Common Ports Checker — Internet Exposure Scan by IPv4
Scan a public IPv4 for indexed open ports and service fingerprints via Shodan host lookup
How to Use This Tool
- Enter a public IPv4 address in the ip field.
- IPv4 validation rejects private and malformed addresses before lookup.
- Our server calls action shodan with the ip parameter.
- Enriched mode returns ports, hostnames, org, isp, vulns, and service samples.
- Basic-scan mode HEAD-probes eight common ports when Shodan API key is absent.
- Review ports array and source field to interpret coverage breadth.
About This Tool
Firewall auditors and penetration testers inventory which well-known services — SSH on 22, HTTP on 80, HTTPS on 443, SMTP on 25, RDP on 3389 — appear reachable from the public internet on a target IPv4. VSPIC common ports checker calls the shodan action with your IPv4 input — identical backend to shodan-quick-view. When SHODAN_API_KEY is configured server-side, results include source shodan with ports array, hostnames, org, isp, vulns identifiers, and up to ten sampled service records; without API key, source basic-scan performs parallel HEAD probes on ports 21, 22, 25, 80, 443, 3306, 8080, and 8443 with a note about limited coverage.
This page frames common-ports SEO vocabulary while the widget returns full host exposure data — filter the ports array for your checklist of common services rather than expecting a dedicated per-port probe UI. Pair with port-checker for interactive multi-port testing against authorized targets and tcp-port-test for single-port HTTP reachability.
Common use cases
- •Measure download and upload speed
- •Test open ports on a home router or server
- •Trace routing paths to diagnose latency
Why use VSPIC for ?
- Fast exposure snapshot for common service ports on one IPv4.
- Same reliable shodan backend as shodan-quick-view and vulnerability-scanner.
- vulns array surfaces Shodan-indexed CVE identifiers when enriched.
- source field distinguishes shodan versus basic-scan coverage.
- Free instant lookup with no account required.
- Pairs with reputation and malware IP tools for layered triage.
Common ports versus full Shodan host data
Operators searching common ports checker expect a checklist of frequently exposed services — FTP 21, SSH 22, Telnet 23, SMTP 25, DNS 53, HTTP 80, POP3 110, IMAP 143, HTTPS 443, SMB 445, MySQL 3306, RDP 3389. missing-tools-handlers.generated.ts maps common-ports-checker to type api, action shodan — the same host lookup as shodan-quick-view.
Filter the returned ports array against your common-port list. Enriched Shodan data may include additional ports beyond the classic checklist — that breadth is a feature for exposure discovery, not a mismatch error.
What shodan action returns
When SHODAN_API_KEY is set, handleShodan fetches api.shodan.io/shodan/host/{ip} and returns source shodan with ports array, hostnames, org, isp, vulns array, and up to ten data samples showing port, transport, and product fields.
Without API key, basic-scan HEAD-probes ports 21, 22, 25, 80, 443, 3306, 8080, and 8443 in parallel with source basic-scan and explanatory note — still useful for quick common-port triage on authorized targets.
Interpreting ports for security review
Unexpected SSH or RDP on internet-facing hosts warrants immediate hardening review. SMTP on non-mail-server IPs may indicate open relays or compromised hosts. MySQL and Redis without authentication historically drove ransomware incidents.
A clean ports list does not prove security — services may listen on non-standard ports Shodan indexes separately. Combine with authenticated vulnerability scanning for depth.
Relationship to shodan-quick-view
common-ports-checker and shodan-quick-view both call action shodan with identical JSON — source, ports or openPorts, vulns, org, hostnames, note. shodan-quick-view uses canonical Shodan SEO vocabulary; common ports checker frames results for checklist-oriented port inventory workflows.
API consumers use GET /ip-tools/api/extended?action=shodan&ip=203.0.113.10 interchangeably.
Relationship to port-checker and tcp-port-test
port-checker accepts hostname and comma-separated port list for interactive probing — better when you need specific ports tested live. tcp-port-test focuses on HTTP reachability to one port.
common-ports-checker is passive Shodan index plus limited basic-scan — faster for reconnaissance but not a substitute for credentialed scans.
vulns array and CVE correlation
Enriched responses include vulns identifiers Shodan associates with indexed banners. Cross-reference CVE databases and vendor advisories before patching — version strings in banners may be imprecise.
Empty vulns does not certify patch currency. Internal patch management remains authoritative.
IPv4-only scope
This form accepts public IPv4 only per handler fields. Resolve hostnames with ip-lookup or dns-lookup first. IPv6 exposure requires separate tooling not covered here.
CDN and anycast edges may show edge POP addresses rather than origin servers.
API action shodan
GET /ip-tools/api/extended?action=shodan&ip=203.0.113.10. Parse source, ports or openPorts, vulns, org, hostnames, note. Branch automation on source field — enriched and basic payloads differ.
Cache exposure briefly — internet-facing services change with deployments.
Responsible scanning
Query only IPv4 addresses you own or have written authorization to assess. Shodan data is already public index material, but combining results with active probing elsewhere may implicate computer misuse statutes.
We fetch Shodan or run basic-scan at lookup time without permanently storing your searches.
Important notes & limitations
- Returns full host scan — not a filtered common-ports-only report.
- Basic-scan probes only eight ports without Shodan API key.
- Passive index data — may lag live firewall changes.
- IPv4 input only — resolve hostnames separately before checking.
- Scanning third-party IPs without authorization may violate policy or law.
Frequently Asked Questions
Yes. VSPIC offers this common ports checker at no cost with no account required. Results load in real time.
We do not permanently store your queries on our servers. Some tools run entirely in your browser; others fetch public data for the request only.
Yes. Open the page in any modern phone or tablet browser. Results work on Wi‑Fi and mobile data.
The widget calls action shodan and returns full host exposure data. Filter the ports array for your common-port checklist — enriched mode lists all indexed ports.
Yes. Both use action shodan with the ip parameter. JSON fields are identical.
source shodan means full Shodan host API data with vulns and broad ports. source basic-scan means limited HEAD probes on eight common ports only.
This form accepts IPv4 only. Resolve the hostname to an address first with ip-lookup or dns-lookup.
Shodan index lag, recent firewall change, or basic-scan limited port set without API key. Retry later or use port-checker for live probes on authorized targets.
shodan with the ip parameter per missing-tools-handlers.generated.ts.
Next step for your check
Continue with shodan quick view on VSPIC.
Related Tools
Explore more free VSPIC tools for IP, DNS, security, and network diagnostics.
Shodan Quick View
Open ports, services, and basic exposure summary
Use Free →Port Checker
Test if common ports are open on a host
Use Free →TCP Port Test
TCP Port Test — free online tool
Use Free →Vulnerability Scanner
Vulnerability Scanner — free online tool
Use Free →Speed Test
Measure download, upload, ping, and jitter for your connection
Use Free →Ping Test
Measure latency to any hostname or IP address
Use Free →
Trusted by Users Who Value Privacy
Always Free
No premium plan ever
100% Private
Files processed in browser
Instant Results
Convert in seconds
Works Everywhere
Any device, any OS