Skip to content

Latest commit

 

History

History
 
 

Enumeration

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
HTTP
HTTP
 
 
SMB
SMB
 
 
ad-kerberos-tickets.md
ad-kerberos-tickets.md
 
 
dns-service.md
dns-service.md
 
 
ftp.md
ftp.md
 
 
host-discovery.md
host-discovery.md
 
 
icmp.md
icmp.md
 
 
initial_scans.md
initial_scans.md
 
 
ipv6.md
ipv6.md
 
 
ldap.md
ldap.md
 
 
mount-remote-nfs.md
mount-remote-nfs.md
 
 
nmap-port-scanning.md
nmap-port-scanning.md
 
 
oracle.md
oracle.md
 
 
readme.md
readme.md
 
 
smtp-user-enumeration.md
smtp-user-enumeration.md
 
 
snmp.md
snmp.md
 
 
squid-proxy.md
squid-proxy.md
 
 

readme.md

Enumeration

During a penetration test or capture the flag (CTF), it is incredibly important to enumerate all hosts, host services, and each of the host's publicly accessible files as much as possible. The included cheat sheets will show us common tools and syntax used often for enumeration of the target system.

Tips

  1. If any service lendss any usernames, test the usernames as a file with hydra for the users and password. Some folks like to have the password the same a sthe username. Then, test it files that you make with CeWL. After which, try files from SecLists, then finally, with rockyou.txt.