Scanning Steps:
1- Network Sweeping
2- Network tracing
3- Port Scanning
4- OS Fingerprinting
5- Version Scanning
6 - Vulnerability Scanning
USEFUL TIPS
- When Scanning systems , use IP address instead of Domain names
- in large scan cases , use most popular ports instead of all ports or if you want to scan all the ports use multiple systems to perform full scanning on the target organization
- Run sniffer
- Sniffer اداة بتراقب الداتا الداخلة والخارجة من الجهاز وتعرف بالظبط ايه اللي بيحصل وانت بتعمل سكان على اي موقع او اي سيرفس عموما