💾
kurare
  • 🤸Welcome!
  • 🔤Alphabet Soup
  • Training
    • CTFs & Labs
  • Directory Traver
  • Reporting
  • Toolbox
  • Rando Links
  • GRC (The box-checkers)
  • Common Software Repository
  • Social Networking
  • Penetration Testing Frameworks
  • Playbooks
    • Playbook: Figuring out software versions
    • Playbook: web applications
    • Playbook: Finding exploits
    • Playbook: Cloud Environments
  • Testing out credentials
  • Active Directory
  • Checklists
    • Pretest phase
    • Host Discovery
    • Website (external)
    • Black-box External Test
    • Host Enumeration
    • SMB enumeration
    • Page
  • Reporting
  • Services
    • VOIP / SIP
Powered by GitBook
On this page
  1. Checklists

Host Discovery

For when you have an internal presence on the network, with an IP address (but perhaps no credentials yet).

  • Check IP address (ipconfig / ifconfig / ip addr) and subnet mask

  • What's on the current subnet with us? nmap -sn 10.10.0.0/24 (or whatever subnet)

  • Document any hosts. Continue to host enumeration

PreviousPretest phaseNextWebsite (external)

Last updated 1 year ago