pentest-resources

Penetration Testing Resources
Repository & File Structure
General
Recon
- Passive Recon
  OSINT
  Google operators
- Active Recon
  Port Scanning
  Manual service enumeration
  Enumeration with system access
Vulnerability analysis
- Standard Ports & Common Services
  00 - Service unknown
  21 - FTP
  22 - SSH
  23 - Telnet
  25 - SMTP
  53 - DNS
  69 - TFTP
  80 - HTTP
  88 - Kerberos
  110 - POP3
  111 - RPCbind
  119 - NTP
  135 - MSRPC
  139 - SMB
  143 - IMAP
  161 - SNMP
  162 - SNMP
  199 - SMUX
  389 - LDAP
  443 - HTTPS
  445 - SMB
  554 - RTSP
  587 - Outgoing SMTP
  631 - CUPS
  636 - LDAP
  993 - IMAP (secure)
  993 - POP3
  1433 - MSSQL
  1521 - Oracle Database
  2049 - NFS
  3306 - MySQL
  3389 - RDP
  5432 - PostgreSQL
  5900 - VNC
- Finding vulnerabilities
Gaining access
Post Exploitation
Reporting
My methodology
- Example Pentest
- My Toolkit
  Software
  Hardware

Powered by GitBook

Enumeration with system access

Check out the page on Further Enumeration!

PreviousManual service enumeration NextVulnerability analysis

Last updated 5 years ago

On this page

Was this helpful?