SSH                           22

                                   Telnet                        23

                                   SMTP                          25

                                   DNS                           53
                                   HTTP                          80

                                   POP3                          110

                                   NTP                           123

                                   Windows File Sharing 135, 137–139, 445

                                   HTTPS                         443

                                   lpr                           515
                                   Microsoft SQL Server 1433/1434

                                   Oracle                        1521

                                   H.323                         1720

                                   PPTP                          1723

                                   RDP                           3389

                                   HP JetDirect printing 9100



               Nessus is a commonly used vulnerability scanner, but there are also
               many others available. Other popular commercial scanners include
               Qualys’s QualysGuard and Rapid7’s NeXpose. The open source
               OpenVAS scanner also has a growing community of users.

               Organizations may also conduct specialized vulnerability assessments

               of wireless networks. Aircrack is a tool commonly used to perform
               these assessments by testing the encryption and other security
               parameters of wireless networks. It may be used in conjunction with
               passive monitoring techniques that may identify rogue devices on the
               network.


               Web Vulnerability Scanning

               Web applications pose significant risk to enterprise security. By their
               nature, the servers running many web applications must expose