Geekflare is supported by our audience. We may earn affiliate commissions from buying links on this site.
Share on:

10 Port Scanner Tools for Advanced Scanning by Network Administrators

port scanner tools
Invicti Web Application Security Scanner – the only solution that delivers automatic verification of vulnerabilities with Proof-Based Scanning™.

Scan thousands of ports in a second! Let’s see how network admins can do this.

How do you know the available ports on a particular IP or IP range on your network?

Well, if you are thinking about checking manually, it will take a lot of time. Better to use tools to scan the ports faster. Previously, I talked about how to scan ports on Internet-facing IP and received feedback to cover tools to scan the intranet network.

There are multiple methods of port scanning – TCP, FIN, ICMP, Idle, SYN, UDP, ACK, Windows, etc. Not every scanner will have them all, so choose what fits your requirement.

So, here you go.

TCP Port Scanner

As the name indicates – it is capable of scanning only TCP ports.

TCP Port Scanner uses the SYN method and can scan up to 10,000 ports per second. It works only on Windows.


Nmap (Network Mapper) is one of the administrator’s favorite tools. You can install on Windows, Linux, macOS, or build from source code. Do you know Nmap can scan the ports?

Here is some quick example.

To scan ports in fast mode, you can use nmap -F $IPADDRESS command

[root@lab ~]# nmap -F xx.xx.xx.xx 

Starting Nmap 5.51 ( ) at 2019-03-19 07:36 UTC
Nmap scan report for (xx.xx.xx.xx)
Host is up (0.039s latency).
Not shown: 95 filtered ports
22/tcp   closed ssh
80/tcp   open   http
443/tcp  closed https
3389/tcp closed ms-term-serv
5656/tcp open   abyss

Nmap done: 1 IP address (1 host up) scanned in 1.93 seconds
[root@lab ~]#

To scan ports consecutively, you can use -r syntax.

nmap -r  $IPADDRESS

To scan ports in the range, you can use -p syntax. Below example to scan ports from 80 to 444

[root@lab ~]# nmap -p80-444  xx.xx.xx.xx 

Host is up (0.039s latency).
Not shown: 363 filtered ports
80/tcp  open   http
443/tcp closed https

Nmap done: 1 IP address (1 host up) scanned in 3.03 seconds
[root@lab ~]#

Nmap is a powerful open-source tool, and if interested in learning in detail, you may check out this complete Nmap ethical hacking course on Udemy.


Netcat is a multipurpose network debugging tool got an in-built port scanning feature. You can get it installed on NetBSD, FreeBSD, Linux, macOS, etc.

Port Authority

Always on mobile? Try Port Authority – a handy tool to discover network devices and scan IP addresses.

As you can see above, you have an option to scan well-known ports and port range. It is free and can be helpful for the following as well.

  • IP discovery
  • SSH/HTTPS fingerprinting
  • DNS record lookup

Advanced Port Scanner

A free scanner to check opened ports with the services it’s running on. The advanced port scanner is a multi-thread scanner; hence it is fast.

You can also run a command remotely through the GUI.

Network Scanner by MiTeC

MiTeC is a multipurpose advanced scanner tool to scan IP, port, AD, NetBIOS, ICMP, SNMP – available to download for major Windows OS 32-bit or 64-bit.

You have an option to import the device lists and export the results data into CSV format. It is capable of scanning TCP and UDP both and got an inbuilt Whois checker feature.


A popular Microsoft’s Portqry command-line tool is available in a friendly GUI. PortQryUI does all the things the command line does and works on Windows OS only.


NetScanTools is a premium toolbox which got more than 50 tools for DNS, Ping, SNMP, Discovery, Whois, ARP, Traceroute, etc.

It supports the following five types of port scans.

  • TCP full connect
  • TCP SYN half-open
  • Other – a combination of SYN, URG, PSH, FIN, ACK, RST

Scan results are shown in a nice reporting chart.

Angry IP Scanner

angry ip scanner

Angry IP scanner is an open-source network scanning tool available for Linux, Windows, and macOS X. It can be used to scan IP addresses and ports.

Additionally,  it can fetch NetBIOS information, scan for favorite IP addresses, detect web servers, etc.

Scan results can be saved into CSV, TXT, XML, or as IP-Port lists.


It’s a TCP port scanner that works similar to Nmap. MASSCAN boasts of scanning the entire internet within 5 minutes.

While it is predominantly built for Linux, it can also run on Windows, Mac, FreeBSD, etc.

Check out their GitHub repo for more information.


I hope above listed tools help you to scan ports on an internal network or public IP. Most of them are FREE so try out to see what works best for you.

Thanks to our Sponsors
More great readings on Networking
Power Your Business
Some of the tools and services to help your business grow.
  • Invicti uses the Proof-Based Scanning™ to automatically verify the identified vulnerabilities and generate actionable results within just hours.
    Try Invicti
  • Web scraping, residential proxy, proxy manager, web unlocker, search engine crawler, and all you need to collect web data.
    Try Brightdata
  • Semrush is an all-in-one digital marketing solution with more than 50 tools in SEO, social media, and content marketing.
    Try Semrush
  • Intruder is an online vulnerability scanner that finds cyber security weaknesses in your infrastructure, to avoid costly data breaches.
    Try Intruder