- Open a terminal in Kali Linux and type “enum4linux <target IP>” to perform a basic user
enumeration scan using enum4linux. - To perform a more in-depth scan, type “enum4linux -a <target IP>”
- To save the output to a file, type “enum4linux -a <target IP> > <output file>”
- To target a specific Windows version, type “enum4linux -u <username> -p <password> -S
<target IP> –smb-os-discovery” - To perform a user enumeration scan on a specific port, type “enum4linux -p <port number>
<target IP>” - To perform a user enumeration scan using a specific username and password, type
“enum4linux -u <username> -p <password> <target IP>”
Reference:
enum4linux: https://github.com/portcullislabs/enum4linux