What are the different methods to detect a Zimbra version during penetration testing?

There are several methods, including accessing the web management page on port 7071, running `su zimbra /opt/zimbra/bin/zmcontrol -v` on the server, querying the SOAP API (if `zimbraSoapExposeVersion` is enabled), connecting via IMAP on port 143 or IMAP over SSL on port 993, and checking a specific JavaScript URL like `/js/zimbraMail/share/model/ZmSettings.js`. For details, see the full article Penetration Basics - Zimbra Version Detection.