nmap -p 25,465,587 --script=vuln <target> -oN nmap-vuln-SMTP.txt
nmap -p 25 --script smtp-enum-users.nse <target> -oN nmap-enum-users-SMTP.txt
smtp-user-enum -M VRFY -U /usr/share/seclists/Usernames/top-usernames-shortlist.txt -t <target> | tee smtp-user-enum-vrfy-top.txt
smtp-user-enum -M EXPN -U /usr/share/seclists/Usernames/top-usernames-shortlist.txt -t <target> | tee smtp-user-enum-expn-top.txt
smtp-user-enum -M RCPT -U /usr/share/seclists/Usernames/top-usernames-shortlist.txt -t <target> | tee smtp-user-enum-rcpt-top.txt
smtp-user-enum -M VRFY -U /usr/share/seclists/Usernames/xato-net-10-million-usernames.txt -t <target> | tee smtp-user-enum-vrfy.txt
nc -vn <target> 25
HELO idontexist
VRFY <user>
nc -vn <target> 25
HELO idontexist
EXPN <user>
nc -vn <target> 25
HELO idontexist
MAIL FROM: user@example.com
RCPT TO: <user>