Enumeration

An active, methodical process of probing a target network or system to gather detailed information, such as usernames, network shares, services, and machine names (hostnames).

In another words, it can be understood as the gathering of information about a target.

It acts critically to allow crackers, hackers, or ethical hackers to map the target, identify vulnerabilities, and uncover potential attack vectors.

1. Common Techniques

1.1. Network Enumaration

Uses protocols like SNMP, ICMP, and DNS to identify network topology, devices, and user acounts.

1.2. NetBIOS/SMB

Exploits Windows networking protocols to find share names, file shares, and user information.

1.3. Web Application Enumeration

Uses tools like GoBuster to discover hidden files, directories, anda administrative portals.

1.4. User/Service Enumeration

Sistematically probes services like SMTP, LDAP, or FTP to identify valid users or software versios.

2. Popular Tools

Nmap (with NSE scripts);
GoBuster;
SNMPWalk;
Dirbuster;
NetBios enumeration tools.

3. Preventions

3.1. Disable Unnecessary Services

Turn off services like NetBIOS, SMB, and SNMP if they are not required.

3.2. Configure Firewalls

Restrict access to ports used for enumeration, such and SNMP (161), DNS (53), and SSH (22).

3.3. Strong Authentication

Use strong, non-default passwords along to two-factor authentication to prevent brute-force enumeration attacks.

3.4. Always Keep your Softwares Updated

Patch systems to prevent attackers from using version information to identify vulnerabilities.

For more informations, check out this following links: