About Portspoof

The Portspoof program is designed to enhance OS security through emulation of legitimate service signatures on otherwise closed ports. It is meant to be a lightweight, fast, portable and secure addition to the any firewall system or security infrastructure.
The general goal of the program is to make the port scanning software (Nmap/Unicornscan/etc) process slow  and output very difficult to interpret,  thus making the attack reconnaissance phase a challenging and bothersome task....

Here is an example  Nmap scan result against system running Portspoof (only one service is legitimate):

- Portspoof binds to just one port per instance
- Marginal CPU/memory usage
- More than 8000 dynamic service signatures
- Only one legitimate service was running in range of 1-65535 - all the rest is fake (good luck finding it!)

Give it a try: http://portspoof.duszynski.eu/en/download/