Enumeration
Enumeration
SECURITY ENUNMERATION
PROFESSIONAL
CERTIFICATION
01/22 https://www.careerera.com
Getting a thorough picture of the objective is the aim of this
AIM OF module. A penetration tester uses active connections to
systems in this phase to look for legitimate user accounts or
MODULE inadequately secured shared resources.
What is Enumeration
Common ports and services
Enumerating services and types
• SNMP Enumeration
• NetBIOS Enumeration
• LDAP Enumeration
• NTP Enumeration
• SMTP Enumeration
• FTP Enumeration
• DNS Enumeration
03/22 https://www.careerera.com
What is Enumeration?
04/22 https://www.careerera.com
Common Ports and Services
05/22 https://www.careerera.com
Common Ports and Services Cont’d
06/22 https://www.careerera.com
Enumerating Services and Types
SNMP SMTP
Enumeration Enumeration
LDAP DNS
Enumeration Enumeration
07/22 https://www.careerera.com
SNMP Enumeration
08/22 https://www.careerera.com
NetBIOS Enumeration
09/22 https://www.careerera.com
LDAP Enumeration
ntpdate
ntptrace
ntpdc
ntpq
11/22 https://www.careerera.com
SMTP Enumeration
(SMTP) Simple Mail Transport Protocol is used to send email messages
as opposed to POP3 or IMAP which can be used to both send and
receive messages. SMTP relies on using Mail Exchange (MX) servers to
direct the mail via the Domain Name Service, however, should an MX
server not be detected. SMTP generally runs on port 25.
This is accomplished with the use of the built-in SMTP commands, such
12/22 https://www.careerera.com
FTP Enumeration
With anonymous FTP, users can access files and other data
without providing an ID or password. Transferring files from a
client computer to a server computer is called "uploading“
Whereas Transferring from a server to a client is "downloading".
13/22 https://www.careerera.com
DNS Enumeration
A technique used for reconnaissance to better understand the target
systems' surface area is DNS enumeration (i.e. IP addresses).
Nmap, DNS recon, and other open source tools and scripts are
available to do DNS enumeration.
14/22 https://www.careerera.com
LAB-1
SNMP Enumeration
Enumerating Simple Network Management Protocol
13/22 https://www.careerera.com
LAB-2
NetBIOS Enumeration
Enumeration Network Basic Input Output System
13/22 https://www.careerera.com
LAB-3
LDAP Enumeration
Enumerating Lightweight directory access protocol
13/22 https://www.careerera.com
LAB-4
NTP Enumeration
Enumerating Network Time Protocol
13/22 https://www.careerera.com
LAB-5
SMTP Enumeration
Enumerating Simple Mail Transfer Protocol
13/22 https://www.careerera.com
LAB-6
FTP Enumeration
Enumerating File Transfer Protocol
13/22 https://www.careerera.com
LAB-7
DNS Enumeration
Enumerating Domain Name System
13/22 https://www.careerera.com
THANK YOU
If You Have Questions, Criticisms Or Suggestions,
Please Connect with Us Directly
Phone- +1-844-889-4054
Email- [email protected]
22/22 https://www.careerera.com