Server Message Block (SMB) is a very commonly used service for sharing files, printers, serial ports, and so on. Historically, it has been vulnerable to various attacks. Hence, enumerating SMB can provide useful information for planning further precise attacks. In order to enumerate SMB, we would use the following syntax and scan ports 139 and 445:
nmap -p 139,445 -T4 -A -v <Target IP address>
The following screenshot shows the output of our SMB enumeration scan. It tells us the version of SMB in use and the workgroup details:
