# Default Tags

The following tags are automatically applied to targets.

* **`hostname`**: Target is a hostname.
* **`ip`**: Target is an IP address.
* **`has-ports`**: Target has at least one open port.
* **`no-port`**: Target has no open ports.
* **`excessive-ports`**: The target has over 20 ports open.
* **`has-website`**: A web server was identified on the target.
* **`no-website`**: No web server was identified on the target.
* **`has-scan`**: A scan has been completed on the target.
* **`has-dns`**: A DNS service was detected on the target.
* **`no-dns`**: No DNS service was detected on the target.
* **`pci`**: The target is in PCI scope.
* **`pci-pass`**: The target is in PCI scope and passing the PCI scan requirements.
* **`pci-fail`**: The target is in PCI scope and passing the PCI scan requirements.
* **`pci-needscan`**: The target is in PCI scope but has not been scanned recently enough.
* **`pci-oos`**: The target is out of PCI scope.
* **`scanning-disabled`**: Scans are disabled for the target.
* **`scan-ondemand`**: Scan settings are set to only scan on demand.
* **`scan-day`:** Target is scanned daily.
* **`scan-week`**: Target is scanned weekly.
* **`scan-month`**: Target is scanned monthly.
* **`scan-quarter`**: Target is scanned quarterly.
* **`no-service`**: Target has no scanning services applied.
* **`aws-ec2`**: Target is hosted on Amazon Elastic Compute Cloud
* **`aws-cloudfront`** : Target is hosted on Amazon CloudFront