Section 6 – Enumeration
                                                 50 51

                   Enumeration involves active connection to
                   systems and directed queries. It is conducted
                   in an intranet environment. Usernames,
                   machine names, network resources, shares
                   and services are scanned. The type of
                   information enumerated by intruders are
                   network resources and shares, users and
                   groups, applications and banners, and
                   auditing settings.

                   Services to Enumerate

                       •  TCP 53 – DNS
                       •  TCP 135 – RPC
                       •  TCP 137 – NetBIOS
                       •  TCP 139 – NetBIOS
                       •  TCP 445 – SMB
                       •  UDP 161 – SNMP
                       •  TCP/UDP 389 – LDAP
                       •  TCP 25 – SMTP
                       •  UDP 123 – NTP

                   SNMP – is often a good indicator in finding a
                   ton of information about a specific system or



                   50  Certified Professional Ethical Hacker Workbook v5 Volume 2,
                   Mile2, 60-67.
                   51  Certified Penetration Testing Engineer Workbook v5 Volume 1,
                   Mile2, 229-240.


                                                               421