A curated collection of common TCP/UDP ports used by internal infrastructure, Linux servers, routers, cameras, web services, and other high-value network targets.
Designed for:
- Network reconnaissance
- Infrastructure auditing
- Pentesting
- Service fingerprinting
- Fast
nmapprofiling - Red team initial enumeration
- Categorized port lists
- TCP and UDP separation
- Ready-to-use
nmapsyntax - Router vendor profiles
- Camera/DVR/NVR profiles
- Web service ports
- Internal enterprise service ports
- Linux infrastructure ports
- Copy-paste friendly formatting
Common enterprise infrastructure services:
- SMB
- LDAP
- Kerberos
- MSSQL
- PostgreSQL
- Docker
- Kubernetes
- VMware
- Elasticsearch
- RabbitMQ
- WinRM
- NFS
- Redis
- MongoDB
Focused on Linux administration and infrastructure:
- SSH
- Docker API
- NFS
- Redis
- Kubernetes
- Prometheus
- Elasticsearch
- Webmin
- Node Exporter
Common HTTP administration and application ports:
- 80
- 8080
- 8443
- 8888
- 9090
- 10000
- Kibana
- WebLogic
- Jupyter
- Alternate admin panels
Includes common ports for:
- RTSP
- ONVIF
- Dahua
- XMeye/Xiongmai
- Embedded web panels
- Vendor streaming services
- Discovery protocols
Vendor-specific profiles included:
- TP-Link
- Cisco
- MikroTik
- Ubiquiti / UniFi
Generic router/service discovery profiles are also included.
nmap -sT -Pn -p 22,80,443,445,3389 <TARGET>sudo nmap -sU -Pn -p 53,123,161,1900 <TARGET>sudo nmap -sSU -Pn -p T:22,80,443,U:53,161 <TARGET>nmap -sV -sC <TARGET>network-ports/
├── internal-servers.txt
├── linux-servers.txt
├── http-ports.txt
├── cameras.txt
├── tplink.txt
├── cisco.txt
├── mikrotik.txt
├── ubiquiti.txt
├── generic-routers.txt
└── README.md
This repository aims to provide:
- Fast reconnaissance references
- Reusable port profiles
- Practical enumeration shortcuts
- Cleaner workflow for infrastructure assessments
Possible future categories:
- ICS / SCADA
- Industrial PLCs
- NAS devices
- Hypervisors
- VoIP systems
- PBX servers
- Cloud infrastructure
- Kubernetes exposure profiles
- IoT devices
- Smart home devices
Pull requests are welcome.
You can contribute:
- New vendor profiles
- Additional infrastructure ports
- Better
nmappresets - ICS/SCADA profiles
- Cloud infrastructure profiles
- IoT device profiles
This repository is intended for:
- Defensive security
- Authorized penetration testing
- Research
- Educational purposes
Only scan systems you own or are explicitly authorized to assess.
MIT License