Notes
This is just my page to keep some quick notes about various things:
LINUX
Linux Commands
Linux Services
nmap scan, no pinging (P0), verbose (v), determine OS (A), do it fast (T4)
nmap -P0 -v -A -T4 [ip_address] /-iL [file_with_IP_addresses]Simple ping sweep
nmap -sP [ip_address]Shows listening programs & port numbers
netstat -luntp List with packet counts for rules (v) & numeric ports instead of names (n)
iptables -vnLClear packet counts
iptables -ZList the NAT/Mangle table
iptables -T nat -vnLDNS zone transfer:
dig DOMAIN_NAME AXFR
** or **
dig @DNS_SERVERr DOMAIN_NAME AXFRBIND version:
dig @DNS_SERVER txt chaos version.bindDNS Start of Authority record:
dig @DNS_SERVER DOMAIN_NAME soaWINDOWS
To hunt down a process that’s listening, run netstat -nao to find the port and PID you’re interested in, then run tasklist to correlate the PID to the executable (in Linux you can do this all in one command — “netstat -l -v –numericports” — but in Windows it takes two.
netstat -nao
tasklistFor a complete batch file to run in intervals, see my posting here…
Remote Desktop to the “console” session (only good on W2k3 or later):
mstsc /console /v:SERVERWORDPRESS
Good WordPress tutorials, including adding quicktag toolbar buttons
http://www.tamba2.org.uk/wordpress/
Hydra
Hydra password cracking:
- Download Hydra for Win32 from: http://www.thc.org/thc-hydra/
- Extract the zip file
- Get a dictionary list to try first. Go to http://prdownloads.sourceforge.net/cracklib/cracklib-words.gz?download
- Unzip the cracklib wordlist into your hydra directory
- Open a Command Prompt
- Navigate to the hydra extracted directory
Example syntax:
hydra -l admin -P cracklib-words -m "http://192.168.1.1" 192.168.1.1 https-head
hydra -S -s 10443 -l admin -P cracklib-words -m "https://endian:10443/cgi-bin/index.cgi" endian https-head
