0x01 Remote Connection Service Port

Port number: 22

• Service: SSH Remote Connection
• SSH weak password cracking, user enumeration, SSH tunnel and intranet proxy forwarding, file transfer

Port number: 23

• Service: Telnet Remote Connection
• Password blasting, weak passwords
  https://blog.csdn.net/lushan0719/article/details/116648381

Port number: 3389

• Service: Service Port for Remote Desktop
• Shift Backdoor

Port number: 5900

• Service: VNC
• Weak passwords

0x02 file sharing service port

Port number: 21/22/69

• Service: ftp/tftp file transfer protocol
• Downloading, blasting, sniffing, etc.

Port number: 139

• Service: Samba
• Breaking, Unauthorized Access, Remote Code Execution

Port number: 389

• Service: Ldap Directory Access Protocol
• Injection, weak passwords

Port number: 2049

• Service: nfs service
• Upload, download, file sharing

0x03 database service port

Port number: 1521

• Service: Oracle
• TNS blasting, injection

Port number: 3306

• Service: MySql
• Blast, inject, escalate

Port number: 1433

• Service: MSSQL
• Blast, inject, escalate

Port number: 27017/27018

• Service: MongoDB
• Blasting, unauthorized access

Port number: 6379

• Service: Redis Database
• Blast

0x04 Web Application Service Port

Port number: 80/443/8080

• Service: web service port
• Web attack methods, blasting

Port number: 7001/7002

• Service: WebLogic Console
• Java deserialization

Port number: 8080/8089

• Service: Jboss/Resin/Jetty/Jenkins
• Deserialize

Port number: 9090

• Services: WebSphere Console
• Java deserialization

0x05 mail service port

Port number: 25

• Service: SMTP Mail Service
• Mail forgery

Port number: 110

• Service: POP3 Protocol
• Blast

Port number: 143

• Service: IMAP
• Blast

0x06 other ports

Port number: 53

• Services: DNS Domain Name System
• DNS hijacking, spoofing

Port number: 67/68

• Service: DHCP
• Spoofing, Hijacking

Port number: 161

• Service: SNMP
• Blast