search

Most used tools

hashtag
Locate endpoints on a network

tools: nmap, ping, arp, fping, route -n

Usage:

  1. Locate up hosts

fping -asgp <ip>/24 > hosts.txt

  1. Obtain hosts information

nmap -sCV -iL hosts.txt

hashtag
Identify open ports and services on a target

Tool: nmap

Usage: 

nmap -sSV -p- target

hashtag
Identify operating system of a target

Tool: nmap

Usage:

hashtag
OSINT

Example:

  • Extract company information from public sources

  • Gather email addresses from public sources

  • Gather technical information from public sources

Tools: theHarvester, Sublist3r, Google Dorks

Usage:

hashtag
Identify vulnerabilities in services

Tool: nmap, https://www.exploit-db.com/arrow-up-right

Usage:

hashtag
Evaluate information and critically or impact of vulnerabilities

Website: nist.gov

PreviousAssessment MethodologiesNextHost & Network Pentesting

Last updated