# ๐Ÿ–ฅ๏ธ Network Services During a typical **penetration test**, we often encounter **networked services** designed to: * Manage * Edit * Transfer * Create content These services are hosted with **specific permissions** and assigned to individual users. *** ### ๐Ÿ› ๏ธ Common Network Services Here are frequently encountered services during assessments: | Category | Services | | --------------------- | ------------------------------------------------ | | ๐Ÿ“ File Transfer | **FTP**, **SMB**, **NFS** | | โœ‰๏ธ Email & Messaging | **SMTP**, **IMAP/POP3** | | ๐Ÿง‘โ€๐Ÿ’ป Remote Access | **SSH**, **RDP**, **WinRM**, **VNC**, **Telnet** | | ๐Ÿ—ƒ๏ธ Databases | **MySQL**, **MSSQL** | | ๐Ÿ‘ฅ Directory Services | **LDAP** | > ๐Ÿ“š For deeper understanding, explore the [Footprinting module on HTB Academy](https://academy.hackthebox.com/module/10). *** ### ๐ŸชŸ Managing Windows Servers Remotely When managing a **Windows server over a network**, we require services that allow: * Executing commands * Viewing or modifying files * GUI-based or terminal-based control #### โœ… Commonly Used Services: | Service | Description | | --------- | ------------------------------------------------------------ | | **RDP** | Remote Desktop Protocol โ€“ Full GUI access | | **WinRM** | Windows Remote Management โ€“ CLI-based management over HTTP/S | | **SSH** | Secure Shell โ€“ Rare on Windows, common on Linux | > โš ๏ธ While **SSH** is dominant on Linux, its usage on Windows is **less frequent** but growing. *** ### ๐Ÿ” Authentication Mechanisms All these services rely on **authentication**: * Typically: **Username + Password** * Can be customized to use: * ๐Ÿ”‘ **SSH Keys** * ๐Ÿงพ **Certificates** * ๐Ÿ” **Kerberos tokens** > ๐Ÿ”ง Many services run with **default configurations**, making them vulnerable to **brute-force** or **credential stuffing** attacks.