What we analyze
Each open port on your server is a potential entry point for attackers. We identify which services are exposed to the Internet and which of them may pose a security risk.
Verification points
Top 1000 TCP ports
Complete scan of the most common ports using Nmap.
Service detection
Identification of what service is running on each open port.
Version identification
Detection of specific versions to correlate with known vulnerabilities.
Unnecessary services
Identification of ports that should not be publicly exposed.
Why is it important?
Services exposed to the Internet that are not necessary or are outdated are one of the main attack vectors. Many breaches start with the exploitation of a forgotten service on an open port.
Impact if it fails
- Direct access to internal services
- Exploitation of vulnerabilities in exposed services
- Entry point for lateral attacks
- Information leakage through banners
Applicable Legal Framework
Article 32 of GDPR requires ensuring a level of security appropriate to the risk. Exposing unnecessary services increases risk without justification, which can be considered non-compliance.
Potential Sanctions
| Company Type | Indicative Fine |
|---|---|
| Micro-enterprise | 5,000 - 40,000 € |
| SME | 40,000 - 300,000 € |
| Large Enterprise | Up to 10M € or 2% turnover |