How Is Penetration Testing Take Place Over WAN?

Hello guys,

I have been into Pen Testing for awhile now and managed to exploit some vulnerabilities and gain user/root privileges on LANs ONLY. I was wondering how would be the steps of hacking into a machine through WAN.

One more thing, Would the results returned from a scan of a Public IP lead to hacking into a network over WAN?

Thanks in advance!