# Ports

Ports are one of the single largest risks to your attack surface. Every piece of computing technology on your attack surface is exposed through a TCP or UDP port, and is the beginning of a potentially complex series of steps to attack your company. NetSPI discovers internet-facing ports by performing full TCP connect port scanning against all IP addresses discovered on your attack surface.

# Accessing the Ports page

Select (or hover over) EASM in the side navigation and then select Ports to display the Ports page.

# Filter ports and view CVEs

1. Select the Filter icon to narrow the Ports table results. If any port has a CVE (common vulnerabilities and exposures) associated with it, the name and instance count of that CVE vulnerability or exposure display as filter options.

   See the Search, Sort, and Filter tables section for customizing the table display and the Save applied filter as a preset to save your user-defined filters for reuse.

   You can also select any of the Ports metrics cards to apply a filter to the table below that matches that metric criteria.

   

   Hover over any metric card's graph to view a specific date statistics for that metric.

2. Select any Ports table row to display the port details page in the slide out drawer that includes a port screenshot (if available), information, all associated CVEs, and the discovery chain for the port display.

   

   The Port Details includes four tabs: Overview, Details, Discovery, and Comments.

   Note

   Select the eye icon to the far right on any row to display a full page view of the Port details.

   

# Screenshot gallery

The screenshot gallery displays images that have been collected for each port. It can be accessed by selecting EASM -> Ports and then selecting the Screenshot Gallery icon.

The screenshots display by port by default. Select the Group by perception button to display only unique screenshots, with a count of how many ports each is associated with. Select any image's number to navigate to a table with all its associated ports.

Perceptual groupings are achieved by using a perceptual hash algorithm, which assigns a distinct and comparable hash to each image collected by our website image scanner. You can learn more about this technology here.

The Group by Perception button toggles to display as Group by Port, and selecting it will return the screenshot gallery to those screenshots grouped by the selected port.

# Favicon Hash

If a port has a favicon (/favicon.ico), the HTTP Metadata scan will fetch an mmh3 hash of it.

# Create Policy

See the Policies section for details on creating alerts for this asset type.