Ports

21 - FTP

nc <ip> 21

22 - SSH

23 - TELNET

25 - SMTP

53 - DNS (TCP & UDP)

67 & 68 - DHCP (UDP)

69 - TFTP (UDP)

80/443 - HTTP/S

source code

robots.txt

sitemap.xml

gobuster dir -u http://<ip>:<port> -w <word list location> -x html,php,txt,zip

wfuzz -c -z file,/usr/share/wordlists/dirb/big.txt localhost:80/FUZZ/note.txt

nikto -h http://<ip>

nikto -id bob:password -h http://<ip>/manager/html

test OWASP top 10

110 - POP3

111 - RPCbind

This is just a server that converts remote procedure call (RPC) program number into universal addresses. When an RPC service is started, it tells rpcbind the address at which it is listening and the RPC program number its prepared to serve.

139 & 445 - SMB

• Port 139: SMB originally ran on top of NetBIOS using port 139. NetBIOS is an older transport layer that allows Windows computers to talk to each other on the same network.

• Port 445: Later versions of SMB (after Windows 2000) began to use port 445 on top of a TCP stack. Using TCP allows SMB to work over the internet.

143 - IMAP

161 - SNMP