Port Scanner (TCP)

Scan a Domain/Public IP, a Private/LAN host, or a small subnet (CIDR). We attempt TCP connects, can grab lightweight banners (SSH greetings, safe HTTP HEAD /), and probe TLS certificates on HTTPS-like ports.

Use responsibly. Only scan systems you own or are explicitly authorized to test.

Target type

Domain / Public IP Private / LAN Host Small Subnet (CIDR)

Domain/Public IP: example.com or 93.184.216.34 • Private/LAN: 192.168.1.10 (RFC1918) • Subnet: 192.168.1.0/28 (up to 32 hosts)

Target (hostname or IPv4) DNS resolution happens if enabled below.

Ports / ranges Lists and ranges allowed (comma/space separated), e.g. 22,80,1000-1010. Timeout (ms) Concurrency

Presets:

Resolve DNS TLS probe Banner grab

What happens during a scan?

TCP connect: We attempt to open a TCP connection to each port within your timeout.
Banner grabbing: If enabled, we read initial greetings (SSH/SMTP/FTP) or send a safe HTTP HEAD /.
TLS probe: For HTTPS-like ports (443/8443/9443/etc.), we read certificate subject/issuer/SANs and validity dates.
Performance tips: Lower timeout and moderate concurrency for nearby targets; raise timeout for distant ones.
Limits: Max 2,000 ports per scan. Subnet scans are capped at 32 hosts to keep the tool snappy.

Port Scanner (TCP)

Results

TLS Certificates

Subnet Results

Recent scans (local)