Internet Storm Center. As part of understanding what is going on, the Internet Storm Center is a pretty amazing site. Tells you what folks are scanning and where the attacks are. Pretty frightening really.
Tells you the top attacked ports and what applications use them. Amazing that most of these are Microsoft ports:
Top Attacked Ports
|program | port |
|epmap |135 |
|netbios-ns |137 |
|ms-sql-m (slammer) |1434 |
|microsoft-ds |445 |
|www |80 |
|netbios-ssn |139 |
|ms-sql-s |1433 |
|ftp |21 |
|CrackDown |4444 |
|rtsp |55 |
“Dshield”:http://dshield.org/. This is a site where you can submit your firewall logs and so folks can share intrusion information. Pretty useful. They have a neat map of the world with attacks. Also, they have “client”:http://dshield.org/windows_clients.php#universal software written that will troll through logs and submit them automatically. Supports many routers.
I’ve used WallWatcher from Linksys that does the same thing and it has a submission module as well. They have terrific instructions for how to install a PC daemon that watches the firewall reports and then pushes them up to Dshield or anywhere else for that matter.
Port Attacks
Published by
on
Hello,
I’m Rich & Co.
Welcome to Tongfamily, our cozy corner of the internet dedicated to all things technology and interesting. Here, we invite you to join us on a journey of tips, tricks, and traps. Let’s get geeky!
Let’s connect
Join the nerds!
Stay updated with our latest tutorials and ideas by joining our newsletter.
Recent posts
![mac: OLCP stuck on boot after root patching and MBP 2014]({"aperture":"0","credit":"","camera":"","caption":"Photo by Anna Tarazevich on <a href="https://www.pexels.com/photo/resume-lettering-text-on-black-background-5598289/" rel="nofollow">Pexels.com</a>","created_timestamp":"0","copyright":"","focal_length":"0","iso":"0","shutter_speed":"0","title":"resume lettering text on black background","orientation":"0"})
![sec: Passkeys are everywhere how do I add to 1Password and Apple Keychain]({"aperture":"0","credit":"","camera":"","caption":"Photo by Oleksandr P on <a href="https://www.pexels.com/photo/person-with-keys-for-real-estate-7599735/" rel="nofollow">Pexels.com</a>","created_timestamp":"0","copyright":"","focal_length":"0","iso":"0","shutter_speed":"0","title":"person with keys for real estate","orientation":"0"})
![net: Argh Google Workspace Price increases keep coming]({"aperture":"0","credit":"","camera":"","caption":"Photo by ATBO on <a href="https://www.pexels.com/photo/black-padded-rolling-armchair-beside-desk-245219/" rel="nofollow">Pexels.com</a>","created_timestamp":"0","copyright":"","focal_length":"0","iso":"0","shutter_speed":"0","title":"black padded rolling armchair beside desk","orientation":"0"})
![av: MOONDROP littlewhite and Variations do rock]({"aperture":"0","credit":"","camera":"","caption":"Photo by Andrea Piacquadio on <a href="https://www.pexels.com/photo/woman-in-white-button-up-shirt-while-listening-to-music-3776839/" rel="nofollow">Pexels.com</a>","created_timestamp":"0","copyright":"","focal_length":"0","iso":"0","shutter_speed":"0","title":"woman in white button up shirt while listening to music","orientation":"0"})
![AV: Truly great Qudelix 5K with MOONDROP Variations Auto-eq (and Schitt Magni Soundsource shutoff)]({"aperture":"0","credit":"","camera":"","caption":"Photo by Shelagh Murphy on <a href="https://www.pexels.com/photo/grayscale-photo-of-people-raising-their-hands-1666816/" rel="nofollow">Pexels.com</a>","created_timestamp":"0","copyright":"","focal_length":"0","iso":"0","shutter_speed":"0","title":"grayscale photo of people raising their hands","orientation":"0"})
![tech: Synology NAS performance is 200 MBps and 500/700 IOPS good?]({"aperture":"0","credit":"","camera":"","caption":"Photo by Pixabay on <a href="https://www.pexels.com/photo/close-up-of-electric-lamp-against-black-background-248747/" rel="nofollow">Pexels.com</a>","created_timestamp":"0","copyright":"","focal_length":"0","iso":"0","shutter_speed":"0","title":"close up of electric lamp against black background","orientation":"0"})
Loading Mastodon feed…
