Enumeration Tips

I have been through starting point and I’m currently embarking on the Machines. For some reason I haven’t locked in a toolset for enumeration or a process. Would people mind sharing the tools and order they use them in to enumerate a new box, so I can begin to put together some best practices. Many thanks

You can try the Hack Tricks - Pentesting Methodology.

Because the machine is given you are at number 3: Port scan, Service discovery.

I start with

  1. nmap common tcp ports
  2. nmap all tcp ports
  3. nmap all udp ports

Parallel to the long running nmap scans I start with analyzing each open service found by the nmap scans.

Don’t forget the write-up and logging all outputs.

thanks will check it out