# General Discovery

- [AD Attack Path Discovery](/offensive-security/internal-infrastructure/general-discovery/ad-attack-path-discovery.md): How to find exploitable active directory paths.
- [Port & Service Discovery](/offensive-security/internal-infrastructure/general-discovery/port-and-service-discovery.md): How to find open ports and services on an internal network.