Port scanning is a phase in footprinting and scanning; this comes in reconnaissance which is considered as the first stage of a computer attack. Port scanning aims at finding open ports in a system. These open ports are exploited by attackers to carry out attacks and exploits. There are a number of tools to scan for open ports. However, very few tools are present to detect port scanning attempts. The goal of this project is to identify port scan attempts and find out information about the machine from where port scan attempts were made. If an attack takes place after the port scan, the collected information would help in bringing the criminal to justice. We hope that this work will add an additional layer of defense by identifying port scan attempts thereby indicating that an attack may follow.