Metasploit / I2P

Critical Risk

TCP — Security & VPN

Port Overview

Port Number 4444

Service Name Metasploit / I2P

Transport Protocol TCP

Category Security & VPN

Security Risk Critical

Port Range Registered (1024-49151)

What is Port 4444?

Port 4444 is commonly associated with Metasploit Framework's default meterpreter reverse shell listener, making it a well-known indicator of compromise in security incidents. It is also used by I2P (Invisible Internet Project) for internal network communications. Legitimate uses include Oracle WebLogic and some Java applications.

TCP Security & VPN

Security Considerations

Port 4444 (Metasploit / I2P) is classified as critical risk. This port should not be exposed to the public internet. The service transmits data without encryption, making it vulnerable to eavesdropping, credential theft, and man-in-the-middle attacks.

Recommendation: Block this port at the firewall. Use encrypted alternatives (SSH, SFTP, HTTPS) instead.

Related Ports — Security & VPN

49 TACACS 65 TACACS-DS 88 Kerberos 90 DNSIX Security 370 codaauth2 389 LDAP 464 Kerberos Change Password 500 IKE/ISAKMP