My Process

• nmap all ports first
• try the available ports for any vulnerabilities
• if nothing, nmap -sU
• if nothing nmap -Pn
• if nothing, nmap -Pn -sU