring

9092

TCP

Kafka

medium

Apache Kafka

50070

TCP

Hadoop

high

Hadoop NameNode Web UI