Web Based Port Scanner

Plans are in the works for an online, web-based port scanner. This tool would be provided to honorable individuals use in determining the security of their personal computer. There are a number of concerns in the design of such a tool, most importantly is the security and effciency of the tool itself.

In designing such a tool, one must consider the fact that the malicious may use it as a scanner for there own purposes. This could place us in a precarious postion considering our host and the victum may not find this as helpful as we intend the tool to be. To overcome this, we are considering many different checks on the host to be scanned and the identity of the individual who is requesting the scan before the scan takes place.

Some other concerns with the design of such a tool is the speed at which it can scan. The problem with this is that in some firewalls there is a rule for certain ports called DROP, DENY, Filtered or various other names. This type of rule means that if the network packet does not have a valid destination port or address, it is simply forgotten. This in turn would cause the scanner to wait for an indefinite amount of time for a response.

In addtion to the scanner, there would be a database of possible solutions and vulnerabilites which the scanner may find, and what one may do to address the issue if necessary. This would be similar to Nessus security scanner for Unix-like operating systems.

If you are interested in this project, let us know your thoughts. Check out our contact information page, or just send a message to info@plasmacow.com