f

src/generic-methodologies-and-resources/pentesting-methodology.md

@@ -9,11 +9,11 @@
 
 _Hacktricks logos designed by_ [_@ppiernacho_](https://www.instagram.com/ppieranacho/)_._
 
-### 0- Physical Attacks
+### **0- Physical Attacks**
 
 Do you have **physical access** to the machine that you want to attack? You should read some [**tricks about physical attacks**](../hardware-physical-access/physical-attacks.md) and others about [**escaping from GUI applications**](../hardware-physical-access/escaping-from-gui-applications.md).
 
-### 1 - [Discovering hosts inside the network ](pentesting-network/index.html#discovering-hosts)/ [Discovering Assets of the company](external-recon-methodology/index.html)
+### **1-** [**Discovering hosts inside the network**](pentesting-network/index.html#discovering-hosts)/ [Discovering Assets of the company](external-recon-methodology/index.html)
 
 **Depending** if the **test** you are perform is an **internal or external test** you may be interested on finding **hosts inside the company network** (internal test) or **finding assets of the company on the internet** (external test).
 
@@ -25,7 +25,7 @@ Do you have **physical access** to the machine that you want to attack? You shou
 **This section only applies if you are performing an internal test.**\
 Before attacking a host maybe you prefer to **steal some credentials** **from the network** or **sniff** some **data** to learn **passively/actively(MitM)** what can you find inside the network. You can read [**Pentesting Network**](pentesting-network/index.html#sniffing).
 
-### 3- [Port Scan - Service discovery](pentesting-network/index.html#scanning-hosts)
+### **3-** [**Port Scan - Service discovery**](pentesting-network/index.html#scanning-hosts)
 
 The first thing to do when **looking for vulnerabilities in a host** is to know which **services are running** in which ports. Let's see the[ **basic tools to scan ports of hosts**](pentesting-network/index.html#scanning-hosts).