Active Information Gathering

4.1 - DNS Enumeration4.1.1 - Interacting with a DNS Server 4.1.2 - Automating Lookups 4.1.3 - Forward Lookup Brute Force 4.1.4 - Reverse Lookup Brute Force 4.1.5 - DNS Zone Transfers 4.1.6 - Relevant Tools in Kali Linux 4.1.7 - Exercises 4.2 - Port Scanning A Note From the Author 4.2.1 - TCP CONNECT / SYN Scanning 4.2.2 - UDP Scanning 4.2.3 - Common Port Scanning Pitfalls 4.2.4 - Port Scanning with Nmap 4.2.5 - OS Fingerprinting 4.2.6 - Banner Grabbing/Service Enumeration 4.2.7 - Nmap Scripting Engine (NSE) 4.2.8 - Exercises 4.3 - SMB Enumeration 4.3.1 - Scanning for the NetBIOS Service 4.3.2 - Null Session Enumeration 4.3.3 - Nmap SMB NSE Scripts 4.3.4 - Exercises 4.4 - SMTP Enumeration 4.4.1 - Exercise 4.5 - SNMP Enumeration A Note From the Author 4.5.1 - MIB Tree 4.5.2 - Scanning for SNMP 4.5.3 - Windows SNMP Enumeration Example 4.5.4 - Exercises