Online Port Scanner & Checker

Scan common TCP ports on any host to find open services, detect exposed endpoints, and identify potential security gaps in your network perimeter.

No signup

Instant scan

100% free

What Is Port Scanning?

Port scanning checks which TCP ports on a host are open, closed, or filtered. Open ports indicate running services that may have vulnerabilities or misconfigurations. It is a fundamental step in both offensive security assessments and defensive perimeter hardening.

Why It Matters

Every open port is a potential entry point. Unnecessary services expose attack surface. Regular scanning helps you maintain a minimal, secure perimeter.

Common Mistakes

Leaving default ports open, running outdated services, no firewall rules, and scanning external targets without authorization are common pitfalls.

SYN_SCAN

TCP_HANDSHAKE

Port 443: OPEN

https

SCAN_ENGINE_V2

12 PORTS

How It Works

Input Host

Type a hostname or IP address to scan.

TCP Handshake

We attempt connections to common service ports.

Classify Results

Ports are marked as open, closed, or filtered.

Harden Perimeter

Close unnecessary ports and restrict access with firewalls.

Host or IP Support

Scan both hostnames and raw IP addresses. Useful for checking cloud instances, load balancers, and CDN edge nodes.

Service Detection

Maps common ports to known services. Quickly identify SSH, HTTP, HTTPS, SMTP, FTP, MySQL, and RDP endpoints.

Open/Closed/Filtered

Classifies each port state accurately. Open means a service is listening. Filtered means a firewall or NAT may be blocking.

Perimeter Audit

Quickly audit your network perimeter for exposed services. Ideal for pre-deployment checks and periodic security reviews.

Fast Results

Uses lightweight TCP handshakes for speed. Results arrive in seconds, not minutes. No heavy network traffic generated.

Scan Summary

Clear summary of open vs closed vs filtered ports. Actionable security snapshot at a glance.

Frequently Asked Questions

What is a port scanner?

A port scanner checks which TCP ports on a host are open, closed, or filtered. Open ports indicate running services that may have vulnerabilities or misconfigurations.

Is port scanning legal?

Scanning your own infrastructure is legal. Scanning third-party hosts without permission may violate terms of service or local laws. Always obtain authorization before scanning external targets.

Which ports does this scanner check?

This scanner checks the most common service ports including 21 (FTP), 22 (SSH), 25 (SMTP), 53 (DNS), 80 (HTTP), 110 (POP3), 143 (IMAP), 443 (HTTPS), 3306 (MySQL), and 3389 (RDP).

What does 'filtered' mean?

A filtered port means no response was received. This usually indicates a firewall is blocking the scan or the port is behind NAT. Filtered ports do not confirm the service is absent.

Should I close all open ports?

No. Services need open ports to function. Close unnecessary ports, restrict access with firewalls, and ensure exposed services are patched and properly configured.

Is this port scanner free?

Yes, this tool is 100% free with no signup required. For continuous port monitoring, change detection, and vulnerability correlation, upgrade to CyberFurl Pro.

What ports should be closed?

Generally, all ports should be closed or filtered by a firewall except those actively needed for public services (like 80 and 443 for web servers). Leaving administrative ports like 22 (SSH) or 3389 (RDP) open is highly risky.

Related Security Tools

SSL Checker

TLS certificate health

Need Continuous Network Monitoring?

Automate port scans, track open port changes over time, and correlate findings with vulnerability data across your entire infrastructure.

Start Free Trial View Pricing